last executing test programs:

6m23.81566517s ago: executing program 4 (id=344):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
socket(0x18, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000008000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000680)={[{@lazytime}, {@bsdgroups}, {@nomblk_io_submit}, {@noquota}, {@oldalloc}, {@mblk_io_submit}, {@nodiscard}, {@data_ordered}]}, 0x1, 0x52e, &(0x7f0000000a80)="$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")
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r2, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000100))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x2, 0x3, 0xff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_usb_connect(0x6, 0x3c0, &(0x7f00000007c0)=ANY=[@ANYBLOB="120101027023eaff860517343043010203010902ae03010f020008090473f3104c4d5b080905020b1000e243030905090140000f3510220739c4f406193130af58a37793b766c5202e2380fd255ef48ae48cecceab46de70072501800901010905010320000b811bc40f2899f5110bd5eec742e5cda844c5b69d53162481910761bc47b13d50874ad8a00d9b7c31cb9be5caafa0cbf5d3d7ace32acc809a3ad0bdde17892e5421f5b39ce4516b4bfeaf795f1bb68e7f5221a9596a0f6a3e0d4455ee2c62adf01f79ff2c10b368484dd3b5e1af7b41969f84f135df3a5a90a080f299b0fb844a5f536c2b745696d9c9abe8bc6727743d62f8d85964bc6d48bce5bbbc78adb1091de4cc86d3d17208b9a19696affbd886bb463916cf93e5945c9fcfd209050f100004fe06040423dc1b0725010181010009050f0000020a07f709050010200020090309050d1048020c0804072501000106006a22e171a5ccf0c8e9806fc4ef87b127764c034d1c1da754b3cdd493796e067fdf9552336c07efebaa981a8c95a4481c2ea2f3c9bad472428689d3c649df2538a2e2f2e35014d944f91fc0442b9741a2fa303b8ad1e7c3660ecb25affcfccde71c979810199b509c081309050203200008090007250103060068090506041000040802072501000904007d22cab491c83b9bbebf505c2051e9aa88fe257376703e4935e2427f8f63162a08fb998c4bbbaace938cbcadf53a3263f7d3155c53496e4ab51dbed1bd710e533287fa0f169d9548e7db231e817dedd6988caeb330108fe55b89d35976cfceb658781291e45ec2cd8ffb327c7a0100ee453ceb97373ed9e70f931ade1b09050a0820000608050725014004060002040905800c0800f707051b0ad02982b924b2bcc05cb81e17115a61450225e0897934fffe4607250183e5020009050302ff037f80020725018080030009050310500001010207250183ff00100725018051800009050208400008020107250182956b00bc05b57b2f7a9366bf6b45c4e46f225ee8f7533a16c2a549287beab7db9e94fc237ba193dd2790b4af32da28e2839dbe0eeb2fe3d02c37a098a624654dac15bbe6d74226ed03c4d61e9472739dc8e658a646b3468c295f7be4c6f4cf90d9cf4dc1eab99159b46d0c38e8045891e9b26dddd0e47febec626b55c0fc749b9f9a28f4c1e37a10a4f9cb182518add9e96e2862e3e2a09088825fd0eea8bca2d2a9a2d98040f82e569a025dc0a00b144609a34184e0ed0b8f65ffce936a85090509104000300408150aec2d9878251dd4b3b4645ebf9473510cc5200f090506029f07810101"], &(0x7f0000000540)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x110, 0x10, 0x2, 0x8, 0x10, 0x6}, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="050f05006c"], 0x2, [{0x0, 0x0}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x406}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="5400000009060108000000000000000005fcffff0800020073717a31002a00000005000100070000002c000780060004404e21000005000700ff0000000c000180080001400a0101010c00028008001740e0000002cf4086c7e92f279669beb92d2868f2155338a2c2881684b180a99d9adb72b62f4b7819715b573d26dd1e22034327f1760c22f7826675e42c75cfeaae827f823ca921d91cade656cb4b533d8a98d763d7ce37a631a71c7de8c81cdef8af"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000580)='kfree\x00', 0xffffffffffffffff, 0x0, 0x400000006}, 0x18)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000300)={0x11, 0x10, r6, 0x1, 0x5, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})
r8 = syz_open_pts(r2, 0x0)
r9 = dup3(r8, r2, 0x0)
ioctl$TIOCSTI(r9, 0x5412, &(0x7f00000001c0)=0x11)

