last executing test programs:

1m10.052651726s ago: executing program 3:
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_tcp(0xa, 0x1, 0x0)
io_uring_setup(0x30d3, &(0x7f0000000000))
r0 = syz_io_uring_setup(0x1204, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000440)=<r2=>0x0)
fanotify_init(0x0, 0x0)
memfd_secret(0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x7, 0xfff, 0x7}, 0x48)
socket(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$netlink(0x10, 0x3, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10000})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1m8.119868466s ago: executing program 3:
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$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")
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000002280)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @val={0x3a, [0x30]}}}}]})
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
read$FUSE(r0, &(0x7f0000003040)={0x2020}, 0x2020)

23.038497186s ago: executing program 3:
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$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")
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000002280)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @val={0x3a, [0x30]}}}}]})
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mounts\x00')
read$FUSE(r0, &(0x7f0000003040)={0x2020}, 0x2020)

22.47341899s ago: executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in=@local, @in6=@ipv4}, {@in6=@private2, 0x0, 0x6c}, @in=@local, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}}, 0x0)

21.706311617s ago: executing program 3:
r0 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_SYMLINKAT={0x26, 0x11, 0x0, 0xffffffffffffff9c, 0x0, 0x0})
io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0)

20.600185647s ago: executing program 3:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYBLOB="8000000000010104000000000000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001800800010000000000080002007f0000010c00028005000100000000000800074000000000080003400000100e140010"], 0x80}}, 0x0)

5.545168405s ago: executing program 5:
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000080)={{{@in=@loopback, @in=@local}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, {{@in=@local}, 0x0, @in=@multicast2}}, 0xe8)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x0, 0x0, @private2}, 0x1c)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f0000000300), 0x4)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_score\x00')
read$FUSE(r0, &(0x7f0000000700)={0x2020}, 0x2020)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
pwritev(r2, &(0x7f0000000100)=[{&(0x7f0000000000)='0', 0x1}], 0x5, 0x0, 0x0)
mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000000)
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000240)='./file1\x00', 0x5, &(0x7f0000002100)=ANY=[], 0x1, 0x1a4, &(0x7f0000000000)="$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")
fallocate(r1, 0x0, 0x6, 0x9)

5.444651991s ago: executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d0000000700f3ff0000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000640)='kfree\x00', r0}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)

4.466383225s ago: executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20-simd,anubis-generic,nhpoly1305-sse2)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000006580)={0x0, 0x0, &(0x7f0000006500)=[{&(0x7f00000061c0)="be0aeaee6bc56fd459f77887cac37c88095aef22c5fadca69cc21b2b6f91837c98c068cecdb94f98fa594602792b0c652a", 0x31}, {&(0x7f0000006200)="d8d6b7b4b7e3830ded30c94b22d761808ab2f41d365d2504b36e252e46740c663611d6107b6d4ad686448baddf142cfbf929447c36ec716295f3e67e", 0x3c}, {&(0x7f0000006240)="a024e1625f34c38095d713d4fdaa0376c8fd7a45a2c1d7488201549a1f12faeb47627b7fad0c2710e9df450ab587d0ea216e95eccc6431f11d49e43b9d4010f543b4a037994aaa516ee41f4a074ffd2effa43df1831eec4dc0964063f61521896974f743620497031ac89bd3512554", 0x6f}], 0x3}, 0x0)
recvmmsg(r1, &(0x7f0000005f40)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)=""/242, 0xf2}, {&(0x7f0000000000)=""/9, 0x9}], 0x2}}], 0x1, 0x0, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000280)={0x20, 0x0, 0x0, 0x0, 0x0, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}]}]}, 0x20}}, 0x0)

4.390394662s ago: executing program 2:
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000000)={0x1, 0x0, 0x0, 0xd373})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000300)={'wlan1\x00', &(0x7f0000000000)=@ethtool_per_queue_op={0x23}})
listen(r0, 0x0)
io_setup(0x2007, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x2, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)='_', 0x1}])
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x467, &(0x7f0000000240)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x5008000, &(0x7f0000000540)=ANY=[@ANYBLOB='utf8=0,uni_xlate=1,iocharset=macceltic,iocharset=default,gid=', @ANYRESHEX, @ANYBLOB="2c757466383d312c726f6469722c726f6469722c0029489ece2599f61def4ceca8f6e6d6e8adb6ec2a47e6b076824ebc62b19e7fe507539a9111697cc2"], 0x1, 0x27c, &(0x7f0000000200)="$eJzs3TFrG2cYB/BHlmrJhiINBdNSqEqXTsZ26S5TXCgVtLRoaKeaWqbFcg02GOrB9ubkOyRfIdmSNZDBZM0XCIHgBLLYmTwEFJSTLMlRZJREuRD/fosf3nv+fl+djzs83Ku/vlxfW9nYWj05OYpCIRO5SlTiNBOlmIhsJPYDAPiYnDabcdxMpL0WAOD98PwHgMtnwPN/onMss3829ms6qwMAxuGt/v+fGMuSAIAx+/2PP39erFaXfiuXCxHrB9u17VryMzm+uBr/RiPqMRfFeB7RPJPUP/5UXZortzwuRWF9r53f265l+/PzUYzS4Px8ORG13vwnMd3OP5iOeiwcZuKzwfmFgfnJ+Pabnvlnoxj3/46NaMRKtLJJPh8Ru/Pl8g+/VM/l8y/7AAAAAAAAAAAAAAAAAAAAAABgHGbLHYX2SP/+PbPdhlL//jhJd3d/oHxxauj+QOf358nFF7n0PjcAAAAAAAAAAAAAAAAAAAB8SLb+31lbbjTqm8OK/+7duHuUj2hmI5Ybnbf2L0oNLDLt8Gipgzeaa3jx6dePrp0/lIudtfzo5+fdFne+SmHS+mbkRkkdHv3z+XdbM9+/ridyvSNXW5dLX0/rQhrwm3PjOuFPixFjOnU3O0Xl2Ss9nYupvjmVxt+0t5i5Xlm+vfvwSXskGxekhtw0mtmx3IsAAAAAAAAAAAAAAAAAAOCy6770m/ZKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA93e//H7XIR+PWle5Ioa9n8myC42aqnw8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFpeBAAA//+dMpIm")

4.178684716s ago: executing program 1:
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000080)={{{@in=@loopback, @in=@local}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, {{@in=@local}, 0x0, @in=@multicast2}}, 0xe8)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x0, 0x0, @private2}, 0x1c)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f0000000300), 0x4)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_score\x00')
read$FUSE(r0, &(0x7f0000000700)={0x2020}, 0x2020)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
pwritev(r2, &(0x7f0000000100)=[{&(0x7f0000000000)='0', 0x1}], 0x5, 0x0, 0x0)
mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000000)
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000240)='./file1\x00', 0x5, &(0x7f0000002100)=ANY=[], 0x1, 0x1a4, &(0x7f0000000000)="$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")
fallocate(r1, 0x0, 0x6, 0x9)

3.998661211s ago: executing program 4:
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000180)={0x0, 0x0, 0x200})
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r3, r2, 0x7}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r3, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r1}, 0x20)
sendmmsg$inet6(r1, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000740)="03", 0x1}], 0x1}}], 0x1, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[], 0x20000094}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)={{0x14}, [], {0x14}}, 0x28}}, 0x0)
sendmmsg$inet6(r1, &(0x7f0000002000)=[{{0x0, 0x0, &(0x7f0000000180), 0x1}}, {{0x0, 0x3c, &(0x7f0000000640)=[{&(0x7f00000009c0)='.', 0xc400}], 0x7}}], 0x44, 0x0)

3.827064684s ago: executing program 5:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)

