last executing test programs:

2m23.754940871s ago: executing program 2 (id=350):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e81621209600", 0xe4}, {&(0x7f00000003c0)}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f5c666dad", 0x24}, {&(0x7f0000000740)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568f47f4bc416adb360fdd9c497c2ad2ffe1ad738f4c073f1378d2b455e61844076a4a97ac1e13e2fb300ae69d55c501f96dcc39bf7ed835cc866f0fbd8e936e8374a484f111919dc610e0a36a0ee3df2ab1dc34cea42a4292e2fbaa86875a506bdd81fbb3dc5ea", 0xf5}, {&(0x7f0000000200)="057322e18609ed78266492c2a2ae3f0c0f3f6394c53de2727898d209dcb274efec9fc9995189ead7bf00148d091675fa045479985e4f644d258d0aa4a69618eb08ba045907a549ed83b88863c73d", 0x4e}], 0x5}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc", 0xd9}, {&(0x7f0000000e80)="5be3b011e12323e4ab88c0472f0700000000000000e71ba6231f303d2db97401439932cfd4", 0x25}], 0x2}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

2m23.639885706s ago: executing program 2 (id=353):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
r5 = bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
close_range(r5, r5, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r3, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r3, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)

2m22.687811433s ago: executing program 2 (id=359):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb3665000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000180)={0x2, @win={{0x500}, 0x0, 0x0, 0x0, 0x0, 0x0}})
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000240), 0x101000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r5], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@newtfilter={0x3c, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0xe}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x3}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
bind$llc(0xffffffffffffffff, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x81, 0x42}, 0x10)
r6 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r6, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x81, 0x42}, 0x10)
connect$llc(r6, &(0x7f0000000040)={0x1a, 0x331, 0x0, 0x0, 0xe, 0x7, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, 0x10)

2m22.514639894s ago: executing program 0 (id=360):
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xf8}], 0x1}, 0x0)
close(0x4)

2m21.706547404s ago: executing program 0 (id=363):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e81621209600", 0xe4}, {&(0x7f00000003c0)}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f5c666dad", 0x24}, {&(0x7f0000000740)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568f47f4bc416adb360fdd9c497c2ad2ffe1ad738f4c073f1378d2b455e61844076a4a97ac1e13e2fb300ae69d55c501f96dcc39bf7ed835cc866f0fbd8e936e8374a484f111919dc610e0a36a0ee3df2ab1dc34cea42a4292e2fbaa86875a506bdd81fbb3dc5ea", 0xf5}, {&(0x7f0000000200)="057322e18609ed78266492c2a2ae3f0c0f3f6394c53de2727898d209dcb274efec9fc9995189ead7bf00148d091675fa045479985e4f644d258d0aa4a69618eb08ba045907a549ed83b88863c73d", 0x4e}], 0x5}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc", 0xd9}, {&(0x7f0000000e80)="5be3b011e12323e4ab88c0472f0700000000000000e71ba6231f303d2db97401439932cfd4", 0x25}], 0x2}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

2m21.704870684s ago: executing program 2 (id=365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r3, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)

2m21.656871128s ago: executing program 0 (id=366):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$eJzs3c9rXNUeAPDvzDRpkua9/niPR9sHr4U+6HtKM/mBNFEXulIXBbHgRqHGZBprJpmQmdQmdJHqrgsXoiiIC/f+BW7syiKIa92LC6lojaCCMHLvzKT5NXXQNAO5nw/czrn33M73nAzfw51z750bQGadTv7JRQxGxBcRcbixunmH042XtbvXp5IlF/X6xe9z6X7JemvX1v87FBGrEdEXEc89FfFybnvc6vLK7GS5XFpsrhdrcwvF6vLKuStzkzOlmdL8yPj5iYnx4bHRiV3r6803X7154eNnej/6+Y07t9/69JOkWYPNuo392E2NrvfE0Q3bDkTE4w8iWBcUmv3p73ZD+FOSz+8fEXEmzf/DUUg/TSAL6vV6/bf6wXbVq3Vg38qnx8C5/FBENMr5/NBQ4xj+nzGQL1eqtYcvV5bmpxvHykeiJ3/5Srk03PyucCR6csn6SFq+tz66ZX0sIj0GfrvQn64PTVXK03s71AFbHNqS/z8VGvkPZISv/JBd8h+yS/5Ddsl/yC75D9kl/yG75D9kl/yH7JL/kF3yH7JL/kMmPXvhQrLUW/e/T19dXpqtXD03XarODs0tTQ1NVRYXhmYqlZn0np25P3q/cqWyMPJILF0r1krVWrG6vHJprrI0X7uU3td/qdSzJ70COnH01K2vchGx+mh/uiR6m3VyFfa3ej0X3b4HGeiOQrcHIKBrTP1BdvmOD+zwE72b9LWrWNj9tgB7I9/tBgBdc/aE83+QVeb/IbvM/0N2OcYHzP9D9pj/h+wabPP8r79teHbXcET8PSK+LPQcbD3rC9gP8t/mmsf/Zw//d3BrbW/ul/QUQW9EvPb+xXevTdZqiyPJ9h/Wt9fea24f7Ub7gU618rSVxwBAdq3dvT7VWvYy7ndPNi5C2B7/QHNusi89Rzmwltt0rUJul65dWL0REcd3ip9rPu+8ceZjYK2wLf6x5muu8RZpew+kz03fm/gnNsT/z4b4J//yXwWy4VYy/gzvlH/5NKdjPf82jz+Du3TtRPvxL78+/hXajH+nOozxygevf9M2/o2IkzvGb8XrS2NtjZ+07WyH8e+8+Py/2tXVP2y8z07xW5JSsTa3UKwur5xLf0dupjQ/Mn5+YmJ8eGx0opjOURdbM9XbPXb889v36/9Am/jt+v9Es03/77D/v/77sxdO3yf+/87s/PkfaxM/0R8RD3UY/8fRr19qV5fEn27T//x94ifbxjqMX33n6YMd7goA7IHq8srsZLlcWlRQUFBYL3R7ZAIetHtJ3+2WAAAAAAAAAAAAAJ3ai8uJu91HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID94PcAAAD//5j81ps=")
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000180)={0x0, 0x2904c, 0x20, 0x10003, '\x00', [{0x0, 0x4, 0x8, 0xfffffffffffffffd, 0x0, 0x1}, {0xffffffff, 0x0, 0x0, 0x6, 0x0, 0x5}]})

2m21.451901575s ago: executing program 0 (id=369):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01062bbd7100048000000100"], 0x60}}, 0x0)

2m21.317619071s ago: executing program 0 (id=370):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a09040000000000000000020000000900020073797a32000000000900010073797a30"], 0x7c}}, 0x200000a4)

2m21.002809944s ago: executing program 0 (id=373):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x400, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafbe863cac50580cd8b", 0x17}, {&(0x7f0000000440)="9c74dfbf77572856c809ff86bb648daf", 0x10}], 0x2)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0xa5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x23, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000540)='fib6_table_lookup\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r7, 0x20e, 0x5ee, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f00000003c0)=0x14)

2m20.746656616s ago: executing program 2 (id=377):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x40)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xe}, {}, {0x7, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x4048884)

2m20.553855083s ago: executing program 2 (id=379):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe2, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x20008850)
sendmsg$nl_route_sched(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002700)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {}, {0xffe0}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0xffff3a93}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)

2m5.965171063s ago: executing program 32 (id=373):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x400, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafbe863cac50580cd8b", 0x17}, {&(0x7f0000000440)="9c74dfbf77572856c809ff86bb648daf", 0x10}], 0x2)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0xa5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x23, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000540)='fib6_table_lookup\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r7, 0x20e, 0x5ee, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f00000003c0)=0x14)

2m4.83666175s ago: executing program 33 (id=379):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe2, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x20008850)
sendmsg$nl_route_sched(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002700)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {}, {0xffe0}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0xffff3a93}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)

15.03147913s ago: executing program 3 (id=879):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x27, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
preadv2(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

8.560681014s ago: executing program 3 (id=896):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000007c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x100}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x54}, 0x1, 0x0, 0x0, 0x4048000}, 0x880)

7.846229698s ago: executing program 6 (id=898):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000040000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x18)
msgrcv(0x0, 0x0, 0x0, 0x2, 0x3000)

7.567018267s ago: executing program 6 (id=901):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
truncate(&(0x7f00000000c0)='./file1\x00', 0x8008)

6.754930049s ago: executing program 3 (id=904):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x757, &(0x7f0000000800)="$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")
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x4004010)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0xffffffffffffffff, 0x1a, 0x0, 0x2, 0x0, 0x0, @void, @value}, 0x28)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x3c, 0x7, 0x10, 0x4}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000400))
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, 0x0)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x810)
r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$tcp_congestion(r4, &(0x7f0000000480)='htcp\x00', 0x5)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r5, &(0x7f0000004740)=[{{&(0x7f0000000140)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000000000000000070000009404000044040001"], 0x18}}], 0x1, 0x44048080)

6.272159731s ago: executing program 3 (id=907):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1809000000000000000000000001000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r4}, &(0x7f0000000540), &(0x7f0000000580)=r5}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r4, &(0x7f0000000780)}, 0x20)

5.281628782s ago: executing program 3 (id=911):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000380)=0x7ffd)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000180)={0x20, 0x0})

5.176327172s ago: executing program 4 (id=913):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff})
gettid()
unshare(0x2040600)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

5.08307531s ago: executing program 4 (id=915):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
r2 = getpgid(0x0)
syz_pidfd_open(r2, 0x0)

4.94182988s ago: executing program 4 (id=916):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r2, 0x400, 0x1)
fremovexattr(r2, &(0x7f0000000040)=@known='system.posix_acl_default\x00')

4.914471685s ago: executing program 6 (id=917):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x757, &(0x7f0000000800)="$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")
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x4004010)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0xffffffffffffffff, 0x1a, 0x0, 0x2, 0x0, 0x0, @void, @value}, 0x28)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x3c, 0x7, 0x10, 0x4}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000400))
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, 0x0)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x810)
r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$tcp_congestion(r4, &(0x7f0000000480)='htcp\x00', 0x5)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r5, &(0x7f0000004740)=[{{&(0x7f0000000140)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000000000000000070000009404000044040001"], 0x18}}], 0x1, 0x44048080)

4.202110066s ago: executing program 3 (id=919):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffea4, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='sys_enter\x00', r3, 0x0, 0x20000000}, 0x18)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)

4.115012056s ago: executing program 5 (id=920):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="a72d11a15c048c0a7d63aebc5cea1f815108f6091475aeec600831aa9d3944e60bc2ad06a619c560aa0118b28f68f1eb14549d633b4b23f179fb680716faa4", 0x3f}], 0x1}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10)
sendmsg$can_raw(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f0000000580)=@canfd={{0x1}, 0xf6, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0xee, 0x0, 0x0, 0x40041}, 0x0)

4.112551948s ago: executing program 4 (id=921):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$kcm(0xa, 0x3, 0x3a)
r5 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0x0, 0xac14140c}, 0xff000000}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x900}, 0x60)
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f0000000440)=""/173, 0x0)

4.050524264s ago: executing program 1 (id=922):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

3.913051623s ago: executing program 1 (id=923):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
times(0x0)
r2 = socket(0x1e, 0x1, 0x0)
connect$tipc(r2, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r2, &(0x7f0000000400), 0x2000011a)
recvmmsg(r2, &(0x7f0000000680)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000e80)=""/4096, 0x1000}], 0x1, 0x0, 0x18}, 0x7}], 0x1, 0x40000001, 0x0)

3.887862179s ago: executing program 5 (id=924):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010400000000000000000100000008000240000000020900010073797a30000000001400000011"], 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)={0x20, 0xd, 0xa, 0xe01, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004005}, 0x800)

3.719628063s ago: executing program 5 (id=925):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40400)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0)
syz_open_dev$video(&(0x7f0000000100), 0x9, 0x8400)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
eventfd2(0x4, 0x801)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f0000000140)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x101, 0x8000000000000001}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x60200, 0x0)
r5 = socket(0x10, 0x2, 0x0)
write(r5, 0x0, 0x0)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0xc020f509, &(0x7f0000000080)={r6, 0xffffffffffffffff, 0x5, 0x2})
writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000003c0)={{{@in=@private, @in6=@local}}, {{@in=@local}, 0x0, @in=@dev}}, 0x0)
io_submit(0x0, 0x1, &(0x7f00000006c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000080)=0x2)

3.504553641s ago: executing program 6 (id=926):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x52b, &(0x7f0000000f40)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
write$binfmt_register(r1, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

2.734536717s ago: executing program 5 (id=927):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="0902000000000000000001"], 0x1c}}, 0x0)

2.618852273s ago: executing program 1 (id=928):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
r4 = bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
close_range(r4, r4, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r3, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r3, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0)

2.609164018s ago: executing program 4 (id=929):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b080358", 0xab}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def", 0xe8}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f5c666dad", 0x24}, {&(0x7f0000000740)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568f47f4bc416adb360fdd9c497c2ad2ffe1ad738f4c073f1378d2b455e61844076a4a97ac1e13e2fb300ae69d55c501f96dcc39bf7ed835cc866f0fbd8e936e8374a484f111919dc610e0a36a0ee3df2ab1dc34cea42a4292e2fbaa86875a506bdd81fbb3dc5ea", 0xf5}, {&(0x7f0000000200)="057322e18609ed78266492c2a2ae3f0c0f3f6394c53de2727898d209dcb274efec9fc9995189ead7bf00148d091675fa045479985e4f644d258d0aa4a69618eb08ba045907a549ed83b88863c73d", 0x4e}], 0x5}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc", 0xd9}, {&(0x7f0000000e80)="5be3b011e12323e4ab88c0472f0700000000000000e71ba6231f303d2db97401439932cfd4", 0x25}], 0x2}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

