last executing test programs:

2m36.56813253s ago: executing program 0 (id=643):
r0 = syz_io_uring_setup(0x101a, &(0x7f0000000140)={0x0, 0x114df, 0x0, 0x1, 0x86}, &(0x7f0000000680)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x42, 0x0)
getresgid(&(0x7f0000000c40), 0x0, 0x0)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x10814, &(0x7f0000000700)=ANY=[@ANYBLOB='umask=00000000000000000000000,flush,nodots,dots,gid=', @ANYRESHEX, @ANYBLOB="00006b746769643d0092", @ANYRESDEC, @ANYBLOB="1500bba7d41fabba4332de3ca642acf6f8de847e3f21783608008708a887d30aaf0a14b0691d48445fe3b4d1ddde1b81337b2c3b5f88535d7f6fa931b84783704494cebe49ca9f6269b05edde0246c360d0566b4056f0f02ccab035d3d0a5cde0b31bd424949fe23c0a0a25691738006c5c6acdf101fecdb4f79abdfb95c6afaea03dd5903b5240565f31504c207a9a2aa6c8108fb973081e90412a3c6cfa3b2513693727fad9acd8108acb8b90fab033c9dac0dc3e5a61c513e7b5edc5d76320f0e54045ea2b7b8fb1f78d3d346e26ee5ed6926cea1ffe0a1"], 0x1, 0x1fa, &(0x7f0000000500)="$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")
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r1, r2, 0x0)
io_uring_enter(r0, 0x3516, 0xaddf, 0x2, 0x0, 0x1517f)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6)
setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000000)=0x4, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007ed, &(0x7f0000008400)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000180)='htcp\x00', 0x5)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000002c00)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000008100)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56561, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x8}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_TARGET={0x8}]}}]}, 0x3c}}, 0x0)
write$binfmt_elf64(r3, &(0x7f0000000040)=ANY=[], 0xa89)

2m35.086959983s ago: executing program 0 (id=646):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0xd)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x101a02, 0x0)
r1 = mq_open(&(0x7f0000000040)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!Tnux\x00', 0x6e93ebbbcc0884f2, 0xe1, &(0x7f0000000000)={0x0, 0x1, 0x8})
mq_timedreceive(r1, &(0x7f0000000180)=""/196, 0xc4, 0x0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x100000000000000, 0x0)

2m34.853158277s ago: executing program 0 (id=651):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x74, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0x8000000000000000}, 0x18)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = fsopen(&(0x7f0000000080)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r4, 0x3, &(0x7f0000000400)='roo4c\xbe\xb1\x8f/hi\"9\xf2\xe7\xe0\xa7/\x17\'?\xae)\x18\xb2r\xfc%(\xe4\x9c\f\xbf\xb5\x83\x18\xb6^X\xa0\xf6\xdd\x0f\x1d\xd0\x03\x14\xe3\x96\x0f\xc4\xd1\xdb\xfb\x8dU\x15\xcb\xf3f\xf2\xd0y3\vz/\\\xe9\xf5*\xa5\xdf\xdf\xbeP%4\xe0\xcc!\xff\x140\x8b\xdeX\xc4\xfe\x85\x80X\b\x1d\xe9T\x95K\xad\xaf@\x9b\xbb\xf4\x96c\v\xe0\x8dG\xe0~\xde\x86=\xc0\xd0 \xbf\xf8\x0f\xd7\x99\xb8\t\x8amhG\xb5_\\\x14$d\xf3\\]*>\xcf\x18\xcb!\xe9i\x01\xcd\x1e\xc6\x9d$d\x9f*@|\a\xe8\x17\xe8M2Z;\xd4\x03\xfe\x8a_G\xfd\xf8\xf2\xc1\x11\x9f\xfc)\xd5\xeaP\xe6\xaf|4ad\xd6\xca%0\xe0\xfcf[7m\xba\x1f\xff\x9e\xa3\xcd\x1e\xaaj\xd2Pp8\x19\vJl!K\xfd\xe7\x9f\x1d\'\xc6\xd2\xe2\xf2[+\x83+\x8b\x8c\xf7\xb4C\xac\x02\xc4\xbf\x89\x93l\x9b\xd6s', &(0x7f0000000300), 0x0)

2m34.375194094s ago: executing program 0 (id=658):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)
unlink(0x0)

2m34.149577937s ago: executing program 0 (id=662):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020100008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x4, @local}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{0x5}, {0x0}, &(0x7f0000000300)=[{&(0x7f0000000880)=""/4096, 0x1000}, {&(0x7f0000000500)=""/247, 0xf7}], 0x2}}], 0x48}, 0x0)

2m33.97024455s ago: executing program 0 (id=666):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)={0x4c, 0x2, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x181042, 0x45)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000140))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
memfd_create(&(0x7f0000000540)='\xdd#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\xf9\xff\xff\xff\x00\x17?$^\xe1Ob\xe1Y\x03\x00\x00\x00\x00\x00\x00\x00\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\xdc\xaa<\x96\xedE>{\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\x82t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9\x87\xb6^r\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T[\xb7\xa4\xb0\bk&\xede\x8b\xc2\xb2\xcd\xef\xcf\x0fE\xc5\x86]\xc0]}\xdd^\xf6&\x16>c\x9d\x9c\xc9\x01\x04\x00\x00\xe9h\xbd\x10p\x8f\x14\x1f2\"\x1b;\xfda\x19\x8bo^\x96\x9a~Q\xce\x95\x02\xb8e\xbbG\xb0V[\xfe\x80\x94$y\x8a\\@\xa9^\x95!IJ\xcf\xf7\xafoX/qG\x97ITp\x01\xae\f\"n;%\xecT\xf6\xb6\xbf;\xde\xec\xb4z\xaa\xd9%\xa5;wy~\xcb\x9a\xd7\r\xe2\xcd\xf0C\x16\xbf0\x89\xb4\xf5\x86\xf3\x99\x9bq\xd3\x15\xe1:\x86\xe4\x14\x805K\xcf\xf6\xda\xd1A>\xf4r>\xfdyAH\x0f\x00'/426, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b7030000000000f7850000002d000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f00000003c0)={'bridge0\x00'})
clock_gettime(0x0, 0x0)
ioctl$sock_SIOCBRDELBR(r4, 0x89a1, &(0x7f0000000080)='bridge0\x00')

2m18.425416877s ago: executing program 32 (id=666):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)={0x4c, 0x2, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x181042, 0x45)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000140))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
memfd_create(&(0x7f0000000540)='\xdd#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\xf9\xff\xff\xff\x00\x17?$^\xe1Ob\xe1Y\x03\x00\x00\x00\x00\x00\x00\x00\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\xdc\xaa<\x96\xedE>{\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\x82t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9\x87\xb6^r\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T[\xb7\xa4\xb0\bk&\xede\x8b\xc2\xb2\xcd\xef\xcf\x0fE\xc5\x86]\xc0]}\xdd^\xf6&\x16>c\x9d\x9c\xc9\x01\x04\x00\x00\xe9h\xbd\x10p\x8f\x14\x1f2\"\x1b;\xfda\x19\x8bo^\x96\x9a~Q\xce\x95\x02\xb8e\xbbG\xb0V[\xfe\x80\x94$y\x8a\\@\xa9^\x95!IJ\xcf\xf7\xafoX/qG\x97ITp\x01\xae\f\"n;%\xecT\xf6\xb6\xbf;\xde\xec\xb4z\xaa\xd9%\xa5;wy~\xcb\x9a\xd7\r\xe2\xcd\xf0C\x16\xbf0\x89\xb4\xf5\x86\xf3\x99\x9bq\xd3\x15\xe1:\x86\xe4\x14\x805K\xcf\xf6\xda\xd1A>\xf4r>\xfdyAH\x0f\x00'/426, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b7030000000000f7850000002d000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f00000003c0)={'bridge0\x00'})
clock_gettime(0x0, 0x0)
ioctl$sock_SIOCBRDELBR(r4, 0x89a1, &(0x7f0000000080)='bridge0\x00')

46.473656631s ago: executing program 2 (id=1334):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x8000, 0x0)
ioctl$TCSBRKP(r1, 0x5425, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_clone(0x200000, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x3)
ioctl$TIOCGPGRP(r1, 0x5437, 0x0)

44.176064226s ago: executing program 2 (id=1338):
r0 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x787f, 0x0, 0x4, 0x286}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x8, 0x0, 0x1})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

43.967473849s ago: executing program 2 (id=1341):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000008000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
r2 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa"], 0x1c)

43.353717898s ago: executing program 2 (id=1347):
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000d40)='./file1\x00', 0x3200010, &(0x7f0000000200)=ANY=[], 0x1, 0x7c7, &(0x7f0000001540)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000407b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_TIOCOUTQ(0xffffffffffffffff, 0x891e, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x4000000000000, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x41, 0x3, 0x288, 0x0, 0x0, 0x0, 0x120, 0x0, 0x1f0, 0x1f0, 0x1f0, 0x1f0, 0x1f0, 0x3, 0x0, {[{{@ip={@private, @remote, 0x0, 0x0, 'wlan1\x00', 'wg1\x00', {}, {}, 0x6}, 0x0, 0xf8, 0x120, 0x0, {0x0, 0xffffffffa0028000}, [@common=@unspec=@quota={{0x38}}, @common=@inet=@multiport={{0x50}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ip={@broadcast, @private, 0x0, 0x0, 'veth1_to_team\x00', 'sit0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2e8)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000}, 0x20)
syz_clone3(&(0x7f0000000680)={0x40004000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

