last executing test programs:

2m26.076574923s ago: executing program 1 (id=620):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000180)='./file0\x00', 0x2808080, &(0x7f0000000000), 0x2c, 0x541, &(0x7f0000001200)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

2m25.499491139s ago: executing program 1 (id=626):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000200000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

2m24.416781765s ago: executing program 1 (id=633):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000280), 0x8)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[], 0x0, 0xff, 0x0, 0x1, 0xf9a}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val={'init_itable', 0x3d, 0x200}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@data_journal}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
setxattr$system_posix_acl(0x0, &(0x7f0000002a40)='system.posix_acl_access\x00', &(0x7f0000001440)=ANY=[@ANYBLOB="02000000010000000000000004000500000000001000"], 0x24, 0x3)
pwrite64(r1, &(0x7f0000000180)="f7", 0x1, 0x200980)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000b00)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0xfffffffffffffffc}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
rmdir(0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = mq_open(&(0x7f0000000040)='!se\xf7ih,\x17i\xacP\xe6lNnuxselinux\x00', 0x6e93ebbbcc0884f2, 0x2, &(0x7f0000000300)={0x0, 0x1, 0x6})
mq_timedsend(r6, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r6, 0x0, 0x0, 0x200000000000000, 0x0)

2m22.977753588s ago: executing program 1 (id=640):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x1000, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="050000000600000008000000ae"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4006, 0x5, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000}, 0x50)

2m22.403642833s ago: executing program 1 (id=647):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r0, 0x0, 0x4804}, 0x18)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000780)='./file0/../file0\x00', 0x0, 0xa06002, 0x0)

2m22.324919906s ago: executing program 1 (id=648):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setlease(r0, 0x400, 0x2)

2m6.250921724s ago: executing program 32 (id=648):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setlease(r0, 0x400, 0x2)

1m34.153386576s ago: executing program 4 (id=974):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp', 0x5)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000d80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000640)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c0827686e59209d2e02c9210fd8048f04ad6c42200fd9232f5aa6a361816bf21afb8473a064f1988536d4b5888807b3aaafaf59f53121782a0a9370dc0feae13c8c2a1dcc8a3122aaa3dcd5b9247a915378e6492e5b94073dcdc87e7c794fb262a7e9ee0b9432f74331c6e9412ac6557c54c6ac72bc2", 0xd5}], 0x1}}], 0x1, 0x480e0)

1m33.979786124s ago: executing program 4 (id=976):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='cdg', 0x3)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e1e, @dev={0xac, 0x14, 0x14, 0x1a}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000400)='veno', 0x4)

1m33.513244494s ago: executing program 4 (id=980):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r2}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x11, 0x2, 0x4}, 0x0, 0x0)

1m31.253318592s ago: executing program 4 (id=982):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x1010000, &(0x7f0000000140)={[{@iocharset={'iocharset', 0x3d, 'cp864'}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'cp857'}}, {@utf8no}, {@numtail}, {@fat=@sys_immutable}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'ascii'}}, {@shortname_lower}, {@uni_xlate}, {@utf8}, {@fat=@quiet}, {@utf8no}, {@uni_xlate}, {@shortname_mixed}, {@rodir}, {@uni_xlateno}, {@shortname_mixed}]}, 0x1, 0x379, &(0x7f0000000880)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000080), 0xf, 0x200)
ioctl$LOOP_SET_FD(r1, 0x4c00, r0)

1m30.495830505s ago: executing program 4 (id=985):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x200000a, 0x13, r3, 0x0)

1m29.952970818s ago: executing program 4 (id=988):
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x4, 0x8001, 0x0, 0xb49, 0x200000000002, 0x7, 0x8, 0x3}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x1, 0x28, 0x67, 0x2, 0x7f, 0x6, 0x0, @multicast2, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x40, 0x4}}}}}}, 0x0)

1m29.520246947s ago: executing program 33 (id=988):
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x4, 0x8001, 0x0, 0xb49, 0x200000000002, 0x7, 0x8, 0x3}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x1, 0x28, 0x67, 0x2, 0x7f, 0x6, 0x0, @multicast2, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x40, 0x4}}}}}}, 0x0)

2.2983792s ago: executing program 0 (id=1856):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x4, 0x65, &(0x7f0000000500)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r0, 0x40095505, &(0x7f00000000c0)=0x7)

2.08704419s ago: executing program 2 (id=1858):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x41100, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
clock_adjtime(0x6, 0x0)

1.972440965s ago: executing program 3 (id=1859):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}], {0x14}}, 0xc0}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @private0, @mcast2, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x40000)

1.952104315s ago: executing program 2 (id=1860):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x1, 0x7, 0x8000, 0x1, 0x0, 0xffffffffffffffff, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)

1.852238969s ago: executing program 2 (id=1861):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$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")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = openat(0xffffffffffffff9c, 0x0, 0x181242, 0x148)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x107b42, 0x32)
write$cgroup_subtree(r0, &(0x7f0000000740)=ANY=[], 0x9)
ftruncate(r2, 0x6000000)
copy_file_range(r2, 0x0, r2, &(0x7f00000004c0)=0x100, 0x9, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x2, 0xfffffffffdffffff})

1.787754142s ago: executing program 3 (id=1862):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000300)=@framed={{}, [@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000000)={0x2a, 0x2, 0x7ffe}, 0xc)
bind$qrtr(r0, &(0x7f00000000c0)={0x2a, 0x1, 0x7fff}, 0xc)

1.709492086s ago: executing program 3 (id=1863):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000072"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r0}, 0x10)
io_setup(0x3, &(0x7f0000000340))

1.647467229s ago: executing program 5 (id=1864):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000808500000070000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
unlink(0x0)

1.595618761s ago: executing program 2 (id=1865):
r0 = socket(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000100)={0x18, 0x0, {0x2, @multicast, 'vcan0\x00'}}, 0x1e)
sendmsg$qrtr(r0, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000000840)="fe76", 0x2}], 0x1, &(0x7f0000000d40)=ANY=[@ANYBLOB], 0x14e8, 0x2000000}, 0x38)

1.571607562s ago: executing program 5 (id=1866):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffe}, 0x18)
r1 = syz_io_uring_setup(0x237, &(0x7f0000000480)={0x0, 0x8901, 0x400, 0x0, 0x2cf}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000600)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
sendmsg$rds(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440), 0x0, 0x0, 0x0, 0x20000800}, 0x4000008)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}, 0x5, 0x12, 0x0, 0x3}, 0x9c)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x24, 0x2007, @fd, 0x800, 0x0, 0x0, 0x18, 0x0, {0x2}})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
io_uring_enter(r1, 0x47ba, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r1, 0x18, &(0x7f0000000280)={0x0, r4, 0xd, {0x7, 0xa42}, 0x80}, 0x1)

1.567503992s ago: executing program 3 (id=1867):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r0, 0x0, 0x8000000000000001}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="034886dd09032800030020000000600000000004730081e949b93897bc3b0000000000007d01ff020000000000000000000000000001"], 0xfdef)

1.443820558s ago: executing program 0 (id=1868):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6_vti0\x00', <r1=>0x0})
r2 = gettid()
r3 = socket(0x10, 0x803, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x18)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c00000010000304f9ffbffffedbdf2500007400", @ANYRES32=r1, @ANYBLOB="049c01000750050008001300", @ANYRES32=r2, @ANYBLOB="1400030076"], 0x3c}, 0x1, 0x0, 0x0, 0x4802}, 0x42850)

1.443573277s ago: executing program 2 (id=1869):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0xff00000000000000}, 0x400}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4000000)

1.443351627s ago: executing program 5 (id=1870):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}], {0x14}}, 0xc0}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @private0, @mcast2, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x40000)

1.338555582s ago: executing program 5 (id=1871):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x1, 0x7, 0x8000, 0x1, 0x0, 0xffffffffffffffff, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)

1.331277002s ago: executing program 2 (id=1872):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

1.245551336s ago: executing program 0 (id=1873):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@user_xattr}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x81e00, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10)
close_range(r0, r2, 0x0)

1.244632436s ago: executing program 3 (id=1874):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000007c0)={[{@nouid32}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000001480)="$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")
lchown(&(0x7f0000000080)='./file1\x00', 0xee01, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, 0x0, 0x101842, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))

1.15393294s ago: executing program 5 (id=1875):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x4e2c, @local}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4008015}, 0x0)

1.019775686s ago: executing program 0 (id=1876):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bf8200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe89}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x3f, 0x0, 0x0, 0x0, 0xb}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r2, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f00000001c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @broadcast, @void, {@mpls_uc={0x8847, {[], @llc={@snap={0xab, 0x0, "84", "a54969", 0x16}}}}}}, 0x0)

965.812489ms ago: executing program 5 (id=1877):
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000740), 0x0, 0x46c, &(0x7f0000000bc0)="$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")
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x40)

939.650429ms ago: executing program 0 (id=1878):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = openat(0xffffffffffffff9c, &(0x7f00000005c0)='./bus\x00', 0x101042, 0x0)
fallocate(r0, 0x0, 0x11, 0x9)

241.69µs ago: executing program 3 (id=1879):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4)
sched_setscheduler(0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020660b, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)=r4}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x11, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00'}, 0x94)
r5 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x193c02, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
io_setup(0x3fe, &(0x7f00000001c0)=<r8=>0x0)
io_submit(r8, 0x2, &(0x7f0000000400)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x7, 0x5, r6, &(0x7f0000001d00)="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", 0x1000, 0x10001, 0x0, 0x2, r7}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x6, 0x3, 0xffffffffffffffff, &(0x7f0000000580)="893e667c7c0cee151353424cef0a3fd65718aa6921d9510b7c79119c82cbe9361f2722070d2892423f053cf170567e31041b02f9a933e74b3e7e6af2218ccaf20ac5d25bb28bd153f6013bd20a3ecd35ac5431d7bbcca2d7a7a3a75a22e8078bc27167fea17d607903801d75d15c8d49e74a94676b8b7b398b60b95ab7efd1ba27a98d69008efed27c50325682cfcfbfb83f97b414c7d47f093976f89939becec76129cbc8bfcbc7deb0bce51c753bf42a1cd2e331f544c22f44d0af4d4060b769a8088371a67132ac93381cee83acd1bd51", 0xd2, 0x6, 0x0, 0x2, r7}])
fsmount(r5, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x10, 0x0, @vifc_lcl_ifindex, @remote}, 0x10)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000040)=0x6, 0x4)

0s ago: executing program 0 (id=1880):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00'}, 0x10)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
write$P9_RVERSION(r0, &(0x7f0000000c40)=ANY=[], 0x13)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)=[0x5], &(0x7f0000000180), 0x0, 0x1, 0x1}}, 0x40)
mmap$xdp(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000006, 0x12, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