2.494530989s ago: executing program 5 (id=930):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x118040, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000000)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe)
listen(r3, 0x3)
getsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0x7, 0x0, 0x0)

1.383006387s ago: executing program 4 (id=931):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x2}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
socket$pptp(0x18, 0x1, 0x2)
r3 = socket$inet(0x2, 0x3, 0x8d)
setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="8e"], 0x1)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f00000000c0)={0x0, @local, @local}, &(0x7f0000000140)=0xc)

554.241035ms ago: executing program 5 (id=932):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
truncate(&(0x7f00000000c0)='./file1\x00', 0x8008)

360.825265ms ago: executing program 1 (id=933):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x75}], 0x1}, 0x0)

246.971966ms ago: executing program 6 (id=934):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="a72d11a15c048c0a7d63aebc5cea1f815108f6091475aeec600831aa9d3944e60bc2ad06a619c560aa0118b28f68f1eb14549d633b4b23f179fb680716faa4", 0x3f}], 0x1}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10)
sendmsg$can_raw(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f0000000580)=@canfd={{0x1}, 0xf6, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0xee, 0x0, 0x0, 0x40041}, 0x0)

171.92963ms ago: executing program 1 (id=935):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010400000000000000000100000008000240000000020900010073797a30000000001400000011"], 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)={0x20, 0xd, 0xa, 0xe01, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004005}, 0x800)

66.318781ms ago: executing program 1 (id=936):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x757, &(0x7f0000000800)="$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")
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x4004010)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0xffffffffffffffff, 0x1a, 0x0, 0x2, 0x0, 0x0, @void, @value}, 0x28)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x3c, 0x7, 0x10, 0x4}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000400))
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, 0x0)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x810)
r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$tcp_congestion(r4, &(0x7f0000000480)='htcp\x00', 0x5)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r5, &(0x7f0000004740)=[{{&(0x7f0000000140)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000000000000000070000009404000044040001"], 0x18}}], 0x1, 0x44048080)

0s ago: executing program 6 (id=937):
r0 = io_uring_setup(0x1c9b, &(0x7f0000000940)={0x0, 0xc22d, 0x10000, 0x2, 0x27})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x100000004}, 0x18)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
close_range(r0, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

