last executing test programs:

2m35.262284462s ago: executing program 0 (id=632):
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x11}, 0x400c844)
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x216e00)
dup(r0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000cc0)=@newtaction={0x9c, 0x30, 0x9, 0xfffffffc, 0x0, {}, [{0x88, 0x1, [@m_bpf={0x84, 0x1, 0x0, 0x0, {{0x8}, {0x5c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_OPS={0x44, 0x4, [{0xfffe, 0x3, 0xa, 0x1}, {0x8001, 0xc0, 0x0, 0x705b}, {0x7, 0x7, 0xe, 0x3}, {0x9, 0x3, 0x42, 0x2}, {0x7ff, 0x6, 0xe, 0x4}, {0x2, 0x8, 0x9}, {0x8000, 0x1, 0x5, 0x6}, {0xff12, 0x2, 0x2, 0x2}]}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1}}}}]}]}, 0x9c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=ANY=[@ANYBLOB="5400000010000d0400"/20, @ANYRES32=r5, @ANYBLOB="202000000000000034001280110001006272696467655f736c6176827ab79fb19c6f4d6f95376d9056e6de21d02d65000000001c00058005000c00000000040500190002a532284c365bc7655056c6d02919022ae95d96dd3f40dd268e59fd40e7ea706a97c6d6018f0590293c0bcb00c9174ea7b39a47606bfbdc91df2053c4c9b93d58acd694345507c59f4f9d939b6d1a51c780b7ffb91760"], 0x54}, 0x1, 0x0, 0x0, 0x4081}, 0x0)
listen(0xffffffffffffffff, 0x7)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000940)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000005c0)=ANY=[@ANYRES32=r7, @ANYRES32=r6, @ANYBLOB='\a\x00'/12, @ANYRES32, @ANYBLOB="3242c2a6cc5d5f2da8ee6511e558f7cc9e3b658d59907673c26e571e467d4a3deafc2933be7b6a0af69a730bfe588ab4c69059ea1cf5ed7d1411ae39fb5ae4ada4f01b2dfe367f7cfa4512ab2dc93caa5809b306674fcc689bf37f646e53daf399bb72363f4474f31c370520d2d3dfd6e54efa", @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r7, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r2}, 0x20)
sendmmsg$inet(r2, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff2b}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000300)}, {&(0x7f0000000280)="ee", 0x1}], 0x1}}], 0x2, 0x40000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r8, 0xc0481273, &(0x7f0000000540)={'\x00', 0x7ff, 0xdf, 0xc, 0xf, 0x59c, 0xffffffffffffffff})

2m34.997408653s ago: executing program 0 (id=633):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a78000000060a010400000000000000000200000038000480340001800a0001006d617463680000002400028008000100756470000e0003007acc631ba90000b03bd9000008000240000000000900010073797a30000000000900020073797a320000000014000580080001"], 0xa0}}, 0x0)

2m34.634377274s ago: executing program 0 (id=635):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000340)=ANY=[@ANYRESDEC, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000003b810100850000006d000000850000005000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
connect$pppoe(r0, &(0x7f0000000200)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, 'veth1_to_batadv\x00'}}, 0x1e)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x33, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
mq_timedreceive(0xffffffffffffffff, &(0x7f0000000180)=""/204, 0xcc, 0x0, 0x0)

2m34.302133236s ago: executing program 0 (id=637):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000fdffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
ioctl$USBDEVFS_REAPURB(r0, 0x4008550c, &(0x7f0000002680))
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002302230102090500000010000020d3"])
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c0012800900010062"], 0x44}}, 0x0)

2m33.284913781s ago: executing program 0 (id=641):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc0189374, 0x0)
ustat(0x801, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, 0x0, 0x441, 0x108)
io_uring_enter(r3, 0x451d, 0x40b8, 0x2, 0x0, 0x0)
poll(&(0x7f0000b2c000)=[{}], 0x2c, 0xffffffffffbffff8)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

2m32.517395325s ago: executing program 0 (id=652):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000005a00), 0x1, 0x42f, &(0x7f0000000940)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x34, &(0x7f0000000040)=r6, 0x4)
dup2(0xffffffffffffffff, r6)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fstatfs(r2, &(0x7f0000000180)=""/11)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getpgrp(0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000140), 0xfcb8)
r8 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001f80))
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newtclass={0x64, 0x28, 0x1, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xf, 0xe}, {0x4, 0x2}, {0xd, 0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x40}}, @tclass_kind_options=@c_red={0x8}, @tclass_kind_options=@c_mqprio={0xb}, @TCA_RATE={0x6, 0x5, {0x0, 0x31}}, @TCA_RATE={0x6, 0x5, {0x6, 0x81}}, @TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @tclass_kind_options=@c_cake={0x9}]}, 0x64}}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x8003, 0x100000001, 0x0, 0x6})

2m29.529944539s ago: executing program 2 (id=671):
r0 = open_tree(0xffffffffffffff9c, 0x0, 0x89901)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
fchdir(r0)
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

2m27.554803278s ago: executing program 2 (id=674):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x89f1, &(0x7f0000000040)={'ip6tnl0\x00', @random='\a\x00\x00 \x00'})

2m27.072708791s ago: executing program 2 (id=676):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'pimreg0\x00', 0x1})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000340)={'wg1\x00', 0x400})

2m26.617576723s ago: executing program 2 (id=679):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000400)=0x1, r1, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r1, 0x3}}, 0x10)

2m26.376440824s ago: executing program 2 (id=681):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)

2m26.069333826s ago: executing program 2 (id=682):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000005a00), 0x1, 0x42f, &(0x7f0000000940)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x34, &(0x7f0000000040)=r5, 0x4)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000140), 0xfcb8)
r7 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001f80)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newtclass={0x64, 0x28, 0x1, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r9, {0xf, 0xe}, {0x4, 0x2}, {0xd, 0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x40}}, @tclass_kind_options=@c_red={0x8}, @tclass_kind_options=@c_mqprio={0xb}, @TCA_RATE={0x6, 0x5, {0x0, 0x31}}, @TCA_RATE={0x6, 0x5, {0x6, 0x81}}, @TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @tclass_kind_options=@c_cake={0x9}]}, 0x64}}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x8003, 0x100000001, 0x0, 0x6})

2m25.063923361s ago: executing program 1 (id=686):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
setrlimit(0x9, &(0x7f0000000000))
io_setup(0x2004, &(0x7f0000000680))

2m24.593648683s ago: executing program 1 (id=689):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000040)={0xe, 0x18, 0xfa00, @id_afonly={0x0, r1, 0x1000000}}, 0x20)

2m24.258360944s ago: executing program 1 (id=691):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000400)=0x1, r1, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r1, 0x3}}, 0x10)

2m23.896069986s ago: executing program 1 (id=694):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000017b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000bc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0xd2, &(0x7f0000000400)={0x0, 0x2, 0x0, 0xfffffffc, 0x30}, &(0x7f0000000000)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4004, @fd_index=0x5, 0x0, 0x0})
io_uring_enter(r2, 0x47ba, 0x0, 0x0, 0x0, 0x0)

2m23.475848098s ago: executing program 1 (id=696):
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$pptp(0x18, 0x1, 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
write$UHID_INPUT2(0xffffffffffffffff, 0x0, 0x6)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file1\x00', 0x1000801, &(0x7f0000000840)=ANY=[], 0x2, 0x1ea, &(0x7f00000003c0)="$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")
io_uring_setup(0x96b, &(0x7f00000003c0)={0x0, 0xf0f1, 0x8, 0x2})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fadvise64(r5, 0xe0ffff, 0x4101, 0x3)

2m20.618632232s ago: executing program 1 (id=699):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)
setsockopt$inet_tcp_int(r0, 0x6, 0x25, &(0x7f0000000240)=0x8, 0x4)

2m17.112828099s ago: executing program 32 (id=652):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000005a00), 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x34, &(0x7f0000000040)=r6, 0x4)
dup2(0xffffffffffffffff, r6)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fstatfs(r2, &(0x7f0000000180)=""/11)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getpgrp(0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000140), 0xfcb8)
r8 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001f80))
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newtclass={0x64, 0x28, 0x1, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xf, 0xe}, {0x4, 0x2}, {0xd, 0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x40}}, @tclass_kind_options=@c_red={0x8}, @tclass_kind_options=@c_mqprio={0xb}, @TCA_RATE={0x6, 0x5, {0x0, 0x31}}, @TCA_RATE={0x6, 0x5, {0x6, 0x81}}, @TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @tclass_kind_options=@c_cake={0x9}]}, 0x64}}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x8003, 0x100000001, 0x0, 0x6})

2m10.536897491s ago: executing program 33 (id=682):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000005a00), 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x34, &(0x7f0000000040)=r5, 0x4)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000140), 0xfcb8)
r7 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001f80)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newtclass={0x64, 0x28, 0x1, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r9, {0xf, 0xe}, {0x4, 0x2}, {0xd, 0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x40}}, @tclass_kind_options=@c_red={0x8}, @tclass_kind_options=@c_mqprio={0xb}, @TCA_RATE={0x6, 0x5, {0x0, 0x31}}, @TCA_RATE={0x6, 0x5, {0x6, 0x81}}, @TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @tclass_kind_options=@c_cake={0x9}]}, 0x64}}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x8003, 0x100000001, 0x0, 0x6})

2m5.371752026s ago: executing program 34 (id=699):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)
setsockopt$inet_tcp_int(r0, 0x6, 0x25, &(0x7f0000000240)=0x8, 0x4)

1m36.000675007s ago: executing program 3 (id=760):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
inotify_init1(0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$l2tp6(0xa, 0x2, 0x73)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000100))
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x4c}}, 0x0)

1m24.728770042s ago: executing program 3 (id=762):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)=@newsa={0x180, 0x10, 0x633, 0x0, 0x0, {{@in=@remote, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x4}, {@in=@multicast2, 0x0, 0x32}, @in6=@empty, {0x0, 0x0, 0x0, 0x7ff}, {}, {}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_auth={0x48, 0x1, {{'md5\x00'}}}]}, 0x180}}, 0x0)

1m19.017442729s ago: executing program 3 (id=765):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000500), 0x4)

1m18.597610991s ago: executing program 3 (id=766):
r0 = mq_open(0x0, 0x40, 0x0, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x8000000000000c, 0x0, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, 0x0, 0x0)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, 0x0, &(0x7f0000000080))
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x24, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001000010000003a194618d96d6d2e8553", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)

1m17.527991636s ago: executing program 3 (id=768):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21081e, &(0x7f0000000080)={[{@grpquota}, {@nouid32}, {@sysvgroups}]}, 0x1, 0x504, &(0x7f0000001480)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000940), &(0x7f0000000f00)='.\x00', 0x2ca43c, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

1m16.56287104s ago: executing program 3 (id=769):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x2c, r1, 0x10ada85e65c25359, 0x0, 0x8000000, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x72}}}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x2c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
ioctl$TUNSETOFFLOAD(r4, 0x400454c9, 0xf)
unshare(0x64000600)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
ioctl$TUNSETLINK(r4, 0x400454cd, 0x2)
r5 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
syz_open_pts(r5, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000180)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$eJzs3V9rW+UfAPDvSZP9636/djCGeiGDXTgZS9fWPxOEzUvR4UDvZ2izMpouo0nHWgduF+7GGxmCiAPxBXjv5fAN+CoGOhgyil6IUDnpSZe1Sf8tNbH5fOBsz5Nzkud58pzvyfOck/QEMLBOpv/kIl6OiK+SiJGWdfnIVp5c3W756e2pdEliZeXj35O4sO61kuz/4SzzUkT8/EXEmdzGcmuLS7OlSqU8n+XH6nM3xmqLS2evzZVmyjPl6xOTk+ffnJx45+23utbW1y//+e1HD98//+Wp5W9+fHzsfhIX42i2Lm1XF4q405o5Wfo7SxXi4roNx7tQWD9Jel0BdmUoi/NCpMeAkRjKoh7Y/z6PiBVgQCXiHwZUcxzQnNt3aR78n/HkvdUJ0Mb251fPjcShxtzoyHLy3Mwone+OdqH8tIyffntwP11i8/MQh7fIA+zInbsRcS6f33j8S7Lj3+6da5w83tz6Mgbt8wd66WE6/knuRGyI/9za+CfajH+G28Tubmwd/7nHXSimo3T8927b8e/aoWt0KMv9rzHmKyRXr1XK5yLi/xFxOgoH0/xm13POLz9a6bSudfyXLmn5zbFgVo/H+YPPP2e6VC+9SJtbPbkb8Urb8W+y1v9Jm/5P34/L2yzjRPnBq53Wbd3+vbXyQ8Rrbfv/2RWtZPPrk2ON/WGsuVds9Me9E790Kr/X7U/7/8jm7R9NWq/X1nZexveH/ip3Wrfb/f9A8kkjfSB77FapXp8fjziQfJgfXv/4xLPnNvPN7dP2nz7VPv432//Tyden22z/veP3Om7aD/0/vaP+33ni0Qeffdep/O31/xuN1Onske0c/7ZbwRd57wAAAAAAAKDf5CLiaCS54lo6lysWV7/fcTyO5CrVWv3M1erC9elo/FZ2NAq55pXukZbvQ4xn34dt5ifW5Scj4lhEfD10uJEvTlUr071uPAAAAAAAAAAAAAAAAAAAAPSJ4Q6//0/9OtTr2gF7rnFjg4O9rgXQC1ve8r8bd3oC+tKW8Q/sWzuPf2cGYL/w+Q+DS/zD4BL/MLi2G/+FkT2uCPCv8/kPg0v8AwAAAAAAAAAAAAAAAAAAAAAAAAAAQFddvnQpXVaWn96eSvPTNxcXZqs3z06Xa7PFuYWp4lR1/kZxplqdqZSLU9W5rV6vUq3eGJ+IhVtj9XKtPlZbXLoyV124Xr9yba40U75SLvhjwwAAAAAAAAAAAAAAAAAAALBBbXFptlSplOclOiYuRF9UYy8buGpXT8/3Syskupro8YEJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFr8EwAA//8DDjNQ")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@cipso={0x86, 0x2a, 0x0, [{0x0, 0xd, "5e000000ff000000000000"}, {0x0, 0x5, "4eb8a6"}, {0x0, 0x12, "9606053d0006ff00800000b61af93a93"}]}, @lsrr={0x83, 0xf, 0x0, [@dev, @empty, @multicast2]}, @timestamp={0x44, 0x4}]}}, "a815a23d"}}}}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x10)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
truncate(&(0x7f0000000080)='./file1\x00', 0xc00)

