last executing test programs:

6m2.543208492s ago: executing program 1 (id=15):
socket$nl_route(0x10, 0x3, 0x0)
socket(0xa, 0x2400000001, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
writev(r0, &(0x7f0000019880)=[{&(0x7f0000000400)="fb", 0xffffff5c}, {&(0x7f00000197c0)="1902eb02d5e5f29e59e1a7caec33eb76d2430da474d87e367f6598d026438b65eda8341073b6752abdcee080c8e1e876b25227c37d7dd79886ce33f13e857c8eda1cecf6ac36c03dbf54e3cb5136da5a33fee76fb3113f8b6700e9e5fc006b8eed665fed48738d59395ad07438c3610ae3976aac75caf2facafa21c25be3c2", 0x7f}], 0x2)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x9323, 0xfffffffffffffffe, 0x0, 0x2}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6821, 0x0, 0x9, 0x0, 0x0, 0x3, 0x2}, 0x0, 0x0)

6m0.465262583s ago: executing program 1 (id=18):
syz_mount_image$udf(&(0x7f0000000480), &(0x7f0000000080)='./file0\x00', 0x2000040, &(0x7f00000004c0)=ANY=[@ANYBLOB='gid=forget,umask=00000000000000000000003,gid=', @ANYRESDEC=0x0, @ANYBLOB=',session=00000000000000043620,gid=ignore,iocharset=euc-jp,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c6164696e6963622c6d6f64653d30303030303030303030303030303030303030303030332c6e6f7374726963742c009b801a9990a34c426430bf3757fbcea5d9a21b29b4ae2c6d10e74873111016bc74ff654722640a72d8cc5e210fef2b359e9e61ade82c60025773de99df3af6548534bfdef68d88ae15c726"], 0xfe, 0xc2d, &(0x7f0000000f40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close(0xffffffffffffffff)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x21c0, 0x103)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)={0x3c, r5, 0x201, 0x70bd2d, 0x25dfdbfb, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24004080}, 0x4000)

5m56.385844193s ago: executing program 1 (id=22):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)={0x1c, r1, 0xf21, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x44000)
syz_genetlink_get_family_id$tipc2(0x0, r0)

5m56.095379029s ago: executing program 1 (id=23):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000c40), 0x2, 0x4a7, &(0x7f0000001140)="$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")
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'koi8-u'}}, {@overriderock}, {@nojoliet}, {@check_strict}, {@unhide}]}, 0x1, 0xa45, &(0x7f0000000c00)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

5m55.04293855s ago: executing program 1 (id=24):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KIOCSOUND(r0, 0x4b2f, 0x9)

5m53.811568784s ago: executing program 1 (id=27):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000002240)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@binder={0x73622a85, 0x2101, 0x1}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f00000034c0)={0x2020}, 0xcac)

5m53.101759647s ago: executing program 32 (id=27):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000002240)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@binder={0x73622a85, 0x2101, 0x1}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f00000034c0)={0x2020}, 0xcac)

5m39.596459352s ago: executing program 2 (id=48):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KIOCSOUND(r0, 0x4b2f, 0x9)

5m37.342045556s ago: executing program 2 (id=54):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = syz_io_uring_setup(0x35f, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000080)="2e00000011008188040f46ec0800b9cca7480ef4210000fee3bd6efb440013030e001b000d000008ba800082da01", 0x2e}], 0x1}, 0x48d4)

5m36.250771167s ago: executing program 2 (id=56):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0x0)
ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f00000000c0)={{r0}})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0)
ioctl$FITRIM(r2, 0xc0c0586d, &(0x7f0000000180)={0x0, 0x5, 0x4})

5m36.045960481s ago: executing program 2 (id=58):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000c40), 0x2, 0x4a7, &(0x7f0000001140)="$eJzs3EtvG0UcAPD/bl59hZhSXm2hhoKIeCRNWqAHJB4CqRckJDiUY0jTqjRtUBMkWkU0IFSOqJ+gcETiE3CCCwIkJBBXuCOkCuXS0gNatLY3dRI7OGkc0+T3k1zPeGZ3ZnY969mZbgLYssr5P0nEroj4LSIGqtHFGcrVtxvzs+N/z8+OJ5Flb/6VVPJdn58dL7IW2+2sRQbTiPSTJPY1KHf6wsUzY5OTE+dr8eGZs+8NT1+4+Mzps2OnJk5NnBs9evTI4ZHnnxt9dl3a2Z/Xde+HU/sfPPb2ldfHj19554ev8vruqqVfn5/tXbxFqQjsjYhs6f5eaqHMcpQXH8s6j6+u+v97/XXhpLuDFWFVuiIiP109lf4/EF1x6+QNxGsfR6QdrR/QPlmWZX3LPs2vCtvzwFwGbGJJdLoGQGcUv/j5fXzx2uAhSEdde7l6A5S3+0btVU3prtz5lEvVe6P+NpVfjgMRcfPq8bmbV2PJfAoAQDt8k49/nm40/kvjvrp8d9XWhkoRcXdE7I6IeyJiT0TcG1HJe39EPNBqwUnjpZHl459ftq+xaS3Jx38v1Na2Fo//Fua9S121WH+l/T3JydOTE4dqx2Qwevry+MgKZXz76q+fNUsrR0Q+9iteefnFWLBWjz+7l0zQnRibGbudNte7diBib3ej9icLKwFJbFvz/vNjdvrJL/c3S//v9q9gHdaZsi8inqie/7lY0v5CsvL65PC2mJw4NFx8K5b78efLbzQr/7bavw6ufRSxo+H3f6H9paR+vXZ61UV0X/7906b3NGv9/vcmb1XCxaLtB2MzM+dHInqTueWfj97atogX+fP2Dx5s3P93R/zzeW27fRGRf4kfioiHIyp3bXndH4mIRyPi4AoH4PtXHns3f/9pTe1vr7z9J1Z1/usDPbH0k0aBrjPffd2s/NbO/5FKaLD2SSvXv2rhxXWreQXXetwAAADgTpJW/g98kkRU50121aXtiR3p5NT0zFMnp94/d6KaVoqetJjpGqibDx2pzQ0X8dEl8cOVeeMsy7LtlfjQ+NRku9bUgdbsrPb/dGjhWpCmQ0PVtD+6Fud9sSM1BNpqVetozZ5oA+5IrfV/HR82o4X+v/xJwILOD5tUtf93DXS6HsDG8/daYOtq1P8vRdzoQFWADeb3H7Yu/R+2rtX2/1Kb6gFsPL//sCUtfiS+N1p4nL+lwO5j67OfzR/o6nQ1+ta2eaQdP3TLA0mDpLRB5rTlPfeuS8VipTx9EdHqDi/FRh3MTl+ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1se/AQAA//++KOKq")
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'koi8-u'}}, {@overriderock}, {@nojoliet}, {@check_strict}, {@unhide}]}, 0x1, 0xa45, &(0x7f0000000c00)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

5m34.771032786s ago: executing program 2 (id=61):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

5m33.917285033s ago: executing program 2 (id=64):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={0xffffffffffffffff, 0x18000000000002a0, 0x2, 0x0, &(0x7f00000002c0)="d2ff", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000500)={0x2, 0x0, @ioapic={0x10000, 0x8, 0x401, 0x80, 0x0, [{0x7, 0x10, 0xff, '\x00', 0x38}, {0x4, 0x1, 0x7c, '\x00', 0x31}, {0x5, 0xb3, 0x1, '\x00', 0xd}, {0x5, 0x9, 0x10, '\x00', 0x6}, {0x9, 0x7f, 0x4, '\x00', 0x79}, {0x7, 0x80, 0x0, '\x00', 0x6}, {0x4, 0x8, 0x1, '\x00', 0x5}, {0x52, 0x3, 0x3, '\x00', 0x9}, {0x0, 0x2, 0x73, '\x00', 0xff}, {0x1, 0xb6, 0x9, '\x00', 0x80}, {0x6, 0x8, 0x6, '\x00', 0x1}, {0x1, 0x1, 0x7, '\x00', 0x4}, {0x8, 0xc, 0x5, '\x00', 0x6}, {0x5, 0x10, 0x8c, '\x00', 0x4}, {0x0, 0xc0, 0x7, '\x00', 0x1}, {0x8, 0x2, 0xfa, '\x00', 0x2}, {0x7, 0x6, 0x8, '\x00', 0x5}, {0x9, 0x0, 0xfa, '\x00', 0x5}, {0x1, 0x3, 0x6, '\x00', 0x6}, {0xf8, 0x4, 0xa, '\x00', 0xf8}, {0x8, 0x2, 0x1, '\x00', 0xf7}, {0x6, 0x6, 0x1, '\x00', 0xa}, {0x1, 0x0, 0x1, '\x00', 0x8}, {0x12, 0xe, 0x4, '\x00', 0x1}]}})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000240)=ANY=[@ANYBLOB="98"])
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f00000004c0)={0x1, 0x0, [{0x40000070, 0x0, 0x6}]})

5m32.829320955s ago: executing program 33 (id=64):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={0xffffffffffffffff, 0x18000000000002a0, 0x2, 0x0, &(0x7f00000002c0)="d2ff", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000500)={0x2, 0x0, @ioapic={0x10000, 0x8, 0x401, 0x80, 0x0, [{0x7, 0x10, 0xff, '\x00', 0x38}, {0x4, 0x1, 0x7c, '\x00', 0x31}, {0x5, 0xb3, 0x1, '\x00', 0xd}, {0x5, 0x9, 0x10, '\x00', 0x6}, {0x9, 0x7f, 0x4, '\x00', 0x79}, {0x7, 0x80, 0x0, '\x00', 0x6}, {0x4, 0x8, 0x1, '\x00', 0x5}, {0x52, 0x3, 0x3, '\x00', 0x9}, {0x0, 0x2, 0x73, '\x00', 0xff}, {0x1, 0xb6, 0x9, '\x00', 0x80}, {0x6, 0x8, 0x6, '\x00', 0x1}, {0x1, 0x1, 0x7, '\x00', 0x4}, {0x8, 0xc, 0x5, '\x00', 0x6}, {0x5, 0x10, 0x8c, '\x00', 0x4}, {0x0, 0xc0, 0x7, '\x00', 0x1}, {0x8, 0x2, 0xfa, '\x00', 0x2}, {0x7, 0x6, 0x8, '\x00', 0x5}, {0x9, 0x0, 0xfa, '\x00', 0x5}, {0x1, 0x3, 0x6, '\x00', 0x6}, {0xf8, 0x4, 0xa, '\x00', 0xf8}, {0x8, 0x2, 0x1, '\x00', 0xf7}, {0x6, 0x6, 0x1, '\x00', 0xa}, {0x1, 0x0, 0x1, '\x00', 0x8}, {0x12, 0xe, 0x4, '\x00', 0x1}]}})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000240)=ANY=[@ANYBLOB="98"])
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f00000004c0)={0x1, 0x0, [{0x40000070, 0x0, 0x6}]})

4m38.534119157s ago: executing program 4 (id=197):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfff)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(0xffffffffffffffff, &(0x7f0000000240)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x2, 0x0, 0x14}, @ipv4=@tcp={{0x6, 0x4, 0x0, 0x8, 0x65, 0x68, 0x0, 0x3, 0x6, 0x0, @private=0xa010100, @remote, {[@end]}}, {{0x4e20, 0x4e22, 0x41424344, 0x41424344, 0x1, 0x0, 0x5, 0x10, 0x1, 0x0, 0x8}, {"ff09eb92334ce7bdbce1cc8ea7c31c4233f717f38859083e7244d871b6582e4b77453efb5c862f933cb39161906e8b6c78ab07fe1b3fe07565"}}}}, 0x73)

4m38.029904027s ago: executing program 4 (id=200):
r0 = socket$kcm(0x21, 0x2, 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x2000000, 0x12, r1, 0x95b1e000)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0x1}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c"], 0x10b8}, 0xff4c)

4m37.746707163s ago: executing program 4 (id=202):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f0000000200)=0x7dffeffc)
close(r1)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@newqdisc={0x6c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{0x9, 0x3, 0x0, 0x6, 0xfffffffa, 0x22}, [@TCA_NETEM_RATE={0x14, 0x6, {0xe1, 0x79d, 0x0, 0x3}}, @TCA_NETEM_RATE64={0xb, 0x8, 0xe61c6a5c983a3b82}]}}}]}, 0x6c}}, 0x0)
remap_file_pages(&(0x7f00005f4000/0x3000)=nil, 0xa00, 0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6, @ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
r8 = gettid()
r9 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r9, &(0x7f0000003c40)=[{{0x0, 0x0, 0x0}, 0x80000000}], 0x1, 0x60010002, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000000300))
preadv(r3, 0x0, 0x0, 0x0, 0x4)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x1)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r7, 0x80045300, &(0x7f0000000040))

4m36.619921295s ago: executing program 4 (id=206):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r0)
r1 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
write$binfmt_misc(r1, &(0x7f0000000180)="e502", 0x2)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

4m36.088794515s ago: executing program 4 (id=210):
r0 = socket$kcm(0x21, 0x2, 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x2000000, 0x12, r1, 0x95b1e000)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0x1}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c"], 0x10b8}, 0xff4c)

4m35.699635893s ago: executing program 4 (id=213):
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x5884, 0x8, 0x0, 0xfffffdfc}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x49, 0x0, 0x9e8d, 0x3, &(0x7f0000000340), 0xfe7d})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

4m19.966465691s ago: executing program 34 (id=213):
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x5884, 0x8, 0x0, 0xfffffdfc}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x49, 0x0, 0x9e8d, 0x3, &(0x7f0000000340), 0xfe7d})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