41.90765002s ago: executing program 2 (id=1353):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x693, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', 0xffffffffffffffff, 0x0, 0xbed}, 0x18)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f00000012c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4739}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@norecovery}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r5 = creat(&(0x7f0000001480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x182)
write$UHID_INPUT(r4, &(0x7f0000000280)={0x8, {"68828c0b9bc23b6a89f8110d35c59d082b92f476102ce32229638a495dcd21c89d83a602a5e31db5ec28b818a3d699abbfafad0370d610ac8a0c4726147706600ff53312a5a0fcf02dd3c0c051bce7e14058a91070617264a63a446e3bcbc60a8204e1cde7294551e2b14ca95768db0f1d7e91a01558164eb611a545bfff41ad4788237a35d9bb2087b6245d27b7fdf4d12d0b19d8cb93ab5ae5850dc1c521058256c8ffa7742038290bb874b0e4199e945f3ab5c74e1b3840f18b0c27377c18beea9f6f909f141e96c7ef2d65f293a13fbbca16644d71cf8cc7652391c5eacaa8a1e247815d7c91adab2cfe77c71882246812312aa01c99b9402a62d82ce80d08636aa5a87b550becadfe4b5ae98085a6b0d9fd3407461eecd242e243140cbe1027d68516e3c379a0921455ca4b36fb9d4b9f9324590fc77730385dee376d147a74bb08ce8fec7ed205311dc42f4cd009f57c85abced5844867f81ddf09cb67bb623ed41304c2d08373972f30418780c6bed885604b2fc6ea1cd1dfe48c5fae5f5925c9c657bb39d8b30db6eb1cab5031ae94d45aa4764d45397793250c758537e24bab0ab75d8066903f808d1bf68d189c1a1f5c6ad28dbeae6ab64c771346a9e7720b92ad4008db9c94d6b876753d57bb21f7c645d6833e680f52c3ecaf20b05869feb4ee670d4f18e233df78ccda64a8cbc6d28e392fad9cc7dc8baed666cf0e96111aac3376d3e66b50f83bbc51b180de2a320ee8c5fe17bea897acea40274c3962f009ede428a99e0fe869a9f711b626e68a5e257e32cd6a000f4c9c509b1116f2502f199823f29d7410e37f4d57755b85e3b0f555422f8631047187b55295001847e7395e7d59752ee37d12f7f9b0d94f00f626eb330ebcf5fd520925036cc07e687e001befa33475b67d381f5d0d5c969fd603464520d9212df27dbb4665c139755795a42005fac94f0ceeb6dee1f3bb0c7c1b03bbaafe7a4b53257892fa6a0148a1bbb43f0b57c21e278730c53a888864a8fbf71a81e154d5f923bdc67a3557d081655d3a63c63609c0e1804dbb7242ca489ac2f2d425a4f8007d4f312ca7723bf3c6633b651177c0a54d6ac50ac45e5f36e474685ef3938775537a3c50f06eca472d7f8cee44239b2a4d29fbf2629eaf62d879ab8dcd2fd5d2345298f3fea84307f0d22a5ecbe2c728cec1b9ad4240926dc9d3d94d5476a0f9f088b0c21b040139bbe103417ae11a85f72d652c93351f8e062530c03cb842ef3b231ecf36ef32c470c67d48648740334ea670a200e4d87745784c270023ac2391b39319162a268c55d64c763d9e5079c286b0c2eb6c084adbdd0b1823d9d31a73aa181cb507bfce4d9f7752da2fbbd3d3eb366b7fcb4c7868a5d010ea3b4e7dd6e68aeb044edf20e2d4aa2837cd70814a556b5a4f90fc47ceab97b2f6ec437f46196398667cf927c900523154b3bfee8e96eb4b4c03dc0d818511a51b5defd3ebf6523816560ba03fc010fd34ab09fdb3aa355e48b6b3a0cb6ce89b4008104a4afe8265f1178d177027918ec1aca8a2ad98fa63bad1367d379e6ff13a57909d8f9ecf50bf5dedc6e49cb9459e4db15c4aa2098fec4e13eafebaf8c1ea118d05c51e799f8e843e0c722ececfcf2422ece64dd945b6c14e5843a393e84873d3dd84eab786955014f210686aea9b11062c70e829ef9ff9da1be19705d2a74110d82e141cb1da325441a8593780470656e6116d5bf16bb6fee6b980ae3448d782c5f8d658f6e9e8494d9357490485a1b9879d34f4e681a425e36627f4844a64bfee3c90bb2c93c4e791ecefb0917b45f9323524fa575472f9152b84ab51aca006e5672091554d95a598c2c09068673a857704b131dac07bff07985941f2510aa52dbb79246bb5193819fe06cfafd24ac8f2cb98b9f4a7bb5f27d962fcb733b9ac25f1dec5a1d6f6c4fde072048169fbfdde0854a993ae1f93d13b4cfbacd926c204d687f2f9feb696406a8aa83de5853cdb2fc110db3e3ee717851ebc9bfea5f7563e7f41d8edfac83f2b6d015fca0f9ca29e3d97f9c727bdddc5eab6bf603c0af7b421aa44f3a03296fde5d980b3c2c707059440b0e6fac05a66d919733989f69209303d91e09e7b6fac37c812bb880bd06b687958dac2608ec6e07f492732c44b3a304d0a11a7307abab29e31239bde8274ec53a6999c0ec36ef708d46b4e606ddd4e41b05e144147b5a3d786806873dad19d8b11209a0d0d3e93d17ba4b6b75b5e8e9c36289f9be1db428278c0c18bef8327d374fcb16007c595b8c59b15c90f0b2e302071a1e328282b94516af2a83bbcdd2912a5b2044582f21820df59cee9d45a8dc0e9babfd2914c492f58e32475af0ce53bb0b25661ac5226e946f6cf87dab12601f2cb55573f17ac7d48a647a4ef38e3fca92377ffdd9b5f3bb75bad2b406d8d5656b4eea17a7e2f540c12985599bdb09793068b3151f5a7c39241c88c267f34cf342506338835a8e9975b76dde0e275f3522ff6be12402011868e658fba23ef0ea8eeb470f631ca1b5a2e5e35336320ed03ecc31212bf84467333730d96919e2ed9edddb71da5784fdbc23472da3840ac665cfafbc863d71f5e032d6cb1299375f96ae7a1658798561c5d3e549052751eda4d830109d0c7ccdd80afc7803e546738e3424cf77627330b9447ff34068585936bb60eadd47d40f171d80f5b4d3276a74a4ac606135b805a64d0d39a06344d3be8c1572cd33f9a3afd10dfefd4789a54e9cb55677b02f9330ee99a1f93a6cebd52f22eb93bcedf37f4cc3982b4dabaf26e215872e11cc836b439b580ea013c76ea8629ed752b087bcf176fdc8cb6ae4e2947f5bcf9338d48ce1cf74e365b720d1b3d8c5145d1a78e8eb1b45d21bb62ed1b6e212c13a0ea21223103cd521cb73666cc7a5bacf02b5764251257dea8138e3683c0f7ec4037093a3b78a2d74185289a4844903619b1d9d1553ea217ca214be2cba732907692a769d398d52b816e3859f8ae81e5d0c089e1a87885dd5c86c50ac83db3a802ea67bc0224b4d4e5ed0347a7b144004a93826b01244e75b6e499d4b26bb1845afea8654ba9ade75f5310b458885ad78eff3712c02e62363c5dedd6c99d9aae4cff5cc5ed9406c248744cb4f091eb1f419d0efd1ef5c850b4176fa07a1a5a4e8d39d2e0308916abc77f6cf6b4a44a8a01fc21059d0e100daaeaf636bd177637a583eb9f45c67bc2c76760a58bf448e2e379831755f7a974384d3d62727ca3fec2194dd633a0ed411d6586651b4bbd8b4f5746ce4e72715ba9736c240747f98a01fd3df0b9bed007763c1a1968d4b69eafd279d1c761f8d6a675ab2fced1793920b10c50af3520170b1d5041a0dde753a2fc210cf98ebcc5392a5deccaefdf4b002aeee716dcdca6cb6073881ddbfd37ee751edaca99b65202bfdbe1fec457bd502555b7dedc5d8e221d4093cf7acf89a3b801d6d2fdd3415d58bef856be0ff22eab5d75675081d85416ab70d7d36d617a2a7f0c8d6ed35a2a81588f01e80712534c3256fc52fb4ed5478325ae28efd78e7eaaabf08bd749226ecab7bdbab7a60b5b60f2d93714455ae6d3b88de9ebb5d2df81fc7e349af45d1b502cfaf36f4adc16886db2758b4f43f5a030912cb772def90d1a0fb555c8fb10d3a7bd8e2dd954860b8084ce5c72971f5df24ef5bc24937ccd545f964a86b6c466610e24cee92bf7a196c915975349b491e8bb1f164ae0af3fbe050d57dc7af839be63cdf1883ec31f5310c6e0d87c70902a66259bcf76588f14f96ebb85b95997f64814c73d6ff8b059536c70f7d72b5924258ffb706e2af7aaf580f327af6dff0c3b020b451c4b22d46fa72854af95b2b6a6d7a3e0b2b78c06eeec2edd5f1a2174ae8b7b6f4ce2e781314142b8482dc8ff4046e851a5d6b8347b4ac8b2326e1c359160ac49d637e4f5549d73369d3323223f179146a5426e21213c6e51a348bc9d55289837b42fa56f9084f6e268a9d041bde513b1e8ea13a7637bc53f67b2951b4bec7a44acb0d93ea325611c486806884b08192ed5768ca88e95db075d8d551b09c42d62a87e1b121adb5812ee1769f1555707b163af0ff78d728ad0a1871704645f1ed8632e85735ff24e7541005d5409205940df84926ec581218a4ce89498715fb09dcdb44849d3ca7631c1d472ffcafeb37610e8ca77ba4b43176d825a27f59ec81b217b7aa6e01698fe45ffafa0ea2356ad423e581b632b6c627e0d827da58523a40aa19ea3e2ca93f93ed2a33e4fabc36ae56abcb11ae7944577230ec6c498033976fb8d9610d9d9eacf7302ecb060ea5002d70eb6f327ded18f5b2c79e04f09bff203b7d572a214c3684eb89470c28a1361333b32dd63df2163c039d129c5f766fe1a4110f95fc99b87ead844433ac309c3565bc9ca7a6f838a121fc44303ae248a366865e0a3da36ed3046e304f579ff422a7b9946b5cfb52d3e4463e4c5a1e3c7ec1dc16c18c1cdc641b8a8301cd2fcd271489528b4bb4a8515a71be236faadc7ea05173c21f4b8a9aadae38d2e8443199a08a8df1d502df62736812398e8df6eb17f938d529e8dccfe6a15470be9a8cb613a7fb337f213f77ebd136ddbab9471629169e24304e8d20f37e9a341559afc9ab598119e504c53d5c8ec5316e8336295c4101d8bdf6c71d1483355c00972636ea6831704008858cf803defbba5069c24ac7d5e1b7c8e664212d350832fbc767e09a6c2a08073dd8ac2661fec32d6f548b56d74201c274e2cc07a1712169d3db64ebd5bc111fc0aa41f69a5ef849a41a84cb0673db00cb6ae345fdbd44a5467f8588aa24ef57d7ea9ce9b0b9d2c2e2ee7990c1e3d97375ffd800248f87789cedb94803c315728805b5c0394ab617eadacafebba89d103b28c9df323fc65d023539393ac18285246ffc5e4a7ba902dc234ac2383382f3f445f198cd82a494c8f7ea80c0517223f14e303cf7565e44cd650d4997202ac331355d2c734c61c8a1903d056eb03ce50d167a7a94854de234e45e3886287d01221c6d493ea078df81c2c0d7e5b61a34ceecbf83dd21edb2aeddd14869aaf034588076f6a604569e745f4400fa8ca7dfb9be8bfb85874283a5d1522ec70559abe4681c91112e3561841b2fad0540865944b5df385121b4c8d99cb4d5f9634ace1700c90cfc98f4086714f5f3fd8450f4067e32715aee5943c571fcdca2cb6115dcc373e3f5e96b08e626a1a776ffd5efbf898cfaac7405f75a40feb8ddf06cddf1258a09f3e58b424d409767966290c5c15d150e0f7d120f0078cb97337874f16838ce3cad921bad2573ecef3d853ee5d7e89c3fe517a0d1139ad3f1424c6e5e880cc8b33eb4762b7bd1fe5fd4e2d4c3249bb70b5fe2e74e3751e1b0d78dfbc78fbab4a35d7cd97f8be57eec3a6b3b5c63a5747f82bd3e7fba99bbf9ad1faee6f4b59e14049bbc7a78c285cc8be8cc3fac3451add460bdada49d65d2253adb3500ad3d163f9ae0e24d413ad348bc1a2ed940e6d1c28fa16b9ad05c2175b3374d765939148451b8daffb3f4e646397bc04b0f04a808b6f96dcab1dccbd5b55d4758279b67899dea10bbb61c58f6aad2aefe78f9e5d2b916ca6d717d78e978c25ad27b912e7bddede9c2bf3cd464ff102d78332c1468fc2f2f5cd20baddb71736c30a4a302bb5412587e95f165bc12c05cebf5128ef67064fe9b9f14aed30708a4e5afe8b0cf6c904dbedcd2d7c467cef6544ddd020de4cc50f646d0ba0862030febee6af93b263ff983708b1c725a13103", 0x1000}}, 0x1006)
fallocate(r5, 0x0, 0x800, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0xc, r5, 0x0, 0x0, 0x4})

40.881821866s ago: executing program 2 (id=1359):
r0 = socket$rxrpc(0x21, 0x2, 0xa)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r0, 0x110, 0x4, &(0x7f0000000000)=0xffffffff, 0x4)

39.119867543s ago: executing program 33 (id=1359):
r0 = socket$rxrpc(0x21, 0x2, 0xa)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r0, 0x110, 0x4, &(0x7f0000000000)=0xffffffff, 0x4)

5.90569046s ago: executing program 5 (id=1597):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
setpriority(0x0, 0x0, 0xacf0165)
pivot_root(0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xff58)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r3}, 0x18)
open(&(0x7f0000000080)='./bus\x00', 0x143c62, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

5.517771686s ago: executing program 5 (id=1600):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f00000008c0), 0x4)
bind$inet6(r2, &(0x7f0000000f80)={0xa, 0x200, 0x0, @loopback, 0xb851}, 0x1c)

5.24976179s ago: executing program 5 (id=1604):
set_mempolicy(0x3, &(0x7f0000000040)=0x401, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)

4.843196916s ago: executing program 4 (id=1612):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x6c, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x44, @loopback={0x4000000000000000, 0x2e}, 0x2037}}, {0x20, 0x2, @in6={0xa, 0x0, 0xfffffffc, @mcast1}}}}]}]}, 0x6c}}, 0x0)

4.631199269s ago: executing program 4 (id=1616):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x20001, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02})
close(r1)
socket$netlink(0x10, 0x3, 0x0)
preadv(r2, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/124, 0x7c}], 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kmem_cache_free\x00', r0}, 0x10)

4.441616492s ago: executing program 6 (id=1617):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_create(0x3, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{0x77359400}, {0x0, 0x9}}, 0x0)

4.248409866s ago: executing program 6 (id=1619):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x24000000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.047671998s ago: executing program 4 (id=1620):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = gettid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x19)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0xfff)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)

4.030722739s ago: executing program 6 (id=1622):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r1}, 0x10)
r2 = io_uring_setup(0x1d7e, &(0x7f00000004c0))
io_uring_register$IORING_REGISTER_FILES2(r2, 0xd, &(0x7f0000000680)={0x1, 0x1, 0x0, &(0x7f0000000b80)=[{0x0}], 0x0}, 0x20)

3.869699661s ago: executing program 5 (id=1623):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f00000000c0))
pwritev(r3, &(0x7f0000000080)=[{&(0x7f00000002c0)='\x00!', 0x2}], 0xa, 0x0, 0x0)

3.803213392s ago: executing program 6 (id=1624):
r0 = io_uring_setup(0x5f41, &(0x7f00000001c0)={0x0, 0x0, 0x2})
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000100))
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

3.557364106s ago: executing program 5 (id=1627):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000003580)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0xffffffffffffffff}], 0x9, 0x0)

3.557121406s ago: executing program 6 (id=1628):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x44000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

3.306728519s ago: executing program 5 (id=1631):
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
creat(0x0, 0xe5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e000000000000000400"], 0x48)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
fchdir(0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r2, &(0x7f0000000380)={0x2, 0x4e24, @local}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
socket$packet(0x11, 0x2, 0x300)

3.25580134s ago: executing program 6 (id=1633):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x24000000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.933662305s ago: executing program 4 (id=1634):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r1}, 0x10)
r2 = io_uring_setup(0x1d7e, &(0x7f00000004c0))
io_uring_register$IORING_REGISTER_FILES2(r2, 0xd, &(0x7f0000000680)={0x1, 0x1, 0x0, &(0x7f0000000b80)=[{0x0}], 0x0}, 0x20)

2.780645688s ago: executing program 3 (id=1635):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="00020201"], 0x18)

2.697231149s ago: executing program 4 (id=1636):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30"], 0xec}}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

2.481659722s ago: executing program 3 (id=1637):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x3, 0x2a1, &(0x7f0000000f40)="$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")
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, 0x0, 0x80)
r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x8})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

2.352888084s ago: executing program 4 (id=1638):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r3=>0x0})
bind$can_raw(r2, &(0x7f0000000000)={0x1d, r3}, 0x10)
bind$can_raw(r2, &(0x7f0000000080), 0x10)

2.119139418s ago: executing program 3 (id=1639):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0xecec, 0x101201)
ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f0000000080)=""/45)

1.349745339s ago: executing program 1 (id=1640):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r0}, 0x18)
timer_create(0x3, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{0x77359400}, {0x0, 0x9}}, 0x0)

1.27345285s ago: executing program 3 (id=1641):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x6c, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x44, @loopback={0x4000000000000000, 0x2e}, 0x2037}}, {0x20, 0x2, @in6={0xa, 0x0, 0xfffffffc, @mcast1}}}}]}]}, 0x6c}}, 0x0)

1.021378714s ago: executing program 3 (id=1642):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000008c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x400, 0x0, 0x268, 0x300, 0x268, 0x268, 0x378, 0x460, 0x460, 0x378, 0x460, 0x9, 0x0, {[{{@uncond, 0x0, 0x1f8, 0x220, 0x0, {0x9401}, [@common=@inet=@hashlimit2={{0x150}, {'hsr0\x00', {0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x9}}}]}, @common=@unspec=@NFQUEUE2={0x28}}, {{@ipv6={@private2, @remote, [], [], 'ip6gretap0\x00', 'ip6_vti0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x460)

961.663035ms ago: executing program 1 (id=1643):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

799.480838ms ago: executing program 3 (id=1644):
open(0x0, 0x40c5, 0x130)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x60, &(0x7f00000009c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x40}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='svc_wake_up\x00', r2, 0x0, 0x2}, 0x18)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002d00)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x40}}, 0x0)