3.746420491s ago: executing program 4:
r0 = syz_mount_image$exfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x20010080, &(0x7f0000000300)=ANY=[], 0x7, 0x14ec, &(0x7f0000003f80)="$eJzs3AlwVkX2KPA+3X0hxIifEVkCffpc+MQATUREZBERWUREREREZBMBASMiIgIiBGQTMSAi+xIRWQICIkuEiGHfF9kFjAwiIiKyySbQr3D8P2bG+Rfz3sx7vHo5v6qu9Mm953zdOal8996qfD91HVazca1qDYlI/Fvgr19ShBAxQohBQohbhBCBEKJcfLn4q8fzKEj5916E/Wc9lX6jV8BuJO5/zsb9z9m4/zkb9z9n4/7nbNz//z81hH/tPO5/zsb9Zywn2zqz0K08cu7g5/85Gb//52zc/5yN+5+zcf9zNu5/zsb9z9m4/zkb9z9n4/4zlpPd6OfPPG7suNG/f4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGcobz/hothPiv+Y1eF2OMMcYYY4wxxv5zfO4bvQLGGGOMMcYYY4z9nwdCCiW0CEQukVvEiDwiVtwk4sTNIq+4RUTErSJe3CbyidtFflFAFBSFRIIoLIoII1BYQSIURUUxERV3iOLiTpEoSoiSopRworRIEneJMuJuUVbcI8qJe0V5cZ+oICqKSqKyuF9UEQ+IquJBUU08JKqLGqKmqCUeFrXFI6KOeFTUFY+JeuJxUV88IRqIJ0VD8ZRoJJ4WjcUzool4VjQVzURz0UK0/N/Kf0P0FG+KXqK3SBF9RF/xlugn+osBYqAYJN4Wg8U7Yoh4V6SKoWKYeE8MF++LEeIDMVKMEqPFGDFWjBPjxQQxUUwSaeJDMVl8JKaIj8VUMU1MFzNEupgpZolPxGwxR8wVn4p54jMxXywQC8UikSE+F4vFEpEpvhBLxZciSywTy8UKsVKsEqvFGrFWrBPrxQaxUWwSm8UWsVV8JbaJ7WKH2Cl2id1ij/ha7BX7xH7xjcgW3/4v5p/7h/xuIECABAkaNOSCXBADMRALsRAHcZAX8kIEIhAP8ZAP8kF+yA8FoSAkQAIUgSKAgEBAUBSKQhSiUByKQyIkQkkoCQ4cJEESlIG7oSyUhXJQDspDeagAFaEiVIbKUAWqQFWoCtWgGlSH6lATasLD8DA8AnWgDtSFulAP6kF9qA8NoAE0hIbQCBpBY2gMTaAJNIWm0ByaQ0toCa2gFbSG1tAW2kI7aAcdoAMkQzJ0hI7QHjpBZ+gMXaALdIWu0A26Q3d4A96AN+FN6A3VZR/oC32hH/SDATAQBsLbMBjegXfgXUiFoTAM3oP34H0YAWdhJIyC0TAaqshxMB4mAMlJkAZpMBkmwxSYAlNhGkyDGZAOM2EWzILZMAfmwKcwDz6Dz2ABLIBFkAEZsBiWQCZkwlI4B1mwDJbDClgJq2AlrIG1sAbWwwZYD5tgE2yBLfAVfAVjYDvshJ2wG3bD1/A17IN9kArZkA0H4AAchINwCA7BYTgMR+AIHIWjcAyOwXE4DifgJJyCk3AGzsBZOAfn4TxchItwCV5L+KHR7hLrUoW8Skstc8lcMkbGyFgZK+NknMwr88qIjMh4GS/zyXwyv8wvC8qCMkEmyCKyiESJkmQoi8qiMiqjsrgsLhNloiwpS0onnUySSbKMLCPLyrKynLxXlpf3yQqyomzjKsvKsops66rKB2U1WU1WlzVkTVlL1pK1ZW1ZR9aRdWVdWU/Wk/XlE7KB7AMD4Cl5tTON5VBoIodBU9lMNpct5PvwnGwlR0Br2Ua2lS/IUTASOshWLlm+JDvK8dBJviInwKuyi5wEXeXrspvsLnvIN2RP2dr1kr3lVOgj+8oZ0E/2lwPkQDkbasirHasp35WpcqgcJt+Ti+B9OUJ+IEfKUXK0HCPHynFyvJwgJ8pJMk1+KCfLj+QU+bGcKqfJ6XKGTJcz5Sz5iZwt58i58lM5T34m58sFcqFcJDPk53KxXCIz5RdyqfxSZsllcrlcIVfKVXK1XCPXynVyvdwgN8pNcrPcIrfKr+Q2uV3ukDvlLrlb7pFfy71yn9wvv5HZ8lt5QP5FHpTfyUPye3lY/iCPyB/lUfmTPCZ/lsflL/KEPClPydPyjPxVnpXn5Hl5QV6Uv8lL8rK8Ir0UCpRUSmkVqFwqt4pReVSsuknFqZtVXnWLiqhbVby6TeVTt6v8qoAqqAqpBFVYFVFGobKKVKiKqmIqqu5QxdWdKlGVUCVVKeVUaZWk7lJl1N2qrLpHlVP3qvLqPlVBVVSVVGV1v6qiHlBV1YOqmnpIVVc1VE1VSz2saqtHVB31qKqrHlP11OOqvnpCNVBPqobqKdVIPa0aq2dUE/WsaqqaqeaqhWqpnlOt1POqtWqj2qoXVDvVXnVQL6pk9ZLqqF5WndQrqrN6VXVRr6mu6nXVTXVXPdRldUV51Uv1Vimqj+qr3lL9VH81QA1Ug9TbarB6Rw1R76pUNVQNU++p4ep9NUJ9oEaqUWq0GqPGqnFqvJqgJqpJKk19qCarj9QU9bGaqqap6WqGSlcz1YA/Ks39F/I/+if5Q35/9S1qq/pKbVPb1Q61U+1Su9UetUftVXvVfrVfZatsdUAdUAfVQXVIHVKH1WF1RB1RR9VRdUwdU8fVcXVCnVQX1Gl1Rv2qzqpz6py6oC6qi+rSHz8DoUFLrbTWgc6lc+sYnUfH6pt0nL5Z59W36Ii+Vcfr23Q+fbvOrwvogrqQTtCFdRFtNGqrSYe6qC6mo/oOXVzfqRN1CV1Sl9JOl9ZJ+q5/LV/9cSnyT/Kvt76WuqVupVvp1rq1bqvb6na6ne6gO+hknaw76o66k+6kO+vOuovuorvqrrqb7qZ76B66p+6pe+leOkWn6L76Ld1P99cD9EA9SL+tB+vBeogeolN1qh6mh+nhergeoUfokXqkHq1H67F6rB6vx+uJeqJO02l6sp6sp+gpeqqeqqfr6Tpdp+tZepaerWfruXqunqfn6fl6vl6oF+oMnaEX68U6U2fqpXqpztLL9DK9Qq/Qq/QqvUav0ev0Or1Bb9Cb9CadpbfqrXqb3qZ36B16l96l9+g9eq/eq/fr/TpbZ+sD+oA+qA/qQ/qQPqwP6yP6iD6qj+pj+pg+ro/rE/qEPqVP6TP6jD6rz+rz+ry+qC/qS/qSvqKvXL3sC2QgAx3oIFeQK4gJYoLYIDaIC+KCvEHeIBJEgvggPsgX3B7kDwoEBYNCQUJQOCgSmAADG1AQBkWDYkE0uCMoHtwZJAYlgpJBqcAFpYOk4K6gTHB3UDa4JygX3BuUD+4LKgQVg0pB5eD+oErwQFA1eDCoFjwUVA9qBDWDWsHDQe3gkaBO8GhQN3gsqBc8HtQPnggaBE8GDYOngkbB00Hj4JmgSfBs0DRoFjQPWgQt/6P1vT9b4HnXy/Q2KaaP6WveMv1MfzPADDSDzNtmsHnHDDHvmlQz1Awz75nh5n0zwnxgRppRZrQZY8aacWa8mWAmmkkmzXxoJpuPzBTzsZlqppnpZoZJNzPNLPOJmW3mmLnmUzPPfGbmmwVmoVlkMsznZrFZYjLNF2ap+dJkmWVmuVlhVppVZrVZY9aadWa92WA2mk1ms9litpqvzDaz3ewwO80us9vsMV+bvWaf2W++MdnmW3PA/MUcNN+ZQ+Z7c9j8YI6YH81R85M5Zn42x80v5oQ5aU6Z0+aM+dWcNefMeXPBXDS/mUvmsrli/NWL+6tv76hRYy7MhTEYg7EYi3EYh3kxL0YwgvEYj/kwH+bH/FgQC2ICJmARLIJXERIWxaIYxSgWx+KYiIlYEkuiQ4dJmIRlsAyWxbJYDstheSyPFbACVsJKeD/ejw/gA/ggPogP4UNYA2tgLayFtbE21sE6WBfrYj2sh/WxPjbABtgQG2IjbISNsTE2wSbYFJtic2yOLbEltsJW2BpbY1tsi+2wHXbADpiMydgRO2In7ISdsTN2wS7YFbtiN+yGPbAH9sSe2At7YQqmYF/si/2wHw7AATgIB+FgHIxDcAimYioOw2E4HIfjCByBI3EUjsYxOBbH4XicgBNxEqZhGk7GyTgFp+BUnIrTcTqmYzrOwlk4G2fjXJyL83Aezsf5uBAXYgZm4GJcjJmYiUtxKWZhFi7H5bgSV+JqXI1rcS2ux/W4ETfiZtyMW3ErbsNtuAN34C7chXtwD+7Fvbgf92M2ZuMBPIAH8SAewkN4GA/jETyCR/EoHsNjeByP4wk8gafwFJ7BM3gWz+J5PI8X8Te8hJfxCnqMsXlsrL3JxtmbbV57i/3HuKAtZBNsYVvEGpvfFvi7GK21ibaELWlLWWdL2yR715/iCrairWQr2/ttFfuArfqnuLZ9xNaxj9q69jFbyz78d3E9+7itb5+xDeyztqFtZhvZFraxfcY2sc/apraZbW5b2Ha2ve1gX7TJ9iXb0b78p3ixXWLX2nV2vd1g99p99ry9YI/an+xF+5vtZXvbQfZtO9i+Y4fYd22qHfqneLQdY8facXa8nWAn2kl/iqfbGTbdzrSz7Cd2tp3zpzjDfm7n2Uw73y6wC+2i3+Ora8q0X9il9kubZZfZ5XaFXWlX2dV2zf9c6wq7yW62W+we+7XdZrfbHXan3WV3/x5f3cd++43Ntt/aI/ZHe9B+Zw/ZY/aw/eH3+Or+jtmf7XH7iz1hT9pT9rQ9Y3+1Z+253/d/de+n7WV7xXorCEiSIk0B5aLcFEN5KJZuoji6mfLSLRShWymebqN8dDvlpwJUkApRAhWmImQIyRJRSEWpGEXpDipOd1IilaCSVIoclaYkuovK0N1Ulu6hcnQvlaf7qAJVpEpUme6nKvQAVaUHqRo9RNWpBtWkWvQw1aZHqA49SnXpMapHj1N9eoIa0JPUkJ6iRvQ0NaZnqAk9S02pGTWnFtSSnqNW9Dy1pjbUll6gdtSeOtCLlEwvUUd6mTrRK9SZXqUu9Bp1pdepG3WnHvQG9aQ3qRf1phTqQ33pLepH/WkADaRB9DYNpndoCL1LqTSUhtF7NJzepxH0AY2kUTSaxtBYGkfjaQJNpEmURh/SZPqIptDHNJWm0XSaQek0k2bRJzSb5tBc+pTm0Wc0nxbQQlpEGfQ5LaYllElf0FL6krJoGS2nFbSSVtFqWkNraR2tpw20kTbRZtpCW+kr2kbbaQftpF20m/bQ17SX9tF++oay6Vs6QH+hg/QdHaLv6TD9QEfoRzpKP9Ex+pmO0y90gk7SKTpNZ+hXOkvn6DxdoIv0G12iy3SFPIkQQhmqUIdBmCvMHcaEecLY8KYwLrw5zBveEkbCW8P48LYwX3h7mD8sEBYMC4UJYeGwSGhCDG1IYRgWDYuF0fCOsHh4Z5gYlghLhqVCF5YOk8K7wjLh3WHZ8J6wXHhvWD68L6wQVgyfeaxyeH9YJXwgrBo+GFYLHwqrhzXCmmGt8OGwdvhIWCd8NKwbPhaWDR8P64dPhA3CJ8OG4VNho/DpsHH4TNgkfDZsGjYLm4ctwpbhc2Gr8PmwddgmbBu+ELYL24cdwhfD5PClsGP48nWPp4R9wr7hW+FbofePqoXRRdGM6OfRxdEl0czoF9Gl0S+jWdFl0eXRFdGV0VXR1dE10bXRddH10Q3RjdFN0c3RLVHva+UWDpx0ymkXuFwut4txeVysu8nFuZtdXneLi7hbXby7zeVzt7v8roAr6Aq5BFfYFXHGobOOXOiKumIu6u5wxd2dLtGVcCVdKedcaZfkWriWrqVr5Z53rV0b19a94F5w7V1796J70b3kOrqXXSf3iuvsXnVd3GvuNfe66+a6ux7uDdfTvel6ud4uxaW4vq6v6+f6uQFugBvkBrnBbrAb4oa4VJfqhrlhbrgb7ka4EW6kG+lGu9FurBvrxrvxbqKb6NJcmpvsJrspboqb6qa66W66S3fpbpab5Wa72W6um+vmJc5z8918t9AtdBkuwy12i12my3RL3VKX5bLccrfcrXQr3Wq32q11a916t95tdBvdZrfZbXVb3Ta3ze1wO9wut8vtcXvcXrfX7Xf7XbbLdgfcAXfQHXSH3PfusPvBHXE/uqPuJ3fM/eyOu1/cCXfSnXKn3Rn3qzvrzrnz7oK76H5zl9xld8V5lxb5MDI58lFkSuTjyNTItMj0yIxIemRmZFbkk8jsyJzI3MinkXmRzyLzIwsiCyOLIhmRzyOLI0simZEvIksjX0ayIssiyyMrIisjqyLeF94W+qK+mI/6O3xxf6dP9CV8SV/KO1/aJ/m7fBl/ty/r7/Hl/L2+vL/PV/AVfSX/rG/qm/nmvoVv6Z/zrfzzvrVv49v6F3w739538C/6ZP+S7+hf9p38K76zf9V38a/5rv5138139z38G76nf9P38r19iu/j+/q3fD/f3w/wA/0g/7Yf7N/xQ/y7PtUP9cP8e364f9+P8B/4kX6UH+3H+LF+nB/vJ/iJfpJP8x/6yf4jP8V/7Kf6aX66n+HT/Uw/y3/iZ/s5fq7/1M/zn/n5foFf6Bf5DP+5X+yX+Ez/hV/qv/RZfplf7lf4lX6VX+3X+LV+nV/vN/iNfpPf7Lf4rf4rv81v9zv8Tr/L7/Z7/Nd+r9/n9/tvfLb/1h/wf/EH/Xf+kP/eH/Y/+CP+R3/U/+SP+Z/9cf+LP+FP+lP+tD/jf/Vn/Tl/3l/wF/1v/pK/7K/w/6wxxhhjjP1L1HWO9/kn35N/jKv6CiFu3l7o8D/W3Jj/r/P+MqFdRAjxUu+uT/3XqF49JSXlj3OzlAiKLRBCRK7l5xLX4mWirWgvkkUbUeafrq+/7H6RrlM/eq8QsX+TEyOuxdfq3/3f1B8377r1FwiRWOxaTh5xLb5Wv+x/U79Aq+vUz/NdmhCt/yYnTlyLr9VPEs+Ll0Xy353JGGOMMcYYY4z9VX9ZqfP17m+v3p8n6Gs5ucW1+Hr354wxxhhjjDHGGLvxXu3e48XnkpPbdObJDZvECCH+H1gGT3jyN5Mb/ZeJMcYYY4wx9p927aL/Rq+EMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhjLuf5vfJzYjd4jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqP9jwAAAP//hQE0ng==")
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x33, &(0x7f0000000000)=0x6, 0x4)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000001100)=0x4, 0x4)
setsockopt$sock_int(r1, 0x1, 0x7, &(0x7f0000000040), 0x4)
sendto$inet6(r1, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c)
recvmmsg(r1, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f00000007c0)=""/174, 0xae}, {&(0x7f0000002140)=""/4096, 0x1000}, {&(0x7f0000000080)=""/9, 0x9}], 0x3, &(0x7f0000000900)=""/104, 0x68}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000000), 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000d84000), 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000001100), 0x4)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000f6f000), 0x0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r2 = socket(0x2, 0x3, 0x4)
bind$inet6(r2, &(0x7f0000000340)={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x1c)
r3 = socket(0x2, 0x3, 0x4)
setsockopt$bt_hci_HCI_FILTER(r3, 0x0, 0x10, &(0x7f00000000c0)={0x0, [0x10002]}, 0x10)
bind$inet6(r3, &(0x7f0000000340)={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x1c)
r4 = syz_open_dev$hidraw(&(0x7f00000008c0), 0x7, 0x511000)
poll(&(0x7f0000000180)=[{}, {r3}, {0xffffffffffffffff, 0x20}, {r4, 0x5310}, {0xffffffffffffffff, 0x400}], 0x5, 0x4)
rename(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)='./file0/file0\x00')
setsockopt$sock_int(r0, 0x1, 0x0, 0x0, 0x0)
rename(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000080)='./file1\x00')

3.719327631s ago: executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.358219844s ago: executing program 4:
r0 = syz_io_uring_setup(0x7c, &(0x7f0000000100), &(0x7f0000000000), &(0x7f0000185000))
r1 = io_uring_setup(0x4401, &(0x7f0000001040)={0x0, 0x0, 0x0, 0xfffffffc})
io_uring_enter(r1, 0x5885, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000040)={@in6={{0xa, 0x0, 0x0, @ipv4}}, 0x0, 0x0, 0x0, 0x0, "94ac873f1692ddbc702d69407eca10eedeb5dcd05446c2b07ec23159acd334e8058957bcee65a1721541ac7db2be2af67fd949859fc48a758e5d9ec2dc28f3fb330ea6b887a32239b1f039ba45bc1bc1"}, 0xd8)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x3)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r3 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r4 = dup2(r0, r1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0xd, 0x4, &(0x7f0000000580)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x80}], {0x95, 0x0, 0x70}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x80)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4, <r5=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000180)}, 0x20)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000000440)={'ip_vti0\x00', &(0x7f0000000840)={'sit0\x00', <r6=>0x0, 0x20, 0x20, 0x200, 0x401, {{0x23, 0x4, 0x2, 0x9, 0x8c, 0x0, 0x0, 0x3, 0x2f, 0x0, @broadcast, @broadcast, {[@timestamp_prespec={0x44, 0x2c, 0x2a, 0x3, 0x4, [{@dev={0xac, 0x14, 0x14, 0x2c}, 0x7}, {@loopback}, {@private=0xa010101, 0xfff}, {@loopback, 0x1}, {@private=0xa010101, 0x6}]}, @timestamp={0x44, 0xc, 0x27, 0x0, 0x4, [0x5, 0x401]}, @timestamp_prespec={0x44, 0x1c, 0x75, 0x3, 0x0, [{@private=0xa010101, 0x6}, {@multicast2, 0x7}, {@dev={0xac, 0x14, 0x14, 0x38}, 0x6}]}, @rr={0x7, 0x23, 0xfe, [@broadcast, @local, @multicast2, @empty, @empty, @empty, @multicast2, @dev={0xac, 0x14, 0x14, 0x23}]}]}}}}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000d50000002a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000dc0)={0x18, 0x3a, &(0x7f0000000b40)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xf3c5, 0x0, 0x0, 0x0, 0x26c6}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8001}}, @map_fd={0x18, 0x4, 0x1, 0x0, r5}, @generic={0x40, 0x0, 0x4, 0x1, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2a20}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7ff}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000d40)='GPL\x00', 0xde, 0x0, 0x0, 0x40f00, 0x18, '\x00', r6, 0x0, r4, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000d80)=[{0x5, 0x5, 0x9, 0x2}, {0x1, 0x2, 0x9, 0x1}, {0x2, 0x7ff, 0x3, 0x1}], 0x10, 0x1000}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000004c0)='writeback_bdi_register\x00', r7}, 0x5b)
r8 = socket$inet(0x2, 0x3, 0x4)
r9 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'team_slave_0\x00'})
sendmsg$nl_route_sched(r9, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000e80), 0x34}}, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000006c0)={r4, 0x20, &(0x7f0000000540)={&(0x7f0000000380)=""/93, 0x5d, <r10=>0x0, &(0x7f0000000900)=""/239, 0xef}}, 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0xe, 0x9, &(0x7f0000000200)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], &(0x7f0000000280)='syzkaller\x00', 0x8, 0x16, &(0x7f0000000340)=""/22, 0x41100, 0x11, '\x00', r6, 0xa, r4, 0x8, &(0x7f0000000480)={0x6, 0x3}, 0x8, 0x10, 0x0, 0x0, r10, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000700)=[{0x0, 0x1, 0xb, 0x8}, {0x4, 0x1, 0xc, 0x4}, {0x0, 0x1, 0x9, 0x8}, {0x2, 0x4, 0x6, 0x2}], 0x10, 0x8}, 0x90)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000f00)={{{@in=@local, @in=@empty}}, {{@in6=@initdev}, 0x0, @in=@remote}}, &(0x7f0000001000)=0xe8)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
timer_gettime(0x0, &(0x7f0000000400))
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000800)=[r3, r11, r0, r1, r3], 0x5)

3.33942309s ago: executing program 2:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), 0x0, &(0x7f0000000540)={[{@subsystem='pids'}, {}]})

3.328390218s ago: executing program 1:
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000080)={{{@in=@loopback, @in=@local}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, {{@in=@local}, 0x0, @in=@multicast2}}, 0xe8)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x0, 0x0, @private2}, 0x1c)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f0000000300), 0x4)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_score\x00')
read$FUSE(r0, &(0x7f0000000700)={0x2020}, 0x2020)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
pwritev(r2, &(0x7f0000000100)=[{&(0x7f0000000000)='0', 0x1}], 0x5, 0x0, 0x0)
mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000000)
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000240)='./file1\x00', 0x5, &(0x7f0000002100)=ANY=[], 0x1, 0x1a4, &(0x7f0000000000)="$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")
fallocate(r1, 0x0, 0x6, 0x9)

3.273230227s ago: executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x0, 0x0, 0x8}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000003b00)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)

2.85720341s ago: executing program 2:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$UI_SET_PHYS(r0, 0x4008556c, 0x0)

2.65641499s ago: executing program 4:
syz_mount_image$udf(&(0x7f0000002880), &(0x7f00000028c0)='./file0\x00', 0x0, &(0x7f0000002900), 0x1, 0x2862, &(0x7f0000002940)="$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")

2.230130784s ago: executing program 1:
r0 = open(&(0x7f00000002c0)='./bus\x00', 0xc4cfe, 0x0)
r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
listen(0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

1.802983405s ago: executing program 2:
syz_mount_image$nilfs2(&(0x7f0000000180), &(0x7f0000000280)='./control\x00', 0x0, &(0x7f00000000c0)={[{@order_relaxed}, {@order_strict}, {@order_relaxed}, {@order_strict}, {@discard}, {@nobarrier}, {@nobarrier}, {@nodiscard}, {@order_relaxed}, {@nobarrier}]}, 0x1, 0xa75, &(0x7f0000000ac0)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000300)=""/104, 0x68)

1.63577316s ago: executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0x19, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000200)={0x15, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f00000000c0)={0x28, 0x7, r3, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000003c0)={0x48, 0x5, r1, 0x0, <r4=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000440)={0x48, 0x7, r4, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x1aca03})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000001c0)={0x48, 0x5, r1, 0x0, <r5=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(0xffffffffffffffff, 0x3ba0, &(0x7f0000000340)={0x48, 0x7, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x180887})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000100), 0x1000a)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r6, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r2, 0x3ba0, &(0x7f0000000240)={0x48})