1m0.986469596s ago: executing program 35 (id=769):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x2c, r1, 0x10ada85e65c25359, 0x0, 0x8000000, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x72}}}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x2c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
ioctl$TUNSETOFFLOAD(r4, 0x400454c9, 0xf)
unshare(0x64000600)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
ioctl$TUNSETLINK(r4, 0x400454cd, 0x2)
r5 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
syz_open_pts(r5, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000180)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@cipso={0x86, 0x2a, 0x0, [{0x0, 0xd, "5e000000ff000000000000"}, {0x0, 0x5, "4eb8a6"}, {0x0, 0x12, "9606053d0006ff00800000b61af93a93"}]}, @lsrr={0x83, 0xf, 0x0, [@dev, @empty, @multicast2]}, @timestamp={0x44, 0x4}]}}, "a815a23d"}}}}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x10)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
truncate(&(0x7f0000000080)='./file1\x00', 0xc00)

58.852705376s ago: executing program 4 (id=779):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_u}]}})

58.542524648s ago: executing program 4 (id=780):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xfb, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000580)={[{@jqfmt_vfsv1}, {@stripe={'stripe', 0x3d, 0x7dbb260b}}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodiscard}, {@nodelalloc}, {@acl}, {@dioread_lock}]}, 0x1, 0x572, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hvSuj6TKadKx14PbgXnyRIYg4EP8A330c/gP+FQMdDBlFH0So3PSmy9qkv5aZbPl84Lbn5N7bc78593t7Tm5CAhhYx7IfhYiXI+KbJOJQy7pi5CuPrW63/PD6VLYksbLy6Z9JJPljze2T/PeBvPJSRPz6VcTJwsZ2a4tLs+VKJZ3P62P1uStjtcWlU5fmyjPpTHp5YnLyzFuTE+++83bXYn39/N/ff3L3wzNfH1/+7uf7h28ncTYO5uta43gCN1orx8r/5qXhOLtuw/EuNNZPkl4fALsylOf5cGTXgEMxlGc98Pz7MiJWgAGVyH8YUM1xQHNu36V58DPjwQerE6BG7COt8RdXXxuJvY250f7l5LGZUTbfHe1C+1kbv/xx53a2xOavQ+zbog6wIzduRsTpYnHj9T/Jr3+7d7rx4vHm1rcxaP9/oJfuZuOfN9qN/wpr459oM/450CZ3d2Pr/C/c70IzHWXjv/fajn/XLl2jQ3nthcaYbzi5eKmSno6IFyPiRAzvyeqb3c85s3xvpdO61vFftmTtN8eC+XHcL+55fJ/pcr0cESNPEnfTg5sRrxTbxZ+s9X/Spv+z5+P8Nts4mt55tdO6reN/ulZ+initbf8/uqOVbH5/cqxxPow1z4qN/rp19LdO7fc6/qz/928e/2jSer+2tvM2ftz7T9pp3W7P/5Hks0a5mQTXyvX6/HjESPLxxscnHu3brDe3z+I/cXzz61+78z+bfH2+zfhvHbnVcdN+6P/pHfX/zgv3Pvrih07tb6//32yUTuSP5Ne/9vJzZbsH+KTPHwAAAAAAAPSTQkQcjKRQWisXCqXS6vs7jsT+QqVaq5+8WF24PB2Nz8qOxnCheaf7UMv7Icbz98M26xPr6pMRcTgivh3a16iXpqqV6V4HDwAAAAAAAAAAAAAAAAAAAH3iQIfP/2d+H+r10QFPXeOLDfb0+iiAXtjyK/+78U1PQF/aMv+B55b8h8El/2FwyX8YXPIfBpf8h8El/2FwyX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqvPnzmXLyvLD61NZffrq4sJs9eqp6bQ2W5pbmCpNVeevlGaq1ZlKWpqqzm319yrV6pXxiVi4NlZPa/Wx2uLShbnqwuX6hUtz5Zn0Qjr8v0QFAAAAAAAAAAAAAAAAAAAAz5ba4tJsuVJJ5xU6Ft6PvjiMpxngql3tXuyXKBQ6FG7m3buzvXp4UQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAdf4LAAD//++4Mnc=")
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='ext4_ext_remove_space_done\x00', r1}, 0x10)
truncate(&(0x7f0000000140)='./file2\x00', 0x0)

58.07333519s ago: executing program 4 (id=781):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x30, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x58}}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000800)={0x14, 0x13, 0xa, 0x201, 0x0, 0x0, {0x2}}, 0x14}}, 0x0)

2.05299494s ago: executing program 8 (id=778):
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_HEADER(r1, 0x0, 0x4004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r2, 0x0, 0x0)

2.05222942s ago: executing program 4 (id=788):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x800448d2, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r2, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)

61.655819ms ago: executing program 8 (id=782):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x68, r3, 0x1, 0x0, 0x0, {{}, {}, {0x4c, 0x18, {0x0, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)

61.526339ms ago: executing program 4 (id=783):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x80003, 0x0)
write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
dup2(r0, r1)

0s ago: executing program 4 (id=784):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x10, 0x3}]}}]}, 0x38}}, 0x0)

kernel console output (not intermixed with test programs):