101.977553][ T7515] FAT-fs (loop0): Directory bread(block 67) failed
[  101.977640][ T7515] FAT-fs (loop0): Directory bread(block 68) failed
[  101.977685][ T7515] FAT-fs (loop0): Directory bread(block 69) failed
[  101.977757][ T7515] FAT-fs (loop0): Directory bread(block 70) failed
[  101.977802][ T7515] FAT-fs (loop0): Directory bread(block 71) failed
[  101.977871][ T7515] FAT-fs (loop0): Directory bread(block 72) failed
[  101.977916][ T7515] FAT-fs (loop0): Directory bread(block 73) failed
[  103.023189][ T7537] loop4: detected capacity change from 0 to 128
[  103.047906][ T7537] EXT4-fs (loop4): Test dummy encryption mode enabled
[  103.082792][ T7537] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  103.204358][ T7537] EXT4-fs (loop4): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.370324][ T6489] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.468799][ T7552] loop3: detected capacity change from 0 to 512
[  103.469446][ T7552] EXT4-fs: Ignoring removed orlov option
[  103.480092][ T7552] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.609455][ T7552] EXT4-fs (loop3): orphan cleanup on readonly fs
[  103.616702][ T7552] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.336: bg 0: block 248: padding at end of block bitmap is not set
[  103.646675][ T7552] Quota error (device loop3): write_blk: dquota write failed
[  103.646760][ T7552] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  103.646810][ T7552] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.336: Failed to acquire dquot type 1
[  103.659204][ T7552] EXT4-fs (loop3): 1 truncate cleaned up
[  103.834432][ T7552] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  103.839658][ T7552] EXT4-fs: Ignoring removed orlov option
[  103.839766][ T7552] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.898538][ T7552] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  103.932114][ T7552] EXT4-fs error (device loop3): __ext4_remount:6738: comm syz.3.336: Abort forced by user
[  103.934116][ T7552] EXT4-fs (loop3): Remounting filesystem read-only
[  103.934150][ T7552] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  104.236513][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.118071][ T7580] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.118470][ T7580] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.159862][ T7577] loop3: detected capacity change from 0 to 128
[  106.361987][ T7584] loop0: detected capacity change from 0 to 128
[  106.368894][ T7584] EXT4-fs (loop0): Test dummy encryption mode enabled
[  106.456433][ T7584] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  106.718897][ T7605] netlink: 'syz.1.352': attribute type 1 has an invalid length.
[  106.726222][ T6494] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.698714][ T7620] hsr0 speed is unknown, defaulting to 1000
[  107.698883][ T7620] hsr0 speed is unknown, defaulting to 1000
[  107.699685][ T7620] hsr0 speed is unknown, defaulting to 1000
[  107.700875][ T7620] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  107.707194][ T7620] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  107.760924][ T7620] hsr0 speed is unknown, defaulting to 1000
[  107.770792][ T7620] hsr0 speed is unknown, defaulting to 1000
[  107.845348][ T7620] hsr0 speed is unknown, defaulting to 1000
[  107.846113][ T7620] hsr0 speed is unknown, defaulting to 1000
[  107.854808][ T7620] hsr0 speed is unknown, defaulting to 1000
[  108.692020][ T7636] netlink: 8 bytes leftover after parsing attributes in process `syz.2.365'.
[  108.693376][ T7636] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  108.700764][ T7636] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  108.710502][ T7638] loop0: detected capacity change from 0 to 512
[  108.720606][ T7638] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  108.745146][ T7638] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.879807][ T6494] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.890808][ T7634] loop1: detected capacity change from 0 to 8192
[  108.926186][ T6809]  loop1: p1 p2 p3 p4
[  108.927541][ T6809] loop1: partition table partially beyond EOD, truncated
[  108.927731][ T6809] loop1: p1 start 67159808 is beyond EOD, truncated
[  108.927784][ T6809] loop1: p2 start 4294967295 is beyond EOD, truncated
[  108.927824][ T6809] loop1: p3 start 83886080 is beyond EOD, truncated
[  108.927862][ T6809] loop1: p4 size 3599499264 extends beyond EOD, truncated
[  108.938100][ T7647] netlink: 76 bytes leftover after parsing attributes in process `syz.0.369'.
[  108.958641][ T7634]  loop1: p1 p2 p3 p4
[  108.958706][ T7634] loop1: partition table partially beyond EOD, truncated
[  108.958846][ T7634] loop1: p1 start 67159808 is beyond EOD, truncated
[  108.958878][ T7634] loop1: p2 start 4294967295 is beyond EOD, truncated
[  108.958908][ T7634] loop1: p3 start 83886080 is beyond EOD, truncated
[  108.958937][ T7634] loop1: p4 size 3599499264 extends beyond EOD, truncated
[  109.087141][ T7651] netlink: 40 bytes leftover after parsing attributes in process `syz.0.370'.
[  109.106495][ T7653] loop4: detected capacity change from 0 to 512
[  109.114640][ T7653] EXT4-fs (loop4): orphan cleanup on readonly fs
[  109.115170][ T7653] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.372: bad orphan inode 13
[  109.115855][ T7653] ext4_test_bit(bit=12, block=18) = 1
[  109.115896][ T7653] is_bad_inode(inode)=0
[  109.115932][ T7653] NEXT_ORPHAN(inode)=2130706432
[  109.115957][ T7653] max_ino=32
[  109.115981][ T7653] i_nlink=1
[  109.117033][ T7653] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  109.249424][ T7653] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  109.251912][ T6692] udevd[6692]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  109.287207][ T7653] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.372: bg 0: block 248: padding at end of block bitmap is not set
[  109.289663][ T7653] Quota error (device loop4): write_blk: dquota write failed
[  109.289789][ T7653] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  109.289826][ T7653] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.372: Failed to acquire dquot type 1
[  109.295139][ T6692] udevd[6692]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  109.303317][ T7653] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  109.406595][ T7665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.409388][ T7665] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.429698][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.480468][ T7666] tipc: Started in network mode
[  109.480659][ T7666] tipc: Node identity 26f353962069, cluster identity 4711
[  109.480834][ T7666] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  109.504954][ T7668] loop4: detected capacity change from 0 to 256
[  109.513188][   T31] audit: type=1326 audit(109.250:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7659 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbe55b728 code=0x7ffc0000
[  109.513558][   T31] audit: type=1326 audit(109.250:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7659 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbe55b728 code=0x7ffc0000
[  109.513708][   T31] audit: type=1326 audit(109.250:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7659 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbe55b728 code=0x7ffc0000
[  109.514677][   T31] audit: type=1326 audit(109.250:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7659 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbe55b728 code=0x7ffc0000
[  109.517421][   T31] audit: type=1326 audit(109.250:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7659 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbe55b728 code=0x7ffc0000
[  109.517890][   T31] audit: type=1326 audit(109.250:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7659 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbe55b728 code=0x7ffc0000
[  109.520885][   T31] audit: type=1326 audit(109.260:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7659 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbe55b728 code=0x7ffc0000
[  109.522010][   T31] audit: type=1326 audit(109.260:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7659 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbe55b728 code=0x7ffc0000
[  109.846185][ T7659] tipc: Resetting bearer <eth:syzkaller0>
[  110.560293][ T6541] tipc: Node number set to 110777238
[  113.917289][ T7701] loop3: detected capacity change from 0 to 256
[  116.268812][ T7711] loop3: detected capacity change from 0 to 512
[  116.269449][ T7711] EXT4-fs: Ignoring removed orlov option
[  116.273932][ T7711] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  116.288278][ T7711] EXT4-fs (loop3): orphan cleanup on readonly fs
[  116.293822][ T7711] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.388: bg 0: block 248: padding at end of block bitmap is not set
[  116.302646][ T7711] __quota_error: 34 callbacks suppressed
[  116.304534][ T7711] Quota error (device loop3): write_blk: dquota write failed
[  116.306876][ T7711] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  116.310021][ T7711] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.388: Failed to acquire dquot type 1
[  116.322950][ T7711] EXT4-fs (loop3): 1 truncate cleaned up
[  116.325893][ T7711] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  116.338859][ T7711] EXT4-fs: Ignoring removed orlov option
[  116.340586][ T7711] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  116.388305][ T7711] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  116.411315][ T7711] EXT4-fs error (device loop3): __ext4_remount:6738: comm syz.3.388: Abort forced by user
[  116.411634][ T7711] EXT4-fs (loop3): Remounting filesystem read-only
[  116.411662][ T7711] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  116.437655][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.994700][ T7724] loop3: detected capacity change from 0 to 128
[  117.063091][ T7724] EXT4-fs (loop3): Test dummy encryption mode enabled
[  117.164828][ T7724] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.282620][ T7724] EXT4-fs (loop3): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  117.457210][ T6488] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  117.556742][ T7729] loop3: detected capacity change from 0 to 4096
[  117.570038][ T7729] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.471576][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.722700][ T7735] loop1: detected capacity change from 0 to 40427
[  118.725763][ T7735] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x3fffff
[  118.727822][ T7735] F2FS-fs (loop1): invalid crc value
[  118.767632][ T7735] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  119.369647][ T6495] syz-executor: attempt to access beyond end of device
[  119.369647][ T6495] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  119.369740][ T6495] CPU: 1 UID: 0 PID: 6495 Comm: syz-executor Not tainted 6.15.0-rc4-syzkaller-ge0f4c8dd9d2d #0 PREEMPT 
[  119.369758][ T6495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  119.369765][ T6495] Call trace:
[  119.369770][ T6495]  show_stack+0x2c/0x3c (C)
[  119.369786][ T6495]  __dump_stack+0x30/0x40
[  119.369799][ T6495]  dump_stack_lvl+0xd8/0x12c
[  119.369809][ T6495]  dump_stack+0x1c/0x28
[  119.369819][ T6495]  f2fs_handle_critical_error+0x34c/0x4b8
[  119.369834][ T6495]  f2fs_stop_checkpoint+0x58/0x6c
[  119.369846][ T6495]  f2fs_write_end_io+0x794/0xadc
[  119.369861][ T6495]  bio_endio+0x81c/0x858
[  119.369874][ T6495]  submit_bio_noacct+0x158/0x176c
[  119.369886][ T6495]  submit_bio+0x354/0x4d4
[  119.369896][ T6495]  f2fs_submit_write_bio+0x13c/0x324
[  119.369909][ T6495]  __submit_merged_bio+0x254/0x704
[  119.369922][ T6495]  __submit_merged_write_cond+0x23c/0x4ac
[  119.369935][ T6495]  f2fs_write_data_pages+0x1e9c/0x27ac
[  119.369949][ T6495]  do_writepages+0x2c0/0x6a8
[  119.369964][ T6495]  filemap_fdatawrite+0x144/0x1e8
[  119.369978][ T6495]  f2fs_sync_dirty_inodes+0x2b8/0x788
[  119.369990][ T6495]  f2fs_write_checkpoint+0x684/0x1694
[  119.370002][ T6495]  kill_f2fs_super+0x21c/0x584
[  119.370015][ T6495]  deactivate_locked_super+0xc4/0x12c
[  119.370028][ T6495]  deactivate_super+0xe0/0x100
[  119.370039][ T6495]  cleanup_mnt+0x31c/0x3ac
[  119.370051][ T6495]  __cleanup_mnt+0x20/0x30
[  119.370063][ T6495]  task_work_run+0x1dc/0x260
[  119.370075][ T6495]  do_notify_resume+0x16c/0x1ec
[  119.370088][ T6495]  el0_svc+0xb0/0x150
[  119.370102][ T6495]  el0t_64_sync_handler+0x78/0x108
[  119.370114][ T6495]  el0t_64_sync+0x198/0x19c
[  119.370309][ T6495] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  119.709326][ T7745] loop3: detected capacity change from 0 to 256
[  121.811303][ T7757] loop3: detected capacity change from 0 to 512
[  121.817862][ T7757] EXT4-fs: Ignoring removed orlov option
[  121.829748][ T7757] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  121.873686][ T7757] EXT4-fs (loop3): orphan cleanup on readonly fs
[  121.877125][ T7757] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.400: bg 0: block 248: padding at end of block bitmap is not set
[  121.886601][ T7757] Quota error (device loop3): write_blk: dquota write failed
[  121.889794][ T7757] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  121.892868][ T7757] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.400: Failed to acquire dquot type 1
[  121.897883][ T7757] EXT4-fs (loop3): 1 truncate cleaned up
[  121.930942][ T7757] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  121.937469][ T7757] EXT4-fs: Ignoring removed orlov option
[  121.944008][ T7757] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  121.982607][ T7757] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  122.001949][ T7757] EXT4-fs error (device loop3): __ext4_remount:6738: comm syz.3.400: Abort forced by user
[  122.002253][ T7757] EXT4-fs (loop3): Remounting filesystem read-only
[  122.002280][ T7757] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  122.022133][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.197595][ T7764] loop1: detected capacity change from 0 to 512
[  122.253114][ T7764] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c118, mo2=0002]
[  122.253193][ T7764] System zones: 0-2, 18-18, 34-34
[  122.254048][ T7764] Quota error (device loop1): do_check_range: Getting dqdh_entries 1536 out of range 0-14
[  122.254114][ T7764] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  122.254145][ T7764] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.402: Failed to acquire dquot type 1
[  122.255083][ T7764] EXT4-fs (loop1): 1 truncate cleaned up
[  122.255944][ T7764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.411424][ T7768] loop3: detected capacity change from 0 to 1024
[  122.988782][ T4459] hfsplus: b-tree write err: -5, ino 4
[  124.261596][ T7760] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 248: padding at end of block bitmap is not set
[  124.463412][ T6490] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  124.464854][ T6490] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  124.471988][ T6490] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  124.477006][ T6490] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  124.481538][ T6490] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  124.554690][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.790988][ T7782] loop1: detected capacity change from 0 to 40427
[  124.794485][ T7782] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x3fffff
[  124.803941][ T7782] F2FS-fs (loop1): invalid crc value
[  124.829840][ T7782] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  125.573577][ T6490] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  125.576929][ T6490] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  125.580127][ T6490] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  125.582849][ T6490] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  125.585471][ T6490] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  126.220039][ T7800] loop1: detected capacity change from 0 to 256
[  126.579008][   T55] Bluetooth: hci5: command tx timeout
[  127.052798][ T2391] ieee802154 phy0 wpan0: encryption failed: -22
[  127.052879][ T2391] ieee802154 phy1 wpan1: encryption failed: -22
[  127.619376][   T55] Bluetooth: hci6: command tx timeout
[  128.253411][ T7802] loop1: detected capacity change from 0 to 512
[  128.255356][ T7802] EXT4-fs: Ignoring removed orlov option
[  128.260373][ T7802] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  128.261439][ T7659] tipc: Disabling bearer <eth:syzkaller0>
[  128.276328][ T7802] EXT4-fs (loop1): orphan cleanup on readonly fs
[  128.277535][ T7802] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.411: bg 0: block 248: padding at end of block bitmap is not set
[  128.277924][ T7802] Quota error (device loop1): write_blk: dquota write failed
[  128.277990][ T7802] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  128.288345][ T7802] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.411: Failed to acquire dquot type 1
[  128.293298][ T7802] EXT4-fs (loop1): 1 truncate cleaned up
[  128.294797][ T7802] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  128.309870][ T7802] EXT4-fs: Ignoring removed orlov option
[  128.309988][ T7802] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  128.368452][ T7802] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  128.494324][ T7802] EXT4-fs error (device loop1): __ext4_remount:6738: comm syz.1.411: Abort forced by user
[  128.494771][ T7802] EXT4-fs (loop1): Remounting filesystem read-only
[  128.494820][ T7802] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  128.583553][ T7816] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  128.583827][ T7816] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.628059][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.658606][   T55] Bluetooth: hci5: command tx timeout
[  128.875389][ T7788] hsr0 speed is unknown, defaulting to 1000
[  129.306856][ T7788] chnl_net:caif_netlink_parms(): no params data found
[  129.428379][ T7777] hsr0 speed is unknown, defaulting to 1000
[  129.711690][   T55] Bluetooth: hci6: command tx timeout
[  129.972708][ T7859] loop3: detected capacity change from 0 to 128
[  130.020598][ T4459] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.252945][ T7841] loop4: detected capacity change from 0 to 40427