6m21.894877725s ago: executing program 4 (id=359):
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x80}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
syz_open_dev$rtc(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240), 0xfe, 0x54b, &(0x7f0000000400)="$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")
open(0x0, 0x14927e, 0x0)

6m17.828622463s ago: executing program 4 (id=377):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x18)
syz_mount_image$ext4(0x0, &(0x7f00000001c0)='./file0\x00', 0x286c188, 0x0, 0xff, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

6m16.830932s ago: executing program 4 (id=385):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x8b101b, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

6m16.71668168s ago: executing program 4 (id=387):
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x4001)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a40)=ANY=[@ANYBLOB="600000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800e00010069703665727370616e0000001c0002800400120014000700fe8000000000000000000000000000aa08000500", @ANYRES32=0x0, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x60}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)
unshare(0x64000600)

6m16.536537169s ago: executing program 4 (id=390):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
writev(r0, &(0x7f0000000380)=[{&(0x7f0000000040)="89e7ee2c7cdad9b4b4", 0x9}, {&(0x7f0000000100)="c2c1655895", 0x5}], 0x2)

6m16.071496198s ago: executing program 32 (id=390):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
writev(r0, &(0x7f0000000380)=[{&(0x7f0000000040)="89e7ee2c7cdad9b4b4", 0x9}, {&(0x7f0000000100)="c2c1655895", 0x5}], 0x2)

2m43.390704998s ago: executing program 0 (id=1984):
socket$netlink(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000000)=0x655e, 0x4)
dup(0xffffffffffffffff)
r2 = open(0x0, 0x1298c2, 0x0)
ftruncate(r2, 0x200004)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000004700)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, 0x0, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r6}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
r7 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000200), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r7, 0x10e, 0x4, &(0x7f0000000400)=0x802, 0x4)

2m39.291984227s ago: executing program 0 (id=1996):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0], 0x20)

2m38.933867676s ago: executing program 0 (id=2002):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[], 0xf0}}, 0x80)

2m37.384018011s ago: executing program 0 (id=2006):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x10, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000009c0)={{r0}, &(0x7f0000000940), &(0x7f0000000980)}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fedbdf25080000001800028014000380100001800400030008000100050000000c00018008000100", @ANYRES32=r4], 0x38}}, 0x0)

