last executing test programs:

10.915690496s ago: executing program 3 (id=3449):
getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r3, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback, 0x8004}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)
sendmsg$TIPC_NL_KEY_FLUSH(r0, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000740)={0x3e0, r3, 0x0, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x7c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xa4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xf8}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2000000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x406a}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}]}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xffff}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xb0}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xf5b}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7f}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}]}, @TIPC_NLA_LINK={0xcc, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffff800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_NODE={0x14, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x8}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x100}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x52c3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xafa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_BEARER={0x17c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @private=0xa010102}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x2, @private1, 0x10001}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @private=0xa010101}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x600, @local, 0x4}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @local}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0xb30, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xfffffffc}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x0, @loopback, 0xfffffffa}}, {0x14, 0x2, @in={0x2, 0x4e23, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0x8, 0x1, @l2={'ib', 0x3a, '\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x7, @mcast1, 0x200}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0xfffffff9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x80000000}}}}]}]}, 0x3e0}, 0x1, 0x0, 0x0, 0x20008000}, 0x4044000)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
write$binfmt_misc(r5, &(0x7f0000000200)="9694d07d11b96ed9c1a40439267a96959820afdeb863be12ba63ddf0c2eae6e91cab1d70004a366eda85c6f848363e6f21afa0bb346cad197bb72ce29b40333914e8a885f38f2befab18f92038ca23aacb045d9b55c1e24c7b8467798f616b09d56628853535016687b9920e22b8e01c16b703d929ff60b96e9212d149128dc978e2d16845f4c08a43e3fe44d96087485a502e6df6f3248c", 0x98)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

10.192050956s ago: executing program 3 (id=3457):
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000040)={0x0, 0x0, "d607f8f9951e76c13f64323723e7eecdf40c363423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f001d34c09f39c3539e4f8d3ee0878ae95bc7f52363c468b257ff3e24852548deb01efd54f11ed2c41d078b9cf1fc8f72566153c97e4af37017ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3b90400000000000000c279f03558083906666827d61dcc3a633bffff250b5a293e3877adc1660edbc9a0307a25720a170e7f5670e419dc44febf7ddc73fd4a5a0b6c28665f7f46c7084e17c809268103a2584ab40a68e528329d97afc3612e325c1eb4a3ab2e156a97444800", "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"})
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, 0x0, &(0x7f00000001c0))

10.010956254s ago: executing program 3 (id=3458):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
getrlimit(0x5, &(0x7f00000000c0))

9.946157547s ago: executing program 3 (id=3461):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr=' \x01\x00'}, 0x1c)

9.670008248s ago: executing program 3 (id=3463):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
semctl$SEM_STAT_ANY(0xffffffffffffffff, 0x0, 0x14, 0x0)

9.455017957s ago: executing program 3 (id=3466):
getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r3, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback, 0x8004}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)
sendmsg$TIPC_NL_KEY_FLUSH(r0, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000740)={0x3e0, r3, 0x0, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x7c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xa4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xf8}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2000000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x406a}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}]}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xffff}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xb0}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xf5b}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7f}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}]}, @TIPC_NLA_LINK={0xcc, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffff800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_NODE={0x14, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x8}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x100}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x52c3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xafa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_BEARER={0x17c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @private=0xa010102}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x2, @private1, 0x10001}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @private=0xa010101}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x600, @local, 0x4}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @local}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0xb30, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xfffffffc}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x0, @loopback, 0xfffffffa}}, {0x14, 0x2, @in={0x2, 0x4e23, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0x8, 0x1, @l2={'ib', 0x3a, '\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x7, @mcast1, 0x200}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0xfffffff9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x80000000}}}}]}]}, 0x3e0}, 0x1, 0x0, 0x0, 0x20008000}, 0x4044000)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
write$binfmt_misc(r5, &(0x7f0000000200)="9694d07d11b96ed9c1a40439267a96959820afdeb863be12ba63ddf0c2eae6e91cab1d70004a366eda85c6f848363e6f21afa0bb346cad197bb72ce29b40333914e8a885f38f2befab18f92038ca23aacb045d9b55c1e24c7b8467798f616b09d56628853535016687b9920e22b8e01c16b703d929ff60b96e9212d149128dc978e2d16845f4c08a43e3fe44d96087485a502e6df6f3248c", 0x98)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

4.82259454s ago: executing program 2 (id=3497):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0xfffffffffffffe3c, 0x0, 0x40f00, 0xaf, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0)
syz_usb_connect(0x2, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e7400090598ff7f0000100109050b", @ANYBLOB='\":'], 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)=@generic={&(0x7f0000000000)='\x00', 0x0, 0x4}, 0x18)

3.122428981s ago: executing program 1 (id=3499):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {0x7, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x328}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)

1.69364165s ago: executing program 1 (id=3500):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r2, 0x0, r4, 0x0, 0x4, 0x4)
close(r3)

1.246261379s ago: executing program 1 (id=3502):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x64}, 0x1, 0x0, 0x0, 0xc}, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000001200)=0x8a4, 0x4)
statx(0xffffffffffffffff, &(0x7f0000000c80)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0/file0\x00', 0x6000, 0x10, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_mreq(r3, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaffff7fc881e21f01a31dffffffff08004500001c000000008002907816000000e0000300"], 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x40000, {0x0, 0x0, 0x0, r6, {}, {}, {0xff2f6bda18e72c12, 0xfff3}}}, 0x24}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r4, 0x0, 0xd2, &(0x7f0000000200)={@empty, @multicast2=0xe0000300, 0x0, "028a3f6c58b274e6d8451697efe42811ee1df06e9264f7d866b1970548fc3c7b", 0xb2, 0xfffffff7, 0x4, 0x40000006}, 0x3c)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bbr', 0x3)
syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f0000000140)='./file0\x00', 0x54411c7e488645be, &(0x7f0000000580)={[{@resgid}, {@nogrpid}, {@commit={'commit', 0x3d, 0x9c}}, {@nojournal_checksum}, {@dax_never}, {}, {@dax}]}, 0x1, 0x53d, &(0x7f0000001740)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000002480)=ANY=[@ANYRESDEC=r3, @ANYRESOCT=0x0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095", @ANYBLOB="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", @ANYBLOB="768976bf1fe92a974d902f0ef684ceaab37d93fea405d464add6222e0217f25fa94b0a5ff2661425359e046a226a65c7d4541736acaf0ff98dfdcb1b37b3954097c4d9bf96e8133cc9dcd03edf6e148423d7cc99e328112ffd023549c6a830be7686cea8d2b7652cf2af424f8e6ff8cd92ad33bdd1e5a03d6762f543b9c7903c611a1c7dea36f17c7018f4630e63ce5d25b1dd9fdabb68f62f5cca21220252655bbee8203aaf214c730ab6f5b15bc0572e788db9745aa591f39e976e38771f043e12902c4e1cd3180aea478a9c55394bef829eba83128361a7689804102fd4f88135"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001940), 0x100000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r8, 0xc0189374, &(0x7f0000001980)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x5}}, './file0\x00'})
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

1.090488355s ago: executing program 2 (id=3504):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x404c885)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xaf)

1.038485628s ago: executing program 0 (id=3505):
r0 = syz_io_uring_setup(0x4172, &(0x7f00000002c0)={0x0, 0x2, 0x10100, 0x0, 0x4}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd, 0x0, &(0x7f0000000080)=[{0x0}], 0x1})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6gre0\x00', 0x210})
io_uring_enter(r0, 0x567, 0x0, 0x0, 0x0, 0x0)

972.26878ms ago: executing program 0 (id=3506):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a61", 0x64}, {&(0x7f0000000300)='V', 0xffffff6c}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0xfffffec0}], 0x4, 0x0, 0x0, 0x8000}, 0x0)
dup2(r2, r1)
setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmmsg(r1, &(0x7f0000000640)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x5, 0x200000d1)

945.831752ms ago: executing program 2 (id=3507):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000008000000080009000200000008000b"], 0x24}}, 0x0)

750.460519ms ago: executing program 0 (id=3508):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000180)="08003b117c507fe075", 0x9}, {0x0}], 0x2}, 0x80)

662.351223ms ago: executing program 0 (id=3509):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f00000000c0)={0x200000, 0x200000, 0x200, 0x0, 0x0, 0xfffffffe})
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)

575.062237ms ago: executing program 0 (id=3510):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r0, 0x4)
socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x40000000000, 0x3, 0x4, 0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x4, 0x0, 0x9, 0x0, 0x0, 0x1f, 0x7fffffff}, 0x0, 0x0)
close(0x4)

398.296774ms ago: executing program 2 (id=3511):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff3, 0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x200a, 0x6, 0x9}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r4, {}, {0x2, 0xb}, {0x9, 0xb}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0xad7}}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c0e1}, 0x4008000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r5 = socket$netlink(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f00000002c0), r5)
sendmsg$nl_route_sched(r5, 0x0, 0x40004)

375.489395ms ago: executing program 0 (id=3512):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000480)=[{{&(0x7f0000000500)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000080)="e6", 0x1}], 0x1}}], 0x1, 0x24040890)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000280)=0xffff0000, 0x4)

314.332818ms ago: executing program 1 (id=3513):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000800)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
fadvise64(0xffffffffffffffff, 0x2, 0x4, 0x1)

266.31805ms ago: executing program 2 (id=3514):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0x2}, 0x50)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x627, 0x4c1, 0x43, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
syz_open_dev$sg(0x0, 0x8, 0x40000)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xd, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000000000000b7040000000000008500000033000000850000001100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x85}, 0x0, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r3, 0xf503, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x6000, @fd_index, 0x80000001, 0x0, 0x0, 0x0, 0x1})
read(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r4, 0x2000012, 0xe, 0x0, &(0x7f0000000280)="63ec33c9e9b98600000000000000", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)
syz_open_dev$usbfs(&(0x7f0000000240), 0x8, 0x105301)

134.401105ms ago: executing program 1 (id=3515):
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000a40)={0xa, 0x4e02, 0x7ffe, @remote, 0x9}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x9511, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

119.892056ms ago: executing program 2 (id=3516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$eJzs281rHOUfAPDvTF7a/vqS/Gp9aa0aLUJQTJq0ag9eFAWRioIe6jEm2xK6baSJYmuxqYgnQQp6Fo+if4E3EUQ9CV49eZJC0V7aeorM7Ey72WYTYzadmP18YHafZ+bZnee7z7w8+zy7AXStoewhidgREb9GxEAju7jAUOPp+tXzkzeunp9MYmHhtT+SvNy1q+cny6Ll67YXmeE0Iv0wKXay2OzZcycn6vXamSI/OnfqrdHZs+eeeOfUxInaidrp8SNHDh8ae/qp8Sc7EmcW17V978/s3/viG5denjx26c0fv87qu6PY3hxHpwxlgf+5kGvd9mind1axnU3ppLfCirAqPRGRNVdffv4PRE/caryBeOGDSisHrKvs3rSl/eb5BWATS6LqGgDVKG/02fffcrlDXY8N4cqzjS9AWdzXi6WxpTfSokxfy/fbThqKiGPzf32eLbFO4xAAAM0+nvzsaH9EvHfjq5eyvsdARJTjQffkj7/lj7uKOZTBiPh/ROyOiLsiYk9E3F2UvTci7ltjfW7v/6SX1/iWy8r6f88Uc1uL+39l7y8Ge4rczjz+vuT4dL12sPhMhqNvS5YfW2Yf3z7/yyfttjX3/7Il23/ZFyzqcbm3ZYBuamJuIu+UdsCVixH7epeKP7k5E5BExN6I2Le6t95VJqYf+3J/u0Irx7+MDswzLXyRhTefxT8fLfGXkub5yenb5idHt0a9dnC0PCpu99PPH73abv9rir8DrtQaz03t31pkMGmer53t7P7/5fGf9iev5/PM/cW6dyfm5s6MRfQnR/P8ovXjt15b5svy2fE/fGDp83938Zos/vsjIjuIH4iIByPioaLuD0fEIxFxYJkYf3hu5fgjraj9L0ZMLXn9u3n8t7T/6hM9J7//pt3+/1n7H85Tw8Wa/Pq3gqWqk10uWiu4ls8OAAAA/ivS/DfwSTpyM52mIyON3/Dvif+l9ZnZucePz7x9eqrxW/nB6EvLka6BYjy0Pl2vjSXzxTs2xkfHi7Hicrz0UDFu/GnPtjw/MjlTn6o4duh229uc/5nfe6quHbDOti25drz/jlcEqEDrPHq6OHvhlXAxgM3K/7Whe61w/jf/DwbYZNz/oXstdf5faMmbC4DNyf0fupfzH7pU+l3VNQAq5P4PXWkt/+tfx8TWjVGNahIbtVHyRESZSDdEfSTWKVH1lQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKAz/g4AAP//K2Lmiw==")