1m39.323400306s ago: executing program 3 (id=1099):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000580)=@newsa={0xf0, 0x10, 0x1, 0x70bd26, 0x25dfdbfe, {{@in=@dev={0xac, 0x14, 0x14, 0x1a}, @in6=@empty, 0x4e20, 0x8, 0x4e24, 0x0, 0xa, 0x80, 0x80, 0x3e}, {@in=@dev={0xac, 0x14, 0x14, 0x1e}, 0x4d5, 0x33}, @in=@private=0xa010102, {0x8000000000007ff, 0x9, 0x400, 0x400, 0x7, 0x0, 0x9, 0x5}, {0x9, 0xbd9, 0x7, 0x9}, {0x0, 0x8, 0xb}, 0x70bd27, 0x3503, 0xa, 0x0, 0x7, 0x62}}, 0xf0}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
r0 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

1m38.56866593s ago: executing program 3 (id=1100):
r0 = socket$netlink(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0700000004000000080200002100"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x20}, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="a800000000010904000500000000000002000000240001801400018008000100e000000108000200ac1e01010c00028005000100000009002400028014000180080001000000010908000200ac1e00010c000280050001000000000044000f800800014000000006080003400000002b080003400000000808000240000000400800014000000000fb0001400000000708000140000044f10800034000000003080007"], 0xa8}}, 0x0)

1m37.977467473s ago: executing program 3 (id=1102):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x2)
capset(&(0x7f0000000ac0)={0x19980330}, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x0, 0x0, 0x2})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)

1m36.709824037s ago: executing program 3 (id=1104):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x654a, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50)
socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0xa, 0xe, 0xc, 0x9, 0x0, 0xffffffffffffffff, 0x6d}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/binfmt_misc/syz3\x00', 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x3, 0x4fc, &(0x7f0000001500)="$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")
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$binfmt_register(r3, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x7, 0x3a, 'M', 0x3a, 'M', 0x3a, './file2', 0x3a, [0x46]}, 0x2a)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r7, 0x0, 0x100000000}, 0x18)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
fcntl$getown(r2, 0x9)
r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
r9 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0x29, &(0x7f0000001500)=[{&(0x7f0000001580)="d80000001a0081044e81f782db4cb9040a1d08007b490d4f1e81f8d815000100ff05142603600e12080005007a010401a80016002000034004000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e", 0xd8}], 0x1}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000380), 0x2, 0x9}}, 0x20)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f00000001c0)='./file2\x00', &(0x7f0000000280)='exofs\x00', 0x4, &(0x7f0000000300)='/proc/sys/fs/binfmt_misc/syz3\x00')
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18009500"/24], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r10}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
creat(&(0x7f0000000340)='./file0\x00', 0x100)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f375ffff86dd6317ce62070000000000000000431ccaf57b00000000000000000104"], 0xfe1b)

1m35.120367948s ago: executing program 3 (id=1116):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_newaddr={0x20, 0x14, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0xff, r3}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
r4 = socket$inet(0x2, 0x3, 0x2)
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r5 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000010000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = io_uring_setup(0x1694, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, 0x0, 0x0)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x13, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xb}}}, 0x24}}, 0x0)

1m33.880567603s ago: executing program 3 (id=1123):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
write$snapshot(r0, &(0x7f0000001600)="9d", 0x1)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x3000, 0x3)
open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2)

1m32.771269564s ago: executing program 35 (id=1123):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
write$snapshot(r0, &(0x7f0000001600)="9d", 0x1)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x3000, 0x3)
open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2)

2.372236314s ago: executing program 0 (id=1777):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})

2.252793787s ago: executing program 7 (id=1778):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@func_proto, @func_proto]}}, 0x0, 0x32, 0x0, 0x3}, 0x28)

2.252528607s ago: executing program 5 (id=1779):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x40101)
setreuid(0x0, 0xee00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[])

2.08723612s ago: executing program 0 (id=1781):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

2.05008328s ago: executing program 5 (id=1782):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r2, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

1.948722092s ago: executing program 6 (id=1783):
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file0\x00', 0x14542, &(0x7f0000000b40)=ANY=[], 0x0, 0x11ff, &(0x7f0000002480)="$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")
r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x8500, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000f40)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

1.777320796s ago: executing program 5 (id=1784):
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x84)
pwritev2(r0, &(0x7f0000000900)=[{&(0x7f0000000800)="2f682081ea45ec65655d26f0cb", 0xd}, {0x0}], 0x2, 0x6, 0xfffffffd, 0x2)

991.987431ms ago: executing program 0 (id=1785):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000040000000400000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000191c0)=ANY=[@ANYBLOB="010000000b000000050010000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000002"], 0x48)

956.060511ms ago: executing program 6 (id=1786):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x20}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1004}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xeb48195b69e85694, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r3}, 0x10)
socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r4 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000007c0)='>', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

892.329473ms ago: executing program 7 (id=1787):
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010120", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}}}}}}, 0x0)

816.873504ms ago: executing program 7 (id=1788):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003380)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000006cfa000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000", @ANYRES32=0x0, @ANYRES32], 0x48)

698.551837ms ago: executing program 6 (id=1789):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f1"], 0x0}, 0x94)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x8c, 0x200)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f00000003c0)={0x20, 0x0, 0x0})

632.727408ms ago: executing program 5 (id=1790):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
semop(0x0, 0x0, 0x0)

632.462578ms ago: executing program 7 (id=1791):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0xb}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r1, r1, 0x0, 0x800000009)

629.371318ms ago: executing program 0 (id=1792):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r2, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

567.529089ms ago: executing program 6 (id=1793):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f0000000500)={@val={0x8, 0x800}, @val={0x0, 0x4, 0x4, 0x8}, @ipv4=@udp={{0x5, 0x4, 0x3, 0x1e, 0x1c, 0x66, 0x0, 0x40, 0x11, 0x0, @private=0xa010101, @broadcast}, {0x4f20, 0x4e22, 0x8}}}, 0x2a)

500.707261ms ago: executing program 0 (id=1794):
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file0\x00', 0x14542, &(0x7f0000000b40)=ANY=[], 0x0, 0x11ff, &(0x7f0000002480)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x8500, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000140)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000f40)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

409.841472ms ago: executing program 5 (id=1795):
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='GPL\x00', 0x3}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2673974c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

320.122264ms ago: executing program 6 (id=1796):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x5, 0xb0, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x4, "d57e190d001e6e1d16c1711bbd8adbf65bd846957b378a02340c68117aa1b390", "b0b4e2d8157cddfb9792c8e37bafb99e319950347e93f4d34870ee24c0ea06d53300", "01acae6f69ea1443db8d53af54944d4894a87f20c65bfb8e0c8cfb67", {"38f5e54b3dc7c070b4d66f0f9565df74", "d2653a13d554fee0e7be27c873db314d"}}}}}}}, 0x0)

265.573345ms ago: executing program 7 (id=1797):
r0 = open(&(0x7f0000000240)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x8000001f)
r1 = inotify_init1(0x0)
r2 = inotify_add_watch(r1, &(0x7f0000000200)='.\x00', 0x10000a0)
r3 = dup(r1)
inotify_rm_watch(r3, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

88.762949ms ago: executing program 6 (id=1798):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x1, 0x0, @loopback, 0x2}, 0x1c)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000140)=@gcm_256={{0x303, 0x3a}, "c4d65ab71f5ef2fe", "9e8ecc7bb5352776725e104757e7dc25c6519a85efb17b5508000018bb00", "0900b43f"}, 0x38)

88.404439ms ago: executing program 5 (id=1799):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000002c0)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@grpquota}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x46f, &(0x7f0000000bc0)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000020000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001700)={{r2}, &(0x7f0000001680), &(0x7f00000016c0)='%+9llu \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
syz_usb_connect(0x2, 0x4a, &(0x7f0000000040)=ANY=[], 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffff7f}]})
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x4}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040040)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x60000000}, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@quota}, {@debug}]}, 0x1, 0x246, &(0x7f0000000ac0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
listxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001380)=""/4096, 0x11)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}, 0x1, 0xfffffffffffffff5, 0x0, 0x24004005}, 0x8040)

44.45858ms ago: executing program 0 (id=1800):
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x17, &(0x7f0000000080)=0x1, 0x4)

0s ago: executing program 7 (id=1801):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f1"], 0x0}, 0x94)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x8c, 0x200)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f00000003c0)={0x20, 0x0, 0x0})

kernel console output (not intermixed with test programs):

aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  319.211650][ T9346] loop6: detected capacity change from 0 to 8192
[  319.241391][ T9337] EXT4-fs error (device loop3): dx_make_map:1328: inode #2: block 20: comm syz.3.809: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  319.271695][ T9346]  loop6: p1 p2[DM] p4
[  319.277857][ T9346] loop6: p1 size 196608 extends beyond EOD, truncated
[  319.290461][ T9346] loop6: p2 start 4292936063 is beyond EOD, truncated
[  319.297469][ T9346] loop6: p4 size 50331648 extends beyond EOD, truncated
[  319.311084][ T9337] EXT4-fs error (device loop3) in do_split:2095: Corrupt filesystem
[  319.374079][ T9349] EXT4-fs error (device loop3): htree_dirblock_to_tree:1112: inode #2: block 20: comm syz.3.809: bad entry in directory: inode out of bounds - offset=2012, inode=128, rec_len=36, size=1024 fake=1
[  319.430407][ T9351] syz.5.814[9351] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  319.430555][ T9351] syz.5.814[9351] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  319.538147][ T5790] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  319.615347][ T9141] udevd[9141]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  319.628740][ T9137] udevd[9137]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  319.968214][ T9364] bridge0: entered promiscuous mode
[  319.986041][ T9364] bridge0: port 1(macsec1) entered blocking state
[  320.003826][ T9364] bridge0: port 1(macsec1) entered disabled state
[  320.013881][ T9364] macsec1: entered allmulticast mode
[  320.019843][ T9364] bridge0: entered allmulticast mode
[  320.027874][ T9364] macsec1: left allmulticast mode
[  320.033056][ T9364] bridge0: left allmulticast mode
[  320.052775][ T9364] bridge0: left promiscuous mode
[  320.328496][ T9379] loop5: detected capacity change from 0 to 512
[  320.361304][ T9379] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  320.396666][ T9379] EXT4-fs (loop5): orphan cleanup on readonly fs
[  320.445406][ T9379] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.823: corrupted inode contents
[  320.468408][ T9379] EXT4-fs (loop5): Remounting filesystem read-only
[  320.483093][ T9379] EXT4-fs (loop5): 1 truncate cleaned up
[  320.525088][ T2970] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  320.552381][ T2970] __quota_error: 34 callbacks suppressed
[  320.552397][ T2970] Quota error (device loop5): write_blk: dquota write failed
[  320.591519][ T2970] Quota error (device loop5): remove_free_dqentry: Can't write block (5) with free entries
[  320.638979][ T2970] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  320.683612][ T2970] Quota error (device loop5): write_blk: dquota write failed
[  320.713978][ T2970] Quota error (device loop5): free_dqentry: Can't move quota data block (5) to free list
[  320.738630][ T2970] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  320.757572][ T2970] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  320.771399][ T2970] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  320.791453][ T9379] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  320.932897][   T27] audit: type=1326 audit(1758071071.555:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9396 comm="syz.6.827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  321.002214][   T27] audit: type=1326 audit(1758071071.555:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9396 comm="syz.6.827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  321.002654][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.051662][   T27] audit: type=1326 audit(1758071071.575:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9396 comm="syz.6.827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  321.075350][ T9397] capability: warning: `syz.6.827' uses deprecated v2 capabilities in a way that may be insecure
[  321.079894][ T9401] team0: Mode changed to "activebackup"
[  321.112661][   T27] audit: type=1326 audit(1758071071.575:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9396 comm="syz.6.827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  321.439015][ T9411] lo speed is unknown, defaulting to 1000
[  321.449087][ T9411] lo speed is unknown, defaulting to 1000
[  321.456265][ T9411] lo speed is unknown, defaulting to 1000
[  321.487266][ T9411] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  321.517174][ T9412] netlink: 4656 bytes leftover after parsing attributes in process `syz.3.834'.
[  321.594903][ T9411] lo speed is unknown, defaulting to 1000
[  321.622451][ T9411] lo speed is unknown, defaulting to 1000
[  321.642337][ T9411] lo speed is unknown, defaulting to 1000
[  321.686230][ T9411] lo speed is unknown, defaulting to 1000
[  321.977285][ T9421] loop3: detected capacity change from 0 to 2048
[  322.021176][ T9421] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  322.908940][ T9433] loop5: detected capacity change from 0 to 1024
[  322.962541][ T9433] EXT4-fs: Ignoring removed bh option
[  323.008138][ T9433] EXT4-fs: inline encryption not supported
[  323.037280][ T9433] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  323.064336][ T9433] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  323.090260][ T9433] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 2: comm syz.5.840: lblock 2 mapped to illegal pblock 2 (length 1)
[  323.110043][ T9433] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 48: comm syz.5.840: lblock 0 mapped to illegal pblock 48 (length 1)
[  323.126631][ T9433] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.840: Failed to acquire dquot type 0
[  323.162722][ T9433] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  323.174593][ T9439] netlink: 4 bytes leftover after parsing attributes in process `syz.3.842'.
[  323.194019][ T9433] EXT4-fs error (device loop5): ext4_evict_inode:252: inode #11: comm syz.5.840: mark_inode_dirty error
[  323.247021][ T9433] EXT4-fs warning (device loop5): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  323.282596][ T9433] EXT4-fs (loop5): 1 orphan inode deleted
[  323.300564][ T9433] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.320476][ T3002] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:9: lblock 1 mapped to illegal pblock 1 (length 1)
[  323.403031][ T3002] EXT4-fs error (device loop5): ext4_release_dquot:6976: comm kworker/u4:9: Failed to release dquot type 0
[  323.459562][ T9433] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 48: comm syz.5.840: lblock 0 mapped to illegal pblock 48 (length 1)
[  323.680451][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.876639][ T9435] lo speed is unknown, defaulting to 1000
[  323.917033][ T9435] lo speed is unknown, defaulting to 1000
[  325.717649][ T9469] loop3: detected capacity change from 0 to 512
[  325.731095][ T9469] EXT4-fs: Ignoring removed mblk_io_submit option
[  325.758890][ T9469] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  325.775942][ T9469] EXT4-fs (loop3): 1 truncate cleaned up
[  325.788385][ T9469] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  325.873506][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.359094][   T27] kauditd_printk_skb: 17 callbacks suppressed
[  326.359116][   T27] audit: type=1326 audit(1758071076.988:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  326.419208][   T27] audit: type=1326 audit(1758071076.988:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  326.454855][   T27] audit: type=1326 audit(1758071077.038:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  326.479037][   T27] audit: type=1326 audit(1758071077.038:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  326.503828][   T27] audit: type=1326 audit(1758071077.048:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9485 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f2a6e5c1465 code=0x7ffc0000
[  326.530512][   T27] audit: type=1326 audit(1758071077.048:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  326.554710][   T27] audit: type=1326 audit(1758071077.048:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  326.580121][   T27] audit: type=1326 audit(1758071077.048:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  326.607336][   T27] audit: type=1326 audit(1758071077.048:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2a6e52ada9 code=0x7ffc0000
[  326.636820][   T27] audit: type=1326 audit(1758071077.048:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9481 comm="syz.3.858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  329.122398][ T9517] loop5: detected capacity change from 0 to 512
[  329.209217][ T9517] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.266451][ T9517] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.363529][ T9512] random: crng reseeded on system resumption
[  329.468028][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.714928][ T9541] team0: Unable to change to the same mode the team is in
[  331.045300][ T9543] loop3: detected capacity change from 0 to 8192
[  331.072865][ T9547] netlink: 'syz.0.881': attribute type 10 has an invalid length.
[  331.098173][ T9547] team0: Port device dummy0 added
[  331.727201][   T27] kauditd_printk_skb: 208 callbacks suppressed
[  331.727218][   T27] audit: type=1326 audit(1758071082.360:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  331.838871][   T27] audit: type=1326 audit(1758071082.400:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  331.953354][   T27] audit: type=1326 audit(1758071082.400:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  332.023073][   T27] audit: type=1326 audit(1758071082.400:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  332.051384][ T9573] loop0: detected capacity change from 0 to 512
[  332.072642][   T27] audit: type=1326 audit(1758071082.410:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  332.107097][ T9573] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  332.122601][   T27] audit: type=1326 audit(1758071082.410:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  332.151655][   T27] audit: type=1326 audit(1758071082.410:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  332.179914][   T27] audit: type=1326 audit(1758071082.410:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  332.220749][   T27] audit: type=1326 audit(1758071082.420:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  332.284901][ T9573] EXT4-fs (loop0): 1 truncate cleaned up
[  332.292341][ T9573] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  332.389215][   T27] audit: type=1326 audit(1758071082.420:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9561 comm="syz.0.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  332.502585][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.917993][ T9586] loop5: detected capacity change from 0 to 128
[  332.933300][ T9585] team0: Unable to change to the same mode the team is in
[  333.444072][ T9605] loop5: detected capacity change from 0 to 128
[  333.496045][ T9608] loop6: detected capacity change from 0 to 1024
[  333.503644][ T9608] EXT4-fs: Ignoring removed bh option
[  333.509678][ T9608] EXT4-fs: inline encryption not supported
[  333.549004][ T9608] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  333.593148][ T9608] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  333.634687][ T9608] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 2: comm syz.6.908: lblock 2 mapped to illegal pblock 2 (length 1)
[  333.652551][ T9608] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 48: comm syz.6.908: lblock 0 mapped to illegal pblock 48 (length 1)
[  333.672498][ T9608] EXT4-fs error (device loop6): ext4_acquire_dquot:6940: comm syz.6.908: Failed to acquire dquot type 0
[  333.686854][ T9608] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  333.706168][ T9608] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #11: comm syz.6.908: mark_inode_dirty error
[  333.718127][ T9608] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  333.728885][ T9608] EXT4-fs (loop6): 1 orphan inode deleted
[  333.736152][ T9608] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.737146][ T9613] team0: Unable to change to the same mode the team is in
[  333.765723][ T1135] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  333.783999][ T1135] EXT4-fs error (device loop6): ext4_release_dquot:6976: comm kworker/u4:6: Failed to release dquot type 0
[  333.807656][ T9608] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.817727][ T9608] EXT4-fs error (device loop6): __ext4_get_inode_loc:4483: comm syz.6.908: Invalid inode table block 1 in block_group 0
[  333.834999][ T9608] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  333.845455][ T9608] EXT4-fs error (device loop6): ext4_quota_off:7224: inode #3: comm syz.6.908: mark_inode_dirty error
[  334.292444][ T5805] Bluetooth: hci4: command 0x0406 tx timeout
[  336.401013][ T9661] (null): rxe_set_mtu: Set mtu to 4096
[  336.409359][ T9661] lo speed is unknown, defaulting to 1000
[  337.657245][ T9661] lo speed is unknown, defaulting to 1000
[  337.665571][ T9661] lo speed is unknown, defaulting to 1000
[  338.218069][ T9661] infiniband s
z1: set active
[  338.222869][ T9661] infiniband s
z1: added lo
[  338.495102][  T968] lo speed is unknown, defaulting to 1000
[  338.543463][ T9661] RDS/IB: s
z1: added
[  338.547679][ T9661] smc: adding ib device s
z1 with port count 1
[  338.553884][ T9661] smc:    ib device s
z1 port 1 has pnetid 
[  338.562717][ T9661] lo speed is unknown, defaulting to 1000
[  338.748936][ T9661] lo speed is unknown, defaulting to 1000
[  338.926424][ T9661] lo speed is unknown, defaulting to 1000
[  338.931349][ T9669] pim6reg1: entered promiscuous mode
[  338.965450][ T9669] pim6reg1: entered allmulticast mode
[  339.175791][ T9661] lo speed is unknown, defaulting to 1000
[  339.290581][ T9681] netlink: 'syz.3.932': attribute type 10 has an invalid length.
[  339.354881][ T9681] team0: Port device dummy0 added
[  339.399732][ T9682] netlink: 'syz.3.932': attribute type 10 has an invalid length.
[  339.414894][ T9682] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  339.449828][ T9682] team0: Failed to send options change via netlink (err -105)
[  339.460110][ T9682] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  339.483143][ T9682] team0: Port device dummy0 removed
[  339.499525][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  339.499541][   T27] audit: type=1326 audit(1758071090.142:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.512502][ T9682] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  339.540277][   T27] audit: type=1326 audit(1758071090.142:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.565476][   T27] audit: type=1326 audit(1758071090.182:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.577437][  T968] lo speed is unknown, defaulting to 1000
[  339.594340][   T27] audit: type=1326 audit(1758071090.182:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.618497][   T27] audit: type=1326 audit(1758071090.182:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.710022][   T27] audit: type=1326 audit(1758071090.212:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.784226][   T27] audit: type=1326 audit(1758071090.212:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.823878][   T27] audit: type=1326 audit(1758071090.212:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.853764][   T27] audit: type=1326 audit(1758071090.212:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.877553][   T27] audit: type=1326 audit(1758071090.212:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.6.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  339.991778][ T9701] team0: Unable to change to the same mode the team is in
[  340.198841][ T9709] netlink: 40 bytes leftover after parsing attributes in process `syz.5.944'.
[  340.562376][ T9724] netlink: 20 bytes leftover after parsing attributes in process `syz.3.952'.
[  340.576947][ T9722] team0: Unable to change to the same mode the team is in
[  340.652281][ T9726] netlink: 'syz.0.951': attribute type 10 has an invalid length.
[  340.658470][ T9728] loop3: detected capacity change from 0 to 512
[  340.668022][ T9728] EXT4-fs: Ignoring removed nomblk_io_submit option
[  340.676378][ T9726] netlink: 55 bytes leftover after parsing attributes in process `syz.0.951'.
[  340.685864][ T9728] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  340.708494][ T9726] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  340.747421][ T9728] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  340.770633][ T9728] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=842c01c, mo2=0002]
[  340.813853][ T9728] EXT4-fs (loop3): couldn't mount RDWR because of unsupported optional features (80)
[  340.823846][ T9728] EXT4-fs (loop3): Skipping orphan cleanup due to unknown ROCOMPAT features
[  340.841379][ T9728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  340.855727][ T9726] batman_adv: batadv0: Removing interface: virt_wifi0
[  340.864184][ T9728] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.953: dx entry: limit 65535 != root limit 120
[  340.876565][ T9728] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.953: Corrupt directory, running e2fsck is recommended
[  340.889856][ T9728] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 3: comm syz.3.953: path /246/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  340.914658][ T9733] netlink: 'syz.5.956': attribute type 4 has an invalid length.
[  340.980238][ T9736] netlink: 'syz.5.956': attribute type 4 has an invalid length.
[  341.009361][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.036312][ T9726] Process accounting resumed
[  341.228267][ T9742] netlink: 7 bytes leftover after parsing attributes in process `syz.3.957'.
[  341.796379][ T9755] (null): rxe_set_mtu: Set mtu to 4096