1.510502772s ago: executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1.115137568s ago: executing program 2:
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000080)={{{@in=@loopback, @in=@local}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, {{@in=@local}, 0x0, @in=@multicast2}}, 0xe8)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x0, 0x0, @private2}, 0x1c)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f0000000300), 0x4)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_score\x00')
read$FUSE(r0, &(0x7f0000000700)={0x2020}, 0x2020)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
pwritev(r2, &(0x7f0000000100)=[{&(0x7f0000000000)='0', 0x1}], 0x5, 0x0, 0x0)
mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1000000)
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000240)='./file1\x00', 0x5, &(0x7f0000002100)=ANY=[], 0x1, 0x1a4, &(0x7f0000000000)="$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")
fallocate(r1, 0x0, 0x6, 0x9)

985.416964ms ago: executing program 0:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000180), 0x8, 0x0)
r1 = signalfd4(r0, &(0x7f0000000140), 0x8, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10142, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
pwrite64(r2, &(0x7f0000000080)='=', 0x1, 0x800b5eb)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xff7ffffffffe]}, 0x0, 0x8)
r3 = gettid()
rt_sigtimedwait(&(0x7f0000000100)={[0xc9f]}, &(0x7f0000000240), 0x0, 0x8)
timer_create(0x0, &(0x7f0000000180)={0x0, 0xc, 0x4, @tid=r3}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendfile(r1, r2, 0x0, 0x1000000000006)

740.543621ms ago: executing program 5:
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="240000001e0005033c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\t\x00', @ANYBLOB="e7"], 0x24}}, 0x0)

612.755842ms ago: executing program 0:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

477.747068ms ago: executing program 5:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_resuseaddr={0x0, r1}}, 0x20)

370.784484ms ago: executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$TCFLSH(r0, 0x80047456, 0x20001100)

363.261987ms ago: executing program 4:
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x20, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfff)
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x20, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x0, 0x5}]}}}}}}}}, 0x0)

177.028362ms ago: executing program 2:
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000e80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000740)={[{@rodir}, {@utf8}, {@fat=@time_offset={'time_offset', 0x3d, 0xffffffffffffff95}}, {@fat=@nfs}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@shortname_win95}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp737'}}, {@shortname_win95}, {@fat=@nocase}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@uni_xlate}, {@fat=@check_normal}, {@fat=@quiet}, {@fat=@codepage={'codepage', 0x3d, '775'}}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}]}, 0x1, 0x2a8, &(0x7f00000002c0)="$eJzs3c9qK1UcB/DfpGkSdZEsXInigC5cXW7vE6RIL1zMSslCXah4b0GaILRQ8A/GrgRXblz6BILQnS/hxjfwAQR3dlE4MslMk9Q07UDT+ufz2fT0nPOd8zuTaUsXOfnw5fHB0zz2T778LTqdLBr96MdZFr1oROXrWNL/LgCAf7OzlOKPNFMnl0VEZ3NlAQAbVPvv/+nGSwIANuydd997a3cw2Hs7zzvxePzN8bD4z774Ohvf3Y9PYhTP4mF04zwiXZi1H6eUJs280IvXx5PjYZEcf/BLef3d3yOm+Z3oRm/atZx/MtjbyWcW8pOijufL9ftF/lF048UV6z8Z7D1akY9hK954baH+B9GNXz+OT2MUT6dFzPNf7eT5m+n7P794vyivyGeT42F7Om8ubd3xSwMAAAAAAAAAAAAAAAAAAAAAwH/Yg/LsnHZMz+8pusrzd7bOi2+2I6/0ls/nmeWz6kKXzgeapPihOl/nYZ7nqZw4zzfjpWY072fXAAAAAAAAAAAAAAAAAAAA8M9y9NnnBx+NRs8Ob6VRnQZQva2//nVOp6n+Qs+rsT7Vnq/VKJtrloitak4WsbaeYhO3dFuuazx3Vc0//lT3gp3r52wXa3VucRfVy73QE1VPtvoeti8md6qH5OeqJ6WUWnHD1VtXDaVaj19r5VC39t1ovTBtTNbMieyqwr59Zf5zWQ5ll3fRWrrPS43tsrEQv/Rs1Hqe//67InNaBwAAAAAAAAAAAAAAAAAAbNT8Tb8rBk/WRhupvbGyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBOzT//v0ZjUoZvMLkVh0f3vEUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+B/4KAAD//+KpXP8=")
mkdir(&(0x7f0000000280)='./control\x00', 0x0)
r0 = inotify_init1(0x0)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
inotify_add_watch(r0, &(0x7f0000000040)='./control\x00', 0x240000a2)
rmdir(&(0x7f0000000080)='./control\x00')

120.2636ms ago: executing program 5:
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000a00)={0x2020}, 0x2020)

80.169618ms ago: executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x0, 0x0, 0x0, 0x1}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB], 0x7)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001040)={0xa, {"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", 0x1025}}, 0x1006)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r5}, &(0x7f0000000200), 0x0}, 0x20)
openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000040))

0s ago: executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20-simd,anubis-generic,nhpoly1305-sse2)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000006580)={0x0, 0x0, &(0x7f0000006500)=[{&(0x7f00000061c0)="be0aeaee6bc56fd459f77887cac37c88095aef22c5fadca69cc21b2b6f91837c98c068cecdb94f98fa594602792b0c652a", 0x31}, {&(0x7f0000006200)="d8d6b7b4b7e3830ded30c94b22d761808ab2f41d365d2504b36e252e46740c663611d6107b6d4ad686448baddf142cfbf929447c36ec716295f3e67e", 0x3c}, {&(0x7f0000006240)="a024e1625f34c38095d713d4fdaa0376c8fd7a45a2c1d7488201549a1f12faeb47627b7fad0c2710e9df450ab587d0ea216e95eccc6431f11d49e43b9d4010f543b4a037994aaa516ee41f4a074ffd2effa43df1831eec4dc0964063f61521896974f743620497031ac89bd3512554", 0x6f}], 0x3}, 0x0)
recvmmsg(r1, &(0x7f0000005f40)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)=""/242, 0xf2}, {&(0x7f0000000000)=""/9, 0x9}], 0x2}}], 0x1, 0x0, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000280)={0x20, 0x0, 0x0, 0x0, 0x0, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}]}]}, 0x20}}, 0x0)

kernel console output (not intermixed with test programs):