2m36.674519279s ago: executing program 0 (id=2010):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$eJzs3M9rHFUcAPDvTJL+bhNrrba2Gq1i8UfSpFV78KCi4EFB0EM9xiSttdtGmgi2BI0i9SgF7+JR8C/w5kXUgwheFTxKoWgQmnqKzK9mu9mkSZpkbfbzgc2+t/Nm3/vOzNt9My+zAbSt3uxPErEjIn6LiO4ie3OB3uJpZnpy+Pr05HASs7Nv/JXk5a5NTw5XRav1tpeZw2lE+mkSzyfz6x2/cPHMUK02er7M90+cfa9//MLFp06fHTo1emr03ODx48eODjz7zODTqxJnFte1/R+OHdj3yluXXxs+cfntH7/JmrX3YLG8Po5but4koCZ6s63292yucdmjy2j7nWBnXTrpbGFDWJaOiMh2V1fe/7ujI+Z2Xne8/ElLGwesqey7afPCi6dmgQ0siVa3AGiN6os+O/+tHus09PhfuPpCxKYyPTM9OTxzI/7OSMvXu9aw/t6IODH175fZI5Z7HQIAYAXysc2TzcZ/aezNn4u5jl3lHEpPRNwVEbsj4u6I2BMR90TkZe+NiPuKlWe7l1h/b0N+/vgnvdK0zaskG/89Vzf2m6mLv3zq6ShzO/P4u5KTp2ujR8ptcji6Nmf5gUXq+O6lXz9faFn9+C97ZPVXY8GyAVc6Gy7QjQxNDK3WRrj6ccT+zmbxJzdmArIjYF9E7F/eW++qEqcf//rAQoVuHf8iVmGeafariMeK/T8VDfFXksXnJ/u3RG30SH91VMz30y+XXl+o/tuKfxVk+3/bzcd/Q4nuf5JivrYrarXR8+PLr+PS758teE6z0uN/U/JmPmf98zvFax8MTUycH4jYlLya56tzuvz1wbl1q3xVPov/8KHm/X93uU4W//0RkR3EByPigYh4sGz7QxHxcEQcWiT+H1585N1F4k8iiZbu/5Gmn383jv+epH6+fgWJjjPff7vQjPnS9v+xmMo/awv5598tLLWBt7n5AAAA4I6QRsSOSNK+It27I9K0r6/4H/49sS2tjY1PPHFy7P1zI8U9Aj3RlVZXurrrrocOJFPlOxb5wfJacbX8aHnd+IuOrXm+b3isNtLi2KHdbb+5/0fV/zN/drS6dcCac78WtK/G/p+2qB3A+lvK979zAdiYmvT/ra1oB7D+nP9D+2rW/z9qyBv/w8Y0v///0eQn64CNyPgf2pf+D+1L/4e2dDv39a88Ud0ssPL32bLkO/zbJVH94sVa1rU15l6JtOUht1Ei6zHrW+ncb6gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADcyf4LAAD///ss5ts=")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYBLOB="040000000000800008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
lsetxattr$system_posix_acl(0x0, &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f0000000400)={{}, {0x1, 0x3}, [], {0x4, 0x2}, [], {0x10, 0x3}, {0x20, 0x2}}, 0x24, 0x0)

2m34.724937963s ago: executing program 0 (id=2017):
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x4001)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a40)=ANY=[@ANYBLOB="600000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800e00010069703665727370616e0000001c0002800400120014000700fe8000000000000000000000000000aa08000500", @ANYRES32=0x0, @ANYRES32], 0x60}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)
unshare(0x64000600)

2m18.322676046s ago: executing program 33 (id=2017):
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x4001)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a40)=ANY=[@ANYBLOB="600000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800e00010069703665727370616e0000001c0002800400120014000700fe8000000000000000000000000000aa08000500", @ANYRES32=0x0, @ANYRES32], 0x60}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)
unshare(0x64000600)

11.546538033s ago: executing program 6 (id=2495):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x18, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000003c0)={0x6, 0x3ff, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r4, 0x404c534a, &(0x7f0000000040))

11.341482392s ago: executing program 3 (id=2497):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x20000)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x7f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r7, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26)
getsockopt$bt_BT_SECURITY(r7, 0x111, 0x5, 0x0, 0x20001f00)
socket$nl_route(0x10, 0x3, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000340)={0x1f, 0x100}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, 0x0, 0x0)
syz_usb_disconnect(r2)
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)

8.107205873s ago: executing program 2 (id=2502):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f30000000000400010073697430000000000000000000000000140001007369743000"/108], 0xa8}}, 0x0)

7.976861353s ago: executing program 6 (id=2503):
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r2, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x24)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r3, 0x3, 0x1)
bind$inet6(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb23641492"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f0000000240)=ANY=[@ANYBLOB="000386dd0a00100000004000000060ec97020fc82b00fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
socket$rds(0x15, 0x5, 0x0)