767.066258ms ago: executing program 1 (id=1645):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
mknod$loop(&(0x7f0000000300)='./file0\x00', 0x100000000000600d, 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0xa0c006, &(0x7f00000002c0)={[{@i_version}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@max_dir_size_kb}, {@data_err_abort}], [{@seclabel}]}, 0x1, 0x43d, &(0x7f0000000900)="$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")

341.755034ms ago: executing program 1 (id=1646):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r1}, 0x10)
r2 = io_uring_setup(0x1d7e, &(0x7f00000004c0))
io_uring_register$IORING_REGISTER_FILES2(r2, 0xd, &(0x7f0000000680)={0x1, 0x1, 0x0, &(0x7f0000000b80)=[{0x0}], 0x0}, 0x20)

159.125498ms ago: executing program 1 (id=1647):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x7, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
symlink(&(0x7f0000000780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

0s ago: executing program 1 (id=1648):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000000)=0x930d, 0x4)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'erspan0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f00000002c0)="05030500d3fc030000004788031c", 0xe, 0x0, &(0x7f0000000140)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @broadcast}, 0x14)

kernel console output (not intermixed with test programs):

fs error (device loop1): ext4_truncate:4311: inode #16: comm syz.1.652: mark_inode_dirty error
[  199.839201][ T6158] EXT4-fs (loop1): Remounting filesystem read-only
[  199.858830][ T6158] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  199.899408][ T6158] EXT4-fs (loop1): Remounting filesystem read-only
[  199.908980][   T27] kauditd_printk_skb: 105 callbacks suppressed
[  199.908996][   T27] audit: type=1326 audit(1742850204.628:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  199.947459][ T6183] loop2: detected capacity change from 0 to 1024
[  199.951126][ T6158] EXT4-fs (loop1): 1 truncate cleaned up
[  199.966975][ T5523] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  199.986464][ T6158] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  200.003961][ T5523] EXT4-fs error (device loop1): ext4_release_dquot:6818: comm kworker/u4:18: Failed to release dquot type 1
[  200.006788][   T27] audit: type=1326 audit(1742850204.668:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  200.022941][ T6158] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.057574][ T6188] loop0: detected capacity change from 0 to 128
[  200.065054][ T6188] EXT4-fs: Ignoring removed nobh option
[  200.071123][ T5523] EXT4-fs (loop1): Remounting filesystem read-only
[  200.079746][ T6183] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  200.096474][   T27] audit: type=1326 audit(1742850204.668:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  200.120432][   T27] audit: type=1326 audit(1742850204.668:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  200.132107][ T6183] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.159699][   T27] audit: type=1326 audit(1742850204.668:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  200.160935][ T6188] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  200.182324][   T27] audit: type=1326 audit(1742850204.668:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  200.214713][   T27] audit: type=1326 audit(1742850204.668:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  200.237112][   T27] audit: type=1326 audit(1742850204.668:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  200.259935][   T27] audit: type=1326 audit(1742850204.668:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  200.286327][ T6188] ext4 filesystem being mounted at /133/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  200.298015][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  200.390456][ T6183] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  200.424567][ T6183] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 1 with error 28
[  200.475284][ T6183] EXT4-fs (loop2): This should not happen!! Data will be lost
[  200.475284][ T6183] 
[  200.527531][ T6183] EXT4-fs (loop2): Total free blocks count 0
[  200.562510][ T6183] EXT4-fs (loop2): Free/Dirty block details
[  200.573681][ T6183] EXT4-fs (loop2): free_blocks=4293918736
[  200.596399][ T6207] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.601315][ T6183] EXT4-fs (loop2): dirty_blocks=16
[  200.605231][ T6207] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.629849][ T6183] EXT4-fs (loop2): Block reservation details
[  200.638568][ T6183] EXT4-fs (loop2): i_reserved_data_blocks=1
[  200.749396][ T6210] device bridge_slave_1 left promiscuous mode
[  200.791053][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  200.794301][ T6210] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.861397][ T6217] loop3: detected capacity change from 0 to 256
[  200.915279][ T6219] hub 9-0:1.0: USB hub found
[  200.917577][ T6210] device bridge_slave_0 left promiscuous mode
[  200.961848][ T6219] hub 9-0:1.0: 1 port detected
[  200.992595][ T6210] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.074934][ T6225] syz.4.676 uses obsolete (PF_INET,SOCK_PACKET)
[  201.287439][ T6231] bridge0: port 3(vlan2) entered blocking state
[  201.294132][ T6231] bridge0: port 3(vlan2) entered disabled state
[  201.479292][ T6237] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  201.813611][ T6246] netlink: 24 bytes leftover after parsing attributes in process `syz.3.684'.
[  201.828924][ T6248] loop1: detected capacity change from 0 to 1024
[  201.904486][ T6248] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  201.914418][ T6248] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  201.938928][ T6248] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  202.198130][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  202.286084][ T6261] loop3: detected capacity change from 0 to 1024
[  202.301322][ T6263] loop2: detected capacity change from 0 to 256
[  202.384405][ T6261] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  202.436180][ T6261] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  202.505680][ T6261] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  202.546491][ T6261] EXT4-fs (loop3): This should not happen!! Data will be lost
[  202.546491][ T6261] 
[  202.576646][ T6261] EXT4-fs (loop3): Total free blocks count 0
[  202.605491][ T6261] EXT4-fs (loop3): Free/Dirty block details
[  202.612639][ T6261] EXT4-fs (loop3): free_blocks=68451041280
[  202.640891][ T6261] EXT4-fs (loop3): dirty_blocks=16
[  202.666016][ T6261] EXT4-fs (loop3): Block reservation details
[  202.705512][ T6261] EXT4-fs (loop3): i_reserved_data_blocks=1
[  202.854111][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  203.591599][ T6299] loop3: detected capacity change from 0 to 256
[  203.601191][ T6293] loop4: detected capacity change from 0 to 8192
[  203.981589][ T6307] loop1: detected capacity change from 0 to 512
[  204.024813][ T6307] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  204.050966][ T6307] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.186252][ T6307] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  204.920011][ T6324] random: crng reseeded on system resumption
[  204.973068][   T27] kauditd_printk_skb: 173 callbacks suppressed
[  204.973086][   T27] audit: type=1326 audit(1742850209.688:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.3.714" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x0
[  205.043056][ T6307] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  205.131115][   T27] audit: type=1326 audit(1742850209.848:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6306 comm="syz.4.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  205.224575][   T27] audit: type=1326 audit(1742850209.848:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6306 comm="syz.4.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  205.520144][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  206.190647][ T6342] loop3: detected capacity change from 0 to 256
[  206.382638][   T27] audit: type=1326 audit(1742850211.098:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6345 comm="syz.2.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  206.458876][   T27] audit: type=1326 audit(1742850211.098:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6345 comm="syz.2.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  206.575547][   T27] audit: type=1326 audit(1742850211.098:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6345 comm="syz.2.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  206.655631][   T27] audit: type=1326 audit(1742850211.098:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6345 comm="syz.2.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  206.655682][   T27] audit: type=1326 audit(1742850211.098:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6345 comm="syz.2.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  207.036381][ T6360] loop2: detected capacity change from 0 to 164
[  207.075117][ T6360] Unable to read rock-ridge attributes
[  207.186708][ T6364] loop4: detected capacity change from 0 to 512
[  207.240873][ T6364] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.732: inode #1: comm syz.4.732: iget: illegal inode #
[  207.275716][ T6364] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.732: error while reading EA inode 1 err=-117
[  207.371473][ T6364] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  207.395765][ T6364] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.732: inode #1: comm syz.4.732: iget: illegal inode #
[  207.428667][ T6364] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.732: error while reading EA inode 1 err=-117
[  207.451957][ T6372] loop3: detected capacity change from 0 to 1024
[  207.466265][ T6364] EXT4-fs (loop4): 1 orphan inode deleted
[  207.472073][ T6364] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  207.516945][ T6372] EXT4-fs: Ignoring removed nobh option
[  207.549336][ T6372] EXT4-fs: Ignoring removed bh option
[  207.551091][ T6374] siw: device registration error -23
[  207.568916][ T6372] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  207.678947][ T6372] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  207.710154][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  207.747855][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  207.833424][ T6382] Illegal XDP return value 4294967274 on prog  (id 311) dev syz_tun, expect packet loss!
[  207.916868][ T6384] sd 0:0:1:0: device reset
[  208.052156][ T6388] loop2: detected capacity change from 0 to 512
[  208.077739][ T6388] EXT4-fs: Ignoring removed nobh option
[  208.118941][ T6388] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13
[  208.211542][ T6388] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.742: attempt to clear invalid blocks 2 len 1
[  208.304886][ T6388] EXT4-fs (loop2): Remounting filesystem read-only
[  208.377117][ T6388] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  208.634131][ T6388] EXT4-fs (loop2): Remounting filesystem read-only
[  208.680495][ T6388] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.742: invalid indirect mapped block 1819239214 (level 0)
[  209.055837][ T6388] EXT4-fs (loop2): Remounting filesystem read-only
[  209.105489][ T6388] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.742: invalid indirect mapped block 1819239214 (level 1)
[  209.155463][   T27] audit: type=1326 audit(1742850213.868:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  209.213505][ T6388] EXT4-fs (loop2): Remounting filesystem read-only
[  209.236715][ T6388] EXT4-fs (loop2): 1 truncate cleaned up
[  209.242425][ T6388] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  209.255455][   T27] audit: type=1326 audit(1742850213.928:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  209.405682][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  209.622394][ T6413] loop1: detected capacity change from 0 to 764
[  209.807241][ T6416] sd 0:0:1:0: device reset
[  209.985653][ T6419] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  210.758844][   T27] kauditd_printk_skb: 17 callbacks suppressed
[  210.758862][   T27] audit: type=1326 audit(1742850215.418:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  210.787980][   T27] audit: type=1326 audit(1742850215.418:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  210.810753][   T27] audit: type=1326 audit(1742850215.418:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  210.842385][   T27] audit: type=1326 audit(1742850215.478:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  210.867707][   T27] audit: type=1326 audit(1742850215.478:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  210.891238][   T27] audit: type=1326 audit(1742850215.478:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  210.914087][   T27] audit: type=1326 audit(1742850215.478:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  210.955626][   T27] audit: type=1326 audit(1742850215.478:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  211.039814][   T27] audit: type=1326 audit(1742850215.478:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3db6b8d1a3 code=0x7ffc0000
[  211.122841][   T27] audit: type=1326 audit(1742850215.718:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3db6b8bc1f code=0x7ffc0000
[  211.208277][ T6404] loop4: detected capacity change from 0 to 8192
[  211.459724][ T6438] loop2: detected capacity change from 0 to 512
[  211.539023][ T6438] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  211.585743][ T6438] ext4 filesystem being mounted at /148/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  212.028035][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  212.631909][ T6456] loop2: detected capacity change from 0 to 1024
[  212.719549][ T6456] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.768: bad orphan inode 2304
[  212.799394][ T6456] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  213.475601][ T6461] infiniband syz!: set active
[  213.500130][ T6461] infiniband syz!: added team_slave_0
[  213.558545][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  213.721814][ T6461] RDS/IB: syz!: added
[  213.756290][ T6461] smc: adding ib device syz! with port count 1
[  213.803110][ T6461] smc:    ib device syz! port 1 has pnetid 
[  214.083017][ T6474] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  214.391044][ T6480] loop1: detected capacity change from 0 to 1024
[  214.515830][ T6480] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  214.605519][ T6480] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  214.815728][ T6480] EXT4-fs error (device loop1): ext4_get_journal_inode:5723: inode #5: comm syz.1.776: unexpected bad inode w/o EXT4_IGET_BAD
[  215.011481][ T6480] EXT4-fs (loop1): no journal found
[  215.148346][ T6480] EXT4-fs (loop1): can't get journal size
[  215.447270][ T6480] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  215.499179][ T6480] syz.1.776[6480] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.499286][ T6480] syz.1.776[6480] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.664836][ T6490] loop4: detected capacity change from 0 to 256
[  215.706240][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  216.299812][ T6501] loop1: detected capacity change from 0 to 512
[  216.354852][ T6501] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  216.406380][ T6501] EXT4-fs (loop1): invalid journal inode
[  216.425657][ T6501] EXT4-fs (loop1): can't get journal size
[  216.475755][ T6501] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e016c118, mo2=0002]
[  216.502259][ T6501] System zones: 1-12, 13-13
[  216.528844][ T6501] EXT4-fs (loop1): 1 truncate cleaned up
[  216.535610][ T6501] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  216.550991][ T4269] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  216.561433][ T4269] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  216.573774][ T4269] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  216.583976][ T4269] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  216.591633][ T4269] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  216.599209][ T4269] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  216.844243][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  217.019673][ T6509] loop1: detected capacity change from 0 to 764
[  217.415099][ T6514] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  218.682906][ T6525] loop2: detected capacity change from 0 to 2048
[  218.685868][ T4262] Bluetooth: hci5: command 0x0409 tx timeout
[  218.979614][ T6503] chnl_net:caif_netlink_parms(): no params data found
[  218.982069][ T6525] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  219.875684][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  219.958719][ T6503] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.997652][ T6503] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.050999][ T6503] device bridge_slave_0 entered promiscuous mode
[  220.152808][ T6503] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.160092][ T6503] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.183127][ T6540] loop2: detected capacity change from 0 to 256
[  220.190976][ T6503] device bridge_slave_1 entered promiscuous mode
[  220.251121][ T6542] loop4: detected capacity change from 0 to 164
[  220.289471][ T6542] Unsupported NM flag settings (8)
[  220.440937][ T6503] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  220.527830][ T6503] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  220.765704][ T4262] Bluetooth: hci5: command 0x041b tx timeout
[  220.845658][ T6503] team0: Port device team_slave_0 added
[  220.878859][ T6555] IPv6: Can't replace route, no match found
[  221.018627][ T6503] team0: Port device team_slave_1 added
[  221.991669][   T27] kauditd_printk_skb: 59 callbacks suppressed
[  221.991686][   T27] audit: type=1326 audit(1742850226.708:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6558 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  222.108157][ T6503] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.125497][ T6503] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.151741][   T27] audit: type=1326 audit(1742850226.748:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6558 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  222.203250][ T6567] loop1: detected capacity change from 0 to 512