[  341.804100][ T9755] rdma_rxe: rxe_newlink: failed to add lo
[  342.664031][ T9771] loop0: detected capacity change from 0 to 2048
[  342.704321][ T9771] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  343.640958][ T9733] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  343.652936][ T9733] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  343.666375][ T9733] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  343.682116][ T9733] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  343.891869][ T9752] team0: No ports can be present during mode change
[  344.989088][ T9804] loop0: detected capacity change from 0 to 1024
[  345.008052][ T9804] EXT4-fs: Ignoring removed i_version option
[  345.014197][ T9804] EXT4-fs: Ignoring removed orlov option
[  345.038743][ T9804] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  345.063409][ T9807] loop6: detected capacity change from 0 to 2048
[  345.082913][ T9804] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  345.109574][ T9804] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.109590][ T9807] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  345.111902][ T9805] 9pnet: Could not find request transport: 0xffffffffffffffff
[  345.211606][   T27] kauditd_printk_skb: 10 callbacks suppressed
[  345.211632][   T27] audit: type=1800 audit(1758071095.852:995): pid=9804 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.972" name="file1" dev="loop0" ino=15 res=0 errno=0
[  345.269852][ T9804] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #15: comm syz.0.972: lblock 0 mapped to illegal pblock 0 (length 6)
[  345.341074][ T9804] EXT4-fs error (device loop0): ext4_ext_remove_space:2929: inode #15: comm syz.0.972: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  345.526798][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  345.668903][ T9814] team0: Unable to change to the same mode the team is in
[  346.035283][   T27] audit: type=1326 audit(1758071096.673:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.112777][   T27] audit: type=1326 audit(1758071096.673:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.134986][    C1] vkms_vblank_simulate: vblank timer overrun
[  346.150485][   T27] audit: type=1326 audit(1758071096.713:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.173926][   T27] audit: type=1326 audit(1758071096.713:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.202520][   T27] audit: type=1326 audit(1758071096.713:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.225815][   T27] audit: type=1326 audit(1758071096.713:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.248114][    C1] vkms_vblank_simulate: vblank timer overrun
[  346.265600][   T27] audit: type=1326 audit(1758071096.713:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.302850][   T27] audit: type=1326 audit(1758071096.713:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.333642][   T27] audit: type=1326 audit(1758071096.713:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.0.976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  346.685584][ T9833] loop3: detected capacity change from 0 to 1024
[  346.712906][ T9833] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  346.781130][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.875955][ T9842] loop3: detected capacity change from 0 to 512
[  346.924790][ T9844] loop6: detected capacity change from 0 to 764
[  346.944605][ T9844] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  346.967321][ T9844] Symlink component flag not implemented
[  346.973984][ T9844] Symlink component flag not implemented (7)
[  347.108140][ T9848] loop3: detected capacity change from 0 to 2048
[  347.128388][ T9848] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  347.179589][ T9853] netlink: 20 bytes leftover after parsing attributes in process `syz.5.989'.
[  347.398197][ T9856] loop0: detected capacity change from 0 to 1024
[  347.418239][ T9856] EXT4-fs: Ignoring removed nomblk_io_submit option
[  347.425861][ T9856] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  347.445316][ T9856] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  347.454228][ T9856] System zones: 0-1, 3-36
[  347.462188][ T9856] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.974345][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.268638][ T9884] loop0: detected capacity change from 0 to 164
[  349.281102][ T9884] Unable to read rock-ridge attributes
[  349.318761][ T9884] Unable to read rock-ridge attributes
[  349.345623][ T9884] iso9660: Corrupted directory entry in block 4 of inode 1792
[  349.393730][ T9875] lo speed is unknown, defaulting to 1000
[  349.407817][ T9875] lo speed is unknown, defaulting to 1000
[  349.419485][ T9875] lo speed is unknown, defaulting to 1000
[  349.817471][ T9894] (null): rxe_set_mtu: Set mtu to 4096
[  349.824861][ T9894] rdma_rxe: rxe_newlink: failed to add lo
[  349.850152][ T9761] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  350.047151][ T9761] usb 4-1: Using ep0 maxpacket: 8
[  350.335739][ T9761] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  350.452936][ T9761] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  350.462629][ T9761] usb 4-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b
[  350.472253][ T9761] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.494502][ T9761] usb 4-1: config 0 descriptor??
[  350.834381][ T9875] netlink: 8 bytes leftover after parsing attributes in process `syz.3.997'.
[  350.835625][   T27] kauditd_printk_skb: 41 callbacks suppressed
[  350.835643][   T27] audit: type=1326 audit(1758071101.473:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  350.894709][ T9913] syz_tun: entered allmulticast mode
[  350.899320][ T9772] usb 4-1: USB disconnect, device number 3
[  350.918444][   T27] audit: type=1326 audit(1758071101.513:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  350.942654][ T9912] syz_tun: left allmulticast mode
[  350.943009][   T27] audit: type=1326 audit(1758071101.513:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  350.973154][   T27] audit: type=1326 audit(1758071101.523:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  350.997238][   T27] audit: type=1326 audit(1758071101.523:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  351.020214][   T27] audit: type=1326 audit(1758071101.533:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  351.043928][   T27] audit: type=1326 audit(1758071101.533:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  351.082700][   T27] audit: type=1326 audit(1758071101.533:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  351.106742][   T27] audit: type=1326 audit(1758071101.533:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9871 comm="syz.3.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  351.282219][   T27] audit: type=1326 audit(1758071101.533:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9912 comm="syz.0.1009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  351.547723][ T9921] s
z1: rxe_newlink: already configured on lo
[  353.435498][ T9945] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1019'.
[  353.713480][ T9949] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1019'.
[  353.767763][ T9952] (null): rxe_set_mtu: Set mtu to 4096
[  353.773706][ T9952] rdma_rxe: rxe_newlink: failed to add lo
[  353.869615][ T9953] hub 6-0:1.0: USB hub found
[  353.909789][ T9953] hub 6-0:1.0: 1 port detected
[  355.163054][ T9964] (null): rxe_set_mtu: Set mtu to 4096
[  355.170439][ T9964] rdma_rxe: rxe_newlink: failed to add lo
[  356.403183][   T27] kauditd_printk_skb: 26 callbacks suppressed
[  356.403199][   T27] audit: type=1326 audit(1758071107.043:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9978 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  356.439046][   T27] audit: type=1326 audit(1758071107.043:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9978 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  356.451445][ T9981] loop3: detected capacity change from 0 to 512
[  356.463761][   T27] audit: type=1326 audit(1758071107.043:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9978 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  356.476529][ T9981] ext3: Unknown parameter 'seclabel'
[  356.490699][   T27] audit: type=1326 audit(1758071107.073:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9978 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  356.570268][ T9981] loop3: detected capacity change from 0 to 256
[  356.601532][ T9981] FAT-fs (loop3): Directory bread(block 64) failed
[  356.609298][ T9981] FAT-fs (loop3): Directory bread(block 65) failed
[  356.617272][ T9981] FAT-fs (loop3): Directory bread(block 66) failed
[  356.623931][ T9981] FAT-fs (loop3): Directory bread(block 67) failed
[  356.633213][ T9981] FAT-fs (loop3): Directory bread(block 68) failed
[  356.640471][ T9981] FAT-fs (loop3): Directory bread(block 69) failed
[  356.647540][ T9981] FAT-fs (loop3): Directory bread(block 70) failed
[  356.654093][ T9981] FAT-fs (loop3): Directory bread(block 71) failed
[  356.660767][ T9981] FAT-fs (loop3): Directory bread(block 72) failed
[  356.668529][ T9981] FAT-fs (loop3): Directory bread(block 73) failed
[  357.988468][ T9993] team0: No ports can be present during mode change
[  358.092614][T10000] loop0: detected capacity change from 0 to 512
[  358.103606][T10000] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  358.357300][T10000] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  358.377205][T10000] EXT4-fs (loop0): 1 truncate cleaned up
[  358.390036][T10000] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.873875][T10000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1038'.
[  358.901176][T10000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1038'.
[  358.917990][T10000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1038'.
[  359.013883][T10012] syz.3.1037 (10012) used greatest stack depth: 16936 bytes left
[  359.031271][T10000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1038'.
[  359.263441][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.462954][   T27] audit: type=1326 audit(1758071110.094:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.5.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  359.486388][   T27] audit: type=1326 audit(1758071110.094:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.5.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  359.516113][   T27] audit: type=1326 audit(1758071110.094:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.5.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  359.539033][   T27] audit: type=1326 audit(1758071110.094:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.5.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  359.764818][   T27] audit: type=1326 audit(1758071110.094:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.5.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  360.171654][   T27] audit: type=1326 audit(1758071110.094:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.5.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  360.338213][T10031] syz.5.1048[10031] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.338353][T10031] syz.5.1048[10031] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.407762][T10035] team0: Unable to change to the same mode the team is in
[  360.921779][T10048] loop5: detected capacity change from 0 to 512
[  360.970683][T10048] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.003531][T10048] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  361.241626][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.054103][T10063] team0: Unable to change to the same mode the team is in
[  362.237227][T10065] loop5: detected capacity change from 0 to 1024
[  362.246577][T10065] EXT4-fs: Ignoring removed nobh option
[  362.252195][T10065] EXT4-fs: Ignoring removed bh option
[  362.266128][T10065] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  362.292719][T10069] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1062'.
[  362.336589][T10065] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.450575][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.550175][T10075] netlink: 16182 bytes leftover after parsing attributes in process `syz.6.1064'.
[  362.596665][T10075] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1064'.
[  362.955191][T10093] loop6: detected capacity change from 0 to 764
[  362.971396][T10093] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  363.929238][T10105] capability: warning: `syz.0.1074' uses 32-bit capabilities (legacy support in use)
[  364.096095][T10109] syz.6.1076[10109] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  364.096246][T10109] syz.6.1076[10109] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  364.117803][T10111] loop0: detected capacity change from 0 to 1024
[  364.142376][T10111] EXT4-fs: Ignoring removed nomblk_io_submit option
[  364.167723][T10111] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.242973][ T5795] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.802985][T10146] Driver unsupported XDP return value 0 on prog  (id 613) dev N/A, expect packet loss!
[  365.828453][T10146] loop6: detected capacity change from 0 to 512
[  365.836055][T10146] EXT4-fs: Ignoring removed nobh option
[  365.856832][T10146] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #3: comm syz.6.1092: corrupted inode contents
[  365.873060][T10146] EXT4-fs error (device loop6): ext4_dirty_inode:6106: inode #3: comm syz.6.1092: mark_inode_dirty error
[  365.894373][T10146] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #3: comm syz.6.1092: corrupted inode contents
[  365.913377][T10146] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #3: comm syz.6.1092: mark_inode_dirty error
[  365.948569][T10146] __quota_error: 22 callbacks suppressed
[  365.948589][T10146] Quota error (device loop6): write_blk: dquota write failed
[  365.963140][   T27] audit: type=1326 audit(1758071116.604:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.3.1091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  365.999136][T10146] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  366.012213][T10146] EXT4-fs error (device loop6): ext4_acquire_dquot:6940: comm syz.6.1092: Failed to acquire dquot type 0
[  366.031979][T10146] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.1092: corrupted inode contents
[  366.042215][   T27] audit: type=1326 audit(1758071116.604:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.3.1091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  366.103564][T10152] syz.5.1090[10152] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  366.104600][T10152] syz.5.1090[10152] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  366.146702][T10152] hub 6-0:1.0: USB hub found
[  366.167652][T10152] hub 6-0:1.0: 1 port detected
[  366.252693][T10146] EXT4-fs error (device loop6): ext4_dirty_inode:6106: inode #16: comm syz.6.1092: mark_inode_dirty error
[  366.274478][T10146] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.1092: corrupted inode contents
[  366.484891][   T27] audit: type=1326 audit(1758071116.604:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.3.1091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  366.643083][T10146] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #16: comm syz.6.1092: mark_inode_dirty error
[  366.796012][   T27] audit: type=1326 audit(1758071116.634:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.3.1091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a6e58eba9 code=0x7ffc0000
[  366.855097][T10146] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.1092: corrupted inode contents
[  366.912763][T10146] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  366.926603][T10146] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.1092: corrupted inode contents
[  366.971144][T10146] EXT4-fs error (device loop6): ext4_truncate:4288: inode #16: comm syz.6.1092: mark_inode_dirty error
[  367.001522][T10146] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  367.032319][T10146] EXT4-fs (loop6): 1 truncate cleaned up
[  367.049990][T10146] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  367.094630][T10146] ext4 filesystem being mounted at /192/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  367.209575][T10156] lo speed is unknown, defaulting to 1000
[  367.242749][T10156] lo speed is unknown, defaulting to 1000
[  367.278232][T10156] lo speed is unknown, defaulting to 1000
[  367.415541][  T786] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  367.467833][ T7419] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.625550][  T786] usb 6-1: Using ep0 maxpacket: 8
[  367.639624][  T786] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  367.684960][  T786] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  367.748965][  T786] usb 6-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b
[  367.850331][T10169] loop6: detected capacity change from 0 to 2048
[  367.863028][  T786] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  367.892977][T10169] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  367.932676][  T786] usb 6-1: config 0 descriptor??
[  368.195425][T10156] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1094'.
[  368.460920][ T9760] usb 6-1: USB disconnect, device number 2
[  368.753857][T10175] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1100'.
[  368.914739][T10180] loop0: detected capacity change from 0 to 2048
[  368.971678][T10180] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  370.197931][T10189] loop3: detected capacity change from 0 to 512