.930857][ T8092] erofs: (device loop3): mounted with root inode @ nid 36.
[  325.194801][ T6662] erofs: (device loop3): erofs_fill_dentries: bogus dirent @ nid 46
[  325.258573][ T6662] erofs: (device loop3): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  325.283472][ T6662] erofs: (device loop3): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  325.616559][   T29] audit: type=1804 audit(1716851885.010:65): pid=8109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="file0" dev="sda1" ino=1970 res=1 errno=0
[  326.986842][ T8144] loop2: detected capacity change from 0 to 128
[  327.034272][ T8144] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  327.116133][ T8144] UDF-fs: warning (device loop2): udf_load_logicalvol: Damaged or missing LVID, forcing readonly mount
[  327.128500][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  327.135389][ T1245] ieee802154 phy1 wpan1: encryption failed: -22
[  327.589425][ T8159] loop5: detected capacity change from 0 to 1024
[  327.665303][ T8162] input: syz0 as /devices/virtual/input/input10
[  328.035858][ T8172] loop1: detected capacity change from 0 to 1024
[  328.072674][ T8172] hfsplus: bad catalog entry type
[  328.207228][   T51] hfsplus: b-tree write err: -5, ino 4
[  328.455166][ T8185] Cannot find del_set index 0 as target
[  328.473984][ T8186] loop1: detected capacity change from 0 to 128
[  328.531342][ T8186] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  328.628414][ T8186] UDF-fs: warning (device loop1): udf_load_logicalvol: Damaged or missing LVID, forcing readonly mount
[  329.210332][ T8211] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  329.277256][ T8211] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[  329.955016][ T8235] loop2: detected capacity change from 0 to 256
[  330.091412][ T8235] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  330.338267][ T8250] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  330.431396][ T8253] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
[  332.015524][   T29] audit: type=1326 audit(1716851891.410:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8269 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fccb4a7cee9 code=0x0
[  332.322394][ T8284] loop1: detected capacity change from 0 to 2048
[  332.346259][ T8284] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  332.371360][ T8284] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  335.613415][ T8322] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  335.613415][ T8322] The task syz-executor.4 (8322) triggered the difference, watch for misbehavior.
[  336.076188][ T8326] loop1: detected capacity change from 0 to 2048
[  336.135661][ T8326] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  336.189596][ T8326] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  336.942093][   T29] audit: type=1326 audit(1716851896.330:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x0
[  337.195231][ T8354] loop1: detected capacity change from 0 to 256
[  337.241012][ T8354] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  338.591756][ T8383] ALSA: seq fatal error: cannot create timer (-22)
[  339.326566][ T8395] loop1: detected capacity change from 0 to 256
[  339.442199][ T8395] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  339.480990][    T8] IPVS: starting estimator thread 0...
[  339.513155][ T8339] loop3: detected capacity change from 0 to 32768
[  339.612290][ T8400] IPVS: using max 15 ests per chain, 36000 per kthread
[  339.787410][ T8410] loop0: detected capacity change from 0 to 2048
[  339.829391][ T8413] Invalid ELF header len 8
[  339.869945][ T8339] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  339.873971][ T8410] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  339.943052][   T29] audit: type=1326 audit(1716851899.320:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x0
[  339.961655][ T8410] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  339.967791][ T8339] workqueue: Failed to create a rescuer kthread for wq "xfs-log/loop3": -EINTR
[  340.014997][ T8339] XFS (loop3): log mount failed
[  340.729954][ T8432] loop2: detected capacity change from 0 to 256
[  340.794822][ T8432] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d)
[  341.251608][   T29] audit: type=1326 audit(1716851900.640:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8441 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fc307cee9 code=0x7fc00000
[  342.092520][   T29] audit: type=1326 audit(1716851901.460:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8441 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0fc307cee9 code=0x7fc00000
[  342.132621][   T29] audit: type=1326 audit(1716851901.520:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8441 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fc307cee9 code=0x7fc00000
[  343.700519][   T29] audit: type=1326 audit(1716851903.090:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8478 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fc307cee9 code=0x7fc00000
[  343.802555][   T29] audit: type=1326 audit(1716851903.120:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8478 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0fc307cee9 code=0x7fc00000
[  343.941520][   T29] audit: type=1326 audit(1716851903.130:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8478 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fc307cee9 code=0x7fc00000
[  344.188510][ T8489] loop0: detected capacity change from 0 to 256
[  344.337756][ T8489] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d)
[  345.148306][ T8505] loop5: detected capacity change from 0 to 128
[  345.253692][ T8505] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  345.336107][ T8505] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  345.597669][ T8521] loop1: detected capacity change from 0 to 512
[  345.601239][   T29] audit: type=1326 audit(1716851904.980:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  345.646236][ T8521] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  345.701714][   T29] audit: type=1326 audit(1716851905.060:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  345.860599][   T29] audit: type=1326 audit(1716851905.080:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  345.905492][ T5121] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.982217][   T29] audit: type=1326 audit(1716851905.080:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  346.004974][    C1] vkms_vblank_simulate: vblank timer overrun
[  346.050939][ T8532] xt_TPROXY: Can be used only with -p tcp or -p udp
[  346.066267][   T29] audit: type=1326 audit(1716851905.080:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  346.088998][    C1] vkms_vblank_simulate: vblank timer overrun
[  346.151648][   T29] audit: type=1326 audit(1716851905.080:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  346.406870][   T29] audit: type=1326 audit(1716851905.080:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  346.742583][   T29] audit: type=1326 audit(1716851905.080:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  347.149985][ T8543] loop5: detected capacity change from 0 to 1024
[  347.191990][   T29] audit: type=1326 audit(1716851905.080:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  347.367618][   T29] audit: type=1326 audit(1716851905.080:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7fc00000
[  347.543857][   T61] hfsplus: b-tree write err: -5, ino 4
[  347.717594][ T8553] loop2: detected capacity change from 0 to 128
[  347.811501][ T8553] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  347.840577][ T8553] ext4 filesystem being mounted at /root/syzkaller-testdir3127449711/syzkaller.4Vfc6C/202/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  347.913733][ T8562] binder: binder_mmap: 8561 20ffb000-20fff000 bad vm_flags failed -1
[  348.546018][ T8553] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  348.656497][ T8553] fscrypt (loop2): Error allocating 'xts(aes)' transform: -4
[  348.832444][ T8581] xt_TPROXY: Can be used only with -p tcp or -p udp
[  348.859224][ T5114] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  349.045651][    T8] IPVS: starting estimator thread 0...
[  349.152909][ T8600] IPVS: using max 16 ests per chain, 38400 per kthread
[  349.223463][ T8581] loop1: detected capacity change from 0 to 2048
[  349.468587][ T8581] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  349.718548][ T8611] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  349.800897][ T5128] Bluetooth: hci6: command 0x0406 tx timeout
[  349.816837][ T5128] Bluetooth: hci2: command 0x0406 tx timeout
[  350.082447][ T5121] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.405419][ T8630] loop1: detected capacity change from 0 to 1024
[  350.470201][ T8630] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  350.510235][ T8634] loop2: detected capacity change from 0 to 128
[  350.666476][ T8634] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  350.681135][ T8634] ext4 filesystem being mounted at /root/syzkaller-testdir3127449711/syzkaller.4Vfc6C/206/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  350.963104][ T8634] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2"
[  351.232709][ T5114] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  352.246773][ T8688] loop3: detected capacity change from 0 to 128
[  352.348637][ T8688] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  352.400058][ T8688] ext4 filesystem being mounted at /root/syzkaller-testdir830305352/syzkaller.feQplP/90/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  352.534173][ T8692] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  352.983236][ T6662] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  354.423301][ T8735] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  354.777000][ T8744] loop1: detected capacity change from 0 to 64
[  354.822921][ T8745] loop5: detected capacity change from 0 to 64
[  354.854663][ T8744] hfs: unable to locate alternate MDB
[  354.884693][ T8744] hfs: continuing without an alternate MDB
[  354.915463][ T8745] hfs: unable to locate alternate MDB
[  354.945762][ T8745] hfs: continuing without an alternate MDB
[  356.177317][ T8763] loop2: detected capacity change from 0 to 40427
[  356.212683][ T8763] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  356.220554][ T8763] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  356.277651][ T8765] loop0: detected capacity change from 0 to 40427
[  356.287482][ T8765] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  356.295572][ T8765] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  356.320228][ T8763] F2FS-fs (loop2): Found nat_bits in checkpoint
[  356.433572][ T8763] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  356.595508][ T8763] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  356.605286][ T8763] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  356.614170][ T8765] F2FS-fs (loop0): Found nat_bits in checkpoint
[  356.688897][ T8765] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  356.808372][ T8765] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  356.815794][ T8765] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  359.611391][ T5114] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  359.696850][ T5114] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  359.780851][ T5114] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  359.788504][ T5114] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  359.828848][ T5114] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  359.866185][ T5114] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  359.895839][ T5114] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  359.911588][ T8802] loop1: detected capacity change from 0 to 64
[  359.966920][ T8802] hfs: unable to locate alternate MDB
[  359.972352][ T8802] hfs: continuing without an alternate MDB
[  360.170233][ T8806] loop3: detected capacity change from 0 to 64
[  360.220233][ T8806] hfs: unable to locate alternate MDB
[  360.238772][ T8806] hfs: continuing without an alternate MDB
[  360.260182][ T8808] loop5: detected capacity change from 0 to 64
[  360.321378][ T8808] hfs: unable to locate alternate MDB
[  360.344683][ T8808] hfs: continuing without an alternate MDB
[  361.108011][ T8823] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  361.227388][ T8821] loop3: detected capacity change from 0 to 2048
[  361.297245][ T8823] bridge0: port 2(bridge_slave_1) entered disabled state
[  361.313190][ T8823] bridge0: port 1(bridge_slave_0) entered disabled state
[  361.562388][ T8814] loop1: detected capacity change from 0 to 40427
[  361.574632][ T8814] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  361.582521][ T8814] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  361.654435][ T8814] F2FS-fs (loop1): Found nat_bits in checkpoint
[  361.719275][ T8814] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  361.774651][ T8814] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  361.781773][ T8814] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  362.305567][ T8830] loop5: detected capacity change from 0 to 40427
[  362.318461][ T8830] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  362.326382][ T8830] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  363.223775][ T8830] F2FS-fs (loop5): Found nat_bits in checkpoint
[  363.290006][ T8830] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  363.385816][ T8830] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  363.393112][ T8830] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  363.409359][ T5121] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  363.454369][ T5121] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  363.462024][ T5121] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  365.082321][ T5113] f2fs_printk: 4 callbacks suppressed
[  365.082348][ T5113] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix.
[  365.192775][ T5113] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix.
[  365.258016][ T5113] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix.
[  365.304316][ T5113] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix.
[  365.332836][ T8849] loop0: detected capacity change from 0 to 40427
[  365.343374][ T5113] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix.
[  365.351143][ T8849] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  365.358937][ T8849] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  365.369314][ T5113] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix.
[  365.379699][ T5113] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix.
[  365.415525][ T8849] F2FS-fs (loop0): Found nat_bits in checkpoint
[  365.479433][ T8849] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  365.526574][ T8849] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  365.536506][ T8849] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  365.613295][ T8859] loop3: detected capacity change from 0 to 2048
[  365.797671][ T8859] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  367.177615][ T5116] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  367.233349][ T5116] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  367.263758][ T5116] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  369.070476][ T8880] loop2: detected capacity change from 0 to 2048
[  369.645590][ T8884] loop3: detected capacity change from 0 to 40427
[  369.657094][ T8884] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  369.664974][ T8884] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  369.743450][ T8884] F2FS-fs (loop3): Found nat_bits in checkpoint
[  369.808507][ T8884] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  369.847854][ T8884] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  369.855028][ T8884] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  370.209357][ T8897] netlink: 'syz-executor.1': attribute type 27 has an invalid length.
[  372.390841][ T8895] overlayfs: failed to clone upperpath
[  372.668174][ T6662] f2fs_printk: 4 callbacks suppressed
[  372.668201][ T6662] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  372.734160][ T6662] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  372.795008][ T6662] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  372.843148][ T6662] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  372.892354][ T6662] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  372.939765][ T6662] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  372.996434][ T6662] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  373.036140][ T8914] loop0: detected capacity change from 0 to 64
[  373.145469][ T8914] hfs: unable to locate alternate MDB
[  373.158398][ T8914] hfs: continuing without an alternate MDB
[  373.281203][ T8897] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.289839][ T8897] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.209992][ T8897] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  374.302662][ T8897] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  374.885412][ T8897] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.916376][ T8897] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.931449][ T8897] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.977531][ T8897] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  375.225910][ T8931] bridge0: port 3(macsec0) entered blocking state
[  375.266326][ T8931] bridge0: port 3(macsec0) entered disabled state
[  375.273104][ T8931] macsec0: entered allmulticast mode
[  375.324273][ T8931] veth1_macvtap: entered allmulticast mode
[  375.385234][ T8931] macsec0: entered promiscuous mode
[  375.411575][ T8931] bridge0: port 3(macsec0) entered blocking state
[  375.418603][ T8931] bridge0: port 3(macsec0) entered forwarding state
[  375.562124][ T8950] loop1: detected capacity change from 0 to 1024
[  376.063954][ T8960] loop5: detected capacity change from 0 to 8
[  377.158012][ T8960] SQUASHFS error: zlib decompression failed, data probably corrupt
[  377.221908][ T8960] SQUASHFS error: Failed to read block 0x4e8: -5
[  377.237074][   T29] kauditd_printk_skb: 75 callbacks suppressed
[  377.237098][   T29] audit: type=1800 audit(1716851934.406:160): pid=8960 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.5" name="file1" dev="loop5" ino=5 res=0 errno=0
[  377.357044][ T8965] loop1: detected capacity change from 0 to 512
[  377.397757][ T8965] EXT4-fs (loop1): can't mount with both data=journal and delalloc
[  377.715175][ T8971] loop3: detected capacity change from 0 to 2048
[  377.767389][ T8971] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  377.897432][ T8975] loop0: detected capacity change from 0 to 4096
[  377.974530][ T8985] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  378.079957][ T8975] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0
[  378.119580][ T8988] netlink: 'syz-executor.4': attribute type 27 has an invalid length.
[  378.135456][ T8987] loop5: detected capacity change from 0 to 1024
[  378.170400][ T8975] Remounting filesystem read-only
[  378.175675][ T8975] NILFS error (device loop0): nilfs_readdir: bad page in #2
[  378.647141][ T8998] loop3: detected capacity change from 0 to 8
[  378.694927][ T8998] SQUASHFS error: zlib decompression failed, data probably corrupt
[  378.706762][ T8998] SQUASHFS error: Failed to read block 0x4e8: -5
[  378.728441][   T29] audit: type=1800 audit(1716851935.772:161): pid=8998 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="file1" dev="loop3" ino=5 res=0 errno=0
[  380.414735][ T9010] loop0: detected capacity change from 0 to 512
[  380.445673][ T9010] EXT4-fs (loop0): can't mount with both data=journal and delalloc
[  380.667793][ T8988] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  380.711666][ T8988] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  381.292661][ T8988] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  381.325821][ T8988] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  381.333342][ T9027] loop0: detected capacity change from 0 to 1024
[  381.358341][ T8988] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  381.394492][ T8988] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  381.508998][ T9029] loop5: detected capacity change from 0 to 4096
[  381.605629][ T9030] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  381.699590][ T9029] NILFS error (device loop5): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0
[  381.784074][ T9029] Remounting filesystem read-only
[  381.809564][ T9029] NILFS error (device loop5): nilfs_readdir: bad page in #2
[  382.080499][ T9037] loop2: detected capacity change from 0 to 8
[  383.292851][ T9037] SQUASHFS error: zlib decompression failed, data probably corrupt
[  383.300914][ T9037] SQUASHFS error: Failed to read block 0x4e8: -5
[  383.434112][   T29] audit: type=1800 audit(1716851940.101:162): pid=9037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.2" name="file1" dev="loop2" ino=5 res=0 errno=0
[  384.679058][ T9059] loop5: detected capacity change from 0 to 1024
[  384.691238][ T9063] syz-executor.1 uses obsolete (PF_INET,SOCK_PACKET)
[  385.593634][ T9080] netlink: 'syz-executor.5': attribute type 27 has an invalid length.
[  386.196241][ T5126] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  386.213612][ T5126] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  386.225888][ T5126] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  386.236164][ T5126] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  386.245515][ T5126] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  386.254145][ T5126] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  386.287536][ T9080] bridge0: port 3(macsec0) entered disabled state
[  386.294482][ T9080] bridge0: port 2(bridge_slave_1) entered disabled state
[  386.303216][ T9080] bridge0: port 1(bridge_slave_0) entered disabled state
[  386.936397][ T9080] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  387.020088][ T9080] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  387.447916][ T9080] veth1_macvtap: left allmulticast mode
[  387.506491][ T9080] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  387.525940][ T9080] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  387.544146][ T9080] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  387.557443][ T9080] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.468350][ T3854] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.476117][ T5126] Bluetooth: hci3: command tx timeout