7.817679142s ago: executing program 2 (id=2505):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x3ffffffffffffda, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$unix(0x1, 0x1, 0x0)
getsockopt(r5, 0x1, 0x4, 0x0, &(0x7f00000000c0))
syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086035b6885429d44547255a0dd600180f200140600208100000000000000000000000000bb3ef40884fe8000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x0, 0x8, 0x0, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000180100002fee702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000016c0), 0x2, 0x0)
unshare(0x64000600)

7.582757492s ago: executing program 3 (id=2506):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYBLOB, @ANYRES8, @ANYBLOB="1b000000000000010000", @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet(0x2, 0x4000000000000001, 0x100)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='kmem_cache_free\x00', r3}, 0x10)
pause()
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
sendto$inet(r2, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x15, 0x0, 0x0)
getsockopt$inet_mreqsrc(r2, 0x0, 0x28, &(0x7f00000002c0)={@loopback, @multicast2}, &(0x7f0000000300)=0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
fstatfs(0xffffffffffffffff, 0x0)
recvmsg(r2, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x5, 0xff, 0xd, 0x7}]})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x72)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0)
connect$pppoe(r6, &(0x7f0000000180)={0x18, 0x0, {0x0, @empty, 'syzkaller0\x00'}}, 0x1e)

6.387354848s ago: executing program 2 (id=2508):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
socket(0x18, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000008000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000680)={[{@lazytime}, {@bsdgroups}, {@nomblk_io_submit}, {@noquota}, {@oldalloc}, {@mblk_io_submit}, {@nodiscard}, {@data_ordered}]}, 0x1, 0x52e, &(0x7f0000000a80)="$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")
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x2, 0x3, 0xff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_usb_connect(0x6, 0x3c0, &(0x7f00000007c0)=ANY=[@ANYBLOB="120101027023eaff860517343043010203010902ae03010f020008090473f3104c4d5b080905020b1000e243030905090140000f3510220739c4f406193130af58a37793b766c5202e2380fd255ef48ae48cecceab46de70072501800901010905010320000b811bc40f2899f5110bd5eec742e5cda844c5b69d53162481910761bc47b13d50874ad8a00d9b7c31cb9be5caafa0cbf5d3d7ace32acc809a3ad0bdde17892e5421f5b39ce4516b4bfeaf795f1bb68e7f5221a9596a0f6a3e0d4455ee2c62adf01f79ff2c10b368484dd3b5e1af7b41969f84f135df3a5a90a080f299b0fb844a5f536c2b745696d9c9abe8bc6727743d62f8d85964bc6d48bce5bbbc78adb1091de4cc86d3d17208b9a19696affbd886bb463916cf93e5945c9fcfd209050f100004fe06040423dc1b0725010181010009050f0000020a07f709050010200020090309050d1048020c0804072501000106006a22e171a5ccf0c8e9806fc4ef87b127764c034d1c1da754b3cdd493796e067fdf9552336c07efebaa981a8c95a4481c2ea2f3c9bad472428689d3c649df2538a2e2f2e35014d944f91fc0442b9741a2fa303b8ad1e7c3660ecb25affcfccde71c979810199b509c081309050203200008090007250103060068090506041000040802072501000904007d22cab491c83b9bbebf505c2051e9aa88fe257376703e4935e2427f8f63162a08fb998c4bbbaace938cbcadf53a3263f7d3155c53496e4ab51dbed1bd710e533287fa0f169d9548e7db231e817dedd6988caeb330108fe55b89d35976cfceb658781291e45ec2cd8ffb327c7a0100ee453ceb97373ed9e70f931ade1b09050a0820000608050725014004060002040905800c0800f707051b0ad02982b924b2bcc05cb81e17115a61450225e0897934fffe4607250183e5020009050302ff037f80020725018080030009050310500001010207250183ff00100725018051800009050208400008020107250182956b00bc05b57b2f7a9366bf6b45c4e46f225ee8f7533a16c2a549287beab7db9e94fc237ba193dd2790b4af32da28e2839dbe0eeb2fe3d02c37a098a624654dac15bbe6d74226ed03c4d61e9472739dc8e658a646b3468c295f7be4c6f4cf90d9cf4dc1eab99159b46d0c38e8045891e9b26dddd0e47febec626b55c0fc749b9f9a28f4c1e37a10a4f9cb182518add9e96e2862e3e2a09088825fd0eea8bca2d2a9a2d98040f82e569a025dc0a00b144609a34184e0ed0b8f65ffce936a85090509104000300408150aec2d9878251dd4b3b4645ebf9473510cc5200f090506029f07810101"], &(0x7f0000000540)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x110, 0x10, 0x2, 0x8, 0x10, 0x6}, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="050f05006c"], 0x2, [{0x0, 0x0}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x406}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000580)='kfree\x00', 0xffffffffffffffff, 0x0, 0x400000006}, 0x18)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
bind$packet(0xffffffffffffffff, &(0x7f0000000300)={0x11, 0x10, 0x0, 0x1, 0x5, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})
r3 = syz_open_pts(r1, 0x0)
r4 = dup3(r3, r1, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000001c0)=0x11)