loop0): mounted filesystem without journal. Quota mode: none.
[  102.347417][ T4258] EXT4-fs (loop0): unmounting filesystem.
[  102.379566][   T27] kauditd_printk_skb: 59 callbacks suppressed
[  102.379583][   T27] audit: type=1326 audit(1732357799.618:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  102.449422][   T27] audit: type=1326 audit(1732357799.628:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  102.505221][   T27] audit: type=1326 audit(1732357799.628:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  102.611961][   T27] audit: type=1326 audit(1732357799.628:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  102.661777][   T27] audit: type=1326 audit(1732357799.628:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  102.771427][   T27] audit: type=1326 audit(1732357799.628:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  102.881755][   T27] audit: type=1326 audit(1732357799.628:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  102.955233][   T27] audit: type=1326 audit(1732357799.628:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  102.980197][ T4845] mmap: syz.0.158 (4845) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  103.021701][   T27] audit: type=1326 audit(1732357799.628:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  103.110048][   T27] audit: type=1326 audit(1732357799.628:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  103.348797][ T4853] netlink: 12 bytes leftover after parsing attributes in process `syz.0.162'.
[  103.792649][ T4869] syz.2.170[4869] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.792755][ T4869] syz.2.170[4869] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.444604][ T4892] netlink: 8 bytes leftover after parsing attributes in process `syz.1.180'.
[  104.490174][ T4892] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  104.499961][ T4892] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  104.870144][ T4896] loop2: detected capacity change from 0 to 16
[  104.904394][ T4896] erofs: (device loop2): mounted with root inode @ nid 36.
[  104.949204][ T4896] syz.2.181: attempt to access beyond end of device
[  104.949204][ T4896] loop2: rw=524288, sector=16, nr_sectors = 16 limit=16
[  104.963283][ T4896] syz.2.181: attempt to access beyond end of device
[  104.963283][ T4896] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[  105.672308][ T4898] loop4: detected capacity change from 0 to 512
[  105.749263][ T4898] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  105.762007][ T4898] ext4 filesystem being mounted at /44/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  106.223560][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  106.409105][ T4922] block device autoloading is deprecated and will be removed.
[  106.410750][ T4249] block device autoloading is deprecated and will be removed.
[  106.844222][ T4933] loop1: detected capacity change from 0 to 16
[  106.961810][ T4933] erofs: (device loop1): mounted with root inode @ nid 36.
[  107.009300][ T4933] syz.1.193: attempt to access beyond end of device
[  107.009300][ T4933] loop1: rw=524288, sector=16, nr_sectors = 16 limit=16
[  107.023292][ T4933] syz.1.193: attempt to access beyond end of device
[  107.023292][ T4933] loop1: rw=524288, sector=8, nr_sectors = 16 limit=16
[  107.502200][   T27] kauditd_printk_skb: 59 callbacks suppressed
[  107.502217][   T27] audit: type=1326 audit(1732357804.748:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  107.555927][   T27] audit: type=1326 audit(1732357804.778:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  107.589031][   T27] audit: type=1326 audit(1732357804.788:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  107.699858][   T27] audit: type=1326 audit(1732357804.788:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  107.802131][   T27] audit: type=1326 audit(1732357804.788:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  107.896809][   T27] audit: type=1326 audit(1732357804.808:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  107.932789][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  108.037185][   T27] audit: type=1326 audit(1732357804.828:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  108.158171][   T27] audit: type=1326 audit(1732357804.828:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  108.227096][ T4955] loop2: detected capacity change from 0 to 512
[  108.259276][ T4957] netlink: 'syz.1.206': attribute type 3 has an invalid length.
[  108.277523][   T27] audit: type=1326 audit(1732357804.828:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  108.338719][   T27] audit: type=1326 audit(1732357804.888:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4937 comm="syz.2.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  108.411804][ T4955] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  108.425639][ T4955] ext4 filesystem being mounted at /48/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  108.741766][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  108.833990][ T4979] loop4: detected capacity change from 0 to 16
[  108.857480][ T4979] erofs: (device loop4): mounted with root inode @ nid 36.
[  108.900027][ T4979] syz.4.209: attempt to access beyond end of device
[  108.900027][ T4979] loop4: rw=524288, sector=16, nr_sectors = 16 limit=16
[  108.913954][ T4979] syz.4.209: attempt to access beyond end of device
[  108.913954][ T4979] loop4: rw=524288, sector=8, nr_sectors = 16 limit=16
[  109.357420][ T4978] loop0: detected capacity change from 0 to 128
[  109.701147][ T4987] loop2: detected capacity change from 0 to 512
[  109.753381][ T4988] device syzkaller0 entered promiscuous mode
[  109.772216][ T4987] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  109.828599][ T4987] EXT4-fs (loop2): 1 truncate cleaned up
[  109.849690][ T4987] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  110.088091][ T4997] device wireguard0 entered promiscuous mode
[  110.817991][ T5005] netlink: 4 bytes leftover after parsing attributes in process `syz.1.220'.
[  110.878339][ T5005] device bridge_slave_1 left promiscuous mode
[  110.906641][ T5005] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.979986][ T5005] device bridge_slave_0 left promiscuous mode
[  111.015777][ T5005] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.092382][ T5029] loop3: detected capacity change from 0 to 16
[  112.192385][ T5029] erofs: (device loop3): mounted with root inode @ nid 36.
[  112.234406][ T5029] syz.3.226: attempt to access beyond end of device
[  112.234406][ T5029] loop3: rw=524288, sector=16, nr_sectors = 16 limit=16
[  112.248497][ T5029] syz.3.226: attempt to access beyond end of device
[  112.248497][ T5029] loop3: rw=524288, sector=8, nr_sectors = 16 limit=16
[  112.358772][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  112.906108][ T5036] loop0: detected capacity change from 0 to 1024
[  112.913471][ T5036] EXT4-fs: Ignoring removed nobh option
[  112.919066][ T5036] EXT4-fs: Ignoring removed orlov option
[  112.928925][ T5035] Driver unsupported XDP return value 0 on prog  (id 112) dev N/A, expect packet loss!
[  113.001039][ T5036] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  113.085972][ T5041] loop3: detected capacity change from 0 to 1024
[  113.098386][ T5044] loop4: detected capacity change from 0 to 512
[  113.108455][ T5044] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  113.134410][ T5044] EXT4-fs (loop4): 1 truncate cleaned up
[  113.174564][ T5044] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  113.191502][ T5041] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  113.231407][ T4258] EXT4-fs (loop0): unmounting filesystem.
[  113.310649][ T5047] loop2: detected capacity change from 0 to 2048
[  113.351164][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  113.409068][ T5047] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  113.434027][ T5056] netlink: 8 bytes leftover after parsing attributes in process `syz.1.237'.
[  113.472408][ T5056] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  113.502562][ T5056] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  113.531357][   T27] kauditd_printk_skb: 73 callbacks suppressed
[  113.531374][   T27] audit: type=1326 audit(1732357810.768:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5059 comm="syz.3.238" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x0
[  113.566756][ T5047] EXT4-fs (loop2): re-mounted. Quota mode: none.
[  113.582465][ T5047] EXT4-fs (loop2): re-mounted. Quota mode: none.
[  113.661210][ T4250] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  113.722243][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  114.022875][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  114.141224][ T5071] loop4: detected capacity change from 0 to 2048
[  114.180867][ T5071] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  114.520736][ T5077] loop2: detected capacity change from 0 to 16
[  114.535778][ T5077] erofs: (device loop2): mounted with root inode @ nid 36.
[  114.573686][ T5077] syz.2.242: attempt to access beyond end of device
[  114.573686][ T5077] loop2: rw=524288, sector=16, nr_sectors = 16 limit=16
[  114.587548][ T5077] syz.2.242: attempt to access beyond end of device
[  114.587548][ T5077] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[  114.622079][   T27] audit: type=1326 audit(1732357811.798:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  115.153274][ T4260] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  115.208800][   T27] audit: type=1326 audit(1732357811.798:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  115.309234][   T27] audit: type=1326 audit(1732357811.798:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  115.355910][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  115.380184][   T27] audit: type=1326 audit(1732357811.798:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  115.464689][   T27] audit: type=1326 audit(1732357811.798:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  115.546307][   T27] audit: type=1326 audit(1732357811.798:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  115.650624][   T27] audit: type=1326 audit(1732357811.798:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  115.748030][   T27] audit: type=1326 audit(1732357811.798:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  115.831675][   T27] audit: type=1326 audit(1732357811.808:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  116.005171][ T5109] loop4: detected capacity change from 0 to 128
[  116.097832][ T5109] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  116.129040][ T5109] ext4 filesystem being mounted at /56/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  116.319733][ T5109] netlink: 4 bytes leftover after parsing attributes in process `syz.4.257'.
[  116.501901][ T5120] loop0: detected capacity change from 0 to 16
[  116.576641][ T5120] erofs: (device loop0): mounted with root inode @ nid 36.
[  116.612047][ T5120] syz.0.258: attempt to access beyond end of device
[  116.612047][ T5120] loop0: rw=524288, sector=16, nr_sectors = 16 limit=16
[  116.625965][ T5120] syz.0.258: attempt to access beyond end of device
[  116.625965][ T5120] loop0: rw=524288, sector=8, nr_sectors = 16 limit=16
[  117.353111][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  117.732672][ T5136] loop1: detected capacity change from 0 to 512
[  117.867417][ T5136] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  118.237237][ T5136] EXT4-fs (loop1): invalid journal inode
[  118.444326][ T5142] loop0: detected capacity change from 0 to 512
[  118.504171][ T5136] EXT4-fs (loop1): can't get journal size
[  118.588633][ T5142] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  118.608999][ T5136] EXT4-fs (loop1): orphan cleanup on readonly fs
[  118.617258][ T5136] EXT4-fs (loop1): 1 truncate cleaned up
[  118.629652][ T5136] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  118.643190][ T5142] EXT4-fs (loop0): 1 truncate cleaned up
[  118.648990][ T5142] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  118.728999][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  118.729015][   T27] audit: type=1326 audit(1732357815.968:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5154 comm="syz.3.272" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x0
[  118.770323][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  119.895865][ T5167] loop4: detected capacity change from 0 to 512
[  119.973562][ T5167] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  120.047450][ T5167] EXT4-fs (loop4): 1 truncate cleaned up
[  120.081723][ T5167] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  120.975058][ T4258] EXT4-fs (loop0): unmounting filesystem.
[  122.069573][ T5201] netlink: 4 bytes leftover after parsing attributes in process `syz.1.290'.
[  122.185418][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  124.933203][ T5230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.300'.
[  125.571720][   T27] audit: type=1326 audit(1732357822.808:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5236 comm="syz.2.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  125.731378][   T27] audit: type=1326 audit(1732357822.888:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5236 comm="syz.2.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  125.840705][ T5244] loop3: detected capacity change from 0 to 512
[  125.864913][   T27] audit: type=1326 audit(1732357822.888:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  125.922957][ T5244] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  125.947186][   T27] audit: type=1326 audit(1732357822.888:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  125.987847][   T27] audit: type=1326 audit(1732357822.888:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  126.020057][ T5250] netlink: 28 bytes leftover after parsing attributes in process `syz.2.305'.
[  126.050746][ T5244] EXT4-fs (loop3): 1 truncate cleaned up
[  126.061951][ T5244] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  126.092158][   T27] audit: type=1326 audit(1732357822.888:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  126.182212][   T27] audit: type=1326 audit(1732357822.888:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5236 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  126.667375][ T5267] loop1: detected capacity change from 0 to 512
[  126.807618][ T5267] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.1.311: corrupted xattr block 95
[  126.889714][ T5267] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2809: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  126.943010][ T5267] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.311: bg 0: block 7: invalid block bitmap
[  127.168079][ T5267] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  127.180093][ T5267] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2925: inode #11: comm syz.1.311: corrupted xattr block 95
[  128.301708][ T5267] EXT4-fs warning (device loop1): ext4_evict_inode:299: xattr delete (err -117)
[  128.323837][ T5267] EXT4-fs (loop1): 1 orphan inode deleted
[  128.329640][ T5267] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  128.350540][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  128.704111][   T27] audit: type=1326 audit(1732357825.948:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  128.856763][   T27] audit: type=1326 audit(1732357825.978:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  128.999303][   T27] audit: type=1326 audit(1732357825.978:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  129.186169][ T5286] netlink: 44 bytes leftover after parsing attributes in process `syz.2.316'.
[  130.044386][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  130.209172][ T5306] loop2: detected capacity change from 0 to 164
[  130.286232][ T5306] ISOFS: unable to read i-node block
[  130.307875][ T5306] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  130.545256][ T5320] netlink: 4 bytes leftover after parsing attributes in process `syz.0.329'.
[  132.468178][ T5341] loop2: detected capacity change from 0 to 1024
[  132.792417][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  132.798839][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  132.820410][   T27] kauditd_printk_skb: 13 callbacks suppressed
[  132.820426][   T27] audit: type=1326 audit(1732357830.058:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5345 comm="syz.1.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  132.908511][   T27] audit: type=1326 audit(1732357830.098:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5345 comm="syz.1.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  133.065328][ T5341] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  133.151672][   T27] audit: type=1326 audit(1732357830.098:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5345 comm="syz.1.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  133.205157][ T5341] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2739: inode #15: comm syz.2.337: corrupted in-inode xattr
[  133.211188][   T27] audit: type=1326 audit(1732357830.098:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5345 comm="syz.1.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  133.447312][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  133.647229][ T5373] loop0: detected capacity change from 0 to 164
[  133.696042][ T5373] ISOFS: unable to read i-node block
[  133.701431][ T5373] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  133.802863][ T5378] loop4: detected capacity change from 0 to 512
[  133.827716][   T27] audit: type=1326 audit(1732357831.068:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5379 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  133.858465][ T5378] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  133.883440][   T27] audit: type=1326 audit(1732357831.068:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5379 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  133.953555][ T5378] EXT4-fs (loop4): 1 truncate cleaned up
[  133.959268][ T5378] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  134.061285][   T27] audit: type=1326 audit(1732357831.068:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5379 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  134.225689][   T27] audit: type=1326 audit(1732357831.068:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5379 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  134.768391][ T5395] loop1: detected capacity change from 0 to 1024