[  370.217378][T10189] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  370.281481][T10189] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[  370.326420][T10189] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  370.353867][T10189] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1104: Failed to acquire dquot type 0
[  370.379715][T10189] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  370.588755][T10203] syzkaller1: entered promiscuous mode
[  370.607305][T10203] syzkaller1: entered allmulticast mode
[  370.632076][T10206] netlink: 'syz.3.1104': attribute type 3 has an invalid length.
[  370.650976][T10206] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1104'.
[  371.642103][ T5790] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 3: comm syz-executor: path /284/file0: bad entry in directory: rec_len is too small for name_len - offset=24, inode=11, rec_len=20, size=4096 fake=0
[  371.675181][T10218] loop5: detected capacity change from 0 to 2048
[  371.714785][T10218] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  371.744866][   T27] audit: type=1326 audit(1758071122.384:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10219 comm="syz.0.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  371.770075][   T27] audit: type=1326 audit(1758071122.384:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10219 comm="syz.0.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  371.830348][   T27] audit: type=1326 audit(1758071122.474:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10219 comm="syz.0.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  371.945191][   T27] audit: type=1326 audit(1758071122.504:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10219 comm="syz.0.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  372.006736][   T27] audit: type=1326 audit(1758071122.504:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10219 comm="syz.0.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  372.946768][T10234] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.835879][T10234] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.117868][T10234] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.213607][T10247] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1127'.
[  374.231422][T10247] netlink: 'syz.0.1127': attribute type 30 has an invalid length.
[  374.388211][T10234] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.575976][ T5805] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  374.577907][T10234] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  374.597153][ T5805] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  374.611293][ T5805] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  374.634090][ T5805] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  374.646103][ T5805] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  374.655680][ T5805] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  374.712305][T10234] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  374.774653][T10234] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  375.931523][   T34] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.010118][T10234] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  376.082260][T10255] lo speed is unknown, defaulting to 1000
[  376.090366][T10255] lo speed is unknown, defaulting to 1000
[  376.171265][   T34] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.195566][   T27] audit: type=1326 audit(1758071126.834:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10268 comm="syz.0.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  376.233322][T10255] lo speed is unknown, defaulting to 1000
[  376.273849][   T27] audit: type=1326 audit(1758071126.834:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10268 comm="syz.0.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  376.368046][   T27] audit: type=1326 audit(1758071126.834:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10268 comm="syz.0.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  376.390662][   T34] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.505105][   T27] audit: type=1326 audit(1758071126.844:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10268 comm="syz.0.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  376.555183][   T27] audit: type=1326 audit(1758071126.844:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10268 comm="syz.0.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  376.603549][   T34] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.692544][ T5799] Bluetooth: hci0: command tx timeout
[  377.244483][   T34] tipc: Left network mode
[  378.216966][T10297] lo speed is unknown, defaulting to 1000
[  378.224427][T10297] lo speed is unknown, defaulting to 1000
[  378.284512][T10302] team0: Unable to change to the same mode the team is in
[  378.296857][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  378.303542][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  378.324896][T10297] lo speed is unknown, defaulting to 1000
[  378.331976][T10255] chnl_net:caif_netlink_parms(): no params data found
[  378.765234][ T5799] Bluetooth: hci0: command tx timeout
[  378.796777][T10255] bridge0: port 1(bridge_slave_0) entered blocking state
[  378.813314][T10255] bridge0: port 1(bridge_slave_0) entered disabled state
[  378.830955][T10255] bridge_slave_0: entered allmulticast mode
[  378.859750][T10255] bridge_slave_0: entered promiscuous mode
[  379.135126][T10255] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.144408][T10255] bridge0: port 2(bridge_slave_1) entered disabled state
[  379.164063][T10255] bridge_slave_1: entered allmulticast mode
[  379.174041][T10255] bridge_slave_1: entered promiscuous mode
[  379.312535][T10255] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  379.332387][T10255] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  379.397815][T10255] team0: Port device team_slave_0 added
[  379.436948][T10255] team0: Port device team_slave_1 added
[  379.492704][T10255] batman_adv: batadv0: Adding interface: batadv_slave_0
[  379.503540][T10255] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  379.533744][T10255] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  379.584212][T10255] batman_adv: batadv0: Adding interface: batadv_slave_1
[  379.591521][T10255] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  379.618403][T10255] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  379.687833][T10255] hsr_slave_0: entered promiscuous mode
[  379.694808][T10255] hsr_slave_1: entered promiscuous mode
[  379.702807][T10255] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  379.713276][T10255] Cannot create hsr debugfs directory
[  379.725150][T10319] lo speed is unknown, defaulting to 1000
[  379.791260][T10319] lo speed is unknown, defaulting to 1000
[  379.807027][T10319] lo speed is unknown, defaulting to 1000
[  379.958751][ T5876] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  380.266064][ T5876] usb 7-1: Using ep0 maxpacket: 8
[  380.524473][ T5876] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  380.562528][ T5876] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  380.608895][ T5876] usb 7-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b
[  380.635512][ T5876] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.682563][ T5876] usb 7-1: config 0 descriptor??
[  380.845632][ T5799] Bluetooth: hci0: command tx timeout
[  380.957580][T10322] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1151'.
[  381.148125][   T34] hsr_slave_0: left promiscuous mode
[  381.163015][   T34] hsr_slave_1: left promiscuous mode
[  381.190603][   T34] veth1_macvtap: left promiscuous mode
[  381.197488][   T34] veth0_macvtap: left promiscuous mode
[  381.203829][   T34] veth1_vlan: left promiscuous mode
[  381.210050][   T34] veth0_vlan: left promiscuous mode
[  382.305854][   T34] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  382.657284][   T34] bond0 (unregistering): Released all slaves
[  382.762528][T10334] team0: Unable to change to the same mode the team is in
[  382.785245][ T5876] lo speed is unknown, defaulting to 1000
[  382.925029][ T5799] Bluetooth: hci0: command tx timeout
[  383.024760][T10255] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  383.076474][T10255] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  383.122214][T10255] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  383.133015][T10343] loop5: detected capacity change from 0 to 2048
[  383.183420][T10343] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  383.217790][T10255] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  384.080826][   T34] IPVS: stop unused estimator thread 0...
[  384.216609][T10358] syz.5.1161[10358] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.216754][T10358] syz.5.1161[10358] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.262040][T10255] 8021q: adding VLAN 0 to HW filter on device bond0
[  384.309660][T10255] 8021q: adding VLAN 0 to HW filter on device team0
[  384.324830][   T34] bridge0: port 1(bridge_slave_0) entered blocking state
[  384.332136][   T34] bridge0: port 1(bridge_slave_0) entered forwarding state
[  384.406719][   T34] bridge0: port 2(bridge_slave_1) entered blocking state
[  384.413950][   T34] bridge0: port 2(bridge_slave_1) entered forwarding state
[  384.560297][T10365] team0: Unable to change to the same mode the team is in
[  384.933767][T10255] 8021q: adding VLAN 0 to HW filter on device batadv0
[  384.961274][ T5876] usb 7-1: USB disconnect, device number 3
[  385.594430][T10255] veth0_vlan: entered promiscuous mode
[  385.644759][T10255] veth1_vlan: entered promiscuous mode
[  385.658943][T10404] team0: No ports can be present during mode change
[  385.744536][T10255] veth0_macvtap: entered promiscuous mode
[  385.781979][T10255] veth1_macvtap: entered promiscuous mode
[  385.831884][T10255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  385.847650][T10255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  385.860534][T10255] batman_adv: batadv0: Interface activated: batadv_slave_0
[  385.871406][T10409] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1176'.
[  385.884322][T10409] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1176'.
[  385.898551][T10255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  385.925406][T10255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  385.948439][T10255] batman_adv: batadv0: Interface activated: batadv_slave_1
[  385.988592][T10255] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  386.028146][T10255] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  386.058306][T10255] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  386.082968][T10255] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  386.376740][   T27] kauditd_printk_skb: 33 callbacks suppressed
[  386.376756][   T27] audit: type=1326 audit(1758071137.024:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.5.1181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  386.416495][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.424799][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  386.453264][   T27] audit: type=1326 audit(1758071137.054:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.5.1181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  386.484133][   T27] audit: type=1326 audit(1758071137.054:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.5.1181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  386.510258][   T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.521206][   T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  386.532724][   T27] audit: type=1326 audit(1758071137.174:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.5.1181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  386.567564][   T27] audit: type=1326 audit(1758071137.174:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.5.1181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  386.853868][T10444] netlink: 7 bytes leftover after parsing attributes in process `syz.5.1187'.
[  386.873810][T10444] netlink: 7 bytes leftover after parsing attributes in process `syz.5.1187'.
[  387.193706][ T9772] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  387.246611][ T9772] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  387.280116][   T27] audit: type=1326 audit(1758071137.924:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.6.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  387.351965][   T27] audit: type=1326 audit(1758071137.924:1166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.6.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  387.395900][   T27] audit: type=1326 audit(1758071137.964:1167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.6.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  387.419086][   T27] audit: type=1326 audit(1758071138.034:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.6.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  387.512926][   T27] audit: type=1326 audit(1758071138.034:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.6.1192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  388.717734][T10491] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1202'.
[  388.728172][T10490] netlink: 'syz.6.1203': attribute type 21 has an invalid length.
[  388.736513][T10490] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1203'.
[  388.746222][T10490] netlink: 'syz.6.1203': attribute type 1 has an invalid length.
[  389.053200][T10508] loop6: detected capacity change from 0 to 764
[  389.082803][T10508] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  389.174510][T10514] loop5: detected capacity change from 0 to 1024
[  389.183375][T10514] EXT4-fs: inline encryption not supported
[  389.228595][T10514] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  389.366964][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.384015][T10523] team0: No ports can be present during mode change
[  389.604697][T10536] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1222'.
[  389.687206][T10536] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1222'.
[  389.719754][T10540] loop6: detected capacity change from 0 to 2048
[  389.824541][T10536] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1222'.
[  389.843514][T10546] 9pnet: p9_errstr2errno: server reported unknown error 
[  390.034593][T10555] team0: Unable to change to the same mode the team is in
[  390.284288][T10564] loop5: detected capacity change from 0 to 2048
[  390.330247][T10566] IPv4: Oversized IP packet from 127.202.26.0
[  390.343643][T10564] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  391.244713][T10582] team0: No ports can be present during mode change
[  391.492387][T10586] loop7: detected capacity change from 0 to 128
[  391.632797][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  391.632812][   T27] audit: type=1326 audit(1758071142.274:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  391.702997][   T27] audit: type=1326 audit(1758071142.314:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  391.744074][   T27] audit: type=1326 audit(1758071142.324:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  391.793204][   T27] audit: type=1326 audit(1758071142.324:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  391.865073][   T27] audit: type=1326 audit(1758071142.324:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  391.913103][   T27] audit: type=1326 audit(1758071142.334:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  391.951633][T10606] team0: No ports can be present during mode change
[  392.004098][   T27] audit: type=1326 audit(1758071142.334:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  392.039992][T10609] loop5: detected capacity change from 0 to 2048
[  392.061419][   T27] audit: type=1326 audit(1758071142.334:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  392.117306][T10609] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  392.128922][   T27] audit: type=1326 audit(1758071142.334:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  392.192927][   T27] audit: type=1326 audit(1758071142.334:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.6.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  393.156526][T10629] loop5: detected capacity change from 0 to 512
[  393.206733][T10629] EXT4-fs (loop5): orphan cleanup on readonly fs
[  393.226854][T10629] EXT4-fs error (device loop5): ext4_orphan_get:1425: comm syz.5.1258: bad orphan inode 13
[  393.239698][T10629] ext4_test_bit(bit=12, block=18) = 1
[  393.255052][T10629] is_bad_inode(inode)=0
[  393.260874][T10629] NEXT_ORPHAN(inode)=2130706432
[  393.266295][T10629] max_ino=32
[  393.269611][T10629] i_nlink=1
[  393.274286][T10629] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  393.319474][T10629] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.1258: bg 0: block 248: padding at end of block bitmap is not set
[  393.382747][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.417966][T10640] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1263'.
[  393.427611][T10640] bridge_slave_1: left allmulticast mode
[  393.433460][T10640] bridge_slave_1: left promiscuous mode
[  393.441530][T10640] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.465680][T10640] bridge_slave_0: left allmulticast mode
[  393.481677][T10640] bridge_slave_0: left promiscuous mode
[  393.494686][T10640] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.004073][T10651] loop5: detected capacity change from 0 to 512
[  394.321857][T10651] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  394.383705][T10651] ext4 filesystem being mounted at /334/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  394.594726][T10665] team0: No ports can be present during mode change