[  130.258005][ T7841] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x3fffff
[  130.272745][ T7841] F2FS-fs (loop4): invalid crc value
[  130.333694][ T7841] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  130.340535][ T4459] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.442538][ T7788] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.442653][ T7788] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.442812][ T7788] bridge_slave_0: entered allmulticast mode
[  130.443776][ T7788] bridge_slave_0: entered promiscuous mode
[  130.445334][ T7788] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.445407][ T7788] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.445551][ T7788] bridge_slave_1: entered allmulticast mode
[  130.446554][ T7788] bridge_slave_1: entered promiscuous mode
[  130.561422][ T7872] loop1: detected capacity change from 0 to 256
[  130.748325][   T55] Bluetooth: hci5: command tx timeout
[  131.389812][ T7875] loop3: detected capacity change from 0 to 512
[  131.392616][ T7875] EXT4-fs: Ignoring removed orlov option
[  131.411223][ T7788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.417469][ T7875] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  131.450650][ T7875] EXT4-fs (loop3): orphan cleanup on readonly fs
[  131.453530][ T7875] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.422: bg 0: block 248: padding at end of block bitmap is not set
[  131.458072][ T7875] Quota error (device loop3): write_blk: dquota write failed
[  131.458879][ T7875] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  131.458924][ T7875] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.422: Failed to acquire dquot type 1
[  131.474466][ T7875] EXT4-fs (loop3): 1 truncate cleaned up
[  131.539601][ T4459] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.574421][ T7788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.754784][ T7875] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  131.762536][ T7875] EXT4-fs: Ignoring removed orlov option
[  131.764168][ T7875] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  131.778226][   T55] Bluetooth: hci6: command tx timeout
[  131.791524][ T4459] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.818366][ T7875] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  131.845283][ T7875] EXT4-fs error (device loop3): __ext4_remount:6738: comm syz.3.422: Abort forced by user
[  131.854959][ T7875] EXT4-fs (loop3): Remounting filesystem read-only
[  131.857231][ T7875] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  131.894340][ T7788] team0: Port device team_slave_0 added
[  131.906347][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.993129][ T7788] team0: Port device team_slave_1 added
[  132.181124][ T7788] batman_adv: batadv0: Adding interface: batadv_slave_0
[  132.183279][ T7788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.198653][ T7788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  132.221047][ T7889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  132.221574][ T7889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  132.530350][ T7788] batman_adv: batadv0: Adding interface: batadv_slave_1
[  132.530412][ T7788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.530459][ T7788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  132.675235][ T4459] bridge_slave_1: left allmulticast mode
[  132.675418][ T4459] bridge_slave_1: left promiscuous mode
[  132.676387][ T4459] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.692722][ T4459] bridge_slave_0: left allmulticast mode
[  132.692791][ T4459] bridge_slave_0: left promiscuous mode
[  132.692906][ T4459] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.818629][   T55] Bluetooth: hci5: command tx timeout
[  133.171504][ T7906] loop3: detected capacity change from 0 to 128
[  133.173277][ T7906] EXT4-fs (loop3): Test dummy encryption mode enabled
[  133.214859][ T7906] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  133.689967][ T6488] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  133.705596][ T7909] loop4: detected capacity change from 0 to 512
[  133.723560][ T7909] EXT4-fs: Ignoring removed orlov option
[  133.768587][ T7909] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  133.775006][ T7909] EXT4-fs (loop4): orphan cleanup on readonly fs
[  133.776384][ T7909] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.431: bg 0: block 248: padding at end of block bitmap is not set
[  133.776760][ T7909] Quota error (device loop4): write_blk: dquota write failed
[  133.776813][ T7909] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  133.776844][ T7909] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.431: Failed to acquire dquot type 1
[  133.777726][ T7909] EXT4-fs (loop4): 1 truncate cleaned up
[  133.782457][ T7909] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  133.795683][ T7909] EXT4-fs: Ignoring removed orlov option
[  133.795802][ T7909] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  133.824628][ T7909] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  133.844231][ T7909] EXT4-fs error (device loop4): __ext4_remount:6738: comm syz.4.431: Abort forced by user
[  133.844566][ T7909] EXT4-fs (loop4): Remounting filesystem read-only
[  133.844595][ T7909] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  133.865320][   T55] Bluetooth: hci6: command tx timeout
[  133.877022][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.230511][ T7912] loop3: detected capacity change from 0 to 40427
[  134.242049][ T7912] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x3fffff
[  134.243359][ T7912] F2FS-fs (loop3): invalid crc value
[  134.282910][ T7912] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  134.336705][ T7928] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.341963][ T7928] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  134.354794][ T7928] netlink: 828 bytes leftover after parsing attributes in process `syz.1.435'.
[  134.924677][ T4459] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  134.988853][ T4459] bond_slave_0: left allmulticast mode
[  134.994297][ T4459] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.072066][ T4459] bond_slave_1: left allmulticast mode
[  135.075069][ T4459] bond0 (unregistering): Released all slaves
[  135.088434][ T7777] chnl_net:caif_netlink_parms(): no params data found
[  135.108772][ T7788] hsr_slave_0: entered promiscuous mode
[  135.111173][ T7788] hsr_slave_1: entered promiscuous mode
[  135.113340][ T7788] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  135.115497][ T7788] Cannot create hsr debugfs directory
[  135.221260][ T4459] tipc: Left network mode
[  135.562643][ T7944] loop3: detected capacity change from 0 to 128
[  135.592282][ T7944] EXT4-fs (loop3): Test dummy encryption mode enabled
[  135.698503][ T7944] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  135.823416][ T7944] EXT4-fs (loop3): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  136.044069][ T7948] loop4: detected capacity change from 0 to 512
[  136.053527][ T6488] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  136.056090][ T7948] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  136.073161][ T7948] EXT4-fs (loop4): 1 truncate cleaned up
[  136.092905][ T7948] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.226460][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.109336][ T7777] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.111533][ T7777] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.113869][ T7777] bridge_slave_0: entered allmulticast mode
[  137.116498][ T7777] bridge_slave_0: entered promiscuous mode
[  137.288375][ T7777] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.288458][ T7777] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.288619][ T7777] bridge_slave_1: entered allmulticast mode
[  137.289547][ T7777] bridge_slave_1: entered promiscuous mode
[  137.673802][ T7777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.819309][ T7977] loop3: detected capacity change from 0 to 40427
[  137.839230][ T7977] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x3fffff
[  137.842878][ T7977] F2FS-fs (loop3): invalid crc value
[  137.948011][ T7777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  137.994671][ T7977] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  138.042554][ T7788] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  138.047157][ T7788] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  138.062106][ T7788] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  138.066316][ T7788] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  138.200572][ T7777] team0: Port device team_slave_0 added
[  138.242527][ T4459] hsr_slave_0: left promiscuous mode
[  138.245043][ T4459] hsr_slave_1: left promiscuous mode
[  138.247442][ T4459] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  138.250197][ T4459] batman_adv: batadv0: Removing interface: batadv_slave_0
[  138.253412][ T4459] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.256381][ T4459] batman_adv: batadv0: Removing interface: batadv_slave_1
[  138.289072][ T4459] veth1_macvtap: left promiscuous mode
[  138.290868][ T4459] veth0_macvtap: left promiscuous mode
[  138.294405][ T4459] veth1_vlan: left promiscuous mode
[  138.296516][ T4459] veth0_vlan: left promiscuous mode
[  138.382488][ T6488] syz-executor: attempt to access beyond end of device
[  138.382488][ T6488] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  138.382591][ T6488] CPU: 1 UID: 0 PID: 6488 Comm: syz-executor Not tainted 6.15.0-rc4-syzkaller-ge0f4c8dd9d2d #0 PREEMPT 
[  138.382606][ T6488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  138.382613][ T6488] Call trace:
[  138.382628][ T6488]  show_stack+0x2c/0x3c (C)
[  138.382645][ T6488]  __dump_stack+0x30/0x40
[  138.382657][ T6488]  dump_stack_lvl+0xd8/0x12c
[  138.382668][ T6488]  dump_stack+0x1c/0x28
[  138.382678][ T6488]  f2fs_handle_critical_error+0x34c/0x4b8
[  138.382693][ T6488]  f2fs_stop_checkpoint+0x58/0x6c
[  138.382704][ T6488]  f2fs_write_end_io+0x794/0xadc
[  138.382719][ T6488]  bio_endio+0x81c/0x858
[  138.382732][ T6488]  submit_bio_noacct+0x158/0x176c
[  138.382743][ T6488]  submit_bio+0x354/0x4d4
[  138.382753][ T6488]  f2fs_submit_write_bio+0x13c/0x324
[  138.382766][ T6488]  __submit_merged_bio+0x254/0x704
[  138.382779][ T6488]  __submit_merged_write_cond+0x23c/0x4ac
[  138.382793][ T6488]  f2fs_write_data_pages+0x1e9c/0x27ac
[  138.382808][ T6488]  do_writepages+0x2c0/0x6a8
[  138.382822][ T6488]  filemap_fdatawrite+0x144/0x1e8
[  138.382836][ T6488]  f2fs_sync_dirty_inodes+0x2b8/0x788
[  138.382848][ T6488]  f2fs_write_checkpoint+0x684/0x1694
[  138.382860][ T6488]  kill_f2fs_super+0x21c/0x584
[  138.382874][ T6488]  deactivate_locked_super+0xc4/0x12c
[  138.382886][ T6488]  deactivate_super+0xe0/0x100
[  138.382897][ T6488]  cleanup_mnt+0x31c/0x3ac
[  138.382909][ T6488]  __cleanup_mnt+0x20/0x30
[  138.382921][ T6488]  task_work_run+0x1dc/0x260
[  138.382934][ T6488]  do_notify_resume+0x16c/0x1ec
[  138.382947][ T6488]  el0_svc+0xb0/0x150
[  138.382960][ T6488]  el0t_64_sync_handler+0x78/0x108
[  138.382972][ T6488]  el0t_64_sync+0x198/0x19c
[  138.382987][ T6488] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  138.793231][ T8005] tipc: Can't bind to reserved service type 1
[  139.065793][ T8016] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.073698][ T8016] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.080689][ T8016] netlink: 828 bytes leftover after parsing attributes in process `syz.4.450'.
[  140.550326][ T8022] loop1: detected capacity change from 0 to 512
[  140.551610][ T8022] EXT4-fs: Ignoring removed orlov option
[  140.556572][ T8022] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  140.558646][ T8022] EXT4-fs (loop1): orphan cleanup on readonly fs
[  140.563131][ T8022] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.452: bg 0: block 248: padding at end of block bitmap is not set
[  140.563717][ T8022] Quota error (device loop1): write_blk: dquota write failed
[  140.563773][ T8022] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  140.563804][ T8022] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.452: Failed to acquire dquot type 1
[  140.568536][ T8022] EXT4-fs (loop1): 1 truncate cleaned up
[  140.576876][ T8022] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.592118][ T8022] EXT4-fs: Ignoring removed orlov option
[  140.592231][ T8022] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  140.618663][ T8022] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  140.629857][ T8022] EXT4-fs error (device loop1): __ext4_remount:6738: comm syz.1.452: Abort forced by user
[  140.632976][ T8022] EXT4-fs (loop1): Remounting filesystem read-only
[  140.634807][ T8022] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  140.650541][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.923023][ T4459] team0 (unregistering): Port device team_slave_1 removed
[  141.080873][ T4459] team0 (unregistering): Port device team_slave_0 removed
[  141.966036][ T8033] loop1: detected capacity change from 0 to 40427
[  141.969235][ T8033] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x3fffff
[  141.972636][ T8033] F2FS-fs (loop1): invalid crc value
[  142.014447][ T8033] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  142.619936][ T6495] syz-executor: attempt to access beyond end of device
[  142.619936][ T6495] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  142.620038][ T6495] CPU: 0 UID: 0 PID: 6495 Comm: syz-executor Not tainted 6.15.0-rc4-syzkaller-ge0f4c8dd9d2d #0 PREEMPT 
[  142.620054][ T6495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  142.620062][ T6495] Call trace:
[  142.620066][ T6495]  show_stack+0x2c/0x3c (C)
[  142.620083][ T6495]  __dump_stack+0x30/0x40
[  142.620095][ T6495]  dump_stack_lvl+0xd8/0x12c
[  142.620106][ T6495]  dump_stack+0x1c/0x28
[  142.620116][ T6495]  f2fs_handle_critical_error+0x34c/0x4b8
[  142.620131][ T6495]  f2fs_stop_checkpoint+0x58/0x6c
[  142.620143][ T6495]  f2fs_write_end_io+0x794/0xadc
[  142.620157][ T6495]  bio_endio+0x81c/0x858
[  142.620171][ T6495]  submit_bio_noacct+0x158/0x176c
[  142.620182][ T6495]  submit_bio+0x354/0x4d4
[  142.620192][ T6495]  f2fs_submit_write_bio+0x13c/0x324
[  142.620205][ T6495]  __submit_merged_bio+0x254/0x704
[  142.620218][ T6495]  __submit_merged_write_cond+0x23c/0x4ac
[  142.620232][ T6495]  f2fs_write_data_pages+0x1e9c/0x27ac
[  142.620245][ T6495]  do_writepages+0x2c0/0x6a8
[  142.620260][ T6495]  filemap_fdatawrite+0x144/0x1e8
[  142.620274][ T6495]  f2fs_sync_dirty_inodes+0x2b8/0x788
[  142.620286][ T6495]  f2fs_write_checkpoint+0x684/0x1694
[  142.620298][ T6495]  kill_f2fs_super+0x21c/0x584
[  142.620311][ T6495]  deactivate_locked_super+0xc4/0x12c
[  142.620324][ T6495]  deactivate_super+0xe0/0x100
[  142.620335][ T6495]  cleanup_mnt+0x31c/0x3ac
[  142.620348][ T6495]  __cleanup_mnt+0x20/0x30
[  142.620359][ T6495]  task_work_run+0x1dc/0x260
[  142.620372][ T6495]  do_notify_resume+0x16c/0x1ec
[  142.620385][ T6495]  el0_svc+0xb0/0x150
[  142.620398][ T6495]  el0t_64_sync_handler+0x78/0x108
[  142.620411][ T6495]  el0t_64_sync+0x198/0x19c
[  142.622146][ T6495] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  142.806889][   T31] audit: type=1326 audit(142.540:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8038 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  142.812962][   T31] audit: type=1326 audit(142.550:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8038 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  142.813747][   T31] audit: type=1326 audit(142.550:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8038 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  142.813980][   T31] audit: type=1326 audit(142.550:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8038 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  142.814123][   T31] audit: type=1326 audit(142.550:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8038 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  142.814361][   T31] audit: type=1326 audit(142.550:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8038 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=80 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  142.814557][   T31] audit: type=1326 audit(142.550:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8038 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  142.814718][   T31] audit: type=1326 audit(142.550:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8038 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  143.582504][ T7777] team0: Port device team_slave_1 added
[  143.676787][ T7777] batman_adv: batadv0: Adding interface: batadv_slave_0
[  143.676851][ T7777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.676880][ T7777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  143.803227][ T8047] loop1: detected capacity change from 0 to 256
[  144.454012][ T7777] batman_adv: batadv0: Adding interface: batadv_slave_1
[  144.454080][ T7777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.454128][ T7777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.504793][ T7788] 8021q: adding VLAN 0 to HW filter on device bond0
[  145.541548][ T7788] 8021q: adding VLAN 0 to HW filter on device team0
[  145.574461][ T7777] hsr_slave_0: entered promiscuous mode
[  145.582225][ T7777] hsr_slave_1: entered promiscuous mode
[  145.591794][ T7777] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  145.594080][ T7777] Cannot create hsr debugfs directory
[  145.681975][ T6777] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.682067][ T6777] bridge0: port 1(bridge_slave_0) entered forwarding state
[  145.804167][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.804255][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  146.035882][ T7788] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  147.367801][ T7777] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  147.380028][ T7777] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  147.459095][ T7777] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  147.469325][ T8090] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.469605][ T8090] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  147.477447][ T7777] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  147.485451][ T8090] netlink: 828 bytes leftover after parsing attributes in process `syz.4.467'.