36945][ T7994]  nfnetlink_rcv_msg+0xb49/0x1130
[  195.241991][ T7994]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  195.248083][ T7994]  ? nfnetlink_rcv_msg+0x20e/0x1130
[  195.253318][ T7994]  ? nfnetlink_unbind+0x160/0x160
[  195.258558][ T7994]  ? __dev_queue_xmit+0x1a64/0x35a0
[  195.263799][ T7994]  ? __netlink_deliver_tap+0x5ab/0x830
[  195.269279][ T7994]  ? netlink_deliver_tap+0x19c/0x1b0
[  195.274586][ T7994]  ? netlink_unicast+0x72c/0x8d0
[  195.279542][ T7994]  ? netlink_sendmsg+0x8c1/0xbe0
[  195.284503][ T7994]  ? ____sys_sendmsg+0x5bf/0x950
[  195.289471][ T7994]  ? ___sys_sendmsg+0x220/0x290
[  195.294349][ T7994]  ? __se_sys_sendmsg+0x1a5/0x270
[  195.299403][ T7994]  ? do_syscall_64+0x55/0xb0
[  195.304036][ T7994]  netlink_rcv_skb+0x216/0x480
[  195.308834][ T7994]  ? nfnetlink_unbind+0x160/0x160
[  195.313905][ T7994]  ? netlink_ack+0x1110/0x1110
[  195.318714][ T7994]  ? apparmor_capable+0x137/0x1a0
[  195.323762][ T7994]  ? bpf_lsm_capable+0x9/0x10
[  195.328467][ T7994]  ? security_capable+0x89/0xb0
[  195.333351][ T7994]  nfnetlink_rcv+0x274/0x2180
[  195.338068][ T7994]  ? __local_bh_enable_ip+0x12e/0x1c0
[  195.343461][ T7994]  ? lockdep_hardirqs_on+0x98/0x150
[  195.348682][ T7994]  ? __local_bh_enable_ip+0x12e/0x1c0
[  195.354090][ T7994]  ? _local_bh_enable+0xa0/0xa0
[  195.358963][ T7994]  ? __dev_queue_xmit+0x245/0x35a0
[  195.364109][ T7994]  ? nfnetlink_net_exit_batch+0xa0/0xa0
[  195.371856][ T7994]  ? __dev_queue_xmit+0x245/0x35a0
[  195.377008][ T7994]  ? ref_tracker_free+0x634/0x7d0
[  195.382112][ T7994]  ? __copy_skb_header+0xa7/0x550
[  195.387184][ T7994]  ? refcount_inc+0x70/0x70
[  195.391708][ T7994]  ? __skb_clone+0x63/0x790
[  195.396327][ T7994]  ? __skb_clone+0x480/0x790
[  195.400950][ T7994]  ? __netlink_deliver_tap+0x7e8/0x830
[  195.406450][ T7994]  ? netlink_deliver_tap+0x2e/0x1b0
[  195.411675][ T7994]  ? __lock_acquire+0x7c80/0x7c80
[  195.416726][ T7994]  ? netlink_deliver_tap+0x2e/0x1b0
[  195.421949][ T7994]  netlink_unicast+0x751/0x8d0
[  195.426748][ T7994]  netlink_sendmsg+0x8c1/0xbe0
[  195.431543][ T7994]  ? netlink_getsockopt+0x580/0x580
[  195.436773][ T7994]  ? aa_sock_msg_perm+0x94/0x150
[  195.441734][ T7994]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  195.447041][ T7994]  ? security_socket_sendmsg+0x80/0xa0
[  195.452542][ T7994]  ? netlink_getsockopt+0x580/0x580
[  195.457854][ T7994]  ____sys_sendmsg+0x5bf/0x950
[  195.462650][ T7994]  ? __asan_memset+0x22/0x40
[  195.467263][ T7994]  ? __sys_sendmsg_sock+0x30/0x30
[  195.472311][ T7994]  ? __import_iovec+0x5f2/0x860
[  195.477193][ T7994]  ? import_iovec+0x73/0xa0
[  195.481721][ T7994]  ___sys_sendmsg+0x220/0x290
[  195.486426][ T7994]  ? __sys_sendmsg+0x270/0x270
[  195.491260][ T7994]  __se_sys_sendmsg+0x1a5/0x270
[  195.496142][ T7994]  ? __x64_sys_sendmsg+0x80/0x80
[  195.501123][ T7994]  ? lockdep_hardirqs_on+0x98/0x150
[  195.506336][ T7994]  do_syscall_64+0x55/0xb0
[  195.510795][ T7994]  ? clear_bhb_loop+0x40/0x90
[  195.515512][ T7994]  ? clear_bhb_loop+0x40/0x90
[  195.520214][ T7994]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  195.526126][ T7994] RIP: 0033:0x7fc73e38f749
[  195.530581][ T7994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.550481][ T7994] RSP: 002b:00007fc73f23a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  195.558921][ T7994] RAX: ffffffffffffffda RBX: 00007fc73e5e5fa0 RCX: 00007fc73e38f749
[  195.566921][ T7994] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[  195.574909][ T7994] RBP: 00007fc73e413f91 R08: 0000000000000000 R09: 0000000000000000
[  195.582914][ T7994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  195.590990][ T7994] R13: 00007fc73e5e6038 R14: 00007fc73e5e5fa0 R15: 00007ffd68116018
[  195.599050][ T7994]  </TASK>
[  195.611094][ T7994] Mem-Info:
[  195.623796][ T7994] active_anon:4368 inactive_anon:0 isolated_anon:0
[  195.623796][ T7994]  active_file:1008 inactive_file:40166 isolated_file:0
[  195.623796][ T7994]  unevictable:768 dirty:49 writeback:0
[  195.623796][ T7994]  slab_reclaimable:10390 slab_unreclaimable:92001
[  195.623796][ T7994]  mapped:24093 shmem:1375 pagetables:518
[  195.623796][ T7994]  sec_pagetables:0 bounce:0
[  195.623796][ T7994]  kernel_misc_reclaimable:0
[  195.623796][ T7994]  free:1327849 free_pcp:13356 free_cma:0
[  195.677665][ T7994] Node 0 active_anon:17472kB inactive_anon:0kB active_file:4032kB inactive_file:160460kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96372kB dirty:196kB writeback:0kB shmem:3964kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12564kB pagetables:1972kB sec_pagetables:0kB all_unreclaimable? no
[  195.720680][ T7994] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  195.753230][ T7994] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  195.780683][ T7994] lowmem_reserve[]: 0 2525 2526 2526 2526
[  195.786849][ T7994] Node 0 DMA32 free:1400148kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:17428kB inactive_anon:0kB active_file:4032kB inactive_file:159132kB unevictable:1536kB writepending:192kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:30520kB local_pcp:9688kB free_cma:0kB
[  195.819184][ T7994] lowmem_reserve[]: 0 0 1 1 1
[  195.824289][ T7994] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:4kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  195.856590][ T7994] lowmem_reserve[]: 0 0 0 0 0
[  195.861404][ T7994] Node 1 Normal free:3895876kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:22820kB local_pcp:12864kB free_cma:0kB
[  195.896662][ T7994] lowmem_reserve[]: 0 0 0 0 0
[  195.901543][ T7994] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  195.963673][ T7994] Node 0 DMA32: 25*4kB (ME) 2*8kB (M) 2*16kB (UM) 1*32kB (U) 21*64kB (UME) 45*128kB (UME) 18*256kB (UM) 13*512kB (M) 5*1024kB (UM) 2*2048kB (ME) 335*4096kB (M) = 1399924kB
[  196.006579][ T7994] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  196.055290][ T7994] Node 1 Normal: 231*4kB (UME) 75*8kB (UME) 33*16kB (UME) 54*32kB (UME) 18*64kB (UME) 4*128kB (UE) 1*256kB (E) 2*512kB (UM) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3895876kB
[  196.096295][ T7994] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  196.118975][ T7994] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  196.141040][ T7994] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  196.165734][ T7994] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  196.185903][ T7994] 42548 total pagecache pages
[  196.195893][ T7994] 0 pages in swap cache
[  196.205731][ T7994] Free swap  = 124692kB
[  196.210046][ T7994] Total swap = 124996kB
[  196.214247][ T7994] 2097051 pages RAM
[  196.226610][ T7994] 0 pages HighMem/MovableOnly
[  196.232097][ T7994] 416138 pages reserved
[  196.246040][ T7994] 0 pages cma reserved
[  196.376731][ T8053] loop2: detected capacity change from 0 to 2048
[  196.439907][ T8053] Alternate GPT is invalid, using primary GPT.
[  196.452036][ T8053]  loop2: p2 p3 p7
[  198.621125][ T8076] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.743133][ T8076] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.862494][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  198.862511][   T28] audit: type=1326 audit(198.797:5422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  198.898742][ T8076] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.919760][   T28] audit: type=1326 audit(198.797:5423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  198.972801][   T28] audit: type=1326 audit(198.797:5424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  199.004864][   T28] audit: type=1326 audit(198.797:5425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  199.034692][   T28] audit: type=1326 audit(198.797:5426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  199.061441][   T28] audit: type=1326 audit(198.797:5427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  199.092417][ T8076] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.093331][   T28] audit: type=1326 audit(198.797:5428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  199.133677][   T28] audit: type=1326 audit(198.797:5429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  199.160921][   T28] audit: type=1326 audit(198.797:5430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  199.187983][   T28] audit: type=1326 audit(198.797:5431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.4.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  199.371816][ T8076] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  199.418378][ T8076] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  199.460069][ T8076] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  199.503895][ T8076] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.275928][ T8104] netlink: 16 bytes leftover after parsing attributes in process `syz.0.861'.
[  200.671494][ T8115] loop3: detected capacity change from 0 to 128
[  200.697598][ T8115] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  200.880885][ T5783] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  201.013001][ T8128] syz.3.867[8128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.013145][ T8128] syz.3.867[8128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.058313][ T8128] netlink: 4 bytes leftover after parsing attributes in process `syz.3.867'.
[  201.277410][ T8137] unsupported nla_type 52263
[  201.541904][ T8145] 9pnet_fd: Insufficient options for proto=fd
[  201.724289][ T8147] loop4: detected capacity change from 0 to 764
[  201.872437][ T8147] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  201.917523][ T8155] netlink: 28 bytes leftover after parsing attributes in process `syz.0.882'.
[  201.943155][ T8147] Symlink component flag not implemented
[  201.989592][ T8147] Symlink component flag not implemented (7)
[  202.158354][ T8155] team0: Port device team_slave_1 removed
[  203.066452][ T8176] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  203.554608][ T8179] 9pnet_fd: Insufficient options for proto=fd
[  203.649772][ T8183] random: crng reseeded on system resumption
[  204.783966][   T28] kauditd_printk_skb: 65 callbacks suppressed
[  204.783984][   T28] audit: type=1326 audit(204.727:5497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8193 comm="syz.4.893" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f404b18f749 code=0x0
[  204.894004][ T8197] serio: Serial port ttyS3
[  204.908949][   T28] audit: type=1326 audit(204.857:5498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8198 comm="syz.0.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  204.967245][   T28] audit: type=1326 audit(204.857:5499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8198 comm="syz.0.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  205.030903][   T28] audit: type=1326 audit(204.857:5500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8198 comm="syz.0.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  205.107280][   T28] audit: type=1326 audit(204.857:5501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8198 comm="syz.0.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  206.299491][   T28] audit: type=1326 audit(206.247:5502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8222 comm="syz.3.904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  206.362676][   T28] audit: type=1326 audit(206.247:5503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8222 comm="syz.3.904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  206.415116][   T28] audit: type=1326 audit(206.247:5504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8222 comm="syz.3.904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  206.462491][   T28] audit: type=1326 audit(206.247:5505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8222 comm="syz.3.904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  206.491298][ T8232] loop3: detected capacity change from 0 to 128
[  206.509203][   T28] audit: type=1326 audit(206.247:5506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8222 comm="syz.3.904" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  206.522203][ T8232] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  206.578002][ T8232] FAT-fs (loop3): error, invalid FAT chain (i_pos 548, last_block 8)
[  206.591980][ T8232] FAT-fs (loop3): Filesystem has been set read-only
[  206.599134][ T8232] FAT-fs (loop3): error, corrupted file size (i_pos 548, 522)
[  207.444174][ T8248] netlink: 12 bytes leftover after parsing attributes in process `syz.3.912'.
[  207.474124][ T8248] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  207.673057][ T8248] batman_adv: batadv0: Removing interface: batadv_slave_1
[  208.595992][ T8262] tipc: Started in network mode
[  208.617617][ T8262] tipc: Node identity ac14140f, cluster identity 4711
[  208.662657][ T8262] tipc: New replicast peer: 255.255.255.255
[  208.688488][ T8262] tipc: Enabled bearer <udp:syz2>, priority 10
[  208.715152][ T8264] netlink: 12 bytes leftover after parsing attributes in process `syz.3.918'.
[  208.753480][ T8264] tipc: Disabling bearer <udp:syz2>
[  209.320652][ T8277] random: crng reseeded on system resumption
[  209.869509][   T28] kauditd_printk_skb: 33 callbacks suppressed
[  209.869526][   T28] audit: type=1326 audit(209.817:5540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.048547][   T28] audit: type=1326 audit(209.847:5541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.199568][   T28] audit: type=1326 audit(209.867:5542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.312927][   T28] audit: type=1326 audit(209.867:5543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.403983][   T28] audit: type=1326 audit(209.867:5544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.468487][   T28] audit: type=1326 audit(209.877:5545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.526016][   T28] audit: type=1326 audit(209.877:5546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.591219][   T28] audit: type=1326 audit(209.877:5547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.655880][   T28] audit: type=1326 audit(209.877:5548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  210.728044][   T28] audit: type=1326 audit(209.877:5549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404b18f749 code=0x7ffc0000
[  211.134460][ T8309] IPv6: Can't replace route, no match found
[  211.736182][ T8327] netlink: 32 bytes leftover after parsing attributes in process `syz.4.943'.
[  211.806788][ T8332] loop3: detected capacity change from 0 to 2048
[  211.868414][ T8332] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.005289][ T8348] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.946: bg 0: block 345: padding at end of block bitmap is not set
[  212.036886][ T8348] EXT4-fs (loop3): Remounting filesystem read-only
[  212.056505][ T5101] Bluetooth: hci0: command 0x0406 tx timeout
[  212.061347][ T8346] (null): rxe_set_mtu: Set mtu to 1024
[  212.071385][ T6930] EXT4-fs warning (device loop3): ext4_convert_unwritten_extents:4868: inode #15: block 1: len 15: ext4_ext_map_blocks returned -5
[  212.100715][ T8346] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  212.125879][ T5794] Bluetooth: hci2: command 0x0406 tx timeout
[  212.132085][ T5787] Bluetooth: hci3: command 0x0406 tx timeout
[  212.258169][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.881615][ T8375] (null): rxe_set_mtu: Set mtu to 1024
[  214.911384][ T8375] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  215.407196][ T8396] netlink: 'syz.0.965': attribute type 7 has an invalid length.