[  391.096343][ T3854] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.326043][ T3854] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.433706][ T9134] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.1'.
[  391.468291][ T9134] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'.
[  391.492881][ T9134] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.1'.
[  391.594397][ T3854] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.689664][ T9137] netlink: 'syz-executor.4': attribute type 27 has an invalid length.
[  391.942353][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  391.949969][ T1245] ieee802154 phy1 wpan1: encryption failed: -22
[  392.448976][ T3854] bridge_slave_1: left allmulticast mode
[  392.472144][ T3854] bridge_slave_1: left promiscuous mode
[  392.494684][ T3854] bridge0: port 2(bridge_slave_1) entered disabled state
[  392.551672][ T3854] bridge_slave_0: left allmulticast mode
[  392.565000][ T3854] bridge_slave_0: left promiscuous mode
[  392.574791][ T3854] bridge0: port 1(bridge_slave_0) entered disabled state
[  392.694863][ T5126] Bluetooth: hci3: command tx timeout
[  394.205462][ T9167] loop2: detected capacity change from 0 to 1024
[  394.285044][ T9167] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  394.325868][ T9167] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  394.381395][ T9167] jbd2_journal_init_inode: Cannot locate journal superblock
[  394.441823][ T9167] EXT4-fs (loop2): Could not load journal inode
[  395.158228][ T5126] Bluetooth: hci3: command tx timeout
[  395.935995][ T3854] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  395.952529][ T3854] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  395.972863][ T9186] loop5: detected capacity change from 0 to 2048
[  395.981824][ T3854] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  396.017611][ T9186] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  396.023285][ T3854] bond0 (unregistering): Released all slaves
[  396.089401][ T9186] EXT4-fs error (device loop5): ext4_lookup:1854: inode #14: comm syz-executor.5: iget: bad extra_isize 1056 (inode size 256)
[  396.208316][ T9086] chnl_net:caif_netlink_parms(): no params data found
[  396.327587][ T5113] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.339032][ T3854] IPVS: stopping backup sync thread 7232 ...
[  397.410125][ T5126] Bluetooth: hci3: command tx timeout
[  398.033802][ T9212] loop5: detected capacity change from 0 to 1024
[  398.098653][ T9212] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  398.158168][ T9212] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  398.192084][ T9212] jbd2_journal_init_inode: Cannot locate journal superblock
[  398.230864][ T9212] EXT4-fs (loop5): Could not load journal inode
[  398.321544][ T9086] bridge0: port 1(bridge_slave_0) entered blocking state
[  398.350703][ T9086] bridge0: port 1(bridge_slave_0) entered disabled state
[  398.377593][ T9086] bridge_slave_0: entered allmulticast mode
[  398.430144][ T9086] bridge_slave_0: entered promiscuous mode
[  398.436836][ T9219] loop2: detected capacity change from 0 to 256
[  398.561079][ T9086] bridge0: port 2(bridge_slave_1) entered blocking state
[  398.577996][ T9086] bridge0: port 2(bridge_slave_1) entered disabled state
[  398.585349][ T9086] bridge_slave_1: entered allmulticast mode
[  398.600544][ T9086] bridge_slave_1: entered promiscuous mode
[  399.816599][ T9086] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  399.835171][ T9230] loop5: detected capacity change from 0 to 2048
[  399.905052][ T9086] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  399.935195][ T9230] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  399.992152][ T9230] EXT4-fs error (device loop5): ext4_lookup:1854: inode #14: comm syz-executor.5: iget: bad extra_isize 1056 (inode size 256)
[  400.112151][ T3854] hsr_slave_0: left promiscuous mode
[  400.165553][ T3854] hsr_slave_1: left promiscuous mode
[  400.214389][ T3854] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  400.223796][ T3854] batman_adv: batadv0: Removing interface: batadv_slave_0
[  400.230690][ T5113] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.249301][ T3854] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  400.276170][ T3854] batman_adv: batadv0: Removing interface: batadv_slave_1
[  400.319488][ T3854] batman_adv: batadv0: Removing interface: hsr_slave_0
[  400.481605][ T3854] veth1_macvtap: left promiscuous mode
[  400.491943][ T3854] veth0_macvtap: left promiscuous mode
[  400.513697][ T3854] veth1_vlan: left promiscuous mode
[  400.528551][ T3854] veth0_vlan: left promiscuous mode
[  400.897757][ T9257] loop2: detected capacity change from 0 to 1024
[  400.936431][ T9257] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  400.976658][ T9257] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  401.012102][ T9257] jbd2_journal_init_inode: Cannot locate journal superblock
[  401.030323][ T9257] EXT4-fs (loop2): Could not load journal inode
[  402.142578][ T5129] Bluetooth: hci3: command 0x0405 tx timeout
[  402.952466][ T9291] loop1: detected capacity change from 0 to 256
[  404.009324][ T3854] team0 (unregistering): Port device team_slave_1 removed
[  404.244446][ T3854] team0 (unregistering): Port device team_slave_0 removed
[  404.397818][ T5129] Bluetooth: hci3: command 0x0405 tx timeout
[  405.557785][ T9332] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  405.598329][ T9332] vhci_hcd: invalid port number 10
[  405.603753][ T9332] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  405.723238][ T9277] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  405.812987][ T9307] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  405.868101][ T9086] team0: Port device team_slave_0 added
[  405.957907][ T9086] team0: Port device team_slave_1 added
[  406.272599][ T9086] batman_adv: batadv0: Adding interface: batadv_slave_0
[  406.304120][ T9086] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  406.421797][ T9086] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  406.471771][ T9086] batman_adv: batadv0: Adding interface: batadv_slave_1
[  406.496102][ T9086] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  406.608787][ T9086] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  406.853672][ T9364] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  406.907853][ T9086] hsr_slave_0: entered promiscuous mode
[  406.951141][ T9086] hsr_slave_1: entered promiscuous mode
[  406.974484][ T9086] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  406.990227][ T9086] Cannot create hsr debugfs directory
[  407.234655][ T5182] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  407.441119][ T5182] usb 4-1: Using ep0 maxpacket: 8
[  407.466936][ T5182] usb 4-1: config 0 has an invalid interface number: 5 but max is 0
[  407.505597][ T5182] usb 4-1: config 0 has no interface number 0
[  407.529451][ T5182] usb 4-1: config 0 interface 5 has no altsetting 0
[  407.562728][ T5182] usb 4-1: New USB device found, idVendor=1498, idProduct=a090, bcdDevice=f0.ff
[  407.601136][ T5182] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.633772][ T5182] usb 4-1: Product: syz
[  407.645849][ T5182] usb 4-1: Manufacturer: syz
[  407.657333][ T5182] usb 4-1: SerialNumber: syz
[  407.688288][ T5182] usb 4-1: config 0 descriptor??
[  408.256945][   T25] usb 4-1: USB disconnect, device number 3
[  408.266904][   T25] dvb-usb: generic DVB-USB module successfully deinitialized and disconnected.
[  408.356256][ T9368] loop2: detected capacity change from 0 to 32768
[  408.392367][ T9368] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (9368)
[  408.447952][ T9368] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  408.459132][ T9368] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  408.480311][ T9368] BTRFS info (device loop2): using free-space-tree
[  408.595782][ T9396] ax25_connect(): syz-executor.1 uses autobind, please contact jreuter@yaina.de
[  408.703034][ T9086] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  408.731304][ T9086] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  408.746828][   T29] audit: type=1800 audit(1716851963.480:163): pid=9368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=260 res=0 errno=0
[  408.791321][ T9086] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  408.852388][ T9086] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  408.970209][   T29] audit: type=1804 audit(1716851963.692:164): pid=9408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2651885498/syzkaller.JUnLtB/303/bus" dev="sda1" ino=1946 res=1 errno=0
[  409.172233][ T9377] loop5: detected capacity change from 0 to 32768
[  409.254215][ T9377] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz-executor.5 (9377)
[  409.357821][ T9377] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  409.368089][ T9377] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  409.391702][ T9412] loop1: detected capacity change from 0 to 2048
[  409.425129][ T5114] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  409.445320][ T9377] BTRFS info (device loop5): using free-space-tree
[  409.450699][ T9412] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  409.609675][ T9086] 8021q: adding VLAN 0 to HW filter on device bond0
[  409.659846][ T9086] 8021q: adding VLAN 0 to HW filter on device team0
[  409.711513][ T8920] bridge0: port 1(bridge_slave_0) entered blocking state
[  409.718876][ T8920] bridge0: port 1(bridge_slave_0) entered forwarding state
[  409.731348][ T8920] bridge0: port 2(bridge_slave_1) entered blocking state
[  409.738650][ T8920] bridge0: port 2(bridge_slave_1) entered forwarding state
[  410.596799][ T5113] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  411.391139][ T9086] 8021q: adding VLAN 0 to HW filter on device batadv0
[  411.704084][ T9086] veth0_vlan: entered promiscuous mode
[  411.755116][ T9086] veth1_vlan: entered promiscuous mode
[  411.935734][ T9086] veth0_macvtap: entered promiscuous mode
[  411.981034][ T9086] veth1_macvtap: entered promiscuous mode
[  412.105003][ T9086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  412.129170][ T9086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  412.139931][ T9086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  412.160830][ T9086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  412.182712][ T9086] batman_adv: batadv0: Interface activated: batadv_slave_0
[  412.256420][ T9086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  412.295711][ T9086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  412.350342][ T9086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  412.387903][ T9086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  412.429534][ T9086] batman_adv: batadv0: Interface activated: batadv_slave_1
[  412.490054][ T9086] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  412.518068][ T9086] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  412.546186][ T9086] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  412.583274][ T9086] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  413.068482][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  413.110278][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  413.279283][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  413.312761][ T9479] ax25_connect(): syz-executor.3 uses autobind, please contact jreuter@yaina.de
[  413.316305][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  413.608708][ T9459] loop2: detected capacity change from 0 to 32768
[  413.650640][ T9459] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (9459)
[  413.726274][ T9459] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  413.765946][ T9459] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  413.806201][ T9459] BTRFS info (device loop2): using free-space-tree
[  413.974004][ T9505] Zero length message leads to an empty skb
[  414.047790][   T29] audit: type=1800 audit(1716851968.372:165): pid=9459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=260 res=0 errno=0
[  414.308749][ T5114] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  414.321011][ T9514] loop1: detected capacity change from 0 to 256
[  414.570962][   T29] audit: type=1800 audit(1716851968.843:166): pid=9516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="overlay" ino=1980 res=0 errno=0
[  414.639620][   T29] audit: type=1800 audit(1716851968.852:167): pid=9511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="overlay" ino=1980 res=0 errno=0
[  414.704065][   T29] audit: type=1800 audit(1716851968.852:168): pid=9519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="overlay" ino=1980 res=0 errno=0
[  414.853097][   T29] audit: type=1800 audit(1716851968.944:169): pid=9511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="overlay" ino=1980 res=0 errno=0
[  415.077731][ T9525] loop1: detected capacity change from 0 to 512
[  415.165388][ T9525] EXT4-fs (loop1): failed to initialize system zone (-117)
[  415.219530][ T9525] EXT4-fs (loop1): mount failed
[  417.203333][ T9533] loop2: detected capacity change from 0 to 32768
[  417.236387][ T9543] loop0: detected capacity change from 0 to 32768
[  417.281467][ T9543] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (9543)
[  417.320003][ T9533] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  417.371114][ T9543] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  417.392693][ T9547] loop3: detected capacity change from 0 to 32768
[  417.420202][ T9547] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (9547)
[  417.422909][ T9543] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  417.484353][ T9547] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  417.498510][ T9543] BTRFS info (device loop0): using free-space-tree
[  417.514170][ T9547] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  417.529933][ T9546] loop5: detected capacity change from 0 to 32768
[  417.534703][ T9547] BTRFS info (device loop3): using free-space-tree
[  417.562500][ T9533] XFS (loop2): Ending clean mount
[  417.564733][ T9546] BTRFS: device /dev/loop5 (7:5) using temp-fsid abff8936-f20b-4732-a704-5d71b466b152
[  417.600008][ T9546] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz-executor.5 (9546)
[  417.637248][ T9533] XFS (loop2): Quotacheck needed: Please wait.
[  417.675410][ T9546] BTRFS info (device loop5): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  417.717478][ T9546] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  417.762604][ T9546] BTRFS info (device loop5): using free-space-tree
[  417.801293][ T9533] XFS (loop2): Quotacheck: Done.
[  417.863672][   T29] audit: type=1800 audit(1716851971.898:170): pid=9547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file1" dev="loop3" ino=260 res=0 errno=0
[  418.103082][ T6662] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  418.140320][   T29] audit: type=1800 audit(1716851972.156:171): pid=9546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file1" dev="loop5" ino=260 res=0 errno=0
[  418.152426][ T9086] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  418.195924][ T5114] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  418.314772][ T9542] loop1: detected capacity change from 0 to 32768
[  418.379287][ T9542] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  418.388318][ T9542] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  418.477348][ T5113] BTRFS info (device loop5): last unmount of filesystem abff8936-f20b-4732-a704-5d71b466b152
[  418.566587][ T9542] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 1ms
[  418.605576][ T8920] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  418.616536][ T8920] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  419.279623][ T8920] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 612ms
[  419.325810][ T8920] gfs2: fsid=syz:syz.0: jid=0: Done
[  419.351584][ T9542] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  419.370270][ T9542] gfs2: fsid=syz:syz.0: can't create logd thread: -4
[  419.371951][ T9612] loop3: detected capacity change from 0 to 1024
[  419.587868][ T9612] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  420.100429][ T6662] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.666451][ T9642] loop0: detected capacity change from 0 to 1024
[  420.984480][ T9642] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.251522][ T9086] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.112063][ T9636] loop5: detected capacity change from 0 to 32768
[  422.149043][ T9636] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz-executor.5 (9636)
[  422.238863][ T9636] BTRFS info (device loop5): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  422.287430][ T9636] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  422.323646][ T9636] BTRFS info (device loop5): using free-space-tree
[  422.424452][ T9640] loop3: detected capacity change from 0 to 32768
[  422.512874][ T9640] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  422.651628][   T29] audit: type=1800 audit(1716851976.301:172): pid=9636 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file1" dev="loop5" ino=260 res=0 errno=0
[  422.817187][ T9640] XFS (loop3): Ending clean mount
[  422.898167][ T9640] XFS (loop3): Quotacheck needed: Please wait.
[  422.936884][ T9650] loop2: detected capacity change from 0 to 32768
[  423.056091][ T5113] BTRFS info (device loop5): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  423.079436][ T9650] BTRFS: device /dev/loop2 (7:2) using temp-fsid 1a011cc6-0c37-4bec-b743-9b9e642f87ca
[  423.098747][ T9650] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (9650)
[  423.160186][ T9650] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  423.172189][ T9650] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  423.181788][ T9640] XFS (loop3): Quotacheck: Done.
[  423.218503][ T9650] BTRFS info (device loop2): using free-space-tree
[  423.472110][   T29] audit: type=1326 audit(1716851977.076:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9717 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f018a87cee9 code=0x0
[  423.574307][ T6662] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  423.754929][   T29] audit: type=1800 audit(1716851977.334:174): pid=9650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=260 res=0 errno=0
[  423.973789][ T5114] BTRFS info (device loop2): last unmount of filesystem 1a011cc6-0c37-4bec-b743-9b9e642f87ca
[  424.193205][ T9729] loop5: detected capacity change from 0 to 4096
[  424.523393][ T9729] ntfs3: loop5: failed to convert "0080" to cp860
[  424.548002][ T9729] ntfs3: loop5: failed to convert name for inode 1e.
[  425.131897][ T5126] Bluetooth: hci6: unexpected event for opcode 0x2024
[  426.046499][   T29] audit: type=1326 audit(1716851979.457:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9750 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d427cee9 code=0x7fc00000
[  426.514584][   T29] audit: type=1804 audit(1716851979.882:176): pid=9778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="file0" dev="sda1" ino=1951 res=1 errno=0
[  427.179105][ T5126] Bluetooth: hci6: unexpected event for opcode 0x2024
[  428.086869][   T29] audit: type=1326 audit(1716851982.339:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9797 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d427cee9 code=0x7fc00000
[  428.352474][ T9806] loop3: detected capacity change from 0 to 512
[  428.431931][ T9806] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  428.444987][ T9806] ext4 filesystem being mounted at /root/syzkaller-testdir830305352/syzkaller.feQplP/148/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  428.608982][ T9806] EXT4-fs error (device loop3): ext4_do_update_inode:5075: inode #2: comm syz-executor.3: corrupted inode contents
[  428.639486][ T9806] EXT4-fs error (device loop3): ext4_dirty_inode:5935: inode #2: comm syz-executor.3: mark_inode_dirty error
[  428.659621][ T9806] EXT4-fs error (device loop3): ext4_do_update_inode:5075: inode #2: comm syz-executor.3: corrupted inode contents
[  428.692785][ T9806] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz-executor.3: mark_inode_dirty error
[  428.914628][ T6662] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.532085][ T5126] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[  429.543932][ T5126] Bluetooth: hci6: Injecting HCI hardware error event
[  429.553610][ T5129] Bluetooth: hci6: hardware error 0x00
[  430.356923][ T9830] loop0: detected capacity change from 0 to 164
[  430.921930][ T9830] trusted_key: encrypted_key: keylen parameter is missing
[  431.032382][ T5126] Bluetooth: hci6: unexpected event for opcode 0x2024
[  431.241687][ T9847] loop1: detected capacity change from 0 to 512
[  431.648197][ T9847] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  431.676836][ T9847] ext4 filesystem being mounted at /root/syzkaller-testdir2651885498/syzkaller.JUnLtB/328/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  431.795695][ T5129] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  431.823674][ T9847] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz-executor.1: corrupted inode contents
[  431.837229][ T9847] EXT4-fs error (device loop1): ext4_dirty_inode:5935: inode #2: comm syz-executor.1: mark_inode_dirty error
[  431.847878][ T9847] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz-executor.1: corrupted inode contents
[  431.848433][ T9847] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz-executor.1: mark_inode_dirty error
[  431.872138][ T9861] fuse: root generation should be zero
[  431.947202][   T29] audit: type=1326 audit(1716851985.874:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9840 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f64d427cee9 code=0x7fc00000
[  432.090016][ T5121] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.669938][   T29] audit: type=1326 audit(1716851986.566:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9889 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7ffc0000
[  432.740916][   T29] audit: type=1326 audit(1716851986.584:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9889 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7ffc0000
