last executing test programs:

3m43.049642081s ago: executing program 5 (id=2082):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x401}, 0x11)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001", @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x50)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x20, 0x9, 0x2, 0x25dfdbff, {0x2}, [@typed={0x8, 0x8, 0x0, 0x0, @fd=r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)

3m42.891038363s ago: executing program 5 (id=2085):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a99985000000040000"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xb)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2fffffffd}, 0xc)
close(r0)

3m42.594976373s ago: executing program 5 (id=2088):
quotactl$Q_QUOTAOFF(0xffffffff80000301, 0x0, 0xffffffffffffffff, 0x0)
gettid()
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, &(0x7f0000000280))
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x8000)
fchown(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a300000000008000a40ffffffff580000000c0a010100000000000000000a0000060900020073797a30000000000900010073797a31000000012c0003802800008004000180200007800e000100636f6e6e6c696d69740000000c000280080001"], 0xbc}, 0x1, 0x0, 0x0, 0x4000851}, 0x40)

3m42.316471191s ago: executing program 5 (id=2089):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f00000005c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c0000001000370427bd7000fcdbdf2500000000", @ANYRES32=r2, @ANYBLOB="890c0400000000003400128009000100697069700000000024000280050005000300000005000a000000000006000f0003000000080002000a"], 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmmsg$inet(r0, 0x0, 0x0, 0x4040880)

3m42.164832614s ago: executing program 5 (id=2091):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r1=>0xffffffffffffffff}, 0x106, 0x8}}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0900000004000000010000000400000000000000", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/20], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r1, 0x4734}}, 0x10)
close_range(r0, r0, 0x0)

3m41.828302746s ago: executing program 5 (id=2093):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
sendto$inet_nvme_of_msg(0xffffffffffffffff, &(0x7f0000000380)={@data_h2c_no_hdigest={{0x6, 0x0, 0x18, 0x18, 0x8}, 0x2, 0x8, 0xa35b, 0x6, "cbd39f7a"}, @val=&(0x7f00000001c0)="94072c2595b280f25061f42eba2df921839bbe9f1436f65d2fe7a9b3b8cf0bab2b70cc34d4a1257144294f2a9462e3bf0849da854c02fc9af0eba06e53370fa3186f12331682634cf423757f"}, 0x88, 0x0, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/consoles\x00', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kmem_cache_free\x00', r2, 0x0, 0x6}, 0xfffffffffffffef1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000180)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x2, &(0x7f0000002400)=<r4=>0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x2b, 0x81}]}, 0x10)
io_submit(r4, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r3, &(0x7f0000000040)='\x00\x00\x00\x00\x00\x00', 0x6, 0x0, 0x0, 0x2}])
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x1)
r6 = syz_io_uring_setup(0x29f2, &(0x7f0000000380)={0x0, 0xd6ee, 0x800, 0x2, 0x20e, 0x0, r5}, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000680)=<r8=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000300)=@IORING_OP_LINKAT={0x27, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x400, 0x1})
io_uring_enter(r6, 0x5fdd, 0x217, 0xa5, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9, 0x0, 0xf7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timer_create(0x0, 0x0, &(0x7f0000000300)=<r10=>0x0)
timer_getoverrun(r10)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)=0x3)
r11 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r11, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})

3m26.664073069s ago: executing program 32 (id=2093):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
sendto$inet_nvme_of_msg(0xffffffffffffffff, &(0x7f0000000380)={@data_h2c_no_hdigest={{0x6, 0x0, 0x18, 0x18, 0x8}, 0x2, 0x8, 0xa35b, 0x6, "cbd39f7a"}, @val=&(0x7f00000001c0)="94072c2595b280f25061f42eba2df921839bbe9f1436f65d2fe7a9b3b8cf0bab2b70cc34d4a1257144294f2a9462e3bf0849da854c02fc9af0eba06e53370fa3186f12331682634cf423757f"}, 0x88, 0x0, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/consoles\x00', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kmem_cache_free\x00', r2, 0x0, 0x6}, 0xfffffffffffffef1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000180)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x2, &(0x7f0000002400)=<r4=>0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x2b, 0x81}]}, 0x10)
io_submit(r4, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r3, &(0x7f0000000040)='\x00\x00\x00\x00\x00\x00', 0x6, 0x0, 0x0, 0x2}])
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x1)
r6 = syz_io_uring_setup(0x29f2, &(0x7f0000000380)={0x0, 0xd6ee, 0x800, 0x2, 0x20e, 0x0, r5}, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000680)=<r8=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000300)=@IORING_OP_LINKAT={0x27, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x400, 0x1})
io_uring_enter(r6, 0x5fdd, 0x217, 0xa5, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9, 0x0, 0xf7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timer_create(0x0, 0x0, &(0x7f0000000300)=<r10=>0x0)
timer_getoverrun(r10)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)=0x3)
r11 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r11, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})

2m14.988629004s ago: executing program 2 (id=2714):
munlock(&(0x7f00009af000/0x1000)=nil, 0x1000)

2m14.636397669s ago: executing program 2 (id=2719):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x49, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x8c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r5, {0xffff}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x4, [0xc, 0x5, 0x0, 0xf, 0x10, 0x2, 0x4, 0x2, 0xf, 0x6, 0x3, 0x7, 0x8, 0x4, 0x10, 0x4], 0x3, [0xb, 0x3, 0xad1e, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x2, 0xb, 0x3, 0x5, 0x6, 0xd, 0x100], [0xfff1, 0x5, 0xffff, 0xfff5, 0x4, 0x8, 0x1, 0x9, 0x5, 0x2, 0xc, 0x40, 0xfffc, 0x3, 0x1]}}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2m13.692496711s ago: executing program 2 (id=2729):
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20048843)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000040000000400"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='rxrpc_local\x00', r4}, 0x10)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="1800000000000000100100000100000051d833483cc75dd6900000000000000004000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319e2e66d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
socket$xdp(0x2c, 0x3, 0x0)

2m12.241097686s ago: executing program 2 (id=2737):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x56, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)

2m11.974474031s ago: executing program 2 (id=2740):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00'}, 0x10)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x5}, 0x1c)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x4e1d, 0x9, @local, 0x2}, 0x1c)
connect$netlink(r0, &(0x7f00000000c0)=@unspec, 0xc)
syz_emit_ethernet(0x3e, &(0x7f0000000340)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x8, 0x11, 0xff, @private1, @local, {[], {0x4e1d, 0x4e20, 0x8}}}}}}, 0x0)

2m11.716236932s ago: executing program 2 (id=2742):
open(&(0x7f0000000a40)='.\x00', 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x1022002, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="5800000002060108000000bca3000000000000400500010006000000050005000200000005000400000000000900020073797a31000000000c000780080012400000000211000300686173683a69702c6d61726b"], 0x58}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000000906010200000000000000000200ffff200007800c00018008000140a2fd4ebc08000a400000000205000300020000000900020073797a310000000005000100"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

1m56.5440205s ago: executing program 33 (id=2742):
open(&(0x7f0000000a40)='.\x00', 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x1022002, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="5800000002060108000000bca3000000000000400500010006000000050005000200000005000400000000000900020073797a31000000000c000780080012400000000211000300686173683a69702c6d61726b"], 0x58}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000000906010200000000000000000200ffff200007800c00018008000140a2fd4ebc08000a400000000205000300020000000900020073797a310000000005000100"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

6.602810084s ago: executing program 3 (id=3556):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r0, 0x0, 0x0, 0x44810)
recvmmsg(r0, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000004a00)=[{&(0x7f0000001a00)=""/4099, 0x1003}], 0x1}}], 0x1003, 0x10122, 0x0)

5.566055739s ago: executing program 3 (id=3565):
epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
epoll_create1(0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x41, 0x1, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)

4.099874857s ago: executing program 3 (id=3577):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r0, 0x0, 0x0, 0x44810)
recvmmsg(r0, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000004a00)=[{&(0x7f0000001a00)=""/4099, 0x1003}], 0x1}}], 0x1003, 0x10122, 0x0)

3.403266872s ago: executing program 4 (id=3583):
r0 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x80, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, 0x0, 0x0, 0x4)
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x3a, 0x2, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x0, 0xfffffd56, 0x0}, 0x0, 0x0, 0x1})

3.402838412s ago: executing program 1 (id=3585):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000100000028000000", @ANYRES32, @ANYBLOB="00000000000056746433b8c97767bcfe9b22e3ac", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
bind$pptp(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x2, {0x0, @local}}, 0x1e)
connect$pptp(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x2, {0x0, @broadcast}}, 0x1e)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0x2300, 0x0)
ioctl$PPPIOCATTCHAN(r1, 0x40047438, &(0x7f0000000040)=0x1)
ioctl$PPPIOCDISCONN(r1, 0x7439)

3.290901442s ago: executing program 4 (id=3586):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r1=>0xffffffffffffffff}, 0x106, 0x8}}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0900000004000000010000000400000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/20], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r1, 0x4734}}, 0x10)
close_range(r0, r0, 0x0)

3.176975796s ago: executing program 1 (id=3587):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0, r0}, 0x18)
r1 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

3.098971317s ago: executing program 3 (id=3588):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x835, 0x0)
fcntl$lock(r0, 0x7, 0x0)
unshare(0x6020400)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB], 0x50)
r3 = socket$caif_stream(0x25, 0x1, 0x5)
setsockopt$CAIFSO_REQ_PARAM(r3, 0x116, 0x80, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
flistxattr(r2, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(r2, 0xd0009411, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, 0x0)
r4 = syz_open_dev$usbfs(0x0, 0x7e0e, 0x50400)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r4, 0xc038943b, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)

3.028127949s ago: executing program 7 (id=3589):
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x14, &(0x7f0000000880)=@raw=[@ldst={0x2, 0x76bcee8343bc1ace, 0x6, 0x6, 0x8, 0x1, 0x8}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0xa, 0x0, 0x0, 0x0, 0x6}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
open(&(0x7f0000000400)='./file1\x00', 0x64842, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2060, 0x0)
setsockopt$SO_J1939_FILTER(r1, 0x6b, 0x1, &(0x7f0000000100), 0x0)
fsetxattr$trusted_overlay_redirect(r5, 0x0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)={0x28, r4, 0xc4fc9e906872338b, 0x70bd2e, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0x4, 0x3a}}}}, [@NL80211_ATTR_TID_CONFIG={0x5, 0x11d, 0x0, 0x1, [{0x4}]}]}, 0x28}}, 0x40000)
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r6, &(0x7f0000000000)=[{0x0}], 0x1)
chmod(&(0x7f0000000540)='./file0\x00', 0x120)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
sendmsg$inet6(r7, &(0x7f0000000580)={&(0x7f00000002c0)={0xa, 0x4e21, 0x3, @empty, 0xfffffff5}, 0x1c, &(0x7f0000000540)=[{0x0, 0x60}, {&(0x7f0000000380)="41b390ff64", 0x5}], 0x2}, 0x800)
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}, {0x3, &(0x7f0000000040)=0x3, 0x2}], 0x2, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB="0000000000000008000000000000000000000000062b650174eb642c3dfbaf75ac1b95896aff060a1f1f2263dfc1b80c9584f439cee4263c9ecd5804500937dfa79a8de3d511", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xe8001, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2})
ioctl$TUNSETOFFLOAD(r5, 0x400454c9, 0xba98575a95aeb70d)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r10, 0x800454e0, 0x0)

3.008556598s ago: executing program 4 (id=3590):
r0 = syz_io_uring_setup(0x49a, &(0x7f0000000140)={0x0, 0xa065, 0x3180, 0x2, 0x240024e}, 0x0, &(0x7f0000000040)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f00000000c0)=0xffb, 0x0, 0x4)
syz_io_uring_submit(0x0, r1, &(0x7f00000002c0)=@IORING_OP_TIMEOUT={0xb, 0x11, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x1, 0x40, 0x1})
io_uring_enter(r0, 0x628, 0xc88d, 0x43, 0x0, 0x0)

2.844686003s ago: executing program 1 (id=3592):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@allocspi={0x100, 0x16, 0x401, 0x0, 0x0, {{{@in6=@private0, @in6=@empty, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@dev={0xfe, 0x80, '\x00', 0x24}, 0x20000000, 0x33}, @in=@remote, {0x3, 0x0, 0x5, 0x0, 0x2}, {0x0, 0x0, 0x400}, {0x0, 0x0, 0xffffffff}, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xd0}, 0x8, 0xffffffff}, [@extra_flags={0x8, 0x18, 0x224f}]}, 0x100}}, 0x20004808)

2.7723993s ago: executing program 3 (id=3593):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
clock_gettime(0x1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{}, &(0x7f0000000000), 0x0}, 0x20)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

2.771990132s ago: executing program 4 (id=3594):
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r0, 0x13)
ptrace(0x10, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

2.578468458s ago: executing program 6 (id=3595):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
sendmsg$inet(r2, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000140)="be38", 0xffdf}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}, @ip_retopts={{0x1c, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x73}, @noop]}}}], 0x40}, 0x0)

2.536711404s ago: executing program 3 (id=3596):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x7a, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, 0x0, &(0x7f0000000300))

2.460448242s ago: executing program 1 (id=3597):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
close(r0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)

2.407622729s ago: executing program 4 (id=3598):
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5400000012000100f3ffffff000000000a"], 0x54}}, 0x20004010)

2.155823655s ago: executing program 1 (id=3600):
unshare(0x40060480)
flock(0xffffffffffffffff, 0x2)

2.15546358s ago: executing program 6 (id=3601):
capget(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0x5, 0x7, 0x4, 0x5, 0x0, 0x7})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x7, &(0x7f00000001c0)=0x8, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r2=>0x0})
sendmsg$can_raw(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, r2}, 0x10, &(0x7f00000005c0)={&(0x7f0000000100)=@can={{}, 0x80, 0x3, 0x4, 0x2, "07000000008000"}, 0x210}}, 0x0)

2.073592774s ago: executing program 4 (id=3603):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000e80)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000800)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x64041}, 0x40000)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r5 = socket$netlink(0x10, 0x3, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r6, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r7, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x6048800)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20010814)
close(r8)

1.728501743s ago: executing program 6 (id=3605):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)=0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000000000000198, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000800000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x9}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x60, 0x0, 0x8}]})

1.660451029s ago: executing program 7 (id=3606):
r0 = syz_io_uring_setup(0x49a, &(0x7f0000000140)={0x0, 0xa065, 0x3180, 0x2, 0x240024e}, 0x0, &(0x7f0000000040)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f00000000c0)=0xffb, 0x0, 0x4)
syz_io_uring_submit(0x0, r1, &(0x7f00000002c0)=@IORING_OP_TIMEOUT={0xb, 0x11, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x1, 0x40, 0x1})
io_uring_enter(r0, 0x628, 0xc88d, 0x43, 0x0, 0x0)