[  215.415192][ T8396] netlink: 8 bytes leftover after parsing attributes in process `syz.0.965'.
[  215.762844][ T8400] loop3: detected capacity change from 0 to 4096
[  215.883459][ T8404] netlink: 48 bytes leftover after parsing attributes in process `syz.2.969'.
[  215.917316][ T8400] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.008949][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.374891][   T28] kauditd_printk_skb: 52 callbacks suppressed
[  216.374908][   T28] audit: type=1326 audit(216.317:5602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  216.432270][   T28] audit: type=1326 audit(216.317:5603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  216.468661][   T28] audit: type=1326 audit(216.327:5604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  216.493127][   T28] audit: type=1326 audit(216.327:5605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  216.526403][   T28] audit: type=1326 audit(216.327:5606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  216.553115][   T28] audit: type=1326 audit(216.327:5607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  216.587424][   T28] audit: type=1326 audit(216.337:5608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  216.613476][   T28] audit: type=1326 audit(216.337:5609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  216.642949][   T28] audit: type=1326 audit(216.337:5610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8429 comm="syz.3.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  219.137955][ T8467] loop4: detected capacity change from 0 to 256
[  219.193796][ T8467] FAT-fs (loop4): Directory bread(block 64) failed
[  219.212173][ T8467] FAT-fs (loop4): Directory bread(block 65) failed
[  219.228292][ T8467] FAT-fs (loop4): Directory bread(block 66) failed
[  219.245263][ T8467] FAT-fs (loop4): Directory bread(block 67) failed
[  219.271023][ T8467] FAT-fs (loop4): Directory bread(block 68) failed
[  219.281039][ T8467] FAT-fs (loop4): Directory bread(block 69) failed
[  219.305965][ T8467] FAT-fs (loop4): Directory bread(block 70) failed
[  219.317115][ T8467] FAT-fs (loop4): Directory bread(block 71) failed
[  219.338016][ T8467] FAT-fs (loop4): Directory bread(block 72) failed
[  219.365135][ T8467] FAT-fs (loop4): Directory bread(block 73) failed
[  219.571525][   T28] audit: type=1800 audit(219.507:5611): pid=8467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.982" name="file1" dev="loop4" ino=1048620 res=0 errno=0
[  219.790958][ T7785] FAT-fs (loop4): error, corrupted directory (invalid entries)
[  219.818083][ T7785] FAT-fs (loop4): Filesystem has been set read-only
[  219.950237][ T7785] bridge0: port 3(syz_tun) entered disabled state
[  220.029207][ T7785] syz_tun (unregistering): left allmulticast mode
[  220.040494][ T7785] syz_tun (unregistering): left promiscuous mode
[  220.047626][ T7785] bridge0: port 3(syz_tun) entered disabled state
[  220.380641][ T6905] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.529927][ T6905] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.884603][ T6905] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.099500][ T6905] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.397642][ T5787] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  221.422974][ T5787] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  221.435202][ T5787] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  221.454508][ T5787] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  221.472548][ T5787] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  221.480269][ T5787] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  221.650939][ T8496] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.757884][ T8503] loop2: detected capacity change from 0 to 512
[  221.767040][ T8503] EXT4-fs (loop2): can't read group descriptor 0
[  221.805040][ T8496] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.922490][ T8496] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.063680][ T8496] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.289003][ T8496] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  222.336944][ T8496] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  222.367381][ T8496] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  222.425120][ T8496] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.774264][ T8526] loop3: detected capacity change from 0 to 4096
[  222.794025][ T8526] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.989878][ T8492] chnl_net:caif_netlink_parms(): no params data found
[  223.198407][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.361843][ T6905] hsr_slave_0: left promiscuous mode
[  223.384826][ T6905] hsr_slave_1: left promiscuous mode
[  223.397619][ T6905] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  223.418315][ T6905] batman_adv: batadv0: Removing interface: batadv_slave_0
[  223.433084][ T6905] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  223.443442][ T6905] batman_adv: batadv0: Removing interface: batadv_slave_1
[  223.459632][ T6905] bridge_slave_1: left allmulticast mode
[  223.474075][ T6905] bridge_slave_1: left promiscuous mode
[  223.490370][ T6905] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.502520][ T6905] bridge_slave_0: left allmulticast mode
[  223.515163][ T6905] bridge_slave_0: left promiscuous mode
[  223.527594][ T6905] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.566306][ T5787] Bluetooth: hci1: command tx timeout
[  223.583617][ T6905] veth1_macvtap: left promiscuous mode
[  223.589449][ T6905] veth0_macvtap: left promiscuous mode
[  223.595268][ T6905] veth1_vlan: left promiscuous mode
[  223.600788][ T6905] veth0_vlan: left promiscuous mode
[  224.280337][ T6905] team0 (unregistering): Port device team_slave_1 removed
[  224.334216][ T6905] team0 (unregistering): Port device team_slave_0 removed
[  224.382689][ T6905] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  224.437964][ T6905] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  225.053993][ T6905] bond0 (unregistering): Released all slaves
[  225.191797][ T8492] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.204116][ T8492] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.212538][ T8492] bridge_slave_0: entered allmulticast mode
[  225.220405][ T8492] bridge_slave_0: entered promiscuous mode
[  225.246084][ T8553] bond0: Caught tx_queue_len zero misconfig
[  225.295987][ T8492] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.303174][ T8492] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.329399][ T8492] bridge_slave_1: entered allmulticast mode
[  225.337061][ T8492] bridge_slave_1: entered promiscuous mode
[  225.424897][ T8492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  225.449419][ T8492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  225.460422][ T8562] team0: entered allmulticast mode
[  225.490544][ T8562] team_slave_0: entered allmulticast mode
[  225.503515][ T8564] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1010'.
[  225.586873][ T8565] team0: left allmulticast mode
[  225.602365][ T8565] team_slave_0: left allmulticast mode
[  225.636258][ T8492] team0: Port device team_slave_0 added
[  225.646253][ T5787] Bluetooth: hci1: command tx timeout
[  225.653214][ T8492] team0: Port device team_slave_1 added
[  225.793562][ T8492] batman_adv: batadv0: Adding interface: batadv_slave_0
[  225.821542][ T8492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.848554][   T28] kauditd_printk_skb: 10 callbacks suppressed
[  225.848571][   T28] audit: type=1326 audit(225.797:5622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8571 comm="syz.2.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  225.876525][ T8492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  225.878994][ T8492] batman_adv: batadv0: Adding interface: batadv_slave_1
[  225.905362][   T28] audit: type=1326 audit(225.837:5623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8571 comm="syz.2.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  225.932996][   T28] audit: type=1326 audit(225.837:5624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8571 comm="syz.2.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  225.945819][ T8492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.980719][   T28] audit: type=1326 audit(225.837:5625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8571 comm="syz.2.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  225.980774][   T28] audit: type=1326 audit(225.837:5626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8571 comm="syz.2.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  225.980819][   T28] audit: type=1326 audit(225.837:5627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8571 comm="syz.2.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  226.051578][ T8492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  226.188805][ T8579] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1017'.
[  226.215935][ T8492] hsr_slave_0: entered promiscuous mode
[  226.225316][ T8492] hsr_slave_1: entered promiscuous mode
[  226.730204][ T8492] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  226.752190][ T8492] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  226.780856][ T8492] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  226.818238][ T8492] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  227.103931][ T8492] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.110690][   T28] audit: type=1326 audit(227.047:5628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.0.1027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  227.110749][   T28] audit: type=1326 audit(227.047:5629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.0.1027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  227.110794][   T28] audit: type=1326 audit(227.047:5630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.0.1027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  227.110838][   T28] audit: type=1326 audit(227.047:5631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.0.1027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  227.224229][ T8492] 8021q: adding VLAN 0 to HW filter on device team0
[  227.242501][ T6900] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.249727][ T6900] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.282341][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.289607][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.732257][ T5787] Bluetooth: hci1: command tx timeout
[  227.760967][ T8629] loop2: detected capacity change from 0 to 4096
[  227.800220][ T8629] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.956452][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.007433][ T8492] 8021q: adding VLAN 0 to HW filter on device batadv0
[  228.333437][ T8649] loop2: detected capacity change from 0 to 1024
[  228.373298][ T8649] EXT4-fs: Ignoring removed orlov option
[  228.450733][ T8649] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.454750][ T8492] veth0_vlan: entered promiscuous mode
[  228.493731][ T8492] veth1_vlan: entered promiscuous mode
[  228.500595][ T8649] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  228.557156][ T8492] veth0_macvtap: entered promiscuous mode
[  228.567977][ T8492] veth1_macvtap: entered promiscuous mode
[  228.589100][ T8492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  228.600737][ T8492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.610690][ T8492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  228.621204][ T8492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.632971][ T8492] batman_adv: batadv0: Interface activated: batadv_slave_0
[  228.633016][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.645012][ T8492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  228.661926][ T8492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.682254][ T8492] batman_adv: batadv0: Interface activated: batadv_slave_1
[  228.732030][ T8492] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  228.755697][ T8492] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  228.764940][ T8492] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  228.776551][ T8492] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  228.932152][  T168] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  228.953745][  T168] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  229.016041][ T8666] loop2: detected capacity change from 0 to 1024
[  229.024952][  T168] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  229.034209][  T168] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  229.069527][ T8666] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.312551][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.777807][ T8699] smc: net device bond0 applied user defined pnetid SYZ0
[  229.796437][ T8699] smc: net device bond0 erased user defined pnetid SYZ0
[  229.806261][ T5787] Bluetooth: hci1: command tx timeout
[  229.866247][ T8701] loop5: detected capacity change from 0 to 1024
[  229.874175][ T8701] EXT4-fs: Ignoring removed bh option
[  229.880079][ T8701] EXT4-fs: inline encryption not supported
[  229.917400][ T8701] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  229.955150][ T8701] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  229.990346][ T8701] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 2: comm syz.5.1057: lblock 2 mapped to illegal pblock 2 (length 1)
[  230.008363][ T8701] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 48: comm syz.5.1057: lblock 0 mapped to illegal pblock 48 (length 1)
[  230.031425][ T8701] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1057: Failed to acquire dquot type 0
[  230.077539][ T8701] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5916: Corrupt filesystem
[  230.134267][ T8701] EXT4-fs error (device loop5): ext4_evict_inode:252: inode #11: comm syz.5.1057: mark_inode_dirty error
[  230.162566][ T8701] EXT4-fs warning (device loop5): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  230.201805][ T8701] EXT4-fs (loop5): 1 orphan inode deleted
[  230.218893][ T8701] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.257499][ T6908] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:34: lblock 1 mapped to illegal pblock 1 (length 1)
[  230.281968][ T6908] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u4:34: Failed to release dquot type 0
[  230.310904][ T8716] loop2: detected capacity change from 0 to 512
[  230.323275][ T8701] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 48: comm syz.5.1057: lblock 0 mapped to illegal pblock 48 (length 1)
[  230.358180][ T8716] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.393867][ T8701] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #2: block 16: comm syz.5.1057: lblock 0 mapped to illegal pblock 16 (length 1)
[  230.426796][ T8701] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #2: block 16: comm syz.5.1057: lblock 0 mapped to illegal pblock 16 (length 1)
[  230.468391][ T8716] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2988: inode #15: comm syz.2.1063: corrupted xattr block 33: invalid header
[  230.507465][ T8716] EXT4-fs warning (device loop2): ext4_evict_inode:272: xattr delete (err -117)
[  230.581485][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.609785][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.767983][ T8725] loop5: detected capacity change from 0 to 128