0s ago: executing program 1 (id=3517):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f00000000c0), &(0x7f0000000240)=0x30)

kernel console output (not intermixed with test programs):

6.054408][T13204] loop3: detected capacity change from 0 to 512
[  456.067338][T13206] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2703'.
[  456.117370][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.245638][T13212] lo: entered allmulticast mode
[  456.338902][T13216] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2704'.
[  456.373223][T13217] loop2: detected capacity change from 0 to 512
[  456.790069][T13199] lo: left allmulticast mode
[  457.095661][T13211] lo: left allmulticast mode
[  457.184638][T13233] loop3: detected capacity change from 0 to 512
[  457.202567][T13233] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  457.259570][T13233] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  457.275591][T13233] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.2713: Corrupt directory, running e2fsck is recommended
[  457.289779][T13233] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  457.304829][T13233] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2249: inode #15: comm syz.3.2713: corrupted in-inode xattr: invalid ea_ino
[  457.335677][T13233] EXT4-fs (loop3): Remounting filesystem read-only
[  457.361334][T13233] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  457.880546][T13245] loop1: detected capacity change from 0 to 512
[  458.061654][T13245] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  458.132926][T13245] EXT4-fs (loop1): 1 truncate cleaned up
[  458.145798][T13245] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  458.239116][T13244] EXT4-fs (loop1): resizing filesystem from 256 to 2 blocks
[  458.246665][T13244] EXT4-fs warning (device loop1): ext4_resize_fs:2048: can't shrink FS - resize aborted
[  458.287571][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.516281][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.542606][T13252] lo: entered allmulticast mode
[  458.608066][T13256] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2718'.
[  458.638828][T13257] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2722'.
[  458.644967][T13256] loop3: detected capacity change from 0 to 512
[  458.771500][   T28] kauditd_printk_skb: 30 callbacks suppressed
[  458.789380][   T28] audit: type=1326 audit(1764296350.687:3428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13261 comm="syz.1.2724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  458.817278][   T28] audit: type=1326 audit(1764296350.687:3429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13261 comm="syz.1.2724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  458.840846][   T28] audit: type=1326 audit(1764296350.687:3430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13261 comm="syz.1.2724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  458.869658][   T28] audit: type=1326 audit(1764296350.687:3431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13261 comm="syz.1.2724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  458.909452][   T28] audit: type=1326 audit(1764296350.687:3432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13261 comm="syz.1.2724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  458.953612][   T28] audit: type=1326 audit(1764296350.687:3433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13261 comm="syz.1.2724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  459.045008][T13268] loop1: detected capacity change from 0 to 512
[  459.073206][T13268] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  459.085392][T13268] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it
[  459.111342][T13268] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.2726: Corrupt directory, running e2fsck is recommended
[  459.126786][T13268] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  459.135908][T13268] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2249: inode #15: comm syz.1.2726: corrupted in-inode xattr: invalid ea_ino
[  459.155065][T13268] EXT4-fs (loop1): Remounting filesystem read-only
[  459.183407][T13268] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  459.241668][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.315823][T13251] lo: left allmulticast mode
[  459.663039][T13282] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2731'.
[  460.278877][T13289] loop3: detected capacity change from 0 to 512
[  460.440927][T13289] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  460.506192][T13289] EXT4-fs (loop3): 1 truncate cleaned up
[  460.518798][T13289] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  460.614226][T13288] EXT4-fs (loop3): resizing filesystem from 256 to 2 blocks
[  460.621844][T13288] EXT4-fs warning (device loop3): ext4_resize_fs:2048: can't shrink FS - resize aborted
[  460.707283][T13294] lo: entered allmulticast mode
[  460.766956][T13299] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2735'.
[  460.795095][T13299] loop1: detected capacity change from 0 to 512
[  460.917388][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.961957][T13302] lo: entered allmulticast mode
[  461.138344][T13308] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2738'.
[  461.191168][T13308] loop2: detected capacity change from 0 to 512
[  461.460815][T13321] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2743'.
[  461.508871][T13291] lo: left allmulticast mode
[  461.565606][T13323] syzkaller0: entered promiscuous mode
[  461.576382][T13323] syzkaller0: entered allmulticast mode
[  461.770804][T13301] lo: left allmulticast mode
[  462.095619][T13340] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2752'.
[  462.103255][   T28] audit: type=1326 audit(1764296354.017:3434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13338 comm="syz.2.2753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  462.136833][T11135] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  462.156640][   T28] audit: type=1326 audit(1764296354.047:3435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13338 comm="syz.2.2753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  462.181355][   T28] audit: type=1326 audit(1764296354.047:3436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13338 comm="syz.2.2753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  462.204966][   T28] audit: type=1326 audit(1764296354.047:3437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13338 comm="syz.2.2753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  462.270460][T13343] lo: entered allmulticast mode
[  462.299727][T13346] syzkaller0: entered promiscuous mode
[  462.311275][T13346] syzkaller0: entered allmulticast mode
[  462.338588][T13349] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2754'.
[  462.361089][T11135] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  462.385842][T11135] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.405500][T13349] loop2: detected capacity change from 0 to 512
[  462.415757][T11135] usb 2-1: Product: syz
[  462.425619][T11135] usb 2-1: Manufacturer: syz
[  462.441731][T11135] usb 2-1: SerialNumber: syz
[  462.457852][T11135] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  462.488078][ T5856] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  462.525543][T13352] lo: entered allmulticast mode
[  462.591711][T13356] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2757'.
[  462.643568][T13356] loop0: detected capacity change from 0 to 512
[  462.752781][T13330] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  462.782111][  T787] usb 2-1: USB disconnect, device number 7
[  463.109511][T13342] lo: left allmulticast mode
[  463.295936][T13351] lo: left allmulticast mode
[  463.528173][T13376] syzkaller0: entered promiscuous mode
[  463.533799][T13376] syzkaller0: entered allmulticast mode
[  463.589525][ T5856] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  463.610798][ T5856] ath9k_htc: Failed to initialize the device
[  463.635229][  T787] usb 2-1: ath9k_htc: USB layer deinitialized
[  463.771437][T13380] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.802814][T13387] lo: entered allmulticast mode
[  463.921229][T13380] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.926413][T13389] loop0: detected capacity change from 0 to 512
[  464.019886][T13387] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2771'.
[  464.077932][T13380] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.094627][T13399] lo: entered allmulticast mode
[  464.189843][T13380] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.233994][T13401] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2776'.
[  464.255844][T13399] loop1: detected capacity change from 0 to 512
[  464.262394][ T5890] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  464.332144][T13380] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  464.351352][T13380] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  464.366119][T13380] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  464.391794][T13380] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  464.463808][ T5890] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  464.467453][T13383] lo: left allmulticast mode
[  464.487167][ T5890] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  464.511098][ T5890] usb 3-1: Product: syz
[  464.521227][ T5890] usb 3-1: Manufacturer: syz
[  464.554034][ T5890] usb 3-1: SerialNumber: syz
[  464.573296][ T5890] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  464.607382][  T788] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  464.858247][T13397] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  464.872168][   T27] usb 3-1: USB disconnect, device number 7
[  464.884395][T13398] lo: left allmulticast mode
[  464.944470][T13417] syzkaller0: entered promiscuous mode
[  464.954804][T13417] syzkaller0: entered allmulticast mode
[  464.997346][T13417] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  465.486878][T13428] loop3: detected capacity change from 0 to 512
[  465.532866][T13428] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  465.578867][T13428] EXT4-fs (loop3): 1 truncate cleaned up
[  465.591901][T13428] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.632017][T13428] EXT4-fs (loop3): resizing filesystem from 256 to 2 blocks
[  465.639599][T13428] EXT4-fs warning (device loop3): ext4_resize_fs:2048: can't shrink FS - resize aborted
[  465.976649][  T788] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  465.983959][  T788] ath9k_htc: Failed to initialize the device
[  465.997955][T13429] lo: entered allmulticast mode
[  466.024439][   T27] usb 3-1: ath9k_htc: USB layer deinitialized
[  466.109903][T13429] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2787'.
[  466.151016][T13429] loop0: detected capacity change from 0 to 512
[  466.495563][T13425] lo: left allmulticast mode
[  466.553224][T13449] lo: entered allmulticast mode
[  466.613515][T13453] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2793'.
[  466.676432][T13453] loop2: detected capacity change from 0 to 512
[  466.810471][T13456] syzkaller0: entered promiscuous mode
[  466.816064][T13456] syzkaller0: entered allmulticast mode
[  466.849697][T13456] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  466.988230][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.384160][T13448] lo: left allmulticast mode
[  467.507628][T11135] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  467.595774][T13465] syz.2.2799[13465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  467.595924][T13465] syz.2.2799[13465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  467.596688][   T28] kauditd_printk_skb: 22 callbacks suppressed
[  467.596702][   T28] audit: type=1326 audit(1764296359.497:3460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  467.723650][   T28] audit: type=1326 audit(1764296359.497:3461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  467.797706][T11135] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  467.816596][T11135] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  467.855293][   T28] audit: type=1326 audit(1764296359.497:3462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  467.879003][T11135] usb 4-1: Product: syz
[  467.883211][T11135] usb 4-1: Manufacturer: syz
[  467.903212][T11135] usb 4-1: SerialNumber: syz
[  467.924548][T11135] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  467.965454][   T28] audit: type=1326 audit(1764296359.497:3463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  467.994341][   T27] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  468.065113][   T28] audit: type=1326 audit(1764296359.497:3464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  468.157022][   T28] audit: type=1326 audit(1764296359.527:3465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  468.199183][T13472] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2802'.
[  468.251297][T13459] tipc: Started in network mode
[  468.256309][T13459] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  468.277449][   T28] audit: type=1326 audit(1764296359.527:3466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  468.307268][T13459] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  468.356756][T13459] tipc: Enabled bearer <udp:syz0>, priority 10
[  468.399850][    T8] usb 4-1: USB disconnect, device number 12
[  468.411252][T13474] (null): rxe_set_mtu: Set mtu to 1024
[  468.416405][   T28] audit: type=1326 audit(1764296359.527:3467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  468.441463][   T28] audit: type=1326 audit(1764296359.577:3468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  468.550467][   T28] audit: type=1326 audit(1764296359.577:3469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.2.2799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  468.694409][T13481] syzkaller0: entered promiscuous mode
[  468.706608][T13481] syzkaller0: entered allmulticast mode
[  468.751829][T13481] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  468.852702][T13483] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.880586][T13474] infiniband syz1: set active
[  468.885929][T13474] infiniband syz1: added bond0
[  468.968663][T13483] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.986400][T13486] lo: entered allmulticast mode
[  469.019465][T13483] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.046404][T13474] RDS/IB: syz1: added
[  469.049378][   T27] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  469.055665][T13474] smc: adding ib device syz1 with port count 1
[  469.064638][T13490] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2807'.
[  469.064861][T13474] smc:    ib device syz1 port 1 has pnetid 
[  469.105513][   T27] ath9k_htc: Failed to initialize the device
[  469.120838][T13483] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.136757][    T8] usb 4-1: ath9k_htc: USB layer deinitialized
[  469.144788][T13489] loop3: detected capacity change from 0 to 512
[  469.156792][T13490] loop2: detected capacity change from 0 to 512
[  469.170079][T13489] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  469.202287][T13489] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  469.243859][T13489] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.2808: Corrupt directory, running e2fsck is recommended
[  469.259613][T13489] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  469.278335][T13489] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2249: inode #15: comm syz.3.2808: corrupted in-inode xattr: invalid ea_ino
[  469.335628][T13489] EXT4-fs (loop3): Remounting filesystem read-only