[  134.777812][   T27] audit: type=1326 audit(1732357831.068:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5379 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  134.954294][ T5395] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  135.224480][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  136.240316][ T5414] loop1: detected capacity change from 0 to 16
[  136.272522][ T5414] erofs: (device loop1): mounted with root inode @ nid 36.
[  136.307015][ T5414] syz.1.360: attempt to access beyond end of device
[  136.307015][ T5414] loop1: rw=524288, sector=16, nr_sectors = 16 limit=16
[  136.321065][ T5414] syz.1.360: attempt to access beyond end of device
[  136.321065][ T5414] loop1: rw=524288, sector=8, nr_sectors = 16 limit=16
[  136.442488][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  137.050556][ T5423] loop4: detected capacity change from 0 to 164
[  137.145968][ T5423] ISOFS: unable to read i-node block
[  137.151350][ T5423] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  137.185472][ T5429] netlink: 8 bytes leftover after parsing attributes in process `syz.3.368'.
[  137.198939][   T27] audit: type=1326 audit(1732357834.448:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5424 comm="syz.1.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  137.588728][ T5441] loop1: detected capacity change from 0 to 512
[  137.632962][ T5441] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  137.703405][ T5441] EXT4-fs (loop1): 1 truncate cleaned up
[  137.713708][ T5441] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  139.114236][ T5465] loop4: detected capacity change from 0 to 164
[  139.158465][ T5465] ISOFS: unable to read i-node block
[  139.195990][ T5465] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  139.778635][   T27] kauditd_printk_skb: 56 callbacks suppressed
[  139.778652][   T27] audit: type=1326 audit(1732357837.018:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  139.932358][   T27] audit: type=1326 audit(1732357837.068:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  139.969513][   T27] audit: type=1326 audit(1732357837.068:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  139.986357][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  140.001727][   T27] audit: type=1326 audit(1732357837.068:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  140.089549][   T27] audit: type=1326 audit(1732357837.068:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  140.214834][   T27] audit: type=1326 audit(1732357837.068:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  140.291345][ T5484] loop2: detected capacity change from 0 to 512
[  140.310256][   T27] audit: type=1326 audit(1732357837.068:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  140.338303][ T5484] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  140.348888][   T27] audit: type=1326 audit(1732357837.068:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  140.419386][ T5484] EXT4-fs (loop2): 1 truncate cleaned up
[  140.425307][ T5484] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  140.469641][   T27] audit: type=1326 audit(1732357837.068:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  140.549548][   T27] audit: type=1326 audit(1732357837.068:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.2.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  140.591297][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  141.268256][ T5505] loop3: detected capacity change from 0 to 512
[  141.474578][ T5505] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  141.948971][ T5505] EXT4-fs (loop3): 1 truncate cleaned up
[  141.995704][ T5505] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  144.515803][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  144.640731][ T5549] loop3: detected capacity change from 0 to 164
[  144.674591][ T5549] ISOFS: unable to read i-node block
[  144.694282][ T5549] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  145.795471][ T5558] syz.4.416[5558] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  145.795578][ T5558] syz.4.416[5558] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.308295][ T5566] loop3: detected capacity change from 0 to 1024
[  146.524295][   T27] kauditd_printk_skb: 15 callbacks suppressed
[  146.524312][   T27] audit: type=1326 audit(1732357843.538:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5570 comm="syz.4.422" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x0
[  146.606607][ T5581] loop1: detected capacity change from 0 to 16
[  146.620491][ T5581] erofs: (device loop1): mounted with root inode @ nid 36.
[  146.635413][ T5581] syz.1.420: attempt to access beyond end of device
[  146.635413][ T5581] loop1: rw=524288, sector=16, nr_sectors = 16 limit=16
[  146.649045][ T5581] syz.1.420: attempt to access beyond end of device
[  146.649045][ T5581] loop1: rw=524288, sector=8, nr_sectors = 16 limit=16
[  146.695850][ T5566] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  146.720289][   T27] audit: type=1326 audit(1732357843.868:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  146.756294][   T27] audit: type=1326 audit(1732357843.868:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  146.882422][   T27] audit: type=1326 audit(1732357843.878:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  147.015326][   T27] audit: type=1326 audit(1732357843.878:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  147.062996][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  147.194597][   T27] audit: type=1326 audit(1732357843.878:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  147.226154][ T5592] loop2: detected capacity change from 0 to 164
[  147.322621][ T5592] ISOFS: unable to read i-node block
[  147.391746][   T27] audit: type=1326 audit(1732357843.878:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  147.415567][ T5592] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  147.486676][   T27] audit: type=1326 audit(1732357843.878:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  148.333796][   T27] audit: type=1326 audit(1732357843.878:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  148.441730][   T27] audit: type=1326 audit(1732357843.878:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  149.624696][ T5618] tc_dump_action: action bad kind
[  149.721436][ T5620] loop2: detected capacity change from 0 to 1024
[  150.049664][ T5620] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  150.488283][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  150.720212][ T5648] device bond0 entered promiscuous mode
[  150.760726][ T5648] device bond_slave_0 entered promiscuous mode
[  150.811029][ T5648] device bond_slave_1 entered promiscuous mode
[  151.176701][ T5663] tc_dump_action: action bad kind
[  152.130660][ T5674] loop2: detected capacity change from 0 to 512
[  152.131096][   T27] kauditd_printk_skb: 12 callbacks suppressed
[  152.131111][   T27] audit: type=1326 audit(1732357849.368:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5672 comm="syz.0.450" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x0
[  152.233176][ T5674] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  152.304577][ T5674] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  152.324305][ T5674] System zones: 1-12
[  152.351345][ T5674] EXT4-fs (loop2): 1 truncate cleaned up
[  152.390647][ T5674] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  152.481635][   T27] audit: type=1800 audit(1732357849.718:517): pid=5674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.451" name="file1" dev="loop2" ino=15 res=0 errno=0
[  152.743221][ T5696] loop3: detected capacity change from 0 to 164
[  152.768577][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  152.797570][ T5696] ISOFS: unable to read i-node block
[  152.808845][ T5696] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  152.962769][ T5700] tc_dump_action: action bad kind
[  153.253443][ T5708] netlink: 8 bytes leftover after parsing attributes in process `syz.3.462'.
[  153.279556][ T5708] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  153.289643][ T5708] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  154.166604][   T27] audit: type=1326 audit(1732357851.408:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5718 comm="syz.3.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  154.266464][   T27] audit: type=1326 audit(1732357851.438:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5718 comm="syz.3.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  154.308850][   T27] audit: type=1326 audit(1732357851.438:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5718 comm="syz.3.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  154.334342][   T27] audit: type=1326 audit(1732357851.438:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5718 comm="syz.3.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  154.357808][   T27] audit: type=1326 audit(1732357851.438:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5718 comm="syz.3.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  154.396209][   T27] audit: type=1326 audit(1732357851.438:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5718 comm="syz.3.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  154.478513][   T27] audit: type=1326 audit(1732357851.438:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5718 comm="syz.3.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  154.581667][   T27] audit: type=1326 audit(1732357851.438:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5718 comm="syz.3.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  154.749889][ T5743] loop1: detected capacity change from 0 to 164
[  154.763287][ T5741] netlink: 'syz.4.472': attribute type 10 has an invalid length.
[  154.773294][ T5737] loop2: detected capacity change from 0 to 16
[  154.780844][ T5737] erofs: (device loop2): mounted with root inode @ nid 36.
[  154.794762][ T5737] syz.2.464: attempt to access beyond end of device
[  154.794762][ T5737] loop2: rw=524288, sector=16, nr_sectors = 16 limit=16
[  154.809062][ T5737] syz.2.464: attempt to access beyond end of device
[  154.809062][ T5737] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[  154.826300][ T5743] ISOFS: unable to read i-node block
[  154.838155][ T5743] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  154.884262][ T5741] team0: Port device netdevsim0 added
[  155.293987][ T5751] netlink: 8 bytes leftover after parsing attributes in process `syz.4.478'.
[  155.316203][ T5751] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  155.338270][ T5751] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  156.663497][ T5773] netlink: 24 bytes leftover after parsing attributes in process `syz.1.485'.
[  156.805718][ T5775] loop4: detected capacity change from 0 to 164
[  156.844151][ T5775] ISOFS: unable to read i-node block
[  156.870911][ T5775] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  157.151758][   T27] kauditd_printk_skb: 67 callbacks suppressed
[  157.151771][   T27] audit: type=1326 audit(1732357854.388:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5783 comm="syz.3.491" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x0
[  158.429050][ T5812] loop3: detected capacity change from 0 to 128
[  158.472457][ T5810] syz.1.499[5810] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.472560][ T5810] syz.1.499[5810] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.549711][   T27] audit: type=1800 audit(1732357855.788:594): pid=5812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.498" name="file1" dev="loop3" ino=1048595 res=0 errno=0
[  158.597915][ T5815] loop2: detected capacity change from 0 to 164
[  158.727379][ T5815] ISOFS: unable to read i-node block
[  158.772083][ T5815] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  158.945648][ T5822] loop4: detected capacity change from 0 to 16
[  158.975949][ T5822] erofs: (device loop4): mounted with root inode @ nid 36.
[  159.016894][ T5822] syz.4.501: attempt to access beyond end of device
[  159.016894][ T5822] loop4: rw=524288, sector=16, nr_sectors = 16 limit=16
[  159.030781][ T5822] syz.4.501: attempt to access beyond end of device
[  159.030781][ T5822] loop4: rw=524288, sector=8, nr_sectors = 16 limit=16
[  159.051352][   T27] audit: type=1326 audit(1732357856.238:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5817 comm="syz.4.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  159.620784][   T27] audit: type=1326 audit(1732357856.248:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5817 comm="syz.4.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  159.706609][   T27] audit: type=1326 audit(1732357856.248:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5817 comm="syz.4.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  159.751803][   T27] audit: type=1326 audit(1732357856.248:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5817 comm="syz.4.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  159.794304][   T27] audit: type=1326 audit(1732357856.248:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5817 comm="syz.4.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  159.816608][   T27] audit: type=1326 audit(1732357856.248:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5817 comm="syz.4.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  159.860529][   T27] audit: type=1326 audit(1732357856.248:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5817 comm="syz.4.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  159.884402][   T27] audit: type=1326 audit(1732357856.248:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5817 comm="syz.4.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  160.793588][ T5862] tc_dump_action: action bad kind
[  161.083950][ T5869] loop2: detected capacity change from 0 to 16
[  161.157929][ T5869] erofs: (device loop2): mounted with root inode @ nid 36.
[  161.202112][ T5869] syz.2.517: attempt to access beyond end of device
[  161.202112][ T5869] loop2: rw=524288, sector=16, nr_sectors = 16 limit=16
[  161.216017][ T5869] syz.2.517: attempt to access beyond end of device
[  161.216017][ T5869] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[  162.104258][ T5887] loop0: detected capacity change from 0 to 1024
[  162.144926][ T5887] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  162.206697][ T4258] EXT4-fs (loop0): unmounting filesystem.
[  162.525709][   T27] kauditd_printk_skb: 28 callbacks suppressed
[  162.525725][   T27] audit: type=1326 audit(1732357859.768:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.0.530" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x0
[  162.600400][ T5903] tc_dump_action: action bad kind
[  163.145332][ T5923] loop1: detected capacity change from 0 to 164
[  163.197099][ T5923] ISOFS: unable to read i-node block
[  163.231800][ T5923] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  163.481826][ T5933] tc_dump_action: action bad kind
[  164.500024][   T27] audit: type=1326 audit(1732357861.738:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.554" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x0
[  164.594438][ T5967] loop0: detected capacity change from 0 to 164
[  164.615554][ T5967] ISOFS: unable to read i-node block
[  164.637536][ T5967] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  164.882257][ T5977] tc_dump_action: action bad kind
[  167.475421][ T6032] netlink: 8 bytes leftover after parsing attributes in process `syz.4.579'.
[  167.528619][ T6032] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  167.587860][ T6032] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  168.505036][ T6040] netlink: 4 bytes leftover after parsing attributes in process `syz.0.582'.
[  168.537761][ T6040] device bridge_slave_1 left promiscuous mode
[  168.556879][ T6040] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.586751][ T6040] device bridge_slave_0 left promiscuous mode
[  168.606352][ T6040] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.730394][   T27] audit: type=1326 audit(1732357865.968:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  168.784053][   T27] audit: type=1326 audit(1732357865.968:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  168.847411][   T27] audit: type=1326 audit(1732357865.968:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  168.911121][   T27] audit: type=1326 audit(1732357865.968:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  168.983152][   T27] audit: type=1326 audit(1732357865.968:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  169.067193][   T27] audit: type=1326 audit(1732357865.968:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  169.135890][   T27] audit: type=1326 audit(1732357865.978:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  169.232114][   T27] audit: type=1326 audit(1732357865.978:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  169.257018][ T6057] loop1: detected capacity change from 0 to 164
[  169.309239][ T6057] ISOFS: unable to read i-node block
[  169.314969][   T27] audit: type=1326 audit(1732357865.978:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  169.371305][ T6057] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  169.441860][   T27] audit: type=1326 audit(1732357865.978:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  169.940285][ T6061] loop3: detected capacity change from 0 to 16
[  169.949813][ T6061] erofs: (device loop3): mounted with root inode @ nid 36.
[  169.965295][ T6061] syz.3.592: attempt to access beyond end of device
[  169.965295][ T6061] loop3: rw=524288, sector=16, nr_sectors = 16 limit=16
[  169.978872][ T6061] syz.3.592: attempt to access beyond end of device
[  169.978872][ T6061] loop3: rw=524288, sector=8, nr_sectors = 16 limit=16
[  170.948648][ T6078] loop3: detected capacity change from 0 to 512
[  170.959437][ T6078] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  171.035248][ T6078] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  171.044468][ T6078] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.188682][ T6086] loop4: detected capacity change from 0 to 512
[  171.244183][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  171.311802][ T6086] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  171.370012][ T6086] EXT4-fs (loop4): 1 truncate cleaned up
[  171.387578][ T6086] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  171.447253][ T6094] loop0: detected capacity change from 0 to 1024