[  230.782762][ T8725] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  231.087937][ T8733] loop2: detected capacity change from 0 to 1024
[  231.108007][   T28] kauditd_printk_skb: 113 callbacks suppressed
[  231.108032][   T28] audit: type=1326 audit(231.057:5741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.178902][ T8733] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  231.195845][   T28] audit: type=1326 audit(231.057:5742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.253990][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  231.275026][   T28] audit: type=1326 audit(231.057:5743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.298720][ T8741] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1075'.
[  231.334859][   T28] audit: type=1326 audit(231.057:5744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.357768][   T28] audit: type=1326 audit(231.057:5745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.365788][ T8741] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  231.380997][   T28] audit: type=1326 audit(231.057:5746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.410019][   T28] audit: type=1326 audit(231.057:5747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.432289][ T8741] batman_adv: batadv0: Removing interface: batadv_slave_0
[  231.466821][   T28] audit: type=1326 audit(231.117:5748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.497202][ T8741] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  231.514623][ T8741] batman_adv: batadv0: Removing interface: batadv_slave_1
[  231.522206][   T28] audit: type=1326 audit(231.117:5749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  231.576368][   T28] audit: type=1326 audit(231.117:5750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.0.1072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  232.796083][ T8765] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  233.368324][ T8767] loop5: detected capacity change from 0 to 128
[  234.441354][ T8784] pimreg: entered allmulticast mode
[  234.554117][ T8784] pimreg: left allmulticast mode
[  235.312435][ T8788] syz.5.1092[8788] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.312582][ T8788] syz.5.1092[8788] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  236.521956][ T8803] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  237.096923][ T8807] loop2: detected capacity change from 0 to 128
[  237.496917][   T28] kauditd_printk_skb: 30 callbacks suppressed
[  237.496932][   T28] audit: type=1800 audit(237.447:5781): pid=8812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1101" name="bus" dev="loop2" ino=1048646 res=0 errno=0
[  237.689477][ T8815] loop5: detected capacity change from 0 to 512
[  237.717202][ T8815] EXT4-fs (loop5): 1 truncate cleaned up
[  237.727227][ T8815] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.858624][ T8714] Set syz1 is full, maxelem 65536 reached
[  238.053971][   T28] audit: type=1326 audit(237.997:5782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8822 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  238.112049][   T28] audit: type=1326 audit(237.997:5783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8822 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  238.187473][   T28] audit: type=1326 audit(237.997:5784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8822 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  238.262737][   T28] audit: type=1326 audit(237.997:5785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8822 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  238.414957][   T28] audit: type=1326 audit(237.997:5786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8822 comm="syz.0.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  238.576918][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.809050][ T8836] pimreg: entered allmulticast mode
[  238.926042][ T8836] pimreg: left allmulticast mode
[  239.791559][ T8849] netlink: 'syz.0.1116': attribute type 1 has an invalid length.
[  239.866162][ T8849] 8021q: adding VLAN 0 to HW filter on device bond1
[  239.888439][ T8855] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1116'.
[  240.190471][ T8855] bond1 (unregistering): Released all slaves
[  241.271404][ T8876] pimreg: entered allmulticast mode
[  241.399717][ T8876] pimreg: left allmulticast mode
[  242.326143][ T8884] netlink: 'syz.2.1131': attribute type 1 has an invalid length.
[  242.364059][ T8884] 8021q: adding VLAN 0 to HW filter on device bond1
[  242.528671][ T8884] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1131'.
[  242.761247][ T8907] loop3: detected capacity change from 0 to 512
[  242.817310][ T8907] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.866686][ T8884] bond1 (unregistering): Released all slaves
[  242.931398][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.194502][ T8918] loop2: detected capacity change from 0 to 512
[  243.247384][ T8918] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.397672][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.428797][   T28] audit: type=1326 audit(243.377:5787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.488627][   T28] audit: type=1326 audit(243.377:5788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.585739][   T28] audit: type=1326 audit(243.397:5789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.612823][   T28] audit: type=1326 audit(243.397:5790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.635927][   T28] audit: type=1326 audit(243.397:5791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.658964][   T28] audit: type=1326 audit(243.407:5792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.681136][   T28] audit: type=1326 audit(243.407:5793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.703304][   T28] audit: type=1326 audit(243.407:5794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.725571][   T28] audit: type=1326 audit(243.407:5795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  243.748425][   T28] audit: type=1326 audit(243.407:5796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  244.735062][ T8957] loop5: detected capacity change from 0 to 512
[  244.787029][ T8957] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.940086][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.780181][ T8996] loop3: detected capacity change from 0 to 512
[  245.864941][ T9001] netlink: 'syz.5.1176': attribute type 4 has an invalid length.
[  245.873955][ T9001] netlink: 152 bytes leftover after parsing attributes in process `syz.5.1176'.
[  245.914096][ T9001] .`: renamed from bond0 (while UP)
[  245.971397][ T8996] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  246.077708][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.785990][ T9011] syz.5.1179[9011] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  246.786155][ T9011] syz.5.1179[9011] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.489973][ T9043] loop3: detected capacity change from 0 to 512
[  247.523761][ T9043] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  247.533843][ T9043] EXT4-fs (loop3): orphan cleanup on readonly fs
[  247.545541][ T9043] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #16: comm syz.3.1196: corrupted inode contents
[  247.559514][ T9043] EXT4-fs (loop3): Remounting filesystem read-only
[  247.566646][ T9043] EXT4-fs (loop3): 1 truncate cleaned up
[  247.579265][   T12] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  247.590059][   T12] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  247.600933][   T12] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  247.618668][ T9043] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  247.674255][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.073788][ T9107] random: crng reseeded on system resumption
[  249.672861][ T9121] loop5: detected capacity change from 0 to 512
[  249.779552][ T9121] EXT4-fs (loop5): too many log groups per flexible block group
[  249.797322][ T9121] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  249.812468][ T9121] EXT4-fs (loop5): mount failed
[  251.724950][ T9136] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  252.152083][   T28] kauditd_printk_skb: 74 callbacks suppressed
[  252.152101][   T28] audit: type=1107 audit(252.097:5865): pid=9152 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  252.483297][   T28] audit: type=1326 audit(252.427:5866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  252.540737][   T28] audit: type=1326 audit(252.457:5867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  252.580301][   T28] audit: type=1326 audit(252.457:5868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  252.634646][   T28] audit: type=1326 audit(252.457:5869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  252.664111][   T28] audit: type=1326 audit(252.457:5870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  252.716156][   T28] audit: type=1326 audit(252.457:5871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  252.755676][   T28] audit: type=1326 audit(252.457:5872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  252.797901][   T28] audit: type=1326 audit(252.457:5873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  252.824591][ T9182] sit0: Caught tx_queue_len zero misconfig
[  252.840432][   T28] audit: type=1326 audit(252.457:5874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9167 comm="syz.5.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  253.295587][ T9196] vcan1: entered promiscuous mode
[  254.919926][ T9249] loop3: detected capacity change from 0 to 512
[  254.988776][ T9249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.206544][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.466421][ T9248] loop2: detected capacity change from 0 to 32768
[  255.508764][ T9248]  loop2: p1 p2 p3 < p5 p6 >
[  255.523362][ T9248] loop2: p2 size 16775168 extends beyond EOD, truncated
[  255.539124][ T9248] loop2: p5 start 4294970168 is beyond EOD, truncated
[  255.910476][ T9273] loop2: detected capacity change from 0 to 512
[  255.935364][ T9273] EXT4-fs (loop2): too many log groups per flexible block group
[  255.944685][ T9273] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  255.951821][ T9273] EXT4-fs (loop2): mount failed
[  256.060884][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  256.067674][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  256.133000][ T9283] loop3: detected capacity change from 0 to 512
[  256.144315][ T9283] EXT4-fs: Ignoring removed bh option
[  256.164805][ T9283] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.271339][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.302589][   T28] kauditd_printk_skb: 121 callbacks suppressed
[  257.302605][   T28] audit: type=1326 audit(257.247:5996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9317 comm="syz.2.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  257.621197][ T9327] loop5: detected capacity change from 0 to 512
[  257.636777][ T9327] EXT4-fs: Ignoring removed bh option
[  257.702174][ T9327] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.918192][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.158985][ T9341] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1320'.
[  258.722711][ T9366] tipc: Started in network mode
[  258.727935][ T9366] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  258.748769][ T9366] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  258.773285][ T9366] tipc: Enabled bearer <udp:syz0>, priority 10
[  259.285729][ T5899] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  259.455874][ T5899] usb 3-1: device descriptor read/64, error -71
[  259.631716][ T9403] loop5: detected capacity change from 0 to 512
[  259.674135][ T1951] kernel write not supported for file bpf-prog (pid: 1951 comm: kworker/0:2)
[  259.674365][ T9403] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.725952][ T5899] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  259.752335][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.896090][ T5899] usb 3-1: device descriptor read/64, error -71
[  259.909097][ T7567] tipc: Node number set to 1
[  260.036484][ T5899] usb usb3-port1: attempt power cycle
[  260.457207][ T5899] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  260.476878][ T9385] warn_alloc: 3 callbacks suppressed
[  260.476897][ T9385] syz.0.1340: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  260.506399][ T5899] usb 3-1: device descriptor read/8, error -71
[  260.514784][ T9385] CPU: 0 PID: 9385 Comm: syz.0.1340 Not tainted syzkaller #0
[  260.522312][ T9385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  260.532413][ T9385] Call Trace:
[  260.535730][ T9385]  <TASK>
[  260.538697][ T9385]  dump_stack_lvl+0x16c/0x230
[  260.543442][ T9385]  ? show_regs_print_info+0x20/0x20
[  260.548693][ T9385]  ? load_image+0x3b0/0x3b0
[  260.553227][ T9385]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  260.559680][ T9385]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  260.566216][ T9385]  warn_alloc+0x210/0x300
[  260.570591][ T9385]  ? zone_watermark_ok_safe+0x230/0x230
[  260.576178][ T9385]  ? _raw_spin_unlock+0x28/0x40
[  260.581056][ T9385]  __vmalloc_node_range+0x662/0x1320
[  260.586402][ T9385]  ? free_vm_area+0x50/0x50
[  260.590937][ T9385]  ? _raw_spin_unlock+0x28/0x40
[  260.595905][ T9385]  ? __kasan_kmalloc+0x8f/0xa0
[  260.600702][ T9385]  __vmalloc_node_range+0x568/0x1320
[  260.606024][ T9385]  ? hash_netiface_create+0x361/0xff0
[  260.611426][ T9385]  ? __asan_memset+0x22/0x40
[  260.616063][ T9385]  ? free_vm_area+0x50/0x50
[  260.620590][ T9385]  ? kvmalloc_node+0x70/0x180
[  260.625287][ T9385]  ? rcu_is_watching+0x15/0xb0
[  260.630084][ T9385]  ? kvmalloc_node+0x70/0x180
[  260.634814][ T9385]  ? trace_kmalloc+0x1f/0xa0
[  260.639433][ T9385]  kvmalloc_node+0x13f/0x180
[  260.644058][ T9385]  ? hash_netiface_create+0x361/0xff0
[  260.649455][ T9385]  hash_netiface_create+0x361/0xff0
[  260.654680][ T9385]  ? __lock_acquire+0x7c80/0x7c80
[  260.659734][ T9385]  ? __nla_parse+0x40/0x50
[  260.664215][ T9385]  ? hash_netport6_gc+0x570/0x570
[  260.669262][ T9385]  ip_set_create+0xa87/0x18e0
[  260.673972][ T9385]  ? ip_set_create+0x4b2/0x18e0
[  260.678863][ T9385]  ? ip_set_protocol+0x5d0/0x5d0
[  260.683837][ T9385]  ? trace_contention_end+0x39/0xe0
[  260.689093][ T9385]  nfnetlink_rcv_msg+0xb49/0x1130
[  260.694147][ T9385]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  260.700235][ T9385]  ? nfnetlink_rcv_msg+0x20e/0x1130
[  260.705472][ T9385]  ? nfnetlink_unbind+0x160/0x160
[  260.710536][ T9385]  ? __dev_queue_xmit+0x1a64/0x35a0
[  260.715761][ T9385]  ? __netlink_deliver_tap+0x5ab/0x830
[  260.721766][ T9385]  ? netlink_deliver_tap+0x19c/0x1b0
[  260.727076][ T9385]  ? netlink_unicast+0x72c/0x8d0
[  260.732051][ T9385]  ? netlink_sendmsg+0x8c1/0xbe0
[  260.737020][ T9385]  ? ____sys_sendmsg+0x5bf/0x950
[  260.741999][ T9385]  ? ___sys_sendmsg+0x220/0x290
[  260.746888][ T9385]  ? __se_sys_sendmsg+0x1a5/0x270
[  260.751935][ T9385]  ? do_syscall_64+0x55/0xb0
[  260.756574][ T9385]  netlink_rcv_skb+0x216/0x480
[  260.761385][ T9385]  ? nfnetlink_unbind+0x160/0x160
[  260.766450][ T9385]  ? netlink_ack+0x1110/0x1110
[  260.771262][ T9385]  ? apparmor_capable+0x137/0x1a0
[  260.776310][ T9385]  ? bpf_lsm_capable+0x9/0x10
[  260.781018][ T9385]  ? security_capable+0x89/0xb0
[  260.785900][ T9385]  nfnetlink_rcv+0x274/0x2180
[  260.790618][ T9385]  ? __local_bh_enable_ip+0x12e/0x1c0