6.348995808s ago: executing program 6 (id=2509):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2810000, &(0x7f0000000380)={[{@user_xattr}, {@noquota}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@jqfmt_vfsv1}, {@block_validity}, {@dioread_nolock}, {@noquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x8}}, {@delalloc}, {@user_xattr}, {@quota}]}, 0x1, 0x54f, &(0x7f0000000b00)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
mount$bind(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x2021, 0x0)

6.136575558s ago: executing program 5 (id=2511):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
readv(r0, &(0x7f0000000840)=[{&(0x7f0000000080)=""/41, 0x29}], 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

5.719444686s ago: executing program 3 (id=2512):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000003500)=@newtfilter={0x64, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r3, {0xc, 0x4}, {}, {0x3, 0xf}}, [@filter_kind_options=@f_flow={{0x9}, {0x34, 0x2, [@TCA_FLOW_EMATCHES={0x30, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x24, 0x2, 0x0, 0x1, [@TCF_EM_META={0x20, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x0, 0x7, 0x2}}}, @TCA_EM_META_LVALUE={0x5, 0x2, [@TCF_META_TYPE_VAR='G']}]}}]}]}]}}]}, 0x64}}, 0x20040054)

5.681964526s ago: executing program 1 (id=2513):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x18, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000003c0)={0x6, 0x3ff, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r4, 0x404c534a, &(0x7f0000000040))

5.506302766s ago: executing program 6 (id=2514):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x20000)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x7f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r8, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r9, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32)
connect$pppl2tp(r7, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26)
getsockopt$bt_BT_SECURITY(r7, 0x111, 0x5, 0x0, 0x20001f00)
socket$nl_route(0x10, 0x3, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000340)={0x1f, 0x100}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, 0x0, 0x0)
syz_usb_disconnect(r2)
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)

5.470421446s ago: executing program 3 (id=2515):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000004000100736974300000000000000000000000001400010073697430000000000000000000000000080002400000000008000140000000000900"], 0xa8}}, 0x0)

5.162821165s ago: executing program 3 (id=2516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x20000)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x7f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r7, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26)
getsockopt$bt_BT_SECURITY(r7, 0x111, 0x5, 0x0, 0x20001f00)
socket$nl_route(0x10, 0x3, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000340)={0x1f, 0x100}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, 0x0, 0x0)
syz_usb_disconnect(r2)
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0)

4.097007892s ago: executing program 5 (id=2517):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff034}, {0x6}]}, 0x10)
r2 = fcntl$dupfd(r0, 0x0, r1)
syz_genetlink_get_family_id$devlink(&(0x7f0000000280), r2)

3.59637124s ago: executing program 1 (id=2518):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, '7'}]}], {0x14}}, 0x74}}, 0x0)