[  432.838691][ T9888] loop1: detected capacity change from 0 to 164
[  432.922332][   T29] audit: type=1326 audit(1716851986.594:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9889 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f3fca67cee9 code=0x7ffc0000
[  433.022320][   T29] audit: type=1326 audit(1716851986.594:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9889 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7ffc0000
[  433.197373][   T29] audit: type=1326 audit(1716851986.603:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9889 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f3fca67cee9 code=0x7ffc0000
[  433.221842][ T9888] trusted_key: encrypted_key: keylen parameter is missing
[  433.297167][   T29] audit: type=1326 audit(1716851986.603:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9889 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7ffc0000
[  433.368820][   T29] audit: type=1326 audit(1716851986.612:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9889 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fca67cee9 code=0x7ffc0000
[  433.504760][ T9902] loop5: detected capacity change from 0 to 512
[  433.555422][ T5129] Bluetooth: hci2: unexpected event for opcode 0x2024
[  433.726931][ T9902] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  433.758002][ T9902] ext4 filesystem being mounted at /root/syzkaller-testdir224111210/syzkaller.cHTlcJ/286/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  433.939313][ T9902] EXT4-fs error (device loop5): ext4_do_update_inode:5075: inode #2: comm syz-executor.5: corrupted inode contents
[  433.960684][ T9902] EXT4-fs error (device loop5): ext4_dirty_inode:5935: inode #2: comm syz-executor.5: mark_inode_dirty error
[  433.986851][ T9902] EXT4-fs error (device loop5): ext4_do_update_inode:5075: inode #2: comm syz-executor.5: corrupted inode contents
[  434.000494][ T9902] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #2: comm syz-executor.5: mark_inode_dirty error
[  434.157516][ T9921] loop1: detected capacity change from 0 to 4096
[  434.176795][ T9921] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  434.194293][ T5113] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.283018][ T9921] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  434.322069][   T29] audit: type=1800 audit(1716851988.098:186): pid=9921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=0 res=0 errno=0
[  434.409693][   T29] audit: type=1326 audit(1716851988.172:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x7fc00000
[  434.482757][   T29] audit: type=1326 audit(1716851988.172:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f018a87cee9 code=0x7fc00000
[  434.508307][   T29] audit: type=1326 audit(1716851988.172:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x7fc00000
[  434.531503][   T29] audit: type=1326 audit(1716851988.172:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x7fc00000
[  434.554640][   T29] audit: type=1326 audit(1716851988.172:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9901 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x7fc00000
[  434.600722][ T9928] netlink: 14 bytes leftover after parsing attributes in process `syz-executor.5'.
[  434.628473][ T9928] netlink: del zone limit has 4 unknown bytes
[  434.800568][ T9932] netlink: 'syz-executor.2': attribute type 32 has an invalid length.
[  436.041417][ T9939] 9pnet_fd: Insufficient options for proto=fd
[  436.438333][ T9953] loop0: detected capacity change from 0 to 1024
[  436.568066][ T9956] loop1: detected capacity change from 0 to 512
[  436.722256][ T9956] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.739251][ T9956] ext4 filesystem being mounted at /root/syzkaller-testdir2651885498/syzkaller.JUnLtB/334/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  436.756661][ T5129] Bluetooth: hci2: unexpected event for opcode 0x2024
[  436.865040][ T9956] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz-executor.1: corrupted inode contents
[  436.900127][ T9956] EXT4-fs error (device loop1): ext4_dirty_inode:5935: inode #2: comm syz-executor.1: mark_inode_dirty error
[  436.947040][ T9956] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz-executor.1: corrupted inode contents
[  436.990396][ T9956] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz-executor.1: mark_inode_dirty error
[  437.508511][ T5121] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.777405][   T29] audit: type=1326 audit(1716851991.255:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x7fc00000
[  437.988559][ T5129] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  438.049623][ T5129] Bluetooth: hci2: Injecting HCI hardware error event
[  438.071026][ T5129] Bluetooth: hci2: hardware error 0x00
[  438.348289][   T29] audit: type=1326 audit(1716851991.301:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f018a87cee9 code=0x7fc00000
[  438.377128][ T9982] loop0: detected capacity change from 0 to 512
[  438.407120][ T9982] EXT4-fs: Ignoring removed mblk_io_submit option
[  438.454449][ T9982] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  438.467576][   T29] audit: type=1326 audit(1716851991.329:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x7fc00000
[  439.716856][   T29] audit: type=1800 audit(1716851993.045:195): pid=9983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.2" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  439.918892][ T9995] 9pnet_fd: Insufficient options for proto=fd
[  440.323066][T10003] loop0: detected capacity change from 0 to 128
[  440.366793][ T5129] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  440.389022][T10003] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  440.473731][T10003] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  440.532597][T10009] loop1: detected capacity change from 0 to 2048
[  440.643140][T10014] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  440.692930][T10013] loop5: detected capacity change from 0 to 4096
[  440.721783][T10013] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[  440.777212][T10016] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  440.809283][T10013] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  440.990529][   T29] audit: type=1800 audit(1716851994.245:196): pid=10013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=0 res=0 errno=0
[  441.016495][ T9086] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  441.024074][ T9086] FAT-fs (loop0): Filesystem has been set read-only
[  441.049302][ T9086] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  443.624411][T10035] 9pnet_fd: Insufficient options for proto=fd
[  443.652961][ T5411] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.117633][ T5411] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.180918][   T29] audit: type=1800 audit(1716851997.199:197): pid=10040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.1" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  444.574904][   T29] audit: type=1800 audit(1716851997.559:198): pid=10050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  444.603362][ T5411] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.732471][T10056] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  444.902009][T10055] loop5: detected capacity change from 0 to 2048
[  445.076340][T10064] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  445.114165][T10059] loop1: detected capacity change from 0 to 4096
[  445.190333][T10059] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  445.291307][T10066] binder_alloc: 10065: binder_alloc_buf size 4294966752 failed, no address space
[  445.302022][T10066] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 8192 (num: 1 largest: 8192)
[  445.397207][T10059] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  445.529860][ T5411] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.555631][   T29] audit: type=1800 audit(1716851998.445:199): pid=10059 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=0 res=0 errno=0
[  447.282592][ T5126] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  447.303325][ T5126] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  447.312290][ T5126] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  447.327595][ T5126] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  447.346240][ T5126] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  447.356880][ T5126] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  447.437553][ T5411] bridge_slave_1: left allmulticast mode
[  447.453986][ T5411] bridge_slave_1: left promiscuous mode
[  447.482680][ T5411] bridge0: port 2(bridge_slave_1) entered disabled state
[  447.498340][T10082] 9pnet_fd: Insufficient options for proto=fd
[  447.513545][ T5411] bridge_slave_0: left allmulticast mode
[  447.536956][ T5411] bridge_slave_0: left promiscuous mode
[  447.559789][ T5411] bridge0: port 1(bridge_slave_0) entered disabled state
[  447.613168][T10086] loop1: detected capacity change from 0 to 128
[  447.699633][T10086] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  447.802579][   T29] audit: type=1800 audit(1716852000.522:200): pid=10074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.5" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  447.864853][ T5129] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  447.881010][ T5129] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  447.889440][ T5129] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  447.908889][T10092] loop3: detected capacity change from 0 to 128
[  447.916164][ T5129] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  447.924529][ T5129] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  447.932283][ T5129] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  447.942936][T10092] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  447.972981][T10092] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  448.279303][ T6662] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  448.309629][ T6662] FAT-fs (loop3): Filesystem has been set read-only
[  448.358329][ T6662] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  448.551359][   T29] audit: type=1800 audit(1716852001.223:201): pid=10096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.5" name="SYSV00000000" dev="hugetlbfs" ino=6 res=0 errno=0
[  448.828913][T10102] binder_alloc: 10101: binder_alloc_buf size 4294966752 failed, no address space
[  448.838461][T10102] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 8192 (num: 1 largest: 8192)
[  448.880307][   T29] audit: type=1800 audit(1716852001.528:202): pid=10099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.1" name="SYSV00000000" dev="hugetlbfs" ino=6 res=0 errno=0
[  449.225658][ T5411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  449.257328][ T5411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  449.280809][ T5411] bond0 (unregistering): Released all slaves
[  449.509243][T10110] loop1: detected capacity change from 0 to 2048
[  449.517982][T10105] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  449.656118][ T5129] Bluetooth: hci0: command tx timeout
[  449.665876][T10113] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  450.170982][ T5129] Bluetooth: hci3: command tx timeout
[  451.815766][ T5411] hsr_slave_0: left promiscuous mode
[  451.846357][T10129] binder_alloc: 10127: binder_alloc_buf size 4294966752 failed, no address space
[  451.856130][T10129] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 8192 (num: 1 largest: 8192)
[  451.866202][ T5411] hsr_slave_1: left promiscuous mode
[  451.873632][ T5411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  451.885926][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  451.905474][ T5129] Bluetooth: hci0: command tx timeout
[  451.923045][ T5411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  451.934943][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_1
[  452.131880][ T5411] veth1_macvtap: left promiscuous mode
[  452.163274][ T5411] veth0_macvtap: left promiscuous mode
[  452.171064][ T5411] veth1_vlan: left promiscuous mode
[  452.196567][ T5411] veth0_vlan: left promiscuous mode
[  452.320582][T10135] loop1: detected capacity change from 0 to 1024
[  452.414261][ T5129] Bluetooth: hci3: command tx timeout
[  452.883181][ T5126] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  452.899812][ T5126] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  452.911846][ T5126] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  452.928931][ T5126] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  452.933595][T10138] use of bytesused == 0 is deprecated and will be removed in the future,
[  452.947977][ T5126] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  452.956511][ T5126] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  452.987523][T10138] use the actual size instead.
[  453.650673][ T5126] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  453.676180][ T5126] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  453.691727][ T5126] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  453.721174][ T5126] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  453.737792][ T5126] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  453.767544][ T5126] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  454.146823][ T5126] Bluetooth: hci0: command tx timeout
[  454.220898][ T5411] team0 (unregistering): Port device team_slave_1 removed
[  454.301412][ T5411] team0 (unregistering): Port device team_slave_0 removed
[  454.674268][ T5126] Bluetooth: hci3: command tx timeout
[  455.190992][ T5126] Bluetooth: hci1: command tx timeout
[  455.271091][T10143] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  456.053500][ T5126] Bluetooth: hci5: command tx timeout
[  456.117965][   T29] audit: type=1326 audit(1716852008.201:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x0
[  456.402176][ T5126] Bluetooth: hci0: command tx timeout
[  456.615478][T10090] chnl_net:caif_netlink_parms(): no params data found
[  456.756015][T10076] chnl_net:caif_netlink_parms(): no params data found
[  456.876048][ T5129] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  456.888528][ T5129] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  456.900008][ T5129] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  456.917684][ T5129] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  456.925713][ T5122] Bluetooth: hci3: command tx timeout
[  456.942364][ T5129] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  456.953463][ T5129] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  457.159426][   T29] audit: type=1800 audit(1716852009.170:204): pid=10186 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1941 res=0 errno=0
[  457.440764][ T5129] Bluetooth: hci1: command tx timeout
[  457.475793][T10139] chnl_net:caif_netlink_parms(): no params data found
[  457.843590][T10076] bridge0: port 1(bridge_slave_0) entered blocking state
[  457.851090][T10076] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.858981][T10076] bridge_slave_0: entered allmulticast mode
[  457.878095][T10076] bridge_slave_0: entered promiscuous mode
[  457.924351][T10090] bridge0: port 1(bridge_slave_0) entered blocking state
[  457.938746][T10090] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.946143][T10090] bridge_slave_0: entered allmulticast mode
[  457.956117][T10090] bridge_slave_0: entered promiscuous mode
[  457.967127][T10202] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  458.095298][T10076] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.103041][T10076] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.110273][T10076] bridge_slave_1: entered allmulticast mode
[  458.119277][T10076] bridge_slave_1: entered promiscuous mode
[  458.169075][T10090] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.176361][T10090] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.183812][T10090] bridge_slave_1: entered allmulticast mode
[  458.192833][T10090] bridge_slave_1: entered promiscuous mode
[  458.318170][ T5129] Bluetooth: hci5: command tx timeout
[  458.490374][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  458.496962][ T1245] ieee802154 phy1 wpan1: encryption failed: -22
[  458.516757][T10076] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  458.549616][T10147] chnl_net:caif_netlink_parms(): no params data found
[  458.635452][T10090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  458.663671][T10076] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  458.866134][T10090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  459.332360][ T5129] Bluetooth: hci4: command tx timeout
[  459.694118][ T5129] Bluetooth: hci1: command tx timeout
[  459.766628][T10076] team0: Port device team_slave_0 added
[  459.824375][T10139] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.835810][T10139] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.855477][T10139] bridge_slave_0: entered allmulticast mode
[  459.865496][T10139] bridge_slave_0: entered promiscuous mode
[  459.971923][T10090] team0: Port device team_slave_0 added
[  460.004533][T10076] team0: Port device team_slave_1 added
[  460.088648][T10139] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.105688][T10139] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.115026][T10139] bridge_slave_1: entered allmulticast mode
[  460.124980][T10139] bridge_slave_1: entered promiscuous mode
[  460.230311][T10090] team0: Port device team_slave_1 added
[  460.238543][   T29] audit: type=1326 audit(1716852012.013:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10226 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f018a87cee9 code=0x0
[  460.435662][T10076] batman_adv: batadv0: Adding interface: batadv_slave_0
[  460.443323][T10076] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.471214][T10076] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  460.508758][T10139] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  460.555184][T10090] batman_adv: batadv0: Adding interface: batadv_slave_0
[  460.562395][ T5129] Bluetooth: hci5: command tx timeout
[  460.571179][T10090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.597994][T10090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  460.611227][T10076] batman_adv: batadv0: Adding interface: batadv_slave_1
[  460.620384][T10076] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.647140][T10076] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  460.709258][T10139] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  460.807963][T10147] bridge0: port 1(bridge_slave_0) entered blocking state
[  460.816065][T10147] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.824729][T10147] bridge_slave_0: entered allmulticast mode
[  460.834786][T10147] bridge_slave_0: entered promiscuous mode
[  460.846787][T10147] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.854431][T10147] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.861854][T10147] bridge_slave_1: entered allmulticast mode
[  460.880093][T10147] bridge_slave_1: entered promiscuous mode
[  460.891717][T10090] batman_adv: batadv0: Adding interface: batadv_slave_1
[  460.900267][T10090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.926602][T10090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  461.165561][T10139] team0: Port device team_slave_0 added
[  461.557588][ T5129] Bluetooth: hci4: command tx timeout
[  461.623343][T10139] team0: Port device team_slave_1 added
[  461.992090][ T5129] Bluetooth: hci1: command tx timeout
[  462.005013][   T29] audit: type=1800 audit(1716852013.481:206): pid=10236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1941 res=0 errno=0
[  462.364815][T10147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  462.505793][T10076] hsr_slave_0: entered promiscuous mode
[  462.522723][T10076] hsr_slave_1: entered promiscuous mode
[  462.536949][T10076] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  462.550850][T10076] Cannot create hsr debugfs directory
[  462.720832][T10147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  462.816317][ T5129] Bluetooth: hci5: command tx timeout
[  462.843170][T10179] chnl_net:caif_netlink_parms(): no params data found
[  462.871592][T10139] batman_adv: batadv0: Adding interface: batadv_slave_0
[  462.878608][T10139] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.905296][T10139] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  462.920079][T10139] batman_adv: batadv0: Adding interface: batadv_slave_1
[  462.927237][T10139] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.954051][T10139] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  463.001451][T10090] hsr_slave_0: entered promiscuous mode
[  463.009179][T10090] hsr_slave_1: entered promiscuous mode
[  463.016128][T10090] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  463.024262][T10090] Cannot create hsr debugfs directory
[  463.161140][T10147] team0: Port device team_slave_0 added
[  463.310165][T10147] team0: Port device team_slave_1 added
[  463.572672][T10179] bridge0: port 1(bridge_slave_0) entered blocking state
[  463.580055][T10179] bridge0: port 1(bridge_slave_0) entered disabled state
[  463.588522][T10179] bridge_slave_0: entered allmulticast mode
[  463.601892][T10179] bridge_slave_0: entered promiscuous mode
[  463.658351][T10147] batman_adv: batadv0: Adding interface: batadv_slave_0
[  463.677217][T10147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.705250][T10147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  463.720171][T10147] batman_adv: batadv0: Adding interface: batadv_slave_1
[  463.727319][T10147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.754476][T10147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  463.778427][ T5129] Bluetooth: hci4: command tx timeout
[  463.797965][T10139] hsr_slave_0: entered promiscuous mode
[  463.805362][T10139] hsr_slave_1: entered promiscuous mode
[  463.813791][T10139] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  463.821535][T10139] Cannot create hsr debugfs directory
[  463.848651][T10179] bridge0: port 2(bridge_slave_1) entered blocking state
[  463.864286][T10179] bridge0: port 2(bridge_slave_1) entered disabled state
[  463.872085][T10179] bridge_slave_1: entered allmulticast mode
[  463.888997][T10179] bridge_slave_1: entered promiscuous mode