[  260.796011][ T9385]  ? lockdep_hardirqs_on+0x98/0x150
[  260.801318][ T9385]  ? __local_bh_enable_ip+0x12e/0x1c0
[  260.806718][ T9385]  ? _local_bh_enable+0xa0/0xa0
[  260.811615][ T9385]  ? __dev_queue_xmit+0x245/0x35a0
[  260.816746][ T9385]  ? nfnetlink_net_exit_batch+0xa0/0xa0
[  260.822347][ T9385]  ? __dev_queue_xmit+0x245/0x35a0
[  260.827511][ T9385]  ? ref_tracker_free+0x634/0x7d0
[  260.832552][ T9385]  ? __copy_skb_header+0xa7/0x550
[  260.837695][ T9385]  ? refcount_inc+0x70/0x70
[  260.842219][ T9385]  ? __skb_clone+0x63/0x790
[  260.846766][ T9385]  ? __skb_clone+0x480/0x790
[  260.851391][ T9385]  ? __netlink_deliver_tap+0x7e8/0x830
[  260.857017][ T9385]  ? netlink_deliver_tap+0x2e/0x1b0
[  260.862277][ T9385]  ? __lock_acquire+0x7c80/0x7c80
[  260.867358][ T9385]  ? netlink_deliver_tap+0x2e/0x1b0
[  260.872591][ T9385]  netlink_unicast+0x751/0x8d0
[  260.877390][ T9385]  netlink_sendmsg+0x8c1/0xbe0
[  260.882193][ T9385]  ? netlink_getsockopt+0x580/0x580
[  260.887422][ T9385]  ? aa_sock_msg_perm+0x94/0x150
[  260.892487][ T9385]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  260.897808][ T9385]  ? security_socket_sendmsg+0x80/0xa0
[  260.903281][ T9385]  ? netlink_getsockopt+0x580/0x580
[  260.908505][ T9385]  ____sys_sendmsg+0x5bf/0x950
[  260.913309][ T9385]  ? __asan_memset+0x22/0x40
[  260.918013][ T9385]  ? __sys_sendmsg_sock+0x30/0x30
[  260.923065][ T9385]  ? __import_iovec+0x5f2/0x860
[  260.928115][ T9385]  ? import_iovec+0x73/0xa0
[  260.932663][ T9385]  ___sys_sendmsg+0x220/0x290
[  260.937378][ T9385]  ? __sys_sendmsg+0x270/0x270
[  260.942217][ T9385]  __se_sys_sendmsg+0x1a5/0x270
[  260.947279][ T9385]  ? __x64_sys_sendmsg+0x80/0x80
[  260.952262][ T9385]  ? lockdep_hardirqs_on+0x98/0x150
[  260.957490][ T9385]  do_syscall_64+0x55/0xb0
[  260.961931][ T9385]  ? clear_bhb_loop+0x40/0x90
[  260.966668][ T9385]  ? clear_bhb_loop+0x40/0x90
[  260.971378][ T9385]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  260.977290][ T9385] RIP: 0033:0x7f8583f8f749
[  260.981727][ T9385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.001446][ T9385] RSP: 002b:00007f85821f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  261.009887][ T9385] RAX: ffffffffffffffda RBX: 00007f85841e5fa0 RCX: 00007f8583f8f749
[  261.017881][ T9385] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  261.025874][ T9385] RBP: 00007f8584013f91 R08: 0000000000000000 R09: 0000000000000000
[  261.033862][ T9385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  261.041856][ T9385] R13: 00007f85841e6038 R14: 00007f85841e5fa0 R15: 00007ffef8081978
[  261.049866][ T9385]  </TASK>
[  261.075427][ T9385] Mem-Info:
[  261.082638][ T9385] active_anon:4425 inactive_anon:0 isolated_anon:0
[  261.082638][ T9385]  active_file:10599 inactive_file:40223 isolated_file:0
[  261.082638][ T9385]  unevictable:768 dirty:135 writeback:0
[  261.082638][ T9385]  slab_reclaimable:11291 slab_unreclaimable:94659
[  261.082638][ T9385]  mapped:24136 shmem:1392 pagetables:532
[  261.082638][ T9385]  sec_pagetables:0 bounce:0
[  261.082638][ T9385]  kernel_misc_reclaimable:0
[  261.082638][ T9385]  free:1313077 free_pcp:13354 free_cma:0
[  261.133532][ T9385] Node 0 active_anon:17800kB inactive_anon:0kB active_file:42396kB inactive_file:160688kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96544kB dirty:540kB writeback:0kB shmem:4032kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13032kB pagetables:2128kB sec_pagetables:0kB all_unreclaimable? no
[  261.169749][ T9385] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  261.200174][ T9385] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  261.227974][ T5899] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  261.238266][ T9385] lowmem_reserve[]: 0 2525 2526 2526 2526
[  261.244287][ T9385] Node 0 DMA32 free:1341312kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:17672kB inactive_anon:0kB active_file:42396kB inactive_file:159360kB unevictable:1536kB writepending:532kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:30368kB local_pcp:15568kB free_cma:0kB
[  261.277755][ T5899] usb 3-1: device descriptor read/8, error -71
[  261.285736][ T9385] lowmem_reserve[]: 0 0 1 1 1
[  261.290543][ T9385] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  261.326315][ T9432] loop3: detected capacity change from 0 to 512
[  261.333062][ T9385] lowmem_reserve[]: 0 0 0 0 0
[  261.338567][ T9385] Node 1 Normal free:3895624kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:23068kB local_pcp:9956kB free_cma:0kB
[  261.372799][ T9385] lowmem_reserve[]: 0 0 0 0 0
[  261.378004][ T9385] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  261.392471][ T9385] Node 0 DMA32: 2*4kB (UE) 1*8kB (U) 93*16kB 
[  261.395949][ T5899] usb usb3-port1: unable to enumerate USB device
[  261.398088][ T9385] (UME) 304*32kB (M) 245*64kB (M) 37*128kB (UM) 23*256kB (ME) 10*512kB (UM) 6*1024kB (UM) 3*2048kB (ME) 314*4096kB (UM) = 1341088kB
[  261.428096][ T9385] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  261.435350][ T9432] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.456652][ T9385] Node 1 Normal: 168*4kB (UME) 75*8kB (UME) 33*16kB (UME) 54*32kB (UME) 18*64kB (UME) 4*128kB (UE) 1*256kB (E) 2*512kB (UM) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3895624kB
[  261.475333][ T9385] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  261.519439][ T9385] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  261.560912][ T9385] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  261.608281][ T9385] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  261.616955][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.647500][ T9385] 52264 total pagecache pages
[  261.653518][ T9385] 0 pages in swap cache
[  261.658340][ T9385] Free swap  = 124436kB
[  261.662881][ T9385] Total swap = 124996kB
[  261.667247][ T9385] 2097051 pages RAM
[  261.671210][ T9385] 0 pages HighMem/MovableOnly
[  261.676036][ T9385] 416138 pages reserved
[  261.680821][ T9385] 0 pages cma reserved
[  261.777685][ T9440] loop3: detected capacity change from 0 to 512
[  261.785225][ T9440] EXT4-fs: Ignoring removed bh option
[  261.860004][ T9440] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  262.029978][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.717648][ T9482] loop3: detected capacity change from 0 to 512
[  265.773085][ T9482] EXT4-fs: Ignoring removed bh option
[  265.801824][ T9482] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.195956][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.040206][ T9501] loop2: detected capacity change from 0 to 512
[  267.084190][ T9501] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  267.198554][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.251348][   T28] audit: type=1326 audit(267.187:5997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.329356][   T28] audit: type=1326 audit(267.187:5998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.385813][   T28] audit: type=1326 audit(267.197:5999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.426949][   T28] audit: type=1326 audit(267.197:6000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.486362][   T28] audit: type=1326 audit(267.197:6001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.546396][   T28] audit: type=1326 audit(267.227:6002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.571871][   T28] audit: type=1326 audit(267.227:6003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.605731][   T28] audit: type=1326 audit(267.227:6004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.628954][ T9526] loop5: detected capacity change from 0 to 128
[  267.637978][   T28] audit: type=1326 audit(267.227:6005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.662120][   T28] audit: type=1326 audit(267.227:6006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9507 comm="syz.5.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  267.691292][ T9526] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  267.729778][ T9526] EXT4-fs warning (device loop5): ext4_group_add:1742: No reserved GDT blocks, can't resize
[  267.829917][ T8492] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  267.884337][ T9536] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1398'.
[  267.895812][ T9536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  267.903266][ T9536] batman_adv: batadv0: Removing interface: batadv_slave_0
[  268.289171][ T9552] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1402'.
[  268.310670][ T9544] netlink: 'syz.0.1402': attribute type 3 has an invalid length.
[  268.475293][ T9560] loop2: detected capacity change from 0 to 512
[  268.517778][ T9560] EXT4-fs: Ignoring removed i_version option
[  268.524731][ T9560] EXT4-fs: Ignoring removed bh option
[  268.566453][ T9560] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.679438][ T7567] kernel write not supported for file /snd/seq (pid: 7567 comm: kworker/1:6)
[  268.784306][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.521546][ T9605] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1427'.
[  269.548414][ T9607] loop5: detected capacity change from 0 to 1024
[  269.558568][ T9607] EXT4-fs: Ignoring removed nobh option
[  269.564476][ T9607] EXT4-fs: Ignoring removed bh option
[  269.585741][ T9607] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  269.612117][ T9611] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1429'.
[  269.635705][ T9607] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  269.801626][ T9619] loop3: detected capacity change from 0 to 2048
[  269.850875][ T9619] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.910785][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.980311][ T9626] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1432: bg 0: block 345: padding at end of block bitmap is not set
[  269.999339][ T9626] EXT4-fs (loop3): Remounting filesystem read-only
[  270.017933][ T6885] EXT4-fs warning (device loop3): ext4_convert_unwritten_extents:4868: inode #15: block 1: len 15: ext4_ext_map_blocks returned -5
[  270.061834][ T9630] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1436'.
[  270.081756][ T9630] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1436'.
[  270.110784][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.134721][ T9632] loop5: detected capacity change from 0 to 128
[  270.290434][ T9638] syz.5.1437: attempt to access beyond end of device
[  270.290434][ T9638] loop5: rw=2049, sector=145, nr_sectors = 576 limit=128
[  270.411550][ T9644] loop2: detected capacity change from 0 to 512
[  270.427172][ T9644] EXT4-fs: Ignoring removed i_version option
[  270.433234][ T9644] EXT4-fs: Ignoring removed bh option
[  270.500204][ T9644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  270.607365][ T9652] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1444'.
[  270.659932][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.060351][ T9669] loop5: detected capacity change from 0 to 1024
[  271.098327][ T9669] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  271.123068][ T9669] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  271.148228][ T9669] JBD2: no valid journal superblock found
[  271.174338][ T9669] EXT4-fs (loop5): Could not load journal inode
[  271.200751][ T9673] loop3: detected capacity change from 0 to 512
[  271.239724][ T9673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  271.361167][ T9679] loop5: detected capacity change from 0 to 128
[  271.361716][ T9680] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1453'.
[  271.400829][ T9679] EXT4-fs: Ignoring removed nobh option
[  271.420404][ T9672] netlink: 'syz.3.1453': attribute type 3 has an invalid length.
[  271.447755][ T9679] ext3: Unknown parameter 'dont_appraise'
[  271.558325][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.641981][ T9684] loop2: detected capacity change from 0 to 512
[  271.704420][ T9684] EXT4-fs error (device loop2): ext4_init_orphan_info:582: comm syz.2.1456: inode #0: comm syz.2.1456: iget: illegal inode #
[  271.726251][ T9679] loop5: detected capacity change from 0 to 512
[  271.733423][ T9679] EXT4-fs: Ignoring removed oldalloc option
[  271.798344][ T9684] EXT4-fs (loop2): get orphan inode failed
[  271.819216][ T9679] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  271.854189][ T9684] EXT4-fs (loop2): mount failed
[  272.973281][ T9721] loop3: detected capacity change from 0 to 512
[  272.996233][ T9721] EXT4-fs: Ignoring removed i_version option
[  273.002292][ T9721] EXT4-fs: Ignoring removed bh option
[  273.135929][ T9721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  273.204828][ T9729] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1474'.
[  273.276242][ T9723] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  273.283516][ T9723] IPv6: NLM_F_CREATE should be set when creating new route
[  273.290864][ T9723] IPv6: NLM_F_CREATE should be set when creating new route
[  273.298177][ T9723] IPv6: NLM_F_CREATE should be set when creating new route
[  273.362640][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.551823][ T9735] loop3: detected capacity change from 0 to 512
[  273.567558][ T9735] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  273.660109][ T9735] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  273.814958][ T9743] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1477'.
[  273.820179][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.028158][ T9743] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1477'.
[  274.077162][ T9752] loop2: detected capacity change from 0 to 512
[  274.282660][ T9743] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1477'.
[  274.611494][ T9504] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 217: padding at end of block bitmap is not set
[  274.662985][ T9504] EXT4-fs (loop5): Remounting filesystem read-only
[  274.790801][ T9778] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1485'.
[  275.605337][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.734757][ T9808] loop5: detected capacity change from 0 to 512
[  275.743927][ T9808] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  277.117731][   T28] kauditd_printk_skb: 36 callbacks suppressed
[  277.117750][   T28] audit: type=1326 audit(277.057:6043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.219761][   T28] audit: type=1326 audit(277.057:6044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.292971][   T28] audit: type=1326 audit(277.097:6045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.344542][   T28] audit: type=1326 audit(277.097:6046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.396698][   T28] audit: type=1326 audit(277.097:6047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.445922][   T28] audit: type=1326 audit(277.097:6048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.498443][   T28] audit: type=1326 audit(277.107:6049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.531838][   T28] audit: type=1326 audit(277.107:6050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.579940][   T28] audit: type=1326 audit(277.107:6051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  277.602533][   T28] audit: type=1326 audit(277.107:6052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9854 comm="syz.2.1504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff91a58f749 code=0x7ffc0000
[  278.051990][ T9895] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) !
[  278.336698][ T9899] loop5: detected capacity change from 0 to 8192