3.34173978s ago: executing program 1 (id=2519):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x3ffffffffffffda, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$unix(0x1, 0x1, 0x0)
getsockopt(r5, 0x1, 0x4, 0x0, &(0x7f00000000c0))
syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086035b6885429d44547255a0dd600180f200140600208100000000000000000000000000bb3ef40884fe8000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x0, 0x8, 0x0, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000180100002fee702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000016c0), 0x2, 0x0)
unshare(0x64000600)

3.032985869s ago: executing program 2 (id=2520):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x36, &(0x7f0000000300)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x5, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010100}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}}}}}}, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="9402000021000100fcffffff00000000ac1414aae5fffff8b49ed9825133a900fc0100000000000000000000000000000000add500200000000000801aeaaec1", @ANYRES32=0x0, @ANYRES32=0x0], 0x294}, 0x1, 0x0, 0x0, 0x8021}, 0x4020054)

3.012518988s ago: executing program 5 (id=2521):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e24, 0x200, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4ac2d78a}}, 0x0, 0x0, 0x3f, 0x0, "ee8b0e650926a96ecc136e7fb980e989db9e8bf9b93129488f651a8de213eb94cd46e19d9c65a018444a131f4da58ae36556dd38ea6c029607462029add09240005c6776267517308a3d40aa1c788df6"}, 0xd8)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
ioctl$int_in(r0, 0x5421, &(0x7f0000000140)=0x1)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)

2.015607395s ago: executing program 1 (id=2522):
inotify_init()
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x73)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'geneve1\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000180)="0b031200e0ff64000200475400f6a13bb1000000086086dd4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x8100, r4}, 0x14)

1.930271775s ago: executing program 6 (id=2523):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYBLOB, @ANYRES8, @ANYBLOB="1b000000000000010000", @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet(0x2, 0x4000000000000001, 0x100)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='kmem_cache_free\x00', r3}, 0x10)
pause()
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000600000000000000000000000000997d2854556d7d6f52cbbe630b56bda8db02cd6c4479536e8df83958131142d7c0e643056bc574224a29e121034ae1efd11ba83fc464652ebb94cabdeeef941bc9b2a5f8dc4fab03030891499174304b722b72a353e77c646a585323389fad77d8ae86445c0e553bdfd8f2e4fc1f13841f8f6ed94501001b9723793f74b7f8fdab58b5a66cdb02423d39e1e17447b0dc96113b03d2ba48017f8aaf27ccae89ea97af570d21497af8b7c81378d92e9a919f2ab24b1eea846f382a1fce1ed45a4326e7235f1a3d64445976b4497c8d8905bdad7d9e9283c2aa6f02ad11fdd3b6536f8cd85c80833df075ba2924f8d318726cae0ee8779f3a25f16daca75261f2f2e65f3d8380fe1cc7"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
sendto$inet(r2, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x15, 0x0, 0x0)
getsockopt$inet_mreqsrc(r2, 0x0, 0x28, &(0x7f00000002c0)={@loopback, @multicast2}, &(0x7f0000000300)=0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
fstatfs(0xffffffffffffffff, 0x0)
recvmsg(r2, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x5, 0xff, 0xd, 0x7}]})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x72)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0)
connect$pppoe(r6, &(0x7f0000000180)={0x18, 0x0, {0x0, @empty, 'syzkaller0\x00'}}, 0x1e)

1.776367015s ago: executing program 5 (id=2524):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffefb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.766643635s ago: executing program 2 (id=2525):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000003500)=@newtfilter={0x70, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r3, {0xc, 0x4}, {}, {0x3, 0xf}}, [@filter_kind_options=@f_flow={{0x9}, {0x40, 0x2, [@TCA_FLOW_EMATCHES={0x3c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x38, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0x20, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x0, 0x7, 0x2}}}, @TCA_EM_META_LVALUE={0x5, 0x2, [@TCF_META_TYPE_VAR='G']}]}}]}]}]}}]}, 0x70}}, 0x20040054)

1.616762464s ago: executing program 1 (id=2526):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000004000100736974300000000000000000000000001400010073697430000000000000000000000000080002400000000008000140000000000900"], 0xa8}}, 0x0)