[  469.372205][T13489] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  469.394237][T13483] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  469.430124][T13483] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  469.457508][    T8] tipc: Node number set to 1
[  469.482037][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.499221][T13483] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  469.583102][T13483] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  469.785734][T13485] lo: left allmulticast mode
[  470.020918][T13504] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2814'.
[  470.124870][T13507] syzkaller0: entered promiscuous mode
[  470.144821][T13507] syzkaller0: entered allmulticast mode
[  470.202937][T13507] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  471.550168][T13521] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2821'.
[  471.586173][T13521] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2821'.
[  471.596791][T13526] lo: entered allmulticast mode
[  471.684244][T13528] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2822'.
[  471.723903][T13528] loop1: detected capacity change from 0 to 512
[  471.854243][T13535] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2826'.
[  472.402960][T13523] lo: left allmulticast mode
[  472.477410][T13550] lo: entered allmulticast mode
[  472.693606][T13552] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2833'.
[  472.738610][T13550] loop2: detected capacity change from 0 to 512
[  472.919281][T11135] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  473.038762][T13571] loop3: detected capacity change from 0 to 512
[  473.092864][T13571] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  473.121615][T13571] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002]
[  473.143820][T11135] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  473.150947][T13576] lo: entered allmulticast mode
[  473.161441][T13571] EXT4-fs (loop3): orphan cleanup on readonly fs
[  473.165492][T11135] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.176743][T13571] __quota_error: 3 callbacks suppressed
[  473.176759][T13571] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  473.185094][T11135] usb 2-1: Product: syz
[  473.206490][T13571] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  473.223568][T13571] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  473.224056][T13578] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2842'.
[  473.241785][T11135] usb 2-1: Manufacturer: syz
[  473.243646][T13571] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.2840: bg 0: block 40: padding at end of block bitmap is not set
[  473.269234][T13571] EXT4-fs (loop3): Remounting filesystem read-only
[  473.269284][T11135] usb 2-1: SerialNumber: syz
[  473.276349][T13571] EXT4-fs (loop3): 1 truncate cleaned up
[  473.288613][T13571] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  473.311094][T13549] lo: left allmulticast mode
[  473.324079][T11135] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  473.373684][T13578] loop0: detected capacity change from 0 to 512
[  473.391574][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.415203][   T27] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  473.672338][T13554] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  473.737686][T11135] usb 2-1: USB disconnect, device number 8
[  473.925473][T13594] loop3: detected capacity change from 0 to 512
[  473.937920][T13594] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  473.952107][T13594] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  473.962836][T13594] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.2849: Corrupt directory, running e2fsck is recommended
[  473.976883][T13594] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  473.986310][T13594] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2249: inode #15: comm syz.3.2849: corrupted in-inode xattr: invalid ea_ino
[  474.001208][T13575] lo: left allmulticast mode
[  474.019259][T13594] EXT4-fs (loop3): Remounting filesystem read-only
[  474.039982][T13600] syzkaller0: entered promiscuous mode
[  474.040133][T13594] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.061912][T13600] syzkaller0: entered allmulticast mode
[  474.103630][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.149725][T13600] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  474.276950][T13608] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2853'.
[  474.324727][T13608] loop3: detected capacity change from 0 to 512
[  474.467968][   T27] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  474.484043][   T27] ath9k_htc: Failed to initialize the device
[  474.526712][T11135] usb 2-1: ath9k_htc: USB layer deinitialized
[  474.824496][T13625] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2862'.
[  474.846063][T13627] lo: entered allmulticast mode
[  474.916992][T13631] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2861'.
[  474.939590][T13631] loop1: detected capacity change from 0 to 512
[  475.032901][T13634] syzkaller0: entered promiscuous mode
[  475.039546][T13634] syzkaller0: entered allmulticast mode
[  475.083388][T13634] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  475.187217][T11135] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  475.259646][T13638] loop3: detected capacity change from 0 to 1024
[  475.300107][T13638] EXT4-fs: inline encryption not supported
[  475.325015][T13638] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  475.358900][T13638] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  475.395601][T11135] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  475.402668][T13638] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.2866: Allocating blocks 385-513 which overlap fs metadata
[  475.417039][T11135] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.424912][T13638] EXT4-fs (loop3): pa ffff8880770d12b8: logic 16, phys. 129, len 24
[  475.436700][T13638] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8
[  475.456394][T11135] usb 3-1: Product: syz
[  475.472051][T11135] usb 3-1: Manufacturer: syz
[  475.489656][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.504401][T11135] usb 3-1: SerialNumber: syz
[  475.539442][T11135] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  475.559138][ T5856] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  475.686132][T13626] lo: left allmulticast mode
[  475.816113][T13644] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2868'.
[  475.840508][T13644] ip6gre1: entered allmulticast mode
[  475.847973][T13630] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  476.099241][T11135] usb 3-1: USB disconnect, device number 8
[  476.850580][T13662] loop3: detected capacity change from 0 to 512
[  477.303482][T13662] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  477.332366][ T5856] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  477.332655][T13664] __nla_validate_parse: 3 callbacks suppressed
[  477.332669][T13664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2874'.
[  477.368227][T13664] loop1: detected capacity change from 0 to 512
[  477.413733][T13662] EXT4-fs (loop3): 1 truncate cleaned up
[  477.421486][T13662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  477.429485][ T5856] ath9k_htc: Failed to initialize the device
[  477.461626][T13657] EXT4-fs (loop3): resizing filesystem from 256 to 2 blocks
[  477.469244][T13657] EXT4-fs warning (device loop3): ext4_resize_fs:2048: can't shrink FS - resize aborted
[  477.483329][T11135] usb 3-1: ath9k_htc: USB layer deinitialized
[  477.568329][T13671] loop2: detected capacity change from 0 to 512
[  477.584269][T13674] lo: entered allmulticast mode
[  477.729592][T13678] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2878'.
[  477.752246][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.800673][T13671] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.2877: bg 0: block 248: padding at end of block bitmap is not set
[  477.823172][T13678] loop0: detected capacity change from 0 to 512
[  477.862476][T13671] Quota error (device loop2): write_blk: dquota write failed
[  477.901487][T13671] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  477.920756][T13671] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2877: Failed to acquire dquot type 1
[  477.968273][T13671] EXT4-fs (loop2): 1 truncate cleaned up
[  477.988247][T13671] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  478.023580][T13671] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  478.182622][T13688] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2882'.
[  478.217162][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  478.377279][T13693] netlink: 136 bytes leftover after parsing attributes in process `syz.2.2883'.
[  478.403871][   T28] audit: type=1326 audit(1764296370.317:3473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13691 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  478.453651][T13673] lo: left allmulticast mode
[  478.483782][   T28] audit: type=1326 audit(1764296370.347:3474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13691 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  478.539445][T13696] netlink: 'syz.1.2886': attribute type 39 has an invalid length.
[  478.578347][   T28] audit: type=1326 audit(1764296370.377:3475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13691 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  478.600611][T13694] ptrace attach of "./syz-executor exec"[13697] was attempted by "./syz-executor exec"[13694]
[  478.606662][   T28] audit: type=1326 audit(1764296370.427:3476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13691 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  478.694510][   T28] audit: type=1326 audit(1764296370.427:3477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13691 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  478.796824][   T28] audit: type=1326 audit(1764296370.437:3478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13697 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f68efdc2005 code=0x7ffc0000
[  478.893947][   T28] audit: type=1326 audit(1764296370.497:3479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13691 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  478.958450][   T28] audit: type=1326 audit(1764296370.577:3480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13691 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  478.994486][   T28] audit: type=1326 audit(1764296370.577:3481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13691 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  479.017242][   T28] audit: type=1326 audit(1764296370.587:3482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13697 comm="syz.3.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  479.630902][T13712] loop0: detected capacity change from 0 to 512
[  480.037964][T13712] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  480.068931][T11135] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  480.090650][T13712] EXT4-fs (loop0): 1 truncate cleaned up
[  480.098304][T13712] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  480.124312][T13709] EXT4-fs (loop0): resizing filesystem from 256 to 2 blocks
[  480.131795][T13709] EXT4-fs warning (device loop0): ext4_resize_fs:2048: can't shrink FS - resize aborted
[  480.271513][T11135] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  480.285566][T13719] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2891'.
[  480.294985][T11135] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  480.313850][T13719] loop3: detected capacity change from 0 to 512
[  480.321027][T11135] usb 3-1: Product: syz
[  480.325232][T11135] usb 3-1: Manufacturer: syz
[  480.340464][T11135] usb 3-1: SerialNumber: syz
[  480.386934][T11135] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  480.402825][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.434307][ T5893] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  480.659523][T13699] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  480.702684][T13726] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2894'.
[  480.720615][    T8] usb 3-1: USB disconnect, device number 9
[  480.885732][T13728] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2895'.
[  481.020845][T13730] syz.0.2896 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  481.056416][T13730] loop0: detected capacity change from 0 to 1024
[  481.163662][T13730] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  481.382523][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.514495][ T5893] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  481.576759][ T5893] ath9k_htc: Failed to initialize the device
[  481.586907][    T8] usb 3-1: ath9k_htc: USB layer deinitialized
[  481.973505][T13755] loop0: detected capacity change from 0 to 512
[  481.981941][T13755] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  482.015807][T13755] EXT4-fs (loop0): 1 truncate cleaned up
[  482.024218][T13755] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  482.105457][T13760] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2904'.
[  482.209988][T13764] lo: entered allmulticast mode
[  482.272296][T13766] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2906'.
[  482.321996][T13766] loop3: detected capacity change from 0 to 512
[  482.444224][T13769] loop2: detected capacity change from 0 to 512
[  482.462561][T13769] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  482.490345][T13769] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.2907: invalid block
[  482.510881][T13769] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.2907: invalid indirect mapped block 4294967295 (level 1)
[  482.528558][T13769] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.2907: invalid indirect mapped block 4294967295 (level 1)
[  482.549488][T13769] EXT4-fs (loop2): 2 truncates cleaned up
[  482.567622][T13769] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  482.761186][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.763716][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.955156][T13772] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2908'.
[  483.131072][T13779] loop2: detected capacity change from 0 to 512
[  483.203283][T13779] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  483.236726][T13779] ext4 filesystem being mounted at /88/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  483.310074][T13779] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.2912: corrupted inode contents
[  483.341839][T13786] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2914'.
[  483.370497][T13779] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #2: comm syz.2.2912: mark_inode_dirty error
[  483.411864][T13790] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.423541][T13779] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.2912: corrupted inode contents
[  483.450497][T13779] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.2912: mark_inode_dirty error
[  483.485456][T13791] EXT4-fs error (device loop2): ext4_lookup:1855: inode #18: comm syz.2.2912: 'file0' linked to parent dir
[  483.591722][T13790] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.652900][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  483.776290][T13795] loop3: detected capacity change from 0 to 512
[  483.786243][T13795] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  483.818270][T13795] EXT4-fs (loop3): 1 truncate cleaned up
[  483.825404][T13795] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  483.849444][T13790] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.882645][T13802] syzkaller0: entered promiscuous mode
[  483.888376][T13802] syzkaller0: entered allmulticast mode