1.508986297s ago: executing program 0 (id=3607):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

1.208967015s ago: executing program 0 (id=3608):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2c0100001600010029bd7000fedbdf25e00000010000000000000000000000007f0000010000000000000000000000004e2200004e2047060000003002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="64010102000000000000000000000000000004d233000000e0000001000000000000000000000000070000000000000008000000000000000400000000000000ffffffff00000000000000000000000040340000000000000300000000000000d73b000000000000ffffffffffffffff0500000000000000010000800000000001800000000000000000000400000000000000002abd7000000000000a00040412000000e900000000000000931a0000050019002b0000002c00"], 0x12c}, 0x1, 0x0, 0x0, 0x24000090}, 0x0)

1.080386255s ago: executing program 1 (id=3609):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
setregid(0xffffffffffffffff, 0x0)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.030791758s ago: executing program 0 (id=3610):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="380000003b000701000000000000110001"], 0x38}}, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, 0x0, 0x0)

961.819321ms ago: executing program 7 (id=3611):
fallocate(0xffffffffffffffff, 0x1, 0x13, 0xfffe)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)

700.314789ms ago: executing program 7 (id=3612):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

628.583179ms ago: executing program 6 (id=3613):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
close(r0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)

619.802611ms ago: executing program 0 (id=3614):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
timer_create(0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000600)=@newtfilter={0x88, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x58, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x1, 0x8, 0x7, 0xfc, 0x3}, 0xb}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x88}}, 0x24000000)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

500.180505ms ago: executing program 7 (id=3615):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r0}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20)

422.206453ms ago: executing program 6 (id=3616):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r1=>0xffffffffffffffff}, 0x106, 0x8}}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0900000004000000010000000400000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/20], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3}, 0x18)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r1, 0x4734}}, 0x10)
close_range(r0, r0, 0x0)

347.657738ms ago: executing program 0 (id=3617):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
readlink(&(0x7f0000000300)='./file0\x00', &(0x7f00000006c0)=""/255, 0xff)

274.32313ms ago: executing program 7 (id=3618):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0x20000000002}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
creat(0x0, 0xecf86c37d53049cc)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newtaction={0x64, 0x30, 0xb, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfdb}}, @TCA_CT_MARK={0x8, 0x10, 0x80000000}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000800)

273.147221ms ago: executing program 6 (id=3619):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1a08700, &(0x7f0000000700)={[{@nodioread_nolock}, {@nouid32}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x1}}]}, 0x0, 0x470, &(0x7f0000001040)="$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")

0s ago: executing program 0 (id=3620):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f84814000000da6a0602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x24044810)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f00000003c0), 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$inet(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000340)="5c00000013006bcd9e3fe3dc4e48aa31086b8703140000001f03000000330000040014000d000a000d0000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x840)

kernel console output (not intermixed with test programs):

30] audit: type=1326 audit(2000000726.240:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12287 comm="syz.1.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  397.860109][   T30] audit: type=1326 audit(2000000726.240:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12287 comm="syz.1.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  399.044740][T12317] nfs4: Bad value for 'source'
[  399.128497][T12317] loop2: detected capacity change from 0 to 512
[  399.220564][T12317] Quota error (device loop2): v2_read_file_info: Free block number 1 out of range (1, 6).
[  399.244894][   T30] audit: type=1326 audit(2000000727.850:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12326 comm="syz.6.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  399.277919][T12317] EXT4-fs warning (device loop2): ext4_enable_quotas:7176: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  399.365246][T12317] EXT4-fs (loop2): mount failed
[  399.404830][   T30] audit: type=1326 audit(2000000727.850:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12326 comm="syz.6.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  399.505049][   T30] audit: type=1326 audit(2000000727.970:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12326 comm="syz.6.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  399.532850][T12328] loop6: detected capacity change from 0 to 2048
[  399.544059][   T30] audit: type=1326 audit(2000000727.970:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12326 comm="syz.6.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8b2658f003 code=0x7ffc0000
[  399.569144][   T30] audit: type=1326 audit(2000000727.970:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12326 comm="syz.6.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8b2658da7f code=0x7ffc0000
[  402.904772][  T978] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  402.960420][T12416] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2461'.
[  403.037546][  T978] usb 3-1: device descriptor read/64, error -71
[  403.243708][T12420] loop6: detected capacity change from 0 to 512
[  403.251738][T12420] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  403.338938][  T978] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  403.566638][  T978] usb 3-1: device descriptor read/64, error -71
[  403.884946][  T978] usb usb3-port1: attempt power cycle
[  403.934836][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  403.934891][   T30] audit: type=1804 audit(2000000732.510:1360): pid=12420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.2462" name="/newroot/24/file0/bus" dev="loop6" ino=1048635 res=1 errno=0
[  404.294769][  T978] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  404.349484][  T978] usb 3-1: device descriptor read/8, error -71
[  404.615160][  T978] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  404.915906][  T978] usb 3-1: device descriptor read/8, error -71
[  405.025249][  T978] usb usb3-port1: unable to enumerate USB device
[  406.917603][T12497] Process accounting paused
[  407.136773][   T30] audit: type=1326 audit(2000000735.730:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12504 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  407.211932][   T30] audit: type=1326 audit(2000000735.730:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12504 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  407.332804][   T30] audit: type=1326 audit(2000000735.730:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12504 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  407.406711][   T30] audit: type=1326 audit(2000000735.730:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12504 comm="syz.0.2495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  408.559419][T12534] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  408.901141][T12546] loop6: detected capacity change from 0 to 2048
[  408.973602][T12546] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.560593][T11643] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  409.611301][T11643] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  409.626319][T12566] loop2: detected capacity change from 0 to 8192
[  409.670856][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.207528][T12571] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2516'.
[  412.329106][   T30] audit: type=1326 audit(2000000740.940:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f591cf8efc9 code=0x7ffc0000
[  412.409089][   T30] audit: type=1326 audit(2000000740.970:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.2.2528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f591cf8efc9 code=0x7ffc0000
[  412.771210][T12610] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2533'.
[  412.787791][T12613] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2534'.
[  412.816786][T12613] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2534'.
[  414.037373][   T30] audit: type=1326 audit(2000000742.640:1367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12634 comm="syz.4.2540" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x0
[  414.281136][T12643] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2542'.
[  414.300543][T12643] hsr_slave_0: left promiscuous mode
[  414.315341][T12643] hsr_slave_1: left promiscuous mode
[  414.346861][T12645] program syz.6.2546 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  414.657790][T12655] loop6: detected capacity change from 0 to 2048
[  414.771985][T12655] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  414.885183][T12662] loop2: detected capacity change from 0 to 128
[  414.911761][T12662] msdos: Bad value for 'gid'
[  414.925625][T12662] msdos: Bad value for 'gid'
[  414.958966][T12662] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2550'.
[  415.005453][T12662] loop2: detected capacity change from 0 to 1024
[  415.014278][T12662] EXT4-fs: Ignoring removed bh option
[  415.063323][T12662] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  415.077523][T12662] ext4 filesystem being mounted at /413/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  415.103333][T12662] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.2550: inode has both inline data and extents flags
[  415.204603][ T5829] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  415.349337][T11643] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  415.395862][T11643] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  415.448266][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.958158][   T30] audit: type=1804 audit(2000000745.570:1368): pid=12718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2570" name="/newroot/413/file0" dev="tmpfs" ino=2151 res=1 errno=0
[  417.100259][T12728] loop2: detected capacity change from 0 to 2048
[  417.161771][T12728] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.377841][T12738] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  418.572421][ T5829] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.636845][   T30] audit: type=1326 audit(2000000747.250:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12760 comm="syz.1.2586" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f47cf18efc9 code=0x0
[  419.286747][T12791] pim6reg: entered allmulticast mode
[  419.323706][T12787] pim6reg: left allmulticast mode
[  420.174560][T12784] lo speed is unknown, defaulting to 1000
[  420.183338][T12784] lo speed is unknown, defaulting to 1000
[  420.199381][T12802] loop6: detected capacity change from 0 to 2048
[  420.422290][T12802] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.295972][T11643] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  421.359781][T11643] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  421.488861][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.475176][T12858] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2623'.
[  423.381064][T12860] loop6: detected capacity change from 0 to 2048
[  423.512787][T12860] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  423.654285][T12877] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  423.717561][T12880] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2631'.
[  423.744781][T12880] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2631'.
[  424.108182][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.349273][T12906] loop2: detected capacity change from 0 to 128
[  424.487503][T12906] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  424.545355][   T30] audit: type=1326 audit(2000000753.140:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  424.615120][T12906] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  424.634376][   T30] audit: type=1326 audit(2000000753.140:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  424.658740][   T30] audit: type=1326 audit(2000000753.200:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  424.709931][   T30] audit: type=1326 audit(2000000753.200:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  425.114767][   T30] audit: type=1326 audit(2000000753.210:1374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  425.651501][   T30] audit: type=1326 audit(2000000753.210:1375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  425.811855][   T30] audit: type=1326 audit(2000000753.210:1376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  425.872911][T12934] x_tables: duplicate entry at hook 3
[  425.879618][   T30] audit: type=1326 audit(2000000753.210:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  425.881082][ T5829] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  425.935836][   T30] audit: type=1326 audit(2000000753.210:1378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  426.060696][   T30] audit: type=1326 audit(2000000753.210:1379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12913 comm="syz.0.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  426.250706][T12945] loop2: detected capacity change from 0 to 2048
[  426.344482][T12945] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  426.995276][ T5829] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  427.067494][ T5829] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  427.179440][ T5829] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.499176][T13030] loop2: detected capacity change from 0 to 256
[  430.105919][T13035] netlink: 'syz.3.2682': attribute type 10 has an invalid length.
[  430.455882][T13035] batadv0: entered allmulticast mode
[  430.807524][T13035] 8021q: adding VLAN 0 to HW filter on device batadv0
[  430.891782][T13037] netlink: 'syz.3.2682': attribute type 10 has an invalid length.
[  430.943822][T13035] batadv0: entered promiscuous mode
[  431.005155][T13035] $Hÿ: (slave batadv0): Enslaving as an active interface with an up link
[  431.055651][T13037] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2682'.
[  431.213416][T13037] $Hÿ: (slave batadv0): Releasing backup interface
[  431.262003][T13037] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  431.326733][T13047] x_tables: duplicate entry at hook 3
[  432.886217][T13088] netlink: 'syz.2.2701': attribute type 10 has an invalid length.
[  433.093889][T13092] loop2: detected capacity change from 0 to 4096
[  433.151494][T13092] ext4: Unknown parameter 'rootcontext'
[  434.117437][T13088] netlink: 'syz.2.2701': attribute type 10 has an invalid length.
[  434.164927][T13088] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2701'.
[  434.251075][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  434.251101][   T30] audit: type=1326 audit(2000000762.860:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  434.361577][   T30] audit: type=1326 audit(2000000762.860:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  434.708757][   T30] audit: type=1326 audit(2000000762.910:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  435.264764][   T30] audit: type=1326 audit(2000000762.920:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  435.330931][   T30] audit: type=1326 audit(2000000762.920:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  435.375982][   T30] audit: type=1326 audit(2000000762.920:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  435.405391][T13128] x_tables: duplicate entry at hook 3
[  435.474191][   T30] audit: type=1326 audit(2000000762.920:1391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  435.591821][   T30] audit: type=1326 audit(2000000762.920:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  435.620701][   T30] audit: type=1326 audit(2000000762.920:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.0.2707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  436.754177][T13158] netlink: 'syz.0.2725': attribute type 10 has an invalid length.
[  436.881930][T13158] batadv0: entered allmulticast mode
[  436.955734][T13158] 8021q: adding VLAN 0 to HW filter on device batadv0
[  437.039588][T13162] Process accounting resumed
[  437.126317][T13158] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  437.314834][T13158] netlink: 'syz.0.2725': attribute type 10 has an invalid length.
[  437.586398][T13158] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2725'.
[  437.950193][T13158] batadv0: entered promiscuous mode
[  437.994450][T13158] bond0: (slave batadv0): Releasing backup interface
[  438.051876][T13158] bridge0: port 3(batadv0) entered blocking state
[  438.103853][   T30] audit: type=1326 audit(2000000766.710:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13175 comm="syz.3.2734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  438.134922][T13158] bridge0: port 3(batadv0) entered disabled state
[  438.324556][T13181] x_tables: duplicate entry at hook 3
[  438.417788][ T3501] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  438.427499][ T3501] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  439.144174][T13199] loop6: detected capacity change from 0 to 2048
[  439.164552][T13199] EXT4-fs (loop6): couldn't mount as ext3 due to feature incompatibilities
[  441.740489][T13241] netlink: 'syz.6.2752': attribute type 10 has an invalid length.
[  441.929143][T13241] batadv0: left promiscuous mode
[  442.010201][T13241] bridge0: port 3(batadv0) entered disabled state
[  442.142873][T13246] loop6: detected capacity change from 0 to 4096
[  442.150924][T13246] ext4: Unknown parameter 'rootcontext'
[  442.282985][T13246] netlink: 'syz.6.2752': attribute type 10 has an invalid length.
[  442.305134][T13246] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2752'.
[  442.339960][T13241] 8021q: adding VLAN 0 to HW filter on device batadv0
[  442.427917][T13241] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  442.512740][T13246] batadv0: entered promiscuous mode
[  442.574364][T13246] bond0: (slave batadv0): Releasing backup interface
[  442.602918][T13246] bridge0: port 3(batadv0) entered blocking state
[  442.611341][T13246] bridge0: port 3(batadv0) entered disabled state
[  442.628444][T13260] syz_tun: entered allmulticast mode
[  442.805288][ T3501] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  442.818667][ T3501] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  443.161025][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  443.161053][   T30] audit: type=1326 audit(2000000771.760:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13275 comm="syz.6.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  443.221285][   T30] audit: type=1326 audit(2000000771.760:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13275 comm="syz.6.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  443.245391][   T30] audit: type=1326 audit(2000000771.810:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13275 comm="syz.6.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  443.270725][   T30] audit: type=1326 audit(2000000771.810:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13275 comm="syz.6.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  443.293665][   T30] audit: type=1326 audit(2000000771.810:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13275 comm="syz.6.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  443.353749][   T30] audit: type=1326 audit(2000000771.810:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13275 comm="syz.6.2777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  444.720505][T13292] x_tables: duplicate entry at hook 3
[  446.909122][   T30] audit: type=1326 audit(2000000775.520:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13312 comm="syz.0.2774" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x0
[  447.453953][T13327] netlink: 'syz.1.2783': attribute type 10 has an invalid length.
[  447.495023][T13327] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2783'.
[  447.518672][T13327] batadv0: entered promiscuous mode
[  447.541559][T13327] batadv0: entered allmulticast mode
[  447.572472][T13327] bridge0: port 4(batadv0) entered blocking state
[  447.596574][T13327] bridge0: port 4(batadv0) entered disabled state
[  447.639555][T13327] bridge0: port 4(batadv0) entered blocking state
[  447.646219][T13327] bridge0: port 4(batadv0) entered forwarding state
[  448.088333][   T36] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  448.097678][   T36] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  449.731658][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  450.701583][   T30] audit: type=1326 audit(2000000779.310:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  450.770838][   T30] audit: type=1326 audit(2000000779.340:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  450.885545][   T30] audit: type=1326 audit(2000000779.340:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  450.975516][   T30] audit: type=1326 audit(2000000779.340:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  451.045625][   T30] audit: type=1326 audit(2000000779.340:1416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  451.372680][   T30] audit: type=1326 audit(2000000779.350:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  451.396287][   T30] audit: type=1326 audit(2000000779.350:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  451.420230][   T30] audit: type=1326 audit(2000000779.350:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  451.443869][   T30] audit: type=1326 audit(2000000779.350:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  451.467160][   T30] audit: type=1326 audit(2000000779.360:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.0.2798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  453.023389][T13377] warn_alloc: 3 callbacks suppressed
[  453.023415][T13377] syz.1.2801: vmalloc error: size 268439552, failed to allocated page array size 524296, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  453.108042][T13377] CPU: 0 UID: 0 PID: 13377 Comm: syz.1.2801 Not tainted syzkaller #0 PREEMPT(full) 
[  453.108093][T13377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  453.108116][T13377] Call Trace:
[  453.108127][T13377]  <TASK>
[  453.108141][T13377]  dump_stack_lvl+0x16c/0x1f0
[  453.108189][T13377]  warn_alloc+0x248/0x3a0
[  453.108252][T13377]  ? __pfx_warn_alloc+0x10/0x10
[  453.108324][T13377]  ? xskq_create+0xfb/0x1d0
[  453.108384][T13377]  ? srso_alias_return_thunk+0x5/0xfbef5
[  453.108430][T13377]  ? __vmalloc_node_noprof+0xad/0xf0
[  453.108479][T13377]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  453.108539][T13377]  ? xskq_create+0xfb/0x1d0
[  453.108611][T13377]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  453.108670][T13377]  ? xskq_create+0xfb/0x1d0
[  453.108731][T13377]  vmalloc_user_noprof+0x9e/0xe0
[  453.108771][T13377]  ? xskq_create+0xfb/0x1d0
[  453.108833][T13377]  xskq_create+0xfb/0x1d0
[  453.108897][T13377]  xsk_setsockopt+0x792/0x9a0
[  453.108957][T13377]  ? __pfx_xsk_setsockopt+0x10/0x10
[  453.109014][T13377]  ? srso_alias_return_thunk+0x5/0xfbef5
[  453.109063][T13377]  ? find_held_lock+0x2b/0x80
[  453.109116][T13377]  ? srso_alias_return_thunk+0x5/0xfbef5
[  453.109160][T13377]  ? aa_sock_opt_perm+0xfd/0x1c0
[  453.109221][T13377]  ? __pfx_xsk_setsockopt+0x10/0x10
[  453.109281][T13377]  do_sock_setsockopt+0xf3/0x1d0
[  453.109334][T13377]  __sys_setsockopt+0x1a0/0x230
[  453.109404][T13377]  __x64_sys_setsockopt+0xbd/0x160
[  453.109461][T13377]  ? do_syscall_64+0x91/0xfa0
[  453.109498][T13377]  ? srso_alias_return_thunk+0x5/0xfbef5
[  453.109539][T13377]  ? lockdep_hardirqs_on+0x7c/0x110
[  453.109583][T13377]  do_syscall_64+0xcd/0xfa0
[  453.109630][T13377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.109667][T13377] RIP: 0033:0x7f47cf18efc9
[  453.109694][T13377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  453.109729][T13377] RSP: 002b:00007f47d009d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  453.109767][T13377] RAX: ffffffffffffffda RBX: 00007f47cf3e5fa0 RCX: 00007f47cf18efc9
[  453.109792][T13377] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000006
[  453.109815][T13377] RBP: 00007f47cf211f91 R08: 0000000000000004 R09: 0000000000000000
[  453.109837][T13377] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000000
[  453.109859][T13377] R13: 00007f47cf3e6038 R14: 00007f47cf3e5fa0 R15: 00007ffef1533b08
[  453.109911][T13377]  </TASK>
[  453.110229][T13377] Mem-Info:
[  453.367759][T13377] active_anon:5605 inactive_anon:0 isolated_anon:0
[  453.367759][T13377]  active_file:17158 inactive_file:40094 isolated_file:0
[  453.367759][T13377]  unevictable:768 dirty:189 writeback:0
[  453.367759][T13377]  slab_reclaimable:11321 slab_unreclaimable:103973
[  453.367759][T13377]  mapped:37854 shmem:1532 pagetables:1527
[  453.367759][T13377]  sec_pagetables:0 bounce:0
[  453.367759][T13377]  kernel_misc_reclaimable:0
[  453.367759][T13377]  free:1278009 free_pcp:19776 free_cma:0
[  453.478918][T13202] Set syz1 is full, maxelem 65536 reached
[  453.534914][T13377] Node 0 active_anon:21720kB inactive_anon:0kB active_file:60956kB inactive_file:160168kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:155416kB dirty:756kB writeback:0kB shmem:4592kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12496kB pagetables:5860kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  453.748528][T13377] Node 1 active_anon:0kB inactive_anon:0kB active_file:7676kB inactive_file:208kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  453.865118][T13377] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  453.967056][T13377] lowmem_reserve[]: 0 2485 2487 2487 2487
[  454.004689][T13377] Node 0 DMA32 free:1226280kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:21320kB inactive_anon:0kB active_file:60956kB inactive_file:160168kB unevictable:1536kB writepending:756kB zspages:0kB present:3129332kB managed:2545024kB mlocked:0kB bounce:0kB free_pcp:34472kB local_pcp:15836kB free_cma:0kB
[  454.164788][T13377] lowmem_reserve[]: 0 0 1 1 1
[  454.169631][T13377] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  454.268432][T13425] loop6: detected capacity change from 0 to 2048
[  454.364115][T13377] lowmem_reserve[]: 0 0 0 0 0
[  454.390291][T13377] Node 1 Normal free:3861504kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:7676kB inactive_file:208kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:46824kB local_pcp:27940kB free_cma:0kB
[  454.464891][T13425] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.518791][T13377] lowmem_reserve[]: 0 0 0 0 0
[  454.552668][T13377] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  454.567653][T13377] Node 0 DMA32: 903*4kB (UME) 478*8kB (UME) 239*16kB (UME) 449*32kB (UME) 679*64kB (UME) 479*128kB (UME) 283*256kB (UME) 138*512kB (UM) 48*1024kB (UME) 9*2048kB (UM) 218*4096kB (UM) = 1234012kB
[  454.588116][T13377] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  454.604543][T13377] Node 1 Normal: 234*4kB (UME) 87*8kB (UME) 56*16kB (UME) 113*32kB (UME) 56*64kB (UME) 26*128kB (UME) 11*256kB (UME) 13*512kB (UME) 3*1024kB (UM) 3*2048kB (UME) 935*4096kB (UM) = 3861504kB
[  454.643980][T13377] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  454.668198][T13377] Node 0 hugepages_total=8 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  454.689982][T13377] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  454.741034][T13377] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  454.784686][T13377] 58995 total pagecache pages
[  454.803905][T13377] 0 pages in swap cache
[  454.824460][T13377] Free swap  = 124996kB
[  454.894759][T13377] Total swap = 124996kB
[  454.899058][T13377] 2097051 pages RAM
[  454.905999][T13437] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  454.951851][T13377] 0 pages HighMem/MovableOnly
[  454.982990][T13377] 428705 pages reserved
[  455.016222][T13377] 0 pages cma reserved
[  455.643495][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  455.974247][ T3501] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.053751][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  456.053777][   T30] audit: type=1326 audit(2000000784.660:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  456.376553][   T30] audit: type=1326 audit(2000000784.660:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  456.706649][   T30] audit: type=1326 audit(2000000784.800:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  457.163540][   T30] audit: type=1326 audit(2000000784.800:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  457.236775][   T30] audit: type=1326 audit(2000000784.800:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  457.259981][   T30] audit: type=1326 audit(2000000784.800:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  457.286912][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  457.296686][ T5844] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  457.305131][ T5844] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  457.314479][ T5844] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  457.322676][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  457.331889][   T30] audit: type=1326 audit(2000000784.810:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  457.356123][   T30] audit: type=1326 audit(2000000784.820:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  457.387717][   T30] audit: type=1326 audit(2000000784.820:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  457.392931][ T3501] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.419218][   T30] audit: type=1326 audit(2000000784.820:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13452 comm="syz.0.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  457.700592][ T3501] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.351033][    C1] vcan0: j1939_tp_rxtimer: 0xffff888059321c00: rx timeout, send abort
[  458.361995][    C1] vcan0: j1939_tp_rxtimer: 0xffff888059321800: rx timeout, send abort
[  458.370394][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888059321c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  458.386844][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888059321800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  458.681285][ T3501] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.179180][ T3501] bridge_slave_1: left allmulticast mode
[  459.198881][ T3501] bridge_slave_1: left promiscuous mode
[  459.234826][ T3501] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.337905][ T3501] bridge_slave_0: left allmulticast mode
[  459.343619][ T3501] bridge_slave_0: left promiscuous mode
[  459.414986][ T3501] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.457532][ T5844] Bluetooth: hci2: command tx timeout
[  460.714158][T13535] loop6: detected capacity change from 0 to 2048
[  460.773972][T13535] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  460.874033][ T3501] bond1 (unregistering): (slave gretap1): Releasing active interface
[  461.542666][ T5844] Bluetooth: hci2: command tx timeout
[  461.942541][ T3501] bond1 (unregistering): (slave bridge1): Releasing active interface
[  461.965928][T11643] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  462.043806][T11643] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  462.100732][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.222971][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  462.222995][   T30] audit: type=1326 audit(2000000790.830:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.305283][   T30] audit: type=1326 audit(2000000790.830:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.374739][   T30] audit: type=1326 audit(2000000790.830:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.437755][   T30] audit: type=1326 audit(2000000790.860:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.460890][   T30] audit: type=1326 audit(2000000790.860:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.500896][   T30] audit: type=1326 audit(2000000790.860:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.530482][   T30] audit: type=1326 audit(2000000790.860:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.553928][   T30] audit: type=1326 audit(2000000790.860:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.585414][ T3501] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  462.585513][   T30] audit: type=1326 audit(2000000790.860:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.621026][   T30] audit: type=1326 audit(2000000790.870:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13569 comm="syz.0.2858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  462.644482][ T3501] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  462.656982][ T3501] bond0 (unregistering): Released all slaves
[  462.677992][ T3501] bond1 (unregistering): Released all slaves
[  462.700936][T13469] lo speed is unknown, defaulting to 1000
[  462.831856][T13469] lo speed is unknown, defaulting to 1000
[  463.619209][ T5844] Bluetooth: hci2: command tx timeout
[  464.380842][T13469] chnl_net:caif_netlink_parms(): no params data found
[  464.419464][T13610] netlink: 'syz.3.2872': attribute type 83 has an invalid length.
[  465.196061][T13617] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2874'.
[  465.256744][T13617] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2874'.
[  465.404860][T13620] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  465.729208][ T5844] Bluetooth: hci2: command tx timeout
[  467.136521][T13649] Process accounting paused
[  467.327311][T13469] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.357628][T13469] bridge0: port 1(bridge_slave_0) entered disabled state
[  467.383178][T13469] bridge_slave_0: entered allmulticast mode
[  467.418026][T13469] bridge_slave_0: entered promiscuous mode
[  467.692120][ T3501] veth1_macvtap: left promiscuous mode
[  467.733864][ T3501] veth0_macvtap: left promiscuous mode
[  467.740272][ T3501] veth1_vlan: left promiscuous mode
[  467.745946][ T3501] veth0_vlan: left promiscuous mode
[  469.863742][T13706] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2906'.
[  470.071345][T13706] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2906'.
[  470.141723][T13719] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2908'.
[  470.315657][T13706] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2906'.
[  472.054483][   T30] kauditd_printk_skb: 48 callbacks suppressed
[  472.054508][   T30] audit: type=1326 audit(2000000800.660:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm="syz.4.2914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.091005][   T30] audit: type=1326 audit(2000000800.660:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm="syz.4.2914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.134768][   T30] audit: type=1326 audit(2000000800.730:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm="syz.4.2914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.159493][   T30] audit: type=1326 audit(2000000800.730:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm="syz.4.2914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.185467][   T30] audit: type=1326 audit(2000000800.730:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.210471][   T30] audit: type=1326 audit(2000000800.730:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.239328][   T30] audit: type=1326 audit(2000000800.730:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.263921][   T30] audit: type=1326 audit(2000000800.740:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.290683][ T3501] team0 (unregistering): Port device team_slave_1 removed
[  472.395145][   T30] audit: type=1326 audit(2000000800.740:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.425231][   T30] audit: type=1326 audit(2000000800.740:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13737 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  472.565419][ T3501] team0 (unregistering): Port device team_slave_0 removed
[  472.937637][T13469] bridge0: port 2(bridge_slave_1) entered blocking state
[  472.945143][T13469] bridge0: port 2(bridge_slave_1) entered disabled state
[  472.952404][T13469] bridge_slave_1: entered allmulticast mode
[  472.967128][T13469] bridge_slave_1: entered promiscuous mode
[  473.310239][T13469] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  473.357659][T13469] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  475.114496][T13469] team0: Port device team_slave_0 added
[  475.148323][T13469] team0: Port device team_slave_1 added
[  475.304168][T13791] loop6: detected capacity change from 0 to 164
[  475.407450][T13791] syz.6.2932: attempt to access beyond end of device
[  475.407450][T13791] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  475.452402][T13791] syz.6.2932: attempt to access beyond end of device
[  475.452402][T13791] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  475.477872][T13469] batman_adv: batadv0: Adding interface: batadv_slave_0
[  475.503757][T13469] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  475.903064][T13469] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  476.067335][T13469] batman_adv: batadv0: Adding interface: batadv_slave_1
[  476.074331][T13469] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  476.212794][T13469] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  476.617858][T13469] hsr_slave_0: entered promiscuous mode
[  476.639291][T13469] hsr_slave_1: entered promiscuous mode
[  476.688890][T13469] debugfs: 'hsr0' already exists in 'hsr'
[  476.712641][T13469] Cannot create hsr debugfs directory
[  477.629596][   T30] kauditd_printk_skb: 26 callbacks suppressed
[  477.629647][   T30] audit: type=1326 audit(2000000806.220:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  478.053690][   T30] audit: type=1326 audit(2000000806.290:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  478.214800][   T30] audit: type=1326 audit(2000000806.340:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  478.368669][T13848] IPv6: NLM_F_CREATE should be specified when creating new route
[  478.376944][   T30] audit: type=1326 audit(2000000806.450:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  478.401119][   T30] audit: type=1326 audit(2000000806.530:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  478.424895][   T30] audit: type=1326 audit(2000000806.540:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  478.447819][   T30] audit: type=1326 audit(2000000806.570:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  479.161102][   T30] audit: type=1326 audit(2000000806.570:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  479.185580][   T30] audit: type=1326 audit(2000000806.570:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  479.208633][   T30] audit: type=1326 audit(2000000806.570:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.3.2947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  479.656523][T13867] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2955'.
[  479.679018][T13469] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  479.727271][T13469] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  479.780438][T13867] netlink: 'syz.0.2955': attribute type 1 has an invalid length.
[  479.818927][T13469] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  479.883230][T13469] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  479.993513][T13875] serio: Serial port ptm0
[  480.197803][T13469] 8021q: adding VLAN 0 to HW filter on device bond0
[  480.293071][T13469] 8021q: adding VLAN 0 to HW filter on device team0
[  480.333117][ T3501] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.340621][ T3501] bridge0: port 1(bridge_slave_0) entered forwarding state
[  480.453393][ T3501] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.460728][ T3501] bridge0: port 2(bridge_slave_1) entered forwarding state
[  482.257442][T13469] 8021q: adding VLAN 0 to HW filter on device batadv0
[  482.534917][T13931] pim6reg1: entered promiscuous mode
[  482.540251][T13931] pim6reg1: entered allmulticast mode
[  482.878837][T13941] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2976'.
[  484.002305][T13957] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2982'.
[  484.303885][T13469] veth0_vlan: entered promiscuous mode
[  484.351888][T13469] veth1_vlan: entered promiscuous mode
[  484.470092][T13469] veth0_macvtap: entered promiscuous mode
[  484.517812][T13469] veth1_macvtap: entered promiscuous mode
[  484.587089][T13469] batman_adv: batadv0: Interface activated: batadv_slave_0
[  484.629391][T13469] batman_adv: batadv0: Interface activated: batadv_slave_1
[  484.688062][ T1159] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  484.712699][ T1159] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  484.744666][ T1159] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  484.766132][ T1159] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  485.034790][ T1159] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  485.042652][ T1159] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  485.079358][T13981] loop6: detected capacity change from 0 to 2048
[  485.174422][T13981] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  485.197853][T12474] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  485.212795][T12474] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  486.522896][T11643] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  486.576908][T11643] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  486.739806][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.932101][T13993] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2995'.
[  486.954712][T13993] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2995'.
[  487.024906][T13993] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2995'.
[  487.263176][T14021] netlink: 'syz.6.3000': attribute type 29 has an invalid length.
[  487.292673][T14021] netlink: 'syz.6.3000': attribute type 29 has an invalid length.
[  487.635392][ T5143] Bluetooth: hci6: command 0x0406 tx timeout
[  488.367332][T14039] loop6: detected capacity change from 0 to 512
[  488.557788][T14037] lo speed is unknown, defaulting to 1000
[  488.565661][T14037] lo speed is unknown, defaulting to 1000
[  490.985857][T14039] EXT4-fs warning (device loop6): ext4_multi_mount_protect:397: Unable to create kmmpd thread for loop6.
[  492.210852][   T30] kauditd_printk_skb: 178 callbacks suppressed
[  492.210880][   T30] audit: type=1326 audit(2000000820.820:1720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  492.265365][   T30] audit: type=1326 audit(2000000820.820:1721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  492.295172][   T30] audit: type=1326 audit(2000000820.860:1722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  492.567453][T14071] loop6: detected capacity change from 0 to 128
[  492.707084][   T30] audit: type=1326 audit(2000000820.860:1723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  493.080915][   T30] audit: type=1326 audit(2000000820.860:1724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  493.103815][   T30] audit: type=1326 audit(2000000820.870:1725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  493.159453][   T30] audit: type=1326 audit(2000000820.870:1726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  493.196165][T14080] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  493.204599][T14080] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  493.735857][T14080] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  494.031255][   T30] audit: type=1326 audit(2000000820.870:1727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  494.054767][   T30] audit: type=1326 audit(2000000820.880:1728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  494.077834][   T30] audit: type=1326 audit(2000000821.160:1729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14067 comm="syz.3.3020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  497.435707][T14149] pim6reg: entered allmulticast mode
[  497.667406][T14157] pim6reg: left allmulticast mode
[  497.774906][   T30] kauditd_printk_skb: 71 callbacks suppressed
[  497.774933][   T30] audit: type=1326 audit(2000000826.380:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm="syz.4.3053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  497.884807][T14150] Process accounting resumed
[  497.944716][   T30] audit: type=1326 audit(2000000826.420:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm="syz.4.3053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  497.998625][   T30] audit: type=1326 audit(2000000826.490:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm="syz.4.3053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  498.021844][   T30] audit: type=1326 audit(2000000826.490:1804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm="syz.4.3053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  498.045323][   T30] audit: type=1326 audit(2000000826.490:1805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm="syz.4.3053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  498.068959][   T30] audit: type=1326 audit(2000000826.490:1806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  498.092215][   T30] audit: type=1326 audit(2000000826.490:1807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  498.132302][   T30] audit: type=1326 audit(2000000826.510:1808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  498.178293][   T30] audit: type=1326 audit(2000000826.510:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  498.257921][   T30] audit: type=1326 audit(2000000826.510:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14158 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  498.421135][T14176] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3060'.
[  498.456833][T14176] IPVS: Unknown mcast interface: 
[  499.726099][T14197] loop7: detected capacity change from 0 to 2048
[  501.111085][T14197] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  501.156916][T14217] netlink: 64 bytes leftover after parsing attributes in process `syz.6.3070'.
[  501.534880][T13469] EXT4-fs error (device loop7): ext4_validate_block_bitmap:440: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  501.588263][T13469] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  501.707058][T13469] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  502.339253][T14248] loop7: detected capacity change from 0 to 512
[  502.667073][T14248] EXT4-fs error (device loop7): ext4_xattr_inode_iget:444: comm syz.7.3083: error while reading EA inode 32 err=-116
[  502.899475][T14248] EXT4-fs (loop7): Remounting filesystem read-only
[  502.941762][T14248] EXT4-fs warning (device loop7): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  502.986094][T14248] EXT4-fs (loop7): 1 orphan inode deleted
[  503.030760][T14248] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  503.334606][T13469] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  503.978632][T14287] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3096'.
[  504.160740][T14267] lo speed is unknown, defaulting to 1000
[  504.186797][T14267] lo speed is unknown, defaulting to 1000
[  504.329852][T14292] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3098'.
[  504.527685][T14296] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3099'.
[  504.546004][T14296] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3099'.
[  504.582793][   T30] kauditd_printk_skb: 80 callbacks suppressed
[  504.582819][   T30] audit: type=1326 audit(2000000833.186:1891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  504.670432][   T30] audit: type=1326 audit(2000000833.186:1892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  504.734177][   T30] audit: type=1326 audit(2000000833.186:1893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  505.023473][   T30] audit: type=1326 audit(2000000833.196:1894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  505.047776][   T30] audit: type=1326 audit(2000000833.196:1895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  505.070725][   T30] audit: type=1326 audit(2000000833.196:1896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  505.110020][   T30] audit: type=1326 audit(2000000833.246:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  505.933773][   T30] audit: type=1326 audit(2000000833.246:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  505.959898][   T30] audit: type=1326 audit(2000000833.246:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  506.004705][   T30] audit: type=1326 audit(2000000833.246:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14297 comm="syz.0.3101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f7c6318efc9 code=0x7ffc0000
[  506.802347][T14354] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3121'.
[  507.799377][T14371] bond0: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  507.856346][T14371] bond0 (unregistering): Released all slaves
[  508.833333][T14379] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  508.958989][T14414] loop7: detected capacity change from 0 to 128
[  508.969188][T14416] netlink: 5 bytes leftover after parsing attributes in process `syz.4.3146'.
[  508.981438][T14416] 0ªî{X¹¦: renamed from gretap0
[  508.993727][T14416] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  509.104249][T14414] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  509.126610][T14414] FAT-fs (loop7): Filesystem has been set read-only
[  509.159039][T14414] syz.7.3147: attempt to access beyond end of device
[  509.159039][T14414] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  510.545354][T14443] loop6: detected capacity change from 0 to 256
[  511.150142][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  511.791989][T14438] lo speed is unknown, defaulting to 1000
[  511.803413][T14465] syzkaller0: entered allmulticast mode
[  511.820126][T14438] lo speed is unknown, defaulting to 1000
[  511.829798][T14465] syzkaller0: entered promiscuous mode
[  511.989889][T14465] syzkaller0 (unregistering): left allmulticast mode
[  512.003993][T14468] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3164'.
[  512.014513][T14465] syzkaller0 (unregistering): left promiscuous mode
[  512.185865][T14468] team0: Port device team_slave_1 removed
[  512.525365][   T30] kauditd_printk_skb: 19 callbacks suppressed
[  512.525391][   T30] audit: type=1326 audit(2000000841.136:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  512.892400][T14452] lo speed is unknown, defaulting to 1000
[  513.169754][T14452] lo speed is unknown, defaulting to 1000
[  513.196873][T14478] loop6: detected capacity change from 0 to 2048
[  513.304220][   T30] audit: type=1326 audit(2000000841.256:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  513.327472][   T30] audit: type=1326 audit(2000000841.256:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8b2658f003 code=0x7ffc0000
[  513.330675][T14478] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  513.353230][   T30] audit: type=1326 audit(2000000841.696:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8b2658da7f code=0x7ffc0000
[  513.396366][   T30] audit: type=1326 audit(2000000841.796:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f8b2658f057 code=0x7ffc0000
[  513.474726][   T30] audit: type=1326 audit(2000000841.796:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8b2658d810 code=0x7ffc0000
[  513.587650][   T30] audit: type=1326 audit(2000000841.796:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8b2658ebcb code=0x7ffc0000
[  513.640233][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.664756][   T30] audit: type=1326 audit(2000000841.866:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8b2658dc2a code=0x7ffc0000
[  513.709120][   T30] audit: type=1326 audit(2000000841.866:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8b2658dc2a code=0x7ffc0000
[  513.733561][   T30] audit: type=1326 audit(2000000841.866:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14477 comm="syz.6.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f8b2658d717 code=0x7ffc0000
[  513.804469][T14494] siw: device registration error -23
[  513.813961][T14494] smc: removing ib device syz!
[  513.876958][T14500] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  515.922682][T14524] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3182'.
[  515.945374][T14524] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  516.017686][T14524] batman_adv: batadv0: Removing interface: batadv_slave_0
[  516.165694][T14524] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  516.223803][T14524] batman_adv: batadv0: Removing interface: batadv_slave_1
[  516.380765][T14530] netlink: 'syz.1.3184': attribute type 1 has an invalid length.
[  517.741835][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  517.741862][   T30] audit: type=1326 audit(2000000846.336:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14547 comm="syz.7.3192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  517.837377][   T30] audit: type=1326 audit(2000000846.336:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14547 comm="syz.7.3192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  517.920968][   T30] audit: type=1326 audit(2000000846.346:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14547 comm="syz.7.3192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  518.012275][   T30] audit: type=1326 audit(2000000846.346:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14547 comm="syz.7.3192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  518.089173][   T30] audit: type=1326 audit(2000000846.346:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14547 comm="syz.7.3192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  518.788187][T14566] xt_hashlimit: max too large, truncated to 1048576
[  519.009236][T14571] netlink: 'syz.7.3211': attribute type 1 has an invalid length.
[  519.063349][T14574] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3211'.
[  519.115379][T14572] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3199'.
[  519.316644][T14571] 8021q: adding VLAN 0 to HW filter on device bond1
[  519.344880][T14572] batman_adv: batadv0: Removing interface: batadv_slave_0
[  519.360446][T14572] batman_adv: batadv0: Removing interface: batadv_slave_1
[  519.879454][T14574] bond1 (unregistering): Released all slaves
[  519.993497][   T30] audit: type=1326 audit(2000000848.596:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14585 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  520.053750][T14586] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3204'.
[  520.069958][   T30] audit: type=1326 audit(2000000848.596:1950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14585 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  520.159526][   T30] audit: type=1326 audit(2000000848.596:1951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14585 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  520.284733][   T30] audit: type=1326 audit(2000000848.596:1952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14585 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  520.344864][   T30] audit: type=1326 audit(2000000848.646:1953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14585 comm="syz.4.3204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  520.461714][T14603] netlink: 'syz.4.3209': attribute type 3 has an invalid length.
[  520.524524][T14601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3208'.
[  520.599655][T14601] team_slave_0: entered promiscuous mode
[  520.605747][T14601] team_slave_1: entered promiscuous mode
[  520.676296][T14601] macvtap2: entered promiscuous mode
[  520.681637][T14601] team0: entered promiscuous mode
[  520.691485][T14601] macvtap2: entered allmulticast mode
[  520.725374][T14601] team0: entered allmulticast mode
[  520.731936][T14601] team_slave_0: entered allmulticast mode
[  520.745006][T14601] team_slave_1: entered allmulticast mode
[  520.755445][T14601] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  520.838227][T14610] team0: left allmulticast mode
[  520.844862][T14610] team_slave_0: left allmulticast mode
[  520.882338][T14610] team_slave_1: left allmulticast mode
[  520.892459][T14610] team0: left promiscuous mode
[  520.931199][T14610] team_slave_0: left promiscuous mode
[  520.937145][T14610] team_slave_1: left promiscuous mode
[  521.675592][T14642] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  521.853628][T14647] vlan0: entered allmulticast mode
[  521.904758][T14647] dummy0: entered allmulticast mode
[  523.815428][T14684] loop6: detected capacity change from 0 to 512
[  523.849888][T14686] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3237'.
[  523.868156][T14684] EXT4-fs (loop6): too many log groups per flexible block group
[  523.881088][T14684] EXT4-fs (loop6): failed to initialize mballoc (-12)
[  523.890088][T14684] EXT4-fs (loop6): mount failed
[  525.546363][T14704] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3242'.
[  525.657540][T14704] bond3: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  525.703946][T14704] bond3 (unregistering): Released all slaves
[  526.151028][T14725] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3252'.
[  527.160207][T14755] netlink: 'syz.7.3244': attribute type 21 has an invalid length.
[  527.220534][T14755] netlink: 156 bytes leftover after parsing attributes in process `syz.7.3244'.
[  527.261303][T14755] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3244'.
[  527.926585][T14760] Process accounting paused
[  528.499043][   T30] kauditd_printk_skb: 20 callbacks suppressed
[  528.499069][   T30] audit: type=1326 audit(2000000857.106:1974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  528.548626][   T30] audit: type=1326 audit(2000000857.136:1975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  528.572047][   T30] audit: type=1326 audit(2000000857.136:1976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  529.504980][T14790] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3272'.
[  529.545417][   T30] audit: type=1326 audit(2000000857.206:1977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  529.547467][T14788] loop7: detected capacity change from 0 to 1024
[  529.572444][   T30] audit: type=1326 audit(2000000857.336:1978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  529.598208][   T30] audit: type=1326 audit(2000000857.336:1979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  529.630503][T14788] EXT4-fs: Ignoring removed bh option
[  529.645403][   T30] audit: type=1326 audit(2000000857.416:1980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  529.676342][T14788] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  529.719852][   T30] audit: type=1326 audit(2000000857.426:1981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  529.750451][   T30] audit: type=1326 audit(2000000857.436:1982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  529.774602][   T30] audit: type=1326 audit(2000000857.486:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14776 comm="syz.4.3269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f32ed98efc9 code=0x7ffc0000
[  529.819302][T14788] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  529.890726][T14788] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  530.076241][T14810] netlink: 'syz.6.3279': attribute type 11 has an invalid length.
[  530.094018][T14810] netlink: 224 bytes leftover after parsing attributes in process `syz.6.3279'.
[  530.155809][T14809] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  530.514882][T14817] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  530.522579][T14817] IPv6: NLM_F_CREATE should be set when creating new route
[  530.529975][T14817] IPv6: NLM_F_CREATE should be set when creating new route
[  530.537349][T14817] IPv6: NLM_F_CREATE should be set when creating new route
[  530.726292][T14817] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  531.284617][T14833] loop6: detected capacity change from 0 to 512
[  531.332969][T14833] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  531.507633][T14833] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[  531.565181][T14833] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  531.630368][T14833] EXT4-fs (loop6): can't enable nombcache during remount
[  531.723588][T14853] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3296'.
[  531.746388][T14853] IPVS: Unknown mcast interface: vetN1
[  531.784383][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.134179][T14866] vlan2: entered allmulticast mode
[  532.195203][T14866] dummy0: entered allmulticast mode
[  533.478540][T14887] loop6: detected capacity change from 0 to 164
[  533.513881][ T5143] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  533.524192][ T5143] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  533.540340][ T5143] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  533.548328][T14887] syz.6.3311: attempt to access beyond end of device
[  533.548328][T14887] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  533.564785][ T5143] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  533.574042][ T5143] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  533.627228][T14887] syz.6.3311: attempt to access beyond end of device
[  533.627228][T14887] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  533.719410][T14888] lo speed is unknown, defaulting to 1000
[  533.727073][T14888] lo speed is unknown, defaulting to 1000
[  534.409235][T14912] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3323'.
[  534.491775][T14888] chnl_net:caif_netlink_parms(): no params data found
[  534.661008][T14919] loop6: detected capacity change from 0 to 1024
[  534.689633][T14919] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  534.756029][T14919] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:482: comm syz.6.3324: Invalid block bitmap block 0 in block_group 0
[  534.772229][T14200] bridge_slave_1: left allmulticast mode
[  534.791407][T14919] __quota_error: 20 callbacks suppressed
[  534.791434][T14919] Quota error (device loop6): write_blk: dquota write failed
[  534.805360][T14200] bridge_slave_1: left promiscuous mode
[  534.814208][T14200] bridge0: port 2(bridge_slave_1) entered disabled state
[  534.854801][T14919] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  534.892496][T14919] EXT4-fs error (device loop6): ext4_acquire_dquot:6943: comm syz.6.3324: Failed to acquire dquot type 0
[  534.911574][T14200] bridge_slave_0: left allmulticast mode
[  534.923155][T14200] bridge_slave_0: left promiscuous mode
[  534.942467][T14919] EXT4-fs error (device loop6): ext4_free_blocks:6705: comm syz.6.3324: Freeing blocks not in datazone - block = 0, count = 4096
[  534.956670][T14200] bridge0: port 1(bridge_slave_0) entered disabled state
[  534.997293][T14919] EXT4-fs error (device loop6): ext4_read_inode_bitmap:138: comm syz.6.3324: Invalid inode bitmap blk 0 in block_group 0
[  535.023631][T14919] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  535.037968][   T60] Quota error (device loop6): do_check_range: Getting block 0 out of range 1-7
[  535.039853][T14919] EXT4-fs (loop6): 1 orphan inode deleted
[  535.051267][   T60] EXT4-fs error (device loop6): ext4_release_dquot:6979: comm kworker/u8:4: Failed to release dquot type 0
[  535.113858][T14919] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  535.277779][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  535.375507][T14945] loop7: detected capacity change from 0 to 1024
[  535.404545][T14945] EXT4-fs: Ignoring removed bh option
[  535.429082][T14945] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  535.603773][T14945] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  535.624782][ T5143] Bluetooth: hci1: command tx timeout
[  535.822578][T14957] loop6: detected capacity change from 0 to 128
[  535.869117][T13469] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  536.237251][T14200] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  536.250445][T14200] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  536.272370][T14200] bond0 (unregistering): Released all slaves
[  536.335541][T14954] lo speed is unknown, defaulting to 1000
[  536.398117][T14954] lo speed is unknown, defaulting to 1000
[  536.681016][   T30] audit: type=1326 audit(2000000865.286:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14975 comm="syz.1.3345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  536.754140][   T30] audit: type=1326 audit(2000000865.286:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14975 comm="syz.1.3345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  536.780245][   T30] audit: type=1326 audit(2000000865.286:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14975 comm="syz.1.3345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  536.804053][   T30] audit: type=1326 audit(2000000865.306:2007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14975 comm="syz.1.3345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  537.062834][   T30] audit: type=1326 audit(2000000865.666:2008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14986 comm="syz.1.3351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  537.122611][   T30] audit: type=1326 audit(2000000865.666:2009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14986 comm="syz.1.3351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  537.164976][   T30] audit: type=1326 audit(2000000865.716:2010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14986 comm="syz.1.3351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47cf18efc9 code=0x7ffc0000
[  537.208136][T14888] bridge0: port 1(bridge_slave_0) entered blocking state
[  537.218706][T14888] bridge0: port 1(bridge_slave_0) entered disabled state
[  537.226321][T14888] bridge_slave_0: entered allmulticast mode
[  537.238083][T14888] bridge_slave_0: entered promiscuous mode
[  537.291509][T14888] bridge0: port 2(bridge_slave_1) entered blocking state
[  537.318254][T14888] bridge0: port 2(bridge_slave_1) entered disabled state
[  537.333320][T14888] bridge_slave_1: entered allmulticast mode
[  537.354999][T14888] bridge_slave_1: entered promiscuous mode
[  537.695464][ T5143] Bluetooth: hci1: command tx timeout
[  538.047514][T15015] loop7: detected capacity change from 0 to 128
[  538.058117][T15015] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  538.071180][T15015] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  538.181231][T14200] team0 (unregistering): Port device team_slave_0 removed
[  538.525959][T14200] team0 (unregistering): Port device dummy0 removed
[  538.825385][   T36] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  538.866734][T14888] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  538.893496][T14888] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  539.010272][T15039] loop7: detected capacity change from 0 to 128
[  539.219314][T14888] team0: Port device team_slave_0 added
[  539.283870][T14888] team0: Port device team_slave_1 added
[  539.474571][T15052] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3381'.
[  539.478568][T14888] batman_adv: batadv0: Adding interface: batadv_slave_0
[  539.495064][T14888] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  539.565797][T14888] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  539.605155][T14888] batman_adv: batadv0: Adding interface: batadv_slave_1
[  539.625929][T14888] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  539.695862][T14888] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  539.738772][T15056] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3381'.
[  539.784449][ T5143] Bluetooth: hci1: command tx timeout
[  540.636595][T14888] hsr_slave_0: entered promiscuous mode
[  540.643643][T14888] hsr_slave_1: entered promiscuous mode
[  540.684259][T14888] debugfs: 'hsr0' already exists in 'hsr'
[  540.714722][T14888] Cannot create hsr debugfs directory
[  540.720963][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  540.720985][   T30] audit: type=1326 audit(2000000869.316:2022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  540.813205][   T30] audit: type=1326 audit(2000000869.326:2023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  540.889755][   T30] audit: type=1326 audit(2000000869.326:2024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  540.954761][   T30] audit: type=1326 audit(2000000869.326:2025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  541.004710][   T30] audit: type=1326 audit(2000000869.326:2026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  541.108150][   T30] audit: type=1326 audit(2000000869.326:2027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  541.187637][   T30] audit: type=1326 audit(2000000869.336:2028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  541.264221][   T30] audit: type=1326 audit(2000000869.336:2029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  541.358890][   T30] audit: type=1326 audit(2000000869.336:2030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  541.460420][   T30] audit: type=1326 audit(2000000869.336:2031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15074 comm="syz.6.3392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b2658efc9 code=0x7ffc0000
[  541.855387][ T5143] Bluetooth: hci1: command tx timeout
[  541.960116][T15109] tipc: Started in network mode
[  541.977517][T15109] tipc: Node identity ac14140f, cluster identity 4711
[  542.006683][T15109] tipc: New replicast peer: 255.255.255.83
[  542.032261][T15109] tipc: Enabled bearer <udp:£>, priority 10
[  542.289935][T14888] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  542.356252][T14888] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  542.396490][T14888] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  542.421145][T14888] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  542.943304][T15132] bridge0: entered promiscuous mode
[  542.949571][T15132] macsec1: entered promiscuous mode
[  542.966518][T15132] bridge0: port 4(macsec1) entered blocking state
[  542.974439][T15132] bridge0: port 4(macsec1) entered disabled state
[  542.983764][T15132] macsec1: entered allmulticast mode
[  542.989886][T15132] bridge0: entered allmulticast mode
[  543.151117][ T5832] tipc: Node number set to 2886997007
[  543.456369][T15132] macsec1: left allmulticast mode
[  543.461452][T15132] bridge0: left allmulticast mode
[  543.503268][T15132] bridge0: left promiscuous mode
[  543.936068][T14888] 8021q: adding VLAN 0 to HW filter on device bond0
[  543.979746][T14888] 8021q: adding VLAN 0 to HW filter on device team0
[  544.029121][T14214] bridge0: port 1(bridge_slave_0) entered blocking state
[  544.036390][T14214] bridge0: port 1(bridge_slave_0) entered forwarding state
[  544.076158][T14214] bridge0: port 2(bridge_slave_1) entered blocking state
[  544.083457][T14214] bridge0: port 2(bridge_slave_1) entered forwarding state
[  544.864230][T14888] 8021q: adding VLAN 0 to HW filter on device batadv0
[  545.529897][T15186] IPVS: Unknown mcast interface: hsr0
[  545.747204][T14888] veth0_vlan: entered promiscuous mode
[  545.774363][   T30] kauditd_printk_skb: 34 callbacks suppressed
[  545.774389][   T30] audit: type=1326 audit(2000000874.376:2066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  545.817389][T14888] veth1_vlan: entered promiscuous mode
[  545.894245][   T30] audit: type=1326 audit(2000000874.426:2067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  545.924589][   T30] audit: type=1326 audit(2000000874.466:2068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  545.948965][   T30] audit: type=1326 audit(2000000874.466:2069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  545.978071][T14888] veth0_macvtap: entered promiscuous mode
[  545.986284][T15195] loop6: detected capacity change from 0 to 1024
[  545.993650][T15195] EXT4-fs: Ignoring removed orlov option
[  546.005938][T14888] veth1_macvtap: entered promiscuous mode
[  546.014130][   T30] audit: type=1326 audit(2000000874.466:2070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  546.078368][T14888] batman_adv: batadv0: Interface activated: batadv_slave_0
[  546.110923][   T30] audit: type=1326 audit(2000000874.466:2071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  546.134945][T14888] batman_adv: batadv0: Interface activated: batadv_slave_1
[  546.138284][T15195] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  546.173843][   T30] audit: type=1326 audit(2000000874.466:2072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  546.199433][   T30] audit: type=1326 audit(2000000874.466:2073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  546.234800][   T30] audit: type=1326 audit(2000000874.466:2074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  546.382407][   T30] audit: type=1326 audit(2000000874.466:2075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15190 comm="syz.3.3434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  546.437261][T14214] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  547.085141][T15209] syz.7.3437: vmalloc error: size 268439552, failed to allocated page array size 524296, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  547.103474][T15209] CPU: 0 UID: 0 PID: 15209 Comm: syz.7.3437 Not tainted syzkaller #0 PREEMPT(full) 
[  547.103521][T15209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  547.103543][T15209] Call Trace:
[  547.103555][T15209]  <TASK>
[  547.103569][T15209]  dump_stack_lvl+0x16c/0x1f0
[  547.103618][T15209]  warn_alloc+0x248/0x3a0
[  547.103674][T15209]  ? __pfx_warn_alloc+0x10/0x10
[  547.103747][T15209]  ? xskq_create+0xfb/0x1d0
[  547.103806][T15209]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.103853][T15209]  ? __vmalloc_node_noprof+0xad/0xf0
[  547.103905][T15209]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  547.103965][T15209]  ? xskq_create+0xfb/0x1d0
[  547.104039][T15209]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  547.104100][T15209]  ? xskq_create+0xfb/0x1d0
[  547.104162][T15209]  vmalloc_user_noprof+0x9e/0xe0
[  547.104209][T15209]  ? xskq_create+0xfb/0x1d0
[  547.104272][T15209]  xskq_create+0xfb/0x1d0
[  547.104339][T15209]  xsk_setsockopt+0x792/0x9a0
[  547.104400][T15209]  ? __pfx_xsk_setsockopt+0x10/0x10
[  547.104467][T15209]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.104512][T15209]  ? aa_sock_opt_perm+0xfd/0x1c0
[  547.104568][T15209]  ? __pfx_xsk_setsockopt+0x10/0x10
[  547.104634][T15209]  do_sock_setsockopt+0xf3/0x1d0
[  547.104685][T15209]  __sys_setsockopt+0x1a0/0x230
[  547.104757][T15209]  __x64_sys_setsockopt+0xbd/0x160
[  547.104816][T15209]  ? do_syscall_64+0x91/0xfa0
[  547.104859][T15209]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.104904][T15209]  ? lockdep_hardirqs_on+0x7c/0x110
[  547.104949][T15209]  do_syscall_64+0xcd/0xfa0
[  547.104997][T15209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.105036][T15209] RIP: 0033:0x7f494518efc9
[  547.105066][T15209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.105104][T15209] RSP: 002b:00007f494603c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  547.105139][T15209] RAX: ffffffffffffffda RBX: 00007f49453e6180 RCX: 00007f494518efc9
[  547.105166][T15209] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000008
[  547.105190][T15209] RBP: 00007f4945211f91 R08: 0000000000000004 R09: 0000000000000000
[  547.105220][T15209] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000000
[  547.105245][T15209] R13: 00007f49453e6218 R14: 00007f49453e6180 R15: 00007ffe4e1852b8
[  547.105298][T15209]  </TASK>
[  547.122457][T14214] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  547.125845][T15209] Mem-Info:
[  547.145096][T14214] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  547.146233][T15209] active_anon:8275 inactive_anon:0 isolated_anon:0
[  547.146233][T15209]  active_file:17223 inactive_file:40157 isolated_file:0
[  547.146233][T15209]  unevictable:768 dirty:17 writeback:0
[  547.146233][T15209]  slab_reclaimable:11463 slab_unreclaimable:98056
[  547.146233][T15209]  mapped:37641 shmem:4529 pagetables:1466
[  547.146233][T15209]  sec_pagetables:0 bounce:0
[  547.146233][T15209]  kernel_misc_reclaimable:0
[  547.146233][T15209]  free:1280347 free_pcp:20845 free_cma:0
[  547.150830][T14214] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  547.156370][T15209] Node 0 active_anon:33100kB inactive_anon:0kB active_file:61216kB inactive_file:160420kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:150564kB dirty:68kB writeback:0kB shmem:16580kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12432kB pagetables:5716kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  547.156470][T15209] Node 1 active_anon:0kB inactive_anon:0kB active_file:7676kB inactive_file:208kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  547.310256][T15212] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3441'.
[  547.317827][T15209] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  547.317947][T15209] lowmem_reserve[]: 0 2485 2487 2487 2487
[  547.318024][T15209] Node 0 DMA32 free:1233444kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:33236kB inactive_anon:0kB active_file:61216kB inactive_file:160420kB unevictable:1536kB writepending:76kB zspages:0kB present:3129332kB managed:2545024kB mlocked:0kB bounce:0kB free_pcp:47276kB local_pcp:23584kB free_cma:0kB
[  547.318145][T15209] lowmem_reserve[]: 0 0 1 1 1
[  547.318225][T15209] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  547.332157][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.334484][T15209] lowmem_reserve[]: 0
[  547.433033][T15212] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3441'.
[  547.491845][T15209]  0 0 0 0
[  547.636167][T15209] Node 1 Normal free:3872832kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:7676kB inactive_file:208kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:35476kB local_pcp:14496kB free_cma:0kB
[  547.671342][T15209] lowmem_reserve[]: 0 0 0 0 0
[  547.677875][T15209] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  547.693332][T15209] Node 0 DMA32: 36*4kB (UME) 88*8kB (ME) 326*16kB (ME) 243*32kB (UME) 165*64kB (M) 545*128kB (UME) 342*256kB (UME) 160*512kB (UM) 57*1024kB (UME) 5*2048kB (U) 220*4096kB (UM) = 1233360kB
[  547.715942][T15209] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  547.728064][T15209] Node 1 Normal: 237*4kB (UME) 86*8kB (UME) 63*16kB (UME) 121*32kB (UME) 60*64kB (UME) 26*128kB (UME) 11*256kB (UME) 12*512kB (UME) 6*1024kB (UM) 3*2048kB (UME) 937*4096kB (UM) = 3872884kB
[  547.747748][T15209] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  547.757500][T15209] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  547.766880][T15209] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  547.776779][T15209] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  547.786867][T15209] 61830 total pagecache pages
[  547.791554][T15209] 0 pages in swap cache
[  547.795852][T15209] Free swap  = 124996kB
[  547.800015][T15209] Total swap = 124996kB
[  547.804170][T15209] 2097051 pages RAM
[  547.808054][T15209] 0 pages HighMem/MovableOnly
[  547.812733][T15209] 428705 pages reserved
[  547.816986][T15209] 0 pages cma reserved
[  547.856113][T14200] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  547.873007][T14200] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  547.996700][T14214] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  548.025883][T14214] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  548.303702][T15226] loop6: detected capacity change from 0 to 1024
[  548.345828][T15226] EXT4-fs: Ignoring removed orlov option
[  548.361809][T15226] EXT4-fs: Ignoring removed nomblk_io_submit option
[  548.606375][T15226] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  548.646512][T15238] loop7: detected capacity change from 0 to 128
[  548.722887][T15238] FAT-fs (loop7): Directory bread(block 162) failed
[  548.799195][T15238] FAT-fs (loop7): Directory bread(block 163) failed
[  548.837655][T15238] FAT-fs (loop7): Directory bread(block 164) failed
[  548.844317][T15238] FAT-fs (loop7): Directory bread(block 165) failed
[  548.852285][T15226] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 23 with max blocks 1 with error 28
[  548.901868][T15238] FAT-fs (loop7): Directory bread(block 166) failed
[  548.943423][T15238] FAT-fs (loop7): Directory bread(block 167) failed
[  548.964154][T15226] EXT4-fs (loop6): This should not happen!! Data will be lost
[  548.964154][T15226] 
[  548.997066][T15238] FAT-fs (loop7): Directory bread(block 168) failed
[  549.003751][T15238] FAT-fs (loop7): Directory bread(block 169) failed
[  549.026030][T15226] EXT4-fs (loop6): Total free blocks count 0
[  549.046442][T15238] FAT-fs (loop7): Directory bread(block 162) failed
[  549.053395][T15238] FAT-fs (loop7): Directory bread(block 163) failed
[  549.063594][T15238] syz.7.3451: attempt to access beyond end of device
[  549.063594][T15238] loop7: rw=3, sector=226, nr_sectors = 6 limit=128
[  549.102850][T15226] EXT4-fs (loop6): Free/Dirty block details
[  549.114703][T15226] EXT4-fs (loop6): free_blocks=0
[  549.120078][T15226] EXT4-fs (loop6): dirty_blocks=0
[  549.144839][T15238] syz.7.3451: attempt to access beyond end of device
[  549.144839][T15238] loop7: rw=2051, sector=232, nr_sectors = 2 limit=128
[  549.171047][T15226] EXT4-fs (loop6): Block reservation details
[  549.187312][T15226] EXT4-fs (loop6): i_reserved_data_blocks=0
[  549.477229][T15252] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3458'.
[  549.481203][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.610375][T15252] syz_tun (unregistering): left allmulticast mode
[  550.034052][T15270] loop6: detected capacity change from 0 to 512
[  550.074577][T15276] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  550.088119][T15276] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  550.100261][T15276] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  550.116471][T15276] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  550.125098][T15270] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  550.125266][T15276] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  550.227579][T15270] ext4: Unknown parameter 'ext4'
[  550.286829][T15273] lo speed is unknown, defaulting to 1000
[  550.295125][T15273] lo speed is unknown, defaulting to 1000
[  550.381868][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.425445][T15285] netlink: 168 bytes leftover after parsing attributes in process `syz.7.3469'.
[  551.023400][T15302] loop7: detected capacity change from 0 to 512
[  551.679980][T15302] EXT4-fs (loop7): too many log groups per flexible block group
[  551.731286][T15302] EXT4-fs (loop7): failed to initialize mballoc (-12)
[  551.769321][T15302] EXT4-fs (loop7): mount failed
[  551.961517][   T30] kauditd_printk_skb: 21 callbacks suppressed
[  551.961543][   T30] audit: type=1326 audit(2000000880.566:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  551.992549][   T30] audit: type=1326 audit(2000000880.596:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  552.091148][   T30] audit: type=1326 audit(2000000880.696:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  552.161451][   T30] audit: type=1326 audit(2000000880.696:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f822e78efc9 code=0x7ffc0000
[  552.180205][ T5143] Bluetooth: hci3: command tx timeout
[  552.281835][T15273] chnl_net:caif_netlink_parms(): no params data found
[  552.428009][T14200] bridge0: port 3(batadv0) entered disabled state
[  552.466989][T14200] bridge_slave_1: left allmulticast mode
[  552.482880][T14200] bridge_slave_1: left promiscuous mode
[  552.493214][T14200] bridge0: port 2(bridge_slave_1) entered disabled state
[  552.531244][T14200] bridge_slave_0: left allmulticast mode
[  552.547564][T14200] bridge_slave_0: left promiscuous mode
[  552.565751][T14200] bridge0: port 1(bridge_slave_0) entered disabled state
[  552.715977][T15337] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3489'.
[  552.718922][   T30] audit: type=1326 audit(2000000881.316:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15338 comm="syz.7.3490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  552.776830][   T30] audit: type=1326 audit(2000000881.316:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15338 comm="syz.7.3490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  552.799937][   T30] audit: type=1326 audit(2000000881.366:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15338 comm="syz.7.3490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  552.833916][   T30] audit: type=1326 audit(2000000881.366:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15338 comm="syz.7.3490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  552.874790][   T30] audit: type=1326 audit(2000000881.366:2105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15338 comm="syz.7.3490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  552.928303][   T30] audit: type=1326 audit(2000000881.386:2106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15338 comm="syz.7.3490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  553.265759][T14200] bond1 (unregistering): (slave gretap1): Releasing active interface
[  553.797466][T14200] bond1 (unregistering): (slave bridge2): Releasing active interface
[  554.262494][ T5143] Bluetooth: hci3: command tx timeout
[  554.339250][T14200] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  554.438615][T14200] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  554.480199][T14200] bond0 (unregistering): Released all slaves
[  554.528521][T14200] bond1 (unregistering): Released all slaves
[  554.599151][T15381] loop4: detected capacity change from 0 to 164
[  555.100241][T14200] bond2 (unregistering): Released all slaves
[  555.352866][T15384] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3511'.
[  555.888865][T15273] bridge0: port 1(bridge_slave_0) entered blocking state
[  555.915276][T15273] bridge0: port 1(bridge_slave_0) entered disabled state
[  555.939984][T15273] bridge_slave_0: entered allmulticast mode
[  555.972549][T15273] bridge_slave_0: entered promiscuous mode
[  556.022990][T15273] bridge0: port 2(bridge_slave_1) entered blocking state
[  556.040155][T15273] bridge0: port 2(bridge_slave_1) entered disabled state
[  556.057538][T15273] bridge_slave_1: entered allmulticast mode
[  556.074483][T15273] bridge_slave_1: entered promiscuous mode
[  556.241424][T15407] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3519'.
[  556.248342][T15273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  556.282618][T14200] batman_adv: batadv0: Removing interface: batadv_slave_0
[  556.300863][T14200] batman_adv: batadv0: Removing interface: batadv_slave_1
[  556.342630][ T5143] Bluetooth: hci3: command tx timeout
[  557.201658][T15418] program syz.4.3525 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  557.985081][   T30] kauditd_printk_skb: 23 callbacks suppressed
[  557.985107][   T30] audit: type=1326 audit(2000000886.586:2130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.049560][   T30] audit: type=1326 audit(2000000886.626:2131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.110101][   T30] audit: type=1326 audit(2000000886.716:2132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.228022][   T30] audit: type=1326 audit(2000000886.716:2133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.426478][ T5143] Bluetooth: hci3: command tx timeout
[  558.432131][   T30] audit: type=1326 audit(2000000887.016:2134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.456794][   T30] audit: type=1326 audit(2000000887.016:2135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.487493][   T30] audit: type=1326 audit(2000000887.016:2136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.530735][   T30] audit: type=1326 audit(2000000887.016:2137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.677220][   T30] audit: type=1326 audit(2000000887.016:2138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.768899][   T30] audit: type=1326 audit(2000000887.016:2139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15429 comm="syz.4.3529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  558.912965][T15425] Process accounting resumed
[  559.486003][T15449] netlink: 168 bytes leftover after parsing attributes in process `syz.1.3537'.
[  560.109687][T15273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  560.224052][T15466] loop6: detected capacity change from 0 to 512
[  560.266903][T15466] EXT4-fs (loop6): too many log groups per flexible block group
[  560.289347][T15466] EXT4-fs (loop6): failed to initialize mballoc (-12)
[  560.305421][T15466] EXT4-fs (loop6): mount failed
[  560.468825][T15273] team0: Port device team_slave_0 added
[  560.478630][T15273] team0: Port device team_slave_1 added
[  561.166898][T15273] batman_adv: batadv0: Adding interface: batadv_slave_0
[  561.175425][T15273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  561.202687][T15273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  561.216121][T15273] batman_adv: batadv0: Adding interface: batadv_slave_1
[  561.223165][T15273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  561.251439][T15273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  561.415142][T15481] loop6: detected capacity change from 0 to 512
[  561.430604][T15481] EXT4-fs: Ignoring removed oldalloc option
[  561.436784][T15481] ext4: Unknown parameter 'uid<00000000000000000000'
[  562.188152][T15481] lo speed is unknown, defaulting to 1000
[  562.822481][T15273] hsr_slave_0: entered promiscuous mode
[  562.852423][T15273] hsr_slave_1: entered promiscuous mode
[  562.890946][T15273] debugfs: 'hsr0' already exists in 'hsr'
[  562.928379][T15273] Cannot create hsr debugfs directory
[  563.973336][T15364] Set syz1 is full, maxelem 65536 reached
[  564.211672][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  564.211698][   T30] audit: type=1326 audit(2000000892.816:2150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15500 comm="syz.7.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  564.280346][T15504] loop6: detected capacity change from 0 to 512
[  564.304759][   T30] audit: type=1326 audit(2000000892.856:2151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15500 comm="syz.7.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  564.341057][   T30] audit: type=1326 audit(2000000892.856:2152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15500 comm="syz.7.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  564.367500][T15504] EXT4-fs (loop6): can't mount with data_err=abort, fs mounted w/o journal
[  564.450861][   T30] audit: type=1326 audit(2000000892.856:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15500 comm="syz.7.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  564.504537][   T30] audit: type=1326 audit(2000000892.856:2154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15500 comm="syz.7.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  564.530272][T15273] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  564.598339][T15273] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  564.600398][   T30] audit: type=1326 audit(2000000892.856:2155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15500 comm="syz.7.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  564.662295][T15273] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  564.698030][T15273] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  564.708533][   T30] audit: type=1326 audit(2000000892.856:2156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15500 comm="syz.7.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f494518efc9 code=0x7ffc0000
[  564.768153][T15514] loop6: detected capacity change from 0 to 1024
[  564.785996][T15514] EXT4-fs: Ignoring removed bh option
[  564.808622][T15514] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  564.889203][T15514] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  564.973454][T15520] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3564'.
[  565.033760][   T30] audit: type=1326 audit(2000000893.636:2157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.4.3564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  565.076279][T15520] netlink: 'syz.4.3564': attribute type 39 has an invalid length.
[  565.138143][   T30] audit: type=1326 audit(2000000893.636:2158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.4.3564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  565.185122][   T30] audit: type=1326 audit(2000000893.636:2159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.4.3564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2a78efc9 code=0x7ffc0000
[  565.310497][T15273] 8021q: adding VLAN 0 to HW filter on device bond0
[  565.450052][T15273] 8021q: adding VLAN 0 to HW filter on device team0
[  565.646589][ T3501] bridge0: port 1(bridge_slave_0) entered blocking state
[  565.653796][ T3501] bridge0: port 1(bridge_slave_0) entered forwarding state
[  565.751932][ T3501] bridge0: port 2(bridge_slave_1) entered blocking state
[  565.759163][ T3501] bridge0: port 2(bridge_slave_1) entered forwarding state
[  565.800238][T11643] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  566.463865][T15556] loop4: detected capacity change from 0 to 512
[  566.502270][T15556] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  566.682000][T15273] 8021q: adding VLAN 0 to HW filter on device batadv0
[  566.848599][T15273] veth0_vlan: entered promiscuous mode
[  566.881731][T15273] veth1_vlan: entered promiscuous mode
[  567.003828][T15273] veth0_macvtap: entered promiscuous mode
[  567.050975][T15273] veth1_macvtap: entered promiscuous mode
[  567.063162][T15574] loop6: detected capacity change from 0 to 128
[  567.090793][T15574] FAT-fs (loop6): Directory bread(block 414) failed
[  567.105980][T15574] FAT-fs (loop6): Directory bread(block 415) failed
[  567.113386][T15574] FAT-fs (loop6): Directory bread(block 416) failed
[  567.120555][T15574] FAT-fs (loop6): Directory bread(block 417) failed
[  567.127961][T15574] FAT-fs (loop6): Directory bread(block 418) failed
[  567.140139][T15273] batman_adv: batadv0: Interface activated: batadv_slave_0
[  567.156674][T15574] FAT-fs (loop6): Directory bread(block 419) failed
[  567.163856][T15574] FAT-fs (loop6): Directory bread(block 420) failed
[  567.170946][T15574] FAT-fs (loop6): Directory bread(block 421) failed
[  567.202290][T15273] batman_adv: batadv0: Interface activated: batadv_slave_1
[  567.237118][T15574] FAT-fs (loop6): FAT read failed (blocknr 128)
[  567.276930][T14213] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  567.319862][T14213] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  567.363311][T14213] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  567.399045][T14213] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  567.741746][T14200] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  567.753760][T14200] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  567.892720][T14194] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  567.927339][T14194] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  568.527157][T15620] loop4: detected capacity change from 0 to 128
[  568.568437][T15614] lo speed is unknown, defaulting to 1000
[  568.842165][T15620] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  569.090501][T15622] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  569.269016][T15620] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  569.322435][T15276] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  569.337172][T15276] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  569.347152][T15637] unsupported nla_type 7440
[  569.354888][T15276] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  569.363919][T15276] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  569.373890][T15276] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  569.550961][T15639] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3610'.
[  569.929044][T15620] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  570.023614][T15634] lo speed is unknown, defaulting to 1000
[  570.084589][T15620] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  570.146242][T15642] lo speed is unknown, defaulting to 1000
[  570.209624][   T30] kauditd_printk_skb: 74 callbacks suppressed
[  570.209649][   T30] audit: type=1326 audit(2000000898.816:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.240117][   T30] audit: type=1326 audit(2000000898.816:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.298096][   T30] audit: type=1326 audit(2000000898.826:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.327545][   T30] audit: type=1326 audit(2000000898.826:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.391338][   T30] audit: type=1326 audit(2000000898.826:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.417001][   T30] audit: type=1326 audit(2000000898.846:2239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.461296][T15661] loop6: detected capacity change from 0 to 512
[  570.465449][   T30] audit: type=1326 audit(2000000898.846:2240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.556510][   T30] audit: type=1326 audit(2000000898.846:2241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.581810][   T30] audit: type=1326 audit(2000000898.846:2242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.601435][T15665] netlink: 'syz.0.3620': attribute type 10 has an invalid length.
[  570.612569][   T30] audit: type=1326 audit(2000000898.846:2243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15656 comm="syz.0.3617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a12d8efc9 code=0x7ffc0000
[  570.648336][T15665] batadv0: entered allmulticast mode
[  570.654102][T15661] 
[  570.654114][T15661] ======================================================
[  570.654128][T15661] WARNING: possible circular locking dependency detected
[  570.659322][T15668] netlink: 'syz.0.3620': attribute type 10 has an invalid length.
[  570.663443][T15661] syzkaller #0 Not tainted
[  570.663461][T15661] ------------------------------------------------------
[  570.663474][T15661] syz.6.3619/15661 is trying to acquire lock:
[  570.663492][T15661] ffff88804e08cb98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x27a/0x600
[  570.663581][T15661] 
[  570.663581][T15661] but task is already holding lock:
[  570.663592][T15661] ffff888057a96068 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x4ba/0x870
[  570.663685][T15661] 
[  570.663685][T15661] which lock already depends on the new lock.
[  570.663685][T15661] 
[  570.663697][T15661] 
[  570.663697][T15661] the existing dependency chain (in reverse order) is:
[  570.663711][T15661] 
[  570.663711][T15661] -> #1 (&ei->xattr_sem){++++}-{4:4}:
[  570.663762][T15661]        down_write+0x92/0x200
[  570.663810][T15661]        ext4_destroy_inline_data+0x2d/0xe0
[  570.663863][T15661]        ext4_do_writepages+0x1154/0x3cf0
[  570.663908][T15661]        ext4_writepages+0x37a/0x7d0
[  570.663958][T15661]        do_writepages+0x27a/0x600
[  570.663991][T15661]        __writeback_single_inode+0x160/0xfb0
[  570.664036][T15661]        writeback_sb_inodes+0x60d/0xfa0
[  570.664079][T15661]        wb_writeback+0x419/0xb70
[  570.664124][T15661]        wb_workfn+0x14d/0xbe0
[  570.664167][T15661]        process_one_work+0x9cf/0x1b70
[  570.664206][T15661]        worker_thread+0x6c8/0xf10
[  570.664243][T15661]        kthread+0x3c5/0x780
[  570.664274][T15661]        ret_from_fork+0x675/0x7d0
[  570.664333][T15661]        ret_from_fork_asm+0x1a/0x30
[  570.664385][T15661] 
[  570.664385][T15661] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  570.664439][T15661]        __lock_acquire+0x126f/0x1c90
[  570.675588][T15665] 8021q: adding VLAN 0 to HW filter on device batadv0
[  570.679343][T15661]        lock_acquire+0x179/0x350
[  570.684057][T15668] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3620'.
[  570.691083][T15661]        ext4_writepages+0x224/0x7d0
[  570.699274][T15665] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  570.707194][T15661]        do_writepages+0x27a/0x600
[  570.707234][T15661]        __writeback_single_inode+0x160/0xfb0
[  570.707279][T15661]        writeback_single_inode+0x2bc/0x550
[  570.707326][T15661]        write_inode_now+0x170/0x1e0
[  570.707372][T15661]        iput.part.0+0x487/0xb00
[  570.707410][T15661]        iput+0x35/0x40
[  570.707445][T15661]        ext4_xattr_block_set+0x67c/0x3650
[  570.707505][T15661]        ext4_expand_extra_isize_ea+0x1442/0x1ab0
[  570.707542][T15661]        __ext4_expand_extra_isize+0x346/0x480
[  570.707603][T15661]        __ext4_mark_inode_dirty+0x544/0x870
[  570.707651][T15661]        ext4_evict_inode+0x74e/0x18e0
[  570.707698][T15661]        evict+0x3e6/0x920
[  570.707733][T15661]        iput.part.0+0x6a9/0xb00
[  570.707772][T15661]        iput+0x35/0x40
[  570.707807][T15661]        ext4_orphan_cleanup+0x731/0x11e0
[  570.707854][T15661]        ext4_fill_super+0x8db7/0xaf70
[  570.707907][T15661]        get_tree_bdev_flags+0x38c/0x620
[  570.707970][T15661]        vfs_get_tree+0x8e/0x340
[  570.708013][T15661]        path_mount+0x7b9/0x23a0
[  570.708045][T15661]        __x64_sys_mount+0x293/0x310
[  570.708078][T15661]        do_syscall_64+0xcd/0xfa0
[  570.708120][T15661]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.992704][T15661] 
[  570.992704][T15661] other info that might help us debug this:
[  570.992704][T15661] 
[  571.002946][T15661]  Possible unsafe locking scenario:
[  571.002946][T15661] 
[  571.010409][T15661]        CPU0                    CPU1
[  571.015775][T15661]        ----                    ----