[  147.584812][ T8069] loop3: detected capacity change from 0 to 40427
[  147.590475][ T8069] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x3fffff
[  147.597266][ T8069] F2FS-fs (loop3): invalid crc value
[  147.627427][ T7788] 8021q: adding VLAN 0 to HW filter on device batadv0
[  147.635637][ T8069] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  147.762529][ T7777] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.805144][ T7777] 8021q: adding VLAN 0 to HW filter on device team0
[  147.894143][ T2223] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.894224][ T2223] bridge0: port 1(bridge_slave_0) entered forwarding state
[  147.895788][ T2223] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.895851][ T2223] bridge0: port 2(bridge_slave_1) entered forwarding state
[  148.000042][ T7777] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  148.273006][ T8118] loop1: detected capacity change from 0 to 128
[  148.606529][ T8118] EXT4-fs (loop1): Test dummy encryption mode enabled
[  148.653595][ T6488] syz-executor: attempt to access beyond end of device
[  148.653595][ T6488] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  148.653687][ T6488] CPU: 1 UID: 0 PID: 6488 Comm: syz-executor Not tainted 6.15.0-rc4-syzkaller-ge0f4c8dd9d2d #0 PREEMPT 
[  148.653705][ T6488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  148.653713][ T6488] Call trace:
[  148.653717][ T6488]  show_stack+0x2c/0x3c (C)
[  148.653740][ T6488]  __dump_stack+0x30/0x40
[  148.653752][ T6488]  dump_stack_lvl+0xd8/0x12c
[  148.653762][ T6488]  dump_stack+0x1c/0x28
[  148.653773][ T6488]  f2fs_handle_critical_error+0x34c/0x4b8
[  148.653788][ T6488]  f2fs_stop_checkpoint+0x58/0x6c
[  148.653800][ T6488]  f2fs_write_end_io+0x794/0xadc
[  148.653814][ T6488]  bio_endio+0x81c/0x858
[  148.653828][ T6488]  submit_bio_noacct+0x158/0x176c
[  148.653839][ T6488]  submit_bio+0x354/0x4d4
[  148.653849][ T6488]  f2fs_submit_write_bio+0x13c/0x324
[  148.653862][ T6488]  __submit_merged_bio+0x254/0x704
[  148.653876][ T6488]  __submit_merged_write_cond+0x23c/0x4ac
[  148.653888][ T6488]  f2fs_write_data_pages+0x1e9c/0x27ac
[  148.653902][ T6488]  do_writepages+0x2c0/0x6a8
[  148.653917][ T6488]  filemap_fdatawrite+0x144/0x1e8
[  148.653931][ T6488]  f2fs_sync_dirty_inodes+0x2b8/0x788
[  148.653943][ T6488]  f2fs_write_checkpoint+0x684/0x1694
[  148.653955][ T6488]  kill_f2fs_super+0x21c/0x584
[  148.653968][ T6488]  deactivate_locked_super+0xc4/0x12c
[  148.653981][ T6488]  deactivate_super+0xe0/0x100
[  148.653992][ T6488]  cleanup_mnt+0x31c/0x3ac
[  148.654005][ T6488]  __cleanup_mnt+0x20/0x30
[  148.654016][ T6488]  task_work_run+0x1dc/0x260
[  148.654029][ T6488]  do_notify_resume+0x16c/0x1ec
[  148.654042][ T6488]  el0_svc+0xb0/0x150
[  148.654055][ T6488]  el0t_64_sync_handler+0x78/0x108
[  148.654067][ T6488]  el0t_64_sync+0x198/0x19c
[  148.654275][ T6488] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  148.709232][ T8118] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  148.761056][ T8115] EXT4-fs (loop1): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  148.873130][ T7788] veth0_vlan: entered promiscuous mode
[  148.876211][ T7788] veth1_vlan: entered promiscuous mode
[  148.917250][ T6495] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  148.970960][ T7788] veth0_macvtap: entered promiscuous mode
[  148.975233][ T7788] veth1_macvtap: entered promiscuous mode
[  148.983188][ T7788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.986056][ T7788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.989902][ T7788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.992949][ T7788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.995847][ T7788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  148.999041][ T7788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.001816][ T7788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.004956][ T7788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.009734][ T7788] batman_adv: batadv0: Interface activated: batadv_slave_0
[  149.027253][ T7788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.036128][ T7788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.036192][ T7788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.036221][ T7788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.036247][ T7788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.036273][ T7788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.036300][ T7788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  149.036326][ T7788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.037192][ T7788] batman_adv: batadv0: Interface activated: batadv_slave_1
[  149.052227][ T7777] 8021q: adding VLAN 0 to HW filter on device batadv0
[  149.063055][ T7788] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.063135][ T7788] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.063177][ T7788] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.063217][ T7788] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.199274][ T6777] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.199339][ T6777] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.239141][ T6778] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.241543][ T6778] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.587680][ T8148] loop1: detected capacity change from 0 to 1024
[  150.291376][ T7777] veth0_vlan: entered promiscuous mode
[  150.294617][ T7777] veth1_vlan: entered promiscuous mode
[  150.329207][ T8156] veth1_to_team: entered promiscuous mode
[  150.365929][ T7777] veth0_macvtap: entered promiscuous mode
[  150.367862][ T7777] veth1_macvtap: entered promiscuous mode
[  150.434022][   T14] hfsplus: b-tree write err: -5, ino 4
[  150.730594][ T8156] veth1_to_team (unregistering): left promiscuous mode
[  151.374282][ T8156] team0: Port device team_slave_1 removed
[  151.390060][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.390131][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.390153][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.390174][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.390194][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.390214][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.390234][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.390254][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.390278][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.390299][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.391016][ T7777] batman_adv: batadv0: Interface activated: batadv_slave_0
[  151.392414][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  151.392445][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.392464][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  151.392497][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.392516][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  151.392543][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.392563][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  151.392583][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.392606][ T7777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  151.392626][ T7777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.393170][ T7777] batman_adv: batadv0: Interface activated: batadv_slave_1
[  151.396210][ T7777] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  151.396252][ T7777] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  151.396283][ T7777] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  151.396313][ T7777] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  151.781061][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  151.797204][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  151.856203][ T7695] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  151.872586][ T7695] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.930152][ T8193] loop6: detected capacity change from 0 to 128
[  153.113898][ T8193] EXT4-fs (loop6): Test dummy encryption mode enabled
[  153.281538][ T8193] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  153.579729][ T8190] EXT4-fs (loop6): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  153.717425][ T7788] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  154.142946][ T8227] loop6: detected capacity change from 0 to 1024
[  154.980893][ T7695] hfsplus: b-tree write err: -5, ino 4
[  155.414625][ T8254] netlink: 4 bytes leftover after parsing attributes in process `syz.5.497'.
[  155.656650][    C0] vcan0: j1939_tp_rxtimer: 0x000000003bb0a4a3: rx timeout, send abort
[  155.656910][ T8255] loop6: detected capacity change from 0 to 128
[  155.761508][ T8255] EXT4-fs (loop6): Test dummy encryption mode enabled
[  155.867785][ T8255] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  156.073922][ T8255] EXT4-fs (loop6): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  156.215876][ T7788] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  157.014786][ T8280] loop6: detected capacity change from 0 to 1024
[  158.288398][ T2223] hfsplus: b-tree write err: -5, ino 4
[  158.438307][   T31] audit: type=1326 audit(158.170:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8293 comm="syz.5.506" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8655b728 code=0x7ffc0000
[  158.438402][   T31] audit: type=1326 audit(158.170:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8293 comm="syz.5.506" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8655b728 code=0x7ffc0000
[  158.438446][   T31] audit: type=1326 audit(158.170:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8293 comm="syz.5.506" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=68 compat=0 ip=0xffff8655b728 code=0x7ffc0000
[  158.438519][   T31] audit: type=1326 audit(158.170:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8293 comm="syz.5.506" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8655b728 code=0x7ffc0000
[  158.438563][   T31] audit: type=1326 audit(158.170:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8293 comm="syz.5.506" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8655b728 code=0x7ffc0000
[  158.444347][   T31] audit: type=1326 audit(158.180:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8293 comm="syz.5.506" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff8655b728 code=0x7ffc0000
[  158.444403][   T31] audit: type=1326 audit(158.180:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8293 comm="syz.5.506" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8655b728 code=0x7ffc0000
[  158.444444][   T31] audit: type=1326 audit(158.180:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8293 comm="syz.5.506" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8655b728 code=0x7ffc0000
[  159.087968][ T8313] loop6: detected capacity change from 0 to 128
[  159.119905][ T8313] EXT4-fs (loop6): Test dummy encryption mode enabled
[  159.169019][ T8313] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  159.225257][ T8313] EXT4-fs (loop6): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  160.197608][ T8335] loop5: detected capacity change from 0 to 1024
[  160.838543][ T7695] hfsplus: b-tree write err: -5, ino 4
[  160.905418][ T8348] IPv6: Can't replace route, no match found
[  160.952290][ T7788] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  161.197170][   T31] audit: type=1326 audit(160.930:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8358 comm="syz.3.525" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  161.210344][   T31] audit: type=1326 audit(160.950:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8358 comm="syz.3.525" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  161.908465][ T8354] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  161.908708][ T8354] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  161.974598][ T8354] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  161.985749][ T8354] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  161.985982][ T8354] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  162.041380][ T8354] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  162.151934][ T8354] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  162.152009][ T8354] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  162.160220][ T8354] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  162.160318][ T8354] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  162.174700][ T8354] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  162.198077][ T8354] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  162.198876][ T8354] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  162.207802][ T8354] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  162.212507][ T8371] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  162.215400][ T8371] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  162.848690][ T8371] netlink: 892 bytes leftover after parsing attributes in process `syz.3.527'.
[  162.959869][ T8384] x_tables: duplicate underflow at hook 1
[  163.099449][ T8393] netlink: 4 bytes leftover after parsing attributes in process `syz.6.533'.
[  163.139937][ T8397] loop4: detected capacity change from 0 to 512
[  163.141041][ T8397] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  163.160591][ T8397] EXT4-fs (loop4): 1 truncate cleaned up
[  163.169334][ T8397] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.788521][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  164.034197][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  164.178890][ T6490] Bluetooth: hci3: command 0x0406 tx timeout
[  164.183510][   T55] Bluetooth: hci5: command 0x0c1a tx timeout
[  164.259044][   T55] Bluetooth: hci6: command 0x0c1a tx timeout
[  164.603651][ T8420] netlink: 132 bytes leftover after parsing attributes in process `syz.3.542'.
[  164.674242][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.761614][ T8430] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  164.774157][ T8430] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  164.782554][ T8430] netlink: 892 bytes leftover after parsing attributes in process `syz.6.548'.
[  164.964345][ T8444] block device autoloading is deprecated and will be removed.
[  164.965143][ T8444] syz.4.551: attempt to access beyond end of device
[  164.965143][ T8444] md30: rw=2048, sector=0, nr_sectors = 8 limit=0
[  165.069644][ T8456] netlink: 24 bytes leftover after parsing attributes in process `syz.4.555'.
[  165.071712][ T8458] netlink: 4 bytes leftover after parsing attributes in process `syz.1.553'.
[  165.128341][ T8456] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  165.187574][ T8462] tun0: tun_chr_ioctl cmd 1074025677
[  165.187742][ T8462] tun0: linktype set to 805
[  165.192709][ T8462] netlink: 56 bytes leftover after parsing attributes in process `syz.3.557'.
[  165.858386][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  166.099465][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  166.260596][ T6490] Bluetooth: hci3: command 0x0406 tx timeout
[  166.262394][   T55] Bluetooth: hci5: command 0x0c1a tx timeout
[  166.339272][   T55] Bluetooth: hci6: command 0x0c1a tx timeout
[  166.344494][ T8500] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.347329][ T8500] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  166.354882][ T8500] netlink: 892 bytes leftover after parsing attributes in process `syz.6.571'.
[  166.382989][ T8503] netlink: 28 bytes leftover after parsing attributes in process `syz.4.570'.
[  166.467826][   T31] kauditd_printk_skb: 37 callbacks suppressed
[  166.467896][   T31] audit: type=1326 audit(166.200:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8506 comm="syz.4.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  166.467949][   T31] audit: type=1326 audit(166.200:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8506 comm="syz.4.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  166.467990][   T31] audit: type=1326 audit(166.200:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8506 comm="syz.4.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=272 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  166.468030][   T31] audit: type=1326 audit(166.200:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8506 comm="syz.4.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  166.468070][   T31] audit: type=1326 audit(166.200:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8506 comm="syz.4.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  166.616778][ T8517] loop5: detected capacity change from 0 to 512
[  166.641864][ T8517] EXT4-fs (loop5): orphan cleanup on readonly fs
[  166.646951][ T8517] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.578: bg 0: block 248: padding at end of block bitmap is not set
[  166.651603][ T8517] Quota error (device loop5): write_blk: dquota write failed
[  166.651685][ T8517] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  166.651745][ T8517] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.578: Failed to acquire dquot type 1
[  166.662509][ T8517] EXT4-fs (loop5): 1 truncate cleaned up
[  166.679179][ T8517] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  166.731842][ T8519] loop3: detected capacity change from 0 to 8192
[  166.732991][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.743904][ T8519] FAT-fs (loop3): Directory bread(block 22913) failed
[  166.743986][ T8519] FAT-fs (loop3): Directory bread(block 22914) failed
[  166.744024][ T8519] FAT-fs (loop3): Directory bread(block 22915) failed
[  166.744061][ T8519] FAT-fs (loop3): Directory bread(block 22916) failed
[  166.744097][ T8519] FAT-fs (loop3): Directory bread(block 22917) failed
[  166.744134][ T8519] FAT-fs (loop3): Directory bread(block 22918) failed
[  166.744171][ T8519] FAT-fs (loop3): Directory bread(block 22919) failed
[  166.744281][ T8519] FAT-fs (loop3): Directory bread(block 22920) failed
[  166.744320][ T8519] FAT-fs (loop3): Directory bread(block 22921) failed
[  166.744356][ T8519] FAT-fs (loop3): Directory bread(block 22922) failed