[  278.402670][ T9899]  loop5: p1 < > p2 p4 < p5 >
[  278.426629][ T9899] loop5: partition table partially beyond EOD, truncated
[  278.433931][ T9899] loop5: p1 start 134217728 is beyond EOD, truncated
[  278.466984][ T9899] loop5: p2 size 591360 extends beyond EOD, truncated
[  278.485938][ T9910] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1522'.
[  278.491956][ T9899] loop5: p5 size 591360 extends beyond EOD, truncated
[  279.414037][ T9942] loop5: detected capacity change from 0 to 128
[  279.454297][ T9942] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  279.479541][ T9942] FAT-fs (loop5): Filesystem has been set read-only
[  279.506961][ T9946] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  279.962293][ T9965] syzkaller0: entered promiscuous mode
[  279.968117][ T9965] syzkaller0: entered allmulticast mode
[  280.202487][ T9974] loop2: detected capacity change from 0 to 1024
[  280.223190][ T9974] EXT4-fs: Ignoring removed orlov option
[  280.257341][ T9974] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  280.403397][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  280.587919][ T9995] loop3: detected capacity change from 0 to 512
[  280.595095][ T9995] EXT4-fs: Ignoring removed i_version option
[  280.609153][ T9995] EXT4-fs: Ignoring removed bh option
[  280.678282][ T9995] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  280.919770][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.384730][T10035] loop3: detected capacity change from 0 to 512
[  281.392114][T10035] EXT4-fs: Ignoring removed i_version option
[  281.405554][T10035] EXT4-fs: Ignoring removed bh option
[  281.431270][T10035] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.591212][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.946195][T10065] loop3: detected capacity change from 0 to 512
[  281.954192][T10065] EXT4-fs: Ignoring removed i_version option
[  281.962875][T10065] EXT4-fs: Ignoring removed bh option
[  282.003293][T10065] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  282.153433][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.021207][T10093] loop3: detected capacity change from 0 to 512
[  283.037797][T10093] EXT4-fs: Ignoring removed bh option
[  283.086392][T10093] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  283.218497][T10102] loop2: detected capacity change from 0 to 512
[  283.288446][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.303169][T10102] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  284.359836][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.480698][T10112] loop5: detected capacity change from 0 to 512
[  284.502906][T10112] EXT4-fs: Ignoring removed i_version option
[  284.534439][T10112] EXT4-fs: Ignoring removed bh option
[  284.562993][T10112] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  284.730389][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.845755][T10108] warn_alloc: 3 callbacks suppressed
[  284.845774][T10108] syz.0.1598: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  284.868951][T10108] CPU: 1 PID: 10108 Comm: syz.0.1598 Not tainted syzkaller #0
[  284.876458][T10108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  284.886646][T10108] Call Trace:
[  284.889974][T10108]  <TASK>
[  284.893032][T10108]  dump_stack_lvl+0x16c/0x230
[  284.897868][T10108]  ? show_regs_print_info+0x20/0x20
[  284.903116][T10108]  ? load_image+0x3b0/0x3b0
[  284.907667][T10108]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  284.914124][T10108]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  284.920660][T10108]  warn_alloc+0x210/0x300
[  284.925069][T10108]  ? zone_watermark_ok_safe+0x230/0x230
[  284.930664][T10108]  ? _raw_spin_unlock+0x28/0x40
[  284.935554][T10108]  __vmalloc_node_range+0x662/0x1320
[  284.940981][T10108]  ? free_vm_area+0x50/0x50
[  284.945508][T10108]  ? _raw_spin_unlock+0x28/0x40
[  284.950403][T10108]  ? __kasan_kmalloc+0x8f/0xa0
[  284.955191][T10108]  __vmalloc_node_range+0x568/0x1320
[  284.960526][T10108]  ? hash_netiface_create+0x361/0xff0
[  284.965935][T10108]  ? __asan_memset+0x22/0x40
[  284.970573][T10108]  ? free_vm_area+0x50/0x50
[  284.975185][T10108]  ? kvmalloc_node+0x70/0x180
[  284.979886][T10108]  ? rcu_is_watching+0x15/0xb0
[  284.984675][T10108]  ? kvmalloc_node+0x70/0x180
[  284.989376][T10108]  ? trace_kmalloc+0x1f/0xa0
[  284.993993][T10108]  kvmalloc_node+0x13f/0x180
[  284.998609][T10108]  ? hash_netiface_create+0x361/0xff0
[  285.004006][T10108]  hash_netiface_create+0x361/0xff0
[  285.009233][T10108]  ? __lock_acquire+0x7c80/0x7c80
[  285.014286][T10108]  ? __nla_parse+0x40/0x50
[  285.018757][T10108]  ? hash_netport6_gc+0x570/0x570
[  285.023804][T10108]  ip_set_create+0xa87/0x18e0
[  285.028514][T10108]  ? ip_set_create+0x4b2/0x18e0
[  285.033490][T10108]  ? ip_set_protocol+0x5d0/0x5d0
[  285.038476][T10108]  nfnetlink_rcv_msg+0xb49/0x1130
[  285.043548][T10108]  ? lockdep_hardirqs_on+0x98/0x150
[  285.048781][T10108]  ? nfnetlink_rcv_msg+0x20e/0x1130
[  285.054025][T10108]  ? nfnetlink_unbind+0x160/0x160
[  285.059100][T10108]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  285.065099][T10108]  ? trace_irq_disable+0x37/0xe0
[  285.070090][T10108]  netlink_rcv_skb+0x216/0x480
[  285.074887][T10108]  ? nfnetlink_unbind+0x160/0x160
[  285.079934][T10108]  ? netlink_ack+0x1110/0x1110
[  285.084739][T10108]  ? apparmor_capable+0x137/0x1a0
[  285.089789][T10108]  ? bpf_lsm_capable+0x9/0x10
[  285.094502][T10108]  ? security_capable+0x89/0xb0
[  285.099558][T10108]  nfnetlink_rcv+0x274/0x2180
[  285.104269][T10108]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  285.110267][T10108]  ? lock_chain_count+0x20/0x20
[  285.115148][T10108]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  285.121066][T10108]  ? lockdep_hardirqs_on+0x98/0x150
[  285.126287][T10108]  ? nfnetlink_net_exit_batch+0xa0/0xa0
[  285.131865][T10108]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  285.137789][T10108]  ? _raw_spin_unlock+0x40/0x40
[  285.142686][T10108]  ? rcu_preempt_deferred_qs_irqrestore+0x86a/0xcc0
[  285.149326][T10108]  ? rcu_read_unlock_special+0x460/0x460
[  285.155013][T10108]  ? __netlink_deliver_tap+0x7e8/0x830
[  285.160498][T10108]  ? netlink_deliver_tap+0x2e/0x1b0
[  285.165726][T10108]  ? __lock_acquire+0x7c80/0x7c80
[  285.170785][T10108]  ? __rcu_read_unlock+0x7c/0xd0
[  285.175749][T10108]  ? netlink_deliver_tap+0x2e/0x1b0
[  285.180978][T10108]  netlink_unicast+0x751/0x8d0
[  285.185783][T10108]  netlink_sendmsg+0x8c1/0xbe0
[  285.190691][T10108]  ? lockdep_hardirqs_on+0x98/0x150
[  285.195905][T10108]  ? netlink_getsockopt+0x580/0x580
[  285.201137][T10108]  ? netlink_getsockopt+0x580/0x580
[  285.206361][T10108]  ____sys_sendmsg+0x5bf/0x950
[  285.211157][T10108]  ? __asan_memset+0x22/0x40
[  285.215786][T10108]  ? __sys_sendmsg_sock+0x30/0x30
[  285.220834][T10108]  ? __import_iovec+0x5f2/0x860
[  285.225824][T10108]  ? import_iovec+0x73/0xa0
[  285.230442][T10108]  ___sys_sendmsg+0x220/0x290
[  285.235150][T10108]  ? __sys_sendmsg+0x270/0x270
[  285.239982][T10108]  __se_sys_sendmsg+0x1a5/0x270
[  285.244863][T10108]  ? __x64_sys_sendmsg+0x80/0x80
[  285.249843][T10108]  ? lockdep_hardirqs_on+0x98/0x150
[  285.255143][T10108]  do_syscall_64+0x55/0xb0
[  285.259577][T10108]  ? clear_bhb_loop+0x40/0x90
[  285.264284][T10108]  ? clear_bhb_loop+0x40/0x90
[  285.269005][T10108]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  285.274915][T10108] RIP: 0033:0x7f8583f8f749
[  285.279344][T10108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.299051][T10108] RSP: 002b:00007f85821b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  285.307575][T10108] RAX: ffffffffffffffda RBX: 00007f85841e6180 RCX: 00007f8583f8f749
[  285.315654][T10108] RDX: 00000000000088a4 RSI: 00002000000008c0 RDI: 0000000000000004
[  285.323651][T10108] RBP: 00007f8584013f91 R08: 0000000000000000 R09: 0000000000000000
[  285.331650][T10108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  285.339989][T10108] R13: 00007f85841e6218 R14: 00007f85841e6180 R15: 00007ffef8081978
[  285.347996][T10108]  </TASK>
[  285.352568][T10108] Mem-Info:
[  285.355929][T10108] active_anon:9862 inactive_anon:0 isolated_anon:0
[  285.355929][T10108]  active_file:10533 inactive_file:40333 isolated_file:0
[  285.355929][T10108]  unevictable:768 dirty:66 writeback:0
[  285.355929][T10108]  slab_reclaimable:11269 slab_unreclaimable:95642
[  285.355929][T10108]  mapped:26965 shmem:4407 pagetables:444
[  285.355929][T10108]  sec_pagetables:0 bounce:0
[  285.355929][T10108]  kernel_misc_reclaimable:0
[  285.355929][T10108]  free:1308067 free_pcp:11662 free_cma:0
[  285.401411][T10108] Node 0 active_anon:39448kB inactive_anon:0kB active_file:42132kB inactive_file:161128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:107860kB dirty:264kB writeback:0kB shmem:16092kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12904kB pagetables:1776kB sec_pagetables:0kB all_unreclaimable? no
[  285.435169][T10108] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  285.465703][T10108] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  285.494127][T10108] lowmem_reserve[]: 0 2525 2526 2526 2526
[  285.500009][T10108] Node 0 DMA32 free:1321524kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:36804kB inactive_anon:0kB active_file:42132kB inactive_file:159800kB unevictable:1536kB writepending:264kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:26176kB local_pcp:6580kB free_cma:0kB
[  285.531221][T10108] lowmem_reserve[]: 0 0 1 1 1
[  285.536187][T10108] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  285.563807][T10108] lowmem_reserve[]: 0 0 0 0 0
[  285.568651][T10108] Node 1 Normal free:3895372kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:23348kB local_pcp:13144kB free_cma:0kB
[  285.598294][T10108] lowmem_reserve[]: 0 0 0 0 0
[  285.603081][T10108] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  285.615874][T10108] Node 0 DMA32: 340*4kB (UM) 48*8kB (UM) 46*16kB (UME) 238*32kB (UME) 258*64kB (UME) 42*128kB (UM) 20*256kB (UM) 5*512kB (M) 4*1024kB (UM) 2*2048kB (ME) 312*4096kB (M) = 1325808kB
[  285.634741][T10108] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  285.647450][T10108] Node 1 Normal: 105*4kB (UME) 75*8kB (UME) 33*16kB (UME) 54*32kB (UME) 18*64kB (UME) 4*128kB (UE) 1*256kB (E) 2*512kB (UM) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3895372kB
[  285.665503][T10108] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  285.675157][T10108] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  285.684782][T10108] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  285.694406][T10108] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  285.703765][T10108] 55271 total pagecache pages
[  285.708542][T10108] 0 pages in swap cache
[  285.712738][T10108] Free swap  = 124436kB
[  285.716983][T10108] Total swap = 124996kB
[  285.721185][T10108] 2097051 pages RAM
[  285.725686][T10108] 0 pages HighMem/MovableOnly
[  285.730400][T10108] 416138 pages reserved
[  285.734619][T10108] 0 pages cma reserved
[  285.799264][T10122] loop3: detected capacity change from 0 to 512
[  285.807896][T10122] EXT4-fs: Ignoring removed bh option
[  285.822433][T10122] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.885553][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.595961][ T5859] IPVS: starting estimator thread 0...
[  286.698950][T10128] IPVS: using max 17 ests per chain, 40800 per kthread
[  286.709133][T10132] loop3: detected capacity change from 0 to 512
[  286.756822][T10132] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  286.819751][T10132] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  286.862882][T10137] loop2: detected capacity change from 0 to 512
[  286.871048][T10132] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1610: bg 0: block 248: padding at end of block bitmap is not set
[  287.125267][T10132] __quota_error: 16 callbacks suppressed
[  287.125287][T10132] Quota error (device loop3): write_blk: dquota write failed
[  287.147410][T10137] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.088620][T10132] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  288.101909][T10132] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1610: Failed to acquire dquot type 1
[  288.170062][T10132] EXT4-fs (loop3): 1 truncate cleaned up
[  288.178167][T10132] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  288.284554][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.850313][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  288.982357][ T7567] IPVS: starting estimator thread 0...
[  288.999839][T10157] loop3: detected capacity change from 0 to 512
[  289.008160][T10157] EXT4-fs: Ignoring removed bh option
[  289.043894][T10157] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.086756][T10155] IPVS: using max 18 ests per chain, 43200 per kthread
[  289.141969][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.810522][T10184] loop2: detected capacity change from 0 to 512
[  289.824787][T10184] EXT4-fs: Ignoring removed i_version option
[  289.841243][T10184] EXT4-fs: Ignoring removed bh option
[  289.916549][T10184] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.959447][   T28] audit: type=1326 audit(289.907:6069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10193 comm="syz.0.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  290.044808][T10196] loop5: detected capacity change from 0 to 512
[  290.047990][   T28] audit: type=1326 audit(289.927:6070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10193 comm="syz.0.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  290.140846][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.153865][T10196] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.171994][   T28] audit: type=1326 audit(289.937:6071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10193 comm="syz.0.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  290.281606][   T28] audit: type=1326 audit(289.937:6072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10193 comm="syz.0.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  290.317429][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.345684][   T28] audit: type=1326 audit(289.937:6073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10193 comm="syz.0.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  290.646826][T10216] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1642'.
[  290.673517][T10216] hsr_slave_0: left promiscuous mode
[  290.680137][T10216] hsr_slave_1: left promiscuous mode
[  290.747328][T10218] loop2: detected capacity change from 0 to 1024
[  290.772384][T10220] loop3: detected capacity change from 0 to 512
[  290.781078][T10220] EXT4-fs: Ignoring removed i_version option
[  290.785011][T10218] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  290.787336][T10220] EXT4-fs: Ignoring removed bh option
[  290.813614][T10218] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.1643: bg 0: block 41: padding at end of block bitmap is not set
[  290.833487][T10218] EXT4-fs (loop2): Remounting filesystem read-only
[  290.844766][T10220] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.954842][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.092371][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.255849][T10234] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1648'.
[  291.271757][T10234] IPVS: Unknown mcast interface: ipvlan1
[  291.351962][T10240] loop2: detected capacity change from 0 to 764