[  571.021307][T15661]   lock(&ei->xattr_sem);
[  571.025647][T15661]                                lock(&sbi->s_writepages_rwsem);
[  571.033386][T15661]                                lock(&ei->xattr_sem);
[  571.040340][T15661]   rlock(&sbi->s_writepages_rwsem);
[  571.045731][T15661] 
[  571.045731][T15661]  *** DEADLOCK ***
[  571.045731][T15661] 
[  571.053876][T15661] 3 locks held by syz.6.3619/15661:
[  571.059254][T15661]  #0: ffff88804e08a0e0 (&type->s_umount_key#28/1){+.+.}-{4:4}, at: alloc_super+0x1e3/0xb60
[  571.070311][T15661]  #1: ffff88804e08a610 (sb_internal){.+.+}-{0:0}, at: evict+0x3e6/0x920
[  571.078814][T15661]  #2: ffff888057a96068 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x4ba/0x870
[  571.089219][T15661] 
[  571.089219][T15661] stack backtrace:
[  571.095209][T15661] CPU: 0 UID: 0 PID: 15661 Comm: syz.6.3619 Not tainted syzkaller #0 PREEMPT(full) 
[  571.095252][T15661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  571.095273][T15661] Call Trace:
[  571.095286][T15661]  <TASK>
[  571.095299][T15661]  dump_stack_lvl+0x116/0x1f0
[  571.095344][T15661]  print_circular_bug+0x275/0x350
[  571.095403][T15661]  check_noncircular+0x14c/0x170
[  571.095464][T15661]  __lock_acquire+0x126f/0x1c90
[  571.095524][T15661]  ? __lock_acquire+0x622/0x1c90
[  571.095583][T15661]  lock_acquire+0x179/0x350
[  571.095612][T15661]  ? do_writepages+0x27a/0x600
[  571.095648][T15661]  ? __pfx___might_resched+0x10/0x10
[  571.095698][T15661]  ext4_writepages+0x224/0x7d0
[  571.095741][T15661]  ? do_writepages+0x27a/0x600
[  571.095775][T15661]  ? __pfx_ext4_writepages+0x10/0x10
[  571.095828][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.095874][T15661]  ? __lock_acquire+0xb8a/0x1c90
[  571.095938][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.095983][T15661]  ? __pfx_ext4_writepages+0x10/0x10
[  571.096028][T15661]  do_writepages+0x27a/0x600
[  571.096064][T15661]  ? __pfx_do_writepages+0x10/0x10
[  571.096104][T15661]  __writeback_single_inode+0x160/0xfb0
[  571.096151][T15661]  ? __pfx___writeback_single_inode+0x10/0x10
[  571.096195][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.096243][T15661]  ? do_raw_spin_unlock+0x172/0x230
[  571.096282][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.096328][T15661]  writeback_single_inode+0x2bc/0x550
[  571.096376][T15661]  write_inode_now+0x170/0x1e0
[  571.096421][T15661]  ? __pfx_write_inode_now+0x10/0x10
[  571.096493][T15661]  ? find_held_lock+0x2b/0x80
[  571.096536][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.096580][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.096625][T15661]  iput.part.0+0x487/0xb00
[  571.096667][T15661]  iput+0x35/0x40
[  571.096700][T15661]  ext4_xattr_block_set+0x67c/0x3650
[  571.096770][T15661]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  571.096833][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.096875][T15661]  ? xattr_find_entry+0x289/0x330
[  571.096933][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.096975][T15661]  ? ext4_xattr_block_find+0x59/0x430
[  571.097034][T15661]  ext4_expand_extra_isize_ea+0x1442/0x1ab0
[  571.097087][T15661]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  571.097133][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.097174][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.097222][T15661]  ? dquot_initialize_needed+0x183/0x2a0
[  571.097263][T15661]  __ext4_expand_extra_isize+0x346/0x480
[  571.097324][T15661]  __ext4_mark_inode_dirty+0x544/0x870
[  571.097373][T15661]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  571.097420][T15661]  ? __pfx___might_resched+0x10/0x10
[  571.097470][T15661]  ? ext4_journal_check_start+0x22b/0x340
[  571.097512][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.097553][T15661]  ? __ext4_journal_start_sb+0x19e/0x690
[  571.097593][T15661]  ? ext4_evict_inode+0x5cf/0x18e0
[  571.097641][T15661]  ext4_evict_inode+0x74e/0x18e0
[  571.097690][T15661]  ? __pfx_ext4_evict_inode+0x10/0x10
[  571.097735][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.097782][T15661]  ? __pfx_ext4_evict_inode+0x10/0x10
[  571.097827][T15661]  evict+0x3e6/0x920
[  571.097863][T15661]  ? __pfx_evict+0x10/0x10
[  571.097897][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.097944][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.097992][T15661]  iput.part.0+0x6a9/0xb00
[  571.098028][T15661]  ? __pfx_ext4_drop_inode+0x10/0x10
[  571.098066][T15661]  iput+0x35/0x40
[  571.098099][T15661]  ext4_orphan_cleanup+0x731/0x11e0
[  571.098152][T15661]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  571.098206][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.098248][T15661]  ? ext4_register_li_request+0xec/0x9b0
[  571.098302][T15661]  ext4_fill_super+0x8db7/0xaf70
[  571.098369][T15661]  ? __pfx_ext4_fill_super+0x10/0x10
[  571.098418][T15661]  ? do_raw_spin_lock+0x12c/0x2b0
[  571.098455][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.098497][T15661]  ? find_held_lock+0x2b/0x80
[  571.098544][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.098585][T15661]  ? sb_set_blocksize+0x176/0x1d0
[  571.098643][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.098684][T15661]  ? setup_bdev_super+0x369/0x730
[  571.098733][T15661]  get_tree_bdev_flags+0x38c/0x620
[  571.098784][T15661]  ? __pfx_ext4_fill_super+0x10/0x10
[  571.098835][T15661]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  571.098889][T15661]  ? apparmor_capable+0x114/0x1d0
[  571.098942][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.098988][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.099030][T15661]  ? security_capable+0x7e/0x260
[  571.099079][T15661]  vfs_get_tree+0x8e/0x340
[  571.099121][T15661]  path_mount+0x7b9/0x23a0
[  571.099157][T15661]  ? __pfx_path_mount+0x10/0x10
[  571.099192][T15661]  ? putname+0x154/0x1a0
[  571.099235][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.099276][T15661]  ? putname+0x154/0x1a0
[  571.099312][T15661]  ? __x64_sys_mount+0x293/0x310
[  571.099343][T15661]  __x64_sys_mount+0x293/0x310
[  571.099377][T15661]  ? __pfx___x64_sys_mount+0x10/0x10
[  571.099410][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.099459][T15661]  do_syscall_64+0xcd/0xfa0
[  571.099502][T15661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  571.099536][T15661] RIP: 0033:0x7f8b2659076a
[  571.099563][T15661] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  571.099597][T15661] RSP: 002b:00007f8b273c1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  571.099629][T15661] RAX: ffffffffffffffda RBX: 00007f8b273c1ef0 RCX: 00007f8b2659076a
[  571.099652][T15661] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8b273c1eb0
[  571.099674][T15661] RBP: 0000200000000180 R08: 00007f8b273c1ef0 R09: 0000000001a08700
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  571.099696][T15661] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0
[  571.099717][T15661] R13: 00007f8b273c1eb0 R14: 0000000000000470 R15: 0000200000000700
[  571.099753][T15661]  </TASK>
[  571.694046][T15276] Bluetooth: hci4: command tx timeout
[  571.734984][ T3501] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  571.757197][ T3501] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  571.774266][ T3501] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  571.799643][T15661] ------------[ cut here ]------------
[  571.806021][T15661] EA inode 11 i_nlink=2
[  571.808992][T15661] WARNING: CPU: 1 PID: 15661 at fs/ext4/xattr.c:1056 ext4_xattr_inode_update_ref+0x4ec/0x610
[  571.823631][T15661] Modules linked in:
[  571.827642][T15661] CPU: 1 UID: 0 PID: 15661 Comm: syz.6.3619 Not tainted syzkaller #0 PREEMPT(full) 
[  571.837203][T15661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  571.847320][T15661] RIP: 0010:ext4_xattr_inode_update_ref+0x4ec/0x610
[  571.854192][T15661] Code: df 48 8d 7b 40 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 23 01 00 00 48 8b 73 40 44 89 e2 48 c7 c7 40 5d a8 8b e8 35 ef ec fe 90 <0f> 0b 90 90 e9 d9 fe ff ff e8 16 bd 2e ff 44 0f b6 2d 75 74 dc 0d
[  571.874239][T15661] RSP: 0018:ffffc900046e7178 EFLAGS: 00010282
[  571.880464][T15661] RAX: 0000000000000000 RBX: ffff888057ac0298 RCX: ffffc9001e801000
[  571.888509][T15661] RDX: 0000000000080000 RSI: ffffffff817b2ef5 RDI: 0000000000000001
[  571.897309][T15661] RBP: ffffc900046e7240 R08: 0000000000000001 R09: 0000000000000000
[  571.905907][T15661] R10: 0000000000000001 R11: 000000002d2d2d2d R12: 0000000000000002
[  571.913907][T15661] R13: 0000000000000000 R14: 1ffff920008dce32 R15: ffff888057ac0488
[  571.922185][T15661] FS:  00007f8b273c26c0(0000) GS:ffff888124b09000(0000) knlGS:0000000000000000
[  571.931205][T15661] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  571.938354][T15661] CR2: 000000110c2a76eb CR3: 000000003331d000 CR4: 0000000000350ef0
[  571.946594][T15661] Call Trace:
[  571.949881][T15661]  <TASK>
[  571.953071][T15661]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  571.959867][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  571.965917][T15661]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  571.971625][T15661]  ext4_xattr_set_entry+0x158f/0x1f00
[  571.977108][T15661]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  571.983058][T15661]  ? xattr_find_entry+0x289/0x330
[  571.988296][T15661]  ext4_xattr_ibody_set+0x3d6/0x5d0
[  571.994273][T15661]  ext4_expand_extra_isize_ea+0x148c/0x1ab0
[  572.000925][T15661]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  572.007329][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.012989][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.018876][T15661]  ? dquot_initialize_needed+0x183/0x2a0
[  572.024538][T15661]  __ext4_expand_extra_isize+0x346/0x480
[  572.030285][T15661]  __ext4_mark_inode_dirty+0x544/0x870
[  572.035811][T15661]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  572.041824][T15661]  ? __pfx___might_resched+0x10/0x10
[  572.047169][T15661]  ? ext4_journal_check_start+0x22b/0x340
[  572.052923][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.058851][T15661]  ? __ext4_journal_start_sb+0x19e/0x690
[  572.064510][T15661]  ? ext4_evict_inode+0x5cf/0x18e0
[  572.069859][T15661]  ext4_evict_inode+0x74e/0x18e0
[  572.074892][T15661]  ? __pfx_ext4_evict_inode+0x10/0x10
[  572.080302][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.086078][T15661]  ? __pfx_ext4_evict_inode+0x10/0x10
[  572.091482][T15661]  evict+0x3e6/0x920
[  572.096306][T15661]  ? __pfx_evict+0x10/0x10
[  572.100749][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.107055][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.112810][T15661]  iput.part.0+0x6a9/0xb00
[  572.117297][T15661]  ? __pfx_ext4_drop_inode+0x10/0x10
[  572.122603][T15661]  iput+0x35/0x40
[  572.126306][T15661]  ext4_orphan_cleanup+0x731/0x11e0
[  572.132159][T15661]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  572.137900][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.143571][T15661]  ? ext4_register_li_request+0xec/0x9b0
[  572.149324][T15661]  ext4_fill_super+0x8db7/0xaf70
[  572.154426][T15661]  ? __pfx_ext4_fill_super+0x10/0x10
[  572.159952][T15661]  ? do_raw_spin_lock+0x12c/0x2b0
[  572.165237][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.170956][T15661]  ? find_held_lock+0x2b/0x80
[  572.176910][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.182570][T15661]  ? sb_set_blocksize+0x176/0x1d0
[  572.187849][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.193513][T15661]  ? setup_bdev_super+0x369/0x730
[  572.199129][T15661]  get_tree_bdev_flags+0x38c/0x620
[  572.204286][T15661]  ? __pfx_ext4_fill_super+0x10/0x10
[  572.210437][T15661]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  572.216136][T15661]  ? apparmor_capable+0x114/0x1d0
[  572.221359][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.227076][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.232745][T15661]  ? security_capable+0x7e/0x260
[  572.237734][T15661]  vfs_get_tree+0x8e/0x340
[  572.242158][T15661]  path_mount+0x7b9/0x23a0
[  572.246637][T15661]  ? __pfx_path_mount+0x10/0x10
[  572.251637][T15661]  ? putname+0x154/0x1a0
[  572.256085][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.261874][T15661]  ? putname+0x154/0x1a0
[  572.266304][T15661]  ? __x64_sys_mount+0x293/0x310
[  572.271270][T15661]  __x64_sys_mount+0x293/0x310
[  572.276060][T15661]  ? __pfx___x64_sys_mount+0x10/0x10
[  572.281347][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.287109][T15661]  do_syscall_64+0xcd/0xfa0
[  572.291635][T15661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.297613][T15661] RIP: 0033:0x7f8b2659076a
[  572.302559][T15661] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.323061][T15661] RSP: 002b:00007f8b273c1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  572.331562][T15661] RAX: ffffffffffffffda RBX: 00007f8b273c1ef0 RCX: 00007f8b2659076a
[  572.339936][T15661] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8b273c1eb0
[  572.348161][T15661] RBP: 0000200000000180 R08: 00007f8b273c1ef0 R09: 0000000001a08700
[  572.356214][T15661] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0
[  572.364337][T15661] R13: 00007f8b273c1eb0 R14: 0000000000000470 R15: 0000200000000700
[  572.373245][T15661]  </TASK>
[  572.376328][T15661] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  572.383638][T15661] CPU: 1 UID: 0 PID: 15661 Comm: syz.6.3619 Not tainted syzkaller #0 PREEMPT(full) 
[  572.393008][T15661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  572.404971][T15661] Call Trace:
[  572.408516][T15661]  <TASK>
[  572.411441][T15661]  dump_stack_lvl+0x3d/0x1f0
[  572.416129][T15661]  vpanic+0x640/0x6f0
[  572.420155][T15661]  ? ext4_xattr_inode_update_ref+0x4ec/0x610
[  572.426177][T15661]  panic+0xca/0xd0
[  572.429931][T15661]  ? __pfx_panic+0x10/0x10
[  572.434433][T15661]  check_panic_on_warn+0xab/0xb0
[  572.439393][T15661]  __warn+0xf6/0x3c0
[  572.443283][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.449028][T15661]  ? ext4_xattr_inode_update_ref+0x4ec/0x610
[  572.455043][T15661]  report_bug+0x3c3/0x580
[  572.459421][T15661]  ? ext4_xattr_inode_update_ref+0x4ec/0x610
[  572.465425][T15661]  handle_bug+0x184/0x210
[  572.469790][T15661]  exc_invalid_op+0x17/0x50
[  572.474320][T15661]  asm_exc_invalid_op+0x1a/0x20
[  572.479259][T15661] RIP: 0010:ext4_xattr_inode_update_ref+0x4ec/0x610
[  572.485957][T15661] Code: df 48 8d 7b 40 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 23 01 00 00 48 8b 73 40 44 89 e2 48 c7 c7 40 5d a8 8b e8 35 ef ec fe 90 <0f> 0b 90 90 e9 d9 fe ff ff e8 16 bd 2e ff 44 0f b6 2d 75 74 dc 0d
[  572.505672][T15661] RSP: 0018:ffffc900046e7178 EFLAGS: 00010282
[  572.511924][T15661] RAX: 0000000000000000 RBX: ffff888057ac0298 RCX: ffffc9001e801000
[  572.519905][T15661] RDX: 0000000000080000 RSI: ffffffff817b2ef5 RDI: 0000000000000001
[  572.527967][T15661] RBP: ffffc900046e7240 R08: 0000000000000001 R09: 0000000000000000
[  572.536027][T15661] R10: 0000000000000001 R11: 000000002d2d2d2d R12: 0000000000000002
[  572.544023][T15661] R13: 0000000000000000 R14: 1ffff920008dce32 R15: ffff888057ac0488
[  572.552114][T15661]  ? __warn_printk+0x1a5/0x350
[  572.557018][T15661]  ? ext4_xattr_inode_update_ref+0x4eb/0x610
[  572.563048][T15661]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  572.570653][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.576502][T15661]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  572.582027][T15661]  ext4_xattr_set_entry+0x158f/0x1f00
[  572.587451][T15661]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  572.593232][T15661]  ? xattr_find_entry+0x289/0x330
[  572.598306][T15661]  ext4_xattr_ibody_set+0x3d6/0x5d0
[  572.603694][T15661]  ext4_expand_extra_isize_ea+0x148c/0x1ab0
[  572.609616][T15661]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  572.615978][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.621631][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.627367][T15661]  ? dquot_initialize_needed+0x183/0x2a0
[  572.633025][T15661]  __ext4_expand_extra_isize+0x346/0x480
[  572.638697][T15661]  __ext4_mark_inode_dirty+0x544/0x870
[  572.644180][T15661]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  572.650179][T15661]  ? __pfx___might_resched+0x10/0x10
[  572.655487][T15661]  ? ext4_journal_check_start+0x22b/0x340
[  572.661246][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.667038][T15661]  ? __ext4_journal_start_sb+0x19e/0x690
[  572.672691][T15661]  ? ext4_evict_inode+0x5cf/0x18e0
[  572.677912][T15661]  ext4_evict_inode+0x74e/0x18e0
[  572.682967][T15661]  ? __pfx_ext4_evict_inode+0x10/0x10
[  572.688447][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.694104][T15661]  ? __pfx_ext4_evict_inode+0x10/0x10
[  572.699494][T15661]  evict+0x3e6/0x920
[  572.703405][T15661]  ? __pfx_evict+0x10/0x10
[  572.707829][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.713587][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.719417][T15661]  iput.part.0+0x6a9/0xb00
[  572.723877][T15661]  ? __pfx_ext4_drop_inode+0x10/0x10
[  572.729218][T15661]  iput+0x35/0x40
[  572.732875][T15661]  ext4_orphan_cleanup+0x731/0x11e0
[  572.738136][T15661]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  572.743895][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.749581][T15661]  ? ext4_register_li_request+0xec/0x9b0
[  572.755262][T15661]  ext4_fill_super+0x8db7/0xaf70
[  572.760260][T15661]  ? __pfx_ext4_fill_super+0x10/0x10
[  572.765756][T15661]  ? do_raw_spin_lock+0x12c/0x2b0
[  572.770816][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.777110][T15661]  ? find_held_lock+0x2b/0x80
[  572.781824][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.787492][T15661]  ? sb_set_blocksize+0x176/0x1d0
[  572.792564][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.798224][T15661]  ? setup_bdev_super+0x369/0x730
[  572.803275][T15661]  get_tree_bdev_flags+0x38c/0x620
[  572.808673][T15661]  ? __pfx_ext4_fill_super+0x10/0x10
[  572.813992][T15661]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  572.819662][T15661]  ? apparmor_capable+0x114/0x1d0
[  572.824720][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.830370][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.836624][T15661]  ? security_capable+0x7e/0x260
[  572.841592][T15661]  vfs_get_tree+0x8e/0x340
[  572.846082][T15661]  path_mount+0x7b9/0x23a0
[  572.850597][T15661]  ? __pfx_path_mount+0x10/0x10
[  572.855633][T15661]  ? putname+0x154/0x1a0
[  572.859892][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.865895][T15661]  ? putname+0x154/0x1a0
[  572.870242][T15661]  ? __x64_sys_mount+0x293/0x310
[  572.875365][T15661]  __x64_sys_mount+0x293/0x310
[  572.880146][T15661]  ? __pfx___x64_sys_mount+0x10/0x10
[  572.885439][T15661]  ? srso_alias_return_thunk+0x5/0xfbef5
[  572.891098][T15661]  do_syscall_64+0xcd/0xfa0
[  572.895624][T15661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.901526][T15661] RIP: 0033:0x7f8b2659076a
[  572.905944][T15661] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.925716][T15661] RSP: 002b:00007f8b273c1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  572.934347][T15661] RAX: ffffffffffffffda RBX: 00007f8b273c1ef0 RCX: 00007f8b2659076a
[  572.942841][T15661] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8b273c1eb0
[  572.950813][T15661] RBP: 0000200000000180 R08: 00007f8b273c1ef0 R09: 0000000001a08700
[  572.958969][T15661] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0
[  572.966948][T15661] R13: 00007f8b273c1eb0 R14: 0000000000000470 R15: 0000200000000700
[  572.975129][T15661]  </TASK>
[  572.978777][T15661] Kernel Offset: disabled
[  572.983100][T15661] Rebooting in 86400 seconds..