[  464.530907][T10179] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  465.353258][T10179] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  465.497552][T10147] hsr_slave_0: entered promiscuous mode
[  465.505197][T10147] hsr_slave_1: entered promiscuous mode
[  465.522641][T10147] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  465.530290][T10147] Cannot create hsr debugfs directory
[  465.584499][ T5411] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  465.703261][T10179] team0: Port device team_slave_0 added
[  465.726800][T10179] team0: Port device team_slave_1 added
[  465.972994][ T5411] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  466.021307][ T5129] Bluetooth: hci4: command tx timeout
[  466.115993][T10179] batman_adv: batadv0: Adding interface: batadv_slave_0
[  466.130281][T10179] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  466.157590][T10179] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  466.203024][ T5411] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  466.332878][T10179] batman_adv: batadv0: Adding interface: batadv_slave_1
[  466.345897][T10179] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  466.374231][T10179] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  466.470441][ T5411] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  466.875414][T10179] hsr_slave_0: entered promiscuous mode
[  466.890101][T10179] hsr_slave_1: entered promiscuous mode
[  466.904854][T10179] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  466.913710][T10179] Cannot create hsr debugfs directory
[  467.034429][T10090] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.166925][T10090] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.218275][T10264] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  467.393754][T10090] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.607045][T10090] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.565584][ T5411] bridge_slave_1: left allmulticast mode
[  468.591474][ T5411] bridge_slave_1: left promiscuous mode
[  468.624976][ T5411] bridge0: port 2(bridge_slave_1) entered disabled state
[  468.643503][ T5411] bridge_slave_0: left allmulticast mode
[  468.656233][ T5411] bridge_slave_0: left promiscuous mode
[  468.669336][ T5411] bridge0: port 1(bridge_slave_0) entered disabled state
[  468.707589][ T5411] macsec0: left allmulticast mode
[  468.716226][ T5411] macsec0: left promiscuous mode
[  468.730267][ T5411] bridge0: port 3(macsec0) entered disabled state
[  468.748446][ T5411] bridge_slave_1: left allmulticast mode
[  468.762106][ T5411] bridge_slave_1: left promiscuous mode
[  468.774556][ T5411] bridge0: port 2(bridge_slave_1) entered disabled state
[  468.800575][ T5411] bridge_slave_0: left allmulticast mode
[  468.810521][ T5411] bridge_slave_0: left promiscuous mode
[  468.836127][ T5411] bridge0: port 1(bridge_slave_0) entered disabled state
[  468.872550][ T5411] bridge_slave_1: left allmulticast mode
[  468.879592][ T5411] bridge_slave_1: left promiscuous mode
[  468.892225][ T5411] bridge0: port 2(bridge_slave_1) entered disabled state
[  468.935377][ T5411] bridge_slave_0: left allmulticast mode
[  468.941111][ T5411] bridge_slave_0: left promiscuous mode
[  468.948055][ T5411] bridge0: port 1(bridge_slave_0) entered disabled state
[  468.983713][ T5411] team0: left allmulticast mode
[  468.994507][ T5411] team_slave_0: left allmulticast mode
[  469.011568][ T5411] team_slave_1: left allmulticast mode
[  469.019251][ T5411] team0: left promiscuous mode
[  469.036526][ T5411] team_slave_0: left promiscuous mode
[  469.050130][ T5411] team_slave_1: left promiscuous mode
[  469.066666][ T5411] bridge0: port 3(team0) entered disabled state
[  469.084846][ T5411] bridge_slave_1: left allmulticast mode
[  469.102037][ T5411] bridge_slave_1: left promiscuous mode
[  469.115314][ T5411] bridge0: port 2(bridge_slave_1) entered disabled state
[  469.138781][ T5411] bridge_slave_0: left allmulticast mode
[  469.148579][ T5411] bridge_slave_0: left promiscuous mode
[  469.165233][ T5411] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.633432][ T5411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  472.649052][ T5411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  472.664448][ T5411] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  472.673271][ T8932] infiniband syz1: ib_query_port failed (-19)
[  472.682812][ T5411] bond0 (unregistering): Released all slaves
[  472.708118][ T5411] bond1 (unregistering): Released all slaves
[  472.926161][ T5411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  472.938583][ T5411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  472.953358][ T5411] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  472.963764][ T5411] bond0 (unregistering): Released all slaves
[  473.143484][ T5411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.156502][ T5411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  473.169042][ T5411] bond0 (unregistering): Released all slaves
[  473.433544][ T5411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.455245][ T5411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  473.498256][ T5411] bond0 (unregistering): Released all slaves
[  473.837025][T10090] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  473.953222][T10090] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  474.025200][T10090] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  474.080935][T10090] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  474.173183][T10076] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  474.188711][T10076] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  474.276643][T10076] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  474.337923][T10076] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  475.375490][T10090] 8021q: adding VLAN 0 to HW filter on device bond0
[  476.485035][T10090] 8021q: adding VLAN 0 to HW filter on device team0
[  476.674701][ T8912] bridge0: port 1(bridge_slave_0) entered blocking state
[  476.682145][ T8912] bridge0: port 1(bridge_slave_0) entered forwarding state
[  476.973787][ T5411] hsr_slave_0: left promiscuous mode
[  476.980927][ T5411] hsr_slave_1: left promiscuous mode
[  476.992183][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.011218][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.057669][   T29] audit: type=1800 audit(1716852027.538:207): pid=10304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="sda1" ino=1941 res=0 errno=0
[  477.092958][ T5411] hsr_slave_0: left promiscuous mode
[  477.128338][ T5411] hsr_slave_1: left promiscuous mode
[  477.136328][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.164160][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.174344][T10306] cgroup: none used incorrectly
[  477.204928][ T5411] hsr_slave_0: left promiscuous mode
[  477.211750][ T5411] hsr_slave_1: left promiscuous mode
[  477.236033][ T5411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  477.243535][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.260277][ T5411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  477.267974][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.284462][ T5411] hsr_slave_0: left promiscuous mode
[  477.302451][ T5411] hsr_slave_1: left promiscuous mode
[  477.311046][ T5411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  477.318538][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.328438][ T5411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  477.337646][ T5411] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.422842][ T5411] veth1_macvtap: left promiscuous mode
[  477.428530][ T5411] veth0_macvtap: left promiscuous mode
[  477.434897][ T5411] veth1_vlan: left promiscuous mode
[  477.441299][ T5411] veth0_vlan: left promiscuous mode
[  477.450836][ T5411] veth1_macvtap: left promiscuous mode
[  477.462002][ T5411] veth0_macvtap: left promiscuous mode
[  477.467888][ T5411] veth1_vlan: left promiscuous mode
[  477.477373][ T5411] veth0_vlan: left promiscuous mode
[  478.592295][ T5411] team0 (unregistering): Port device team_slave_1 removed
[  478.669393][ T5411] team0 (unregistering): Port device team_slave_0 removed
[  480.145535][ T5411] team0 (unregistering): Port device team_slave_1 removed
[  480.213450][ T5411] team0 (unregistering): Port device team_slave_0 removed
[  481.634699][ T5411] team0 (unregistering): Port device team_slave_1 removed
[  481.705843][ T5411] team0 (unregistering): Port device team_slave_0 removed
[  483.132297][ T5411] team0 (unregistering): Port device team_slave_1 removed
[  483.204514][ T5411] team0 (unregistering): Port device team_slave_0 removed
[  484.074317][ T8912] bridge0: port 2(bridge_slave_1) entered blocking state
[  484.081716][ T8912] bridge0: port 2(bridge_slave_1) entered forwarding state
[  484.167936][T10076] 8021q: adding VLAN 0 to HW filter on device bond0
[  484.312686][T10147] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  484.449569][T10147] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  484.503740][T10076] 8021q: adding VLAN 0 to HW filter on device team0
[  484.566965][T10147] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  484.610193][ T8920] bridge0: port 1(bridge_slave_0) entered blocking state
[  484.617573][ T8920] bridge0: port 1(bridge_slave_0) entered forwarding state
[  484.668648][ T8920] bridge0: port 2(bridge_slave_1) entered blocking state
[  484.675973][ T8920] bridge0: port 2(bridge_slave_1) entered forwarding state
[  484.731460][T10147] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  485.725400][T10139] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  485.818683][T10139] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  485.917341][T10139] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  485.982076][T10139] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  486.268216][T10147] 8021q: adding VLAN 0 to HW filter on device bond0
[  486.287496][T10076] 8021q: adding VLAN 0 to HW filter on device batadv0
[  486.354810][T10090] 8021q: adding VLAN 0 to HW filter on device batadv0
[  486.372724][T10179] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  486.612580][T10179] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  486.659356][T10179] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  486.764173][T10147] 8021q: adding VLAN 0 to HW filter on device team0
[  486.775622][T10179] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  487.546914][T10076] veth0_vlan: entered promiscuous mode
[  487.590445][ T8920] bridge0: port 1(bridge_slave_0) entered blocking state
[  487.597789][ T8920] bridge0: port 1(bridge_slave_0) entered forwarding state
[  487.729356][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  487.736718][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  487.917729][T10076] veth1_vlan: entered promiscuous mode
[  488.116002][ T5411] IPVS: stop unused estimator thread 0...
[  488.149406][ T5411] IPVS: stop unused estimator thread 0...
[  488.327330][T10076] veth0_macvtap: entered promiscuous mode
[  488.453694][T10090] veth0_vlan: entered promiscuous mode
[  488.468086][T10076] veth1_macvtap: entered promiscuous mode
[  488.501181][T10139] 8021q: adding VLAN 0 to HW filter on device bond0
[  488.693018][T10090] veth1_vlan: entered promiscuous mode
[  488.730354][T10139] 8021q: adding VLAN 0 to HW filter on device team0
[  488.747547][T10076] batman_adv: batadv0: Interface activated: batadv_slave_0
[  488.821786][ T8938] bridge0: port 1(bridge_slave_0) entered blocking state
[  488.829138][ T8938] bridge0: port 1(bridge_slave_0) entered forwarding state
[  488.859841][T10179] 8021q: adding VLAN 0 to HW filter on device bond0
[  488.889255][T10076] batman_adv: batadv0: Interface activated: batadv_slave_1
[  488.946759][ T8938] bridge0: port 2(bridge_slave_1) entered blocking state
[  488.954218][ T8938] bridge0: port 2(bridge_slave_1) entered forwarding state
[  488.973889][T10076] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  488.996694][T10076] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  489.012630][T10076] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  489.021446][T10076] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  489.094770][T10179] 8021q: adding VLAN 0 to HW filter on device team0
[  489.259026][ T8933] bridge0: port 1(bridge_slave_0) entered blocking state
[  489.266378][ T8933] bridge0: port 1(bridge_slave_0) entered forwarding state
[  489.431615][T10090] veth0_macvtap: entered promiscuous mode
[  489.539666][ T8920] bridge0: port 2(bridge_slave_1) entered blocking state
[  489.546943][ T8920] bridge0: port 2(bridge_slave_1) entered forwarding state
[  489.643334][T10090] veth1_macvtap: entered promiscuous mode
[  489.819308][T10147] 8021q: adding VLAN 0 to HW filter on device batadv0
[  489.881851][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  489.899638][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  490.197099][T10090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  490.212958][T10090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.239147][T10090] batman_adv: batadv0: Interface activated: batadv_slave_0
[  490.270347][ T5411] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  490.303870][ T5411] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  490.332568][T10090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.379281][T10090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.393053][T10090] batman_adv: batadv0: Interface activated: batadv_slave_1
[  490.493743][T10090] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  490.537183][T10090] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  490.582046][T10090] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  490.590887][T10090] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  490.789837][T10139] 8021q: adding VLAN 0 to HW filter on device batadv0
[  491.325438][T10179] 8021q: adding VLAN 0 to HW filter on device batadv0
[  491.347775][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.356794][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.582052][ T3862] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.608561][ T3862] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.662958][T10139] veth0_vlan: entered promiscuous mode
[  491.721552][T10147] veth0_vlan: entered promiscuous mode
[  491.766838][T10139] veth1_vlan: entered promiscuous mode
[  491.873036][T10147] veth1_vlan: entered promiscuous mode
[  491.982900][T10179] veth0_vlan: entered promiscuous mode
[  492.060150][T10179] veth1_vlan: entered promiscuous mode
[  492.179206][T10147] veth0_macvtap: entered promiscuous mode
[  492.180032][T10399] loop0: detected capacity change from 0 to 2048
[  492.266113][T10399] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  492.291282][T10399] ext4 filesystem being mounted at /root/syzkaller-testdir2970590048/syzkaller.0CfXFt/2/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  492.296131][T10147] veth1_macvtap: entered promiscuous mode
[  492.323661][T10139] veth0_macvtap: entered promiscuous mode
[  492.421808][T10139] veth1_macvtap: entered promiscuous mode
[  492.539233][T10147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  492.572068][T10147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  492.597261][T10147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  492.607792][T10147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  492.665219][T10147] batman_adv: batadv0: Interface activated: batadv_slave_0
[  492.693267][T10076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  492.713905][T10406] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  492.746708][T10406] bridge_slave_1: left allmulticast mode
[  492.762864][T10406] bridge_slave_1: left promiscuous mode
[  492.777851][T10406] bridge0: port 2(bridge_slave_1) entered disabled state
[  492.796190][T10406] bridge_slave_0: left allmulticast mode
[  492.802026][T10406] bridge_slave_0: left promiscuous mode
[  492.811515][T10406] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.016011][T10408] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  493.029731][T10408] bridge_slave_1: left allmulticast mode
[  493.037440][T10408] bridge_slave_1: left promiscuous mode
[  493.063618][T10408] bridge0: port 2(bridge_slave_1) entered disabled state
[  493.091134][T10408] bridge_slave_0: left allmulticast mode
[  493.121190][T10408] bridge_slave_0: left promiscuous mode
[  493.127224][T10408] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.312668][T10147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  493.324212][T10147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.346610][T10147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  493.366195][T10147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.384793][T10147] batman_adv: batadv0: Interface activated: batadv_slave_1
[  493.456306][T10179] veth0_macvtap: entered promiscuous mode
[  493.502099][T10179] veth1_macvtap: entered promiscuous mode
[  493.536046][T10139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  493.561135][T10139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.587027][T10139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  493.611244][T10139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.637345][T10139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  493.657411][T10139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.688837][T10139] batman_adv: batadv0: Interface activated: batadv_slave_0
[  493.758629][T10147] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  493.791199][T10147] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  493.810740][T10147] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  493.820689][T10147] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  493.860315][T10139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  493.874646][T10139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.902271][T10139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  493.927474][T10139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.938083][T10139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  493.957979][T10139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.978172][T10139] batman_adv: batadv0: Interface activated: batadv_slave_1
[  494.056460][T10139] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  494.066291][T10139] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  494.094807][T10139] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  494.114540][T10139] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  494.142077][T10179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.155430][T10179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.167538][T10179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.178974][T10179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.189547][T10179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.238731][T10179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.259469][T10179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.281888][T10179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.302317][T10179] batman_adv: batadv0: Interface activated: batadv_slave_0
[  494.392650][T10179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.422448][T10179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.433092][T10179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.444174][T10179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.456664][T10179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.469891][T10179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.480435][T10179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.492287][T10179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.507402][T10179] batman_adv: batadv0: Interface activated: batadv_slave_1
[  494.543392][T10442] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  494.607272][T10179] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  494.619279][T10179] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  494.630948][T10179] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  494.640571][T10179] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  494.660936][T10436] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  495.028328][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.062797][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.183443][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.213131][T10447] loop2: detected capacity change from 0 to 2048
[  495.298049][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.332441][T10447] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  495.416869][T10447] ext4 filesystem being mounted at /root/syzkaller-testdir883013579/syzkaller.BMkZgL/7/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  495.464576][ T9016] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.487915][ T9016] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.743717][T10090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.943368][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.945971][T10457] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  495.961651][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  496.007878][T10457] bridge_slave_1: left allmulticast mode
[  496.034172][T10457] bridge_slave_1: left promiscuous mode
[  496.040256][T10457] bridge0: port 2(bridge_slave_1) entered disabled state
[  496.100813][T10457] bridge_slave_0: left allmulticast mode
[  496.124625][T10457] bridge_slave_0: left promiscuous mode
[  496.146884][T10457] bridge0: port 1(bridge_slave_0) entered disabled state
[  496.362590][ T3854] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  496.374437][ T3854] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  496.375515][T10465] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  496.679462][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  496.694815][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  496.774321][T10478] loop2: detected capacity change from 0 to 1024
[  496.849491][T10478] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  496.886175][T10482] loop3: detected capacity change from 0 to 128
[  496.926235][T10482] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  496.951534][T10482] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  496.964622][ T5129] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  496.979677][ T5129] Bluetooth: hci0: Injecting HCI hardware error event