[  291.475067][T10246] loop3: detected capacity change from 0 to 128
[  291.550297][T10246] syz.3.1653: attempt to access beyond end of device
[  291.550297][T10246] loop3: rw=2049, sector=138, nr_sectors = 112 limit=128
[  291.630364][T10253] loop2: detected capacity change from 0 to 512
[  291.637624][T10253] EXT4-fs: Ignoring removed i_version option
[  291.643982][T10253] EXT4-fs: Ignoring removed bh option
[  291.710709][T10253] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.923498][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.959794][T10268] loop5: detected capacity change from 0 to 512
[  292.016072][T10268] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.039868][   T28] audit: type=1107 audit(291.987:6074): pid=10272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  292.143645][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.386970][T10289] loop5: detected capacity change from 0 to 512
[  292.394304][T10289] EXT4-fs: Ignoring removed bh option
[  292.414370][T10289] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.476819][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.639131][T10296] loop5: detected capacity change from 0 to 512
[  292.647724][T10296] EXT4-fs: Ignoring removed i_version option
[  292.653771][T10296] EXT4-fs: Ignoring removed bh option
[  292.673797][T10296] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.778213][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.014095][T10287] 9pnet_fd: Insufficient options for proto=fd
[  293.030169][T10306] loop5: detected capacity change from 0 to 512
[  293.074091][T10306] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.260305][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.423123][T10320] loop5: detected capacity change from 0 to 512
[  293.430764][T10320] EXT4-fs: Ignoring removed bh option
[  293.453418][T10320] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.578143][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.595491][T10328] loop3: detected capacity change from 0 to 512
[  293.661359][T10328] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.784800][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.932973][   T28] audit: type=1326 audit(293.877:6075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  293.985740][   T28] audit: type=1326 audit(293.917:6076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.026026][   T28] audit: type=1326 audit(293.917:6077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.059452][   T28] audit: type=1326 audit(293.917:6078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.087584][   T28] audit: type=1326 audit(293.917:6079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.115683][   T28] audit: type=1326 audit(293.917:6080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.150957][   T28] audit: type=1326 audit(293.917:6081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.175830][   T28] audit: type=1326 audit(293.917:6082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.206322][   T28] audit: type=1326 audit(293.917:6083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.233795][   T28] audit: type=1326 audit(293.917:6084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10344 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc595b8f749 code=0x7ffc0000
[  294.317553][T10345] loop5: detected capacity change from 0 to 128
[  294.473230][T10359] loop3: detected capacity change from 0 to 512
[  294.534267][T10359] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.641068][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.652018][T10365] IPv6: Can't replace route, no match found
[  294.863644][T10373] loop5: detected capacity change from 0 to 512
[  294.871960][T10373] EXT4-fs: Ignoring removed i_version option
[  294.878483][T10373] EXT4-fs: Ignoring removed bh option
[  294.936609][T10373] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.054808][T10385] loop3: detected capacity change from 0 to 512
[  295.087688][T10385] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.113623][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.219479][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.234794][T10391] Bluetooth: hci4: Frame reassembly failed (-84)
[  295.267086][ T6900] Bluetooth: hci4: Frame reassembly failed (-84)
[  295.430335][   T23] IPVS: starting estimator thread 0...
[  295.506360][T10404] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  295.525840][T10402] IPVS: using max 17 ests per chain, 40800 per kthread
[  295.757566][T10414] loop3: detected capacity change from 0 to 512
[  295.765367][T10414] EXT4-fs: Ignoring removed i_version option
[  295.771842][T10414] EXT4-fs: Ignoring removed bh option
[  295.801492][T10414] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.858659][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.923151][T10418] loop2: detected capacity change from 0 to 512
[  295.950357][T10418] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.017623][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.115103][T10428] loop2: detected capacity change from 0 to 512
[  296.123491][T10428] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  296.142968][T10428] EXT4-fs (loop2): 1 truncate cleaned up
[  296.150983][T10428] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.161086][T10431] loop3: detected capacity change from 0 to 1024
[  296.182293][T10431] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.238562][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.284839][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.491057][T10444] bridge_slave_0: left allmulticast mode
[  296.497425][T10444] bridge_slave_0: left promiscuous mode
[  296.503306][T10444] bridge0: port 1(bridge_slave_0) entered disabled state
[  296.514160][T10444] bridge_slave_1: left allmulticast mode
[  296.522000][T10439] loop3: detected capacity change from 0 to 1024
[  296.528482][T10444] bridge_slave_1: left promiscuous mode
[  296.536138][T10439] EXT4-fs: Ignoring removed bh option
[  296.541718][T10439] EXT4-fs: inline encryption not supported
[  296.548181][T10444] bridge0: port 2(bridge_slave_1) entered disabled state
[  296.561303][T10439] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  296.574866][T10444] bond0: (slave bond_slave_0): Releasing backup interface
[  296.590264][T10444] bond0: (slave bond_slave_1): Releasing backup interface
[  296.601416][T10439] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  296.612684][T10444] batman_adv: batadv0: Removing interface: batadv_slave_0
[  296.628183][T10439] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.1730: lblock 2 mapped to illegal pblock 2 (length 1)
[  296.644895][T10444] batman_adv: batadv0: Removing interface: batadv_slave_1
[  296.654048][T10439] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.1730: lblock 0 mapped to illegal pblock 48 (length 1)
[  296.680843][T10439] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1730: Failed to acquire dquot type 0
[  296.694818][T10439] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem
[  296.722019][T10439] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.1730: mark_inode_dirty error
[  296.758372][T10439] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  296.770689][T10439] EXT4-fs (loop3): 1 orphan inode deleted
[  296.787125][T10439] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.803719][ T6908] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:34: lblock 1 mapped to illegal pblock 1 (length 1)
[  296.825287][ T6908] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:34: Failed to release dquot type 0
[  296.840941][T10439] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  296.885314][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.018969][T10458] loop2: detected capacity change from 0 to 2048
[  297.039974][T10459] program syz.3.1735 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  297.053952][T10458] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  297.141092][T10466] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.1737: bg 0: block 345: padding at end of block bitmap is not set
[  297.161189][T10466] EXT4-fs (loop2): Remounting filesystem read-only
[  297.209802][T10468] loop3: detected capacity change from 0 to 512
[  297.217531][T10468] EXT4-fs: Ignoring removed i_version option
[  297.223779][T10468] EXT4-fs: Ignoring removed bh option
[  297.246615][ T5794] Bluetooth: hci4: command 0x1003 tx timeout
[  297.263218][ T5787] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  297.301347][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.360899][T10468] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  297.397535][T10473] netlink: 'syz.0.1741': attribute type 30 has an invalid length.
[  297.444288][T10475] loop2: detected capacity change from 0 to 512
[  297.448445][T10473] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  297.459476][T10473] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  297.467850][T10473] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  297.476128][T10473] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  297.487828][T10475] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  297.498024][T10473] netdevsim netdevsim0 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  297.507408][T10473] netdevsim netdevsim0 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  297.516276][T10473] netdevsim netdevsim0 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  297.525008][T10473] netdevsim netdevsim0 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  297.542228][T10475] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  297.587187][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  298.329763][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  298.465700][T10493] loop2: detected capacity change from 0 to 512
[  298.473811][T10493] EXT4-fs: Ignoring removed i_version option
[  298.480081][T10493] EXT4-fs: Ignoring removed bh option
[  298.539860][T10493] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  298.581376][T10497] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1747'.
[  298.813519][T10510] loop3: detected capacity change from 0 to 512
[  298.820913][T10510] EXT4-fs: Ignoring removed i_version option
[  298.830192][T10510] EXT4-fs: Ignoring removed bh option
[  298.888193][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  298.918673][T10510] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  299.051041][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.119404][   T28] kauditd_printk_skb: 572 callbacks suppressed
[  299.119422][   T28] audit: type=1326 audit(299.067:6654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.174918][T10524] loop3: detected capacity change from 0 to 512
[  299.188173][   T28] audit: type=1326 audit(299.097:6655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.211026][T10524] EXT4-fs: Ignoring removed nobh option
[  299.228977][   T28] audit: type=1326 audit(299.107:6656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.258221][T10524] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1758: iget: bad i_size value: 38620345925642
[  299.283148][   T28] audit: type=1326 audit(299.107:6657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.308090][   T28] audit: type=1326 audit(299.107:6658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.331513][T10524] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1758: couldn't read orphan inode 15 (err -117)
[  299.344901][   T28] audit: type=1326 audit(299.107:6659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.369304][T10524] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  299.388870][   T28] audit: type=1326 audit(299.107:6660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.426461][   T28] audit: type=1326 audit(299.107:6661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.451675][   T28] audit: type=1326 audit(299.107:6662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.481233][   T28] audit: type=1326 audit(299.107:6663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10520 comm="syz.0.1757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  299.510501][T10532] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1761'.
[  299.517536][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.742773][T10544] loop5: detected capacity change from 0 to 512
[  299.751611][T10544] EXT4-fs: Ignoring removed i_version option
[  299.761058][T10544] EXT4-fs: Ignoring removed bh option
[  299.803988][T10544] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  299.998557][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.078861][T10553] loop3: detected capacity change from 0 to 1024
[  300.102045][T10553] EXT4-fs: inline encryption not supported
[  300.110081][T10553] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  300.143405][T10553] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  300.245076][T10553] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.1771: Allocating blocks 497-513 which overlap fs metadata
[  300.288557][T10553] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 117
[  300.304329][T10553] EXT4-fs (loop3): This should not happen!! Data will be lost
[  300.304329][T10553] 
[  300.399561][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.503615][T10572] loop5: detected capacity change from 0 to 512
[  300.515837][T10572] EXT4-fs: Ignoring removed i_version option
[  300.545942][T10572] EXT4-fs: Ignoring removed bh option
[  300.591970][T10572] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  300.717372][T10586] netlink: 'syz.0.1782': attribute type 2 has an invalid length.
[  300.800625][ T8492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.972601][T10601] netlink: 'syz.3.1790': attribute type 8 has an invalid length.
[  301.016927][T10601] bridge1: entered promiscuous mode
[  301.113307][T10606] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1791'.
[  301.193011][T10610] loop3: detected capacity change from 0 to 128
[  301.304349][T10615] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1796'.
[  301.440017][T10622] syz.5.1799[10622] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  301.440179][T10622] syz.5.1799[10622] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  301.924726][ T6905] Bluetooth: hci4: Frame reassembly failed (-84)
[  301.949642][T10645] loop2: detected capacity change from 0 to 128
[  301.958832][T10645] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  301.981575][T10645] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  302.017923][T10645] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  302.027193][T10645] FAT-fs (loop2): Filesystem has been set read-only
[  303.154991][T10662] lo speed is unknown, defaulting to 1000
[  303.161315][T10662] lo speed is unknown, defaulting to 1000
[  303.172122][T10662] lo speed is unknown, defaulting to 1000
[  303.189712][T10662] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  303.216471][T10662] lo speed is unknown, defaulting to 1000
[  303.225110][T10662] lo speed is unknown, defaulting to 1000
[  303.232527][T10662] lo speed is unknown, defaulting to 1000
[  303.240749][T10662] lo speed is unknown, defaulting to 1000
[  303.248143][T10662] lo speed is unknown, defaulting to 1000
[  303.746441][T10684] syzkaller0: entered promiscuous mode
[  303.752850][T10684] syzkaller0: entered allmulticast mode
[  303.965839][ T5794] Bluetooth: hci4: command 0x1003 tx timeout