[  483.975917][T13790] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.135630][T13790] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  484.172118][T13790] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  484.240364][T13790] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  484.250292][T13811] lo: entered allmulticast mode
[  484.267385][T13790] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  484.343414][T13813] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2923'.
[  484.416270][T13813] loop2: detected capacity change from 0 to 512
[  484.527969][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  485.158767][T13819] loop1: detected capacity change from 0 to 512
[  485.480454][T13819] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  485.560582][T13819] EXT4-fs (loop1): 1 truncate cleaned up
[  485.567851][T13819] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  485.603125][T13817] EXT4-fs (loop1): resizing filesystem from 256 to 2 blocks
[  485.610580][T13817] EXT4-fs warning (device loop1): ext4_resize_fs:2048: can't shrink FS - resize aborted
[  485.888522][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  485.998335][T13834] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2928'.
[  486.035231][T13840] loop2: detected capacity change from 0 to 512
[  486.567295][T13851] loop0: detected capacity change from 0 to 512
[  486.575505][T13851] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  486.595095][T13851] EXT4-fs (loop0): 1 truncate cleaned up
[  486.602335][T13851] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  486.621138][T13853] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2935'.
[  486.997747][T13858] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2936'.
[  487.045268][T13858] loop3: detected capacity change from 0 to 512
[  487.197200][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  487.916992][T13880] loop2: detected capacity change from 0 to 512
[  487.956710][T13880] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  487.976754][ T5893] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  488.000047][T13880] EXT4-fs (loop2): 1 truncate cleaned up
[  488.030822][T13880] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  488.104516][T13880] EXT4-fs (loop2): resizing filesystem from 256 to 2 blocks
[  488.123203][T13880] EXT4-fs warning (device loop2): ext4_resize_fs:2048: can't shrink FS - resize aborted
[  488.193831][ T5893] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  488.223156][ T5893] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  488.273530][ T5893] usb 1-1: Product: syz
[  488.309408][ T5893] usb 1-1: Manufacturer: syz
[  488.347657][ T5893] usb 1-1: SerialNumber: syz
[  488.374641][ T5893] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  488.457489][   T27] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  488.685220][T13878] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  488.717007][    T8] usb 1-1: USB disconnect, device number 12
[  488.933671][T13890] loop3: detected capacity change from 0 to 512
[  488.941831][T13890] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  488.963577][T13890] EXT4-fs (loop3): 1 truncate cleaned up
[  488.970868][T13890] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  489.037981][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.288334][T13895] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2948'.
[  489.358332][T13895] loop2: detected capacity change from 0 to 512
[  489.537942][   T27] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  489.548547][   T27] ath9k_htc: Failed to initialize the device
[  489.555532][    T8] usb 1-1: ath9k_htc: USB layer deinitialized
[  489.566021][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.774945][T13902] loop1: detected capacity change from 0 to 1024
[  489.790709][T13902] EXT4-fs: Ignoring removed nomblk_io_submit option
[  489.860479][T13902] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  489.935805][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  489.935824][   T28] audit: type=1800 audit(1764296381.847:3484): pid=13902 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2951" name="file1" dev="loop1" ino=15 res=0 errno=0
[  490.062939][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  490.515785][T13929] loop0: detected capacity change from 0 to 512
[  490.534687][T13929] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  490.578942][T13929] EXT4-fs (loop0): 1 truncate cleaned up
[  490.586086][T13929] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  490.703671][T13936] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2962'.
[  490.858822][T13940] loop2: detected capacity change from 0 to 1024
[  490.875863][T13940] EXT4-fs: Ignoring removed nomblk_io_submit option
[  490.910013][T13940] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  490.941209][T13943] tap0: tun_chr_ioctl cmd 1074025675
[  490.963214][T13943] tap0: persist enabled
[  490.977006][T13946] loop3: detected capacity change from 0 to 512
[  490.992124][T13943] tap0: tun_chr_ioctl cmd 1074025675
[  491.015969][T13943] tap0: persist disabled
[  491.025169][T13946] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  491.097956][T13940] netlink: 'syz.2.2963': attribute type 30 has an invalid length.
[  491.161286][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.175605][T13946] EXT4-fs (loop3): 1 truncate cleaned up
[  491.187735][T13940] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  491.197085][T13940] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  491.205416][T13940] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  491.214328][T13940] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  491.228183][T13946] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  491.317828][T13946] EXT4-fs (loop3): resizing filesystem from 256 to 2 blocks
[  491.340367][T13946] EXT4-fs warning (device loop3): ext4_resize_fs:2048: can't shrink FS - resize aborted
[  491.374836][T13940] netdevsim netdevsim2 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  491.383481][T13940] netdevsim netdevsim2 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  491.392167][T13940] netdevsim netdevsim2 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  491.400676][T13940] netdevsim netdevsim2 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  491.437776][T13951] random: crng reseeded on system resumption
[  491.740725][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.998086][T13961] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2967'.
[  492.059152][T13961] loop2: detected capacity change from 0 to 512
[  492.528479][T13970] netlink: 8 bytes leftover after parsing attributes in process `wÞ£ÿ'.
[  492.649741][T13971] pimreg: entered allmulticast mode
[  492.670488][T13972] pimreg: left allmulticast mode
[  492.725384][T13971] syz.0.2971[13971] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  492.877082][T13970] netlink: 24 bytes leftover after parsing attributes in process `wÞ£ÿ'.
[  492.947830][T13970] wÞ£ÿ (13970) used greatest stack depth: 17960 bytes left
[  492.976917][T13978] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2972'.
[  493.032167][T13978] loop2: detected capacity change from 0 to 512
[  493.135900][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  493.553521][T13988] loop0: detected capacity change from 0 to 512
[  493.642584][T13988] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  493.712962][T13988] EXT4-fs (loop0): 1 truncate cleaned up
[  493.725821][T13988] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  494.047152][T13987] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2974'.
[  494.093858][T13987] loop3: detected capacity change from 0 to 512
[  494.152855][T13987] EXT4-fs: old and new quota format mixing
[  494.255016][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  494.279597][   T28] audit: type=1326 audit(1764296386.177:3485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13993 comm="syz.1.2976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  494.354638][   T28] audit: type=1326 audit(1764296386.177:3486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13993 comm="syz.1.2976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  494.374522][T13996] syzkaller0: entered promiscuous mode
[  494.399352][   T28] audit: type=1326 audit(1764296386.187:3487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13993 comm="syz.1.2976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  494.400954][T13996] syzkaller0: entered allmulticast mode
[  494.423702][   T28] audit: type=1326 audit(1764296386.187:3488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13993 comm="syz.1.2976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  494.452097][T13998] netlink: 9 bytes leftover after parsing attributes in process `syz.1.2979'.
[  494.462545][   T28] audit: type=1326 audit(1764296386.187:3489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13993 comm="syz.1.2976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  494.486100][T14001] netlink: 'syz.0.2978': attribute type 3 has an invalid length.
[  494.486892][T13998] netlink: 9 bytes leftover after parsing attributes in process `syz.1.2979'.
[  494.508727][   T28] audit: type=1326 audit(1764296386.187:3490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13993 comm="syz.1.2976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  494.579388][T14005] loop0: detected capacity change from 0 to 128
[  494.600295][T14005] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a802c018, mo2=0002]
[  494.624669][T14005] System zones: 1-3, 19-19, 35-36
[  494.640065][T14005] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  494.660458][T14005] ext4 filesystem being mounted at /148/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  494.685298][T14005] EXT4-fs warning (device loop0): ext4_group_extend:1897: can't read last block, resize aborted
[  494.696870][T14003] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2980'.
[  494.715548][T14003] loop3: detected capacity change from 0 to 512
[  494.843059][T14009] loop1: detected capacity change from 0 to 1024
[  494.862842][T12329] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  494.873608][T14009] EXT4-fs: inline encryption not supported
[  494.905231][T14009] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  494.972206][T14009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  495.086308][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.119363][T14022] smc: net device ip6gretap0 applied user defined pnetid SYZ2
[  495.138923][T14022] smc: net device ip6gretap0 erased user defined pnetid SYZ2
[  495.180404][   T28] audit: type=1326 audit(1764296387.097:3491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.253494][   T28] audit: type=1326 audit(1764296387.097:3492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.303285][   T28] audit: type=1326 audit(1764296387.137:3493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.334440][   T28] audit: type=1326 audit(1764296387.137:3494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.400562][   T28] audit: type=1326 audit(1764296387.137:3495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.531475][   T28] audit: type=1326 audit(1764296387.137:3496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.593925][   T28] audit: type=1326 audit(1764296387.137:3497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.622237][   T28] audit: type=1326 audit(1764296387.137:3498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.695764][   T28] audit: type=1326 audit(1764296387.147:3499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  495.801125][T14032] loop1: detected capacity change from 0 to 512
[  496.173804][T14032] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  496.266581][T14032] EXT4-fs (loop1): 1 truncate cleaned up
[  496.280488][T14032] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  496.491492][   T28] audit: type=1326 audit(1764296387.147:3500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14020 comm="syz.0.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  496.651955][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  496.919130][T14049] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.932683][T14053] loop3: detected capacity change from 0 to 128
[  497.022893][T14049] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.112145][T14049] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.147934][T14062] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2996'.
[  497.205077][T14062] loop0: detected capacity change from 0 to 512
[  497.219552][T14049] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.564404][T14049] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  497.660031][T14049] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  497.684349][T14049] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  497.702593][T14049] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  497.810581][T14070] loop3: detected capacity change from 0 to 512
[  497.842466][T14070] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  497.963081][T14070] EXT4-fs (loop3): 1 truncate cleaned up
[  497.976346][T14070] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  498.544149][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  499.005770][T14089] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.151701][T14089] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.266288][T14089] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.361040][T14089] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.937285][T14109] loop0: detected capacity change from 0 to 1024
[  500.098499][T14109] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  500.160111][T14109] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  500.893519][T14117] loop1: detected capacity change from 0 to 512
[  501.152912][T14117] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  501.810565][T14117] EXT4-fs (loop1): 1 truncate cleaned up
[  501.818317][T14117] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  501.901340][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  501.908363][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  502.085526][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  502.439440][T14123] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3010'.
[  502.494835][T14123] loop3: detected capacity change from 0 to 512
[  502.770538][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  502.835983][T14126] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  502.916316][T14126] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  503.012796][T14126] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  503.012893][T14130] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  503.107875][T14126] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  503.261159][T14135] loop0: detected capacity change from 0 to 128
[  503.265909][T14126] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  503.278834][T14136] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3015'.
[  503.298596][   T28] kauditd_printk_skb: 7 callbacks suppressed
[  503.298614][   T28] audit: type=1800 audit(1764296395.227:3508): pid=14135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3014" name="bus" dev="loop0" ino=1048645 res=0 errno=0
[  503.318927][T14126] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  503.340774][   T28] audit: type=1804 audit(1764296395.267:3509): pid=14135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3014" name="/newroot/160/file2/bus" dev="loop0" ino=1048645 res=1 errno=0
[  503.384609][T14126] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  503.404393][T14126] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  503.858885][T14150] loop0: detected capacity change from 0 to 512
[  503.896456][T14150] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  503.955957][ T5104] Bluetooth: hci4: command 0x0406 tx timeout