[  394.896663][ T3002] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  394.945839][ T3002] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 1029 with error 28
[  394.959225][T10674] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1275'.
[  395.003598][ T3002] EXT4-fs (loop5): This should not happen!! Data will be lost
[  395.003598][ T3002] 
[  395.031367][ T3002] EXT4-fs (loop5): Total free blocks count 0
[  395.042144][ T3002] EXT4-fs (loop5): Free/Dirty block details
[  395.050229][ T3002] EXT4-fs (loop5): free_blocks=65280
[  395.059504][ T3002] EXT4-fs (loop5): dirty_blocks=1029
[  395.065112][ T3002] EXT4-fs (loop5): Block reservation details
[  395.071137][ T3002] EXT4-fs (loop5): i_reserved_data_blocks=1029
[  395.271014][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.317624][T10682] loop6: detected capacity change from 0 to 2048
[  395.359477][T10682] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  395.552293][T10692] team0: No ports can be present during mode change
[  396.751954][T10716] team0: No ports can be present during mode change
[  397.072373][T10719] lo speed is unknown, defaulting to 1000
[  397.092923][T10719] lo speed is unknown, defaulting to 1000
[  397.616066][T10721] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1293'.
[  397.939914][T10728] loop5: detected capacity change from 0 to 2048
[  398.067386][T10728] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  398.245952][T10741] syz.0.1302[10741] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  398.246099][T10741] syz.0.1302[10741] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  399.711216][T10778] team0: Unable to change to the same mode the team is in
[  400.733772][T10800] 8021q: adding VLAN 0 to HW filter on device bond1
[  400.794863][T10803] team0: Unable to change to the same mode the team is in
[  400.812394][T10800] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  400.929056][T10800] bond1: (slave macvlan2): Enslaving as a backup interface with a down link
[  401.980990][   T27] kauditd_printk_skb: 7 callbacks suppressed
[  401.981007][   T27] audit: type=1326 audit(1758071152.614:1189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.0.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  402.085653][   T27] audit: type=1326 audit(1758071152.614:1190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.0.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  402.114442][   T27] audit: type=1326 audit(1758071152.614:1191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.0.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  402.137639][   T27] audit: type=1326 audit(1758071152.614:1192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.0.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  402.162615][   T27] audit: type=1326 audit(1758071152.614:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.0.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  402.211912][T10814] loop5: detected capacity change from 0 to 512
[  402.224887][   T27] audit: type=1326 audit(1758071152.614:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.0.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  402.258233][T10814] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  402.299471][   T27] audit: type=1326 audit(1758071152.614:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.0.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  402.345618][T10814] EXT4-fs (loop5): 1 truncate cleaned up
[  402.352664][T10814] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  402.568256][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.905378][T10838] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  402.911979][T10838] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  402.936126][T10838] vhci_hcd vhci_hcd.0: Device attached
[  402.952122][T10841] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8)
[  402.958705][T10841] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  402.988823][T10841] vhci_hcd vhci_hcd.0: Device attached
[  402.997438][   T27] audit: type=1326 audit(1758071153.634:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  403.049721][T10838] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(7)
[  403.056308][T10838] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  403.074230][   T27] audit: type=1326 audit(1758071153.634:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  403.085619][T10845] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1344'.
[  403.131505][T10838] vhci_hcd vhci_hcd.0: Device attached
[  403.148706][T10838] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(17)
[  403.155382][T10838] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  403.163289][   T27] audit: type=1326 audit(1758071153.644:1198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  403.189197][T10838] vhci_hcd vhci_hcd.0: Device attached
[  403.196749][T10838] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  403.219565][T10838] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  403.232881][T10851] vhci_hcd: connection closed
[  403.235475][ T2956] vhci_hcd: stop threads
[  403.243942][T10845] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  403.245417][ T2956] vhci_hcd: release socket
[  403.257991][  T786] usb 44-1: SetAddress Request (2) to port 0
[  403.258516][T10854] smc: net device bond0 applied user defined pnetid SYZ0
[  403.265011][  T786] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  403.278184][ T2956] vhci_hcd: disconnect device
[  403.285199][T10854] smc: net device bond0 erased user defined pnetid SYZ0
[  403.285396][T10848] vhci_hcd: connection closed
[  403.293086][T10842] vhci_hcd: connection closed
[  403.295058][ T2956] vhci_hcd: stop threads
[  403.298198][T10839] vhci_hcd: connection closed
[  403.306194][ T2956] vhci_hcd: release socket
[  403.321515][T10845] veth0_to_team: entered promiscuous mode
[  403.322616][ T2956] vhci_hcd: disconnect device
[  403.334457][ T2956] vhci_hcd: stop threads
[  403.339092][ T2956] vhci_hcd: release socket
[  403.343791][ T2956] vhci_hcd: disconnect device
[  403.353157][T10840] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  403.379918][ T2956] vhci_hcd: stop threads
[  403.400043][ T2956] vhci_hcd: release socket
[  403.419674][ T2956] vhci_hcd: disconnect device
[  404.015837][T10881] netlink: 52 bytes leftover after parsing attributes in process `syz.7.1359'.
[  404.067977][T10881] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  404.084277][T10881] veth0_to_team: entered promiscuous mode
[  404.158004][ T9774] IPVS: starting estimator thread 0...
[  404.255374][T10892] IPVS: using max 20 ests per chain, 48000 per kthread
[  404.371821][T10899] program syz.7.1365 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  405.121191][T10910] 9pnet: Could not find request transport: 0xffffffffffffffff
[  405.752930][T10922] random: crng reseeded on system resumption
[  406.452400][T10944] loop5: detected capacity change from 0 to 512
[  406.485761][T10944] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  406.485882][T10944] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  406.720217][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.053791][T10965] loop7: detected capacity change from 0 to 2048
[  407.064122][T10965] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  407.348516][T10971] team0: No ports can be present during mode change
[  407.995967][   T27] kauditd_printk_skb: 139 callbacks suppressed
[  407.995983][   T27] audit: type=1326 audit(1758071158.644:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.103053][   T27] audit: type=1326 audit(1758071158.644:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.134822][   T27] audit: type=1326 audit(1758071158.684:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.173145][   T27] audit: type=1326 audit(1758071158.684:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.196590][   T27] audit: type=1326 audit(1758071158.684:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.220180][   T27] audit: type=1326 audit(1758071158.694:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.246970][   T27] audit: type=1326 audit(1758071158.694:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.270217][   T27] audit: type=1326 audit(1758071158.694:1345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.302882][   T27] audit: type=1326 audit(1758071158.694:1346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.344866][   T27] audit: type=1326 audit(1758071158.694:1347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  408.375249][  T786] usb 44-1: device descriptor read/8, error -110
[  408.919654][  T786] usb usb44-port1: attempt power cycle
[  409.005210][    T8] vhci_hcd: vhci_device speed not set
[  409.418731][T11006] loop5: detected capacity change from 0 to 512
[  409.440213][T11006] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  409.473052][T11006] EXT4-fs (loop5): 1 truncate cleaned up
[  409.486179][T11006] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.549054][T11006] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #15: comm syz.5.1406: corrupted in-inode xattr: overlapping e_value 
[  409.600559][T11012] loop7: detected capacity change from 0 to 1024
[  409.610066][T11012] EXT4-fs: Ignoring removed nobh option
[  409.625047][T11012] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  409.642597][T11006] EXT4-fs warning (device loop5): ext4_xattr_set_entry:1781: inode #15: comm syz.5.1406: unable to update i_inline_off
[  409.664531][T11012] EXT4-fs error (device loop7): ext4_ext_check_inode:520: inode #11: comm syz.7.1411: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  409.698331][T11014] loop6: detected capacity change from 0 to 1024
[  409.722058][T11014] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  409.734055][T11012] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1411: couldn't read orphan inode 11 (err -117)
[  409.759977][T11014] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  409.779345][T11012] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.802957][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.812288][T11014] JBD2: no valid journal superblock found
[  409.813507][T11012] syz.7.1411[11012] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  409.818430][T11014] EXT4-fs (loop6): Could not load journal inode
[  409.955459][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.366014][  T786] usb usb44-port1: unable to enumerate USB device
[  411.053782][T11049] netlink: 256 bytes leftover after parsing attributes in process `syz.7.1427'.
[  411.105149][T11049] dummy0: entered promiscuous mode
[  411.123641][T11049] macvlan2: entered promiscuous mode
[  411.193863][T11052] loop7: detected capacity change from 0 to 512
[  411.246205][T11052] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  411.270458][T11052] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  411.320516][T11052] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended
[  411.363414][T11049] dummy0: left promiscuous mode
[  411.375460][T11052] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  411.411145][T11052] System zones: 0-2, 18-18, 34-35
[  411.433896][T11052] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  411.532991][T11054] lo speed is unknown, defaulting to 1000
[  411.578977][T11054] lo speed is unknown, defaulting to 1000
[  411.664769][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.339779][T11085] lo speed is unknown, defaulting to 1000
[  414.347254][T11085] lo speed is unknown, defaulting to 1000
[  416.583826][T11116] (null): rxe_set_mtu: Set mtu to 4096
[  416.591061][T11116] rdma_rxe: rxe_newlink: failed to add lo
[  417.598746][T11124] team0: No ports can be present during mode change
[  417.820360][T11127] loop7: detected capacity change from 0 to 2048
[  417.855903][T11127] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  419.293159][T11148] s
z1: rxe_newlink: already configured on lo
[  420.087314][T11153] team0: Unable to change to the same mode the team is in
[  420.635950][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  420.635965][   T27] audit: type=1326 audit(1758071171.284:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  420.687016][   T27] audit: type=1326 audit(1758071171.284:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  420.902390][   T27] audit: type=1326 audit(1758071171.284:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  420.945870][   T27] audit: type=1326 audit(1758071171.284:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  420.969226][   T27] audit: type=1326 audit(1758071171.284:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  420.992806][   T27] audit: type=1326 audit(1758071171.314:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  421.023015][   T27] audit: type=1326 audit(1758071171.314:1374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  421.084362][   T27] audit: type=1326 audit(1758071171.314:1375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  421.128009][T11178] (null): rxe_set_mtu: Set mtu to 4096
[  421.135332][T11178] rdma_rxe: rxe_newlink: failed to add lo
[  421.424049][   T27] audit: type=1326 audit(1758071171.324:1376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  421.693838][   T27] audit: type=1326 audit(1758071171.324:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11169 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  422.432443][T11047] Set syz1 is full, maxelem 65536 reached
[  422.747115][T11209] loop5: detected capacity change from 0 to 512
[  422.773329][T11209] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.794182][T11209] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  422.853555][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.973963][T11216] s
z1: rxe_newlink: already configured on lo
[  423.837966][T11223] loop6: detected capacity change from 0 to 1024
[  423.849133][T11223] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  424.005769][T11223] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  424.066295][T11223] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.1490: bg 0: block 494: padding at end of block bitmap is not set
[  424.087892][T11223] EXT4-fs (loop6): Remounting filesystem read-only
[  424.095799][T11223] EXT4-fs (loop6): error restoring inline_data for inode -- potential data loss! (inode 15, error -5)
[  425.728045][ T7419] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.263200][T11256] futex_wake_op: syz.5.1502 tries to shift op by -1; fix this program
[  426.356027][T11257] s
z1: rxe_newlink: already configured on lo
[  427.192882][   T27] kauditd_printk_skb: 7 callbacks suppressed
[  427.192898][   T27] audit: type=1326 audit(1758071177.834:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.274817][   T27] audit: type=1326 audit(1758071177.834:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.310088][T11266] loop5: detected capacity change from 0 to 164
[  427.320808][   T27] audit: type=1326 audit(1758071177.844:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.348440][T11266] Unable to read rock-ridge attributes
[  427.362437][T11266] Unable to read rock-ridge attributes
[  427.370399][   T27] audit: type=1326 audit(1758071177.844:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.400514][T11266] iso9660: Corrupted directory entry in block 4 of inode 1792
[  427.408870][   T27] audit: type=1326 audit(1758071177.844:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.435195][   T27] audit: type=1326 audit(1758071177.854:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.458460][   T27] audit: type=1326 audit(1758071177.854:1391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.482564][   T27] audit: type=1326 audit(1758071177.854:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.506800][   T27] audit: type=1326 audit(1758071177.854:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.564934][   T27] audit: type=1326 audit(1758071177.854:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.7.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  427.844660][T11280] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  427.926997][T11280] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.121395][T11280] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.288278][T11287] (null): rxe_set_mtu: Set mtu to 4096
[  428.295471][T11287] rdma_rxe: rxe_newlink: failed to add lo
[  428.325028][T11280] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.149891][T11280] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  429.196785][T11280] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  429.259823][T11280] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  429.298266][T11280] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  429.637791][T11307] loop5: detected capacity change from 0 to 1024
[  429.638913][T11307] EXT4-fs: Ignoring removed bh option
[  429.653150][T11307] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  429.897471][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.180084][T11326] loop5: detected capacity change from 0 to 2048
[  431.206057][T11326] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  431.852219][T11355] hub 9-0:1.0: USB hub found
[  431.859759][T11355] hub 9-0:1.0: 1 port detected
[  432.002945][T11360] loop7: detected capacity change from 0 to 512
[  432.031463][T11360] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  432.084234][T11360] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #17: comm syz.7.1536: iget: bad i_size value: -6917529027641081756
[  432.104030][T11360] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1536: couldn't read orphan inode 17 (err -117)
[  432.136537][T11360] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.219397][T11360] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.1536: bg 0: block 65: padding at end of block bitmap is not set