[  303.974298][ T5787] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  304.023890][T10695] loop3: detected capacity change from 0 to 512
[  304.050623][T10695] EXT4-fs: Ignoring removed i_version option
[  304.062606][T10695] EXT4-fs: Ignoring removed bh option
[  304.562444][T10714] loop3: detected capacity change from 0 to 512
[  304.609273][T10714] EXT4-fs (loop3): can't read group descriptor 0
[  304.877428][   T28] kauditd_printk_skb: 87 callbacks suppressed
[  304.877471][   T28] audit: type=1326 audit(304.827:6751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10713 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  304.947074][   T28] audit: type=1326 audit(304.867:6752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10713 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  304.992306][   T28] audit: type=1326 audit(304.877:6753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10713 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  305.026566][   T28] audit: type=1326 audit(304.877:6754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10713 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  305.059481][   T28] audit: type=1326 audit(304.877:6755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10713 comm="syz.3.1831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc73e38f749 code=0x7ffc0000
[  307.237258][   T28] audit: type=1326 audit(307.177:6756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.0.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  307.327422][   T28] audit: type=1326 audit(307.177:6757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.0.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  307.385149][T10758] loop2: detected capacity change from 0 to 7
[  307.399583][   T28] audit: type=1326 audit(307.207:6758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.0.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  307.422543][T10758] Dev loop2: unable to read RDB block 7
[  307.429426][T10761] loop3: detected capacity change from 0 to 512
[  307.430709][   T28] audit: type=1326 audit(307.207:6759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.0.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  307.445758][T10758]  loop2: AHDI p1 p2 p3
[  307.464828][T10761] EXT4-fs: Ignoring removed i_version option
[  307.480498][T10761] EXT4-fs: Ignoring removed bh option
[  307.486461][T10758] loop2: partition table partially beyond EOD, truncated
[  307.493708][T10758] loop2: p1 start 1818582900 is beyond EOD, truncated
[  307.504884][   T28] audit: type=1326 audit(307.207:6760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.0.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  307.530248][T10758] loop2: p3 start 335544320 is beyond EOD, truncated
[  307.794872][T10773] netem: incorrect gi model size
[  307.854089][T10776] netlink: 164 bytes leftover after parsing attributes in process `syz.0.1852'.
[  308.071350][T10786] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1853'.
[  308.080781][T10786] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1853'.
[  308.175310][T10788] loop3: detected capacity change from 0 to 512
[  308.450021][T10782] lo speed is unknown, defaulting to 1000
[  308.450414][T10798] loop2: detected capacity change from 0 to 512
[  308.468458][T10798] EXT4-fs: Ignoring removed i_version option
[  308.475332][T10798] EXT4-fs: Ignoring removed bh option
[  308.904487][T10815] v: renamed from ip6_vti0 (while UP)
[  309.223690][T10827] loop3: detected capacity change from 0 to 512
[  309.258046][T10827] EXT4-fs: Ignoring removed bh option
[  310.087835][   T28] kauditd_printk_skb: 53 callbacks suppressed
[  310.087852][   T28] audit: type=1326 audit(310.027:6814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.0.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  310.140346][T10836] lo speed is unknown, defaulting to 1000
[  310.201201][   T28] audit: type=1326 audit(310.027:6815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.0.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  310.234901][T10840] loop5: detected capacity change from 0 to 512
[  310.253126][   T28] audit: type=1326 audit(310.087:6816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.0.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  310.294142][   T28] audit: type=1326 audit(310.087:6817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.0.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  310.321094][T10840] ------------[ cut here ]------------
[  310.327676][T10840] EA inode 11 i_nlink=2
[  310.329053][T10840] WARNING: CPU: 1 PID: 10840 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550
[  310.337118][   T28] audit: type=1326 audit(310.087:6818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.0.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  310.343563][T10840] Modules linked in:
[  310.369634][T10840] CPU: 1 PID: 10840 Comm: syz.5.1877 Not tainted syzkaller #0
[  310.377268][T10840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  310.387754][T10840] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[  310.394423][T10840] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 e0 c6 be 8a 89 da e8 a5 39 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 4f 59 2c 08
[  310.414899][T10840] RSP: 0018:ffffc90014aaf2e0 EFLAGS: 00010246
[  310.421416][T10840] RAX: 9960ce956eaf4e00 RBX: 0000000000000002 RCX: 0000000000080000
[  310.429551][T10840] RDX: ffffc9000c549000 RSI: 00000000000136b6 RDI: 00000000000136b7
[  310.431305][   T28] audit: type=1326 audit(310.087:6819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.0.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  310.437672][T10840] RBP: ffffc90014aaf3d0 R08: ffffc90014aaeee7 R09: 1ffff92002955ddc
[  310.437695][T10840] R10: dffffc0000000000 R11: fffff52002955ddd R12: dffffc0000000000
[  310.437713][T10840] R13: ffff88805e448ea8 R14: ffff88805e448cb0 R15: ffff88805e448d00
[  310.437731][T10840] FS:  00007fc596ac26c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  310.437752][T10840] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  310.437769][T10840] CR2: 00007fc595b72a60 CR3: 0000000060144000 CR4: 00000000003506e0
[  310.437788][T10840] Call Trace:
[  310.437798][T10840]  <TASK>
[  310.437817][T10840]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  310.464389][   T28] audit: type=1326 audit(310.087:6820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.0.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  310.467897][T10840]  ? __ext4_journal_ensure_credits+0x30/0x450
[  310.478737][   T28] audit: type=1326 audit(310.087:6821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10835 comm="syz.0.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8583f8f749 code=0x7ffc0000
[  310.483917][T10840]  ext4_xattr_inode_dec_ref_all+0xa2b/0xf90
[  310.483975][T10840]  ? ext4_xattr_delete_inode+0xc00/0xc00
[  310.582235][T10840]  ? __ext4_journal_ensure_credits+0x450/0x450
[  310.588453][T10840]  ext4_xattr_delete_inode+0xa45/0xc00
[  310.593947][T10840]  ? ext4_reserve_inode_write+0x248/0x2a0
[  310.599746][T10840]  ? ext4_expand_extra_isize_ea+0x19e0/0x19e0
[  310.605990][T10840]  ext4_evict_inode+0xaa3/0xea0
[  310.611550][T10840]  ? _raw_spin_unlock+0x28/0x40
[  310.616642][T10840]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  310.622606][T10840]  ? do_raw_spin_unlock+0x121/0x230
[  310.628142][T10840]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  310.634163][T10840]  evict+0x486/0x870
[  310.638182][T10840]  ? __lock_acquire+0x7c80/0x7c80
[  310.643265][T10840]  ? proc_nr_inodes+0x230/0x230
[  310.648188][T10840]  ? do_raw_spin_unlock+0x121/0x230
[  310.653458][T10840]  ? _raw_spin_unlock+0x28/0x40
[  310.658482][T10840]  ? iput+0x70a/0x920
[  310.662533][T10840]  ext4_orphan_cleanup+0xbd4/0x1400
[  310.667946][T10840]  ? ext4_orphan_del+0xba0/0xba0
[  310.673046][T10840]  ? ext4_register_li_request+0x183/0x940
[  310.678892][T10840]  ? errseq_check_and_advance+0x66/0x120
[  310.684620][T10840]  ext4_fill_super+0x5de4/0x66c0
[  310.689781][T10840]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  310.696139][T10840]  ? __might_sleep+0xe0/0xe0
[  310.700788][T10840]  ? read_lock_is_recursive+0x20/0x20
[  310.706272][T10840]  ? snprintf+0xdb/0x120
[  310.711242][T10840]  ? vscnprintf+0x80/0x80
[  310.715800][T10840]  ? down_write+0x162/0x1f0
[  310.720356][T10840]  ? down_read_killable+0x340/0x340
[  310.725674][T10840]  ? setup_bdev_super+0x56b/0x660
[  310.731003][T10840]  get_tree_bdev+0x3e4/0x510
[  310.735740][T10840]  ? vfs_parse_fs_string+0x160/0x160
[  310.741082][T10840]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  310.747423][T10840]  ? setup_bdev_super+0x660/0x660
[  310.752491][T10840]  ? apparmor_capable+0x137/0x1a0
[  310.757606][T10840]  ? bpf_lsm_capable+0x9/0x10
[  310.762338][T10840]  ? security_capable+0x89/0xb0
[  310.767823][T10840]  vfs_get_tree+0x8c/0x280
[  310.772350][T10840]  do_new_mount+0x24b/0xa40
[  310.777713][T10840]  __se_sys_mount+0x2da/0x3c0
[  310.782454][T10840]  ? __x64_sys_mount+0xc0/0xc0
[  310.787328][T10840]  ? lockdep_hardirqs_on+0x98/0x150
[  310.792575][T10840]  ? __x64_sys_mount+0x20/0xc0
[  310.797422][T10840]  do_syscall_64+0x55/0xb0
[  310.801910][T10840]  ? clear_bhb_loop+0x40/0x90
[  310.806754][T10840]  ? clear_bhb_loop+0x40/0x90
[  310.811662][T10840]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  310.818337][T10840] RIP: 0033:0x7fc595b90eea
[  310.822806][T10840] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.843029][T10840] RSP: 002b:00007fc596ac1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  310.851716][T10840] RAX: ffffffffffffffda RBX: 00007fc596ac1ef0 RCX: 00007fc595b90eea
[  310.859802][T10840] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fc596ac1eb0
[  310.867861][T10840] RBP: 0000200000000180 R08: 00007fc596ac1ef0 R09: 0000000000800700
[  310.875910][T10840] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  310.883924][T10840] R13: 00007fc596ac1eb0 R14: 000000000000046c R15: 0000200000000740
[  310.891994][T10840]  </TASK>
[  310.895051][T10840] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  310.902359][T10840] CPU: 1 PID: 10840 Comm: syz.5.1877 Not tainted syzkaller #0
[  310.909832][T10840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  310.919930][T10840] Call Trace:
[  310.923230][T10840]  <TASK>
[  310.926179][T10840]  dump_stack_lvl+0x16c/0x230
[  310.930891][T10840]  ? show_regs_print_info+0x20/0x20
[  310.936116][T10840]  ? load_image+0x3b0/0x3b0
[  310.940650][T10840]  panic+0x2c0/0x710
[  310.944573][T10840]  ? bpf_jit_dump+0xd0/0xd0
[  310.949107][T10840]  __warn+0x2e0/0x470
[  310.953105][T10840]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  310.959112][T10840]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  310.965116][T10840]  report_bug+0x2be/0x4f0
[  310.969470][T10840]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  310.975470][T10840]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  310.981474][T10840]  ? ext4_xattr_inode_update_ref+0x4fd/0x550
[  310.987482][T10840]  handle_bug+0xcf/0x120
[  310.991768][T10840]  exc_invalid_op+0x1a/0x50
[  310.996295][T10840]  asm_exc_invalid_op+0x1a/0x20
[  311.001161][T10840] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[  311.007770][T10840] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 e0 c6 be 8a 89 da e8 a5 39 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 4f 59 2c 08
[  311.027396][T10840] RSP: 0018:ffffc90014aaf2e0 EFLAGS: 00010246
[  311.033483][T10840] RAX: 9960ce956eaf4e00 RBX: 0000000000000002 RCX: 0000000000080000
[  311.041472][T10840] RDX: ffffc9000c549000 RSI: 00000000000136b6 RDI: 00000000000136b7
[  311.049456][T10840] RBP: ffffc90014aaf3d0 R08: ffffc90014aaeee7 R09: 1ffff92002955ddc
[  311.057442][T10840] R10: dffffc0000000000 R11: fffff52002955ddd R12: dffffc0000000000
[  311.065439][T10840] R13: ffff88805e448ea8 R14: ffff88805e448cb0 R15: ffff88805e448d00
[  311.073459][T10840]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  311.079473][T10840]  ? __ext4_journal_ensure_credits+0x30/0x450
[  311.085563][T10840]  ext4_xattr_inode_dec_ref_all+0xa2b/0xf90
[  311.091500][T10840]  ? ext4_xattr_delete_inode+0xc00/0xc00
[  311.097153][T10840]  ? __ext4_journal_ensure_credits+0x450/0x450
[  311.103330][T10840]  ext4_xattr_delete_inode+0xa45/0xc00
[  311.108826][T10840]  ? ext4_reserve_inode_write+0x248/0x2a0
[  311.114564][T10840]  ? ext4_expand_extra_isize_ea+0x19e0/0x19e0
[  311.120669][T10840]  ext4_evict_inode+0xaa3/0xea0
[  311.125536][T10840]  ? _raw_spin_unlock+0x28/0x40
[  311.130421][T10840]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  311.136336][T10840]  ? do_raw_spin_unlock+0x121/0x230
[  311.141565][T10840]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  311.147481][T10840]  evict+0x486/0x870
[  311.151396][T10840]  ? __lock_acquire+0x7c80/0x7c80
[  311.156449][T10840]  ? proc_nr_inodes+0x230/0x230
[  311.161314][T10840]  ? do_raw_spin_unlock+0x121/0x230
[  311.166536][T10840]  ? _raw_spin_unlock+0x28/0x40
[  311.171402][T10840]  ? iput+0x70a/0x920
[  311.175405][T10840]  ext4_orphan_cleanup+0xbd4/0x1400
[  311.180643][T10840]  ? ext4_orphan_del+0xba0/0xba0
[  311.185616][T10840]  ? ext4_register_li_request+0x183/0x940
[  311.191354][T10840]  ? errseq_check_and_advance+0x66/0x120
[  311.197009][T10840]  ext4_fill_super+0x5de4/0x66c0
[  311.201996][T10840]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  311.208255][T10840]  ? __might_sleep+0xe0/0xe0
[  311.212952][T10840]  ? read_lock_is_recursive+0x20/0x20
[  311.218339][T10840]  ? snprintf+0xdb/0x120
[  311.222625][T10840]  ? vscnprintf+0x80/0x80
[  311.226979][T10840]  ? down_write+0x162/0x1f0
[  311.231600][T10840]  ? down_read_killable+0x340/0x340
[  311.236904][T10840]  ? setup_bdev_super+0x56b/0x660
[  311.241956][T10840]  get_tree_bdev+0x3e4/0x510
[  311.246584][T10840]  ? vfs_parse_fs_string+0x160/0x160
[  311.251890][T10840]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  311.258150][T10840]  ? setup_bdev_super+0x660/0x660
[  311.263204][T10840]  ? apparmor_capable+0x137/0x1a0
[  311.268244][T10840]  ? bpf_lsm_capable+0x9/0x10
[  311.273025][T10840]  ? security_capable+0x89/0xb0
[  311.277908][T10840]  vfs_get_tree+0x8c/0x280
[  311.282341][T10840]  do_new_mount+0x24b/0xa40
[  311.286865][T10840]  __se_sys_mount+0x2da/0x3c0
[  311.291561][T10840]  ? __x64_sys_mount+0xc0/0xc0
[  311.296341][T10840]  ? lockdep_hardirqs_on+0x98/0x150
[  311.301560][T10840]  ? __x64_sys_mount+0x20/0xc0
[  311.306344][T10840]  do_syscall_64+0x55/0xb0
[  311.310871][T10840]  ? clear_bhb_loop+0x40/0x90
[  311.315660][T10840]  ? clear_bhb_loop+0x40/0x90
[  311.320356][T10840]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  311.326273][T10840] RIP: 0033:0x7fc595b90eea
[  311.330703][T10840] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.350327][T10840] RSP: 002b:00007fc596ac1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  311.358759][T10840] RAX: ffffffffffffffda RBX: 00007fc596ac1ef0 RCX: 00007fc595b90eea
[  311.366746][T10840] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fc596ac1eb0
[  311.374765][T10840] RBP: 0000200000000180 R08: 00007fc596ac1ef0 R09: 0000000000800700
[  311.382750][T10840] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  311.390739][T10840] R13: 00007fc596ac1eb0 R14: 000000000000046c R15: 0000200000000740
[  311.398828][T10840]  </TASK>
[  311.401997][T10840] Kernel Offset: disabled
[  311.406480][T10840] Rebooting in 86400 seconds..