[  496.995782][ T5126] Bluetooth: hci0: hardware error 0x00
[  497.259051][T10486] loop1: detected capacity change from 0 to 1764
[  497.286408][T10139] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  497.329573][T10488] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  497.334079][T10139] FAT-fs (loop3): Filesystem has been set read-only
[  497.387336][T10478] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  497.398911][T10139] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  498.132182][T10504] loop2: detected capacity change from 0 to 2048
[  498.292732][T10504] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  498.329036][T10504] ext4 filesystem being mounted at /root/syzkaller-testdir883013579/syzkaller.BMkZgL/10/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  498.615308][ T3854] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  498.673607][T10090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  498.759581][T10518] loop5: detected capacity change from 0 to 1024
[  498.813015][T10508] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  498.883606][T10514] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  498.918690][T10520] loop0: detected capacity change from 0 to 256
[  498.936170][T10514] bridge_slave_1: left allmulticast mode
[  498.957126][T10514] bridge_slave_1: left promiscuous mode
[  498.991133][T10514] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.038509][T10520] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  499.058955][T10514] bridge_slave_0: left allmulticast mode
[  499.086254][T10514] bridge_slave_0: left promiscuous mode
[  499.108178][T10514] bridge0: port 1(bridge_slave_0) entered disabled state
[  499.394799][ T5126] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  499.553225][   T51] hfsplus: b-tree write err: -5, ino 4
[  499.702666][T10533] loop0: detected capacity change from 0 to 1024
[  499.742807][ T3854] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.796821][T10533] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  499.881688][T10536] loop1: detected capacity change from 0 to 256
[  499.913551][ T5126] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  499.932578][ T5126] Bluetooth: hci3: Injecting HCI hardware error event
[  499.943417][ T5129] Bluetooth: hci3: hardware error 0x00
[  500.470965][ T3854] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.533494][T10541] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  500.843538][   T29] audit: type=1326 audit(1716852049.496:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10544 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb7b387cee9 code=0x0
[  500.962129][   T29] audit: type=1800 audit(1716852049.598:209): pid=10548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1961 res=0 errno=0
[  501.016932][T10545] loop1: detected capacity change from 0 to 2048
[  501.020009][ T3854] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  501.086496][   T29] audit: type=1804 audit(1716852049.607:210): pid=10548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="bus" dev="sda1" ino=1961 res=1 errno=0
[  501.158870][T10552] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  501.240746][T10556] loop0: detected capacity change from 0 to 512
[  501.277143][ T5122] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  501.302711][ T5122] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  501.318967][ T5122] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  501.337301][ T5122] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  501.357529][ T5122] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  501.371718][ T5122] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  501.381607][T10552] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  501.471475][T10552] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4)
[  501.650802][T10552] Remounting filesystem read-only
[  501.704199][T10558] NILFS (loop1): mounting fs with errors
[  501.786046][T10551] loop0: detected capacity change from 0 to 256
[  501.788065][ T3854] bridge_slave_1: left allmulticast mode
[  501.835166][ T3854] bridge_slave_1: left promiscuous mode
[  501.849452][ T3854] bridge0: port 2(bridge_slave_1) entered disabled state
[  501.890858][T10552] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  501.921254][T10552] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4)
[  501.921661][ T3854] bridge_slave_0: left allmulticast mode
[  501.950446][T10552] Remounting filesystem read-only
[  501.962662][   T35] NILFS (loop1): discard dirty page: offset=4096, ino=6
[  501.967669][ T3854] bridge_slave_0: left promiscuous mode
[  501.989435][   T35] NILFS (loop1): discard dirty block: blocknr=39, size=1024
[  501.995723][ T3854] bridge0: port 1(bridge_slave_0) entered disabled state
[  502.010932][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.034767][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.043854][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.070405][   T35] NILFS (loop1): discard dirty page: offset=0, ino=2
[  502.086634][   T35] NILFS (loop1): discard dirty block: blocknr=18, size=1024
[  502.103377][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.136769][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.152850][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.231463][   T35] NILFS (loop1): discard dirty page: offset=0, ino=5
[  502.245692][   T35] NILFS (loop1): discard dirty block: blocknr=41, size=1024
[  502.269304][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.289772][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.319226][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.340767][   T35] NILFS (loop1): discard dirty page: offset=0, ino=3
[  502.355505][   T35] NILFS (loop1): discard dirty block: blocknr=42, size=1024
[  502.379143][T10538] loop5: detected capacity change from 0 to 32768
[  502.395980][   T35] NILFS (loop1): discard dirty block: blocknr=43, size=1024
[  502.404498][   T35] NILFS (loop1): discard dirty block: blocknr=44, size=1024
[  502.422122][T10538] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz-executor.5 (10538)
[  502.438453][ T5129] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  502.441291][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.461174][   T35] NILFS (loop1): discard dirty page: offset=196608, ino=3
[  502.485087][T10538] BTRFS info (device loop5): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  502.495900][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.523398][T10538] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  502.542675][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.549649][T10538] BTRFS info (device loop5): using free-space-tree
[  502.561054][   T35] NILFS (loop1): discard dirty block: blocknr=49, size=1024
[  502.589961][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.632963][   T35] NILFS (loop1): discard dirty page: offset=0, ino=4
[  502.657009][   T35] NILFS (loop1): discard dirty block: blocknr=40, size=1024
[  502.685882][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.704118][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.714738][   T35] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[  502.759581][T10179] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer
[  502.819323][T10179] NILFS (loop1): discard dirty page: offset=0, ino=6
[  502.867277][T10179] NILFS (loop1): discard dirty block: blocknr=35, size=1024
[  502.900450][T10179] NILFS (loop1): discard dirty block: blocknr=36, size=1024
[  502.909881][T10179] NILFS (loop1): discard dirty block: blocknr=37, size=1024
[  502.917598][T10179] NILFS (loop1): discard dirty block: blocknr=38, size=1024
[  503.179063][T10147] BTRFS info (device loop5): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  503.642927][ T5129] Bluetooth: hci1: command tx timeout
[  503.933780][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  504.128459][ T3854] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  504.152967][ T3854] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  504.202974][ T3854] bond0 (unregistering): Released all slaves
[  504.291481][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  504.309763][T10564] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.0'.
[  504.349645][T10591] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.4'.
[  504.768217][T10605] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[  504.785951][T10605] netlink: 9388 bytes leftover after parsing attributes in process `syz-executor.0'.
[  504.822830][T10601] loop1: detected capacity change from 0 to 2048
[  504.895954][T10601] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  504.922869][T10601] ext4 filesystem being mounted at /root/syzkaller-testdir3104900920/syzkaller.IvaKBa/6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  505.093587][T10601] fuse: Bad value for 'fd'
[  505.188174][T10616] loop2: detected capacity change from 0 to 512
[  505.205997][T10616] EXT4-fs (loop2): blocks per group (8192) and clusters per group (2304) inconsistent
[  505.250107][   T29] audit: type=1804 audit(1716852053.557:211): pid=10601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3104900920/syzkaller.IvaKBa/6/file0/file0/bus" dev="loop1" ino=18 res=1 errno=0
[  505.393741][T10179] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  505.420714][T10616] loop2: detected capacity change from 0 to 256
[  505.440749][ T3854] hsr_slave_0: left promiscuous mode
[  505.453576][ T3854] hsr_slave_1: left promiscuous mode
[  505.473400][ T3854] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  505.481717][ T3854] batman_adv: batadv0: Removing interface: batadv_slave_0
[  505.493700][ T3854] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  505.502602][ T3854] batman_adv: batadv0: Removing interface: batadv_slave_1
[  505.598945][ T3854] veth1_macvtap: left promiscuous mode
[  505.604605][ T3854] veth0_macvtap: left promiscuous mode
[  505.622785][ T3854] veth1_vlan: left promiscuous mode
[  505.640612][ T3854] veth0_vlan: left promiscuous mode
[  505.891508][ T5129] Bluetooth: hci1: command tx timeout
[  506.862177][T10624] loop1: detected capacity change from 0 to 32768
[  506.913295][T10624] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (10624)
[  506.980092][T10624] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  506.997399][T10624] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  507.032743][T10624] BTRFS info (device loop1): using free-space-tree
[  507.682062][T10179] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  508.076244][ T3854] team0 (unregistering): Port device team_slave_1 removed
[  508.157372][ T5129] Bluetooth: hci1: command tx timeout
[  508.534187][ T3854] team0 (unregistering): Port device team_slave_0 removed
[  510.409883][ T5129] Bluetooth: hci1: command tx timeout
[  511.126129][T10618] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  511.870659][T10699] loop1: detected capacity change from 0 to 1024
[  511.905062][T10699] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  512.259394][T10711] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  512.291857][T10699] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  512.382914][T10553] chnl_net:caif_netlink_parms(): no params data found
[  512.546581][T10714] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  512.931225][T10724] loop5: detected capacity change from 0 to 512
[  512.959637][T10724] EXT4-fs (loop5): blocks per group (8192) and clusters per group (2304) inconsistent
[  513.209948][T10723] loop5: detected capacity change from 0 to 256
[  513.267913][T10732] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  513.580374][T10553] bridge0: port 1(bridge_slave_0) entered blocking state
[  513.602030][T10553] bridge0: port 1(bridge_slave_0) entered disabled state
[  513.623886][T10553] bridge_slave_0: entered allmulticast mode
[  513.649557][T10553] bridge_slave_0: entered promiscuous mode
[  513.688352][T10553] bridge0: port 2(bridge_slave_1) entered blocking state
[  513.736450][T10553] bridge0: port 2(bridge_slave_1) entered disabled state
[  513.760373][T10553] bridge_slave_1: entered allmulticast mode
[  513.801408][T10553] bridge_slave_1: entered promiscuous mode
[  514.120757][T10553] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  514.174625][T10553] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  514.284085][T10746] loop0: detected capacity change from 0 to 512
[  514.345531][T10746] EXT4-fs (loop0): 1 truncate cleaned up
[  514.368238][T10746] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  514.386040][T10751] loop5: detected capacity change from 0 to 8
[  514.472408][   T29] audit: type=1800 audit(1716852062.067:212): pid=10746 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=18 res=0 errno=0
[  514.602512][T10751] SQUASHFS error: lzo decompression failed, data probably corrupt
[  514.670827][T10751] SQUASHFS error: Failed to read block 0x91: -5
[  514.742846][T10751] SQUASHFS error: Unable to read metadata cache entry [8f]
[  514.750999][T10746] EXT4-fs warning (device loop0): ext4_rename_delete:3736: inode #2: comm syz-executor.0: Deleting old file: nlink 5, error=-2
[  514.784773][T10751] SQUASHFS error: Unable to read inode 0x11f
[  514.820729][T10553] team0: Port device team_slave_0 added
[  514.925395][T10759] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  515.007612][T10553] team0: Port device team_slave_1 added
[  515.558777][T10553] batman_adv: batadv0: Adding interface: batadv_slave_0
[  515.591618][T10076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.611462][T10553] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  515.645157][T10771] loop1: detected capacity change from 0 to 8
[  515.655243][T10553] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  515.675562][T10771] SQUASHFS error: lzo decompression failed, data probably corrupt
[  515.686142][T10771] SQUASHFS error: Failed to read block 0x91: -5
[  515.703992][T10771] SQUASHFS error: Unable to read metadata cache entry [8f]
[  515.733311][T10553] batman_adv: batadv0: Adding interface: batadv_slave_1
[  515.741032][T10771] SQUASHFS error: Unable to read inode 0x11f
[  515.750016][T10553] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  515.777649][T10553] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  515.782254][T10766] loop2: detected capacity change from 0 to 512
[  515.879772][T10766] EXT4-fs (loop2): blocks per group (8192) and clusters per group (2304) inconsistent
[  516.004347][T10553] hsr_slave_0: entered promiscuous mode
[  516.067355][T10766] loop2: detected capacity change from 0 to 256
[  516.088719][T10553] hsr_slave_1: entered promiscuous mode
[  516.549946][T10791] loop1: detected capacity change from 0 to 8
[  516.561345][T10793] cgroup: subsys name conflicts with all
[  516.597371][T10791] SQUASHFS error: lzo decompression failed, data probably corrupt
[  516.634210][T10791] SQUASHFS error: Failed to read block 0x91: -5
[  516.651030][T10791] SQUASHFS error: Unable to read metadata cache entry [8f]
[  516.684714][T10791] SQUASHFS error: Unable to read inode 0x11f
[  518.068131][   T29] audit: type=1800 audit(1716852065.381:213): pid=10805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1958 res=0 errno=0
[  518.173882][T10807] loop2: detected capacity change from 0 to 2048
[  518.225177][T10807] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  518.345588][T10812] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  518.353179][T10807] syz-executor.2: attempt to access beyond end of device
[  518.353179][T10807] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  518.954478][T10817] loop2: detected capacity change from 0 to 8
[  519.043879][T10817] SQUASHFS error: lzo decompression failed, data probably corrupt
[  519.108804][T10817] SQUASHFS error: Failed to read block 0x91: -5
[  519.115140][T10817] SQUASHFS error: Unable to read metadata cache entry [8f]
[  519.199488][T10817] SQUASHFS error: Unable to read inode 0x11f
[  519.571136][T10553] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  519.645242][T10553] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  519.659310][T10831] loop2: detected capacity change from 0 to 256
[  519.722501][T10553] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  519.795877][T10553] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  519.804433][T10834] 
[  519.806792][T10834] ================================
[  519.811927][T10834] WARNING: inconsistent lock state
[  519.817074][T10834] 6.10.0-rc1-syzkaller-00013-g2bfcfd584ff5 #0 Not tainted
[  519.824223][T10834] --------------------------------
[  519.829356][T10834] inconsistent {IN-HARDIRQ-W} -> {HARDIRQ-ON-W} usage.
[  519.836243][T10834] syz-executor.5/10834 [HC0[0]:SC0[0]:HE0:SE1] takes:
[  519.843065][T10834] ffffffff8ea48db8 (sync_timeline_list_lock){?...}-{2:2}, at: sync_info_debugfs_show+0x36/0x210
[  519.853626][T10834] {IN-HARDIRQ-W} state was registered at:
[  519.859382][T10834]   lock_acquire+0x1b1/0x560
[  519.864037][T10834]   _raw_spin_lock_irqsave+0x3a/0x60
[  519.869397][T10834]   sync_timeline_debug_remove+0x29/0x1a0
[  519.875162][T10834]   timeline_fence_release+0x262/0x340
[  519.880657][T10834]   dma_fence_release+0x30b/0x560
[  519.885719][T10834]   dma_fence_array_release+0x1fa/0x2e0
[  519.891302][T10834]   dma_fence_release+0x30b/0x560
[  519.896360][T10834]   irq_dma_fence_array_work+0xa9/0xd0
[  519.901858][T10834]   irq_work_single+0x1bf/0x260
[  519.906741][T10834]   irq_work_run_list+0x92/0xc0
[  519.911621][T10834]   irq_work_run+0x58/0xd0
[  519.916065][T10834]   __sysvec_irq_work+0x8c/0x410
[  519.921038][T10834]   sysvec_irq_work+0x90/0xb0
[  519.925765][T10834]   asm_sysvec_irq_work+0x1a/0x20
[  519.930839][T10834]   _raw_spin_unlock_irq+0x29/0x50
[  519.936000][T10834]   sw_sync_debugfs_release+0x164/0x240
[  519.941592][T10834]   __fput+0x40b/0xbb0
[  519.945705][T10834]   task_work_run+0x151/0x250
[  519.950508][T10834]   syscall_exit_to_user_mode+0x278/0x2a0
[  519.956283][T10834]   do_syscall_64+0xda/0x250
[  519.960915][T10834]   entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.966939][T10834] irq event stamp: 202
[  519.971011][T10834] hardirqs last  enabled at (201): [<ffffffff8ae8b19b>] irqentry_exit+0x3b/0x90
[  519.980061][T10834] hardirqs last disabled at (202): [<ffffffff8aec4d25>] _raw_spin_lock_irq+0x45/0x50
[  519.989564][T10834] softirqs last  enabled at (0): [<ffffffff81509ffa>] copy_process+0x222a/0x8f10
[  519.998730][T10834] softirqs last disabled at (0): [<0000000000000000>] 0x0
[  520.005855][T10834] 
[  520.005855][T10834] other info that might help us debug this:
[  520.013920][T10834]  Possible unsafe locking scenario:
[  520.013920][T10834] 
[  520.021372][T10834]        CPU0
[  520.024650][T10834]        ----
[  520.027936][T10834]   lock(sync_timeline_list_lock);
[  520.033067][T10834]   <Interrupt>
[  520.036524][T10834]     lock(sync_timeline_list_lock);
[  520.041827][T10834] 
[  520.041827][T10834]  *** DEADLOCK ***
[  520.041827][T10834] 
[  520.049976][T10834] 3 locks held by syz-executor.5/10834:
[  520.055533][T10834]  #0: ffff88807e6f3248 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xeb/0x180
[  520.064759][T10834]  #1: ffff88807ae6f418 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0xde/0x12c0
[  520.073706][T10834]  #2: ffffffff8ea48db8 (sync_timeline_list_lock){?...}-{2:2}, at: sync_info_debugfs_show+0x36/0x210
[  520.084656][T10834] 
[  520.084656][T10834] stack backtrace:
[  520.090746][T10834] CPU: 0 PID: 10834 Comm: syz-executor.5 Not tainted 6.10.0-rc1-syzkaller-00013-g2bfcfd584ff5 #0
[  520.101281][T10834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  520.111364][T10834] Call Trace:
[  520.114653][T10834]  <TASK>
[  520.117601][T10834]  dump_stack_lvl+0x116/0x1f0
[  520.122341][T10834]  mark_lock+0x923/0xc60
[  520.126613][T10834]  ? __pfx___lock_acquire+0x10/0x10
[  520.131864][T10834]  ? __pfx_mark_lock+0x10/0x10
[  520.136664][T10834]  ? srso_alias_return_thunk+0x5/0xfbef5
[  520.142353][T10834]  ? lock_acquire+0x1b1/0x560
[  520.147074][T10834]  ? srso_alias_return_thunk+0x5/0xfbef5
[  520.152763][T10834]  ? find_held_lock+0x2d/0x110
[  520.157669][T10834]  ? srso_alias_return_thunk+0x5/0xfbef5
[  520.163367][T10834]  ? sync_info_debugfs_show+0xf4/0x210
[  520.168873][T10834]  ? __pfx_lock_release+0x10/0x10
[  520.173943][T10834]  mark_held_locks+0x9f/0xe0
[  520.178568][T10834]  lockdep_hardirqs_on_prepare+0x137/0x420
[  520.184415][T10834]  trace_hardirqs_on+0x36/0x40
[  520.189218][T10834]  _raw_spin_unlock_irq+0x23/0x50
[  520.194299][T10834]  sync_info_debugfs_show+0xf4/0x210
[  520.199624][T10834]  seq_read_iter+0x4fd/0x12c0
[  520.204357][T10834]  seq_read+0x390/0x4d0
[  520.208549][T10834]  ? __pfx_seq_read+0x10/0x10
[  520.213256][T10834]  ? lock_acquire+0x1b1/0x560
[  520.217965][T10834]  ? srso_alias_return_thunk+0x5/0xfbef5
[  520.223653][T10834]  ? srso_alias_return_thunk+0x5/0xfbef5
[  520.229330][T10834]  ? __pfx_seq_read+0x10/0x10
[  520.234043][T10834]  vfs_read+0x1d7/0xbd0
[  520.238251][T10834]  ? __fdget_pos+0xeb/0x180
[  520.242797][T10834]  ? __pfx___might_resched+0x10/0x10
[  520.248127][T10834]  ? __pfx_vfs_read+0x10/0x10
[  520.252848][T10834]  ? __pfx___mutex_lock+0x10/0x10
[  520.257925][T10834]  ? __fget_files+0x256/0x400
[  520.262653][T10834]  ksys_read+0x12f/0x260
[  520.266948][T10834]  ? __pfx_ksys_read+0x10/0x10
[  520.271763][T10834]  ? srso_alias_return_thunk+0x5/0xfbef5
[  520.277444][T10834]  do_syscall_64+0xcd/0x250
[  520.281987][T10834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.287922][T10834] RIP: 0033:0x7f12aba7cee9
[  520.292357][T10834] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  520.312094][T10834] RSP: 002b:00007f12ac7d90c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  520.320533][T10834] RAX: ffffffffffffffda RBX: 00007f12abbb3f80 RCX: 00007f12aba7cee9
[  520.328523][T10834] RDX: 0000000000002020 RSI: 0000000020000a00 RDI: 0000000000000004
[  520.336511][T10834] RBP: 00007f12abac947f R08: 0000000000000000 R09: 0000000000000000
[  520.344495][T10834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  520.352484][T10834] R13: 000000000000000b R14: 00007f12abbb3f80 R15: 00007fff21b5b5e8
[  520.360501][T10834]  </TASK>
2024/05/27 23:21:07 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF