last executing test programs:

9.547960815s ago: executing program 0 (id=469):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0xffffffff}, 0x50)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x10)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x200003, 0x1af}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x2, 0x1, 0xffffffffffffffff, 0x0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000200)=[{0x0}, {0x0}], 0x2}, 0x0, 0x3, 0x0, {0x2}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r0, 0x47f8, 0x0, 0x0, 0x0, 0x0)

5.704301702s ago: executing program 2 (id=493):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000a00)=ANY=[@ANYBLOB="0a000000c0000000b30000007f"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x7fffffffffffffff}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000a10000000000000000000010851000000600000018180000", @ANYRES32=r0, @ANYBLOB="0000000000000000660000007fffffff18000000f8ffffff00000000100000009500000000000000360a00000000000018010000202078250000000000202020db1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa}, 0x94)

5.104584969s ago: executing program 1 (id=497):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
statfs(&(0x7f00000001c0)='./file0\x00', 0x0)

5.028041191s ago: executing program 2 (id=498):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

4.938623054s ago: executing program 4 (id=500):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_INTVL={0xc, 0x21, 0x80}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x34041043}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.75517229s ago: executing program 2 (id=501):
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
socket(0x10, 0x3, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
getpgrp(0x0)
setns(0xffffffffffffffff, 0x34020000)
fallocate(r0, 0x0, 0x0, 0x1000f4)
io_setup(0x7d, &(0x7f0000000600)=<r3=>0x0)
io_submit(r3, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0xfffffe10, 0x0, 0x0, 0x0, r1}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r0, 0x0, 0x0, 0xffffffffffffffff}])
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x2082)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r4, 0xc0a85320, &(0x7f00000005c0)={{0x80, 0x7}, 'port0\x00', 0x44, 0xa04f2, 0x10000000, 0x8000088, 0x6, 0x4, 0x80000001})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff})
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
move_mount(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r4, 0x4018f50b, &(0x7f0000000000)={0x1, 0x8, 0x7c0})
syz_open_dev$vcsa(&(0x7f0000000080), 0x951, 0x400)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x40505330, &(0x7f00000004c0)={0x800100, 0xfffffffd, 0x0, 0x8, 0x9, 0x6})
rt_sigaction(0x12, &(0x7f0000000380)={&(0x7f0000000280)="64460f18496f66f344e19f669b8048028b86f9c4837bf0948f3f10fd3716400f9e6700c42279db53ee643666470f38dc7200363c3e", 0xc0000004, &(0x7f00000002c0)="8f298801950f000000e601f347dde8f081125520da9bc4216dd109f20f2dd0f30f2dab00000000c4818559cec44179e3ca64490fae6e79", {[0x2c63]}}, 0x0, 0x8, &(0x7f0000000480))

4.753335361s ago: executing program 1 (id=513):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x3})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

4.667708245s ago: executing program 3 (id=502):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

4.56419882s ago: executing program 4 (id=503):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010300000100f1dbdf2526"], 0x14}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x40c4}, 0x20040840)

4.497636172s ago: executing program 5 (id=504):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r3=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3}, 0x80)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0xc0)

4.356074829s ago: executing program 1 (id=505):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
modify_ldt$write(0x1, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r3 = syz_open_pts(r2, 0x0)
dup3(r2, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000140)=[{r2}], 0x1, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x3)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)

4.152418278s ago: executing program 3 (id=506):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
timer_create(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\n\x00'], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
timer_delete(0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
poll(0x0, 0x0, 0x7)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0}, 0x18)
syz_emit_ethernet(0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000001a21428c6c08586dd61bcc1"], 0x0)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)

4.064150617s ago: executing program 4 (id=507):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$fou(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000a00)=ANY=[], 0x6c}}, 0x24008840)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000500)='westwood\x00', 0x9)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000840)="89000000120081ae08060cdc030000fe7f03c00e000000000001ffca1b1f0000000024c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00150c00014003080c00bdad446b31007a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947e", 0x75}, {&(0x7f0000000440)="addbecc8f7b208308a885c89ede411d6cb557c84", 0x14}], 0x2}, 0x4000000)

3.572040086s ago: executing program 5 (id=508):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0xc}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r5, {0x1, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)

3.57168501s ago: executing program 4 (id=509):
ioctl$BLKRASET(0xffffffffffffffff, 0x1262, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x90}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40004}, 0x4000)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfa, {0x0, 0x0, 0x0, r4, {0x0, 0x2}, {}, {0x7, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x2c, 0x2, [@TCA_FLOWER_KEY_CT_LABELS={0x14, 0x61, "c92ad6ab8055fe39a5a9615d5ba410de"}, @TCA_FLOWER_KEY_CT_LABELS_MASK={0x14, 0x62, "988f88d52ae2aa1e44f0e5686a8da5d9"}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24000810}, 0x20084084)

2.998517159s ago: executing program 1 (id=510):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd)

2.873447984s ago: executing program 3 (id=511):
r0 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xffff8001}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r5, 0x0, 0x7f}, 0x18)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f0000002240)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, <r7=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r5, 0xc4089434, &(0x7f0000000a00)={<r8=>0x0, 0x2, 0x0, [0xffffffffffffffc9, 0x6, 0x9, 0x1, 0x10000], [0x4d4c3dad, 0x9, 0x3, 0xfffffffffffffffc, 0x8, 0x1, 0xf, 0xd, 0x3, 0x2, 0x5, 0x85d, 0xabbd, 0x2, 0x1, 0x1, 0x100000000000000, 0xffffffffffffffff, 0x10, 0x2, 0x7f03, 0x2ad5, 0x10000, 0x7f, 0x80000001, 0x8, 0x7, 0xd7, 0x5dd, 0x3ff, 0xffffffffffff8001, 0x8000000000000000, 0x0, 0x4, 0x65800000000, 0x1ff, 0x6, 0x1, 0x3, 0x8304, 0x9, 0x7, 0x7fff, 0x1, 0xc3, 0x40, 0x9, 0x1, 0x100000000, 0x1, 0x5, 0x1000, 0xb2e, 0x44a7, 0x6, 0x2, 0x1ff, 0x1, 0x9, 0x2, 0x8, 0xffffffffffffffff, 0x32, 0x6, 0x8000, 0x6, 0x200, 0xf, 0x28000000, 0x2, 0x100000001, 0x7, 0x2, 0x7, 0x8, 0x1, 0x1, 0x3, 0xfffffffffffffffe, 0xc, 0xf, 0x7, 0xffffffffffffffff, 0x6, 0x8001, 0x5, 0x2, 0x97, 0x0, 0x8, 0x4, 0x1, 0x4, 0xff, 0x5cc, 0x5, 0x1, 0xd5, 0xb, 0x2, 0x5, 0xff, 0x9, 0xaf50000000000000, 0x3ff, 0x2, 0x4, 0x3611aa3f, 0x2, 0xff, 0x9, 0x1, 0x10001, 0x7, 0x6, 0xd0, 0xa2f3, 0x7, 0x4, 0x7fffffff800000, 0x7644]})
ioctl$BTRFS_IOC_DEV_INFO(r6, 0xd000941e, &(0x7f0000000e40)={<r9=>0x0, "614f493241ccd82ce6ed01cbf32415c2"})
ioctl$BTRFS_IOC_BALANCE_V2(r5, 0xc4009420, &(0x7f0000001e40)={0x18, 0x2, {0x448b, @struct={0xd8ae, 0x8001}, r7, 0xb, 0xfffffffffffffffe, 0x3, 0x1, 0x2, 0x48, @struct={0x8, 0x3}, 0x2, 0x7, [0x92, 0x7, 0x2, 0x5, 0x4, 0x3]}, {0x2, @usage=0x8000000000000000, r8, 0x2a, 0xfffffffffffffffe, 0x1, 0xb0000, 0x4, 0x8, @struct={0x5, 0x6a92}, 0xffffff02, 0x7, [0x1, 0xba8c, 0x7, 0xe100, 0x0, 0x44]}, {0x1, @usage=0x3, r9, 0x6, 0x1, 0x0, 0x6, 0x80000001, 0x0, @struct={0x81}, 0x2, 0x1, [0x3, 0x40, 0xe000000, 0x9, 0x7, 0x4]}, {0x0, 0x40, 0x5}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, &(0x7f0000001040)={r7, 0x401, 0x0, [0x3ff, 0x200, 0x1ff, 0x2, 0x6], [0xffff, 0x0, 0x5e, 0xfffffffffffffffc, 0x40, 0x9de, 0xb, 0x10000, 0x0, 0x6b, 0x7, 0xffffffffffffffc0, 0x9, 0x101, 0xf, 0x8, 0x10001, 0x8000, 0x2972, 0x1000, 0x1e, 0x4, 0x3d, 0xfffffffffffffff9, 0x10000, 0x9, 0x0, 0x7fffffff, 0x1, 0x0, 0x0, 0x1, 0x5, 0x0, 0xacf, 0x9, 0x903, 0x3, 0x50b, 0x236, 0x6, 0x4, 0xc, 0x5, 0x7, 0xc4, 0x5, 0x3, 0x0, 0x2, 0xffffffff, 0x8, 0x0, 0x9, 0x4, 0x8420, 0x7, 0x7, 0x401, 0x800, 0x1, 0xfff, 0x8000000000000000, 0xfffffffffffffffb, 0x3b5, 0x9, 0x2e5, 0x6, 0x200, 0x9c18, 0x3, 0x3, 0x1, 0x9, 0x9e, 0x1, 0x29, 0xc, 0x7, 0x7, 0x2, 0xffffffffffffeee9, 0x9, 0x0, 0x101, 0x10, 0x8000000000000000, 0x6, 0x0, 0x200, 0x6, 0x8a, 0x74, 0xd1fe, 0x7fff, 0x2, 0x5, 0x5, 0x100000000, 0xb, 0xba6e, 0x2, 0x74, 0xa, 0x117d, 0x6369, 0x0, 0x84e8, 0x9, 0x800, 0x101, 0x700000000000000, 0x8, 0x8, 0x8, 0x3, 0x9, 0x0, 0x80, 0x2, 0x4]})
r10 = socket(0x2, 0x80805, 0x40000000)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r11}, 0x10)
sendmmsg$inet(r10, 0x0, 0x0, 0x0)

2.610820814s ago: executing program 5 (id=512):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000000)={0x0, 0x5, 0x80, 0x3, 0x0, 0x0, 0x0})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, 0x0})

2.576064411s ago: executing program 2 (id=514):
r0 = semget$private(0x0, 0x6, 0x0)
semop(r0, &(0x7f00000000c0)=[{0x4}, {0x2}], 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="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"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
msync(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2)
semop(r0, &(0x7f0000001240)=[{0x2, 0x102}, {0x0, 0x0, 0x2000}], 0x2)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
write$binfmt_aout(r3, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r3, 0x540a, 0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740)="3fdd61000000000000a4401c0a22bdd69b8c4d7b0a47d17ecf68c261484f65e39b457c8688", 0x1, r4}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r5)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
r7 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000340), 0x800, 0x0)
ioctl$RTC_WIE_OFF(r7, 0x7010)
r8 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
readv(r4, &(0x7f0000000380)=[{&(0x7f0000000440)=""/117, 0x75}], 0x1)
write$binfmt_register(r8, &(0x7f0000000300)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x6000000000000000, 0x3a, '\x00', 0x3a, '/dev/ptmx\x00', 0x3a, './file0', 0x3a, [0x46, 0x46, 0x50, 0x4f, 0x43, 0x46, 0x43]}, 0x39)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r9=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="20002ec34b57b702dd212f51c36ab18ebb6fbd5da0a7051d709e77bd40c51d2c03c25f2038c0be2abe908d0940f3ca1238f6f3b1907f26daf22e9f3d972c519d984e3dd747975af353cbc380a0f7101b9c1e", @ANYRES32=r9], 0x20, 0x2400e04c}, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100))

2.530932133s ago: executing program 1 (id=515):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f00000003c0))
socket$inet6(0xa, 0x80000, 0x10000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mremap(&(0x7f000000a000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c4300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', 0xe02, 0x1c0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r5, r4, 0x0, 0x3a)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f00000001c0), 0x12)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r8, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)

2.470761999s ago: executing program 0 (id=516):
io_setup(0x3fe, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x3, &(0x7f0000000080)=0x7fff, 0x4)
syz_emit_ethernet(0x46, &(0x7f0000000200)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x4, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0)

2.436423707s ago: executing program 4 (id=517):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
read$eventfd(r1, 0x0, 0x0)

2.116245863s ago: executing program 3 (id=518):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x9, 0x3, 0x8, 0x4, 0x2}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000d80)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'lblcr\x00', 0x15, 0x88, 0xc000067}, 0x2c)

2.116054917s ago: executing program 5 (id=519):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, 0x0)

1.202511392s ago: executing program 1 (id=520):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10, 0x0}, 0x0)
pselect6(0x40, &(0x7f0000003800)={0x3, 0x6, 0x8, 0x1, 0x4, 0x1, 0x5, 0x7}, 0x0, &(0x7f0000003880)={0x9, 0x3, 0xfffffffffffffffe, 0x8, 0xfffffffffffffc00, 0x8000000000000000, 0x0, 0x5}, &(0x7f00000038c0)={0x0, 0x989680}, 0x0)
clock_gettime(0x0, &(0x7f00000002c0)={<r2=>0x0, <r3=>0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000400000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r4}, 0x10)
ustat(0x801, &(0x7f0000000240))
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000040)={0x1f, 0x1, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0xe)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000cc0)=@newtaction={0xa4, 0x30, 0x216822a75a8bdd29, 0x0, 0x0, {}, [{0x90, 0x1, [@m_skbmod={0x5c, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x1}, @TCA_SKBMOD_PARMS={0x24}]}, {0x4}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}}, 0x4000)
getsockopt$bt_BT_CHANNEL_POLICY(r5, 0x112, 0x4, 0x0, &(0x7f0000000080))
pselect6(0x40, &(0x7f00000003c0)={0x4, 0xc, 0x76, 0x7, 0x7ac9, 0x1, 0x214, 0x7fffffffffffffff}, &(0x7f0000000040)={0x8, 0xbb8, 0x8, 0x8000000000000001, 0x106a, 0xfffffffffffffffd, 0xffffffffffffffff, 0x7fffffff}, &(0x7f0000000140)={0x1, 0x6, 0x9, 0xa, 0x1, 0x9, 0x0, 0x7fff}, &(0x7f0000000300)={r2, r3+60000000}, &(0x7f0000000380)={&(0x7f0000000340)={[0xe4]}, 0x8})
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf250401f2800c00180008ac0f0000000100140001"], 0x114}], 0x1, 0x0, 0x0, 0x20000001}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x490, &(0x7f0000000580)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x2, &(0x7f0000000000)=[{0x8f, 0x5, 0xff, 0x1}, {0xfff3, 0x1, 0x7, 0x2}]})
r8 = open(&(0x7f00000000c0)='./file1\x00', 0x14927e, 0x6)
fallocate(r8, 0x0, 0x0, 0x1001f0)
fallocate(r8, 0x8, 0x0, 0x10000)

1.124357265s ago: executing program 0 (id=521):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f0000000100)={'fscrypt:', @desc4}, &(0x7f00000002c0)={0x0, "9ca226c9feba6997f180ce817932fa021170f02a10fa6e657dfff1793d69f8875616c7091a45d69ed537865040bc7bb5c7c68f8115ac6808db18b137c6d49acc", 0x16}, 0x48, 0xffffffffffffffff)

1.000052686s ago: executing program 4 (id=522):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
openat$nci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)

891.440729ms ago: executing program 5 (id=523):
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000080)='./file2\x00', 0x1808004, &(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYRES64], 0x4, 0x7cc, &(0x7f0000002200)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000640)=ANY=[@ANYBLOB="20000000020000001d"], 0x202400)

756.739747ms ago: executing program 3 (id=524):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x3e)

713.203784ms ago: executing program 0 (id=525):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, &(0x7f0000000000)=ANY=[], 0xb0)
syz_emit_ethernet(0x4a, &(0x7f0000000140)={@local, @random="1bcd7b1bb89f", @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0200", 0x14, 0x6, 0xff, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

642.246265ms ago: executing program 2 (id=526):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
add_key$keyring(&(0x7f0000000140), 0x0, 0x0, 0xfffff, 0x0)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x4030582a, &(0x7f00000001c0)={0x1, 0x8, 0x6b, 0x401, 0x6b, 0x7})
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x2}, 0x2, r1}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

494.086386ms ago: executing program 3 (id=527):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x200000a, 0x13, r0, 0x0)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r1, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
ptrace(0x10, r2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
open(0x0, 0x60840, 0x0)
pipe2$9p(0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
dup(0xffffffffffffffff)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_LIST(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
getsockopt$SO_TIMESTAMP(r4, 0x1, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r3, 0x84, 0x16, &(0x7f0000000080)={0x1, [0x5]}, &(0x7f00000000c0)=0x6)
bind$inet(r3, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r3, 0x0, 0x0, 0x200000000000000, 0x0)
sendto$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0)

336.546651ms ago: executing program 0 (id=528):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r0, &(0x7f00000001c0)='/', 0x1, 0x8000, 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x2, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
sendto(r0, &(0x7f0000000300)="50fb", 0x2, 0xc1, 0x0, 0x0)

216.703731ms ago: executing program 5 (id=529):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000007c0)={{r0}, &(0x7f0000000740), &(0x7f0000000780)='%+9llu \x00'}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000940)={{r0}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x20, &(0x7f0000000200)="df33c9f7b9a60000000000002000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bea100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001fc0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x1, 0x8, 0x9}, 0x10, 0xffffffffffffffff, r4, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x11, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a603f00000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r3], 0x4c}}, 0x0)

215.847228ms ago: executing program 2 (id=530):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000540)='.log\x00', 0x1c10c1, 0x9c37611dc13d0db7)
fchown(r1, 0x0, 0xee01)

0s ago: executing program 0 (id=531):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000ffff000000007200ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.241' (ED25519) to the list of known hosts.
[  101.401314][  T974] cfg80211: failed to load regulatory.db
[  102.415100][ T5847] cgroup: Unknown subsys name 'net'
[  102.573977][ T5847] cgroup: Unknown subsys name 'cpuset'
[  102.583821][ T5847] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  104.272787][ T5847] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  107.325969][ T5867] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  107.341744][ T5878] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  107.354977][ T5880] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  107.363499][ T5880] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  107.372209][ T5880] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  107.380938][ T5880] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  107.389408][ T5880] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  107.397543][ T5880] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  107.424920][ T5880] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  107.433606][ T5880] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  107.441975][ T5880] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  107.450528][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  107.453441][ T5881] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  107.457719][   T51] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  107.466762][ T5882] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  107.472984][   T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  107.490533][ T5880] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.498508][   T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  107.510533][ T5880] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  107.512687][ T5884] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  107.518075][   T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  107.525558][ T5884] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  107.532272][ T5880] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  107.550260][ T5884] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  107.554697][ T5880] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  107.558089][ T5884] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  107.580195][ T5878] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  107.588416][ T5878] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  107.596643][ T5880] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  107.610105][ T5867] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  108.327193][ T5872] chnl_net:caif_netlink_parms(): no params data found
[  108.421017][ T5865] chnl_net:caif_netlink_parms(): no params data found
[  108.568879][ T5864] chnl_net:caif_netlink_parms(): no params data found
[  108.725039][ T5874] chnl_net:caif_netlink_parms(): no params data found
[  108.894908][ T5872] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.903738][ T5872] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.912007][ T5872] bridge_slave_0: entered allmulticast mode
[  108.920157][ T5872] bridge_slave_0: entered promiscuous mode
[  108.956846][ T5864] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.964262][ T5864] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.971490][ T5864] bridge_slave_0: entered allmulticast mode
[  108.979681][ T5864] bridge_slave_0: entered promiscuous mode
[  108.988698][ T5865] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.995856][ T5865] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.003226][ T5865] bridge_slave_0: entered allmulticast mode
[  109.010779][ T5865] bridge_slave_0: entered promiscuous mode
[  109.019533][ T5865] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.026671][ T5865] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.034133][ T5865] bridge_slave_1: entered allmulticast mode
[  109.041691][ T5865] bridge_slave_1: entered promiscuous mode
[  109.048888][ T5872] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.056293][ T5872] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.063974][ T5872] bridge_slave_1: entered allmulticast mode
[  109.071903][ T5872] bridge_slave_1: entered promiscuous mode
[  109.105546][ T5864] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.112890][ T5864] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.120532][ T5864] bridge_slave_1: entered allmulticast mode
[  109.128080][ T5864] bridge_slave_1: entered promiscuous mode
[  109.142568][ T5870] chnl_net:caif_netlink_parms(): no params data found
[  109.185384][ T5868] chnl_net:caif_netlink_parms(): no params data found
[  109.320525][ T5864] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.333862][ T5864] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.355285][ T5865] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.368494][ T5865] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.381382][ T5872] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.442984][ T5874] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.450265][ T5874] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.457404][ T5874] bridge_slave_0: entered allmulticast mode
[  109.465724][ T5874] bridge_slave_0: entered promiscuous mode
[  109.480321][ T5867] Bluetooth: hci1: command tx timeout
[  109.542263][ T5872] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.557826][ T5874] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.565028][ T5867] Bluetooth: hci0: command tx timeout
[  109.569687][ T5867] Bluetooth: hci5: command tx timeout
[  109.571586][ T5874] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.583601][ T5874] bridge_slave_1: entered allmulticast mode
[  109.591945][ T5874] bridge_slave_1: entered promiscuous mode
[  109.633571][ T5864] team0: Port device team_slave_0 added
[  109.648796][ T5865] team0: Port device team_slave_0 added
[  109.654939][ T5867] Bluetooth: hci4: command tx timeout
[  109.662605][ T5865] team0: Port device team_slave_1 added
[  109.719330][ T5867] Bluetooth: hci3: command tx timeout
[  109.729329][ T5867] Bluetooth: hci2: command tx timeout
[  109.730358][ T5874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.746749][ T5864] team0: Port device team_slave_1 added
[  109.793053][ T5872] team0: Port device team_slave_0 added
[  109.835898][ T5874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.868865][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.875883][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.902302][ T5865] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.916060][ T5872] team0: Port device team_slave_1 added
[  109.922360][ T5868] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.929842][ T5868] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.937207][ T5868] bridge_slave_0: entered allmulticast mode
[  109.946105][ T5868] bridge_slave_0: entered promiscuous mode
[  110.015956][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.023051][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.050040][ T5865] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.075922][ T5868] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.083227][ T5868] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.090526][ T5868] bridge_slave_1: entered allmulticast mode
[  110.098072][ T5868] bridge_slave_1: entered promiscuous mode
[  110.136776][ T5864] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.143891][ T5864] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.169924][ T5864] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.183364][ T5864] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.191032][ T5864] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.216984][ T5864] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.228219][ T5870] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.235434][ T5870] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.242749][ T5870] bridge_slave_0: entered allmulticast mode
[  110.251011][ T5870] bridge_slave_0: entered promiscuous mode
[  110.302110][ T5874] team0: Port device team_slave_0 added
[  110.311606][ T5868] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.328251][ T5870] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.337348][ T5870] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.344876][ T5870] bridge_slave_1: entered allmulticast mode
[  110.353771][ T5870] bridge_slave_1: entered promiscuous mode
[  110.378633][ T5872] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.385629][ T5872] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.411953][ T5872] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.425359][ T5872] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.432611][ T5872] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.458651][ T5872] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.472173][ T5874] team0: Port device team_slave_1 added
[  110.489578][ T5868] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.629241][ T5870] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.647502][ T5865] hsr_slave_0: entered promiscuous mode
[  110.654172][ T5865] hsr_slave_1: entered promiscuous mode
[  110.696891][ T5864] hsr_slave_0: entered promiscuous mode
[  110.705401][ T5864] hsr_slave_1: entered promiscuous mode
[  110.711937][ T5864] debugfs: 'hsr0' already exists in 'hsr'
[  110.717706][ T5864] Cannot create hsr debugfs directory
[  110.726562][ T5870] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.768590][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.775630][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.802325][ T5874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.815976][ T5868] team0: Port device team_slave_0 added
[  110.825387][ T5868] team0: Port device team_slave_1 added
[  110.854927][ T5872] hsr_slave_0: entered promiscuous mode
[  110.861945][ T5872] hsr_slave_1: entered promiscuous mode
[  110.868133][ T5872] debugfs: 'hsr0' already exists in 'hsr'
[  110.874024][ T5872] Cannot create hsr debugfs directory
[  110.880871][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.887808][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.938327][ T5874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.030200][ T5870] team0: Port device team_slave_0 added
[  111.114472][ T5870] team0: Port device team_slave_1 added
[  111.183932][ T5868] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.191091][ T5868] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.217269][ T5868] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.263423][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.270546][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.296608][ T5870] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.311094][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.318033][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.344809][ T5870] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.379403][ T5868] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.386353][ T5868] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.412401][ T5868] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.475335][ T5874] hsr_slave_0: entered promiscuous mode
[  111.482455][ T5874] hsr_slave_1: entered promiscuous mode
[  111.488659][ T5874] debugfs: 'hsr0' already exists in 'hsr'
[  111.495264][ T5874] Cannot create hsr debugfs directory
[  111.559552][ T5867] Bluetooth: hci1: command tx timeout
[  111.639312][ T5871] Bluetooth: hci0: command tx timeout
[  111.644892][ T5867] Bluetooth: hci5: command tx timeout
[  111.719265][ T5867] Bluetooth: hci4: command tx timeout
[  111.799229][ T5867] Bluetooth: hci2: command tx timeout
[  111.802742][ T5868] hsr_slave_0: entered promiscuous mode
[  111.804657][ T5867] Bluetooth: hci3: command tx timeout
[  111.817079][ T5868] hsr_slave_1: entered promiscuous mode
[  111.823410][ T5868] debugfs: 'hsr0' already exists in 'hsr'
[  111.829232][ T5868] Cannot create hsr debugfs directory
[  111.847854][ T5870] hsr_slave_0: entered promiscuous mode
[  111.855344][ T5870] hsr_slave_1: entered promiscuous mode
[  111.861647][ T5870] debugfs: 'hsr0' already exists in 'hsr'
[  111.867367][ T5870] Cannot create hsr debugfs directory
[  112.227075][ T5865] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  112.242355][ T5865] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  112.260779][ T5865] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  112.304765][ T5865] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  112.471883][ T5864] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  112.491494][ T5864] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  112.504926][ T5864] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  112.516651][ T5864] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  112.654990][ T5872] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  112.668434][ T5872] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  112.705373][ T5872] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  112.756519][ T5872] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  112.847581][ T5874] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  112.886047][ T5874] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  112.897596][ T5874] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  112.909715][ T5874] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  112.974084][ T5865] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.996710][ T5868] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  113.008757][ T5868] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  113.021140][ T5868] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  113.034851][ T5868] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  113.057788][ T5864] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.145501][ T5865] 8021q: adding VLAN 0 to HW filter on device team0
[  113.197502][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.204941][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.232540][ T5870] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  113.268191][ T2965] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.275356][ T2965] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.288102][ T5870] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  113.304590][ T5864] 8021q: adding VLAN 0 to HW filter on device team0
[  113.336013][ T5870] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  113.348678][ T2965] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.355820][ T2965] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.395021][ T5870] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  113.438953][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.446121][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.641376][ T5871] Bluetooth: hci1: command tx timeout
[  113.688490][ T5872] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.721141][ T5871] Bluetooth: hci5: command tx timeout
[  113.725651][ T5867] Bluetooth: hci0: command tx timeout
[  113.794119][ T5868] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.802085][ T5867] Bluetooth: hci4: command tx timeout
[  113.880752][ T5867] Bluetooth: hci3: command tx timeout
[  113.880767][ T5871] Bluetooth: hci2: command tx timeout
[  113.902078][ T5872] 8021q: adding VLAN 0 to HW filter on device team0
[  113.931985][ T5874] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.957751][ T2965] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.964917][ T2965] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.035905][ T5870] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.062855][ T5868] 8021q: adding VLAN 0 to HW filter on device team0
[  114.103207][ T2999] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.110430][ T2999] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.123586][ T2999] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.130790][ T2999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.175617][ T2999] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.182811][ T2999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.208452][ T5874] 8021q: adding VLAN 0 to HW filter on device team0
[  114.235460][ T5870] 8021q: adding VLAN 0 to HW filter on device team0
[  114.265538][ T2999] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.272682][ T2999] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.316395][ T2999] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.323554][ T2999] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.334606][ T2999] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.341757][ T2999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.387696][ T5865] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.422955][ T2999] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.430191][ T2999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.471537][ T5864] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.893676][ T5864] veth0_vlan: entered promiscuous mode
[  114.978617][ T5864] veth1_vlan: entered promiscuous mode
[  115.172130][ T5864] veth0_macvtap: entered promiscuous mode
[  115.238577][ T5864] veth1_macvtap: entered promiscuous mode
[  115.367071][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.458727][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.516346][ T5872] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.528614][ T5865] veth0_vlan: entered promiscuous mode
[  115.568784][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.580899][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.608015][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.657038][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.677112][ T5874] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.689071][ T5865] veth1_vlan: entered promiscuous mode
[  115.718906][ T5868] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.723801][ T5871] Bluetooth: hci1: command tx timeout
[  115.808300][ T5870] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.808681][ T5871] Bluetooth: hci0: command tx timeout
[  115.816187][ T5867] Bluetooth: hci5: command tx timeout
[  115.879736][ T5867] Bluetooth: hci4: command tx timeout
[  115.960439][ T5867] Bluetooth: hci3: command tx timeout
[  115.960646][ T5871] Bluetooth: hci2: command tx timeout
[  115.976538][ T2983] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.013949][ T2983] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.078405][ T5868] veth0_vlan: entered promiscuous mode
[  116.103448][ T5868] veth1_vlan: entered promiscuous mode
[  116.152376][ T5865] veth0_macvtap: entered promiscuous mode
[  116.196408][ T5874] veth0_vlan: entered promiscuous mode
[  116.207461][ T5865] veth1_macvtap: entered promiscuous mode
[  116.209360][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.225374][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.258885][ T5870] veth0_vlan: entered promiscuous mode
[  116.285415][ T5868] veth0_macvtap: entered promiscuous mode
[  116.296881][ T5868] veth1_macvtap: entered promiscuous mode
[  116.314996][ T5874] veth1_vlan: entered promiscuous mode
[  116.356767][ T5864] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  116.376848][ T5870] veth1_vlan: entered promiscuous mode
[  116.404053][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.417208][ T5868] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.431277][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.503876][ T5868] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.537144][ T5872] veth0_vlan: entered promiscuous mode
[  116.552563][ T5872] veth1_vlan: entered promiscuous mode
[  116.588556][ T5872] veth0_macvtap: entered promiscuous mode
[  116.610946][ T5872] veth1_macvtap: entered promiscuous mode
[  116.640938][ T2965] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.656031][ T2965] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.726257][ T5874] veth0_macvtap: entered promiscuous mode
[  116.768499][ T2965] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.824285][ T5874] veth1_macvtap: entered promiscuous mode
[  116.855390][ T2965] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.864588][ T2965] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.306546][ T5872] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.314860][ T2965] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.326197][ T2965] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.417092][ T5872] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.439769][ T2965] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.512164][ T5870] veth0_macvtap: entered promiscuous mode
[  117.558627][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.576537][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.586706][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.611194][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.669864][ T5870] veth1_macvtap: entered promiscuous mode
[  117.677034][ T2965] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.687185][ T2965] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.700319][ T2965] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.756633][   T74] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.772339][   T74] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.847758][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.868812][   T74] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.886301][   T74] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.901078][   T74] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.920508][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.928339][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.982034][ T2983] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.011117][ T2983] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.019871][ T6016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8'.
[  118.081024][    C0] vcan0: j1939_session_tx_dat: 0xffff888051646400: queue data error: -100
[  118.136960][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.337715][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.354116][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.363859][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.383772][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.447927][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.461282][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  118.485690][ T2999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.497619][ T2999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.569234][ T2999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.577076][ T2999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.682713][ T2999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.719220][ T2999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.751918][   T30] audit: type=1326 audit(1757677020.595:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6021 comm="syz.4.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0cf58eba9 code=0x7ffc0000
[  118.815898][ T6025] loop2: detected capacity change from 0 to 1024
[  118.822539][   T30] audit: type=1326 audit(1757677020.615:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6021 comm="syz.4.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7fc0cf58eba9 code=0x7ffc0000
[  118.848550][ T6025] =======================================================
[  118.848550][ T6025] WARNING: The mand mount option has been deprecated and
[  118.848550][ T6025]          and is ignored by this kernel. Remove the mand
[  118.848550][ T6025]          option from the mount to silence this warning.
[  118.848550][ T6025] =======================================================
[  118.909425][   T30] audit: type=1326 audit(1757677020.615:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6021 comm="syz.4.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0cf58eba9 code=0x7ffc0000
[  118.938098][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.955934][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.030299][   T30] audit: type=1326 audit(1757677020.625:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6021 comm="syz.4.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0cf58eba9 code=0x7ffc0000
[  119.133258][ T6025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.291208][   T30] audit: type=1800 audit(1757677021.125:6): pid=6025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3" name="file1" dev="loop2" ino=15 res=0 errno=0
[  119.317202][ T2965] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.399875][ T2965] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.651960][ T6025] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4182: comm syz.2.3: Allocating blocks 497-513 which overlap fs metadata
[  119.678495][ T6025] EXT4-fs (loop2): pa ffff888075de3ae0: logic 32, phys. 161, len 22
[  119.687073][ T6025] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5433: group 0, free 0, pa_free 1
[  119.796762][ T6043] netlink: 24 bytes leftover after parsing attributes in process `syz.5.14'.
[  119.797265][ T2999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.841700][ T2999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.854173][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.823581][ T6056] loop2: detected capacity change from 0 to 2048
[  120.868227][   T30] audit: type=1326 audit(1757677022.715:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6057 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  120.968233][ T6059] capability: warning: `syz.3.4' uses deprecated v2 capabilities in a way that may be insecure
[  121.002665][   T30] audit: type=1326 audit(1757677022.785:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6057 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  121.081992][   T30] audit: type=1326 audit(1757677022.785:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6057 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  121.106038][   T30] audit: type=1326 audit(1757677022.805:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6057 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  121.128931][   T30] audit: type=1326 audit(1757677022.805:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6057 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  121.160537][ T6056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  121.247287][ T6070] loop4: detected capacity change from 0 to 128
[  121.419843][ T6072] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  121.492366][ T6070] FAT-fs (loop4): Directory bread(block 32) failed
[  121.506997][ T6072] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 206 with error 28
[  121.513561][ T6070] FAT-fs (loop4): Directory bread(block 33) failed
[  121.533400][ T6070] FAT-fs (loop4): Directory bread(block 34) failed
[  121.578612][ T6070] FAT-fs (loop4): Directory bread(block 35) failed
[  121.586632][ T6070] FAT-fs (loop4): Directory bread(block 36) failed
[  121.598271][ T6070] FAT-fs (loop4): Directory bread(block 37) failed
[  121.600593][ T6072] EXT4-fs (loop2): This should not happen!! Data will be lost
[  121.600593][ T6072] 
[  121.652545][ T6072] EXT4-fs (loop2): Total free blocks count 0
[  121.658575][ T6072] EXT4-fs (loop2): Free/Dirty block details
[  121.666615][ T6070] FAT-fs (loop4): Directory bread(block 38) failed
[  121.718142][ T6070] FAT-fs (loop4): Directory bread(block 39) failed
[  121.725270][ T6072] EXT4-fs (loop2): free_blocks=2415919104
[  121.749381][ T6072] EXT4-fs (loop2): dirty_blocks=208
[  121.766358][ T6072] EXT4-fs (loop2): Block reservation details
[  121.769265][ T6070] FAT-fs (loop4): Directory bread(block 40) failed
[  121.804969][ T6083] loop3: detected capacity change from 0 to 512
[  121.809208][ T6070] FAT-fs (loop4): Directory bread(block 41) failed
[  121.829313][ T6072] EXT4-fs (loop2): i_reserved_data_blocks=13
[  121.842163][ T6083] ext4: Unknown parameter 'defcontext'
[  122.034042][ T6083] netlink: 52 bytes leftover after parsing attributes in process `syz.3.24'.
[  122.487594][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  122.936485][ T6099] loop2: detected capacity change from 0 to 512
[  123.201227][ T6099] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.368674][ T6099] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.804831][ T6108] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.805948][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.903453][ T6116] bond0: entered promiscuous mode
[  123.908514][ T6116] bond_slave_0: entered promiscuous mode
[  123.962363][ T6116] bond_slave_1: entered promiscuous mode
[  124.144231][ T6108] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.181283][ T6129] Zero length message leads to an empty skb
[  124.222026][ T6125] loop2: detected capacity change from 0 to 2048
[  124.383930][ T6133] loop4: detected capacity change from 0 to 1024
[  124.512207][ T6133] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  124.606860][ T6133] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:482: comm syz.4.42: Invalid block bitmap block 0 in block_group 0
[  124.624408][ T6133] __quota_error: 8 callbacks suppressed
[  124.624440][ T6133] Quota error (device loop4): write_blk: dquota write failed
[  124.638000][ T6133] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  124.648470][ T6133] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.42: Failed to acquire dquot type 0
[  124.689842][ T6133] EXT4-fs error (device loop4): ext4_free_blocks:6695: comm syz.4.42: Freeing blocks not in datazone - block = 0, count = 4096
[  124.730009][ T6133] EXT4-fs error (device loop4): ext4_read_inode_bitmap:138: comm syz.4.42: Invalid inode bitmap blk 0 in block_group 0
[  124.790323][ T6133] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  124.805274][ T6133] EXT4-fs (loop4): 1 orphan inode deleted
[  124.828338][ T6133] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.082044][ T2999] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-8
[  125.276141][ T6128] loop5: detected capacity change from 0 to 1024
[  125.349365][ T2999] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 0
[  125.434037][ T6128] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.478756][ T6139] loop1: detected capacity change from 0 to 4096
[  125.528353][ T6139] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  125.581701][ T6139] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.839244][ T6125] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  125.869662][ T5872] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.905199][ T5864] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.925569][ T6108] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.126467][ T6146] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  126.211830][ T6108] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.232559][ T6146] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 176 with error 28
[  126.323660][ T6146] EXT4-fs (loop2): This should not happen!! Data will be lost
[  126.323660][ T6146] 
[  126.385017][ T6146] EXT4-fs (loop2): Total free blocks count 0
[  126.478702][ T6149] loop0: detected capacity change from 0 to 256
[  126.485780][ T6146] EXT4-fs (loop2): Free/Dirty block details
[  126.533506][ T6146] EXT4-fs (loop2): free_blocks=2415919104
[  126.561274][ T6149] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  126.592920][ T6146] EXT4-fs (loop2): dirty_blocks=192
[  126.632242][ T6146] EXT4-fs (loop2): Block reservation details
[  126.638239][ T6146] EXT4-fs (loop2): i_reserved_data_blocks=12
[  126.716152][ T6149] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  126.854940][ T6151] netlink: 4 bytes leftover after parsing attributes in process `syz.5.47'.
[  126.923480][ T2999] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.967818][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.028144][ T2999] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.158618][   T59] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.181123][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  127.957159][ T6108] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.986960][ T6181] loop1: detected capacity change from 0 to 512
[  128.106992][ T6181] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.142238][ T6181] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.176103][ T6108] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.255748][ T6181] EXT4-fs (loop1): shut down requested (0)
[  128.441329][ T6108] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.650232][ T6196] loop5: detected capacity change from 0 to 2048
[  128.672024][ T5864] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.751378][ T6196] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  128.782424][ T6198] syzkaller0: entered promiscuous mode
[  128.813241][ T6198] syzkaller0: entered allmulticast mode
[  128.901013][ T6208] loop0: detected capacity change from 0 to 512
[  128.980096][ T6208] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm wÞ¡ÿ: casefold flag without casefold feature
[  128.998108][ T6209] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  129.078121][ T6209] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 306 with error 28
[  129.091503][ T6208] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm wÞ¡ÿ: couldn't read orphan inode 15 (err -117)
[  129.138753][ T6208] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.159300][ T6209] EXT4-fs (loop5): This should not happen!! Data will be lost
[  129.159300][ T6209] 
[  129.191197][ T6209] EXT4-fs (loop5): Total free blocks count 0
[  129.209311][ T6209] EXT4-fs (loop5): Free/Dirty block details
[  129.218125][ T6208] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2847: Unable to expand inode 2. Delete some EAs or run e2fsck.
[  129.235183][ T6209] EXT4-fs (loop5): free_blocks=2415919104
[  129.264199][ T6209] EXT4-fs (loop5): dirty_blocks=320
[  129.278002][ T6209] EXT4-fs (loop5): Block reservation details
[  129.289658][ T6209] EXT4-fs (loop5): i_reserved_data_blocks=20
[  129.487972][ T5872] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  129.505527][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.959408][   T30] audit: type=1326 audit(1757677031.805:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.102322][   T30] audit: type=1326 audit(1757677031.815:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.166613][   T30] audit: type=1326 audit(1757677031.815:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.236706][   T30] audit: type=1326 audit(1757677031.815:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.345311][   T30] audit: type=1326 audit(1757677031.815:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.399497][   T30] audit: type=1326 audit(1757677031.815:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.444998][   T30] audit: type=1326 audit(1757677031.815:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.468191][   T30] audit: type=1326 audit(1757677031.815:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.500585][   T30] audit: type=1326 audit(1757677031.815:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  130.530660][   T30] audit: type=1326 audit(1757677031.835:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6225 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  131.400690][ T6255] netlink: 12 bytes leftover after parsing attributes in process `syz.3.81'.
[  131.976814][ T6260] loop3: detected capacity change from 0 to 2048
[  132.018349][ T6261] netlink: 24 bytes leftover after parsing attributes in process `syz.0.84'.
[  132.092127][ T6260] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  132.691718][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  133.243439][ T6296] loop4: detected capacity change from 0 to 128
[  134.007513][ T6313] loop3: detected capacity change from 0 to 2048
[  134.104778][ T6313] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  134.185095][ T6317] bond1: entered promiscuous mode
[  134.196275][ T5959] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[  134.220866][ T6317] bond1: entered allmulticast mode
[  134.235793][ T6317] 8021q: adding VLAN 0 to HW filter on device bond1
[  134.296155][ T6313] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  134.332225][ T6313] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 338 with error 28
[  134.345410][ T6313] EXT4-fs (loop3): This should not happen!! Data will be lost
[  134.345410][ T6313] 
[  134.360027][ T5959] usb 2-1: device descriptor read/64, error -71
[  134.395579][ T6313] EXT4-fs (loop3): Total free blocks count 0
[  134.418200][ T6313] EXT4-fs (loop3): Free/Dirty block details
[  134.450074][ T6313] EXT4-fs (loop3): free_blocks=2415919104
[  134.466284][ T6313] EXT4-fs (loop3): dirty_blocks=352
[  134.475581][ T6313] EXT4-fs (loop3): Block reservation details
[  134.502165][ T6313] EXT4-fs (loop3): i_reserved_data_blocks=22
[  134.989790][   T30] kauditd_printk_skb: 72 callbacks suppressed
[  134.989819][   T30] audit: type=1326 audit(1757677036.845:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f195ab8e7ab code=0x7ffc0000
[  135.129251][ T5959] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  135.151973][   T30] audit: type=1326 audit(1757677036.985:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f195ab8e7ab code=0x7ffc0000
[  135.179526][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  135.234297][   T30] audit: type=1326 audit(1757677036.995:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f195ab8e7ab code=0x7ffc0000
[  135.279231][ T5959] usb 2-1: device descriptor read/64, error -71
[  135.323783][   T30] audit: type=1326 audit(1757677036.995:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f195ab8e7ab code=0x7ffc0000
[  135.411050][ T5959] usb usb2-port1: attempt power cycle
[  135.436769][ T6317] bond1 (unregistering): Released all slaves
[  135.447523][   T30] audit: type=1326 audit(1757677037.075:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f195ab8e7ab code=0x7ffc0000
[  135.471414][ T6337] netlink: 12 bytes leftover after parsing attributes in process `syz.3.106'.
[  135.539217][   T30] audit: type=1326 audit(1757677037.265:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f195ab8e7ab code=0x7ffc0000
[  135.644772][   T30] audit: type=1326 audit(1757677037.275:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f195ab8e7ab code=0x7ffc0000
[  135.753228][   T30] audit: type=1326 audit(1757677037.285:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f195ab8e7ab code=0x7ffc0000
[  135.831387][   T30] audit: type=1326 audit(1757677037.355:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f195ab85b67 code=0x7ffc0000
[  135.948788][   T30] audit: type=1326 audit(1757677037.355:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6305 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f195ab2ada9 code=0x7ffc0000
[  136.572926][ T6363] loop0: detected capacity change from 0 to 2048
[  136.626712][ T6367] netlink: 4 bytes leftover after parsing attributes in process `syz.2.119'.
[  136.684663][ T6363] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  136.923672][ T6363] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  136.969434][ T6363] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28
[  137.392070][ T6363] EXT4-fs (loop0): This should not happen!! Data will be lost
[  137.392070][ T6363] 
[  137.624512][ T6363] EXT4-fs (loop0): Total free blocks count 0
[  137.664323][ T6363] EXT4-fs (loop0): Free/Dirty block details
[  137.687774][ T6363] EXT4-fs (loop0): free_blocks=2415919104
[  137.698122][ T6363] EXT4-fs (loop0): dirty_blocks=128
[  137.727198][ T6363] EXT4-fs (loop0): Block reservation details
[  137.771664][ T6363] EXT4-fs (loop0): i_reserved_data_blocks=8
[  137.973799][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  138.136452][ T6378] lo speed is unknown, defaulting to 1000
[  138.142590][ T6378] lo speed is unknown, defaulting to 1000
[  138.212380][ T6378] lo speed is unknown, defaulting to 1000
[  138.224377][ T6378] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  138.241120][ T6378] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  138.439899][ T6378] lo speed is unknown, defaulting to 1000
[  138.447840][ T6378] lo speed is unknown, defaulting to 1000
[  138.478358][ T6378] lo speed is unknown, defaulting to 1000
[  138.506260][ T6378] lo speed is unknown, defaulting to 1000
[  138.521021][ T6378] lo speed is unknown, defaulting to 1000
[  138.528745][ T6378] lo speed is unknown, defaulting to 1000
[  138.580271][ T6392] Falling back ldisc for ttyS3.
[  139.148184][ T6410] loop4: detected capacity change from 0 to 1024
[  139.232870][ T6417] loop2: detected capacity change from 0 to 128
[  139.239830][ T6410] EXT4-fs: Ignoring removed orlov option
[  139.325321][ T6410] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.649594][   T30] kauditd_printk_skb: 65 callbacks suppressed
[  140.649618][   T30] audit: type=1800 audit(1757677042.415:177): pid=6436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.134" name="file1" dev="loop2" ino=1048607 res=0 errno=0
[  140.832463][ T6433] loop3: detected capacity change from 0 to 2048
[  140.958717][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.991464][ T6433] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  141.096311][ T6448] netlink: 4 bytes leftover after parsing attributes in process `syz.2.139'.
[  141.144922][ T6452] netlink: 8 bytes leftover after parsing attributes in process `syz.1.142'.
[  141.171009][ T6448] openvswitch: netlink: Flow key attr not present in new flow.
[  141.482512][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  142.549441][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  142.555940][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  143.173403][ T6506] loop3: detected capacity change from 0 to 2048
[  143.214755][   T30] audit: type=1326 audit(1757677045.055:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  143.329458][   T30] audit: type=1326 audit(1757677045.055:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  143.363247][ T6503] syzkaller0: entered promiscuous mode
[  143.381767][ T6503] syzkaller0: entered allmulticast mode
[  143.396075][ T6506] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  143.478102][   T30] audit: type=1326 audit(1757677045.125:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  143.500984][   T30] audit: type=1326 audit(1757677045.125:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  143.525054][   T30] audit: type=1326 audit(1757677045.125:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  144.133869][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  144.184957][ T6526] loop1: detected capacity change from 0 to 1024
[  144.319827][ T6526] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.332548][ T6526] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.518963][ T6535] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.161: bg 0: block 393: padding at end of block bitmap is not set
[  144.643829][ T6535] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  144.679711][ T6535] EXT4-fs (loop1): This should not happen!! Data will be lost
[  144.679711][ T6535] 
[  144.694230][ T6535] EXT4-fs (loop1): Total free blocks count 0
[  144.714450][ T6535] EXT4-fs (loop1): Free/Dirty block details
[  144.758361][ T6535] EXT4-fs (loop1): free_blocks=0
[  144.779218][ T6535] EXT4-fs (loop1): dirty_blocks=16
[  144.806984][ T6535] EXT4-fs (loop1): Block reservation details
[  144.850490][ T6535] EXT4-fs (loop1): i_reserved_data_blocks=1
[  145.091902][ T5864] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.395145][   T30] audit: type=1326 audit(1757677047.245:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.1.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  145.438272][   T30] audit: type=1326 audit(1757677047.245:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.1.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  145.491037][   T30] audit: type=1326 audit(1757677047.245:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.1.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  145.528209][   T30] audit: type=1326 audit(1757677047.245:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.1.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  145.642235][ T6547] loop0: detected capacity change from 0 to 512
[  145.674670][ T6547] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  145.722760][ T6547] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  145.741661][ T6547] System zones: 0-2, 18-18, 34-34
[  145.764201][ T6547] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.793030][ T6547] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.927076][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.439859][ T6512] lo speed is unknown, defaulting to 1000
[  146.797592][ T6567] loop2: detected capacity change from 0 to 2048
[  147.003387][ T6567] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  147.484308][ T6577] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  147.754637][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  148.133484][   T30] audit: type=1326 audit(1757677049.985:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  148.223226][ T6607] netlink: 4 bytes leftover after parsing attributes in process `syz.3.188'.
[  148.270311][   T30] audit: type=1326 audit(1757677050.035:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  148.370438][   T30] audit: type=1326 audit(1757677050.045:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  148.472655][   T30] audit: type=1326 audit(1757677050.045:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  148.590955][   T30] audit: type=1326 audit(1757677050.045:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  148.632635][ T6613] openvswitch: netlink: Message has 8 unknown bytes.
[  148.707857][   T30] audit: type=1326 audit(1757677050.045:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  148.819570][ T6618] veth0_to_team: entered promiscuous mode
[  148.839172][   T30] audit: type=1326 audit(1757677050.045:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  148.938735][   T30] audit: type=1326 audit(1757677050.045:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  148.984560][   T30] audit: type=1326 audit(1757677050.055:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  149.175953][   T30] audit: type=1326 audit(1757677050.055:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.2.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  149.636844][ T6626] Bluetooth: MGMT ver 1.23
[  149.893123][ T6629] loop3: detected capacity change from 0 to 128
[  149.960532][ T6629] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  150.005338][ T6629] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  150.288745][ T6636] loop2: detected capacity change from 0 to 2048
[  150.378866][   T49] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  150.423238][ T6636] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  150.843578][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  151.236792][ T6652] loop2: detected capacity change from 0 to 512
[  151.277861][ T6652] ext4: Unknown parameter 'audit'
[  151.844955][ T6662] netlink: 4 bytes leftover after parsing attributes in process `syz.2.209'.
[  152.578897][ T6673] loop0: detected capacity change from 0 to 2048
[  152.661950][ T6673] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  153.018932][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  154.204860][ T6717] netlink: 24 bytes leftover after parsing attributes in process `syz.5.230'.
[  154.385923][ T6722] loop3: detected capacity change from 0 to 2048
[  154.461003][ T6722] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  154.539331][ T6727] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  155.000629][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  155.446714][ T6739] loop2: detected capacity change from 0 to 512
[  155.497007][ T6739] EXT4-fs: Ignoring removed nobh option
[  155.532594][ T6739] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  155.630168][ T6739] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.236: corrupted inode contents
[  155.711234][ T6739] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #3: comm syz.2.236: mark_inode_dirty error
[  155.830386][ T6739] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.236: corrupted inode contents
[  155.861218][ T6739] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.236: mark_inode_dirty error
[  155.865579][ T6739] __quota_error: 13 callbacks suppressed
[  155.865601][ T6739] Quota error (device loop2): write_blk: dquota write failed
[  155.866254][ T6739] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  155.866326][ T6739] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.236: Failed to acquire dquot type 0
[  155.945846][ T6739] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.236: corrupted inode contents
[  155.992014][ T6739] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.236: mark_inode_dirty error
[  156.039217][ T6739] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.236: corrupted inode contents
[  156.077852][ T6739] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.236: mark_inode_dirty error
[  156.145215][ T6739] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.236: corrupted inode contents
[  156.196690][ T6739] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  156.215725][ T6739] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.236: corrupted inode contents
[  156.243561][ T6739] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.236: mark_inode_dirty error
[  156.267291][ T6739] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  156.283376][ T6739] EXT4-fs (loop2): 1 truncate cleaned up
[  156.297683][ T6739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.312984][ T6739] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.354701][ T6739] EXT4-fs error (device loop2): ext4_empty_dir:3119: inode #12: block 13: comm syz.2.236: bad entry in directory: inode out of bounds - offset=24, inode=33554445, rec_len=16, size=4096 fake=0
[  156.677548][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.732391][   T12] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  156.788804][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  157.342214][ T6773] loop5: detected capacity change from 0 to 512
[  157.352141][   T30] audit: type=1326 audit(1757677059.205:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6775 comm="syz.3.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  157.405354][ T6773] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  157.468679][ T6773] EXT4-fs (loop5): 1 truncate cleaned up
[  157.479270][   T30] audit: type=1326 audit(1757677059.205:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6775 comm="syz.3.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  157.538221][ T6773] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.652319][   T30] audit: type=1326 audit(1757677059.255:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6775 comm="syz.3.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  157.801553][   T30] audit: type=1326 audit(1757677059.255:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6775 comm="syz.3.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  158.017006][   T30] audit: type=1326 audit(1757677059.255:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6775 comm="syz.3.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  158.272034][   T30] audit: type=1326 audit(1757677059.265:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6775 comm="syz.3.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  158.355453][   T30] audit: type=1326 audit(1757677059.525:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6775 comm="syz.3.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  158.384044][ T6796] loop4: detected capacity change from 0 to 1024
[  158.516856][ T6796] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.554558][ T5872] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.567000][ T6800] netlink: 12 bytes leftover after parsing attributes in process `syz.1.258'.
[  158.829881][ T6794] lo speed is unknown, defaulting to 1000
[  158.925533][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.094886][ T6836] loop1: detected capacity change from 0 to 256
[  160.162144][ T6836] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  160.254624][ T6836] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.273'.
[  160.728157][ T6843] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.898025][ T6853] loop0: detected capacity change from 0 to 512
[  160.987650][ T6853] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  161.071494][ T6853] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.118538][ T6853] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.524568][ T6843] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.591846][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.844050][ T6874] loop4: detected capacity change from 0 to 512
[  161.881765][ T6874] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  162.013392][ T6874] EXT4-fs error (device loop4): ext4_iget_extra_inode:5103: inode #15: comm syz.4.288: corrupted in-inode xattr: overlapping e_value 
[  162.075591][ T6874] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.288: couldn't read orphan inode 15 (err -117)
[  162.156457][ T6874] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.181884][ T6843] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.244010][ T6874] ./file0: Can't lookup blockdev
[  162.424894][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.782314][ T6843] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.366553][ T6899] loop0: detected capacity change from 0 to 8192
[  163.434257][ T6899] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[  163.488873][ T6899] FAT-fs (loop0): Filesystem has been set read-only
[  163.851599][   T30] kauditd_printk_skb: 15 callbacks suppressed
[  163.851624][   T30] audit: type=1326 audit(1757677065.705:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  163.947759][   T30] audit: type=1326 audit(1757677065.735:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.004216][   T49] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.098621][ T2965] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.117601][   T30] audit: type=1326 audit(1757677065.775:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.149785][   T30] audit: type=1326 audit(1757677065.775:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.172552][   T30] audit: type=1326 audit(1757677065.775:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.195790][   T30] audit: type=1326 audit(1757677065.795:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.252649][ T6914] loop5: detected capacity change from 0 to 2048
[  164.259150][   T30] audit: type=1326 audit(1757677065.885:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.324896][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.379338][   T30] audit: type=1326 audit(1757677065.915:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.405780][ T6914] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.421352][   T30] audit: type=1326 audit(1757677065.915:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.449212][   T30] audit: type=1326 audit(1757677065.915:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.0.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  164.484730][ T6136] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.581533][ T6921] loop0: detected capacity change from 0 to 512
[  164.609364][ T6921] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  164.740388][ T6921] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.811145][ T6921] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.928764][ T6921] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.303: corrupted xattr block 19: overlapping e_value 
[  164.964747][ T6921] EXT4-fs error (device loop0): ext4_get_inode_usage:884: inode #15: comm syz.0.303: corrupted xattr block 19: overlapping e_value 
[  165.168653][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.206496][ T5872] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.707053][ T6939] netlink: 16 bytes leftover after parsing attributes in process `syz.3.309'.
[  166.922182][ T6959] loop5: detected capacity change from 0 to 1024
[  166.949376][ T6961] netlink: 68 bytes leftover after parsing attributes in process `syz.0.317'.
[  167.058611][ T6959] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.794125][ T5872] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.219373][ T6984] lo speed is unknown, defaulting to 1000
[  168.379047][ T6994] netlink: 'syz.5.327': attribute type 4 has an invalid length.
[  168.398537][ T5960] lo speed is unknown, defaulting to 1000
[  168.407580][ T5960] syz2: Port: 1 Link DOWN
[  168.412354][ T6994] netlink: 'syz.5.327': attribute type 4 has an invalid length.
[  168.425236][ T5960] lo speed is unknown, defaulting to 1000
[  168.437320][ T5960] syz2: Port: 1 Link ACTIVE
[  170.050963][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  170.050986][   T30] audit: type=1326 audit(1757677071.905:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  170.134707][ T7027] loop3: detected capacity change from 0 to 512
[  170.180082][   T30] audit: type=1326 audit(1757677071.905:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  170.257139][ T7027] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: inode #11: comm syz.3.342: missing EA_INODE flag
[  170.279280][   T30] audit: type=1326 audit(1757677071.955:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  170.311764][   T30] audit: type=1326 audit(1757677071.955:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  170.334737][   T30] audit: type=1326 audit(1757677071.955:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  170.358689][   T30] audit: type=1326 audit(1757677071.955:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  170.381185][ T7027] EXT4-fs error (device loop3): ext4_xattr_inode_iget:440: comm syz.3.342: error while reading EA inode 11 err=-117
[  170.382310][ T7027] EXT4-fs (loop3): 1 orphan inode deleted
[  170.424425][   T30] audit: type=1326 audit(1757677071.955:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff9c538ebe3 code=0x7ffc0000
[  170.462594][ T7027] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.549285][   T30] audit: type=1326 audit(1757677071.955:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff9c538d65f code=0x7ffc0000
[  170.629624][   T30] audit: type=1326 audit(1757677071.955:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff9c538ec37 code=0x7ffc0000
[  170.703329][   T30] audit: type=1326 audit(1757677071.985:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7026 comm="syz.3.342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff9c538d510 code=0x7ffc0000
[  170.762346][ T7040] tipc: Started in network mode
[  170.767375][ T7040] tipc: Node identity 4, cluster identity 4711
[  170.783759][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.812474][ T7040] tipc: Node number set to 4
[  171.859320][ T7056] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  172.485082][ T7077] loop2: detected capacity change from 0 to 256
[  172.720837][ T7077] FAT-fs (loop2): Directory bread(block 64) failed
[  172.769385][ T7077] FAT-fs (loop2): Directory bread(block 65) failed
[  172.818796][ T7077] FAT-fs (loop2): Directory bread(block 66) failed
[  172.859206][ T7077] FAT-fs (loop2): Directory bread(block 67) failed
[  172.866771][ T7077] FAT-fs (loop2): Directory bread(block 68) failed
[  172.929200][ T7077] FAT-fs (loop2): Directory bread(block 69) failed
[  172.954132][ T7077] FAT-fs (loop2): Directory bread(block 70) failed
[  173.019062][ T7077] FAT-fs (loop2): Directory bread(block 71) failed
[  173.026046][ T7077] FAT-fs (loop2): Directory bread(block 72) failed
[  173.138824][ T7077] FAT-fs (loop2): Directory bread(block 73) failed
[  173.246720][ T7095] loop1: detected capacity change from 0 to 128
[  173.290472][ T7077] syz.2.363: attempt to access beyond end of device
[  173.290472][ T7077] loop2: rw=524288, sector=1192, nr_sectors = 4 limit=256
[  173.368089][ T7077] syz.2.363: attempt to access beyond end of device
[  173.368089][ T7077] loop2: rw=0, sector=1192, nr_sectors = 4 limit=256
[  173.563369][ T7100] netlink: 'syz.3.374': attribute type 4 has an invalid length.
[  173.579232][ T7100] netlink: 17 bytes leftover after parsing attributes in process `syz.3.374'.
[  173.926025][ T7104] Driver unsupported XDP return value 0 on prog  (id 216) dev N/A, expect packet loss!
[  174.354067][ T7123] loop2: detected capacity change from 0 to 256
[  174.885171][ T7132] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  175.284263][ T7139] netlink: 4 bytes leftover after parsing attributes in process `syz.1.388'.
[  175.449972][ T7144] loop3: detected capacity change from 0 to 512
[  175.520015][ T7148] netlink: 'syz.0.392': attribute type 21 has an invalid length.
[  175.549827][ T7148] netlink: 'syz.0.392': attribute type 1 has an invalid length.
[  175.563503][ T7144] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.579329][ T7144] ext4 filesystem being mounted at /72/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  175.608926][ T7148] netlink: 132 bytes leftover after parsing attributes in process `syz.0.392'.
[  175.968645][ T7162] netlink: 224 bytes leftover after parsing attributes in process `syz.4.397'.
[  176.027879][ T7162] ksmbd: Unknown IPC event: 4, ignore.
[  176.046526][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.086547][ T7165] loop4: detected capacity change from 0 to 512
[  176.099820][   T30] kauditd_printk_skb: 41 callbacks suppressed
[  176.099842][   T30] audit: type=1326 audit(1757677077.955:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.0.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  176.177704][   T30] audit: type=1326 audit(1757677077.985:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.0.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  176.228631][ T7165] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.253471][   T30] audit: type=1326 audit(1757677077.985:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.0.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  176.294109][   T30] audit: type=1326 audit(1757677077.985:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.0.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  176.317020][   T30] audit: type=1326 audit(1757677077.985:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.0.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  176.341090][   T30] audit: type=1326 audit(1757677077.985:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.0.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  176.363414][ T7165] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.464216][   T30] audit: type=1326 audit(1757677077.985:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.0.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a79d8eba9 code=0x7ffc0000
[  176.884977][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.965388][ T7181] netlink: 12 bytes leftover after parsing attributes in process `syz.1.405'.
[  177.253887][ T7188] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[  177.253887][ T7188]    program syz.2.409 not setting count and/or reply_len properly
[  177.314491][   T30] audit: type=1326 audit(1757677079.155:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7189 comm="syz.3.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  177.404248][   T30] audit: type=1326 audit(1757677079.155:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7189 comm="syz.3.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  177.499502][ T7197] hub 9-0:1.0: USB hub found
[  177.519791][   T30] audit: type=1326 audit(1757677079.165:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7189 comm="syz.3.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  177.542184][ T7197] hub 9-0:1.0: 1 port detected
[  177.818070][ T7205] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  177.836543][ T7205] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  177.863198][ T7208] capability: warning: `syz.2.416' uses 32-bit capabilities (legacy support in use)
[  178.884008][ T7229] loop2: detected capacity change from 0 to 512
[  178.891700][ T7227] netlink: 'syz.1.425': attribute type 30 has an invalid length.
[  178.966001][ T7229] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.424: casefold flag without casefold feature
[  179.063075][ T7229] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.424: couldn't read orphan inode 15 (err -117)
[  179.113230][ T7236] loop3: detected capacity change from 0 to 2048
[  179.178910][ T7229] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.228613][ T6058]  loop3: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  179.276145][ T6058] loop3: p4 start 1660944384 is beyond EOD, 
[  179.394604][ T7243] I/O error, dev loop11, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  179.411136][ T7243] FAT-fs (loop11): unable to read boot sector
[  179.461347][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.495231][ T6058] truncated
[  179.747987][ T7247] sctp: [Deprecated]: syz.0.434 (pid 7247) Use of struct sctp_assoc_value in delayed_ack socket option.
[  179.747987][ T7247] Use struct sctp_sack_info instead
[  179.964829][ T7253] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  179.977795][ T7253] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.992220][ T7253] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  180.023177][ T7253] batman_adv: batadv0: Removing interface: batadv_slave_1
[  182.177255][ T7264] loop0: detected capacity change from 0 to 2048
[  182.184565][ T7264] EXT4-fs: Ignoring removed i_version option
[  182.217977][ T7264] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.230389][ T7264] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.645070][ T7273] loop2: detected capacity change from 0 to 2048
[  182.656170][ T7273] EXT4-fs: inline encryption not supported
[  182.665567][   T30] kauditd_printk_skb: 255 callbacks suppressed
[  182.665589][   T30] audit: type=1326 audit(1757677083.105:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f195ab2ada9 code=0x7ffc0000
[  182.716562][ T7273] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.734484][   T30] audit: type=1326 audit(1757677083.105:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  182.770231][ T7273] EXT4-fs error (device loop2): ext4_find_extent:939: inode #2: comm syz.2.441: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  182.792739][   T30] audit: type=1326 audit(1757677083.105:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  182.814923][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.862754][   T30] audit: type=1326 audit(1757677083.105:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  182.907522][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.926670][   T30] audit: type=1326 audit(1757677083.995:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  182.948928][    C0] vkms_vblank_simulate: vblank timer overrun
[  183.011944][   T30] audit: type=1326 audit(1757677083.995:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  183.034153][    C0] vkms_vblank_simulate: vblank timer overrun
[  183.082040][   T30] audit: type=1326 audit(1757677083.995:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  183.157432][   T30] audit: type=1326 audit(1757677083.995:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  183.180050][   T30] audit: type=1326 audit(1757677083.995:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  183.207154][   T30] audit: type=1326 audit(1757677083.995:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7254 comm="syz.1.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195ab8eba9 code=0x7ffc0000
[  183.231041][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.681813][ T7289] loop0: detected capacity change from 0 to 512
[  183.697237][ T7289] EXT4-fs: Ignoring removed oldalloc option
[  183.741539][ T7289] EXT4-fs error (device loop0): ext4_xattr_inode_iget:432: comm syz.0.449: Parent and EA inode have the same ino 15
[  183.754973][ T7289] EXT4-fs (loop0): 1 orphan inode deleted
[  183.772156][ T7289] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.790686][ T7289] netlink: 4 bytes leftover after parsing attributes in process `syz.0.449'.
[  183.826425][ T6058]  loop3: p167 could not be added: -ENOMEM
[  183.844918][ T5874] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.871405][ T6058]  loop3: p169 could not be added: -ENOMEM
[  183.924131][ T6058]  loop3: p175 could not be added: -ENOMEM
[  183.947354][ T6058]  loop3: p176 could not be added: -ENOMEM
[  183.969382][ T6058]  loop3: p177 could not be added: -ENOMEM
[  183.975433][ T6058]  loop3: p178 could not be added: -ENOMEM
[  183.986885][ T6058]  loop3: p179 could not be added: -ENOMEM
[  184.009722][ T6058]  loop3: p181 could not be added: -ENOMEM
[  184.015799][ T6058]  loop3: p182 could not be added: -ENOMEM
[  184.029320][ T6058]  loop3: p183 could not be added: -ENOMEM
[  184.049409][ T6058]  loop3: p184 could not be added: -ENOMEM
[  184.055353][ T6058]  loop3: p185 could not be added: -ENOMEM
[  184.076905][ T6058]  loop3: p186 could not be added: -ENOMEM
[  184.099429][ T6058]  loop3: p187 could not be added: -ENOMEM
[  184.105376][ T6058]  loop3: p188 could not be added: -ENOMEM
[  184.113691][ T6058]  loop3: p189 could not be added: -ENOMEM
[  184.121778][ T7304] loop4: detected capacity change from 0 to 128
[  184.144375][ T6058]  loop3: p190 could not be added: -ENOMEM
[  184.153538][ T6058]  loop3: p191 could not be added: -ENOMEM
[  184.163640][ T6058]  loop3: p192 could not be added: -ENOMEM
[  184.199547][ T6058]  loop3: p196 could not be added: -ENOMEM
[  184.214440][ T6058]  loop3: p197 could not be added: -ENOMEM
[  184.231397][ T6058]  loop3: p198 could not be added: -ENOMEM
[  184.237328][ T6058]  loop3: p199 could not be added: -ENOMEM
[  184.260356][ T7301] lo speed is unknown, defaulting to 1000
[  184.291735][ T6058]  loop3: p200 could not be added: -ENOMEM
[  184.297686][ T6058]  loop3: p201 could not be added: -ENOMEM
[  184.323983][ T6058]  loop3: p202 could not be added: -ENOMEM
[  184.344182][ T6058]  loop3: p203 could not be added: -ENOMEM
[  184.363871][ T6058]  loop3: p204 could not be added: -ENOMEM
[  184.378890][ T6058]  loop3: p205 could not be added: -ENOMEM
[  184.396367][ T6058]  loop3: p206 could not be added: -ENOMEM
[  184.425632][ T6058]  loop3: p207 could not be added: -ENOMEM
[  184.441796][ T6058]  loop3: p208 could not be added: -ENOMEM
[  184.466022][ T6058]  loop3: p209 could not be added: -ENOMEM
[  184.489917][ T6058]  loop3: p210 could not be added: -ENOMEM
[  184.545660][ T6058]  loop3: p211 could not be added: -ENOMEM
[  184.605919][ T6058]  loop3: p212 could not be added: -ENOMEM
[  184.640466][ T6058]  loop3: p213 could not be added: -ENOMEM
[  184.646426][ T6058]  loop3: p214 could not be added: -ENOMEM
[  184.691216][ T6058]  loop3: p215 could not be added: -ENOMEM
[  184.697927][ T6058]  loop3: p216 could not be added: -ENOMEM
[  184.708086][ T6058]  loop3: p217 could not be added: -ENOMEM
[  185.273016][ T7316] loop2: detected capacity change from 0 to 1024
[  185.361896][ T7316] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.457: Failed to acquire dquot type 0
[  185.432410][ T7316] EXT4-fs error (device loop2): mb_free_blocks:2014: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  185.511592][ T7316] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.457: corrupted inode contents
[  185.552247][ T7316] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #13: comm syz.2.457: mark_inode_dirty error
[  185.608717][ T7316] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.457: corrupted inode contents
[  185.671971][ T7316] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.457: mark_inode_dirty error
[  185.739889][ T7316] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.457: corrupted inode contents
[  185.762989][ T7316] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  185.788197][ T7316] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.457: corrupted inode contents
[  185.830802][ T7316] EXT4-fs error (device loop2): ext4_truncate:4666: inode #13: comm syz.2.457: mark_inode_dirty error
[  185.873165][ T7316] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  185.910355][ T7316] EXT4-fs (loop2): 1 truncate cleaned up
[  185.932641][ T7316] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.963662][ T7317] netlink: 28 bytes leftover after parsing attributes in process `syz.1.456'.
[  186.123850][ T7316] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  186.204287][ T7329] mmap: syz.5.462 (7329) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  186.420848][ T5868] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.268441][ T7356] loop5: detected capacity change from 0 to 128
[  187.357497][ T7356] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  187.394437][ T7359] loop1: detected capacity change from 0 to 512
[  187.427106][ T7359] EXT4-fs: Ignoring removed bh option
[  187.429326][ T7356] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  187.441773][ T7359] EXT4-fs: Ignoring removed oldalloc option
[  187.441824][ T7359] ext4: Unknown parameter 'fsname'
[  187.880249][ T7356] pimreg: entered allmulticast mode
[  187.926558][ T7363] pimreg: left allmulticast mode
[  188.020376][ T7367] loop1: detected capacity change from 0 to 128
[  188.156848][   T30] kauditd_printk_skb: 75 callbacks suppressed
[  188.156873][   T30] audit: type=1326 audit(1757677090.005:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7370 comm="syz.4.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0cf58eba9 code=0x7ffc0000
[  188.204582][ T7364] lo speed is unknown, defaulting to 1000
[  188.277393][   T30] audit: type=1326 audit(1757677090.025:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7370 comm="syz.4.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fc0cf58eba9 code=0x7ffc0000
[  188.369334][   T30] audit: type=1326 audit(1757677090.025:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7370 comm="syz.4.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0cf58eba9 code=0x7ffc0000
[  188.457237][   T30] audit: type=1800 audit(1757677090.085:646): pid=7367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.475" name="bus" dev="loop1" ino=1048615 res=0 errno=0
[  188.457310][   T30] audit: type=1326 audit(1757677090.125:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7370 comm="syz.4.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0cf58eba9 code=0x7ffc0000
[  188.576379][ T7374] syz.1.475: attempt to access beyond end of device
[  188.576379][ T7374] loop1: rw=2049, sector=665, nr_sectors = 376 limit=128
[  189.554472][ T7394] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.036379][ T7394] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.249565][ T7394] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.578434][ T7394] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.979855][ T6136] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  191.047774][   T36] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  191.086711][   T36] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  191.149432][   T36] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.473987][ T7445] netlink: 8 bytes leftover after parsing attributes in process `syz.4.500'.
[  191.499246][ T7445] netlink: 8 bytes leftover after parsing attributes in process `syz.4.500'.
[  191.743373][ T7451] loop2: detected capacity change from 0 to 128
[  191.769156][   T30] audit: type=1326 audit(1757677093.615:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7452 comm="syz.3.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  191.836038][   T30] audit: type=1326 audit(1757677093.615:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7452 comm="syz.3.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  191.886845][ T7447] lo speed is unknown, defaulting to 1000
[  191.953861][   T30] audit: type=1326 audit(1757677093.655:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7452 comm="syz.3.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  192.262865][ T7463] syz.2.501: attempt to access beyond end of device
[  192.262865][ T7463] loop2: rw=2049, sector=537, nr_sectors = 504 limit=128
[  192.312949][   T30] audit: type=1326 audit(1757677093.725:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7452 comm="syz.3.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  192.335148][    C0] vkms_vblank_simulate: vblank timer overrun
[  192.359439][   T30] audit: type=1326 audit(1757677093.725:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7452 comm="syz.3.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c538eba9 code=0x7ffc0000
[  194.128799][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  194.128823][   T30] audit: type=1326 audit(1757677095.975:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  194.938906][   T30] audit: type=1326 audit(1757677095.975:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  195.027267][   T30] audit: type=1326 audit(1757677095.985:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbcff18d510 code=0x7ffc0000
[  195.249180][   T30] audit: type=1326 audit(1757677096.005:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  195.316420][ T5960] IPVS: starting estimator thread 0...
[  195.359180][   T30] audit: type=1326 audit(1757677096.005:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  195.439166][   T30] audit: type=1326 audit(1757677096.015:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  195.469567][ T7521] IPVS: using max 23 ests per chain, 55200 per kthread
[  195.537797][   T30] audit: type=1326 audit(1757677096.015:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  195.596076][ T7533] netlink: 224 bytes leftover after parsing attributes in process `syz.1.520'.
[  195.619913][ T7533] ksmbd: Unknown IPC event: 4, ignore.
[  195.657218][ T7531] loop5: detected capacity change from 0 to 764
[  195.659225][   T30] audit: type=1326 audit(1757677096.015:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  195.700868][ T7535] loop1: detected capacity change from 0 to 512
[  195.773066][ T7531] rock: directory entry would overflow storage
[  195.794454][ T7535] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.799365][   T30] audit: type=1326 audit(1757677096.565:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  195.844383][ T7531] rock: sig=0x4f50, size=4, remaining=3
[  195.859792][ T7531] iso9660: Corrupted directory entry in block 6 of inode 1792
[  195.879267][ T7535] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.937517][   T30] audit: type=1326 audit(1757677096.565:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.2.514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcff18eba9 code=0x7ffc0000
[  196.260813][ T7555] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  196.268323][ T7555] IPv6: NLM_F_CREATE should be set when creating new route
[  196.275599][ T7555] IPv6: NLM_F_CREATE should be set when creating new route
[  196.333493][ T7555] ------------[ cut here ]------------
[  196.339033][ T7555] WARNING: CPU: 0 PID: 7555 at drivers/net/netdevsim/fib.c:831 nsim_fib_event_nb+0xb9d/0x10d0
[  196.349554][ T7555] Modules linked in:
[  196.353567][ T7555] CPU: 0 UID: 0 PID: 7555 Comm: syz.5.529 Not tainted syzkaller #0 PREEMPT(full) 
[  196.362852][ T7555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  196.372982][ T7555] RIP: 0010:nsim_fib_event_nb+0xb9d/0x10d0
[  196.378828][ T7555] Code: 24 20 48 8b 6c 24 38 e8 11 c0 90 fa e8 0c c0 90 fa 89 de 44 89 ef e8 82 ba 90 fa 41 39 dd 0f 84 cb fd ff ff e8 f4 bf 90 fa 90 <0f> 0b 90 e9 bd fd ff ff e8 e6 bf 90 fa 48 8d 7d 38 be 01 00 00 00
[  196.398503][ T7555] RSP: 0018:ffffc9000b17f138 EFLAGS: 00010287
[  196.404836][ T7555] RAX: 000000000000e9ca RBX: 0000000000000001 RCX: ffffc9000d207000
[  196.413052][ T7555] RDX: 0000000000080000 RSI: ffffffff872ade2c RDI: 0000000000000004
[  196.421099][ T7555] RBP: ffff88803125f000 R08: 0000000000000004 R09: 0000000000000002
[  196.429585][ T7555] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc9000b17f290
[  196.437576][ T7555] R13: 0000000000000002 R14: ffff888075746d00 R15: ffff88805214e000
[  196.446022][ T7555] FS:  00007fae712e46c0(0000) GS:ffff8881246b4000(0000) knlGS:0000000000000000
[  196.455410][ T7555] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  196.462140][ T7555] CR2: 000020000000e030 CR3: 0000000076962000 CR4: 0000000000350ef0
[  196.470180][ T7555] Call Trace:
[  196.473467][ T7555]  <TASK>
[  196.476418][ T7555]  notifier_call_chain+0xbc/0x410
[  196.481523][ T7555]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  196.487031][ T7555]  atomic_notifier_call_chain+0x71/0x1c0
[  196.492753][ T7555]  call_fib_notifiers+0x33/0x70
[  196.497660][ T7555]  call_fib6_multipath_entry_notifiers+0x112/0x170
[  196.504235][ T7555]  ? __pfx_call_fib6_multipath_entry_notifiers+0x10/0x10
[  196.511346][ T7555]  ? find_held_lock+0x2b/0x80
[  196.516056][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.521829][ T7555]  ip6_route_multipath_add+0xb4f/0x1bd0
[  196.527421][ T7555]  ? __pfx_ip6_route_multipath_add+0x10/0x10
[  196.533995][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.540076][ T7555]  ? kmem_cache_free+0x2d1/0x4d0
[  196.545062][ T7555]  ? kfree_skbmem+0x1a4/0x1f0
[  196.549823][ T7555]  ? inet6_rtm_newroute+0xe4/0x1a0
[  196.554960][ T7555]  inet6_rtm_newroute+0xe4/0x1a0
[  196.559954][ T7555]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  196.565530][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.571244][ T7555]  ? __lock_acquire+0x62e/0x1ce0
[  196.576251][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.581943][ T7555]  ? find_held_lock+0x2b/0x80
[  196.586658][ T7555]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  196.592283][ T7555]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  196.597855][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.603687][ T7555]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  196.609299][ T7555]  rtnetlink_rcv_msg+0x95e/0xe90
[  196.614271][ T7555]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  196.619808][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.625475][ T7555]  ? ref_tracker_free+0x37c/0x830
[  196.630589][ T7555]  netlink_rcv_skb+0x158/0x420
[  196.635855][ T7555]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  196.641792][ T7555]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  196.647136][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.652843][ T7555]  ? netlink_deliver_tap+0x1ae/0xd30
[  196.658186][ T7555]  netlink_unicast+0x5aa/0x870
[  196.663014][ T7555]  ? __pfx_netlink_unicast+0x10/0x10
[  196.668326][ T7555]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  196.674398][ T7555]  ? __lock_acquire+0xb97/0x1ce0
[  196.679426][ T7555]  netlink_sendmsg+0x8d1/0xdd0
[  196.684217][ T7555]  ? __pfx_netlink_sendmsg+0x10/0x10
[  196.689573][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.695247][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.700947][ T7555]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  196.707053][ T7555]  ____sys_sendmsg+0xa98/0xc70
[  196.711926][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.717592][ T7555]  ? copy_msghdr_from_user+0x10a/0x160
[  196.723132][ T7555]  ? __pfx_____sys_sendmsg+0x10/0x10
[  196.728459][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.734191][ T7555]  ___sys_sendmsg+0x134/0x1d0
[  196.739396][ T7555]  ? __pfx____sys_sendmsg+0x10/0x10
[  196.744668][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.750874][ T7555]  __sys_sendmsg+0x16d/0x220
[  196.755519][ T7555]  ? __pfx___sys_sendmsg+0x10/0x10
[  196.760740][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.766418][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.772142][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.777819][ T7555]  do_syscall_64+0xcd/0x4e0
[  196.782418][ T7555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.788340][ T7555] RIP: 0033:0x7fae7038eba9
[  196.792804][ T7555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.812467][ T7555] RSP: 002b:00007fae712e4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  196.820941][ T7555] RAX: ffffffffffffffda RBX: 00007fae705d5fa0 RCX: 00007fae7038eba9
[  196.828926][ T7555] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000006
[  196.836957][ T7555] RBP: 00007fae70411e19 R08: 0000000000000000 R09: 0000000000000000
[  196.845494][ T7555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  196.853913][ T7555] R13: 00007fae705d6038 R14: 00007fae705d5fa0 R15: 00007ffec7177e08
[  196.861975][ T7555]  </TASK>
[  196.865005][ T7555] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  196.872288][ T7555] CPU: 0 UID: 0 PID: 7555 Comm: syz.5.529 Not tainted syzkaller #0 PREEMPT(full) 
[  196.881499][ T7555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  196.891559][ T7555] Call Trace:
[  196.894841][ T7555]  <TASK>
[  196.897787][ T7555]  dump_stack_lvl+0x3d/0x1f0
[  196.902423][ T7555]  vpanic+0x6e8/0x7a0
[  196.906447][ T7555]  ? __pfx_vpanic+0x10/0x10
[  196.911000][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  196.916666][ T7555]  ? nsim_fib_event_nb+0xb9d/0x10d0
[  196.921898][ T7555]  panic+0xca/0xd0
[  196.925660][ T7555]  ? __pfx_panic+0x10/0x10
[  196.930137][ T7555]  check_panic_on_warn+0xab/0xb0
[  196.935093][ T7555]  __warn+0xf6/0x3c0
[  196.939006][ T7555]  ? nsim_fib_event_nb+0xb9d/0x10d0
[  196.944242][ T7555]  report_bug+0x3c3/0x580
[  196.948613][ T7555]  ? nsim_fib_event_nb+0xb9d/0x10d0
[  196.953844][ T7555]  handle_bug+0x184/0x210
[  196.958189][ T7555]  exc_invalid_op+0x17/0x50
[  196.962701][ T7555]  asm_exc_invalid_op+0x1a/0x20
[  196.967564][ T7555] RIP: 0010:nsim_fib_event_nb+0xb9d/0x10d0
[  196.973399][ T7555] Code: 24 20 48 8b 6c 24 38 e8 11 c0 90 fa e8 0c c0 90 fa 89 de 44 89 ef e8 82 ba 90 fa 41 39 dd 0f 84 cb fd ff ff e8 f4 bf 90 fa 90 <0f> 0b 90 e9 bd fd ff ff e8 e6 bf 90 fa 48 8d 7d 38 be 01 00 00 00
[  196.993016][ T7555] RSP: 0018:ffffc9000b17f138 EFLAGS: 00010287
[  196.999095][ T7555] RAX: 000000000000e9ca RBX: 0000000000000001 RCX: ffffc9000d207000
[  197.007068][ T7555] RDX: 0000000000080000 RSI: ffffffff872ade2c RDI: 0000000000000004
[  197.015040][ T7555] RBP: ffff88803125f000 R08: 0000000000000004 R09: 0000000000000002
[  197.023013][ T7555] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc9000b17f290
[  197.030983][ T7555] R13: 0000000000000002 R14: ffff888075746d00 R15: ffff88805214e000
[  197.038972][ T7555]  ? nsim_fib_event_nb+0xb9c/0x10d0
[  197.044203][ T7555]  ? nsim_fib_event_nb+0xb9c/0x10d0
[  197.049443][ T7555]  notifier_call_chain+0xbc/0x410
[  197.054495][ T7555]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  197.059982][ T7555]  atomic_notifier_call_chain+0x71/0x1c0
[  197.065648][ T7555]  call_fib_notifiers+0x33/0x70
[  197.070529][ T7555]  call_fib6_multipath_entry_notifiers+0x112/0x170
[  197.077054][ T7555]  ? __pfx_call_fib6_multipath_entry_notifiers+0x10/0x10
[  197.084099][ T7555]  ? find_held_lock+0x2b/0x80
[  197.088793][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.094460][ T7555]  ip6_route_multipath_add+0xb4f/0x1bd0
[  197.100038][ T7555]  ? __pfx_ip6_route_multipath_add+0x10/0x10
[  197.106068][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.111717][ T7555]  ? kmem_cache_free+0x2d1/0x4d0
[  197.116687][ T7555]  ? kfree_skbmem+0x1a4/0x1f0
[  197.121396][ T7555]  ? inet6_rtm_newroute+0xe4/0x1a0
[  197.126514][ T7555]  inet6_rtm_newroute+0xe4/0x1a0
[  197.131464][ T7555]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  197.137032][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.142686][ T7555]  ? __lock_acquire+0x62e/0x1ce0
[  197.147690][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.153350][ T7555]  ? find_held_lock+0x2b/0x80
[  197.158045][ T7555]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  197.163598][ T7555]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  197.169157][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.174815][ T7555]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  197.180379][ T7555]  rtnetlink_rcv_msg+0x95e/0xe90
[  197.185329][ T7555]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  197.190817][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.196464][ T7555]  ? ref_tracker_free+0x37c/0x830
[  197.201502][ T7555]  netlink_rcv_skb+0x158/0x420
[  197.206282][ T7555]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  197.211750][ T7555]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  197.217057][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.222701][ T7555]  ? netlink_deliver_tap+0x1ae/0xd30
[  197.228024][ T7555]  netlink_unicast+0x5aa/0x870
[  197.232806][ T7555]  ? __pfx_netlink_unicast+0x10/0x10
[  197.238099][ T7555]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  197.244110][ T7555]  ? __lock_acquire+0xb97/0x1ce0
[  197.249099][ T7555]  netlink_sendmsg+0x8d1/0xdd0
[  197.253898][ T7555]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.259189][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.264851][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.270497][ T7555]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  197.276620][ T7555]  ____sys_sendmsg+0xa98/0xc70
[  197.281398][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.287045][ T7555]  ? copy_msghdr_from_user+0x10a/0x160
[  197.292559][ T7555]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.297873][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.303526][ T7555]  ___sys_sendmsg+0x134/0x1d0
[  197.308236][ T7555]  ? __pfx____sys_sendmsg+0x10/0x10
[  197.313484][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.319168][ T7555]  __sys_sendmsg+0x16d/0x220
[  197.323787][ T7555]  ? __pfx___sys_sendmsg+0x10/0x10
[  197.328924][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.334573][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.340238][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  197.345894][ T7555]  do_syscall_64+0xcd/0x4e0
[  197.350426][ T7555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.356336][ T7555] RIP: 0033:0x7fae7038eba9
[  197.360754][ T7555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.380378][ T7555] RSP: 002b:00007fae712e4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.388798][ T7555] RAX: ffffffffffffffda RBX: 00007fae705d5fa0 RCX: 00007fae7038eba9
[  197.396767][ T7555] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000006
[  197.404743][ T7555] RBP: 00007fae70411e19 R08: 0000000000000000 R09: 0000000000000000
[  197.412716][ T7555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.420686][ T7555] R13: 00007fae705d6038 R14: 00007fae705d5fa0 R15: 00007ffec7177e08
[  197.428689][ T7555]  </TASK>
[  197.431941][ T7555] Kernel Offset: disabled
[  197.436265][ T7555] Rebooting in 86400 seconds..