[  504.013010][T14151] netlink: 240 bytes leftover after parsing attributes in process `syz.3.3019'.
[  504.038844][T14150] EXT4-fs (loop0): 1 truncate cleaned up
[  504.052196][T14150] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  504.565092][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  504.712374][T14162] lo: entered allmulticast mode
[  504.787420][T14168] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3024'.
[  504.815430][T14168] loop1: detected capacity change from 0 to 512
[  504.859889][T14171] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.908599][T14161] lo: left allmulticast mode
[  504.937241][T14171] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  505.024651][T14171] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  505.114594][T14171] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  505.320924][T14171] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  505.341104][T14171] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  505.375248][T14171] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  505.460862][T14182] loop0: detected capacity change from 0 to 512
[  505.540495][T14182] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  505.621842][T14182] EXT4-fs (loop0): 1 truncate cleaned up
[  505.634851][T14182] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  505.853632][T14171] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  506.195600][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  506.302849][T14191] loop3: detected capacity change from 0 to 512
[  506.313446][T14191] ext4: Unknown parameter 'seclabel'
[  506.427336][T14197] lo: entered allmulticast mode
[  506.489129][T14089] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  506.516699][T14202] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3037'.
[  506.554132][T14202] loop0: detected capacity change from 0 to 512
[  506.556438][T14089] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  506.593270][T14089] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  506.631247][T14089] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  506.662999][T14196] lo: left allmulticast mode
[  506.788523][   T28] audit: type=1326 audit(1764296398.707:3510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14208 comm="syz.0.3041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  506.824219][   T28] audit: type=1326 audit(1764296398.707:3511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14208 comm="syz.0.3041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  506.858973][T14212] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.883304][   T28] audit: type=1326 audit(1764296398.717:3512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14208 comm="syz.0.3041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  506.942579][   T28] audit: type=1326 audit(1764296398.717:3513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14208 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  506.974007][T14217] syz.0.3043[14217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  506.974155][T14217] syz.0.3043[14217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  506.993097][T14212] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.035992][   T28] audit: type=1326 audit(1764296398.717:3514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14208 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  507.059417][   T28] audit: type=1326 audit(1764296398.717:3515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14208 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  507.063381][T14217] loop0: detected capacity change from 0 to 1024
[  507.082199][   T28] audit: type=1326 audit(1764296398.717:3516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14208 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  507.122938][   T28] audit: type=1326 audit(1764296398.747:3517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14208 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  507.151150][T14217] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  507.169323][T14212] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.174205][T14217] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  507.197556][T14217] JBD2: no valid journal superblock found
[  507.203387][T14217] EXT4-fs (loop0): Could not load journal inode
[  507.226028][T14212] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.441560][T14225] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3045'.
[  507.565516][T14229] loop2: detected capacity change from 0 to 512
[  507.682115][T14231] loop1: detected capacity change from 0 to 512
[  507.816099][T14231] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  507.890805][T14231] EXT4-fs (loop1): 1 truncate cleaned up
[  507.905962][T14231] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  508.213552][T14229] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  508.266846][T14229] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  508.371835][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.415241][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.439080][T14239] lo: entered allmulticast mode
[  508.524841][T14243] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3050'.
[  508.553522][T14246] macvtap0: refused to change device tx_queue_len
[  508.568331][T14243] loop0: detected capacity change from 0 to 512
[  508.641146][T14238] lo: left allmulticast mode
[  509.161787][T14271] syz.2.3059[14271] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  509.161941][T14271] syz.2.3059[14271] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  509.316555][T14272] loop0: detected capacity change from 0 to 512
[  509.406833][T14272] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  509.463388][T14272] EXT4-fs (loop0): 1 truncate cleaned up
[  509.478102][T14272] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  510.108675][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  510.185223][T14281] lo: entered allmulticast mode
[  510.251481][T14284] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3064'.
[  510.770586][T14284] loop1: detected capacity change from 0 to 512
[  511.253120][T14280] lo: left allmulticast mode
[  511.605578][T14303] pim6reg: entered allmulticast mode
[  511.647554][T14303] pim6reg: left allmulticast mode
[  512.006794][T14319] lo: entered allmulticast mode
[  512.139368][T14322] loop1: detected capacity change from 0 to 512
[  512.171575][T14323] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3075'.
[  512.239148][T14322] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  512.334547][T14322] EXT4-fs (loop1): 1 truncate cleaned up
[  512.350626][T14322] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  512.734627][T14323] loop0: detected capacity change from 0 to 512
[  512.831666][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.083899][T14212] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  513.144042][T14318] lo: left allmulticast mode
[  513.193899][T14212] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  513.252430][T14212] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  513.281533][T14212] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  513.673923][T14356] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3086'.
[  513.972151][T14360] loop3: detected capacity change from 0 to 512
[  514.140020][T14360] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  514.206973][T14360] EXT4-fs (loop3): 1 truncate cleaned up
[  514.221875][T14360] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  514.672781][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  514.850121][T14368] lo: entered allmulticast mode
[  514.920918][T14370] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  514.973393][T14374] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3091'.
[  515.022513][T14370] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.034097][T14368] loop1: detected capacity change from 0 to 512
[  515.104026][T14370] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.221199][T14370] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.696675][T14367] lo: left allmulticast mode
[  515.993432][T14403] loop0: detected capacity change from 0 to 512
[  516.132643][T14403] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  516.191953][T14403] EXT4-fs (loop0): 1 truncate cleaned up
[  516.206568][T14403] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  516.706941][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  517.162656][T14428] netlink: 4544 bytes leftover after parsing attributes in process `syz.2.3107'.
[  517.171167][T14430] lo: entered allmulticast mode
[  517.179457][T14428] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3107'.
[  517.256743][T14434] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3109'.
[  517.314449][T14434] loop1: detected capacity change from 0 to 512
[  517.487211][T14439] smc: net device bond0 applied user defined pnetid SYZ0
[  517.504862][T14439] smc: ib device syz1 ibport 1 applied user defined pnetid SYZ0
[  517.533445][T14439] smc: net device bond0 erased user defined pnetid SYZ0
[  517.549117][T14439] smc: ib device syz1 ibport 1 erased user defined pnetid SYZ0
[  517.895708][T14447] syz.2.3115[14447] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  517.896015][T14447] syz.2.3115[14447] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  518.103019][T14449] loop0: detected capacity change from 0 to 512
[  518.159956][T14449] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  518.345822][T14449] EXT4-fs (loop0): 1 truncate cleaned up
[  518.360345][T14449] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  518.689186][T14429] lo: left allmulticast mode
[  518.802496][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  518.823196][T14453] (null): rxe_set_mtu: Set mtu to 4096
[  518.862925][T14453] rdma_rxe: rxe_newlink: failed to add lo
[  519.257346][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  519.257366][   T28] audit: type=1326 audit(1764296411.177:3521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14464 comm="syz.2.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  519.292101][   T28] audit: type=1326 audit(1764296411.177:3522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14464 comm="syz.2.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  519.323873][   T28] audit: type=1326 audit(1764296411.177:3523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14464 comm="syz.2.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  519.554999][T14475] lo: entered allmulticast mode
[  519.625546][T14479] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3126'.
[  519.757281][T14482] loop2: detected capacity change from 0 to 512
[  519.976015][T14482] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  520.116227][T14482] EXT4-fs (loop2): 1 truncate cleaned up
[  520.131919][T14482] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  520.439963][T14479] loop0: detected capacity change from 0 to 512
[  520.489884][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  520.695981][T14370] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  520.759540][T14370] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  520.797327][T14474] lo: left allmulticast mode
[  520.810902][T14370] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  520.859643][T14370] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  521.064860][T14496] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  521.086640][T14496] netlink: 32 bytes leftover after parsing attributes in process `+}[@'.
[  521.105827][   T28] audit: type=1326 audit(1764296413.017:3524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14497 comm="syz.3.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  521.128889][T14496] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  521.146708][T14496] netlink: 2 bytes leftover after parsing attributes in process `+}[@'.
[  521.165488][T14496] netlink: 32 bytes leftover after parsing attributes in process `+}[@'.
[  521.166437][   T28] audit: type=1326 audit(1764296413.017:3525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14497 comm="syz.3.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  521.207248][   T28] audit: type=1326 audit(1764296413.017:3526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14497 comm="syz.3.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  521.235571][   T28] audit: type=1326 audit(1764296413.017:3527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14497 comm="syz.3.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  521.270237][   T28] audit: type=1326 audit(1764296413.017:3528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14497 comm="syz.3.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  521.299101][   T28] audit: type=1326 audit(1764296413.027:3529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14497 comm="syz.3.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  521.340065][   T28] audit: type=1326 audit(1764296413.027:3530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14497 comm="syz.3.3133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68efd8f749 code=0x7ffc0000
[  521.772763][T14508] loop3: detected capacity change from 0 to 512
[  521.878175][T14508] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  521.951761][T14508] EXT4-fs (loop3): 1 truncate cleaned up
[  521.966562][T14508] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  522.430182][T14514] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3138'.
[  522.468703][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  522.490264][T14514] loop2: detected capacity change from 0 to 512
[  522.689432][T14519] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  522.775092][T14519] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  522.880833][T14519] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  522.934992][T14519] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  522.959140][T14530] netlink: 'syz.1.3144': attribute type 4 has an invalid length.
[  523.010773][T14530] netlink: 'syz.1.3144': attribute type 4 has an invalid length.
[  523.034072][T14532] netlink: 188 bytes leftover after parsing attributes in process `syz.0.3146'.
[  523.295446][T14538] loop2: detected capacity change from 0 to 128
[  523.509108][T14540] loop0: detected capacity change from 0 to 512
[  523.622638][T14540] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  523.670366][T14540] EXT4-fs (loop0): 1 truncate cleaned up
[  523.683923][T14540] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  524.225405][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  524.524799][T14557] lo: entered allmulticast mode
[  524.587363][T14562] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3157'.
[  524.630504][T14562] loop0: detected capacity change from 0 to 512
[  525.056122][T14570] loop2: detected capacity change from 0 to 512
[  525.128268][T14570] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  525.188599][T14570] EXT4-fs (loop2): 1 truncate cleaned up
[  525.203214][T14570] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  525.634982][T14556] lo: left allmulticast mode
[  525.770830][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  525.874482][T14576] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3164'.
[  525.918545][   T28] kauditd_printk_skb: 8 callbacks suppressed
[  525.918562][   T28] audit: type=1326 audit(1764296417.837:3539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14579 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  526.011889][   T28] audit: type=1326 audit(1764296417.837:3540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14579 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  526.054056][   T28] audit: type=1326 audit(1764296417.837:3541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14579 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  526.084555][   T28] audit: type=1326 audit(1764296417.837:3542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14579 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  526.087626][T14586] loop1: detected capacity change from 0 to 512
[  526.116844][T14586] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  526.143184][T14586] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a017c11c, mo2=0002]
[  526.161889][T14586] System zones: 1-12
[  526.180058][T14586] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2249: inode #15: comm syz.1.3167: corrupted in-inode xattr: e_value size too large
[  526.200522][T14586] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.3167: couldn't read orphan inode 15 (err -117)
[  526.238506][T14586] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  526.350315][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  526.438812][T14595] lo: entered allmulticast mode
[  526.515049][T14600] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3171'.
[  526.546457][T14600] loop0: detected capacity change from 0 to 512
[  526.665910][T14602] loop2: detected capacity change from 0 to 512
[  526.687547][T14602] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  526.771936][T14602] EXT4-fs (loop2): 1 truncate cleaned up
[  526.786582][T14602] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  527.380808][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  527.502628][T14606] random: crng reseeded on system resumption
[  527.521837][T14594] lo: left allmulticast mode
[  529.508522][ T5104] Bluetooth: hci1: command 0x0406 tx timeout
[  530.796094][T14519] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  530.840963][T14519] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  530.877724][T14519] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  530.914801][T14519] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  531.175101][T14636] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3184'.
[  531.255863][T14637] loop2: detected capacity change from 0 to 512
[  531.362745][T14637] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  531.464009][T14637] EXT4-fs (loop2): 1 truncate cleaned up
[  531.479039][T14637] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.808099][T14636] loop1: detected capacity change from 0 to 512
[  531.939844][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.044944][T14646] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3187'.
[  532.180681][T14646] team0: Port device team_slave_1 removed
[  532.231577][T14650] netlink: 'syz.0.3188': attribute type 13 has an invalid length.
[  532.394964][T14650] gretap0: refused to change device tx_queue_len
[  532.401514][T14650] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  532.663279][T14665] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.754159][T14665] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.842060][T14665] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.936154][T14665] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  533.882124][T14674] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  533.917068][T14674] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  533.950266][T14674] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  533.976248][T14674] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  534.008670][T14674] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  534.014780][T14674] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  534.030021][T14674] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  534.054201][T14674] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  534.085488][T14674] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  534.101428][T14682] loop0: detected capacity change from 0 to 512
[  534.124845][T14674] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  534.168754][T14682] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.3200: bg 0: block 248: padding at end of block bitmap is not set
[  534.195007][T14682] Quota error (device loop0): write_blk: dquota write failed
[  534.205216][T14682] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  534.212919][T14691] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3202'.
[  534.216958][T14682] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.3200: Failed to acquire dquot type 1
[  534.244203][T14682] EXT4-fs (loop0): 1 truncate cleaned up
[  534.264873][T14691] loop2: detected capacity change from 0 to 512
[  534.273053][T14682] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  534.296285][T14682] ext4 filesystem being mounted at /213/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  534.372433][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  534.383067][ T3521] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-5
[  534.392289][ T3521] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u4:10: Failed to release dquot type 1
[  535.106693][ T5104] Bluetooth: hci4: command 0x0406 tx timeout
[  535.308693][T14712] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  535.327317][   T28] audit: type=1326 audit(1764296427.257:3543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14713 comm="syz.1.3212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  535.371188][   T28] audit: type=1326 audit(1764296427.277:3544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14713 comm="syz.1.3212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  535.418127][   T28] audit: type=1326 audit(1764296427.277:3545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14713 comm="syz.1.3212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  535.447072][   T28] audit: type=1326 audit(1764296427.277:3546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14713 comm="syz.1.3212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  535.617796][T14725] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3215'.
[  535.658853][T14725] loop2: detected capacity change from 0 to 512
[  535.986881][ T5104] Bluetooth: hci1: command 0x0406 tx timeout
[  536.066685][ T5104] Bluetooth: hci0: command 0x0c1a tx timeout
[  536.066723][ T5795] Bluetooth: hci2: command 0x0c1a tx timeout
[  536.457565][T14736] syz.1.3220[14736] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  536.457711][T14736] syz.1.3220[14736] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  537.253306][ T5795] Bluetooth: hci4: command 0x0406 tx timeout
[  537.896200][T14762] loop1: detected capacity change from 0 to 512
[  537.928299][T14768] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3229'.
[  537.930441][T14762] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.3230: bg 0: block 248: padding at end of block bitmap is not set
[  537.960875][T14762] Quota error (device loop1): write_blk: dquota write failed
[  537.965555][T14768] loop2: detected capacity change from 0 to 512
[  537.970000][T14762] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  537.990202][T14762] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.3230: Failed to acquire dquot type 1
[  538.004598][T14762] EXT4-fs (loop1): 1 truncate cleaned up
[  538.015558][T14762] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  538.033830][T14762] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  538.066674][ T5795] Bluetooth: hci1: command 0x0406 tx timeout
[  538.082306][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.146788][ T5795] Bluetooth: hci2: command 0x0c1a tx timeout
[  538.146921][ T5104] Bluetooth: hci0: command 0x0c1a tx timeout
[  538.184942][T14665] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  538.203256][T14665] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  538.231254][T14665] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  538.251602][T14665] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  538.388620][T14775] netlink: 332 bytes leftover after parsing attributes in process `syz.3.3233'.
[  538.478776][T14779] netlink: 'syz.3.3235': attribute type 10 has an invalid length.
[  538.522719][T14779] team0: Port device dummy0 added
[  538.623145][T14785] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3238'.
[  538.632472][T14785] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3238'.
[  538.790488][T14787] mmap: syz.3.3239 (14787) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  539.042679][T14793] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.135092][T14793] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.215058][T14793] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.351418][T14793] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.455587][T14804] syz.0.3246[14804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  539.455719][T14804] syz.0.3246[14804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  539.481541][T14791] loop2: detected capacity change from 0 to 512
[  539.515156][T14791] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  539.536742][T14791] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  539.556928][T14791] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  539.615126][T14791] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  539.635561][T14791] System zones: 0-2, 18-18, 34-35
[  539.654512][T14791] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  539.754836][T14814] lo: entered allmulticast mode
[  539.762445][T14791] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.3241: bg 0: block 353: padding at end of block bitmap is not set
[  539.832138][T14818] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3249'.
[  539.871035][T14818] loop0: detected capacity change from 0 to 512
[  540.044146][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  540.227667][ T5104] Bluetooth: hci0: command 0x0c1a tx timeout
[  540.238537][ T5104] Bluetooth: hci2: command 0x0c1a tx timeout
[  540.275723][   T28] audit: type=1326 audit(1764296432.197:3547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.332495][   T28] audit: type=1326 audit(1764296432.197:3548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.379758][   T28] audit: type=1326 audit(1764296432.207:3549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.421468][   T28] audit: type=1326 audit(1764296432.207:3550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.473545][   T28] audit: type=1326 audit(1764296432.207:3551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.497514][T14810] lo: left allmulticast mode
[  540.521033][   T28] audit: type=1326 audit(1764296432.207:3552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.548634][   T28] audit: type=1326 audit(1764296432.207:3553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.572189][   T28] audit: type=1326 audit(1764296432.207:3554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.597594][   T28] audit: type=1326 audit(1764296432.227:3555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.621354][   T28] audit: type=1326 audit(1764296432.237:3556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.3255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  540.909017][T14841] loop0: detected capacity change from 0 to 764
[  540.951044][T14846] netlink: 'syz.1.3263': attribute type 10 has an invalid length.
[  540.959844][T14846] team0: Device dummy0 is up. Set it down before adding it as a team port
[  541.248590][T14858] lo: entered allmulticast mode
[  541.321587][T14862] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3267'.
[  541.363568][T14862] loop0: detected capacity change from 0 to 512
[  541.437977][T14865] loop2: detected capacity change from 0 to 2048
[  541.477474][T14865] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  541.519928][T14865] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  541.595658][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  542.017585][T14854] lo: left allmulticast mode
[  542.267288][T14878] 9p: Unknown access argument : -22
[  542.330034][T14878] loop0: detected capacity change from 0 to 128
[  542.342738][T14878] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  542.363092][T14878] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  542.572317][T14882] loop2: detected capacity change from 0 to 764
[  542.587088][T14882] ISOFS: Logical zone size(255) < hardware blocksize(2048)
[  542.888787][T14893] loop1: detected capacity change from 0 to 4096
[  542.907081][T14893] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  542.978531][T14900] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3283'.
[  542.993191][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  543.015347][T14900] loop2: detected capacity change from 0 to 512
[  543.588401][T14915] loop0: detected capacity change from 0 to 512
[  543.622856][T14915] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  543.636610][T14915] ext4 filesystem being mounted at /235/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  543.681339][T14793] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  543.702315][T14793] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  543.724861][T14793] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  543.744235][T14793] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  543.864943][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  543.980465][T14930] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3293'.
[  544.038952][T14930] loop2: detected capacity change from 0 to 512
[  544.407703][T14941] loop2: detected capacity change from 0 to 1024
[  544.435804][T14941] EXT4-fs: inline encryption not supported
[  544.529181][T14941] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  544.803776][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  545.062235][T14950] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  545.125152][T14950] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  545.195520][T14950] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  545.278752][T14950] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  545.422252][T14950] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  545.473796][T14950] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  545.504161][T14950] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  545.528166][T14950] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  545.546988][T14961] lo: entered allmulticast mode
[  545.612779][T14964] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3306'.
[  545.673308][T14964] loop0: detected capacity change from 0 to 512
[  545.742951][T14960] lo: left allmulticast mode
[  545.904600][   T28] kauditd_printk_skb: 155 callbacks suppressed
[  545.904617][   T28] audit: type=1326 audit(1764296437.827:3712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  545.990139][   T28] audit: type=1326 audit(1764296437.837:3713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.074662][T14972] loop2: detected capacity change from 0 to 512
[  546.093193][   T28] audit: type=1326 audit(1764296437.847:3714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.127842][   T28] audit: type=1326 audit(1764296437.847:3715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.161093][   T28] audit: type=1326 audit(1764296437.847:3716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.186257][   T28] audit: type=1326 audit(1764296437.867:3717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.211019][   T28] audit: type=1326 audit(1764296437.877:3718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.240133][T14972] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  546.247930][   T28] audit: type=1326 audit(1764296437.877:3719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.287201][T14972] ext4 filesystem being mounted at /201/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  546.298615][   T28] audit: type=1326 audit(1764296437.877:3720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.322187][   T28] audit: type=1326 audit(1764296437.877:3721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14969 comm="syz.0.3309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb14cf8f749 code=0x7ffc0000