[  222.215477][   T27] audit: type=1326 audit(1742850226.748:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6558 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  222.237441][ T6569] loop3: detected capacity change from 0 to 512
[  222.244589][ T6569] EXT4-fs: Ignoring removed i_version option
[  222.247140][ T6503] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.300570][ T6503] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.305553][ T6567] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  222.319168][   T27] audit: type=1326 audit(1742850226.748:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6558 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  222.345469][ T6503] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.372954][ T6569] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  222.406948][ T6567] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002]
[  222.434261][   T27] audit: type=1326 audit(1742850226.748:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6558 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  222.436474][ T6567] EXT4-fs (loop1): orphan cleanup on readonly fs
[  222.512373][ T6503] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.556465][ T6567] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #11: comm syz.1.803: attempt to clear invalid blocks 1024 len 1
[  222.586839][ T6567] EXT4-fs (loop1): Remounting filesystem read-only
[  222.603441][ T6569] EXT4-fs (loop3): 1 truncate cleaned up
[  222.623129][ T6567] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.803: bg 0: block 361: padding at end of block bitmap is not set
[  222.655949][ T6569] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  222.666902][ T6567] EXT4-fs (loop1): Remounting filesystem read-only
[  222.703692][ T6567] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  222.745879][ T6567] EXT4-fs (loop1): Remounting filesystem read-only
[  222.765190][ T6567] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.803: invalid indirect mapped block 1811939328 (level 0)
[  222.783373][ T6503] device hsr_slave_0 entered promiscuous mode
[  222.830995][ T6503] device hsr_slave_1 entered promiscuous mode
[  222.845726][ T4262] Bluetooth: hci5: command 0x040f tx timeout
[  222.863843][ T6503] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  222.873811][ T6567] EXT4-fs (loop1): Remounting filesystem read-only
[  222.885114][ T6577] loop2: detected capacity change from 0 to 4096
[  222.893047][ T6503] Cannot create hsr debugfs directory
[  222.911527][ T6567] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.803: invalid indirect mapped block 2185560079 (level 1)
[  222.933332][ T6579] loop4: detected capacity change from 0 to 256
[  222.987637][ T6577] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  223.006665][ T6567] EXT4-fs (loop1): Remounting filesystem read-only
[  223.013472][ T6567] EXT4-fs (loop1): 1 truncate cleaned up
[  223.108381][ T6567] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  223.271144][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  223.343199][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  223.344232][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  223.568956][ T6588] loop2: detected capacity change from 0 to 164
[  223.695700][ T6588] Unsupported NM flag settings (8)
[  223.721559][ T6503] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  223.768071][ T6590] loop3: detected capacity change from 0 to 764
[  223.777084][ T6503] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  223.802370][ T6503] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  224.007557][ T6503] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  224.048803][ T6595] ieee802154 phy0 wpan0: encryption failed: -22
[  224.141139][ T6597] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  224.962714][ T4262] Bluetooth: hci5: command 0x0419 tx timeout
[  226.249132][ T6503] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.030127][ T6616] loop4: detected capacity change from 0 to 512
[  227.176226][ T6616] EXT4-fs: Ignoring removed i_version option
[  227.184207][ T6616] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  227.184614][ T6503] 8021q: adding VLAN 0 to HW filter on device team0
[  227.225281][ T6616] EXT4-fs (loop4): 1 truncate cleaned up
[  227.241441][ T6616] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  227.260142][ T5193] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  227.286309][ T5193] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  227.525623][ T6622] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  228.440321][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  228.558753][   T27] audit: type=1326 audit(1742850233.278:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.563697][ T6631] loop4: detected capacity change from 0 to 256
[  228.596572][   T27] audit: type=1326 audit(1742850233.308:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.638664][   T27] audit: type=1326 audit(1742850233.308:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.670924][ T6622] bond0: (slave bond_slave_0): Releasing backup interface
[  228.686007][   T27] audit: type=1326 audit(1742850233.308:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.725259][   T27] audit: type=1326 audit(1742850233.308:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.757380][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  228.773937][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  228.783391][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.790576][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  228.807659][   T27] audit: type=1326 audit(1742850233.318:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.840192][   T27] audit: type=1326 audit(1742850233.318:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.873637][   T27] audit: type=1326 audit(1742850233.318:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.911523][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  228.925488][   T27] audit: type=1326 audit(1742850233.318:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  228.988876][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  229.019159][   T27] audit: type=1326 audit(1742850233.318:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6630 comm="syz.1.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  229.043224][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.050450][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  229.060114][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  229.072592][ T6627] netlink: 4 bytes leftover after parsing attributes in process `syz.2.823'.
[  229.167431][ T6637] 9pnet_fd: p9_fd_create_unix (6637): problem connecting socket: éq‰Y’3aK: -91
[  229.938855][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  229.984863][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  229.999798][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  230.057488][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  230.060988][ T6645] loop3: detected capacity change from 0 to 764
[  230.066537][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  230.127903][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  230.156517][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  230.378682][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  230.396535][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  230.420943][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  230.483425][ T6650] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  230.681535][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  231.111555][ T6503] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  231.810618][ T6668] loop2: detected capacity change from 0 to 512
[  231.873669][ T6668] EXT4-fs: Ignoring removed i_version option
[  231.908632][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  231.925919][ T6615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  231.964956][ T6668] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  232.044242][ T6670] loop1: detected capacity change from 0 to 256
[  232.540494][ T6503] 8021q: adding VLAN 0 to HW filter on device batadv0
[  232.629478][ T6668] EXT4-fs (loop2): 1 truncate cleaned up
[  232.655971][ T6668] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  233.355006][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  233.553805][ T6695] batman_adv: batadv0: Adding interface: ip6gretap1
[  233.575726][ T6695] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  233.684569][ T6695] batman_adv: batadv0: Interface activated: ip6gretap1
[  233.765099][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  233.784686][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  233.878345][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  233.917256][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  233.970994][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  233.982865][ T6709] loop3: detected capacity change from 0 to 128
[  234.010224][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  234.258218][ T6503] device veth0_vlan entered promiscuous mode
[  234.294015][ T6503] device veth1_vlan entered promiscuous mode
[  234.782889][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  235.126671][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  235.269177][ T4309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  235.296868][ T4309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  235.327438][ T6503] device veth0_macvtap entered promiscuous mode
[  235.362804][ T6503] device veth1_macvtap entered promiscuous mode
[  235.436654][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.459236][ T6722] loop2: detected capacity change from 0 to 256
[  235.483642][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.634123][ T6726] loop4: detected capacity change from 0 to 164
[  235.643268][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.679416][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.690853][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.701490][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.711478][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.722134][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.734334][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.751815][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.775555][ T6503] batman_adv: batadv0: Interface activated: batadv_slave_0
[  236.376615][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.408601][ T6726] Unsupported NM flag settings (8)
[  236.469858][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.515626][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.526363][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.536555][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.547326][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.557611][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.568362][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.578444][ T6503] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.601764][ T6503] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.625256][ T6503] batman_adv: batadv0: Interface activated: batadv_slave_1
[  236.633193][ T5505] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  236.659089][ T6735] loop3: detected capacity change from 0 to 764
[  236.663282][ T5505] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  236.679300][ T5505] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  236.712807][ T5505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  236.762379][ T5505] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  236.789355][ T5505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  236.912212][ T6503] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  236.922819][ T6503] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  236.932724][ T6503] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  236.952900][ T6503] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  237.032153][ T6745] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  237.908792][ T6739] sctp: failed to load transform for md5: -2
[  238.561379][ T5193] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.630048][ T6760] No such timeout policy "syz1"
[  238.664543][ T5193] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.692095][ T6773] loop2: detected capacity change from 0 to 164
[  239.780102][ T6773] Unsupported NM flag settings (8)
[  239.882065][ T6776] loop1: detected capacity change from 0 to 256
[  240.191723][ T5505] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  240.256228][ T5193] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.273922][ T6782] loop2: detected capacity change from 0 to 764
[  240.305396][ T5193] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  240.546757][ T5505] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  240.641618][ T6788] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  241.556314][ T6780] loop4: detected capacity change from 0 to 8192
[  242.155921][ T6811] loop3: detected capacity change from 0 to 164
[  242.260291][ T6811] Unsupported NM flag settings (8)
[  242.603237][ T6824] loop4: detected capacity change from 0 to 764
[  243.019485][ T6835] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  244.286891][ T6847] netlink: 36 bytes leftover after parsing attributes in process `syz.2.891'.
[  244.287578][ T6845] loop3: detected capacity change from 0 to 2048
[  244.321858][ T6849] loop1: detected capacity change from 0 to 164
[  244.359081][ T6849] Unsupported NM flag settings (8)
[  244.394888][ T6845] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  244.660618][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  244.907629][ T6870] loop3: detected capacity change from 0 to 256
[  245.216316][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  245.216353][   T27] audit: type=1326 audit(1742850249.938:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  245.369030][   T27] audit: type=1326 audit(1742850249.938:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  245.486353][   T27] audit: type=1326 audit(1742850249.938:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  245.595287][   T27] audit: type=1326 audit(1742850249.938:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  245.689635][   T27] audit: type=1326 audit(1742850249.938:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  245.718704][ T6892] loop2: detected capacity change from 0 to 164
[  245.760196][ T6892] Unsupported NM flag settings (8)
[  245.768660][   T27] audit: type=1326 audit(1742850249.938:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  245.852529][   T27] audit: type=1326 audit(1742850249.938:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  245.959103][   T27] audit: type=1326 audit(1742850249.938:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  246.093040][   T27] audit: type=1326 audit(1742850250.118:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  246.110442][ T6899] loop1: detected capacity change from 0 to 2048
[  246.118308][ T6896] loop2: detected capacity change from 0 to 2048
[  246.169159][   T27] audit: type=1326 audit(1742850250.178:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.5.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  246.224107][ T6896] Alternate GPT is invalid, using primary GPT.
[  246.248377][ T6899] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  246.255094][ T6896]  loop2: p2 p3 p7
[  246.632443][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  247.051126][ T6917] loop4: detected capacity change from 0 to 164
[  247.663046][ T6920] loop2: detected capacity change from 0 to 8192
[  247.672623][ T6917] Unsupported NM flag settings (8)
[  247.849656][ T6914] loop5: detected capacity change from 0 to 8192
[  248.224528][ T6932] loop1: detected capacity change from 0 to 764
[  248.359588][ T6935] loop2: detected capacity change from 0 to 2048
[  248.475307][ T6935] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  248.492397][ T6938] netlink: 4 bytes leftover after parsing attributes in process `syz.3.928'.
[  248.603369][ T6938] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.624897][ T6943] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  249.347474][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  249.380836][ T6938] device bridge_slave_1 left promiscuous mode
[  249.405597][ T6938] bridge0: port 2(bridge_slave_1) entered disabled state
[  250.714796][ T6976] loop5: detected capacity change from 0 to 764
[  251.021203][ T6974] can0: slcan on ttyS3.
[  251.121594][ T6984] loop1: detected capacity change from 0 to 1024
[  251.159751][ T6984] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  251.397197][ T6984] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  251.420103][ T6984] EXT4-fs (loop1): unmounting filesystem.
[  251.765740][ T6976] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  252.946222][   T27] audit: type=1326 audit(1742850257.668:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  252.991978][ T7012] smc: net device bond0 applied user defined pnetid SYZ0
[  253.044467][ T7013] smc: net device bond0 erased user defined pnetid SYZ0
[  253.065491][   T27] audit: type=1326 audit(1742850257.668:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.179181][   T27] audit: type=1326 audit(1742850257.668:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.255533][   T27] audit: type=1326 audit(1742850257.668:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.376503][   T27] audit: type=1326 audit(1742850257.668:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.475871][   T27] audit: type=1326 audit(1742850257.668:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.566344][ T6972] can0 (unregistered): slcan off ttyS3.
[  253.586964][   T27] audit: type=1326 audit(1742850257.668:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.693692][   T27] audit: type=1326 audit(1742850257.688:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.740318][ T7025] loop2: detected capacity change from 0 to 512
[  253.754157][   T27] audit: type=1326 audit(1742850257.688:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.785966][   T27] audit: type=1326 audit(1742850257.688:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.1.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  253.842553][ T7025] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  253.886008][ T7025] ext4 filesystem being mounted at /197/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  254.498297][ T7039] loop5: detected capacity change from 0 to 256
[  254.996452][ T7049] loop1: detected capacity change from 0 to 164
[  255.022692][ T7049] Unable to read rock-ridge attributes
[  255.381351][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  255.404108][ T7062] loop5: detected capacity change from 0 to 764
[  255.728797][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  255.795049][ T7069] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  256.617023][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  256.644729][ T7072] loop2: detected capacity change from 0 to 164
[  256.730186][ T7068] loop1: detected capacity change from 0 to 512
[  256.810710][ T7068] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  256.813882][ T7072] Unsupported NM flag settings (8)
[  256.833213][ T7068] ext4 filesystem being mounted at /207/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  257.036995][ T7079] loop5: detected capacity change from 0 to 256
[  257.146664][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  257.385618][ T7087] loop1: detected capacity change from 0 to 2048
[  257.486950][ T7087] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  258.455792][   T27] kauditd_printk_skb: 170 callbacks suppressed
[  258.455810][   T27] audit: type=1326 audit(1742850262.918:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  258.634603][   T27] audit: type=1326 audit(1742850263.228:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  258.665454][   T27] audit: type=1326 audit(1742850263.228:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  258.667844][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  258.769942][   T27] audit: type=1326 audit(1742850263.228:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  258.879035][ T7113] loop5: detected capacity change from 0 to 164
[  258.917646][ T7116] netlink: 28 bytes leftover after parsing attributes in process `syz.3.992'.
[  258.919001][   T27] audit: type=1326 audit(1742850263.228:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  258.981769][ T7119] syz.1.990[7119] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  258.981876][ T7119] syz.1.990[7119] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  259.007321][ T7113] Unsupported NM flag settings (8)
[  259.034023][ T7116] netlink: 28 bytes leftover after parsing attributes in process `syz.3.992'.
[  259.037666][   T27] audit: type=1326 audit(1742850263.228:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  259.194409][   T27] audit: type=1326 audit(1742850263.228:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  259.287828][   T27] audit: type=1326 audit(1742850263.228:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  259.389251][   T27] audit: type=1326 audit(1742850263.228:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  259.429671][ T7130] loop5: detected capacity change from 0 to 256
[  259.491559][ T7133] smc: net device bond0 applied user defined pnetid SYZ0
[  259.497836][   T27] audit: type=1326 audit(1742850263.228:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7104 comm="syz.2.989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  259.517715][ T7133] smc: net device bond0 erased user defined pnetid SYZ0
[  259.680477][ T7136] loop4: detected capacity change from 0 to 2048
[  259.905059][ T7136] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  260.791676][ T7152] loop5: detected capacity change from 0 to 512
[  260.823213][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  260.869314][ T7152] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  260.883783][ T7158] loop1: detected capacity change from 0 to 164
[  260.946984][ T7152] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  261.036207][ T7158] Unsupported NM flag settings (8)
[  261.138426][ T7161] smc: net device bond0 applied user defined pnetid SYZ0
[  261.335636][ T7167] syz.1.1012[7167] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  261.335753][ T7167] syz.1.1012[7167] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  261.400295][ T7167] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[  261.527907][ T7173] loop2: detected capacity change from 0 to 256
[  261.790461][ T7178] loop1: detected capacity change from 0 to 512
[  261.874883][ T7178] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  261.946513][ T7178] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002]
[  261.968489][ T7181] loop4: detected capacity change from 0 to 2048
[  262.020244][ T7178] EXT4-fs (loop1): orphan cleanup on readonly fs
[  262.051793][ T7178] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #11: comm syz.1.1017: attempt to clear invalid blocks 1024 len 1
[  262.142567][ T7178] EXT4-fs (loop1): Remounting filesystem read-only
[  262.154036][ T7178] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1017: bg 0: block 361: padding at end of block bitmap is not set
[  262.236234][ T7178] EXT4-fs (loop1): Remounting filesystem read-only
[  262.285534][ T7178] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  262.352085][ T7181] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  262.392926][ T7178] EXT4-fs (loop1): Remounting filesystem read-only
[  262.473771][ T7178] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1017: invalid indirect mapped block 1811939328 (level 0)
[  262.865768][ T7178] EXT4-fs (loop1): Remounting filesystem read-only
[  262.903010][ T7178] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1017: invalid indirect mapped block 2185560079 (level 1)
[  263.001035][ T7178] EXT4-fs (loop1): Remounting filesystem read-only
[  263.031535][ T7178] EXT4-fs (loop1): 1 truncate cleaned up
[  263.071710][ T7178] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  263.138621][ T6503] EXT4-fs (loop5): unmounting filesystem.
[  263.153326][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  263.327377][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  263.349884][ T7190] loop2: detected capacity change from 0 to 164
[  263.420537][ T7190] Unsupported NM flag settings (8)
[  263.939870][ T7206] loop3: detected capacity change from 0 to 256
[  264.052302][ T7214] loop4: detected capacity change from 0 to 512
[  264.766483][ T7213] loop5: detected capacity change from 0 to 512
[  266.128253][   T27] kauditd_printk_skb: 3 callbacks suppressed
[  266.128296][   T27] audit: type=1326 audit(1742850270.848:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  266.485997][   T27] audit: type=1326 audit(1742850270.918:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  266.508643][ T7213] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  266.568534][ T7213] EXT4-fs (loop5): 1 truncate cleaned up
[  266.574315][ T7213] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  266.679742][ T7214] EXT4-fs warning (device loop4): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop4.
[  266.887582][ T7205] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.009815][   T27] audit: type=1326 audit(1742850270.928:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  267.162425][   T27] audit: type=1326 audit(1742850270.928:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  267.242355][ T7224] loop2: detected capacity change from 0 to 128
[  267.323566][ T7224] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  267.343452][   T27] audit: type=1326 audit(1742850270.938:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  267.368167][ T7226] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1032'.
[  267.410197][ T7224] ext4 filesystem being mounted at /211/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  267.651892][   T27] audit: type=1326 audit(1742850270.948:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  267.864583][   T27] audit: type=1326 audit(1742850270.958:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  267.970402][   T27] audit: type=1326 audit(1742850270.958:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  267.993051][   T27] audit: type=1326 audit(1742850270.958:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  268.021389][   T27] audit: type=1326 audit(1742850270.968:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.2.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fed8638d169 code=0x7ffc0000
[  268.187950][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  268.197043][ T6503] EXT4-fs (loop5): unmounting filesystem.
[  268.237359][ T7205] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.411792][ T7237] loop5: detected capacity change from 0 to 1024
[  268.496387][ T7237] EXT4-fs: Ignoring removed bh option
[  268.526762][ T7237] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  268.621140][ T7237] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  268.767173][ T7205] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.998704][ T7247] loop2: detected capacity change from 0 to 164
[  269.047627][ T6503] EXT4-fs (loop5): unmounting filesystem.
[  269.076519][ T7205] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.105912][ T7247] Unsupported NM flag settings (8)
[  269.317707][ T7205] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  269.322365][ T7253] loop3: detected capacity change from 0 to 256
[  269.403979][ T7205] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  269.450658][ T7205] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  269.569313][ T7205] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  269.752883][ T7259] loop2: detected capacity change from 0 to 512
[  269.985874][ T7259] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  269.996073][ T7259] ext4 filesystem being mounted at /214/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  270.634593][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  270.948704][ T7275] loop3: detected capacity change from 0 to 512
[  271.003731][ T7275] EXT4-fs (loop3): 1 orphan inode deleted
[  271.013336][ T7275] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  271.028042][   T33] EXT4-fs error (device loop3): ext4_release_dquot:6818: comm kworker/u4:2: Failed to release dquot type 1
[  271.040244][ T7275] ext4 filesystem being mounted at /208/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  271.119055][ T7281] loop5: detected capacity change from 0 to 164
[  271.142941][ T7281] Unsupported NM flag settings (8)
[  271.277228][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  271.490255][ T7291] loop2: detected capacity change from 0 to 256
[  272.028109][ T7306] loop5: detected capacity change from 0 to 512
[  272.261368][ T7306] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  272.271112][ T7306] ext4 filesystem being mounted at /37/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  272.921002][ T7311] loop2: detected capacity change from 0 to 256
[  272.960052][ T6503] EXT4-fs (loop5): unmounting filesystem.
[  273.099019][ T7313] loop3: detected capacity change from 0 to 164
[  273.137789][ T7315] loop4: detected capacity change from 0 to 256
[  273.162940][ T7313] Unsupported NM flag settings (8)
[  273.180621][ T7315] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  273.585243][ T7329] loop2: detected capacity change from 0 to 1024
[  273.610923][ T7332] loop4: detected capacity change from 0 to 164
[  273.616564][ T7329] EXT4-fs: Ignoring removed bh option
[  273.731880][ T7332] rock: directory entry would overflow storage
[  273.782283][ T7332] rock: sig=0x4f50, size=4, remaining=3
[  273.791156][ T7329] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  273.848172][ T7332] iso9660: Corrupted directory entry in block 4 of inode 1792
[  274.040013][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  274.168716][ T7343] loop3: detected capacity change from 0 to 512
[  274.199008][ T7343] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  274.251666][ T7343] EXT4-fs (loop3): 1 truncate cleaned up
[  274.257635][ T7343] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  275.473421][   T27] kauditd_printk_skb: 10 callbacks suppressed
[  275.473443][   T27] audit: type=1326 audit(1742850279.968:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  275.891265][   T27] audit: type=1326 audit(1742850280.228:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  275.914216][   T27] audit: type=1326 audit(1742850280.228:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  276.087070][ T7354] loop1: detected capacity change from 0 to 512
[  276.727317][   T27] audit: type=1326 audit(1742850280.228:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  276.816015][   T27] audit: type=1326 audit(1742850280.228:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  276.858447][ T7354] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  276.867566][ T7354] ext4 filesystem being mounted at /222/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  276.971610][ T7359] loop5: detected capacity change from 0 to 256
[  277.170988][   T27] audit: type=1326 audit(1742850280.228:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  277.193416][   T27] audit: type=1326 audit(1742850280.278:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  277.260192][   T27] audit: type=1326 audit(1742850280.278:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  277.306457][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  277.311106][   T27] audit: type=1326 audit(1742850280.278:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  277.336340][   T27] audit: type=1326 audit(1742850280.278:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7346 comm="syz.4.1078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3db6b8d169 code=0x7ffc0000
[  277.362166][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  277.638627][ T7367] netlink: 'syz.5.1084': attribute type 1 has an invalid length.
[  277.726061][ T7367] netlink: 92 bytes leftover after parsing attributes in process `syz.5.1084'.
[  277.735130][ T7367] NCSI netlink: No device for ifindex 0
[  278.298725][ T7348] loop4: detected capacity change from 0 to 8192
[  278.620881][ T7393] loop1: detected capacity change from 0 to 512
[  278.632732][ T7393] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  278.725868][ T7393] EXT4-fs (loop1): 1 truncate cleaned up
[  278.731610][ T7393] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  280.316597][ T7403] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1100'.
[  280.387998][ T7403] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1100'.
[  280.955541][ T7411] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1104'.
[  281.179616][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  281.687296][   T27] kauditd_printk_skb: 92 callbacks suppressed
[  281.687313][   T27] audit: type=1326 audit(1742850286.408:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  281.805250][   T27] audit: type=1326 audit(1742850286.408:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  281.884393][   T27] audit: type=1326 audit(1742850286.408:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  281.897120][ T7427] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.986365][   T27] audit: type=1326 audit(1742850286.408:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  282.025974][ T7429] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1112'.
[  282.084217][ T7434] IPv6: Can't replace route, no match found
[  282.086025][   T27] audit: type=1326 audit(1742850286.408:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  282.192491][   T27] audit: type=1326 audit(1742850286.438:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  282.260163][ T7427] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.316281][   T27] audit: type=1326 audit(1742850286.438:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  282.474622][   T27] audit: type=1326 audit(1742850286.438:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  282.510505][ T7427] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.561563][   T27] audit: type=1326 audit(1742850286.438:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  282.710261][   T27] audit: type=1326 audit(1742850286.438:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7428 comm="syz.1.1112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  282.740656][ T7427] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.797979][ T7444] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1119'.
[  283.035773][ T7427] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.096586][ T7427] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.173284][ T7427] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.237589][ T7427] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.592732][ T7464] IPv6: Can't replace route, no match found
[  285.441494][ T7511] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1148'.
[  286.310839][ T7532] loop3: detected capacity change from 0 to 164
[  286.416092][ T7532] rock: directory entry would overflow storage
[  286.422322][ T7532] rock: sig=0x4f50, size=4, remaining=3
[  286.464794][ T7532] iso9660: Corrupted directory entry in block 4 of inode 1792
[  286.761661][ T7547] loop2: detected capacity change from 0 to 512
[  286.819022][ T7547] EXT4-fs warning (device loop2): ext4_enable_quotas:7030: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[  286.878343][ T7547] EXT4-fs (loop2): mount failed
[  287.043801][ T7557] loop3: detected capacity change from 0 to 256
[  287.462104][   T27] kauditd_printk_skb: 36 callbacks suppressed
[  287.462120][   T27] audit: type=1326 audit(1742850292.178:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  287.593583][   T27] audit: type=1326 audit(1742850292.208:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  287.708443][   T27] audit: type=1326 audit(1742850292.208:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  287.787970][   T27] audit: type=1326 audit(1742850292.208:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  287.900720][   T27] audit: type=1326 audit(1742850292.208:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  288.020172][   T27] audit: type=1326 audit(1742850292.218:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  288.097387][   T27] audit: type=1326 audit(1742850292.218:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  288.213579][   T27] audit: type=1326 audit(1742850292.218:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  288.285916][   T27] audit: type=1326 audit(1742850292.228:1076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  288.394515][   T27] audit: type=1326 audit(1742850292.228:1077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7567 comm="syz.5.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  288.554203][ T7605] loop2: detected capacity change from 0 to 256
[  289.713770][ T7600] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.722474][ T7600] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.940964][ T7600] batman_adv: batadv0: Interface deactivated: dummy0
[  289.983970][ T7625] loop4: detected capacity change from 0 to 256
[  290.779773][ T7600] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  290.894391][ T7600] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  292.019768][ T7600] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  292.033935][ T7600] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  292.044859][ T7600] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  292.060575][ T7600] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  292.458789][ T7643] loop1: detected capacity change from 0 to 164
[  292.562210][ T7643] isofs_fill_super: bread failed, dev=loop1, iso_blknum=41, block=164
[  292.669128][ T7643] netlink: 1196 bytes leftover after parsing attributes in process `syz.1.1198'.
[  292.738900][   T27] kauditd_printk_skb: 43 callbacks suppressed
[  292.738918][   T27] audit: type=1326 audit(1742850297.458:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  292.756593][ T7649] loop2: detected capacity change from 0 to 256
[  292.835592][   T27] audit: type=1326 audit(1742850297.488:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  292.869324][ T7649] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  292.936195][   T27] audit: type=1326 audit(1742850297.508:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  293.046282][   T27] audit: type=1326 audit(1742850297.508:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  293.195440][   T27] audit: type=1326 audit(1742850297.508:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  293.288234][   T27] audit: type=1326 audit(1742850297.508:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  293.386304][ T7657] loop2: detected capacity change from 0 to 512
[  293.423147][   T27] audit: type=1326 audit(1742850297.508:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  293.451586][ T7659] loop3: detected capacity change from 0 to 164
[  293.505802][   T27] audit: type=1326 audit(1742850297.508:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  293.528765][   T27] audit: type=1326 audit(1742850297.508:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  293.552347][   T27] audit: type=1326 audit(1742850297.508:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  293.579934][ T7657] EXT4-fs warning (device loop2): ext4_enable_quotas:7030: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  293.636658][ T7657] EXT4-fs (loop2): mount failed
[  293.704599][ T7664] syz.3.1206: attempt to access beyond end of device
[  293.704599][ T7664] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  293.767819][ T7664] syz.3.1206: attempt to access beyond end of device
[  293.767819][ T7664] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  294.244361][ T7670] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1208'.
[  295.542269][ T7699] loop4: detected capacity change from 0 to 512
[  295.620115][ T7701] loop2: detected capacity change from 0 to 164
[  295.648120][ T7699] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  295.731536][ T7701] syz.2.1220: attempt to access beyond end of device
[  295.731536][ T7701] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  295.765532][ T7701] syz.2.1220: attempt to access beyond end of device
[  295.765532][ T7701] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  295.818629][ T7699] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  295.845509][ T7699] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  295.853691][ T7699] System zones: 0-1, 15-15, 18-18, 34-34
[  295.929667][ T7699] EXT4-fs (loop4): orphan cleanup on readonly fs
[  295.937627][ T7699] EXT4-fs warning (device loop4): ext4_enable_quotas:7030: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  295.952445][ T7699] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  295.985108][ T7699] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1219: bg 0: block 40: padding at end of block bitmap is not set
[  296.046150][ T7699] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  296.074143][ T7699] EXT4-fs (loop4): 1 truncate cleaned up
[  296.104336][ T7699] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  296.205090][ T7699] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  296.242010][ T7699] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  296.285579][ T7699] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  296.430653][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  296.672195][ T7725] loop5: detected capacity change from 0 to 164
[  296.777640][ T7725] isofs_fill_super: bread failed, dev=loop5, iso_blknum=41, block=164
[  297.593943][ T7736] loop2: detected capacity change from 0 to 512
[  297.656407][ T7736] EXT4-fs: Ignoring removed oldalloc option
[  297.687556][ T7725] netlink: 1196 bytes leftover after parsing attributes in process `syz.5.1228'.
[  297.689196][ T7736] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.1233: Parent and EA inode have the same ino 15
[  297.726281][ T7736] EXT4-fs (loop2): Remounting filesystem read-only
[  297.733068][ T7736] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.1233: Parent and EA inode have the same ino 15
[  297.849674][ T7736] EXT4-fs (loop2): Remounting filesystem read-only
[  297.890768][ T7736] EXT4-fs (loop2): 1 orphan inode deleted
[  297.935542][ T7736] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  298.176005][ T4254] EXT4-fs (loop2): unmounting filesystem.
[  299.383486][ T7779] netlink: 100 bytes leftover after parsing attributes in process `syz.4.1250'.
[  299.514119][ T7784] netlink: 'syz.1.1251': attribute type 13 has an invalid length.
[  299.869031][   T27] kauditd_printk_skb: 50 callbacks suppressed
[  299.869048][   T27] audit: type=1326 audit(1742850304.588:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7794 comm="syz.1.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  300.012906][   T27] audit: type=1326 audit(1742850304.588:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7794 comm="syz.1.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  300.126479][   T27] audit: type=1326 audit(1742850304.588:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7794 comm="syz.1.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  300.326811][   T27] audit: type=1326 audit(1742850304.588:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7794 comm="syz.1.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  300.389831][ T7808] loop3: detected capacity change from 0 to 512
[  300.648182][ T7808] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  300.657703][ T7808] ext4 filesystem being mounted at /251/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  300.978878][ T7807] loop1: detected capacity change from 0 to 512
[  301.049220][ T7807] EXT4-fs: Ignoring removed i_version option
[  301.055269][ T7807] EXT4-fs: Ignoring removed mblk_io_submit option
[  301.065416][   T27] audit: type=1326 audit(1742850304.588:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7794 comm="syz.1.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  301.099976][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  301.125732][ T7807] ext4: Unknown parameter 'seclabel'
[  301.325146][ T7820] loop4: detected capacity change from 0 to 1024
[  301.369046][ T7820] EXT4-fs: Ignoring removed nobh option
[  301.393408][ T7820] EXT4-fs: Ignoring removed bh option
[  301.423559][ T7820] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  301.525125][ T7820] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  301.558054][ T7828] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1267'.
[  301.567203][   T27] audit: type=1800 audit(1742850306.278:1184): pid=7820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1264" name="bus" dev="loop4" ino=18 res=0 errno=0
[  301.628502][ T7828] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1267'.
[  301.705979][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  301.869889][ T7813] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  301.887363][ T7813] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  301.912792][ T7813] Bluetooth: hci1: Suspend notifier action (1) failed: -4
[  301.927414][ T7837] loop3: detected capacity change from 0 to 256
[  301.941305][ T7813] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  301.955693][ T7813] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  301.970446][ T7813] Bluetooth: hci2: Suspend notifier action (1) failed: -4
[  301.985040][   T27] audit: type=1326 audit(1742850306.698:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7838 comm="syz.5.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  302.009559][ T7813] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  302.024766][ T7813] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  302.040584][ T7813] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  302.054278][   T27] audit: type=1326 audit(1742850306.738:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7838 comm="syz.5.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  302.081999][ T7813] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  302.095002][ T7813] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  302.110243][ T7813] Bluetooth: hci4: Suspend notifier action (1) failed: -4
[  302.124337][   T27] audit: type=1326 audit(1742850306.738:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7838 comm="syz.5.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  302.167776][ T7813] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  302.203579][ T7813] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  302.216523][ T7813] Bluetooth: hci5: Suspend notifier action (1) failed: -4
[  302.256257][   T27] audit: type=1326 audit(1742850306.738:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7838 comm="syz.5.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  302.356673][ T7844] loop3: detected capacity change from 0 to 512
[  302.392687][ T7846] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1275'.
[  302.461613][ T7844] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  302.515679][ T7844] ext4 filesystem being mounted at /255/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  302.758716][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  303.010311][ T7868] netlink: 'syz.5.1287': attribute type 21 has an invalid length.
[  303.072671][ T7869] loop1: detected capacity change from 0 to 164
[  303.247042][ T4262] Bluetooth: hci1: command 0x0c1a tx timeout
[  303.923119][ T7900] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  303.965709][ T4262] Bluetooth: hci2: command 0x0c1a tx timeout
[  304.045761][ T4262] Bluetooth: hci3: command 0x0c1a tx timeout
[  304.125663][ T4262] Bluetooth: hci4: command 0x0c1a tx timeout
[  304.205576][ T4262] Bluetooth: hci5: command 0x0c1a tx timeout
[  304.575096][ T7917] binfmt_misc: register: failed to install interpreter file ./file0
[  304.660711][ T7917] loop3: detected capacity change from 0 to 512
[  304.706732][ T7917] EXT4-fs: Ignoring removed oldalloc option
[  304.724358][ T7917] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  304.789630][ T7917] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec018, mo2=0002]
[  304.815470][ T7917] System zones: 1-12
[  304.837228][ T7917] EXT4-fs (loop3): 1 truncate cleaned up
[  304.875519][ T7917] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  305.198628][ T7917] loop3: detected capacity change from 512 to 64
[  305.325996][ T4262] Bluetooth: hci1: command 0x0406 tx timeout
[  305.537287][ T7934] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.644732][ T7934] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.724715][ T4263] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  305.806755][ T7934] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.826072][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  305.940365][ T7934] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.045722][ T4262] Bluetooth: hci2: command 0x0406 tx timeout
[  306.125613][ T4262] Bluetooth: hci3: command 0x0406 tx timeout
[  306.205568][ T4262] Bluetooth: hci4: command 0x0406 tx timeout
[  306.258557][ T7934] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  306.285689][ T4262] Bluetooth: hci5: command 0x0406 tx timeout
[  306.299833][   T27] kauditd_printk_skb: 65 callbacks suppressed
[  306.299851][   T27] audit: type=1326 audit(1742850311.018:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  306.400272][ T7934] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  306.429066][   T27] audit: type=1326 audit(1742850311.048:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  306.459370][ T7965] syz.1.1323[7965] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  306.459529][ T7965] syz.1.1323[7965] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  306.501217][ T7934] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  306.530022][   T27] audit: type=1326 audit(1742850311.048:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  306.600900][   T27] audit: type=1326 audit(1742850311.048:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  306.646742][ T7934] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  306.685988][ T7967] loop5: detected capacity change from 0 to 512
[  306.705445][   T27] audit: type=1326 audit(1742850311.068:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f49cc18d1a3 code=0x7ffc0000
[  306.741942][ T7967] EXT4-fs (loop5): Invalid log block size: 256
[  306.822060][   T27] audit: type=1326 audit(1742850311.068:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f49cc18d1a3 code=0x7ffc0000
[  306.893103][ T7969] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1325'.
[  306.908689][   T27] audit: type=1326 audit(1742850311.068:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  307.049537][   T27] audit: type=1326 audit(1742850311.068:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  307.095419][   T27] audit: type=1326 audit(1742850311.068:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  307.129820][ T7973] binfmt_misc: register: failed to install interpreter file ./file0
[  307.174352][ T7973] loop5: detected capacity change from 0 to 512
[  307.208324][   T27] audit: type=1326 audit(1742850311.068:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7960 comm="syz.3.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  307.233832][ T7973] EXT4-fs: Ignoring removed oldalloc option
[  307.266756][ T7973] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  307.352418][ T7973] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec018, mo2=0002]
[  307.371777][ T7973] System zones: 1-12
[  307.389421][ T7973] EXT4-fs (loop5): 1 truncate cleaned up
[  307.425487][ T7973] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  307.701756][ T7989] loop1: detected capacity change from 0 to 764
[  307.735711][ T7973] loop5: detected capacity change from 512 to 64
[  307.832227][ T7996] loop4: detected capacity change from 0 to 512
[  308.686305][ T7998] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  309.769963][ T7996] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  309.779112][ T7996] ext4 filesystem being mounted at /287/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  309.997842][ T6503] EXT4-fs error (device loop5): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  310.147368][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  310.166441][ T6503] EXT4-fs (loop5): unmounting filesystem.
[  310.819067][ T8035] loop2: detected capacity change from 0 to 764
[  311.087978][ T8042] binfmt_misc: register: failed to install interpreter file ./file0
[  311.179638][ T8044] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  312.824595][ T8060] loop1: detected capacity change from 0 to 512
[  312.861097][ T8060] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  313.117632][ T8060] EXT4-fs (loop1): 1 orphan inode deleted
[  313.123527][ T8060] EXT4-fs (loop1): 1 truncate cleaned up
[  313.129388][ T8060] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  313.243904][ T8060] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  313.261818][ T8060] EXT4-fs (loop1): Remounting filesystem read-only
[  314.152498][   T56] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.498326][   T56] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.008091][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  315.103246][   T56] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.203651][ T8072] loop1: detected capacity change from 0 to 764
[  315.294600][   T56] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.643103][ T8078] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  316.683879][ T4256] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  316.726868][ T4256] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  316.735294][ T8083] loop4: detected capacity change from 0 to 512
[  316.736033][ T4256] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  316.752752][ T4256] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  316.761635][ T4256] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  316.778497][ T4269] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  316.791427][ T8083] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  316.940439][ T8083] EXT4-fs (loop4): 1 truncate cleaned up
[  316.951980][ T8083] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  317.021412][   T27] kauditd_printk_skb: 39 callbacks suppressed
[  317.021430][   T27] audit: type=1326 audit(1742850321.738:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.086256][   T56] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  317.101982][ T8095] loop3: detected capacity change from 0 to 512
[  317.125533][   T27] audit: type=1326 audit(1742850321.738:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.168283][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  317.174672][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  317.183124][ T8095] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  317.221931][ T8095] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  317.240847][   T27] audit: type=1326 audit(1742850321.738:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.275732][ T8095] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2186: inode #15: comm syz.3.1369: corrupted in-inode xattr
[  317.303946][ T8101] dccp_invalid_packet: P.Data Offset(10) too large
[  317.341216][ T8095] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1369: couldn't read orphan inode 15 (err -117)
[  317.365486][   T27] audit: type=1326 audit(1742850321.738:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.408349][ T8095] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  317.450817][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  317.477713][   T27] audit: type=1326 audit(1742850321.738:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.567306][   T56] batman_adv: batadv0: Removing interface: ip6gretap1
[  317.590763][   T27] audit: type=1326 audit(1742850321.738:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.689418][   T27] audit: type=1326 audit(1742850321.768:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.747445][   T27] audit: type=1326 audit(1742850321.768:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.776523][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  317.908297][   T27] audit: type=1326 audit(1742850321.768:1311): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  317.958561][   T27] audit: type=1326 audit(1742850321.768:1312): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.1.1370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  318.009327][ T8110] loop3: detected capacity change from 0 to 512
[  318.056953][ T8110] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  318.161044][ T8112] loop4: detected capacity change from 0 to 764
[  318.165140][ T8110] EXT4-fs (loop3): 1 truncate cleaned up
[  318.587390][ T8110] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  318.847661][ T4262] Bluetooth: hci4: command 0x0409 tx timeout
[  319.118625][ T8118] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  319.469089][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  320.089444][ T8085] chnl_net:caif_netlink_parms(): no params data found
[  320.216046][   T56] device gretap0 left promiscuous mode
[  320.448104][ T8140] loop3: detected capacity change from 0 to 1024
[  320.589976][ T8140] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  320.769786][ T8085] bridge0: port 1(bridge_slave_0) entered blocking state
[  320.795486][ T8085] bridge0: port 1(bridge_slave_0) entered disabled state
[  320.834451][ T8085] device bridge_slave_0 entered promiscuous mode
[  320.877850][ T8085] bridge0: port 2(bridge_slave_1) entered blocking state
[  320.904965][ T8085] bridge0: port 2(bridge_slave_1) entered disabled state
[  320.925565][ T4269] Bluetooth: hci4: command 0x041b tx timeout
[  320.935835][ T4263] EXT4-fs (loop3): unmounting filesystem.
[  320.949738][ T8085] device bridge_slave_1 entered promiscuous mode
[  321.387856][ T8085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  321.486023][ T8085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  322.013425][ T8085] team0: Port device team_slave_0 added
[  322.062401][ T8085] team0: Port device team_slave_1 added
[  322.254408][ T8085] batman_adv: batadv0: Adding interface: batadv_slave_0
[  322.272352][ T8085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  322.405559][ T8085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  322.477944][ T8085] batman_adv: batadv0: Adding interface: batadv_slave_1
[  322.484952][ T8085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  322.613839][ T8085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  322.735514][ T8176] loop4: detected capacity change from 0 to 2048
[  322.801705][   T56] device hsr_slave_0 left promiscuous mode
[  322.821714][   T56] device hsr_slave_1 left promiscuous mode
[  322.836777][ T8180] binfmt_misc: register: failed to install interpreter file ./file0
[  322.846688][ T8176] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  322.952787][   T27] kauditd_printk_skb: 23 callbacks suppressed
[  322.952806][   T27] audit: type=1800 audit(1742850327.668:1336): pid=8176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1395" name="bus" dev="loop4" ino=18 res=0 errno=0
[  322.981706][   T56] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  323.007469][   T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[  323.018635][ T4269] Bluetooth: hci4: command 0x040f tx timeout
[  323.058187][   T56] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  323.125278][   T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[  323.133464][   T56] device bridge_slave_1 left promiscuous mode
[  323.177410][   T56] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.249257][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  323.286269][   T56] device bridge_slave_0 left promiscuous mode
[  323.292561][   T56] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.442450][   T56] device veth1_macvtap left promiscuous mode
[  323.455473][   T56] device veth0_macvtap left promiscuous mode
[  323.461645][   T56] device veth1_vlan left promiscuous mode
[  323.485871][   T56] device veth0_vlan left promiscuous mode
[  325.092317][ T4269] Bluetooth: hci4: command 0x0419 tx timeout
[  325.142813][ T8099] Set syz1 is full, maxelem 65536 reached
[  325.913267][   T56] team0 (unregistering): Port device team_slave_1 removed
[  326.105674][   T56] team0 (unregistering): Port device team_slave_0 removed
[  326.246664][   T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  326.384937][   T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  327.979150][   T56] bond0 (unregistering): Released all slaves
[  328.276800][ T8085] device hsr_slave_0 entered promiscuous mode
[  328.313544][ T8085] device hsr_slave_1 entered promiscuous mode
[  328.354333][ T8085] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  328.362603][ T8085] Cannot create hsr debugfs directory
[  328.439051][ T8206] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1405'.
[  328.596782][ T8208] xt_hashlimit: max too large, truncated to 1048576
[  328.705454][ T8212] binfmt_misc: register: failed to install interpreter file ./file0
[  328.996299][ T8219] loop5: detected capacity change from 0 to 512
[  329.010107][ T8221] loop1: detected capacity change from 0 to 512
[  329.035506][ T8219] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  329.091123][ T8221] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #17: comm syz.1.1411: iget: bogus i_mode (0)
[  329.132438][ T8221] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1411: couldn't read orphan inode 17 (err -117)
[  329.144840][ T8219] EXT4-fs (loop5): 1 truncate cleaned up
[  329.152706][ T8221] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  329.167330][ T8219] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  329.214091][ T8221] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.1411: bg 0: block 7: invalid block bitmap
[  329.418426][ T8085] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  329.436562][ T8229] loop3: detected capacity change from 0 to 512
[  329.443416][ T8085] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  329.463197][ T6503] EXT4-fs (loop5): unmounting filesystem.
[  329.474309][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  329.497120][ T8085] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  329.551798][ T8085] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  329.604817][ T8231] loop4: detected capacity change from 0 to 764
[  329.884506][ T8085] 8021q: adding VLAN 0 to HW filter on device bond0
[  329.949265][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  329.974201][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  330.017491][ T8085] 8021q: adding VLAN 0 to HW filter on device team0
[  330.053909][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  330.083880][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  330.111696][ T7216] bridge0: port 1(bridge_slave_0) entered blocking state
[  330.118935][ T7216] bridge0: port 1(bridge_slave_0) entered forwarding state
[  330.219511][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  330.238069][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  330.277506][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  330.327036][ T7216] bridge0: port 2(bridge_slave_1) entered blocking state
[  330.334320][ T7216] bridge0: port 2(bridge_slave_1) entered forwarding state
[  330.403416][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  330.422765][ T8251] loop3: detected capacity change from 0 to 164
[  330.456660][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  330.480306][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  330.484522][ T8253] loop1: detected capacity change from 0 to 164
[  330.552767][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  330.576557][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  330.595975][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  330.624294][ T8085] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  330.645194][ T8085] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  330.712369][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  330.731823][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  330.787398][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  330.816239][ T8259] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  330.828147][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  330.850391][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  330.898520][ T7216] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  331.395703][ T8275] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1433'.
[  331.620048][ T8275] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1433'.
[  331.729993][ T7588] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  331.747075][ T7588] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  331.785083][ T8085] 8021q: adding VLAN 0 to HW filter on device batadv0
[  331.984072][ T8275] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1433'.
[  333.089244][ T7584] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  333.127404][ T7584] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  333.213527][ T7584] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  333.246500][ T7584] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  333.284434][ T8085] device veth0_vlan entered promiscuous mode
[  333.303782][ T7584] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  333.356186][ T7584] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  333.369619][ T8085] device veth1_vlan entered promiscuous mode
[  333.504266][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  333.523680][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  333.546116][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  333.587004][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  333.625360][ T8085] device veth0_macvtap entered promiscuous mode
[  333.658247][ T8085] device veth1_macvtap entered promiscuous mode
[  333.736629][ T8085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  333.776204][ T8085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  333.835755][ T8085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  333.868767][ T8085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  333.902199][ T8085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  333.963781][ T8085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  333.993612][ T8085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  334.040109][ T8085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  334.091493][ T8085] batman_adv: batadv0: Interface activated: batadv_slave_0
[  334.141322][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  334.166538][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  334.202243][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  334.262814][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  334.297906][ T8085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  334.377647][ T8085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  334.417638][ T8085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  334.442157][ T8085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  334.490307][ T8085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  334.516630][ T8085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  334.555446][ T8085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  334.595441][ T8085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  334.632459][ T8085] batman_adv: batadv0: Interface activated: batadv_slave_1
[  334.667393][ T2899] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  334.703357][ T2899] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  334.727320][ T8085] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  334.752454][ T8085] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  334.765542][ T8085] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  334.784521][ T8085] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  335.105776][ T8342] loop1: detected capacity change from 0 to 512
[  335.140084][ T8342] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  335.172965][   T27] audit: type=1326 audit(1742850339.888:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  335.224496][ T7588] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  335.255498][   T27] audit: type=1326 audit(1742850339.918:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  335.268780][ T7588] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  335.303402][ T8342] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  335.339467][ T8342] ext4 filesystem being mounted at /309/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.358711][   T27] audit: type=1326 audit(1742850339.938:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  335.381400][ T8349] tipc: Started in network mode
[  335.390128][ T8349] tipc: Node identity @, cluster identity 4711
[  335.407528][ T8349] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  335.437120][ T7588] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  335.437377][ T7594] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  335.466001][ T7588] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  335.488740][   T27] audit: type=1326 audit(1742850339.938:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  335.543007][ T2899] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  335.584664][   T27] audit: type=1326 audit(1742850339.938:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  335.589198][ T8352] loop4: detected capacity change from 0 to 1024
[  335.703594][   T27] audit: type=1326 audit(1742850339.948:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  335.764354][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  335.807489][ T8352] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  335.828117][ T8357] loop3: detected capacity change from 0 to 764
[  335.861026][   T27] audit: type=1326 audit(1742850339.958:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5b49d8d1a3 code=0x7ffc0000
[  335.986042][   T27] audit: type=1326 audit(1742850339.958:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5b49d8d1a3 code=0x7ffc0000
[  336.100211][   T27] audit: type=1326 audit(1742850339.978:1345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  336.245535][   T27] audit: type=1326 audit(1742850339.978:1346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b49d8d169 code=0x7ffc0000
[  336.674243][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  336.919211][ T8382] tipc: Started in network mode
[  336.941188][ T8382] tipc: Node identity @, cluster identity 4711
[  336.964653][ T8382] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  337.167031][ T8389] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  337.920922][ T8414] IPVS: sync thread started: state = BACKUP, mcast_ifn = macvtap0, syncid = 1, id = 0
[  337.932242][ T8412] IPVS: stopping backup sync thread 8414 ...
[  338.733555][ T8438] loop6: detected capacity change from 0 to 512
[  338.835201][ T8438] EXT4-fs (loop6): 1 orphan inode deleted
[  338.851448][ T7584] EXT4-fs error (device loop6): ext4_release_dquot:6818: comm kworker/u4:22: Failed to release dquot type 1
[  338.873449][ T8438] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  338.919516][ T8438] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.934458][ T8442] loop4: detected capacity change from 0 to 1024
[  339.046198][ T8442] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  339.264503][ T4255] EXT4-fs (loop4): unmounting filesystem.
[  339.725833][ T4262] Bluetooth: hci5: command 0x0406 tx timeout
[  339.796966][ T8085] EXT4-fs (loop6): unmounting filesystem.
[  339.841472][ T7584] EXT4-fs error (device loop6): ext4_release_dquot:6818: comm kworker/u4:22: Failed to release dquot type 1
[  340.118831][ T8458] loop6: detected capacity change from 0 to 1764
[  340.608538][   T27] kauditd_printk_skb: 83 callbacks suppressed
[  340.608554][   T27] audit: type=1326 audit(1742850345.328:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.3.1507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  340.729337][ T8476] loop1: detected capacity change from 0 to 128
[  340.735452][   T27] audit: type=1326 audit(1742850345.368:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.3.1507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  340.865467][   T27] audit: type=1326 audit(1742850345.368:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.3.1507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  340.965798][   T27] audit: type=1326 audit(1742850345.368:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.3.1507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  341.087501][   T27] audit: type=1326 audit(1742850345.368:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.3.1507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49cc18d169 code=0x7ffc0000