[  171.455281][ T6094] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  171.515931][ T6095] loop3: detected capacity change from 0 to 512
[  171.607288][ T6095] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  171.640155][ T6094] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  171.665730][ T6095] EXT4-fs (loop3): 1 truncate cleaned up
[  171.714297][ T6102] loop2: detected capacity change from 0 to 1024
[  171.722181][ T6095] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  171.784468][ T6102] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  171.963837][ T4258] EXT4-fs (loop0): unmounting filesystem.
[  174.011340][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  174.079869][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  174.916074][ T6128] sch_tbf: burst 1 is lower than device lo mtu (65550) !
[  175.861033][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  176.300824][ T6155] loop2: detected capacity change from 0 to 128
[  176.345845][ T6155] FAT-fs (loop2): bread failed, FSINFO block (sector = 202)
[  176.720773][ T6152] netlink: 28 bytes leftover after parsing attributes in process `syz.1.619'.
[  177.405915][ T6152] netlink: 28 bytes leftover after parsing attributes in process `syz.1.619'.
[  178.139626][ T6178] loop3: detected capacity change from 0 to 512
[  178.189278][ T6178] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  178.200362][ T6180] netlink: 12 bytes leftover after parsing attributes in process `syz.2.629'.
[  178.237250][ T6178] EXT4-fs (loop3): 1 truncate cleaned up
[  178.243266][ T6178] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  178.901132][ T6189] netlink: 28 bytes leftover after parsing attributes in process `syz.0.632'.
[  179.171115][ T6193] netlink: 8 bytes leftover after parsing attributes in process `syz.0.633'.
[  180.010147][ T6205] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  180.044083][ T6202] netlink: 8 bytes leftover after parsing attributes in process `syz.0.637'.
[  180.095939][ T6202] netlink: 12 bytes leftover after parsing attributes in process `syz.0.637'.
[  180.599663][ T6210] netlink: 12 bytes leftover after parsing attributes in process `syz.2.640'.
[  180.618988][   T27] kauditd_printk_skb: 39 callbacks suppressed
[  180.619003][   T27] audit: type=1326 audit(1732357877.858:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  180.791749][   T27] audit: type=1326 audit(1732357877.888:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  180.831657][   T27] audit: type=1326 audit(1732357878.068:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  180.862688][   T27] audit: type=1326 audit(1732357878.068:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  180.904553][   T27] audit: type=1326 audit(1732357878.138:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  180.940803][   T27] audit: type=1326 audit(1732357878.138:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  180.969721][   T27] audit: type=1326 audit(1732357878.138:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  180.999496][   T27] audit: type=1326 audit(1732357878.138:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  181.033937][   T27] audit: type=1326 audit(1732357878.138:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  181.057492][   T27] audit: type=1326 audit(1732357878.138:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6211 comm="syz.0.641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c8f7e819 code=0x7ffc0000
[  181.090580][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  181.746831][ T6238] loop0: detected capacity change from 0 to 512
[  181.808770][ T6238] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  181.873373][ T6238] EXT4-fs (loop0): 1 truncate cleaned up
[  181.892076][ T6238] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  182.390588][ T6266] loop4: detected capacity change from 0 to 512
[  182.441959][ T6266] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  182.504680][ T6266] EXT4-fs (loop4): 1 truncate cleaned up
[  182.546595][ T6266] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  186.351634][   T27] kauditd_printk_skb: 49 callbacks suppressed
[  186.351651][   T27] audit: type=1326 audit(1732357883.578:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6283 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  186.457913][   T27] audit: type=1326 audit(1732357883.578:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6283 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  186.566510][   T27] audit: type=1326 audit(1732357883.578:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6283 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  186.649925][   T27] audit: type=1326 audit(1732357883.578:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6283 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  186.758810][   T27] audit: type=1326 audit(1732357883.578:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6283 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  186.818515][ T6291] device vlan2 entered promiscuous mode
[  186.834603][ T6291] device batadv0 entered promiscuous mode
[  186.854256][   T27] audit: type=1326 audit(1732357883.578:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6283 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=433 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  186.889619][   T27] audit: type=1326 audit(1732357883.578:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6283 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  186.921757][   T27] audit: type=1326 audit(1732357883.588:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6283 comm="syz.2.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f556437e819 code=0x7ffc0000
[  187.038969][ T6291] device batadv0 left promiscuous mode
[  187.058640][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  188.249407][ T6307] loop2: detected capacity change from 0 to 512
[  188.361895][ T6307] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  188.373235][ T6310] syz.3.683 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  188.440628][ T6307] EXT4-fs (loop2): 1 truncate cleaned up
[  188.483186][ T6307] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  188.908895][   T27] audit: type=1326 audit(1732357886.148:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.4.685" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x0
[  193.005492][   T27] audit: type=1326 audit(1732357889.378:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  193.545267][   T27] audit: type=1326 audit(1732357889.378:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  193.741815][   T27] audit: type=1326 audit(1732357889.508:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  193.951724][   T27] audit: type=1326 audit(1732357889.508:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  194.084559][   T27] audit: type=1326 audit(1732357889.508:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  194.159111][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  194.165614][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  194.281448][   T27] audit: type=1326 audit(1732357889.638:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  194.534791][   T27] audit: type=1326 audit(1732357889.638:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  194.681608][   T27] audit: type=1326 audit(1732357889.638:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  194.825107][   T27] audit: type=1326 audit(1732357889.768:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  195.000007][   T27] audit: type=1326 audit(1732357889.768:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.1.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f51b7e819 code=0x7ffc0000
[  196.311781][ T4265] Bluetooth: hci0: command 0x0406 tx timeout
[  196.317923][ T4265] Bluetooth: hci2: command 0x0406 tx timeout
[  196.324040][ T4259] Bluetooth: hci1: command 0x0406 tx timeout
[  196.330126][ T4259] Bluetooth: hci3: command 0x0406 tx timeout
[  196.339734][ T4265] Bluetooth: hci4: command 0x0406 tx timeout
[  198.891965][ T4265] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  198.901188][ T4259] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  198.909645][ T4265] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  198.917968][ T4259] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  198.925868][ T4265] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  198.933335][ T4259] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  200.339983][ T6376] chnl_net:caif_netlink_parms(): no params data found
[  200.922907][ T6376] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.952197][ T6376] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.962177][ T4259] Bluetooth: hci5: command 0x0409 tx timeout
[  201.013311][ T6376] device bridge_slave_0 entered promiscuous mode
[  201.023018][ T6376] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.030137][ T6376] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.090033][ T6376] device bridge_slave_1 entered promiscuous mode
[  201.344407][ T6376] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.424671][ T6376] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.678071][ T6376] team0: Port device team_slave_0 added
[  201.732178][ T6376] team0: Port device team_slave_1 added
[  201.906708][ T6376] batman_adv: batadv0: Adding interface: batadv_slave_0
[  201.971253][ T6376] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.188905][ T6376] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.313093][ T6376] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.320501][ T6376] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.573382][ T6376] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.860779][ T6376] device hsr_slave_0 entered promiscuous mode
[  202.907281][ T6376] device hsr_slave_1 entered promiscuous mode
[  202.955611][ T6376] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.994286][ T6376] Cannot create hsr debugfs directory
[  203.042464][ T4259] Bluetooth: hci5: command 0x041b tx timeout
[  203.714043][ T6410] syz.4.721[6410] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  203.714167][ T6410] syz.4.721[6410] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  203.997597][ T4250] EXT4-fs (loop2): unmounting filesystem.
[  204.256514][ T6376] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  204.349105][ T6376] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  204.412946][ T6376] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  204.532130][ T6376] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  205.112562][ T4259] Bluetooth: hci5: command 0x040f tx timeout
[  205.162050][ T6376] 8021q: adding VLAN 0 to HW filter on device bond0
[  205.319163][ T6376] 8021q: adding VLAN 0 to HW filter on device team0
[  205.641723][ T4261] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  205.651104][ T4265] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  205.659471][ T4261] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  205.677274][ T4265] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  205.684908][ T4265] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  205.692694][ T4261] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  205.738928][ T6376] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  205.888905][ T6376] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  206.023794][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  206.032447][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  206.205225][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  206.312474][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  206.321064][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.328229][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[  206.562119][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  206.571027][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  206.682382][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.689572][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[  206.812536][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  206.890964][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  206.965885][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  207.062890][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  207.147801][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  207.187313][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  207.195712][ T4261] Bluetooth: hci5: command 0x0419 tx timeout
[  207.259271][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  207.310688][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  207.365863][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  207.411397][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  207.761851][ T4261] Bluetooth: hci6: command 0x0409 tx timeout
[  208.353236][ T4448] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.674688][ T4448] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.934052][ T4448] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.842444][ T4261] Bluetooth: hci6: command 0x041b tx timeout
[  210.002495][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  210.062741][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  210.070832][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  210.332679][ T4448] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  211.027361][ T4259] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  211.083510][ T6457] loop3: detected capacity change from 0 to 16
[  211.990834][ T4259] Bluetooth: hci6: command 0x040f tx timeout
[  211.996927][ T6354] TCP: TCP_TX_DELAY enabled
[  212.019883][ T4259] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  212.091825][ T6457] erofs: (device loop3): mounted with root inode @ nid 36.
[  212.821319][ T6456] syz.3.738: attempt to access beyond end of device
[  212.821319][ T6456] loop3: rw=524288, sector=16, nr_sectors = 16 limit=16
[  212.834889][ T6456] syz.3.738: attempt to access beyond end of device
[  212.834889][ T6456] loop3: rw=524288, sector=8, nr_sectors = 16 limit=16
[  212.871631][   T27] kauditd_printk_skb: 28 callbacks suppressed
[  212.871651][   T27] audit: type=1326 audit(1732357909.808:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  212.907170][ T4259] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  212.933963][ T4259] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  212.941956][ T4259] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  212.949284][ T4259] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  213.014194][   T27] audit: type=1326 audit(1732357909.808:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  213.036562][   T27] audit: type=1326 audit(1732357909.928:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  213.227968][   T27] audit: type=1326 audit(1732357909.928:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  213.264265][   T27] audit: type=1326 audit(1732357909.928:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  213.417156][   T27] audit: type=1326 audit(1732357910.058:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  213.537683][   T27] audit: type=1326 audit(1732357910.058:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  213.631101][   T27] audit: type=1326 audit(1732357910.058:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  213.915496][ T6455] chnl_net:caif_netlink_parms(): no params data found
[  214.175266][ T4259] Bluetooth: hci6: command 0x0419 tx timeout
[  215.031785][ T4261] Bluetooth: hci2: command 0x0409 tx timeout
[  215.089985][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  215.112529][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  216.315064][ T6468] loop3: detected capacity change from 0 to 512
[  216.372727][ T6468] EXT4-fs: Ignoring removed mblk_io_submit option
[  216.434174][ T6468] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.740: inode #1: comm syz.3.740: iget: illegal inode #
[  216.479912][ T6468] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.740: error while reading EA inode 1 err=-117
[  216.540258][ T6468] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.740: inode #1: comm syz.3.740: iget: illegal inode #
[  216.581261][ T6468] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.740: error while reading EA inode 1 err=-117
[  216.623605][ T6468] EXT4-fs (loop3): 1 orphan inode deleted
[  216.629405][ T6468] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  217.015540][ T6376] 8021q: adding VLAN 0 to HW filter on device batadv0
[  217.111952][ T4261] Bluetooth: hci2: command 0x041b tx timeout
[  219.191652][ T4261] Bluetooth: hci2: command 0x040f tx timeout
[  221.280528][ T4261] Bluetooth: hci2: command 0x0419 tx timeout
[  230.214693][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  232.743188][ T6508] syz.3.751[6508] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  232.743308][ T6508] syz.3.751[6508] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  233.819659][ T6522] loop3: detected capacity change from 0 to 1024
[  233.943627][ T6522] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  234.002400][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  234.019299][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  234.092675][ T6455] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.101956][ T6455] bridge0: port 1(bridge_slave_0) entered disabled state
[  234.132389][ T6455] device bridge_slave_0 entered promiscuous mode
[  234.173098][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  235.047360][ T6455] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.060733][ T6455] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.132359][ T6455] device bridge_slave_1 entered promiscuous mode
[  236.004052][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  236.022972][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  236.089195][ T6376] device veth0_vlan entered promiscuous mode
[  237.076337][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  237.094627][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  237.157887][ T6376] device veth1_vlan entered promiscuous mode
[  237.195413][ T6455] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  237.253467][ T6455] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  237.445014][   T27] audit: type=1326 audit(1732357934.688:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.3.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  237.487941][ T6455] team0: Port device team_slave_0 added
[  237.544950][ T6455] team0: Port device team_slave_1 added
[  237.580460][   T27] audit: type=1326 audit(1732357934.718:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.3.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  237.739185][ T6455] batman_adv: batadv0: Adding interface: batadv_slave_0
[  237.761772][   T27] audit: type=1326 audit(1732357934.718:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.3.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  237.831880][ T6455] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  237.922391][   T27] audit: type=1326 audit(1732357934.718:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.3.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  238.002681][ T6455] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  238.031702][ T6455] batman_adv: batadv0: Adding interface: batadv_slave_1
[  238.069806][ T6455] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.166382][   T27] audit: type=1326 audit(1732357934.718:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.3.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5e77e819 code=0x7ffc0000
[  238.267136][ T6455] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  239.201765][ T4448] device hsr_slave_0 left promiscuous mode
[  239.229042][ T4448] device hsr_slave_1 left promiscuous mode
[  239.246321][ T4448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  239.269565][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  239.305841][ T4448] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  239.331064][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_1
[  239.366347][ T4448] device bridge_slave_1 left promiscuous mode
[  239.394329][ T4448] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.431677][ T4448] device bridge_slave_0 left promiscuous mode
[  239.448230][ T4448] bridge0: port 1(bridge_slave_0) entered disabled state
[  239.558886][ T4448] device veth1_macvtap left promiscuous mode
[  239.583275][ T4448] device veth0_macvtap left promiscuous mode
[  239.609862][ T4448] device veth1_vlan left promiscuous mode
[  239.626401][ T4448] device veth0_vlan left promiscuous mode
[  241.520127][ T4448] team0 (unregistering): Port device team_slave_1 removed
[  241.678713][ T4448] team0 (unregistering): Port device team_slave_0 removed
[  241.838966][ T4448] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  242.994055][ T4448] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  244.602934][ T4448] bond0 (unregistering): Released all slaves
[  245.078445][ T6376] device veth0_macvtap entered promiscuous mode
[  245.151605][ T6376] device veth1_macvtap entered promiscuous mode
[  245.252859][ T6376] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.301631][ T6376] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.311484][ T6376] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.388963][ T6376] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.426659][ T6376] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.477667][ T6376] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.517759][ T6376] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.568947][ T6376] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.612852][ T6376] batman_adv: batadv0: Interface activated: batadv_slave_0
[  245.654557][ T6376] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  245.720666][ T6376] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.781968][ T6376] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  245.821572][ T6376] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.831422][ T6376] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  245.909681][ T6376] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.961770][ T6376] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.009769][ T6376] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.021200][ T6376] batman_adv: batadv0: Interface activated: batadv_slave_1
[  247.040519][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  247.062422][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  247.082039][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  247.090196][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  247.130084][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  247.152469][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  247.179403][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  249.050027][ T6560] device vlan2 entered promiscuous mode
[  249.409340][ T6581] loop4: detected capacity change from 0 to 2048
[  249.531719][ T6581] Alternate GPT is invalid, using primary GPT.
[  249.558564][ T6581]  loop4: p2 p3 p7
[  249.997800][ T6376] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  250.007194][ T6376] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  250.017092][ T6376] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  250.025885][ T6376] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  250.153244][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  251.423325][ T6605] xt_TPROXY: Can be used only with -p tcp or -p udp
[  253.008308][ T6418] chnl_net:caif_netlink_parms(): no params data found
[  253.105818][ T6455] device hsr_slave_0 entered promiscuous mode
[  253.179819][ T6455] device hsr_slave_1 entered promiscuous mode
[  253.196284][ T6455] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  253.216452][ T6455] Cannot create hsr debugfs directory
[  253.784767][ T6455] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  253.829975][ T6455] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  253.854744][ T6455] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  253.897428][ T6455] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  255.643580][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  255.649982][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  255.677518][ T6621] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  255.749864][ T6621] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  255.792120][ T6623] netlink: 8 bytes leftover after parsing attributes in process `syz.4.767'.
[  255.810356][ T6621] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  255.832470][ T6621] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  255.871170][ T6621] device bridge_slave_0 left promiscuous mode
[  255.891197][ T6621] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.926560][ T6621] device bridge_slave_1 left promiscuous mode
[  255.949386][ T6621] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.988683][ T6621] bond0: (slave bond_slave_0): Releasing backup interface
[  256.022597][ T6621] bond0: (slave bond_slave_1): Releasing backup interface
[  256.102137][ T6621] team0: Port device team_slave_0 removed
[  256.149720][ T6621] team0: Port device team_slave_1 removed
[  256.173556][ T6621] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  256.201216][ T6621] batman_adv: batadv0: Removing interface: batadv_slave_0
[  256.242578][ T6621] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  256.267772][ T6621] batman_adv: batadv0: Removing interface: batadv_slave_1
[  256.688422][ T6625] loop3: detected capacity change from 0 to 512
[  256.763755][ T6625] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  256.790308][ T6625] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  256.973174][ T6625] EXT4-fs: Ignoring removed orlov option
[  256.997890][ T6625] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  257.050322][ T6625] EXT4-fs (loop3): can't enable nombcache during remount
[  257.194872][ T6623] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  257.255133][ T6623] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  257.321465][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  257.523090][ T4448] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.983372][ T4448] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  258.989751][   T27] audit: type=1326 audit(1732357956.228:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  259.097305][ T4448] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.147436][   T27] audit: type=1326 audit(1732357956.278:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  259.177049][ T6642] syz.4.771 uses obsolete (PF_INET,SOCK_PACKET)
[  259.306852][   T27] audit: type=1326 audit(1732357956.278:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  259.377328][ T6646] loop3: detected capacity change from 0 to 1024
[  259.446152][ T6646] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  259.503004][   T27] audit: type=1326 audit(1732357956.278:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  259.622431][   T27] audit: type=1326 audit(1732357956.278:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  259.666617][ T6646] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  259.768647][ T6646] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #11: comm syz.3.769: missing EA_INODE flag
[  259.809751][   T27] audit: type=1326 audit(1732357956.278:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  259.892008][ T6646] EXT4-fs (loop3): Remounting filesystem read-only
[  259.917690][ T6646] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.769: error while reading EA inode 11 err=-117
[  259.950402][   T27] audit: type=1326 audit(1732357956.278:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  260.012765][ T4259] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  260.022215][ T4259] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  260.029840][ T6646] EXT4-fs (loop3): Remounting filesystem read-only
[  260.035538][   T27] audit: type=1326 audit(1732357956.278:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  260.131807][ T4259] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  260.188215][   T27] audit: type=1326 audit(1732357956.278:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  260.227176][ T4259] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  260.236211][ T4259] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  260.243974][ T4265] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  260.308562][   T27] audit: type=1326 audit(1732357956.328:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.4.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff06f17e819 code=0x7ffc0000
[  262.102390][ T4448] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.311997][ T4259] Bluetooth: hci1: command 0x0409 tx timeout
[  263.110102][ T6455] 8021q: adding VLAN 0 to HW filter on device bond0
[  263.379455][ T6418] bridge0: port 1(bridge_slave_0) entered blocking state
[  263.409543][ T6418] bridge0: port 1(bridge_slave_0) entered disabled state
[  263.459956][ T6418] device bridge_slave_0 entered promiscuous mode
[  263.528819][ T6455] 8021q: adding VLAN 0 to HW filter on device team0
[  264.557684][ T4259] Bluetooth: hci1: command 0x041b tx timeout
[  264.813100][ T4476] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  264.831172][ T4476] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  264.896810][ T6418] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.904485][ T6418] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.935680][ T6418] device bridge_slave_1 entered promiscuous mode
[  265.093200][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  265.152338][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  265.264604][ T4468] bridge0: port 1(bridge_slave_0) entered blocking state
[  265.271792][ T4468] bridge0: port 1(bridge_slave_0) entered forwarding state
[  265.411132][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  265.492549][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  265.582468][ T4468] bridge0: port 2(bridge_slave_1) entered blocking state
[  265.589608][ T4468] bridge0: port 2(bridge_slave_1) entered forwarding state
[  265.752423][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  265.822557][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  266.694824][ T4259] Bluetooth: hci1: command 0x040f tx timeout
[  267.847890][ T4261] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  267.857339][ T4261] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  267.865453][ T4261] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  267.874541][ T4265] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  267.882118][ T4261] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  267.889454][ T4261] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  268.711694][ T4261] Bluetooth: hci1: command 0x0419 tx timeout
[  269.872430][ T4259] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  269.882662][ T4259] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  269.890648][ T4259] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  269.899284][ T4265] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  269.907010][ T4265] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  269.914255][ T4259] Bluetooth: hci5: command 0x0409 tx timeout
[  269.928199][ T4259] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  271.991773][ T4261] Bluetooth: hci6: command 0x0409 tx timeout
[  271.998524][ T4261] Bluetooth: hci5: command 0x041b tx timeout
[  272.543685][ T6693] netlink: 8 bytes leftover after parsing attributes in process `syz.4.777'.
[  273.015508][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  273.034052][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  273.126261][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  273.166209][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  273.893161][ T6651] chnl_net:caif_netlink_parms(): no params data found
[  274.115461][ T4261] Bluetooth: hci5: command 0x040f tx timeout
[  274.121597][ T4261] Bluetooth: hci6: command 0x041b tx timeout
[  274.269059][ T4261] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  274.282762][ T4261] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  274.290719][ T4261] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  274.299225][ T4265] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  274.308019][ T4265] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  274.315819][ T4261] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  274.999905][ T6693] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  275.042467][ T6693] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  275.748890][ T6703] loop4: detected capacity change from 0 to 1024
[  275.839539][ T6703] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  276.012722][ T4260] EXT4-fs (loop4): unmounting filesystem.
[  276.159829][ T4259] Bluetooth: hci6: command 0x040f tx timeout
[  276.166223][ T4261] Bluetooth: hci5: command 0x0419 tx timeout
[  276.391914][ T4261] Bluetooth: hci2: command 0x0409 tx timeout
[  277.744246][ T6698] chnl_net:caif_netlink_parms(): no params data found
[  277.962841][ T6698] bridge0: port 1(bridge_slave_0) entered blocking state
[  277.971850][ T6698] bridge0: port 1(bridge_slave_0) entered disabled state
[  277.980265][ T6698] device bridge_slave_0 entered promiscuous mode
[  278.202113][ T6698] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.209254][ T6698] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.241806][ T4261] Bluetooth: hci6: command 0x0419 tx timeout
[  278.283346][ T6698] device bridge_slave_1 entered promiscuous mode
[  278.416517][ T6698] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  278.471715][ T4261] Bluetooth: hci2: command 0x041b tx timeout
[  278.492336][ T6698] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  278.640094][ T6698] team0: Port device team_slave_0 added
[  278.684311][ T6698] team0: Port device team_slave_1 added
[  278.808711][ T6698] batman_adv: batadv0: Adding interface: batadv_slave_0
[  278.830920][ T6698] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  278.947045][ T6698] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  279.095208][ T4448] device hsr_slave_0 left promiscuous mode
[  279.147841][ T4448] device hsr_slave_1 left promiscuous mode
[  279.194639][ T4448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  279.231639][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  279.291967][ T4448] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  279.299435][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_1
[  279.323514][ T6641] EXT4-fs (loop3): unmounting filesystem.
[  279.491863][ T4448] device veth1_macvtap left promiscuous mode
[  279.497954][ T4448] device veth0_macvtap left promiscuous mode
[  279.531863][ T4448] device veth1_vlan left promiscuous mode
[  279.537739][ T4448] device veth0_vlan left promiscuous mode
[  280.556852][ T4261] Bluetooth: hci2: command 0x040f tx timeout
[  281.704468][ T4448] team0 (unregistering): Port device team_slave_1 removed
[  281.892310][ T4448] team0 (unregistering): Port device team_slave_0 removed
[  282.020635][ T4448] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  282.238376][ T4448] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  282.632892][ T4261] Bluetooth: hci2: command 0x0419 tx timeout
[  284.010172][ T4448] bond0 (unregistering): Released all slaves
[  285.000440][ T6698] batman_adv: batadv0: Adding interface: batadv_slave_1
[  285.021287][ T6698] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  285.061609][ T6698] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  286.010438][ T6683] chnl_net:caif_netlink_parms(): no params data found
[  286.051868][ T6651] bridge0: port 1(bridge_slave_0) entered blocking state
[  286.058999][ T6651] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.086689][ T6651] device bridge_slave_0 entered promiscuous mode
[  286.124416][ T6651] bridge0: port 2(bridge_slave_1) entered blocking state
[  286.161156][ T6651] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.182931][ T6651] device bridge_slave_1 entered promiscuous mode
[  286.275804][ T6651] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  286.304543][ T6651] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  286.425951][ T6651] team0: Port device team_slave_0 added
[  286.464587][ T6651] team0: Port device team_slave_1 added
[  286.553689][ T6651] batman_adv: batadv0: Adding interface: batadv_slave_0
[  286.560670][ T6651] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.671399][ T6651] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  286.711689][ T6651] batman_adv: batadv0: Adding interface: batadv_slave_1
[  286.718672][ T6651] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.814342][ T6651] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  286.941715][ T6651] device hsr_slave_0 entered promiscuous mode
[  286.973795][ T6651] device hsr_slave_1 entered promiscuous mode