[  432.246754][T11360] __quota_error: 195 callbacks suppressed
[  432.246771][T11360] Quota error (device loop7): write_blk: dquota write failed
[  432.277066][T11360] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  432.299901][T11360] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.1536: Failed to acquire dquot type 0
[  432.396903][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.884423][T11389] IPv4: Oversized IP packet from 127.202.26.0
[  433.451919][T11406] loop7: detected capacity change from 0 to 2048
[  433.492335][T11406] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  433.681564][T11408] team0: No ports can be present during mode change
[  433.961413][T11417] loop5: detected capacity change from 0 to 128
[  433.977701][T11415] loop6: detected capacity change from 0 to 128
[  433.991384][T11415] FAT-fs (loop6): bogus logical sector size 65535
[  433.998019][T11415] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  434.010524][   T27] audit: type=1800 audit(1758071184.654:1590): pid=11417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1556" name="file2" dev="loop5" ino=1048696 res=0 errno=0
[  434.036776][T11415] FAT-fs (loop6): Can't find a valid FAT filesystem
[  434.049095][T11417] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  434.059667][T11417] FAT-fs (loop5): Filesystem has been set read-only
[  434.067747][T11417] syz.5.1556: attempt to access beyond end of device
[  434.067747][T11417] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  434.082449][T11417] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  434.091085][T11417] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  434.163706][T11415] loop6: detected capacity change from 0 to 512
[  434.204590][T11415] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  434.223428][T11415] EXT4-fs (loop6): orphan cleanup on readonly fs
[  434.253772][T11415] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.1555: corrupted inode contents
[  434.301933][T11415] EXT4-fs (loop6): Remounting filesystem read-only
[  434.331496][T11415] EXT4-fs (loop6): 1 truncate cleaned up
[  434.345327][   T11] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  434.392101][   T11] Quota error (device loop6): write_blk: dquota write failed
[  434.421329][   T11] Quota error (device loop6): remove_free_dqentry: Can't write block (5) with free entries
[  434.453082][   T11] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  434.479294][   T11] Quota error (device loop6): write_blk: dquota write failed
[  434.504841][   T11] Quota error (device loop6): free_dqentry: Can't move quota data block (5) to free list
[  434.527675][   T11] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started
[  434.541245][   T11] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  434.552167][T11427] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  434.565021][   T11] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  434.586597][T11415] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  434.660162][T11415] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1555'.
[  434.808700][ T7419] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.012371][T11435] netlink: 'syz.0.1563': attribute type 27 has an invalid length.
[  435.110609][T11435] infiniband s
z1: set down
[  437.132691][T11460] sg_write: data in/out 124/1 bytes for SCSI command 0x67-- guessing data in;
[  437.132691][T11460]    program syz.7.1570 not setting count and/or reply_len properly
[  437.686254][T11435] veth0_to_team: left promiscuous mode
[  438.093346][T11441] netlink: 'syz.5.1564': attribute type 4 has an invalid length.
[  438.114832][ T9772] lo speed is unknown, defaulting to 1000
[  438.139658][T11469] bridge_slave_0: left allmulticast mode
[  438.174018][T11469] bridge_slave_0: left promiscuous mode
[  438.180204][T11469] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.196127][T11469] bridge_slave_1: left allmulticast mode
[  438.202232][T11469] bridge_slave_1: left promiscuous mode
[  438.228285][T11469] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.265189][T11469] bond0: (slave bond_slave_0): Releasing backup interface
[  438.293424][   T27] audit: type=1326 audit(1758071188.934:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.359130][T11469] bond0: (slave bond_slave_1): Releasing backup interface
[  438.366867][   T27] audit: type=1326 audit(1758071188.934:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.427336][   T27] audit: type=1326 audit(1758071188.964:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.458665][   T27] audit: type=1326 audit(1758071188.964:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.486883][   T27] audit: type=1326 audit(1758071188.964:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.510145][   T27] audit: type=1326 audit(1758071188.994:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.533536][   T27] audit: type=1326 audit(1758071188.994:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.557106][T11469] team0: Port device team_slave_0 removed
[  438.600833][T11469] team0: Port device team_slave_1 removed
[  438.611019][   T27] audit: type=1326 audit(1758071188.994:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.645603][T11469] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  438.658986][T11469] batman_adv: batadv0: Removing interface: batadv_slave_0
[  438.669530][T11469] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  438.681238][   T27] audit: type=1326 audit(1758071188.994:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.712820][T11469] batman_adv: batadv0: Removing interface: batadv_slave_1
[  438.720880][   T27] audit: type=1326 audit(1758071188.994:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11477 comm="syz.6.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  438.759774][  T787] lo speed is unknown, defaulting to 1000
[  438.912454][T11488] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1580'.
[  438.941069][T11488] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1580'.
[  439.594285][T11490] loop7: detected capacity change from 0 to 512
[  439.609966][T11490] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  439.639710][T11490] EXT4-fs (loop7): invalid journal inode
[  439.650201][T11490] EXT4-fs (loop7): can't get journal size
[  439.681726][T11490] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e016c118, mo2=0002]
[  439.700066][T11490] System zones: 1-12, 13-13
[  439.727593][T11490] EXT4-fs (loop7): 1 truncate cleaned up
[  439.733469][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  439.748488][T11490] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  439.839829][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.073830][T11504] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1588'.
[  440.102765][T11506] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1589'.
[  440.772519][T11536] tls_set_device_offload: netdev not found
[  440.787730][T11536] netlink: 'syz.7.1602': attribute type 10 has an invalid length.
[  440.806689][T11536] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1602'.
[  440.825429][T11536] ipvlan1: entered promiscuous mode
[  440.839931][T11536] ipvlan1: entered allmulticast mode
[  440.853580][T11536] veth0_vlan: entered allmulticast mode
[  440.882558][T11536] bridge0: port 1(ipvlan1) entered blocking state
[  440.898331][T11536] bridge0: port 1(ipvlan1) entered disabled state
[  440.920800][T11536] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  441.349237][T11566] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1614'.
[  441.378533][T11570] syz.5.1616[11570] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  441.378669][T11570] syz.5.1616[11570] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  441.412415][T11566] netlink: 'syz.6.1614': attribute type 10 has an invalid length.
[  441.462667][T11566] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1614'.
[  441.491844][T11566] batman_adv: batadv0: Adding interface: virt_wifi0
[  441.508055][T11566] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  441.542897][T11566] batman_adv: batadv0: Interface activated: virt_wifi0
[  441.811858][T11588] loop6: detected capacity change from 0 to 1024
[  441.824856][T11588] EXT4-fs: Ignoring removed nomblk_io_submit option
[  441.844150][T11588] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.768730][ T7419] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.960096][T11606] loop5: detected capacity change from 0 to 1024
[  443.149171][T11606] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  443.194229][T11606] ext4 filesystem being mounted at /419/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.258618][T11606] EXT4-fs error (device loop5): ext4_map_blocks:718: inode #15: comm syz.5.1631: lblock 0 mapped to illegal pblock 0 (length 1)
[  443.943649][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  444.174202][T11628] syzkaller0: entered promiscuous mode
[  444.180543][T11628] syzkaller0: entered allmulticast mode
[  444.380108][T11641] syz.7.1641[11641] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  444.380250][T11641] syz.7.1641[11641] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  444.639232][T11643] loop6: detected capacity change from 0 to 2048
[  444.770682][T11643] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  444.986587][T11652] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1644'.
[  445.005195][T11652] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1644'.
[  447.169700][T11666] loop5: detected capacity change from 0 to 128
[  447.271938][T11666] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  447.297857][T11666] ext4 filesystem being mounted at /424/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  447.552592][ T6259] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  447.708296][T11678] netlink: 504 bytes leftover after parsing attributes in process `syz.5.1654'.
[  449.802657][T11706] loop7: detected capacity change from 0 to 512
[  449.826683][T11706] EXT4-fs: Ignoring removed mblk_io_submit option
[  449.866734][T11706] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  449.884279][T11706] EXT4-fs (loop7): orphan cleanup on readonly fs
[  449.894006][T11706] __quota_error: 57 callbacks suppressed
[  449.894021][T11706] Quota error (device loop7): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  449.921711][T11706] EXT4-fs warning (device loop7): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  449.946049][T11706] EXT4-fs (loop7): Cannot turn on quotas: error -117
[  449.960853][T11706] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.1667: bg 0: block 40: padding at end of block bitmap is not set
[  449.980308][T11706] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  450.000711][T11706] EXT4-fs (loop7): 1 truncate cleaned up
[  450.008514][T11706] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  450.141138][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.434262][T11721] loop6: detected capacity change from 0 to 2048
[  450.450142][T11721] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  450.898705][T11735] loop5: detected capacity change from 0 to 2048
[  450.934460][T11735] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  450.963532][T11735] ext4 filesystem being mounted at /440/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  451.098793][T11746] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.1677: bg 0: block 345: padding at end of block bitmap is not set
[  451.163745][T11746] EXT4-fs (loop5): Remounting filesystem read-only
[  451.236531][ T7279] EXT4-fs warning (device loop5): ext4_convert_unwritten_extents:4868: inode #15: block 1: len 15: ext4_ext_map_blocks returned -5
[  451.453547][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.683205][   T27] audit: type=1326 audit(1758071202.324:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7eff63d85b67 code=0x7ffc0000
[  451.746117][   T27] audit: type=1326 audit(1758071202.354:1659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff63d2ada9 code=0x7ffc0000
[  451.832073][   T27] audit: type=1326 audit(1758071202.354:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7eff63d85b67 code=0x7ffc0000
[  451.909539][   T27] audit: type=1326 audit(1758071202.354:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff63d2ada9 code=0x7ffc0000
[  451.954330][T11788] loop7: detected capacity change from 0 to 512
[  451.961645][   T27] audit: type=1326 audit(1758071202.354:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  451.972833][T11787] loop5: detected capacity change from 0 to 512
[  451.997698][   T27] audit: type=1326 audit(1758071202.364:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  452.032025][T11788] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c11c, mo2=0002]
[  452.044648][T11788] EXT4-fs (loop7): orphan cleanup on readonly fs
[  452.044997][   T27] audit: type=1326 audit(1758071202.364:1664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  452.074174][   T27] audit: type=1326 audit(1758071202.364:1665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  452.087678][T11788] EXT4-fs warning (device loop7): ext4_enable_quotas:7175: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  452.097381][   T27] audit: type=1326 audit(1758071202.364:1666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11778 comm="syz.5.1681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff63d8eba9 code=0x7ffc0000
[  452.177012][T11788] EXT4-fs (loop7): Cannot turn on quotas: error -22
[  452.207301][T11788] EXT4-fs error (device loop7): ext4_ext_check_inode:520: inode #13: comm syz.7.1684: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  452.258154][T11788] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1684: couldn't read orphan inode 13 (err -117)
[  452.281887][T11788] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  452.311815][T11788] EXT4-fs error (device loop7): ext4_lookup:1858: comm syz.7.1684: inode #15: comm syz.7.1684: iget: illegal inode #
[  452.379826][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.482278][T11800] loop7: detected capacity change from 0 to 512
[  452.503719][T11800] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  452.540372][T11800] EXT4-fs (loop7): 1 truncate cleaned up
[  452.551077][T11800] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  452.783433][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.981705][T11821] loop6: detected capacity change from 0 to 128
[  453.020722][T11821] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  453.040296][T11821] ext4 filesystem being mounted at /343/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  453.161645][T11821] EXT4-fs error (device loop6): dx_make_map:1328: inode #2: block 63: comm syz.6.1698: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  453.196613][T11826] loop5: detected capacity change from 0 to 1024
[  453.227226][T11830] loop7: detected capacity change from 0 to 128
[  453.230582][T11826] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.1700: Failed to acquire dquot type 0
[  453.253163][T11821] EXT4-fs error (device loop6) in do_split:2095: Corrupt filesystem
[  453.266795][T11826] EXT4-fs error (device loop5): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  453.287693][T11826] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.1700: corrupted inode contents
[  453.337554][T11826] EXT4-fs error (device loop5): ext4_dirty_inode:6106: inode #13: comm syz.5.1700: mark_inode_dirty error
[  453.387913][T11826] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.1700: corrupted inode contents
[  453.403148][T11826] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #13: comm syz.5.1700: mark_inode_dirty error
[  453.403406][ T7419] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  453.419123][T11826] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.1700: corrupted inode contents
[  453.458351][T11826] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  453.487156][T11826] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.1700: corrupted inode contents
[  453.510016][T11826] EXT4-fs error (device loop5): ext4_truncate:4288: inode #13: comm syz.5.1700: mark_inode_dirty error
[  453.520030][T11840] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1707'.
[  453.547464][T11826] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  453.566599][T11826] EXT4-fs (loop5): 1 truncate cleaned up
[  453.582750][T11826] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  453.713287][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.913672][T11855] loop6: detected capacity change from 0 to 256
[  453.952563][T11855] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  454.203821][T11867] syz.6.1717[11867] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  454.203965][T11867] syz.6.1717[11867] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  454.294248][T11865] atomic_op ffff888051fab198 conn xmit_atomic 0000000000000000
[  454.328715][T11865] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1716'.
[  454.894834][   T27] kauditd_printk_skb: 169 callbacks suppressed
[  454.894884][   T27] audit: type=1326 audit(1758071205.394:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  455.229325][   T27] audit: type=1326 audit(1758071205.404:1835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  455.424848][   T27] audit: type=1326 audit(1758071205.454:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  455.544370][   T27] audit: type=1326 audit(1758071205.584:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  455.664754][   T27] audit: type=1326 audit(1758071205.594:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  455.748289][   T27] audit: type=1326 audit(1758071205.604:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  455.834780][   T27] audit: type=1326 audit(1758071205.614:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  455.894134][T11887] loop5: detected capacity change from 0 to 2048