[  341.129120][ T8488] loop4: detected capacity change from 0 to 764
[  341.920006][ T8505] device macvlan1 entered promiscuous mode
[  341.952048][ T8505] device ipvlan0 entered promiscuous mode
[  341.968759][ T8505] device ipvlan0 left promiscuous mode
[  341.995651][ T8505] device macvlan1 left promiscuous mode
[  342.131802][ T8516] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  342.799077][ T8530] binfmt_misc: register: failed to install interpreter file ./file0
[  342.961015][ T8534] loop6: detected capacity change from 0 to 1024
[  343.043046][ T8534] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  343.834543][ T8085] EXT4-fs (loop6): unmounting filesystem.
[  344.320075][ T8562] binfmt_misc: register: failed to install interpreter file ./file0
[  345.459339][ T8590] binfmt_misc: register: failed to install interpreter file ./file0
[  345.806647][ T8604] netlink: 'syz.4.1564': attribute type 4 has an invalid length.
[  345.833098][ T8604] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.1564'.
[  346.121655][   T27] audit: type=1326 audit(1742850350.838:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.181971][ T8618] device macvlan1 entered promiscuous mode
[  346.188842][   T27] audit: type=1326 audit(1742850350.838:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.276995][ T8618] device ipvlan0 entered promiscuous mode
[  346.284339][ T8618] device ipvlan0 left promiscuous mode
[  346.287878][   T27] audit: type=1326 audit(1742850350.888:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.382668][ T8618] device macvlan1 left promiscuous mode
[  346.398292][   T27] audit: type=1326 audit(1742850350.888:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.466843][ T8624] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1574'.
[  346.487493][   T27] audit: type=1326 audit(1742850350.888:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.567720][ T8628] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1574'.
[  346.606060][   T27] audit: type=1326 audit(1742850350.888:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.672010][   T27] audit: type=1326 audit(1742850350.888:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.771956][   T27] audit: type=1326 audit(1742850350.888:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.862287][   T27] audit: type=1326 audit(1742850350.898:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  346.974412][   T27] audit: type=1326 audit(1742850350.898:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.1.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2e0d8d169 code=0x7ffc0000
[  347.575620][ T8662] netlink: 'syz.1.1589': attribute type 10 has an invalid length.
[  347.630727][ T8662] device hsr_slave_0 left promiscuous mode
[  347.668593][ T8662] device hsr_slave_1 left promiscuous mode
[  347.954016][ T8671] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1595'.
[  348.004873][ T8671] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  348.044281][ T8671] batman_adv: batadv0: Removing interface: batadv_slave_0
[  348.074672][ T8671] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  348.099051][ T8671] batman_adv: batadv0: Removing interface: batadv_slave_1
[  348.284585][ T8677] loop6: detected capacity change from 0 to 512
[  348.428383][ T8677] EXT4-fs warning (device loop6): ext4_enable_quotas:7030: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  348.459596][ T8677] EXT4-fs (loop6): mount failed
[  348.807282][ T8695] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1606'.
[  349.315037][ T8713] netlink: 'syz.3.1613': attribute type 10 has an invalid length.
[  349.347386][ T8713] device hsr_slave_0 left promiscuous mode
[  349.381464][ T8713] device hsr_slave_1 left promiscuous mode
[  350.031654][ T8727] syz.4.1620[8727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  350.031842][ T8727] syz.4.1620[8727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  350.460331][ T8743] syz.6.1628[8743] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  350.500255][ T8743] syz.6.1628[8743] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  350.722772][   T22] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  350.774901][ T8752] netlink: 'syz.5.1631': attribute type 13 has an invalid length.
[  350.796120][ T8749] loop3: detected capacity change from 0 to 1024
[  350.823215][   T22] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  350.838077][ T8749] EXT4-fs: Ignoring removed nomblk_io_submit option
[  350.885355][ T8749] EXT4-fs: Mount option(s) incompatible with ext2
[  351.379263][ T8765] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1636'.
[  351.557417][ T8767] loop3: detected capacity change from 0 to 128
[  351.616527][ T8767] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  351.649578][ T8767] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  352.084259][   T56] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  352.281375][ T8752] bridge0: port 2(bridge_slave_1) entered disabled state
[  352.288994][ T8752] bridge0: port 1(bridge_slave_0) entered disabled state
[  353.272010][ T8784] loop1: detected capacity change from 0 to 512
[  353.317761][ T8784] EXT4-fs: Ignoring removed i_version option
[  353.323818][ T8784] EXT4-fs: Ignoring removed mblk_io_submit option
[  353.350902][ T8784] ext4: Unknown parameter 'seclabel'
[  354.802238][ T8752] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  354.894919][ T8752] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  355.566962][   T28] INFO: task syz.0.666:6202 blocked for more than 143 seconds.
[  355.574575][   T28]       Not tainted 6.1.131-syzkaller #0
[  355.615588][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  355.624516][   T28] task:syz.0.666       state:D stack:28056 pid:6202  ppid:4257   flags:0x00004004
[  355.652391][   T28] Call Trace:
[  355.659278][   T28]  <TASK>
[  355.665649][   T28]  __schedule+0x143f/0x4570
[  355.674786][   T28]  ? release_firmware_map_entry+0x18b/0x18b
[  355.687788][   T28]  ? print_irqtrace_events+0x210/0x210
[  355.700418][   T28]  ? _raw_spin_lock_irq+0xdb/0x110
[  355.711309][   T28]  ? do_raw_spin_unlock+0x137/0x8a0
[  355.722253][   T28]  schedule+0xbf/0x180
[  355.739580][   T28]  rwsem_down_write_slowpath+0xea1/0x14b0
[  355.752202][   T28]  ? rwsem_down_write_slowpath+0x9e3/0x14b0
[  355.763953][   T28]  ? down_write_killable_nested+0x90/0x90
[  355.776544][   T28]  ? read_lock_is_recursive+0x10/0x10
[  355.787619][   T28]  ? rwsem_write_trylock+0x166/0x210
[  355.799722][   T28]  ? clear_nonspinnable+0x60/0x60
[  355.811148][   T28]  path_openat+0x7b6/0x2e60
[  355.821401][   T28]  ? mark_lock+0x9a/0x340
[  355.826100][   T28]  ? do_filp_open+0x480/0x480
[  355.830936][   T28]  do_filp_open+0x230/0x480
[  355.835619][   T28]  ? vfs_tmpfile+0x4a0/0x4a0
[  355.840551][   T28]  ? _raw_spin_unlock+0x24/0x40
[  355.845574][   T28]  ? alloc_fd+0x5a0/0x640
[  355.850021][   T28]  do_sys_openat2+0x13b/0x4f0
[  355.854896][   T28]  ? __fget_files+0x28/0x4a0
[  355.859678][   T28]  ? do_sys_open+0x220/0x220
[  355.864391][   T28]  __x64_sys_openat+0x243/0x290
[  355.869490][   T28]  ? __ia32_sys_open+0x270/0x270
[  355.874548][   T28]  ? syscall_enter_from_user_mode+0x2e/0x230
[  355.880872][   T28]  ? lockdep_hardirqs_on+0x94/0x130
[  355.886282][   T28]  ? syscall_enter_from_user_mode+0x2e/0x230
[  355.892702][   T28]  do_syscall_64+0x3b/0xb0
[  355.897301][   T28]  ? clear_bhb_loop+0x45/0xa0
[  355.902170][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  355.908932][   T28] RIP: 0033:0x7f3474d8d169
[  355.913490][   T28] RSP: 002b:00007f3475c48038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  355.922192][   T28] RAX: ffffffffffffffda RBX: 00007f3474fa6080 RCX: 00007f3474d8d169
[  355.930458][   T28] RDX: 000000000000275a RSI: 0000200000000240 RDI: ffffffffffffff9c
[  355.938738][   T28] RBP: 00007f3474e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  355.946877][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  355.955343][   T28] R13: 0000000000000000 R14: 00007f3474fa6080 R15: 00007ffc96f4a638
[  355.963450][   T28]  </TASK>
[  355.975524][   T28] 
[  355.975524][   T28] Showing all locks held in the system:
[  355.990366][   T28] 1 lock held by rcu_tasks_kthre/12:
[  356.001450][   T28]  #0: ffffffff8d32e890 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  356.024872][   T28] 1 lock held by rcu_tasks_trace/13:
[  356.035982][   T28]  #0: ffffffff8d32f090 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  356.060846][   T28] 1 lock held by khungtaskd/28:
[  356.071486][   T28]  #0: ffffffff8d32e6c0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[  356.091587][   T28] 3 locks held by kworker/u4:4/56:
[  356.102563][   T28]  #0: ffff888017c79138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x806/0x1260
[  356.126604][   T28]  #1: ffffc90001577d20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x806/0x1260
[  356.149641][   T28]  #2: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xa/0x50
[  356.167799][   T28] 2 locks held by getty/4007:
[  356.178201][   T28]  #0: ffff88814cd01098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[  356.198409][   T28]  #1: ffffc9000325e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x54a/0x1620
[  356.222628][   T28] 3 locks held by kworker/0:4/4297:
[  356.233656][   T28]  #0: ffff888017c70938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x806/0x1260
[  356.255650][   T28]  #1: ffffc90003ff7d20 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x806/0x1260
[  356.277314][   T28]  #2: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xa/0x20
[  356.299061][   T28] 2 locks held by kworker/0:8/4345:
[  356.315419][   T28]  #0: ffff888017c72138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x806/0x1260
[  356.335391][   T28]  #1: ffffc900040f7d20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x806/0x1260
[  356.355363][   T28] 2 locks held by ext4lazyinit/6124:
[  356.365499][   T28] 2 locks held by syz.0.666/6188:
[  356.370557][   T28] 2 locks held by syz.0.666/6202:
[  356.385816][   T28]  #0: ffff88807a76e460 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80
[  356.395061][   T28]  #1: ffff888055a75e48 (&type->i_mutex_dir_key#3){++++}-{3:3}, at: path_openat+0x7b6/0x2e60
[  356.425667][   T28] 2 locks held by kworker/u4:22/7584:
[  356.431101][   T28] 2 locks held by syz.5.1631/8752:
[  356.455338][   T28]  #0: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7cb/0x1000
[  356.475110][   T28]  #1: ffffffff8d333cf8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x4f0/0x930
[  356.495343][   T28] 2 locks held by syz.5.1631/8756:
[  356.500568][   T28]  #0: ffff88807c2b0130 (sk_lock-AF_SMC){+.+.}-{0:0}, at: smc_connect+0xb3/0xe10
[  356.520808][   T28]  #1: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: smc_vlan_by_tcpsk+0x3da/0x540
[  356.541033][   T28] 1 lock held by syz.6.1633/8755:
[  356.546161][   T28]  #0: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7cb/0x1000
[  356.575346][   T28] 1 lock held by syz.4.1638/8769:
[  356.580494][   T28]  #0: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: raw_bind+0x95/0x770
[  356.600725][   T28] 1 lock held by syz.4.1638/8770:
[  356.605959][   T28]  #0: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: raw_bind+0x95/0x770
[  356.624760][   T28] 1 lock held by syz.3.1644/8782:
[  356.629943][   T28]  #0: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x4a9/0x2320
[  356.659683][   T28] 1 lock held by syz.3.1644/8787:
[  356.664767][   T28]  #0: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7cb/0x1000
[  356.684548][   T28] 2 locks held by syz.1.1648/8794:
[  356.689810][   T28]  #0: ffff888055b08810 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x98/0x230
[  356.715471][   T28]  #1: ffffffff8e5505a8 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1b4/0x8a0
[  356.735088][   T28] 
[  356.737546][   T28] =============================================
[  356.737546][   T28] 
[  356.795381][   T28] NMI backtrace for cpu 1
[  356.799783][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.131-syzkaller #0
[  356.807709][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  356.817792][   T28] Call Trace:
[  356.821091][   T28]  <TASK>
[  356.824050][   T28]  dump_stack_lvl+0x1e3/0x2cb
[  356.828762][   T28]  ? preempt_schedule_thunk+0x16/0x18
[  356.834180][   T28]  ? nf_tcp_handle_invalid+0x647/0x647
[  356.839679][   T28]  ? panic+0x764/0x764
[  356.843778][   T28]  ? vprintk_emit+0x622/0x740
[  356.848488][   T28]  ? printk_sprint+0x490/0x490
[  356.853282][   T28]  ? nmi_cpu_backtrace+0x252/0x560
[  356.858426][   T28]  nmi_cpu_backtrace+0x4e1/0x560
[  356.863397][   T28]  ? nmi_trigger_cpumask_backtrace+0x430/0x430
[  356.869579][   T28]  ? _printk+0xd1/0x111
[  356.873767][   T28]  ? panic+0x764/0x764
[  356.877865][   T28]  ? __wake_up_klogd+0xcc/0x100
[  356.882746][   T28]  ? panic+0x764/0x764
[  356.886861][   T28]  ? nmi_trigger_cpumask_backtrace+0xfc/0x430
[  356.892960][   T28]  nmi_trigger_cpumask_backtrace+0x1ca/0x430
[  356.898968][   T28]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  356.905054][   T28]  watchdog+0xf88/0xfd0
[  356.909231][   T28]  ? watchdog+0x1f8/0xfd0
[  356.913577][   T28]  kthread+0x28d/0x320
[  356.917651][   T28]  ? hungtask_pm_notify+0x50/0x50
[  356.922685][   T28]  ? kthread_blkcg+0xd0/0xd0
[  356.927281][   T28]  ret_from_fork+0x1f/0x30
[  356.931721][   T28]  </TASK>
[  356.936180][   T28] Sending NMI from CPU 1 to CPUs 0:
[  356.941459][    C0] NMI backtrace for cpu 0
[  356.941470][    C0] CPU: 0 PID: 6124 Comm: ext4lazyinit Not tainted 6.1.131-syzkaller #0
[  356.941488][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  356.941498][    C0] RIP: 0010:xas_start+0x0/0x7b0
[  356.941528][    C0] Code: a6 11 dd f6 eb 0c e8 9f 11 dd f6 eb 05 e8 98 11 dd f6 4c 89 e0 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d c3 66 0f 1f 44 00 00 <55> 41 57 41 56 41 55 41 54 53 50 49 89 fc 48 bb 00 00 00 00 00 fc
[  356.941542][    C0] RSP: 0018:ffffc9000516f9e8 EFLAGS: 00000293
[  356.941557][    C0] RAX: ffffffff8aad9720 RBX: ffffc9000516faa0 RCX: ffff888024bd5940
[  356.941570][    C0] RDX: 0000000000000000 RSI: ffffffff8b5f6f60 RDI: ffffc9000516faa0
[  356.941582][    C0] RBP: ffffc9000516fb48 R08: ffffffff81b7b815 R09: fffffbfff225724d
[  356.941595][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888148e3f600
[  356.941607][    C0] R13: 0000000000000007 R14: dffffc0000000000 R15: 0000000000000000
[  356.941618][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  356.941632][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  356.941643][    C0] CR2: 000055556bd365c8 CR3: 00000000730c7000 CR4: 00000000003506f0
[  356.941658][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  356.941668][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  356.941679][    C0] Call Trace:
[  356.941684][    C0]  <NMI>
[  356.941690][    C0]  ? nmi_cpu_backtrace+0x3de/0x560
[  356.941708][    C0]  ? read_lock_is_recursive+0x10/0x10
[  356.941738][    C0]  ? nmi_trigger_cpumask_backtrace+0x430/0x430
[  356.941756][    C0]  ? nmi_handle+0x25/0x440
[  356.941790][    C0]  ? nmi_cpu_backtrace_handler+0x8/0x10
[  356.941806][    C0]  ? nmi_handle+0x12e/0x440
[  356.941831][    C0]  ? nmi_handle+0x25/0x440
[  356.941862][    C0]  ? xas_load+0x140/0x140
[  356.941884][    C0]  ? default_do_nmi+0x62/0x150
[  356.941904][    C0]  ? exc_nmi+0xa8/0x100
[  356.941921][    C0]  ? end_repeat_nmi+0x16/0x31
[  356.941946][    C0]  ? __filemap_get_folio+0x185/0xe80
[  356.941963][    C0]  ? xas_load+0x20/0x140
[  356.941988][    C0]  ? xas_load+0x140/0x140
[  356.942011][    C0]  ? xas_load+0x140/0x140
[  356.942035][    C0]  ? xas_load+0x140/0x140
[  356.942058][    C0]  </NMI>
[  356.942063][    C0]  <TASK>
[  356.942068][    C0]  xas_load+0x28/0x140
[  356.942094][    C0]  __filemap_get_folio+0x22c/0xe80
[  356.942114][    C0]  ? __filemap_get_folio+0x150/0xe80
[  356.942132][    C0]  ? page_cache_prev_miss+0x500/0x500
[  356.942155][    C0]  ? PageUptodate+0xd2/0x290
[  356.942176][    C0]  pagecache_get_page+0x28/0x250
[  356.942194][    C0]  __getblk_gfp+0x211/0xa20
[  356.942219][    C0]  ext4_read_block_bitmap_nowait+0x1ff/0x980
[  356.942247][    C0]  ext4_mb_prefetch+0x46d/0x640
[  356.942277][    C0]  ? mb_set_bits+0x110/0x110
[  356.942295][    C0]  ? rcu_read_lock_bh_held+0x110/0x110
[  356.942318][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  356.942336][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  356.942360][    C0]  ext4_lazyinit_thread+0x54d/0x1ad0
[  356.942387][    C0]  ? kthread+0x28d/0x320
[  356.942402][    C0]  ? seq_show_option+0x80/0x80
[  356.942420][    C0]  ? __kthread_parkme+0x168/0x1c0
[  356.942455][    C0]  kthread+0x28d/0x320
[  356.942470][    C0]  ? seq_show_option+0x80/0x80
[  356.942485][    C0]  ? kthread_blkcg+0xd0/0xd0
[  356.942501][    C0]  ret_from_fork+0x1f/0x30
[  356.942533][    C0]  </TASK>
[  357.272833][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[  357.279726][   T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.131-syzkaller #0
[  357.287646][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  357.297730][   T28] Call Trace:
[  357.301035][   T28]  <TASK>
[  357.303986][   T28]  dump_stack_lvl+0x1e3/0x2cb
[  357.308690][   T28]  ? nf_tcp_handle_invalid+0x647/0x647
[  357.314167][   T28]  ? panic+0x764/0x764
[  357.318300][   T28]  ? llist_add_batch+0x160/0x1d0
[  357.323264][   T28]  ? vscnprintf+0x59/0x80
[  357.327623][   T28]  panic+0x318/0x764
[  357.331541][   T28]  ? nmi_trigger_cpumask_backtrace+0x2db/0x430
[  357.337716][   T28]  ? memcpy_page_flushcache+0xfc/0xfc
[  357.343121][   T28]  ? preempt_schedule_thunk+0x16/0x18
[  357.348531][   T28]  ? nmi_trigger_cpumask_backtrace+0x2db/0x430
[  357.354705][   T28]  ? nmi_trigger_cpumask_backtrace+0x358/0x430
[  357.360881][   T28]  ? nmi_trigger_cpumask_backtrace+0x35d/0x430
[  357.367055][   T28]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  357.373167][   T28]  watchdog+0xfc7/0xfd0
[  357.377364][   T28]  ? watchdog+0x1f8/0xfd0
[  357.381722][   T28]  kthread+0x28d/0x320
[  357.385809][   T28]  ? hungtask_pm_notify+0x50/0x50
[  357.390859][   T28]  ? kthread_blkcg+0xd0/0xd0
[  357.395469][   T28]  ret_from_fork+0x1f/0x30
[  357.399935][   T28]  </TASK>
[  357.403273][   T28] Kernel Offset: disabled
[  357.407614][   T28] Rebooting in 86400 seconds..