1.441601084s ago: executing program 5 (id=2527):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
readv(r0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

1.394238644s ago: executing program 3 (id=2528):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32], 0x0, 0x18, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000003c0)={0x6, 0x3ff, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r4, 0x404c534a, &(0x7f0000000040))

1.251541273s ago: executing program 1 (id=2529):
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x80}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
syz_open_dev$rtc(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240), 0xfe, 0x54b, &(0x7f0000000400)="$eJzs3d9rW1UcAPDvTdv96nQdjKE+SGEPTubStfXHBB/mo+hwoO8ztHdlNF1Gk461Dtwe3IsvMgQRB+If4LuPw3/Av2KggyGj6IMvkZvebNmaNGmXrZn5fOC259x70nNP7v2enpOTkACG1mT2oxDxakR8m0Qcajk2GvnByY1y6w+uzWVbEvX6Z38lkeT7muWT/Pd4nnklIn77OuJEYXO91dW1xVK5nC7n+ana0uWp6urayYtLpYV0Ib00Mzt7+p3Zmfffe7dvbX3z3D8/fHrno9PfHFv//pd7h28lcSYO5sda2/EUrrdmJmMyf07G4swTBaf7UNkgSXb7BNiRkTzOxyLrAw7FSB71wP/fVxFRB4ZUIv5hSDXHAc25fZ/mwS+M+x9uTIA2tz/ZeG0k9jXmRgfWk8dmRtl8d6IP9Wd1/Prn7VvZFv17HQKgq+s3IuLU6Gjn/m/nTvVQ5sk69H/w/NzJxj9vtRv/FB6Of6LN+Ge8TezuRPf4L9zrQzUdZeO/D9qOfx8uWk2M5LmXGmO+seTCxXKa9W0vR8TxGNub5bdazzm9frfe6Vjr+C/bsvqbY8H8PO6N7n38MfOlWulp2tzq/o2I17qMf5M21z97Ps71WMfR9PbrnY51b/+zVf854o221//Rilay9frkVON+mGreFZv9ffPo753q3+32Z9f/wNbtn0ha12ur26/jp33/pp2OTSb5ouk27/89yeeN9J5839VSrbY8HbEn+WTz/plHj23mm+Wz9h8/tnX/1+7+3x8RX/TY/ptHbnYsOgjXf35b13/7ibsff/ljp/p76//ebqSO53t66f96PcGnee4AAAAAAABg0BQi4mAkheLDdKFQLG68v+NIHCiUK9XaiQuVlUvz0fis7ESMFZor3eMt74eYzt8P28zPPJGfjYjDEfHdyP5GvjhXKc/vduMBAAAAAAAAAAAAAAAAAABgQIx3+Px/5o+R3T474Jnzld8wvLrGfz++6QkYSP7/w/AS/zC8xD8ML/EPw0v8w/AS/zC8xD8ML/EPAAAAAAAAAAAAAAAAAAAAAAAAAAAAfXXu7Nlsq68/uDaX5eevrK4sVq6cnE+ri8WllbniXGX5cnGhUlkop8W5ylK3v1euVC5Pz8TK1alaWq1NVVfXzi9VVi7Vzl9cKi2k59Ox59IqAAAAAAAAAAAAAAAAAAAAeLFUV9cWS+VyuiwhsaPE6GCchkSfE7vdMwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAI/8FAAD//wZvNao=")
open(0x0, 0x14927e, 0x0)