[  166.853106][   T31] audit: type=1326 audit(166.590:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8531 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  166.853186][   T31] audit: type=1326 audit(166.590:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8531 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  166.867194][   T31] audit: type=1326 audit(166.600:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8531 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=190 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  166.915655][ T8530] loop5: detected capacity change from 0 to 4096
[  166.987404][ T8530] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.112609][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.129346][ T8550] loop1: detected capacity change from 0 to 2048
[  167.175132][ T8550] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.592: bad orphan inode 8192
[  167.192308][ T8550] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.205912][ T8555] netlink: 4 bytes leftover after parsing attributes in process `syz.4.591'.
[  167.398035][ T8558] wireguard0: entered promiscuous mode
[  167.406177][ T8558] wireguard0: entered allmulticast mode
[  168.029559][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  168.178395][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  168.340048][   T55] Bluetooth: hci5: command 0x0c1a tx timeout
[  168.375527][ T8577] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.375796][ T8577] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.419090][   T55] Bluetooth: hci6: command 0x0c1a tx timeout
[  169.337776][ T8599] loop4: detected capacity change from 0 to 256
[  170.339542][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.932135][ T8602] loop3: detected capacity change from 0 to 512
[  170.958256][ T8602] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  171.004821][ T8602] EXT4-fs (loop3): 1 truncate cleaned up
[  171.007330][ T8602] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.057882][ T8609] loop6: detected capacity change from 0 to 512
[  171.095700][ T8609] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  171.095820][ T8609] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  171.114530][ T8609] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  171.117151][ T8609] System zones: 0-2, 18-18, 34-34
[  171.121235][ T8609] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  171.152284][ T8609] EXT4-fs (loop6): 1 truncate cleaned up
[  171.155657][ T8609] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.275668][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.284999][ T8613] netlink: 'syz.3.605': attribute type 16 has an invalid length.
[  171.287814][ T8613] netlink: 'syz.3.605': attribute type 17 has an invalid length.
[  171.528561][ T8613] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  171.754804][ T8630] netlink: 4 bytes leftover after parsing attributes in process `syz.1.612'.
[  171.818475][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.854107][ T8635] loop6: detected capacity change from 0 to 2048
[  171.893851][ T8635] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz.6.616: bad orphan inode 8192
[  171.897026][ T8635] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.914171][ T8642] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  171.916743][ T8642] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  172.233896][ T8647] loop3: detected capacity change from 0 to 128
[  172.235897][ T8647] EXT4-fs (loop3): Test dummy encryption mode enabled
[  172.251228][ T8647] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  172.380549][ T8647] EXT4-fs (loop3): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  172.967031][ T6488] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  173.151855][   T31] kauditd_printk_skb: 4 callbacks suppressed
[  173.151916][   T31] audit: type=1326 audit(172.890:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.170225][   T31] audit: type=1326 audit(172.910:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.177973][   T31] audit: type=1326 audit(172.910:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.848789][   T31] audit: type=1326 audit(173.560:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.848906][   T31] audit: type=1326 audit(173.570:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.848969][   T31] audit: type=1326 audit(173.570:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.849047][   T31] audit: type=1326 audit(173.570:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.849137][   T31] audit: type=1326 audit(173.580:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.849226][   T31] audit: type=1326 audit(173.580:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  173.856964][   T31] audit: type=1326 audit(173.580:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8657 comm="syz.4.623" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  174.111491][ T8660] loop5: detected capacity change from 0 to 256
[  174.629093][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.421585][ T8682] loop6: detected capacity change from 0 to 2048
[  175.465553][ T8682] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.937360][ T8670] hsr0 speed is unknown, defaulting to 1000
[  175.997486][ T8700] netlink: 4 bytes leftover after parsing attributes in process `syz.5.631'.
[  176.155647][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.290321][ T8706] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  176.290617][ T8706] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  176.704077][ T8717] netlink: 8 bytes leftover after parsing attributes in process `syz.5.633'.
[  176.892026][ T8723] loop5: detected capacity change from 0 to 2048
[  176.991789][ T8724] loop3: detected capacity change from 0 to 128
[  177.000117][ T8724] EXT4-fs (loop3): Test dummy encryption mode enabled
[  177.024687][ T8724] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  177.033465][ T8723] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.635: bad orphan inode 8192
[  177.051262][ T8723] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.062655][ T8724] EXT4-fs (loop3): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  177.825236][ T6488] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  178.082274][ T8753] loop3: detected capacity change from 0 to 512
[  178.116143][ T8753] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  178.165162][ T8753] EXT4-fs (loop3): 1 truncate cleaned up
[  178.166077][ T8753] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.697703][ T8780] netlink: 4 bytes leftover after parsing attributes in process `syz.1.644'.
[  179.196156][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.214171][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.314723][ T8795] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.321971][ T8795] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.339204][ T8797] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  180.346629][ T8814] netlink: 'syz.6.650': attribute type 7 has an invalid length.
[  180.675418][ T8826] loop6: detected capacity change from 0 to 128
[  180.677648][ T8826] EXT4-fs (loop6): Test dummy encryption mode enabled
[  180.714023][ T8826] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  180.772378][ T8826] EXT4-fs (loop6): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  180.866591][ T8840] loop1: detected capacity change from 0 to 2048
[  180.917674][ T8840] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.655: bad orphan inode 8192
[  180.927802][ T8840] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.833166][ T7788] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  182.144660][ T8860] loop4: detected capacity change from 0 to 512
[  182.235919][   T31] kauditd_printk_skb: 25 callbacks suppressed
[  182.237740][   T31] audit: type=1326 audit(181.970:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.244088][   T31] audit: type=1326 audit(181.980:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.256736][ T8860] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  182.272572][ T8860] EXT4-fs (loop4): 1 truncate cleaned up
[  182.275350][ T8860] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.298294][   T31] audit: type=1326 audit(182.030:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.298371][   T31] audit: type=1326 audit(182.030:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.298421][   T31] audit: type=1326 audit(182.030:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.298470][   T31] audit: type=1326 audit(182.030:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.327916][   T31] audit: type=1326 audit(182.060:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.327999][   T31] audit: type=1326 audit(182.060:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.328059][   T31] audit: type=1326 audit(182.060:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  182.328107][   T31] audit: type=1326 audit(182.060:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8865 comm="syz.6.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ad5b728 code=0x7ffc0000
[  183.183437][ T8878] netlink: 'syz.4.659': attribute type 16 has an invalid length.
[  183.183512][ T8878] netlink: 'syz.4.659': attribute type 17 has an invalid length.
[  183.419501][ T8878] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  183.491512][ T8883] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  183.494280][ T8883] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  183.676990][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.706143][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.755915][ T8886] netlink: 4 bytes leftover after parsing attributes in process `syz.3.665'.
[  183.846770][ T8892] loop1: detected capacity change from 0 to 4096
[  183.855460][ T8892] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.009419][ T8892] fs-verity (loop1, inode 16): fs-verity keyring is empty, rejecting signed file!
[  184.015756][ T8897] loop4: detected capacity change from 0 to 1024
[  184.016389][ T8897] EXT4-fs: Ignoring removed i_version option
[  184.023425][ T8897] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  184.043450][ T8897] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.668: Failed to acquire dquot type 0
[  184.045935][ T8897] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  184.047043][ T8897] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.668: corrupted inode contents
[  184.050351][ T8897] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.668: mark_inode_dirty error
[  184.050670][ T8897] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.668: corrupted inode contents
[  184.050897][ T8897] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.668: mark_inode_dirty error
[  184.051131][ T8897] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.668: corrupted inode contents
[  184.051424][ T8897] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  184.052060][ T8897] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.668: corrupted inode contents
[  184.052299][ T8897] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.668: mark_inode_dirty error
[  184.052533][ T8897] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  184.053296][ T8897] EXT4-fs (loop4): 1 truncate cleaned up
[  184.054157][ T8897] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.143378][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.153288][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.303728][ T8923] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  185.346558][ T8925] loop5: detected capacity change from 0 to 2048
[  185.364429][ T8925] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.677: bad orphan inode 8192
[  185.367682][ T8925] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.552262][ T8929] loop4: detected capacity change from 0 to 4096
[  185.584831][ T8929] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.452507][ T8929] fs-verity (loop4, inode 16): fs-verity keyring is empty, rejecting signed file!
[  186.535015][ T8937] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  186.537741][ T8937] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  186.556715][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.459233][ T8947] loop6: detected capacity change from 0 to 128
[  187.483738][ T8947] EXT4-fs (loop6): Test dummy encryption mode enabled
[  187.544051][ T8947] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  187.631202][ T2391] ieee802154 phy0 wpan0: encryption failed: -22
[  187.631304][ T2391] ieee802154 phy1 wpan1: encryption failed: -22
[  187.664225][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.692351][ T8947] EXT4-fs (loop6): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  188.563328][ T7788] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  189.347533][ T8971] hsr0 speed is unknown, defaulting to 1000
[  190.192079][ T8978] netlink: 4 bytes leftover after parsing attributes in process `syz.1.692'.
[  190.397361][ T8983] loop6: detected capacity change from 0 to 4096
[  190.437249][ T8983] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.596162][ T8959] loop5: detected capacity change from 0 to 512
[  190.604349][ T8959] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  190.615269][ T8983] fs-verity (loop6, inode 16): fs-verity keyring is empty, rejecting signed file!
[  190.678823][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.708887][ T8959] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.724780][ T8959] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #2: comm syz.5.686: corrupted inode contents
[  190.730297][ T8959] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #2: comm syz.5.686: mark_inode_dirty error
[  190.736896][ T8959] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #2: comm syz.5.686: corrupted inode contents
[  190.858323][ T8993] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  190.861469][ T8993] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  190.915846][ T8995] loop4: detected capacity change from 0 to 2048
[  190.916168][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.973010][ T8995] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.696: bad orphan inode 8192
[  190.979474][ T8995] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.042021][ T9007] hsr0 speed is unknown, defaulting to 1000
[  193.077142][ T9010] loop3: detected capacity change from 0 to 128
[  193.248228][ T9010] EXT4-fs (loop3): Test dummy encryption mode enabled
[  193.409845][ T9016] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  194.488857][ T9010] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  194.772529][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.802271][ T9008] EXT4-fs (loop3): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  194.901082][ T9025] loop4: detected capacity change from 0 to 128
[  194.910356][ T6488] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  194.956106][ T9028] netlink: 104 bytes leftover after parsing attributes in process `syz.5.705'.
[  195.129732][ T9029] loop6: detected capacity change from 0 to 4096
[  195.294037][ T9037] loop5: detected capacity change from 0 to 2048
[  195.296251][ T9029] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.602986][ T9040] fs-verity (loop6, inode 16): fs-verity keyring is empty, rejecting signed file!
[  195.939229][ T9044] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  195.941961][ T9044] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  195.989255][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.936317][ T9055] loop3: detected capacity change from 0 to 2048
[  196.986137][   T31] kauditd_printk_skb: 44 callbacks suppressed
[  196.986205][   T31] audit: type=1326 audit(196.720:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9056 comm="syz.1.715" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  196.988885][   T31] audit: type=1326 audit(196.730:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9056 comm="syz.1.715" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=134 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  196.989031][   T31] audit: type=1326 audit(196.730:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9056 comm="syz.1.715" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  196.989164][   T31] audit: type=1326 audit(196.730:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9056 comm="syz.1.715" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  197.041099][ T9055] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.714: bad orphan inode 8192
[  197.042348][ T9055] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.361769][ T9065] loop1: detected capacity change from 0 to 128
[  197.363406][ T9067] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  197.391407][ T9065] EXT4-fs (loop1): Test dummy encryption mode enabled
[  197.405571][ T9070] loop5: detected capacity change from 0 to 512
[  197.428560][ T9065] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  197.839569][ T9070] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  197.843908][ T9070] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.718: invalid indirect mapped block 2683928664 (level 1)
[  197.845104][ T9070] EXT4-fs (loop5): Remounting filesystem read-only
[  197.845472][ T9070] EXT4-fs (loop5): 1 truncate cleaned up
[  197.869476][ T9070] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.889379][ T9064] EXT4-fs (loop1): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  198.238768][ T9075] macvlan2: entered promiscuous mode
[  198.240339][ T9075] macvlan2: entered allmulticast mode
[  198.244779][ T9075] team_slave_0: entered promiscuous mode
[  198.244870][ T9075] team_slave_1: entered promiscuous mode
[  198.253682][ T9075] team0: entered allmulticast mode
[  198.255204][ T9075] team_slave_0: entered allmulticast mode
[  198.257631][ T9075] team_slave_1: entered allmulticast mode
[  198.259845][ T9075] team0: entered promiscuous mode
[  198.262401][ T9075] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  198.268141][ T9075] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  198.850656][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.855458][ T6495] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  199.157370][ T9081] netlink: 4 bytes leftover after parsing attributes in process `syz.5.724'.