[  546.372533][T14981] loop1: detected capacity change from 0 to 512
[  546.399530][T14981] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.3313: inode has both inline data and extents flags
[  546.404609][T14972] EXT4-fs error (device loop2): ext4_empty_dir:3139: inode #12: comm syz.2.3310: Directory hole found for htree leaf block 0
[  546.421285][T14981] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.3313: couldn't read orphan inode 15 (err -117)
[  546.475622][T14981] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  546.521688][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  546.794936][T14989] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  546.854410][T14989] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  546.904410][T14989] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  546.958681][T14989] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  547.167586][T14993] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3317'.
[  547.189087][T14993] loop3: detected capacity change from 0 to 512
[  547.258126][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.497407][T15003] netlink: 'syz.3.3321': attribute type 3 has an invalid length.
[  547.516366][T15003] netlink: 'syz.3.3321': attribute type 3 has an invalid length.
[  547.912098][T15014] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3326'.
[  547.945066][T15014] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3326'.
[  547.958516][T15014] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3326'.
[  548.305278][T15025] lo: entered allmulticast mode
[  548.371594][T15030] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3329'.
[  548.402760][T15030] loop0: detected capacity change from 0 to 512
[  549.060954][T15021] lo: left allmulticast mode
[  549.547620][T15053] loop3: detected capacity change from 0 to 512
[  549.557897][T15053] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  550.128650][T15059] loop3: detected capacity change from 0 to 512
[  550.149805][T15059] EXT4-fs: Ignoring removed orlov option
[  550.231503][T15059] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  550.306590][T15059] EXT4-fs (loop3): 1 orphan inode deleted
[  550.312494][T15059] EXT4-fs (loop3): 1 truncate cleaned up
[  550.325865][T15059] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  550.415653][T14896] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  550.905079][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.967850][T15068] lo: entered allmulticast mode
[  550.993344][T15070] netlink: 164 bytes leftover after parsing attributes in process `syz.3.3347'.
[  551.028157][T15071] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3346'.
[  551.059795][T15071] loop0: detected capacity change from 0 to 512
[  551.119121][T15074] 9pnet_fd: Insufficient options for proto=fd
[  551.222798][T15076] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3349'.
[  551.246357][T15076] : entered promiscuous mode
[  551.483122][T14989] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  551.509792][T14989] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  551.535313][T14989] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  551.559190][T14989] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  551.742125][T15065] lo: left allmulticast mode
[  552.162761][T15098] lo: entered allmulticast mode
[  552.244371][T15102] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3364'.
[  552.422463][T15102] loop0: detected capacity change from 0 to 512
[  552.929498][T15094] lo: left allmulticast mode
[  553.247059][   T28] kauditd_printk_skb: 94 callbacks suppressed
[  553.247078][   T28] audit: type=1107 audit(1764296445.157:3816): pid=15107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  553.439470][T15113] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  553.713818][T15113] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  554.448373][T15113] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  554.601485][T15113] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  554.805310][T15113] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  554.851771][T15113] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  554.872436][   T28] audit: type=1326 audit(1764296446.797:3817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  554.874380][T15113] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  554.919918][T15113] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  554.940687][   T28] audit: type=1326 audit(1764296446.797:3818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  555.006683][   T28] audit: type=1326 audit(1764296446.797:3819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  555.045730][   T28] audit: type=1326 audit(1764296446.797:3820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  555.075871][   T28] audit: type=1326 audit(1764296446.827:3821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  555.132839][   T28] audit: type=1326 audit(1764296446.827:3822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  555.201312][T15146] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3370'.
[  555.226711][   T28] audit: type=1326 audit(1764296446.827:3823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  555.299736][T15146] loop3: detected capacity change from 0 to 512
[  555.316745][   T28] audit: type=1326 audit(1764296446.827:3824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  555.386691][   T28] audit: type=1326 audit(1764296446.827:3825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15137 comm="syz.1.3369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  555.611979][T15161] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  555.682963][T15161] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  555.784510][T15161] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  555.850316][T15161] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  556.024940][T15161] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  556.071996][T15161] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  556.106005][T15161] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  556.156788][T15161] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  556.659702][T15191] smc: net device hsr0 applied user defined pnetid SYZ2
[  556.677499][T15191] smc: net device hsr0 erased user defined pnetid SYZ2
[  556.694356][T15194] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3390'.
[  556.702300][T15189] loop0: detected capacity change from 0 to 1024
[  556.724196][T15189] EXT4-fs: Ignoring removed bh option
[  556.741047][T15189] EXT4-fs: inline encryption not supported
[  556.751218][T15194] loop3: detected capacity change from 0 to 512
[  556.757686][T15189] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  556.792945][T15189] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  556.834623][T15189] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 2: comm syz.0.3391: lblock 2 mapped to illegal pblock 2 (length 1)
[  556.865148][T15189] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 48: comm syz.0.3391: lblock 0 mapped to illegal pblock 48 (length 1)
[  556.884649][T15200] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  556.913716][T15189] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.3391: Failed to acquire dquot type 0
[  556.949438][T15189] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5916: Corrupt filesystem
[  556.969373][T15200] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  556.976388][T15189] EXT4-fs error (device loop0): ext4_evict_inode:252: inode #11: comm syz.0.3391: mark_inode_dirty error
[  557.004900][T15189] EXT4-fs warning (device loop0): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  557.025858][T15189] EXT4-fs (loop0): 1 orphan inode deleted
[  557.034274][T15189] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  557.048074][   T49] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  557.068537][   T49] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u4:3: Failed to release dquot type 0
[  557.073348][T15200] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  557.106773][T15204] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3396'.
[  557.163821][T12329] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  557.175255][T12329] EXT4-fs error (device loop0): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0
[  557.188256][T15204] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3396'.
[  557.201774][T12329] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5916: Corrupt filesystem
[  557.216070][T15200] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  557.227726][T12329] EXT4-fs error (device loop0): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[  557.328799][T15204] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3396'.
[  557.413491][T15211] IPv6: Can't replace route, no match found
[  557.996457][T15231] loop2: detected capacity change from 0 to 512
[  558.044559][T15231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  558.057601][T15231] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  558.522225][T15248] loop0: detected capacity change from 0 to 256
[  558.568915][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  558.728427][T15255] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3410'.
[  558.789224][T15255] loop2: detected capacity change from 0 to 512
[  559.573515][T15281] loop5: detected capacity change from 0 to 7
[  559.587325][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.596575][    C0] buffer_io_error: 4458 callbacks suppressed
[  559.596589][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.613375][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.622638][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.632456][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.641703][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.650605][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.659969][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.669675][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.678926][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.687562][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.696742][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.706136][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.715357][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.723271][T15281] ldm_validate_partition_table(): Disk read failed.
[  559.730428][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.739689][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.752406][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.761672][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.770758][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  559.780166][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  559.790780][T15281] Dev loop5: unable to read RDB block 0
[  559.797512][T15281]  loop5: unable to read partition table
[  559.803631][T15281] loop5: partition table beyond EOD, truncated
[  559.809996][T15281] loop_reread_partitions: partition scan of loop5 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  559.809996][T15281] 
) failed (rc=-5)
[  559.905041][   T28] kauditd_printk_skb: 37 callbacks suppressed
[  559.905057][   T28] audit: type=1326 audit(1764296451.827:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  559.953725][   T28] audit: type=1326 audit(1764296451.857:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  559.978657][   T28] audit: type=1326 audit(1764296451.857:3862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  560.002789][   T28] audit: type=1326 audit(1764296451.857:3863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  560.027914][   T28] audit: type=1326 audit(1764296451.867:3864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  560.054647][   T28] audit: type=1326 audit(1764296451.867:3865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  560.113493][   T28] audit: type=1326 audit(1764296451.867:3866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  560.183267][T15291] loop3: detected capacity change from 0 to 512
[  560.203585][T15291] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  560.207177][   T28] audit: type=1326 audit(1764296451.867:3867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  560.262468][   T28] audit: type=1326 audit(1764296451.867:3868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  560.308423][T15291] EXT4-fs (loop3): 1 truncate cleaned up
[  560.323019][T15291] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  560.346992][   T28] audit: type=1326 audit(1764296451.867:3869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15285 comm="syz.2.3423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdcf8f8f749 code=0x7ffc0000
[  560.433876][T12747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  560.447403][T15305] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3429'.
[  560.483425][T15305] loop2: detected capacity change from 0 to 512
[  560.744509][T15312] loop3: detected capacity change from 0 to 512
[  560.756403][T15312] journal_path: Lookup failure for './file1'
[  560.763243][T15312] EXT4-fs: error: could not find journal device path
[  560.902978][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.911139][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.918815][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.926270][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.933919][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.941487][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.949025][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.956536][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.963970][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.971687][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.979236][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.986792][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  560.997060][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  561.004783][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  561.014096][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  561.024055][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  561.034091][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  561.052010][ T5890] hid-generic 0003:0004:0000.0004: unknown main item tag 0x0
[  561.063759][ T5890] hid-generic 0003:0004:0000.0004: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  561.362695][T15326] syz.2.3437[15326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  561.362843][T15326] syz.2.3437[15326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  561.387189][T15321] loop3: detected capacity change from 0 to 32768
[  561.445664][T15200] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  561.471051][T15321]  loop3: p1 p2 p3 < p5 p6 >
[  561.471239][T15200] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  561.475793][T15321] loop3: p1 size 242222080 extends beyond EOD, truncated
[  561.493996][T15321] loop3: p2 start 4294967295 is beyond EOD, truncated
[  561.497733][T15200] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  561.528468][T15200] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  561.710788][T15335] loop1: detected capacity change from 0 to 128
[  561.954123][T15344] lo: entered allmulticast mode
[  562.020638][T15351] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3444'.
[  562.042245][T15351] loop0: detected capacity change from 0 to 512
[  562.057009][T15349] netlink: 'syz.1.3446': attribute type 10 has an invalid length.
[  562.180053][T15356] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  562.238276][T15356] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  562.304387][T15356] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  562.399653][T15356] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  562.579582][T15356] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  562.625020][T15356] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  562.667573][T15356] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  562.712476][T15356] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  562.733800][T15340] lo: left allmulticast mode
[  563.235280][T15384] syz.3.3461[15384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  563.235432][T15384] syz.3.3461[15384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  563.274685][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  563.296674][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  563.709637][T15397] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.736991][T15399] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3464'.
[  563.777329][T15397] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.779463][T15399] loop1: detected capacity change from 0 to 512
[  563.874335][T15397] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  564.080079][T15397] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  564.797863][T15419] xt_CT: You must specify a L4 protocol and not use inversions on it
[  565.064309][T15426] x_tables: ip_tables: state.0 match: invalid size 8 (kernel) != (user) 16
[  565.272343][T15428] netlink: 'syz.1.3476': attribute type 4 has an invalid length.
[  565.280357][T15428] netlink: 17 bytes leftover after parsing attributes in process `syz.1.3476'.
[  566.158941][T15438] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3481'.
[  566.188560][T15438] loop1: detected capacity change from 0 to 512
[  566.261828][T15442] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3483'.
[  566.284510][T15442] : entered promiscuous mode
[  568.040471][T15466] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3494'.
[  569.176724][T15476] loop1: detected capacity change from 0 to 1024
[  569.232696][T15476] EXT4-fs: Ignoring removed bh option
[  569.267654][T15476] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  569.401545][T15476] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  569.623972][T15476] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4031: comm syz.1.3498: Allocating blocks 385-513 which overlap fs metadata
[  569.766269][T15476] EXT4-fs (loop1): pa ffff88805af173a0: logic 16, phys. 129, len 24
[  569.774580][T15476] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8
[  569.970465][T11920] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.930699][T15493] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3502'.
[  572.012411][T15493] loop1: detected capacity change from 0 to 512
[  572.435652][T15507] capability: warning: `syz.0.3509' uses deprecated v2 capabilities in a way that may be insecure
[  572.784787][   T28] kauditd_printk_skb: 104 callbacks suppressed
[  572.784805][   T28] audit: type=1326 audit(1764296464.707:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  572.817255][   T28] audit: type=1326 audit(1764296464.707:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  572.840638][   T28] audit: type=1326 audit(1764296464.717:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  572.892464][   T28] audit: type=1326 audit(1764296464.717:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  572.950338][   T28] audit: type=1326 audit(1764296464.717:3978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  572.979050][   T28] audit: type=1326 audit(1764296464.797:3979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  573.013893][T15525] loop2: detected capacity change from 0 to 512
[  573.026732][   T28] audit: type=1326 audit(1764296464.797:3980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  573.050697][   T28] audit: type=1326 audit(1764296464.807:3981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  573.081701][   T28] audit: type=1326 audit(1764296464.807:3982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  573.088560][T15525] 
[  573.104657][   T28] audit: type=1326 audit(1764296464.807:3983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15519 comm="syz.1.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f406b58f749 code=0x7ffc0000
[  573.106485][T15525] ======================================================
[  573.106494][T15525] WARNING: possible circular locking dependency detected
[  573.106501][T15525] syzkaller #0 Not tainted
[  573.106511][T15525] ------------------------------------------------------
[  573.106517][T15525] syz.2.3516/15525 is trying to acquire lock:
[  573.106528][T15525] ffff88807a466bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0
[  573.170850][T15525] 
[  573.170850][T15525] but task is already holding lock:
[  573.178390][T15525] ffff888058c8e4c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[  573.188238][T15525] 
[  573.188238][T15525] which lock already depends on the new lock.
[  573.188238][T15525] 
[  573.198818][T15525] 
[  573.198818][T15525] the existing dependency chain (in reverse order) is:
[  573.207834][T15525] 
[  573.207834][T15525] -> #1 (&ei->xattr_sem){++++}-{3:3}:
[  573.215407][T15525]        down_write+0x97/0x1f0
[  573.220187][T15525]        ext4_destroy_inline_data+0x28/0xe0
[  573.226095][T15525]        ext4_do_writepages+0x4c2/0x38d0
[  573.231740][T15525]        ext4_writepages+0x1a8/0x2f0
[  573.237038][T15525]        do_writepages+0x3a2/0x600
[  573.242246][T15525]        filemap_fdatawrite_wbc+0x122/0x180
[  573.248150][T15525]        file_write_and_wait_range+0x171/0x240
[  573.254345][T15525]        generic_buffers_fsync_noflush+0x6f/0x160
[  573.260791][T15525]        ext4_sync_file+0x454/0xc10
[  573.266004][T15525]        ext4_buffered_write_iter+0x2c0/0x350
[  573.272090][T15525]        ext4_file_write_iter+0x1d9/0x1870
[  573.277907][T15525]        do_iter_write+0x79a/0xc70
[  573.283030][T15525]        do_pwritev+0x205/0x340
[  573.287980][T15525]        do_syscall_64+0x55/0xb0
[  573.293013][T15525]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  573.299434][T15525] 
[  573.299434][T15525] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  573.307875][T15525]        __lock_acquire+0x2ddb/0x7c80
[  573.313270][T15525]        lock_acquire+0x197/0x410
[  573.318301][T15525]        percpu_down_read+0x44/0x1a0
[  573.323593][T15525]        ext4_writepages+0x170/0x2f0
[  573.328887][T15525]        do_writepages+0x3a2/0x600
[  573.334008][T15525]        __writeback_single_inode+0x153/0xee0
[  573.340083][T15525]        writeback_single_inode+0x211/0x720
[  573.346098][T15525]        write_inode_now+0x161/0x1e0
[  573.351484][T15525]        iput+0x5b2/0x920
[  573.355822][T15525]        ext4_xattr_block_set+0x273a/0x32a0
[  573.361726][T15525]        ext4_expand_extra_isize_ea+0x10ea/0x19e0
[  573.368193][T15525]        __ext4_expand_extra_isize+0x306/0x400
[  573.374386][T15525]        __ext4_mark_inode_dirty+0x45d/0x6e0
[  573.380476][T15525]        ext4_evict_inode+0x7ed/0xea0
[  573.385865][T15525]        evict+0x486/0x870
[  573.390290][T15525]        ext4_orphan_cleanup+0xbd4/0x1400
[  573.396024][T15525]        ext4_fill_super+0x5de4/0x66c0
[  573.401515][T15525]        get_tree_bdev+0x3e4/0x510
[  573.406633][T15525]        vfs_get_tree+0x8c/0x280
[  573.411586][T15525]        do_new_mount+0x24b/0xa40
[  573.416628][T15525]        __se_sys_mount+0x2da/0x3c0
[  573.421829][T15525]        do_syscall_64+0x55/0xb0
[  573.426780][T15525]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  573.433202][T15525] 
[  573.433202][T15525] other info that might help us debug this:
[  573.433202][T15525] 
[  573.443604][T15525]  Possible unsafe locking scenario:
[  573.443604][T15525] 
[  573.451060][T15525]        CPU0                    CPU1
[  573.456427][T15525]        ----                    ----
[  573.461797][T15525]   lock(&ei->xattr_sem);
[  573.466223][T15525]                                lock(&sbi->s_writepages_rwsem);
[  573.474118][T15525]                                lock(&ei->xattr_sem);
[  573.480980][T15525]   rlock(&sbi->s_writepages_rwsem);
[  573.486299][T15525] 
[  573.486299][T15525]  *** DEADLOCK ***
[  573.486299][T15525] 
[  573.494538][T15525] 3 locks held by syz.2.3516/15525:
[  573.499940][T15525]  #0: ffff88807a4640e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510
[  573.510158][T15525]  #1: ffff88807a464608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0
[  573.519587][T15525]  #2: ffff888058c8e4c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0
[  573.529958][T15525] 
[  573.529958][T15525] stack backtrace:
[  573.535861][T15525] CPU: 0 PID: 15525 Comm: syz.2.3516 Not tainted syzkaller #0
[  573.543333][T15525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  573.553396][T15525] Call Trace:
[  573.556684][T15525]  <TASK>
[  573.559623][T15525]  dump_stack_lvl+0x16c/0x230
[  573.564317][T15525]  ? load_image+0x3b0/0x3b0
[  573.568829][T15525]  ? show_regs_print_info+0x20/0x20
[  573.574074][T15525]  ? print_circular_bug+0x12b/0x1a0
[  573.579289][T15525]  check_noncircular+0x2bd/0x3c0
[  573.584255][T15525]  ? look_up_lock_class+0x75/0x140
[  573.589382][T15525]  ? print_deadlock_bug+0x5d0/0x5d0
[  573.594602][T15525]  ? lockdep_lock+0xe0/0x220
[  573.599214][T15525]  ? _find_first_zero_bit+0xd3/0x100
[  573.604513][T15525]  __lock_acquire+0x2ddb/0x7c80
[  573.609385][T15525]  ? mark_lock+0x94/0x320
[  573.613721][T15525]  ? verify_lock_unused+0x140/0x140
[  573.619014][T15525]  ? __lock_acquire+0x1334/0x7c80
[  573.624051][T15525]  ? verify_lock_unused+0x140/0x140
[  573.629268][T15525]  lock_acquire+0x197/0x410
[  573.633790][T15525]  ? ext4_writepages+0x170/0x2f0
[  573.638829][T15525]  ? __might_sleep+0xe0/0xe0
[  573.643440][T15525]  ? mark_lock+0x94/0x320
[  573.647774][T15525]  ? read_lock_is_recursive+0x20/0x20
[  573.653151][T15525]  ? __lock_acquire+0x1334/0x7c80
[  573.658188][T15525]  percpu_down_read+0x44/0x1a0
[  573.662969][T15525]  ? ext4_writepages+0x170/0x2f0
[  573.667940][T15525]  ext4_writepages+0x170/0x2f0
[  573.672749][T15525]  ? ext4_read_folio+0x2f0/0x2f0
[  573.677716][T15525]  ? __rwlock_init+0x150/0x150
[  573.682496][T15525]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  573.688501][T15525]  ? do_raw_spin_unlock+0x121/0x230
[  573.693723][T15525]  ? ext4_read_folio+0x2f0/0x2f0
[  573.698761][T15525]  do_writepages+0x3a2/0x600
[  573.703397][T15525]  ? folio_clear_dirty_for_io+0xc30/0xc30
[  573.709133][T15525]  ? writeback_single_inode+0x206/0x720
[  573.714696][T15525]  ? __lock_acquire+0x7c80/0x7c80
[  573.719739][T15525]  ? do_raw_spin_lock+0x121/0x2c0
[  573.724772][T15525]  ? get_tree_bdev+0x3e4/0x510
[  573.729547][T15525]  __writeback_single_inode+0x153/0xee0
[  573.735111][T15525]  writeback_single_inode+0x211/0x720
[  573.740586][T15525]  ? write_inode_now+0x1e0/0x1e0
[  573.745559][T15525]  write_inode_now+0x161/0x1e0
[  573.750360][T15525]  ? bdi_split_work_to_wbs+0x890/0x890
[  573.755871][T15525]  ? do_raw_spin_unlock+0x121/0x230
[  573.761144][T15525]  iput+0x5b2/0x920
[  573.764979][T15525]  ext4_xattr_block_set+0x273a/0x32a0
[  573.770712][T15525]  ? __might_sleep+0xe0/0xe0
[  573.775319][T15525]  ? xattr_find_entry+0x12b/0x2f0
[  573.780356][T15525]  ? ext4_xattr_block_find+0x350/0x350
[  573.785835][T15525]  ? ext4_xattr_block_find+0x2d4/0x350
[  573.791401][T15525]  ext4_expand_extra_isize_ea+0x10ea/0x19e0
[  573.797405][T15525]  __ext4_expand_extra_isize+0x306/0x400
[  573.803054][T15525]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  573.808526][T15525]  ext4_evict_inode+0x7ed/0xea0
[  573.813385][T15525]  ? _raw_spin_unlock+0x28/0x40
[  573.818252][T15525]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  573.824163][T15525]  ? do_raw_spin_unlock+0x121/0x230
[  573.829463][T15525]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  573.835366][T15525]  evict+0x486/0x870
[  573.839355][T15525]  ? __lock_acquire+0x7c80/0x7c80
[  573.844390][T15525]  ? proc_nr_inodes+0x230/0x230
[  573.849246][T15525]  ? do_raw_spin_unlock+0x121/0x230
[  573.854455][T15525]  ? _raw_spin_unlock+0x28/0x40
[  573.859314][T15525]  ? iput+0x70a/0x920
[  573.863305][T15525]  ext4_orphan_cleanup+0xbd4/0x1400
[  573.868522][T15525]  ? ext4_orphan_del+0xba0/0xba0
[  573.873474][T15525]  ? ext4_register_li_request+0x183/0x940
[  573.879205][T15525]  ? errseq_check_and_advance+0x66/0x120
[  573.884847][T15525]  ext4_fill_super+0x5de4/0x66c0
[  573.889902][T15525]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  573.896153][T15525]  ? __might_sleep+0xe0/0xe0
[  573.900756][T15525]  ? read_lock_is_recursive+0x20/0x20
[  573.906138][T15525]  ? snprintf+0xdb/0x120
[  573.910394][T15525]  ? vscnprintf+0x80/0x80
[  573.914731][T15525]  ? down_write+0x162/0x1f0
[  573.919237][T15525]  ? down_read_killable+0x340/0x340
[  573.924448][T15525]  ? setup_bdev_super+0x56b/0x660
[  573.929480][T15525]  get_tree_bdev+0x3e4/0x510
[  573.934080][T15525]  ? vfs_parse_fs_string+0x160/0x160
[  573.939457][T15525]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  573.945702][T15525]  ? setup_bdev_super+0x660/0x660
[  573.950739][T15525]  ? apparmor_capable+0x137/0x1a0
[  573.955871][T15525]  ? bpf_lsm_capable+0x9/0x10
[  573.960575][T15525]  ? security_capable+0x89/0xb0
[  573.965528][T15525]  vfs_get_tree+0x8c/0x280
[  573.970057][T15525]  do_new_mount+0x24b/0xa40
[  573.974661][T15525]  __se_sys_mount+0x2da/0x3c0
[  573.979347][T15525]  ? __x64_sys_mount+0xc0/0xc0
[  573.984310][T15525]  ? lockdep_hardirqs_on+0x98/0x150
[  573.989526][T15525]  ? __x64_sys_mount+0x20/0xc0
[  573.994387][T15525]  do_syscall_64+0x55/0xb0
[  573.999093][T15525]  ? clear_bhb_loop+0x40/0x90
[  574.003784][T15525]  ? clear_bhb_loop+0x40/0x90
[  574.008478][T15525]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  574.014464][T15525] RIP: 0033:0x7fdcf8f90eea
[  574.018980][T15525] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.038951][T15525] RSP: 002b:00007fdcf9d49e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  574.047376][T15525] RAX: ffffffffffffffda RBX: 00007fdcf9d49ef0 RCX: 00007fdcf8f90eea
[  574.055356][T15525] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fdcf9d49eb0
[  574.063337][T15525] RBP: 0000200000000180 R08: 00007fdcf9d49ef0 R09: 0000000000800700
[  574.071314][T15525] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  574.079295][T15525] R13: 00007fdcf9d49eb0 R14: 000000000000046f R15: 000000000000002c
[  574.087278][T15525]  </TASK>
[  574.113349][T15531] loop1: detected capacity change from 0 to 764
[  574.120032][T15525] EXT4-fs error (device loop2): ext4_xattr_inode_iget:444: inode #11: comm syz.2.3516: iget: bad extra_isize 90 (inode size 256)
[  574.135532][T15531] ISO 9660 Extensions: Microsoft Joliet Level 0
[  574.140010][T15525] EXT4-fs (loop2): Remounting filesystem read-only
[  574.150994][T15525] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -5)
[  574.152233][T15531] ISOFS: File unit size != 0 for ISO file (1792).
[  574.161563][T15525] EXT4-fs (loop2): 1 orphan inode deleted
[  574.174808][T15525] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  574.209972][T12519] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.561988][T15397] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  574.575514][T15397] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  574.588896][T15397] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  574.601760][T15397] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0