[  455.907260][   T27] audit: type=1326 audit(1758071205.634:1841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  455.959340][   T27] audit: type=1326 audit(1758071205.644:1842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  456.021904][T11887] Alternate GPT is invalid, using primary GPT.
[  456.040390][T11887]  loop5: p2 p3 p7
[  456.064942][   T27] audit: type=1326 audit(1758071205.664:1843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11857 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4a78eba9 code=0x7ffc0000
[  457.979439][T11920] netlink: 'syz.7.1738': attribute type 10 has an invalid length.
[  458.029674][T11920] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1738'.
[  458.093272][T11920] dummy0: entered promiscuous mode
[  458.146063][T11920] bridge0: port 1(dummy0) entered blocking state
[  458.152576][T11920] bridge0: port 1(dummy0) entered disabled state
[  458.258541][T11920] dummy0: entered allmulticast mode
[  458.329965][T11920] bridge0: port 1(dummy0) entered blocking state
[  458.336643][T11920] bridge0: port 1(dummy0) entered forwarding state
[  458.370967][T11916] syz.6.1737[11916] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  458.371207][T11916] syz.6.1737[11916] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  458.396843][T11916] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1737'.
[  459.025346][T11940] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1746'.
[  459.130138][T11936] lo speed is unknown, defaulting to 1000
[  459.143403][T11936] lo speed is unknown, defaulting to 1000
[  459.159499][T11944] loop7: detected capacity change from 0 to 1024
[  459.210903][T11944] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  459.254969][T11941] netlink: 'syz.6.1744': attribute type 1 has an invalid length.
[  459.276250][T11944] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.605167][T11941] bond1: entered promiscuous mode
[  459.610637][T11941] 8021q: adding VLAN 0 to HW filter on device bond1
[  459.875668][T11949] netlink: 3 bytes leftover after parsing attributes in process `syz.6.1744'.
[  460.473782][T11949] batadv1: entered promiscuous mode
[  460.505293][   T27] kauditd_printk_skb: 52 callbacks suppressed
[  460.505309][   T27] audit: type=1800 audit(1758071211.154:1896): pid=11944 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1747" name="file1" dev="loop7" ino=15 res=0 errno=0
[  460.538629][T11958] loop5: detected capacity change from 0 to 8192
[  460.600557][T11949] batadv1: entered allmulticast mode
[  460.644471][T11949] 8021q: adding VLAN 0 to HW filter on device batadv1
[  460.653526][T11949] bond1: (slave batadv1): making interface the new active one
[  460.662736][T11949] bond1: (slave batadv1): Enslaving as an active interface with an up link
[  460.816659][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.895117][   T27] audit: type=1326 audit(1758071211.534:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11967 comm="syz.6.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f51ac1c1465 code=0x7ffc0000
[  460.989562][   T27] audit: type=1326 audit(1758071211.534:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.6.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  461.080679][   T27] audit: type=1326 audit(1758071211.534:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.6.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  461.103426][   T27] audit: type=1326 audit(1758071211.684:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11967 comm="syz.6.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f51ac18eba9 code=0x7ffc0000
[  461.190201][T11969] loop5: detected capacity change from 0 to 1024
[  461.260126][T11969] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  461.295271][T11969] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  461.319691][T11969] EXT4-fs (loop5): orphan cleanup on readonly fs
[  461.332448][T11969] EXT4-fs error (device loop5): __ext4_get_inode_loc:4483: comm syz.5.1755: Invalid inode table block 0 in block_group 0
[  461.363487][T11969] EXT4-fs (loop5): Remounting filesystem read-only
[  461.393517][T11969] Quota error (device loop5): write_blk: dquota write failed
[  461.466940][T11969] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  461.480587][T11975] s
z1: rxe_newlink: already configured on lo
[  461.533345][T11969] EXT4-fs (loop5): 1 truncate cleaned up
[  461.582088][T11969] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  461.605823][T11979] (null): rxe_set_mtu: Set mtu to 1024
[  461.823069][ T6259] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.063089][T11979] infiniband syz!: set active
[  462.068151][T11979] infiniband syz!: added team_slave_0
[  462.185050][T11979] RDS/IB: syz!: added
[  462.189316][T11979] smc: adding ib device syz! with port count 1
[  462.195802][T11979] smc:    ib device syz! port 1 has pnetid 
[  462.263928][T11988] loop5: detected capacity change from 0 to 2048
[  462.288852][T11988] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  462.308279][T11991] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.1763'.
[  462.320242][T11991] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.1763'.
[  462.487806][T11992] netlink: 'syz.0.1763': attribute type 10 has an invalid length.
[  462.535710][T11992] macvlan0: entered promiscuous mode
[  462.579151][T11992] macvlan0: entered allmulticast mode
[  462.586841][T11992] veth1_vlan: entered allmulticast mode
[  462.611216][T11992] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  462.627883][T11993] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1763'.
[  462.854994][   T27] audit: type=1326 audit(1758071213.444:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11996 comm="syz.7.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  462.950509][T11997] atomic_op ffff88802da8a198 conn xmit_atomic 0000000000000000
[  463.001114][   T27] audit: type=1326 audit(1758071213.444:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11996 comm="syz.7.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  463.047671][T11997] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1764'.
[  463.190624][   T27] audit: type=1326 audit(1758071213.454:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11996 comm="syz.7.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce3038eba9 code=0x7ffc0000
[  463.371697][T12004] syz.0.1767[12004] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  463.371843][T12004] syz.0.1767[12004] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  463.856868][T12015] s
z1: rxe_newlink: already configured on lo
[  464.598893][T12030] program syz.5.1779 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  465.238086][T12039] loop6: detected capacity change from 0 to 8192
[  465.829727][T12044] loop5: detected capacity change from 0 to 2048
[  465.947380][T12044] Alternate GPT is invalid, using primary GPT.
[  465.975593][T12044]  loop5: p2 p3 p7
[  466.263545][T12062] loop7: detected capacity change from 0 to 512
[  466.331146][T12062] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  466.355672][T12062] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  466.388392][   T27] kauditd_printk_skb: 65 callbacks suppressed
[  466.388408][   T27] audit: type=1800 audit(1758071217.034:1969): pid=12062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1791" name="file1" dev="loop7" ino=15 res=0 errno=0
[  466.557063][T10255] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.729539][T12081] loop5: detected capacity change from 0 to 512
[  466.783244][T12081] ------------[ cut here ]------------
[  466.789654][T12081] EA inode 11 i_nlink=2
[  466.811569][T12081] WARNING: CPU: 1 PID: 12081 at fs/ext4/xattr.c:1070 ext4_xattr_inode_update_ref+0x521/0x580
[  466.826304][T12081] Modules linked in:
[  466.830251][T12081] CPU: 1 PID: 12081 Comm: syz.5.1799 Not tainted syzkaller #0
[  466.837974][T12081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  466.848672][T12081] RIP: 0010:ext4_xattr_inode_update_ref+0x521/0x580
[  466.855488][T12081] Code: 24 50 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 31 43 9a ff 49 8b 37 48 c7 c7 00 d1 be 8a 44 89 f2 e8 cf 73 0d ff <0f> 0b 4c 8b 64 24 18 48 8b 5c 24 10 4c 8d 7c 24 60 e9 1f fe ff ff
[  466.875781][T12081] RSP: 0018:ffffc90004aaf220 EFLAGS: 00010246
[  466.881906][T12081] RAX: d9c2801316e47400 RBX: 0000000000000001 RCX: 0000000000080000
[  466.890359][T12081] RDX: ffffc9000c789000 RSI: 000000000003a774 RDI: 000000000003a775
[  466.898973][T12081] RBP: ffffc90004aaf318 R08: ffff8880b8f28c13 R09: 1ffff110171e5182
[  466.907518][T12081] R10: dffffc0000000000 R11: ffffed10171e5183 R12: ffff88805fdddcb0
[  466.916346][T12081] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88805fdddd00
[  466.924372][T12081] FS:  00007eff64cad6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  466.933726][T12081] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  466.940449][T12081] CR2: 00007f9b4a9d7dac CR3: 0000000076122000 CR4: 00000000003506e0
[  466.948583][T12081] Call Trace:
[  466.951958][T12081]  <TASK>
[  466.955023][T12081]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  466.960738][T12081]  ? ext4_xattr_inode_iget+0x3df/0x600
[  466.966353][T12081]  ext4_xattr_set_entry+0xcda/0x1e90
[  466.971732][T12081]  ext4_xattr_ibody_set+0x254/0x6a0
[  466.977127][T12081]  ext4_expand_extra_isize_ea+0x113a/0x19e0
[  466.983130][T12081]  __ext4_expand_extra_isize+0x306/0x400
[  466.988903][T12081]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  466.994444][T12081]  ext4_evict_inode+0x7ed/0xea0
[  466.999433][T12081]  ? _raw_spin_unlock+0x28/0x40
[  467.004359][T12081]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  467.010495][T12081]  ? do_raw_spin_unlock+0x121/0x230
[  467.016158][T12081]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  467.022121][T12081]  evict+0x486/0x870
[  467.026195][T12081]  ? __lock_acquire+0x7c80/0x7c80
[  467.031363][T12081]  ? proc_nr_inodes+0x230/0x230
[  467.036353][T12081]  ? do_raw_spin_unlock+0x121/0x230
[  467.041620][T12081]  ? _raw_spin_unlock+0x28/0x40
[  467.046607][T12081]  ? iput+0x70a/0x920
[  467.050658][T12081]  ext4_orphan_cleanup+0xbd4/0x1400
[  467.056024][T12081]  ? ext4_orphan_del+0xba0/0xba0
[  467.061033][T12081]  ? ext4_register_li_request+0x183/0x940
[  467.066908][T12081]  ? errseq_check_and_advance+0x66/0x120
[  467.072615][T12081]  ext4_fill_super+0x5de7/0x66c0
[  467.077754][T12081]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  467.084060][T12081]  ? vscnprintf+0x80/0x80
[  467.088529][T12081]  ? down_read_killable+0x340/0x340
[  467.093800][T12081]  ? setup_bdev_super+0x56b/0x660
[  467.099016][T12081]  get_tree_bdev+0x3e4/0x510
[  467.103669][T12081]  ? vfs_parse_fs_string+0x160/0x160
[  467.109066][T12081]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  467.115671][T12081]  ? setup_bdev_super+0x660/0x660
[  467.120749][T12081]  ? apparmor_capable+0x137/0x1a0
[  467.125945][T12081]  ? bpf_lsm_capable+0x9/0x10
[  467.130675][T12081]  ? security_capable+0x89/0xb0
[  467.135640][T12081]  vfs_get_tree+0x8c/0x280
[  467.140105][T12081]  do_new_mount+0x24b/0xa40
[  467.144728][T12081]  __se_sys_mount+0x2da/0x3c0
[  467.149477][T12081]  ? __x64_sys_mount+0xc0/0xc0
[  467.154299][T12081]  ? lockdep_hardirqs_on+0x98/0x150
[  467.159651][T12081]  ? __x64_sys_mount+0x20/0xc0
[  467.164482][T12081]  do_syscall_64+0x55/0xb0
[  467.169125][T12081]  ? clear_bhb_loop+0x40/0x90
[  467.173863][T12081]  ? clear_bhb_loop+0x40/0x90
[  467.178659][T12081]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  467.184633][T12081] RIP: 0033:0x7eff63d9034a
[  467.189169][T12081] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.208915][T12081] RSP: 002b:00007eff64cace68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  467.217714][T12081] RAX: ffffffffffffffda RBX: 00007eff64cacef0 RCX: 00007eff63d9034a
[  467.225893][T12081] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007eff64caceb0
[  467.233921][T12081] RBP: 0000200000000180 R08: 00007eff64cacef0 R09: 0000000000800700
[  467.242007][T12081] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  467.250583][T12081] R13: 00007eff64caceb0 R14: 000000000000046f R15: 00002000000002c0
[  467.258708][T12081]  </TASK>
[  467.261781][T12081] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  467.269085][T12081] CPU: 1 PID: 12081 Comm: syz.5.1799 Not tainted syzkaller #0
[  467.276568][T12081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  467.286642][T12081] Call Trace:
[  467.289932][T12081]  <TASK>
[  467.292883][T12081]  dump_stack_lvl+0x16c/0x230
[  467.297590][T12081]  ? show_regs_print_info+0x20/0x20
[  467.302805][T12081]  ? load_image+0x3b0/0x3b0
[  467.307337][T12081]  panic+0x2c0/0x710
[  467.311265][T12081]  ? bpf_jit_dump+0xd0/0xd0
[  467.315809][T12081]  __warn+0x2e0/0x470
[  467.319842][T12081]  ? ext4_xattr_inode_update_ref+0x521/0x580
[  467.325857][T12081]  ? ext4_xattr_inode_update_ref+0x521/0x580
[  467.331855][T12081]  report_bug+0x2be/0x4f0
[  467.336206][T12081]  ? ext4_xattr_inode_update_ref+0x521/0x580
[  467.342203][T12081]  ? ext4_xattr_inode_update_ref+0x521/0x580
[  467.348212][T12081]  ? ext4_xattr_inode_update_ref+0x523/0x580
[  467.354209][T12081]  handle_bug+0xcf/0x120
[  467.358469][T12081]  exc_invalid_op+0x1a/0x50
[  467.362987][T12081]  asm_exc_invalid_op+0x1a/0x20
[  467.367883][T12081] RIP: 0010:ext4_xattr_inode_update_ref+0x521/0x580
[  467.374490][T12081] Code: 24 50 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 31 43 9a ff 49 8b 37 48 c7 c7 00 d1 be 8a 44 89 f2 e8 cf 73 0d ff <0f> 0b 4c 8b 64 24 18 48 8b 5c 24 10 4c 8d 7c 24 60 e9 1f fe ff ff
[  467.394114][T12081] RSP: 0018:ffffc90004aaf220 EFLAGS: 00010246
[  467.400214][T12081] RAX: d9c2801316e47400 RBX: 0000000000000001 RCX: 0000000000080000
[  467.408231][T12081] RDX: ffffc9000c789000 RSI: 000000000003a774 RDI: 000000000003a775
[  467.416242][T12081] RBP: ffffc90004aaf318 R08: ffff8880b8f28c13 R09: 1ffff110171e5182
[  467.424232][T12081] R10: dffffc0000000000 R11: ffffed10171e5183 R12: ffff88805fdddcb0
[  467.432218][T12081] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88805fdddd00
[  467.440240][T12081]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  467.445903][T12081]  ? ext4_xattr_inode_iget+0x3df/0x600
[  467.451388][T12081]  ext4_xattr_set_entry+0xcda/0x1e90
[  467.456712][T12081]  ext4_xattr_ibody_set+0x254/0x6a0
[  467.461939][T12081]  ext4_expand_extra_isize_ea+0x113a/0x19e0
[  467.467891][T12081]  __ext4_expand_extra_isize+0x306/0x400
[  467.473555][T12081]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  467.479040][T12081]  ext4_evict_inode+0x7ed/0xea0
[  467.483923][T12081]  ? _raw_spin_unlock+0x28/0x40
[  467.488795][T12081]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  467.494720][T12081]  ? do_raw_spin_unlock+0x121/0x230
[  467.499953][T12081]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  467.505870][T12081]  evict+0x486/0x870
[  467.509780][T12081]  ? __lock_acquire+0x7c80/0x7c80
[  467.514860][T12081]  ? proc_nr_inodes+0x230/0x230
[  467.519722][T12081]  ? do_raw_spin_unlock+0x121/0x230
[  467.524942][T12081]  ? _raw_spin_unlock+0x28/0x40
[  467.529807][T12081]  ? iput+0x70a/0x920
[  467.533816][T12081]  ext4_orphan_cleanup+0xbd4/0x1400
[  467.539053][T12081]  ? ext4_orphan_del+0xba0/0xba0
[  467.544017][T12081]  ? ext4_register_li_request+0x183/0x940
[  467.549755][T12081]  ? errseq_check_and_advance+0x66/0x120
[  467.555492][T12081]  ext4_fill_super+0x5de7/0x66c0
[  467.560472][T12081]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  467.566736][T12081]  ? vscnprintf+0x80/0x80
[  467.571088][T12081]  ? down_read_killable+0x340/0x340
[  467.576398][T12081]  ? setup_bdev_super+0x56b/0x660
[  467.581440][T12081]  get_tree_bdev+0x3e4/0x510
[  467.586046][T12081]  ? vfs_parse_fs_string+0x160/0x160
[  467.591354][T12081]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  467.597609][T12081]  ? setup_bdev_super+0x660/0x660
[  467.602658][T12081]  ? apparmor_capable+0x137/0x1a0
[  467.607698][T12081]  ? bpf_lsm_capable+0x9/0x10
[  467.612401][T12081]  ? security_capable+0x89/0xb0
[  467.617283][T12081]  vfs_get_tree+0x8c/0x280
[  467.621716][T12081]  do_new_mount+0x24b/0xa40
[  467.626342][T12081]  __se_sys_mount+0x2da/0x3c0
[  467.631047][T12081]  ? __x64_sys_mount+0xc0/0xc0
[  467.635833][T12081]  ? lockdep_hardirqs_on+0x98/0x150
[  467.641075][T12081]  ? __x64_sys_mount+0x20/0xc0
[  467.645871][T12081]  do_syscall_64+0x55/0xb0
[  467.650312][T12081]  ? clear_bhb_loop+0x40/0x90
[  467.655014][T12081]  ? clear_bhb_loop+0x40/0x90
[  467.659720][T12081]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  467.665644][T12081] RIP: 0033:0x7eff63d9034a
[  467.670074][T12081] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.689692][T12081] RSP: 002b:00007eff64cace68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  467.698130][T12081] RAX: ffffffffffffffda RBX: 00007eff64cacef0 RCX: 00007eff63d9034a
[  467.706118][T12081] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007eff64caceb0
[  467.714101][T12081] RBP: 0000200000000180 R08: 00007eff64cacef0 R09: 0000000000800700
[  467.722085][T12081] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  467.730071][T12081] R13: 00007eff64caceb0 R14: 000000000000046f R15: 00002000000002c0
[  467.738086][T12081]  </TASK>
[  467.741399][T12081] Kernel Offset: disabled
[  467.745911][T12081] Rebooting in 86400 seconds..