[  199.171298][   T31] audit: type=1326 audit(198.830:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9082 comm="syz.1.721" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  199.171379][   T31] audit: type=1326 audit(198.830:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9082 comm="syz.1.721" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  199.171442][   T31] audit: type=1326 audit(198.850:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9082 comm="syz.1.721" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=85 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  199.171498][   T31] audit: type=1326 audit(198.850:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9082 comm="syz.1.721" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  199.171547][   T31] audit: type=1326 audit(198.850:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9082 comm="syz.1.721" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa535b728 code=0x7ffc0000
[  199.277370][ T9085] loop6: detected capacity change from 0 to 4096
[  199.284489][ T9081] netlink: 4 bytes leftover after parsing attributes in process `syz.5.724'.
[  199.297299][ T9081] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  199.311472][ T9085] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.487112][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.514276][ T9090] pim6reg: entered allmulticast mode
[  199.591957][ T9094] fs-verity (loop6, inode 16): fs-verity keyring is empty, rejecting signed file!
[  199.618913][ T9091] pim6reg: left allmulticast mode
[  199.689381][ T9097] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  199.692199][ T9097] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  199.925562][ T9100] mmap: syz.4.727 (9100) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  200.011462][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.093535][ T9102] loop4: detected capacity change from 0 to 512
[  200.140305][ T9102] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.268546][   T31] audit: type=1326 audit(200.000:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9101 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  200.283577][ T9081] infiniband syz2: set active
[  200.283651][ T9081] infiniband syz2: added veth0_to_bond
[  200.321867][ T9081] RDS/IB: syz2: added
[  200.323498][ T9081] smc: adding ib device syz2 with port count 1
[  200.325581][ T9081] smc:    ib device syz2 port 1 has pnetid 
[  200.396761][ T9114] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  200.476304][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.493947][ T9116] loop3: detected capacity change from 0 to 128
[  201.941739][ T9126] loop1: detected capacity change from 0 to 2048
[  201.997944][ T9126] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.736: bad orphan inode 8192
[  202.009108][ T9126] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.061052][ T9135] loop5: detected capacity change from 0 to 4096
[  203.164854][ T9139] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  203.165111][ T9139] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  203.210423][ T9135] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.822201][ T9144] fs-verity (loop5, inode 16): Error -4 reading file data
[  203.822286][ T9144] fs-verity (loop5, inode 16): Error -4 building Merkle tree
[  203.971662][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.203345][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.413090][ T9163] loop6: detected capacity change from 0 to 128
[  204.416944][ T9163] EXT4-fs (loop6): Test dummy encryption mode enabled
[  204.429554][ T9163] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  204.474729][ T9163] EXT4-fs (loop6): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  204.508139][ T7788] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  204.667164][ T9173] loop5: detected capacity change from 0 to 4096
[  204.826602][ T9173] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.061769][ T9183] loop6: detected capacity change from 0 to 128
[  205.268429][ T9180] fs-verity (loop5, inode 16): fs-verity keyring is empty, rejecting signed file!
[  206.361494][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.476866][ T9193] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  206.477140][ T9193] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  206.556959][ T9194] loop5: detected capacity change from 0 to 2048
[  207.261051][ T9194] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.756: bad orphan inode 8192
[  207.266645][ T9194] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.933349][ T9215] IPv6: NLM_F_CREATE should be specified when creating new route
[  208.144244][ T9217] lo speed is unknown, defaulting to 1000
[  208.145269][ T9217] lo speed is unknown, defaulting to 1000
[  208.145711][ T9217] lo speed is unknown, defaulting to 1000
[  208.288316][   T31] kauditd_printk_skb: 31 callbacks suppressed
[  208.288383][   T31] audit: type=1326 audit(207.980:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288439][   T31] audit: type=1326 audit(207.980:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288499][   T31] audit: type=1326 audit(207.990:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288548][   T31] audit: type=1326 audit(207.990:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288597][   T31] audit: type=1326 audit(207.990:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288649][   T31] audit: type=1326 audit(207.990:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288699][   T31] audit: type=1326 audit(207.990:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288749][   T31] audit: type=1326 audit(207.990:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288797][   T31] audit: type=1326 audit(207.990:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.288845][   T31] audit: type=1326 audit(207.990:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9216 comm="syz.4.765" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  208.453087][ T9221] loop1: detected capacity change from 0 to 4096
[  209.186390][   T26] lo speed is unknown, defaulting to 1000
[  209.188827][ T9217] infiniband syz0: set active
[  209.192032][ T9217] infiniband syz0: added lo
[  209.276503][ T9217] RDS/IB: syz0: added
[  209.279962][ T9217] smc: adding ib device syz0 with port count 1
[  209.282468][ T9217] smc:    ib device syz0 port 1 has pnetid 
[  209.284497][   T26] lo speed is unknown, defaulting to 1000
[  209.287159][ T9217] lo speed is unknown, defaulting to 1000
[  209.362636][ T9221] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.449171][ T9232] loop3: detected capacity change from 0 to 128
[  209.576205][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.582104][ T9233] fs-verity (loop1, inode 16): fs-verity keyring is empty, rejecting signed file!
[  210.779753][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.825308][ T9244] netlink: 4 bytes leftover after parsing attributes in process `syz.5.769'.
[  210.926369][ T9249] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  210.926663][ T9249] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  210.973420][ T9252] loop5: detected capacity change from 0 to 512
[  210.978870][ T9252] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  211.107967][ T9217] lo speed is unknown, defaulting to 1000
[  211.135437][ T9252] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.775: bg 0: block 64: padding at end of block bitmap is not set
[  211.146130][ T9252] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.775: Failed to acquire dquot type 0
[  211.150799][ T9252] EXT4-fs (loop5): 1 truncate cleaned up
[  211.152038][ T9252] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.173426][ T9252] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.775: Failed to acquire dquot type 0
[  211.177472][ T9263] loop3: detected capacity change from 0 to 256
[  211.935696][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.173877][ T9272] loop5: detected capacity change from 0 to 2048
[  212.324575][ T9272] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.779: bad orphan inode 8192
[  212.343577][ T9272] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  212.549723][ T9217] lo speed is unknown, defaulting to 1000
[  212.927223][ T9217] lo speed is unknown, defaulting to 1000
[  213.228286][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.830267][ T9217] lo speed is unknown, defaulting to 1000
[  213.889712][ T9292] loop5: detected capacity change from 0 to 4096
[  213.999678][ T9292] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  214.035829][ T9217] lo speed is unknown, defaulting to 1000
[  214.225240][ T9298] fs-verity (loop5, inode 16): fs-verity keyring is empty, rejecting signed file!
[  214.229761][ T9297] loop6: detected capacity change from 0 to 128
[  214.232844][ T9297] EXT4-fs (loop6): Test dummy encryption mode enabled
[  214.276844][ T9297] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  214.357193][ T9297] EXT4-fs (loop6): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  214.482391][ T9301] loop4: detected capacity change from 0 to 128
[  214.577695][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.651259][ T9303] macvlan3: entered promiscuous mode
[  214.667445][ T9303] macvlan3: entered allmulticast mode
[  215.501717][ T9313] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  215.510661][ T9313] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  216.681232][ T9326] loop1: detected capacity change from 0 to 2048
[  216.724083][ T9326] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.794: bad orphan inode 8192
[  216.725213][ T9326] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.152951][ T9340] 9pnet_fd: Insufficient options for proto=fd
[  217.841860][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.977042][ T9346] macvlan4: entered promiscuous mode
[  217.978952][ T9346] macvlan4: entered allmulticast mode
[  218.001114][ T9344] loop4: detected capacity change from 0 to 128
[  218.239491][ T7788] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  218.519174][ T9361] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  218.519437][ T9361] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  218.777835][ T2190] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.922042][ T2190] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.041449][ T2190] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.162974][ T2190] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.240122][ T9365] netlink: 148 bytes leftover after parsing attributes in process `syz.6.807'.
[  219.240189][ T9365] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  219.290785][ T9367] loop1: detected capacity change from 0 to 164
[  220.149258][ T9375] Unsupported NM flag settings (8)
[  220.161983][ T2190] bridge_slave_1: left allmulticast mode
[  220.162042][ T2190] bridge_slave_1: left promiscuous mode
[  220.162175][ T2190] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.202142][ T2190] bridge_slave_0: left allmulticast mode
[  220.202208][ T2190] bridge_slave_0: left promiscuous mode
[  220.205507][ T2190] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.285189][ T9367] netlink: 'syz.1.808': attribute type 4 has an invalid length.
[  220.285261][ T9367] netlink: 152 bytes leftover after parsing attributes in process `syz.1.808'.
[  220.374910][ T9379] loop5: detected capacity change from 0 to 2048
[  220.403975][ T9379] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.810: bad orphan inode 8192
[  220.407342][   T31] kauditd_printk_skb: 16 callbacks suppressed
[  220.407392][   T31] audit: type=1326 audit(220.140:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  220.409812][   T31] audit: type=1326 audit(220.150:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  220.412848][ T9379] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.418073][   T31] audit: type=1326 audit(220.150:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  220.418141][   T31] audit: type=1326 audit(220.150:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  220.462787][   T31] audit: type=1326 audit(220.150:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  220.462859][   T31] audit: type=1326 audit(220.200:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  220.462909][   T31] audit: type=1326 audit(220.200:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffa775b75c code=0x7ffc0000
[  220.462969][   T31] audit: type=1326 audit(220.200:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffa7759df0 code=0x7ffc0000
[  220.472971][ T9381] loop4: detected capacity change from 0 to 512
[  220.708094][   T31] audit: type=1326 audit(220.200:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffffa775b7cc code=0x7ffc0000
[  220.708592][   T31] audit: type=1326 audit(220.200:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9380 comm="syz.4.812" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffa7759c54 code=0x7ffc0000
[  221.289569][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.306901][ T9381] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.434018][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.468572][ T9400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  221.471180][ T9400] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  221.712589][ T6490] Bluetooth: hci6: command 0x0c1a tx timeout
[  222.796491][ T9416] loop6: detected capacity change from 0 to 128
[  222.859600][ T9417] loop3: detected capacity change from 0 to 2048
[  223.877384][ T9417] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.823: bad orphan inode 8192
[  223.948133][ T9417] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.116609][ T9433] loop4: detected capacity change from 0 to 512
[  224.126226][ T9433] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  224.194330][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.218699][ T9433] EXT4-fs (loop4): 1 truncate cleaned up
[  224.219592][ T9433] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.441911][ T9441] loop3: detected capacity change from 0 to 4096
[  224.464236][ T9441] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.591078][ T9448] netlink: 4 bytes leftover after parsing attributes in process `syz.6.831'.
[  224.678354][ T9449] fs-verity (loop3, inode 16): fs-verity keyring is empty, rejecting signed file!
[  225.170818][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  225.177252][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  225.257928][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.265589][ T9454] loop5: detected capacity change from 0 to 512
[  225.273912][ T9454] journal_path: Lookup failure for './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[  225.280523][ T9454] EXT4-fs: error: could not find journal device path
[  225.364417][ T2190] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  225.785235][ T2190] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  226.007074][ T2190] bond0 (unregistering): Released all slaves
[  226.132592][ T9464] loop5: detected capacity change from 0 to 2048
[  226.138188][ T9367] : renamed from bond0 (while UP)
[  226.142138][ T9464] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.837: bad orphan inode 8192
[  226.143273][ T9464] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.278034][ T9468] loop1: detected capacity change from 0 to 128
[  226.435592][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.467004][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.806637][ T9490] loop3: detected capacity change from 0 to 2048
[  227.829639][ T9448] team0 (unregistering): left allmulticast mode
[  227.829706][ T9448] team_slave_0: left allmulticast mode
[  227.829734][ T9448] team_slave_1: left allmulticast mode
[  227.829760][ T9448] team0 (unregistering): left promiscuous mode
[  227.829781][ T9448] team_slave_0: left promiscuous mode
[  227.829928][ T9448] team_slave_1: left promiscuous mode
[  227.854404][ T8378]  loop3: p1 < > p3
[  227.857078][ T8378] loop3: p3 size 134217728 extends beyond EOD, truncated
[  227.864791][ T9490]  loop3: p1 < > p3
[  227.866232][ T9490] loop3: p3 size 134217728 extends beyond EOD, truncated
[  227.895900][ T9448] bond0: (slave macvlan2): Releasing backup interface
[  228.097993][ T9448] team0 (unregistering): Port device team_slave_0 removed
[  228.111235][ T9448] team0 (unregistering): Port device team_slave_1 removed
[  228.155448][ T6692] udevd[6692]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  228.160762][ T8378] udevd[8378]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  228.347806][ T9497] loop6: detected capacity change from 0 to 512
[  228.388723][ T9497] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  228.388945][ T9497] EXT4-fs (loop6): orphan cleanup on readonly fs
[  228.393676][ T9497] __quota_error: 67 callbacks suppressed
[  228.393729][ T9497] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated!
[  228.393764][ T9497] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota
[  228.393802][ T9497] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.847: Failed to acquire dquot type 1
[  228.417407][ T9497] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.847: bg 0: block 40: padding at end of block bitmap is not set
[  228.422060][ T9497] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  228.428571][ T9497] EXT4-fs (loop6): 1 truncate cleaned up
[  228.439594][ T9497] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  228.486531][ T9502] netlink: 4 bytes leftover after parsing attributes in process `syz.1.849'.
[  228.497336][ T9497] netlink: 'syz.6.847': attribute type 10 has an invalid length.
[  228.549631][ T9503] netlink: 'syz.6.847': attribute type 10 has an invalid length.
[  228.549698][ T9503] netlink: 2 bytes leftover after parsing attributes in process `syz.6.847'.
[  228.597871][ T9487] hsr0 speed is unknown, defaulting to 1000
[  228.629457][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.671048][ T9487] lo speed is unknown, defaulting to 1000
[  228.792757][ T9509] loop1: detected capacity change from 0 to 512
[  228.796825][ T9508] loop6: detected capacity change from 0 to 2048
[  228.806068][ T9509] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  228.870766][ T9509] EXT4-fs (loop1): 1 truncate cleaned up
[  228.873363][ T9509] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.893253][ T9508] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz.6.850: bad orphan inode 8192
[  228.898004][ T9508] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.157765][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.562212][ T9542] netlink: 596 bytes leftover after parsing attributes in process `syz.4.856'.
[  229.563258][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.703340][ T9546] loop1: detected capacity change from 0 to 512
[  229.704050][ T9546] journal_path: Non-blockdev passed as './bus'
[  229.704122][ T9546] EXT4-fs: error: could not find journal device path
[  229.721810][ T9548] loop4: detected capacity change from 0 to 164
[  229.755807][ T9548] syz.4.858: attempt to access beyond end of device
[  229.755807][ T9548] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  229.756092][ T9548] syz.4.858: attempt to access beyond end of device
[  229.756092][ T9548] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  230.066496][ T9557] loop1: detected capacity change from 0 to 2048
[  230.085127][ T9557] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.862: bad orphan inode 8192
[  230.098997][ T9557] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.553291][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.697883][ T9585] loop5: detected capacity change from 0 to 512
[  231.730668][ T9585] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c118, mo2=0002]
[  231.735224][ T9585] System zones: 0-2, 18-18, 34-34
[  231.756666][ T9585] Quota error (device loop5): do_check_range: Getting dqdh_entries 1536 out of range 0-14
[  231.756792][ T9585] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  231.756826][ T9585] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.868: Failed to acquire dquot type 1
[  231.760726][ T9585] EXT4-fs (loop5): 1 truncate cleaned up
[  231.782726][ T9585] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.964930][ T9589] loop1: detected capacity change from 0 to 512
[  232.000606][ T9589] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  232.169242][ T9589] EXT4-fs (loop1): 1 truncate cleaned up
[  232.688696][ T9589] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.798377][   T31] audit: type=1326 audit(232.540:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9604 comm="syz.3.870" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  232.815818][   T31] audit: type=1326 audit(232.550:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9604 comm="syz.3.870" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  232.815902][   T31] audit: type=1326 audit(232.550:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9604 comm="syz.3.870" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=165 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  232.815966][   T31] audit: type=1326 audit(232.550:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9604 comm="syz.3.870" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  233.085853][ T2190] hsr_slave_0: left promiscuous mode
[  233.088069][ T2190] hsr_slave_1: left promiscuous mode
[  233.090738][ T2190] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  233.090841][ T2190] batman_adv: batadv0: Removing interface: batadv_slave_0
[  233.095958][ T2190] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  233.112035][ T2190] batman_adv: batadv0: Removing interface: batadv_slave_1
[  234.286182][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.361443][ T2190] veth1_macvtap: left promiscuous mode
[  234.361596][ T2190] veth0_macvtap: left promiscuous mode
[  234.361729][ T2190] veth1_vlan: left promiscuous mode
[  234.361875][ T2190] veth0_vlan: left promiscuous mode
[  234.507896][ T9625] loop3: detected capacity change from 0 to 2048
[  234.576590][ T9625] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.877: bad orphan inode 8192
[  234.589203][ T9625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.703319][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.882950][ T9633] loop5: detected capacity change from 0 to 128
[  234.910010][ T9633] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  234.912763][ T9633] System zones: 1-3, 19-19, 35-36
[  234.927752][ T9633] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  234.983412][ T9633] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.990329][ T9633] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  235.294988][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.382860][   T31] audit: type=1326 audit(235.120:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9635 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  235.382958][   T31] audit: type=1326 audit(235.120:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9635 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  235.412280][   T31] audit: type=1326 audit(235.150:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9635 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  235.412374][   T31] audit: type=1326 audit(235.150:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9635 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  235.426139][   T31] audit: type=1326 audit(235.160:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9635 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffb495b728 code=0x7ffc0000
[  238.063449][ T2190] team0 (unregistering): Port device team_slave_1 removed
[  238.241838][ T2190] team0 (unregistering): Port device team_slave_0 removed
[  238.244757][ T6835] smc: removing ib device syz!
[  238.458444][ T9664] loop4: detected capacity change from 0 to 512
[  238.494118][ T9664] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c118, mo2=0002]
[  238.494199][ T9664] System zones: 0-2, 18-18, 34-34
[  238.495025][ T9664] Quota error (device loop4): do_check_range: Getting dqdh_entries 1536 out of range 0-14
[  238.495092][ T9664] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  238.495123][ T9664] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.888: Failed to acquire dquot type 1
[  238.497204][ T9664] EXT4-fs (loop4): 1 truncate cleaned up
[  238.498084][ T9664] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.548801][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.597355][ T9670] loop4: detected capacity change from 0 to 2048
[  240.611072][ T9670] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.889: bad orphan inode 8192
[  240.612244][ T9670] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.282370][ T9629] bridge_slave_1: left allmulticast mode
[  241.282434][ T9629] bridge_slave_1: left promiscuous mode
[  241.283322][ T9629] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.298910][ T9629] bridge_slave_0: left allmulticast mode
[  241.298972][ T9629] bridge_slave_0: left promiscuous mode
[  241.299621][ T9629] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.475267][ T7777] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  241.501831][ T6489] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.716401][   T31] audit: type=1326 audit(241.450:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  241.716499][   T31] audit: type=1326 audit(241.450:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  242.440403][   T31] audit: type=1326 audit(242.120:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffa775b728 code=0x7ffc0000
[  242.446257][   T31] audit: type=1326 audit(242.180:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffa775b75c code=0x7ffc0000
[  242.487439][   T31] audit: type=1326 audit(242.220:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffa7759df0 code=0x7ffc0000
[  242.568266][   T31] audit: type=1326 audit(242.280:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffffa775b7cc code=0x7ffc0000
[  242.568350][   T31] audit: type=1326 audit(242.280:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffa7759c54 code=0x7ffc0000
[  242.568412][   T31] audit: type=1326 audit(242.280:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffa775b250 code=0x7ffc0000
[  242.672326][ T9691] loop4: detected capacity change from 0 to 2048
[  242.678298][   T31] audit: type=1326 audit(242.410:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffffa775a02c code=0x7ffc0000
[  242.678372][   T31] audit: type=1326 audit(242.410:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9688 comm="syz.4.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffa775b250 code=0x7ffc0000
[  242.709843][ T8378]  loop4: p1 < > p3
[  242.726605][ T8378] loop4: p3 size 134217728 extends beyond EOD, truncated
[  243.512025][ T9691]  loop4: p1 < > p3
[  243.514458][ T9691] loop4: p3 size 134217728 extends beyond EOD, truncated
[  243.582203][ T9718] loop1: detected capacity change from 0 to 512
[  243.601403][ T9725] 9pnet_virtio: no channels available for device syz
[  243.617073][ T9718] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  243.681018][ T9718] EXT4-fs (loop1): 1 truncate cleaned up
[  243.682200][ T9718] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.690050][ T9724] loop3: detected capacity change from 0 to 2048
[  243.736730][ T9724] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.904: bad orphan inode 8192
[  243.821778][ T9724] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.826795][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.043801][ T6488] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.315195][ T9745] netlink: 'syz.4.909': attribute type 10 has an invalid length.
[  245.015002][ T9745] batman_adv: batadv0: Adding interface: team0
[  245.015067][ T9745] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  245.015115][ T9745] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  245.244181][ T8378] udevd[8378]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  245.309804][ T6687] udevd[6687]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  246.360089][ T9787] loop6: detected capacity change from 0 to 2048
[  246.407894][ T9777] hsr0 speed is unknown, defaulting to 1000
[  246.476007][ T9787] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz.6.917: bad orphan inode 8192
[  246.523743][ T9787] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.550267][ T8378] udevd[8378]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  246.788961][ T6692] udevd[6692]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  246.864535][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.652985][ T9816] netlink: 8 bytes leftover after parsing attributes in process `syz.5.927'.
[  247.716054][ T9820] loop6: detected capacity change from 0 to 512
[  247.829740][ T9820] EXT4-fs (loop6): orphan cleanup on readonly fs
[  247.834526][ T9820] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz.6.926: bad orphan inode 13
[  247.837951][ T9820] ext4_test_bit(bit=12, block=18) = 1
[  247.838007][ T9820] is_bad_inode(inode)=0
[  247.838040][ T9820] NEXT_ORPHAN(inode)=2130706432
[  247.838066][ T9820] max_ino=32
[  247.838090][ T9820] i_nlink=1
[  247.863296][ T9777] lo speed is unknown, defaulting to 1000
[  247.867276][ T9820] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  249.508801][ T2391] ieee802154 phy0 wpan0: encryption failed: -22
[  249.508934][ T2391] ieee802154 phy1 wpan1: encryption failed: -22
[  249.754513][ T9820] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  249.794191][ T9820] EXT4-fs warning (device loop6): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop6.
[  249.993110][ T9842] netlink: 'syz.1.933': attribute type 10 has an invalid length.
[  250.030130][ T7788] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.071022][ T9842] batman_adv: batadv0: Adding interface: team0
[  250.071310][ T9842] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  250.071344][ T9842] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  250.082150][ T9840] loop5: detected capacity change from 0 to 512
[  250.090035][ T9840] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  250.120335][ T9840] EXT4-fs (loop5): 1 truncate cleaned up
[  250.131434][ T9840] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  250.340609][ T9855] loop1: detected capacity change from 0 to 2048
[  250.346127][ T9840] 
[  250.346791][ T9840] ======================================================
[  250.348694][ T9840] WARNING: possible circular locking dependency detected
[  250.350619][ T9840] 6.15.0-rc4-syzkaller-ge0f4c8dd9d2d #0 Not tainted
[  250.351377][ T9855] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.936: bad orphan inode 8192
[  250.354420][ T9855] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.358496][ T9840] ------------------------------------------------------
[  250.360418][ T9840] syz.5.932/9840 is trying to acquire lock:
[  250.362005][ T9840] ffff0000dce0d378 (&sb->s_type->i_mutex_key#9/1){+.+.}-{4:4}, at: ext4_xattr_inode_lookup_create+0xc40/0x1768
[  250.365263][ T9840] 
[  250.365263][ T9840] but task is already holding lock:
[  250.367302][ T9840] ffff0000dceb5208 (&ei->i_data_sem/3){++++}-{4:4}, at: ext4_setattr+0x11c0/0x17ec
[  250.370044][ T9840] 
[  250.370044][ T9840] which lock already depends on the new lock.
[  250.370044][ T9840] 
[  250.372930][ T9840] 
[  250.372930][ T9840] the existing dependency chain (in reverse order) is:
[  250.375304][ T9840] 
[  250.375304][ T9840] -> #1 (&ei->i_data_sem/3){++++}-{4:4}:
[  250.377473][ T9840]        down_write+0x50/0xc0
[  250.378767][ T9840]        ext4_xattr_inode_lookup_create+0x10cc/0x1768
[  250.380686][ T9840]        ext4_xattr_ibody_set+0x1b4/0x5fc
[  250.382280][ T9840]        ext4_xattr_set_handle+0xb1c/0x1260
[  250.383896][ T9840]        ext4_xattr_set+0x1e4/0x2b8
[  250.385296][ T9840]        ext4_xattr_trusted_set+0x4c/0x64
[  250.386978][ T9840]        __vfs_setxattr+0x3d8/0x400
[  250.388436][ T9840]        __vfs_setxattr_noperm+0x120/0x5c4
[  250.390085][ T9840]        __vfs_setxattr_locked+0x1ec/0x218
[  250.391674][ T9840]        vfs_setxattr+0x158/0x2ac
[  250.393015][ T9840]        filename_setxattr+0x20c/0x4f8
[  250.394526][ T9840]        path_setxattrat+0x2e8/0x320
[  250.395967][ T9840]        __arm64_sys_lsetxattr+0xc0/0xdc
[  250.397573][ T9840]        invoke_syscall+0x98/0x2b8
[  250.398936][ T9840]        el0_svc_common+0x1e0/0x23c
[  250.400329][ T9840]        do_el0_svc+0x48/0x58
[  250.401645][ T9840]        el0_svc+0x58/0x150
[  250.402926][ T9840]        el0t_64_sync_handler+0x78/0x108
[  250.404491][ T9840]        el0t_64_sync+0x198/0x19c
[  250.405934][ T9840] 
[  250.405934][ T9840] -> #0 (&sb->s_type->i_mutex_key#9/1){+.+.}-{4:4}:
[  250.408422][ T9840]        __lock_acquire+0x1728/0x3058
[  250.409985][ T9840]        lock_acquire+0x14c/0x2e0
[  250.411398][ T9840]        down_write+0x50/0xc0
[  250.412716][ T9840]        ext4_xattr_inode_lookup_create+0xc40/0x1768
[  250.414636][ T9840]        ext4_xattr_block_set+0x1bc/0x24bc
[  250.416259][ T9840]        ext4_expand_extra_isize_ea+0xeb4/0x182c
[  250.417908][ T9840]        __ext4_expand_extra_isize+0x2a0/0x37c
[  250.419666][ T9840]        __ext4_mark_inode_dirty+0x3c0/0x6fc
[  250.421491][ T9840]        ext4_setattr+0x121c/0x17ec
[  250.423038][ T9840]        notify_change+0x9a4/0xc50
[  250.424407][ T9840]        do_truncate+0x178/0x1f0
[  250.425807][ T9840]        vfs_truncate+0x398/0x444
[  250.427245][ T9840]        do_sys_truncate+0xe4/0x1a8
[  250.428697][ T9840]        __arm64_sys_truncate+0x5c/0x74
[  250.430284][ T9840]        invoke_syscall+0x98/0x2b8
[  250.431742][ T9840]        el0_svc_common+0x130/0x23c
[  250.433204][ T9840]        do_el0_svc+0x48/0x58
[  250.434479][ T9840]        el0_svc+0x58/0x150
[  250.435743][ T9840]        el0t_64_sync_handler+0x78/0x108
[  250.437424][ T9840]        el0t_64_sync+0x198/0x19c
[  250.438875][ T9840] 
[  250.438875][ T9840] other info that might help us debug this:
[  250.438875][ T9840] 
[  250.441601][ T9840]  Possible unsafe locking scenario:
[  250.441601][ T9840] 
[  250.443682][ T9840]        CPU0                    CPU1
[  250.445151][ T9840]        ----                    ----
[  250.446590][ T9840]   lock(&ei->i_data_sem/3);
[  250.447945][ T9840]                                lock(&sb->s_type->i_mutex_key#9/1);
[  250.450300][ T9840]                                lock(&ei->i_data_sem/3);
[  250.452211][ T9840]   lock(&sb->s_type->i_mutex_key#9/1);
[  250.453833][ T9840] 
[  250.453833][ T9840]  *** DEADLOCK ***
[  250.453833][ T9840] 
[  250.456161][ T9840] 5 locks held by syz.5.932/9840:
[  250.457540][ T9840]  #0: ffff0000d6162420 (sb_writers#3){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c
[  250.460141][ T9840]  #1: ffff0000dceb5378 (&sb->s_type->i_mutex_key#9){++++}-{4:4}, at: do_truncate+0x164/0x1f0
[  250.463016][ T9840]  #2: ffff0000dceb5518 (mapping.invalidate_lock#2){++++}-{4:4}, at: ext4_setattr+0xc18/0x17ec
[  250.465885][ T9840]  #3: ffff0000dceb5208 (&ei->i_data_sem/3){++++}-{4:4}, at: ext4_setattr+0x11c0/0x17ec
[  250.468719][ T9840]  #4: ffff0000dceb5008 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x358/0x6fc
[  250.471731][ T9840] 
[  250.471731][ T9840] stack backtrace:
[  250.473323][ T9840] CPU: 1 UID: 0 PID: 9840 Comm: syz.5.932 Not tainted 6.15.0-rc4-syzkaller-ge0f4c8dd9d2d #0 PREEMPT 
[  250.476441][ T9840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  250.479431][ T9840] Call trace:
[  250.480367][ T9840]  show_stack+0x2c/0x3c (C)
[  250.481754][ T9840]  __dump_stack+0x30/0x40
[  250.483036][ T9840]  dump_stack_lvl+0xd8/0x12c
[  250.484346][ T9840]  dump_stack+0x1c/0x28
[  250.485569][ T9840]  print_circular_bug+0x324/0x32c
[  250.486977][ T9840]  check_noncircular+0x154/0x174
[  250.488443][ T9840]  __lock_acquire+0x1728/0x3058
[  250.489800][ T9840]  lock_acquire+0x14c/0x2e0
[  250.490983][ T9840]  down_write+0x50/0xc0
[  250.492158][ T9840]  ext4_xattr_inode_lookup_create+0xc40/0x1768
[  250.493792][ T9840]  ext4_xattr_block_set+0x1bc/0x24bc
[  250.495223][ T9840]  ext4_expand_extra_isize_ea+0xeb4/0x182c
[  250.496839][ T9840]  __ext4_expand_extra_isize+0x2a0/0x37c
[  250.498412][ T9840]  __ext4_mark_inode_dirty+0x3c0/0x6fc
[  250.499908][ T9840]  ext4_setattr+0x121c/0x17ec
[  250.501248][ T9840]  notify_change+0x9a4/0xc50
[  250.502572][ T9840]  do_truncate+0x178/0x1f0
[  250.503791][ T9840]  vfs_truncate+0x398/0x444
[  250.505125][ T9840]  do_sys_truncate+0xe4/0x1a8
[  250.506494][ T9840]  __arm64_sys_truncate+0x5c/0x74
[  250.507942][ T9840]  invoke_syscall+0x98/0x2b8
[  250.509171][ T9840]  el0_svc_common+0x130/0x23c
[  250.510469][ T9840]  do_el0_svc+0x48/0x58
[  250.511639][ T9840]  el0_svc+0x58/0x150
[  250.512741][ T9840]  el0t_64_sync_handler+0x78/0x108
[  250.514151][ T9840]  el0t_64_sync+0x198/0x19c
[  250.736963][ T7777] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.762016][ T6495] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.