[  287.179069][ T4448] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.374831][ T4448] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.547302][ T4448] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.698945][ T4448] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.047077][ T6698] device hsr_slave_0 entered promiscuous mode
[  288.062506][ T6698] device hsr_slave_1 entered promiscuous mode
[  288.070793][ T6698] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  288.091709][ T6698] Cannot create hsr debugfs directory
[  288.567457][ T6683] bridge0: port 1(bridge_slave_0) entered blocking state
[  288.592474][ T6683] bridge0: port 1(bridge_slave_0) entered disabled state
[  288.641826][ T6683] device bridge_slave_0 entered promiscuous mode
[  288.730115][ T6683] bridge0: port 2(bridge_slave_1) entered blocking state
[  288.751837][ T6683] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.781895][ T6683] device bridge_slave_1 entered promiscuous mode
[  288.997804][ T6683] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  289.225927][ T6651] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.405398][ T6651] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.614844][ T6651] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.794317][ T6651] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.996954][ T6683] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  290.237753][ T6683] team0: Port device team_slave_0 added
[  290.264072][ T6690] chnl_net:caif_netlink_parms(): no params data found
[  290.302752][ T6683] team0: Port device team_slave_1 added
[  290.476064][ T6651] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  290.524793][ T6683] batman_adv: batadv0: Adding interface: batadv_slave_0
[  290.541539][ T6683] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  290.651535][ T6683] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  290.754382][ T6651] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  290.776072][ T6683] batman_adv: batadv0: Adding interface: batadv_slave_1
[  290.811558][ T6683] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  290.931806][ T6683] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  290.994584][ T6651] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  291.225827][ T6651] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  291.477735][ T6690] bridge0: port 1(bridge_slave_0) entered blocking state
[  291.493575][ T6690] bridge0: port 1(bridge_slave_0) entered disabled state
[  291.541910][ T6690] device bridge_slave_0 entered promiscuous mode
[  291.576952][ T6683] device hsr_slave_0 entered promiscuous mode
[  291.623948][ T6683] device hsr_slave_1 entered promiscuous mode
[  291.651276][ T6683] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  291.671862][ T6683] Cannot create hsr debugfs directory
[  291.679900][ T6698] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  291.728662][ T6690] bridge0: port 2(bridge_slave_1) entered blocking state
[  291.742027][ T6690] bridge0: port 2(bridge_slave_1) entered disabled state
[  291.781891][ T6690] device bridge_slave_1 entered promiscuous mode
[  291.853105][ T6698] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  291.982559][ T6698] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  292.013846][ T6690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  292.067184][ T6698] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  292.124917][ T6690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  292.480113][ T6690] team0: Port device team_slave_0 added
[  292.520818][ T6651] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.585021][ T6690] team0: Port device team_slave_1 added
[  292.674841][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  292.692368][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  292.740714][ T6651] 8021q: adding VLAN 0 to HW filter on device team0
[  292.833295][ T6690] batman_adv: batadv0: Adding interface: batadv_slave_0
[  292.840282][ T6690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  292.975200][ T6690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  293.092394][ T6690] batman_adv: batadv0: Adding interface: batadv_slave_1
[  293.099385][ T6690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  293.212250][ T6690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  293.252588][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  293.282680][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  293.322292][ T4460] bridge0: port 1(bridge_slave_0) entered blocking state
[  293.329452][ T4460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  293.382230][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  293.432687][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  293.481917][ T4460] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.489061][ T4460] bridge0: port 2(bridge_slave_1) entered forwarding state
[  293.532083][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  293.608125][ T6698] 8021q: adding VLAN 0 to HW filter on device bond0
[  293.660861][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  293.696677][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  293.735376][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  293.793994][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  293.833408][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  293.872343][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  294.163385][ T6698] 8021q: adding VLAN 0 to HW filter on device team0
[  294.185387][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  294.212957][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  294.252182][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  294.389337][ T6690] device hsr_slave_0 entered promiscuous mode
[  294.522722][ T6690] device hsr_slave_1 entered promiscuous mode
[  294.572952][ T6690] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  294.580567][ T6690] Cannot create hsr debugfs directory
[  294.632898][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  294.642876][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  294.703822][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  294.743107][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  294.777109][ T4474] bridge0: port 1(bridge_slave_0) entered blocking state
[  294.784283][ T4474] bridge0: port 1(bridge_slave_0) entered forwarding state
[  294.846683][ T6651] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  294.892989][ T6651] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  295.083084][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  295.112886][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  295.152298][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  295.183723][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  295.226015][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  295.284209][ T4474] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.291355][ T4474] bridge0: port 2(bridge_slave_1) entered forwarding state
[  295.332157][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  295.372698][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  296.042676][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  296.054500][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  296.092662][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  296.112155][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  296.160640][ T6698] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  296.191860][ T6698] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  296.532343][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  296.553635][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  296.595975][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  296.632805][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  296.654038][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  296.694243][ T6683] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  297.021954][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  297.030539][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  297.141940][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  297.180783][ T6683] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  297.201311][ T6651] 8021q: adding VLAN 0 to HW filter on device batadv0
[  297.502095][ T6683] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  297.563760][ T6683] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  298.155701][ T6698] 8021q: adding VLAN 0 to HW filter on device batadv0
[  298.203259][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  298.210991][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  299.598300][ T6683] 8021q: adding VLAN 0 to HW filter on device bond0
[  299.932686][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  299.962920][ T4468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  300.016356][ T6651] device veth0_vlan entered promiscuous mode
[  300.416984][ T6690] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  300.455618][ T6690] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  300.485663][ T6690] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  300.531335][ T6690] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  300.798323][ T6690] 8021q: adding VLAN 0 to HW filter on device bond0
[  300.874952][ T6690] 8021q: adding VLAN 0 to HW filter on device team0
[  300.993663][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  301.012032][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  301.020150][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  301.042721][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  301.069294][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  301.088848][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  301.122314][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  301.142203][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  301.176934][ T4460] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.184189][ T4460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  301.232214][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  301.262119][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  301.291978][ T4460] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.299146][ T4460] bridge0: port 2(bridge_slave_1) entered forwarding state
[  301.331963][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  301.363403][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  301.399320][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  301.433973][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  301.462436][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  301.492329][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  301.532379][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  301.562145][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  301.570690][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  301.602539][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  301.647330][ T6651] device veth1_vlan entered promiscuous mode
[  301.679453][ T6683] 8021q: adding VLAN 0 to HW filter on device team0
[  301.822719][ T6690] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  301.853056][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  301.863185][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  301.892480][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  301.923098][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  302.031083][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  302.043962][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  302.070159][ T4460] bridge0: port 1(bridge_slave_0) entered blocking state
[  302.077364][ T4460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  302.099607][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  302.112311][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  302.120970][ T4460] bridge0: port 2(bridge_slave_1) entered blocking state
[  302.128138][ T4460] bridge0: port 2(bridge_slave_1) entered forwarding state
[  302.183000][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  302.222473][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  302.272450][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  302.328306][ T6651] device veth0_macvtap entered promiscuous mode
[  302.652059][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  302.675960][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  302.726699][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  302.762593][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  302.835874][ T6651] device veth1_macvtap entered promiscuous mode
[  302.894249][ T6698] device veth0_vlan entered promiscuous mode
[  302.918279][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  302.932488][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  302.992885][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  303.022629][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  303.082839][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  303.106172][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  303.163095][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  303.222610][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  303.275436][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  303.342488][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  303.387324][ T6683] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  303.442897][ T6683] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  303.490848][ T6651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.532595][ T6651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.581668][ T6651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.641542][ T6651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.651425][ T6651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.731937][ T6651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.788868][ T6651] batman_adv: batadv0: Interface activated: batadv_slave_0
[  303.838847][ T6698] device veth1_vlan entered promiscuous mode
[  304.134151][ T4448] device hsr_slave_0 left promiscuous mode
[  304.182795][ T4448] device hsr_slave_1 left promiscuous mode
[  304.242505][ T4448] device hsr_slave_0 left promiscuous mode
[  304.252218][ T4448] device hsr_slave_1 left promiscuous mode
[  304.282079][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  304.305209][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_1
[  304.376358][ T4448] device bridge_slave_1 left promiscuous mode
[  304.392307][ T4448] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.401187][ T4448] device bridge_slave_0 left promiscuous mode
[  304.421821][ T4448] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.454873][ T4448] device bridge_slave_1 left promiscuous mode
[  304.461120][ T4448] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.552339][ T4448] device bridge_slave_0 left promiscuous mode
[  304.558612][ T4448] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.671674][ T4448] device hsr_slave_0 left promiscuous mode
[  304.682408][ T4448] device hsr_slave_1 left promiscuous mode
[  304.751994][ T4448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  304.759487][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  304.820333][ T4448] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  304.843568][ T4448] batman_adv: batadv0: Removing interface: batadv_slave_1
[  304.873191][ T4448] device bridge_slave_1 left promiscuous mode
[  304.879430][ T4448] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.953052][ T4448] device bridge_slave_0 left promiscuous mode
[  304.959330][ T4448] bridge0: port 1(bridge_slave_0) entered disabled state
[  312.005879][ T4448] device veth1_macvtap left promiscuous mode
[  312.012047][ T4448] device veth0_macvtap left promiscuous mode
[  312.018176][ T4448] device veth1_vlan left promiscuous mode
[  312.024058][ T4448] device veth0_vlan left promiscuous mode
[  314.003140][ T4448] device veth1_macvtap left promiscuous mode
[  314.010394][ T4448] device veth0_macvtap left promiscuous mode
[  314.016603][ T4448] device veth1_vlan left promiscuous mode
[  314.023298][ T4448] device veth0_vlan left promiscuous mode
[  317.082148][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  317.088482][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  318.542184][ T4259] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  318.552040][ T4259] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  318.567629][ T4265] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  318.575755][ T4259] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  318.591658][ T4265] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  318.599980][ T4265] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  318.754630][ T4448] bond0 (unregistering): Released all slaves
[  319.412145][ T4448] team0 (unregistering): Port device team_slave_1 removed
[  319.525213][ T4448] team0 (unregistering): Port device team_slave_0 removed
[  319.709210][ T4448] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  319.892894][ T4448] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  320.641860][ T4261] Bluetooth: hci0: command 0x0409 tx timeout
[  321.315414][ T4448] bond0 (unregistering): Released all slaves
[  321.769355][ T4448] bond0 (unregistering): Released all slaves
[  322.711672][ T4261] Bluetooth: hci0: command 0x041b tx timeout
[  323.393156][ T4448] team0 (unregistering): Port device team_slave_1 removed
[  323.601691][ T4448] team0 (unregistering): Port device team_slave_0 removed
[  323.772262][ T4448] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  323.943902][ T4448] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  324.791709][ T4261] Bluetooth: hci0: command 0x040f tx timeout
[  325.853703][ T4448] bond0 (unregistering): Released all slaves
[  326.207219][ T4259] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  326.217272][ T4259] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  326.225497][ T4265] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  326.234158][ T4265] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  326.242082][ T4265] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  326.249346][ T4265] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  326.871657][ T4261] Bluetooth: hci0: command 0x0419 tx timeout
[  327.011808][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  327.019948][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  327.042178][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  327.050936][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  327.078703][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  327.098907][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  327.121428][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  327.162629][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  327.183516][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  327.191047][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  327.382153][ T6698] device veth0_macvtap entered promiscuous mode
[  327.452329][ T6698] device veth1_macvtap entered promiscuous mode
[  327.581746][ T6698] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  327.662274][ T6698] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  327.731566][ T6698] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  327.791689][ T6698] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  327.861631][ T6698] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  327.931533][ T6698] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  327.994475][ T6698] batman_adv: batadv0: Interface activated: batadv_slave_0
[  328.007712][ T6690] 8021q: adding VLAN 0 to HW filter on device batadv0
[  328.053702][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  328.072596][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  328.081288][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  328.282282][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  328.311809][ T4261] Bluetooth: hci7: command 0x0409 tx timeout
[  328.352179][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  329.003225][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  329.594426][ T6698] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.621770][ T6698] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.701778][ T6698] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.791553][ T6698] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.874739][ T6698] batman_adv: batadv0: Interface activated: batadv_slave_1
[  329.925963][ T6866] chnl_net:caif_netlink_parms(): no params data found
[  329.987162][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  330.002647][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  330.254289][ T6698] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  330.281786][ T6698] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  330.290535][ T6698] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  330.399971][ T4261] Bluetooth: hci7: command 0x041b tx timeout
[  330.406897][ T6698] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  330.924102][ T4454] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  330.952717][ T4454] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  331.038853][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  331.182814][ T4265] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  331.193866][ T4265] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  331.207334][ T4265] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  331.232969][ T4259] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  331.240751][ T4259] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  331.248560][ T4265] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  331.372250][ T4460] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  331.380335][ T4460] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  331.527050][ T4454] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  331.985142][ T6866] bridge0: port 1(bridge_slave_0) entered blocking state
[  332.031351][ T6866] bridge0: port 1(bridge_slave_0) entered disabled state
[  332.076240][ T6866] device bridge_slave_0 entered promiscuous mode
[  332.286721][ T6866] bridge0: port 2(bridge_slave_1) entered blocking state
[  332.307616][ T6866] bridge0: port 2(bridge_slave_1) entered disabled state
[  332.364402][ T6866] device bridge_slave_1 entered promiscuous mode
[  332.471925][ T4259] Bluetooth: hci7: command 0x040f tx timeout
[  332.655473][ T6866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  332.764233][ T6866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  333.077635][ T6871] chnl_net:caif_netlink_parms(): no params data found
[  333.104799][ T6866] team0: Port device team_slave_0 added
[  333.219466][ T6866] team0: Port device team_slave_1 added
[  333.272569][ T4259] Bluetooth: hci1: command 0x0409 tx timeout
[  333.555850][ T6866] batman_adv: batadv0: Adding interface: batadv_slave_0
[  333.582215][ T6866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  333.700632][ T6866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  333.767407][ T6894] chnl_net:caif_netlink_parms(): no params data found
[  333.879501][ T6866] batman_adv: batadv0: Adding interface: batadv_slave_1
[  333.888966][ T6866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  333.994978][ T6866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  334.089185][ T6871] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.118327][ T6871] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.181006][ T6871] device bridge_slave_0 entered promiscuous mode
[  334.227724][ T6871] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.271031][ T6871] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.318190][ T6871] device bridge_slave_1 entered promiscuous mode
[  334.479666][ T6871] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  334.533752][ T6871] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  334.560163][ T4259] Bluetooth: hci7: command 0x0419 tx timeout
[  334.727367][ T6871] team0: Port device team_slave_0 added
[  334.757468][ T6871] team0: Port device team_slave_1 added
[  334.859058][ T6871] batman_adv: batadv0: Adding interface: batadv_slave_0
[  334.881675][ T6871] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  334.974244][ T6871] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  335.355403][ T4259] Bluetooth: hci1: command 0x041b tx timeout
[  335.593344][   T28] INFO: task syz.0.652:6276 blocked for more than 145 seconds.
[  335.621338][   T28]       Not tainted 6.1.119-syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  335.640185][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  335.686976][   T28] task:syz.0.652       state:D stack:26504 pid:6276  ppid:4258   flags:0x00004004
[  335.819218][   T28] Call Trace:
[  335.841709][   T28]  <TASK>
[  335.844713][   T28]  __schedule+0x143f/0x4570
[  335.931073][   T28]  ? release_firmware_map_entry+0x186/0x186
[  335.959284][   T28]  ? print_irqtrace_events+0x210/0x210
[  335.991710][   T28]  ? _raw_spin_lock_irq+0xdb/0x110
[  336.001987][   T28]  ? rwsem_spin_on_owner+0x157/0x2e0
[  336.007340][   T28]  schedule+0xbf/0x180
[  336.011441][   T28]  rwsem_down_write_slowpath+0xea1/0x14b0
[  336.037485][   T28]  ? rwsem_down_write_slowpath+0x9e3/0x14b0
[  336.056536][   T28]  ? down_write_killable_nested+0x90/0x90
[  336.069234][   T28]  ? read_lock_is_recursive+0x10/0x10
[  336.081685][   T28]  ? rwsem_write_trylock+0x166/0x210
[  336.087031][   T28]  ? clear_nonspinnable+0x60/0x60
[  336.101630][   T28]  ext4_fallocate+0x141/0x2190
[  336.106456][   T28]  ? rcu_read_lock_any_held+0xb3/0x160
[  336.142901][   T28]  ? end_current_label_crit_section+0x147/0x170
[  336.149222][   T28]  ? ext4_ext_truncate+0x360/0x360
[  336.181676][   T28]  vfs_fallocate+0x547/0x6b0
[  336.186350][   T28]  do_vfs_ioctl+0x222c/0x2a90
[  336.191054][   T28]  ? __x64_compat_sys_ioctl+0x80/0x80
[  336.239316][   T28]  ? __lock_acquire+0x1f80/0x1f80
[  336.252770][   T28]  ? lockdep_hardirqs_on+0x94/0x130
[  336.271642][   T28]  ? tomoyo_path_number_perm+0x61b/0x7f0
[  336.277436][   T28]  ? tomoyo_path_number_perm+0x68a/0x7f0
[  336.311715][   T28]  ? tomoyo_path_number_perm+0x1f2/0x7f0
[  336.317420][   T28]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  336.331603][   T28]  ? __fget_files+0x28/0x4a0
[  336.336264][   T28]  ? __fget_files+0x28/0x4a0
[  336.340900][   T28]  ? __fget_files+0x435/0x4a0
[  336.392573][   T28]  ? __fget_files+0x28/0x4a0
[  336.397246][   T28]  ? bpf_lsm_file_ioctl+0x5/0x10
[  336.411592][   T28]  ? security_file_ioctl+0x7d/0xa0
[  336.416768][   T28]  __se_sys_ioctl+0x81/0x160
[  336.421429][   T28]  do_syscall_64+0x3b/0xb0
[  336.460336][   T28]  ? clear_bhb_loop+0x45/0xa0
[  336.481710][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  336.487691][   T28] RIP: 0033:0x7fc5c8f7e819
[  336.521606][   T28] RSP: 002b:00007fc5c9d82038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  336.530091][   T28] RAX: ffffffffffffffda RBX: 00007fc5c9136240 RCX: 00007fc5c8f7e819
[  336.572405][   T28] RDX: 00000000200000c0 RSI: 0000000040305829 RDI: 0000000000000004
[  336.580435][   T28] RBP: 00007fc5c8ff175e R08: 0000000000000000 R09: 0000000000000000
[  336.640449][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  336.651600][   T28] R13: 0000000000000000 R14: 00007fc5c9136240 R15: 00007ffd46ea1518
[  336.659632][   T28]  </TASK>
[  336.701827][   T28] 
[  336.701827][   T28] Showing all locks held in the system:
[  336.709613][   T28] 1 lock held by rcu_tasks_kthre/12:
[  336.741690][   T28]  #0: ffffffff8d32b110 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  336.774272][   T28] 1 lock held by rcu_tasks_trace/13:
[  336.779621][   T28]  #0: ffffffff8d32b910 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  336.841603][   T28] 1 lock held by khungtaskd/28:
[  336.846513][   T28]  #0: ffffffff8d32af40 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[  336.881648][   T28] 1 lock held by dhcpcd/3916:
[  336.886373][   T28]  #0: ffffffff8e4fb868 (rtnl_mutex){+.+.}-{3:3}, at: __netlink_dump_start+0x12e/0x6c0
[  336.929116][   T28] 2 locks held by getty/4014:
[  336.952622][   T28]  #0: ffff888031175098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[  336.972566][   T28]  #1: ffffc900032462f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0
[  337.027587][   T28] 2 locks held by kworker/1:3/4240:
[  337.033022][   T28]  #0: ffff888017c72138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  337.101584][   T28]  #1: ffffc90003c6fd20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  337.161769][   T28] 3 locks held by kworker/0:4/4294:
[  337.167030][   T28] 3 locks held by kworker/0:7/4328:
[  337.201582][   T28] 5 locks held by kworker/u4:12/4448:
[  337.207055][   T28]  #0: ffff888017e16938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  337.246873][   T28]  #1: ffffc900044bfd20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  337.279469][   T28]  #2: ffffffff8e4ef4d0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xf1/0xb60
[  337.311546][   T28]  #3: ffff888077b693e8 (&wg->device_update_lock){+.+.}-{3:3}, at: wg_destruct+0x10c/0x2f0
[  337.341598][   T28]  #4: ffffffff8d330538 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x4f0/0x930
[  337.382119][   T28] 3 locks held by kworker/u4:15/4460:
[  337.387551][   T28] 3 locks held by kworker/u4:22/4474:
[  337.421604][   T28]  #0: ffff888017c79138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  337.433303][ T4259] Bluetooth: hci1: command 0x040f tx timeout
[  337.466901][   T28]  #1: ffffc90004c37d20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  337.501805][   T28]  #2: ffffffff8e4fb868 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xa/0x50
[  337.510885][   T28] 4 locks held by syz.0.652/6275:
[  337.551522][   T28] 2 locks held by syz.0.652/6276:
[  337.556630][   T28]  #0: ffff888029ca6460 (sb_writers#4){.+.+}-{0:0}, at: vfs_fallocate+0x4ba/0x6b0
[  337.601686][   T28]  #1: ffff8880558a4a38 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_fallocate+0x141/0x2190
[  337.641760][   T28] 3 locks held by ext4lazyinit/6248:
[  337.647105][   T28] 1 lock held by syz-executor/6651:
[  337.680086][   T28]  #0: ffffffff8e4fb868 (rtnl_mutex){+.+.}-{3:3}, at: netdev_run_todo+0x739/0xf40
[  337.721720][   T28] 1 lock held by syz-executor/6871:
[  337.726991][   T28]  #0: ffffffff8e4fb868 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  337.761625][   T28] 2 locks held by syz.4.784/6931:
[  337.766700][   T28]  #0: ffffffff8e4fb868 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  337.811871][   T28]  #1: ffffffff8d330538 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x930
[  337.904154][   T28] 
[  337.906545][   T28] =============================================
[  337.906545][   T28] 
[  338.002649][   T28] NMI backtrace for cpu 0
[  338.007031][   T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.119-syzkaller #0
[  338.014949][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  338.025029][   T28] Call Trace:
[  338.028312][   T28]  <TASK>
[  338.031248][   T28]  dump_stack_lvl+0x1e3/0x2cb
[  338.035939][   T28]  ? nf_tcp_handle_invalid+0x642/0x642
[  338.041401][   T28]  ? panic+0x764/0x764
[  338.045468][   T28]  ? vprintk_emit+0x622/0x740
[  338.050155][   T28]  ? printk_sprint+0x490/0x490
[  338.054935][   T28]  ? nmi_cpu_backtrace+0x252/0x560
[  338.060056][   T28]  nmi_cpu_backtrace+0x4e1/0x560
[  338.065002][   T28]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  338.071174][   T28]  ? _printk+0xd1/0x111
[  338.075346][   T28]  ? panic+0x764/0x764
[  338.079427][   T28]  ? __wake_up_klogd+0xcc/0x100
[  338.084290][   T28]  ? panic+0x764/0x764
[  338.088370][   T28]  ? nmi_trigger_cpumask_backtrace+0xe0/0x3f0
[  338.094444][   T28]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  338.100514][   T28]  nmi_trigger_cpumask_backtrace+0x1ae/0x3f0
[  338.106504][   T28]  watchdog+0xf88/0xfd0
[  338.110674][   T28]  ? watchdog+0x1f8/0xfd0
[  338.115038][   T28]  kthread+0x28d/0x320
[  338.119123][   T28]  ? hungtask_pm_notify+0x50/0x50
[  338.124163][   T28]  ? kthread_blkcg+0xd0/0xd0
[  338.128767][   T28]  ret_from_fork+0x1f/0x30
[  338.133211][   T28]  </TASK>
[  338.136486][   T28] Sending NMI from CPU 0 to CPUs 1:
[  338.141758][    C1] NMI backtrace for cpu 1
[  338.141775][    C1] CPU: 1 PID: 47 Comm: kworker/u4:3 Not tainted 6.1.119-syzkaller #0
[  338.141792][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  338.141803][    C1] Workqueue: events_unbound nsim_dev_trap_report_work
[  338.141833][    C1] RIP: 0010:mark_lock+0x105/0x340
[  338.141861][    C1] Code: 50 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 6e 12 77 00 41 bc 01 00 00 00 44 85 33 74 53 44 89 e0 48 83 c4 10 5b <41> 5c 41 5d 41 5e 41 5f 5d c3 e8 ec c2 cb 02 85 c0 74 be 48 c7 c0
[  338.141879][    C1] RSP: 0018:ffffc90000b87930 EFLAGS: 00000086
[  338.141892][    C1] RAX: 0000000000000001 RBX: ffff88801de86420 RCX: ffffffff816b124a
[  338.141904][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff91231270
[  338.141914][    C1] RBP: 0000000000000006 R08: dffffc0000000000 R09: fffffbfff224624f
[  338.141926][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001
[  338.141942][    C1] R13: dffffc0000000000 R14: 0000000000000040 R15: ffff88801de86420
[  338.141954][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  338.141968][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  338.141980][    C1] CR2: 00007f7624f5a866 CR3: 0000000018bc3000 CR4: 00000000003506e0
[  338.141994][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  338.142004][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  338.142014][    C1] Call Trace:
[  338.142019][    C1]  <NMI>
[  338.142024][    C1]  ? nmi_cpu_backtrace+0x3de/0x560
[  338.142042][    C1]  ? read_lock_is_recursive+0x10/0x10
[  338.142068][    C1]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  338.142093][    C1]  ? nmi_cpu_backtrace_handler+0x8/0x10
[  338.142108][    C1]  ? nmi_handle+0x12e/0x440
[  338.142134][    C1]  ? nmi_handle+0x25/0x440
[  338.142158][    C1]  ? mark_lock+0x105/0x340
[  338.142182][    C1]  ? default_do_nmi+0x62/0x150
[  338.142201][    C1]  ? exc_nmi+0xa8/0x100
[  338.142218][    C1]  ? end_repeat_nmi+0x16/0x31
[  338.142236][    C1]  ? mark_lock+0x9a/0x340
[  338.142260][    C1]  ? mark_lock+0x105/0x340
[  338.142285][    C1]  ? mark_lock+0x105/0x340
[  338.142310][    C1]  ? mark_lock+0x105/0x340
[  338.142334][    C1]  </NMI>
[  338.142338][    C1]  <TASK>
[  338.142344][    C1]  lockdep_hardirqs_on_prepare+0x3a0/0x7a0
[  338.142371][    C1]  ? print_irqtrace_events+0x210/0x210
[  338.142398][    C1]  trace_hardirqs_on+0x34/0x40
[  338.142422][    C1]  ___slab_alloc+0x1074/0x1270
[  338.142446][    C1]  ? __alloc_skb+0xde/0x670
[  338.142474][    C1]  kmem_cache_alloc_node+0x1cf/0x310
[  338.142494][    C1]  ? __alloc_skb+0xde/0x670
[  338.142520][    C1]  __alloc_skb+0xde/0x670
[  338.142544][    C1]  ? nsim_dev_trap_report_work+0x75d/0xab0
[  338.142570][    C1]  nsim_dev_trap_report_work+0x24c/0xab0
[  338.142601][    C1]  ? process_one_work+0x7a9/0x11d0
[  338.142620][    C1]  process_one_work+0x8a9/0x11d0
[  338.142645][    C1]  ? worker_detach_from_pool+0x260/0x260
[  338.142666][    C1]  ? _raw_spin_lock_irqsave+0x120/0x120
[  338.142688][    C1]  ? kthread_data+0x4e/0xc0
[  338.142719][    C1]  ? wq_worker_running+0x97/0x190
[  338.142736][    C1]  worker_thread+0xa47/0x1200
[  338.142757][    C1]  ? release_firmware_map_entry+0x186/0x186
[  338.142781][    C1]  kthread+0x28d/0x320
[  338.142794][    C1]  ? worker_clr_flags+0x190/0x190
[  338.142813][    C1]  ? kthread_blkcg+0xd0/0xd0
[  338.142828][    C1]  ret_from_fork+0x1f/0x30
[  338.142856][    C1]  </TASK>
[  338.541773][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[  338.548669][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.119-syzkaller #0
[  338.556577][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  338.566836][   T28] Call Trace:
[  338.570158][   T28]  <TASK>
[  338.573102][   T28]  dump_stack_lvl+0x1e3/0x2cb
[  338.577806][   T28]  ? nf_tcp_handle_invalid+0x642/0x642
[  338.583289][   T28]  ? panic+0x764/0x764
[  338.587387][   T28]  ? vscnprintf+0x59/0x80
[  338.591743][   T28]  panic+0x318/0x764
[  338.595661][   T28]  ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0
[  338.601836][   T28]  ? memcpy_page_flushcache+0xfc/0xfc
[  338.607233][   T28]  ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0
[  338.613408][   T28]  ? nmi_trigger_cpumask_backtrace+0x338/0x3f0
[  338.619581][   T28]  ? nmi_trigger_cpumask_backtrace+0x33d/0x3f0
[  338.625753][   T28]  watchdog+0xfc7/0xfd0
[  338.629999][   T28]  ? watchdog+0x1f8/0xfd0
[  338.634383][   T28]  kthread+0x28d/0x320
[  338.638506][   T28]  ? hungtask_pm_notify+0x50/0x50
[  338.643557][   T28]  ? kthread_blkcg+0xd0/0xd0
[  338.648273][   T28]  ret_from_fork+0x1f/0x30
[  338.652760][   T28]  </TASK>
[  338.656110][   T28] Kernel Offset: disabled
[  338.660446][   T28] Rebooting in 86400 seconds..