825.430442ms ago: executing program 2 (id=2530):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
socket(0x18, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000008000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000680)={[{@lazytime}, {@bsdgroups}, {@nomblk_io_submit}, {@noquota}, {@oldalloc}, {@mblk_io_submit}, {@nodiscard}, {@data_ordered}]}, 0x1, 0x52e, &(0x7f0000000a80)="$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")
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x2, 0x3, 0xff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_usb_connect(0x6, 0x3c0, &(0x7f00000007c0)=ANY=[@ANYBLOB="120101027023eaff860517343043010203010902ae03010f020008090473f3104c4d5b080905020b1000e243030905090140000f3510220739c4f406193130af58a37793b766c5202e2380fd255ef48ae48cecceab46de70072501800901010905010320000b811bc40f2899f5110bd5eec742e5cda844c5b69d53162481910761bc47b13d50874ad8a00d9b7c31cb9be5caafa0cbf5d3d7ace32acc809a3ad0bdde17892e5421f5b39ce4516b4bfeaf795f1bb68e7f5221a9596a0f6a3e0d4455ee2c62adf01f79ff2c10b368484dd3b5e1af7b41969f84f135df3a5a90a080f299b0fb844a5f536c2b745696d9c9abe8bc6727743d62f8d85964bc6d48bce5bbbc78adb1091de4cc86d3d17208b9a19696affbd886bb463916cf93e5945c9fcfd209050f100004fe06040423dc1b0725010181010009050f0000020a07f709050010200020090309050d1048020c0804072501000106006a22e171a5ccf0c8e9806fc4ef87b127764c034d1c1da754b3cdd493796e067fdf9552336c07efebaa981a8c95a4481c2ea2f3c9bad472428689d3c649df2538a2e2f2e35014d944f91fc0442b9741a2fa303b8ad1e7c3660ecb25affcfccde71c979810199b509c081309050203200008090007250103060068090506041000040802072501000904007d22cab491c83b9bbebf505c2051e9aa88fe257376703e4935e2427f8f63162a08fb998c4bbbaace938cbcadf53a3263f7d3155c53496e4ab51dbed1bd710e533287fa0f169d9548e7db231e817dedd6988caeb330108fe55b89d35976cfceb658781291e45ec2cd8ffb327c7a0100ee453ceb97373ed9e70f931ade1b09050a0820000608050725014004060002040905800c0800f707051b0ad02982b924b2bcc05cb81e17115a61450225e0897934fffe4607250183e5020009050302ff037f80020725018080030009050310500001010207250183ff00100725018051800009050208400008020107250182956b00bc05b57b2f7a9366bf6b45c4e46f225ee8f7533a16c2a549287beab7db9e94fc237ba193dd2790b4af32da28e2839dbe0eeb2fe3d02c37a098a624654dac15bbe6d74226ed03c4d61e9472739dc8e658a646b3468c295f7be4c6f4cf90d9cf4dc1eab99159b46d0c38e8045891e9b26dddd0e47febec626b55c0fc749b9f9a28f4c1e37a10a4f9cb182518add9e96e2862e3e2a09088825fd0eea8bca2d2a9a2d98040f82e569a025dc0a00b144609a34184e0ed0b8f65ffce936a85090509104000300408150aec2d9878251dd4b3b4645ebf9473510cc5200f090506029f07810101"], &(0x7f0000000540)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x110, 0x10, 0x2, 0x8, 0x10, 0x6}, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="050f05006c"], 0x2, [{0x0, 0x0}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x406}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000580)='kfree\x00', 0xffffffffffffffff, 0x0, 0x400000006}, 0x18)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
bind$packet(0xffffffffffffffff, &(0x7f0000000300)={0x11, 0x10, 0x0, 0x1, 0x5, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})
r3 = syz_open_pts(r1, 0x0)
r4 = dup3(r3, r1, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000001c0)=0x11)

541.13µs ago: executing program 6 (id=2531):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="48000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32, @ANYBLOB="0a0001"], 0x48}}, 0x0)

0s ago: executing program 5 (id=2532):
openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000000880)={[{@errors_remount}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@nojournal_checksum}]}, 0x2, 0x44a, &(0x7f0000000400)="$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")
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r0)
pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x15)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000040000001400050003030000000a000a00"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)

kernel console output (not intermixed with test programs):

 usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  275.007321][ T8290] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1437'.
[  275.092256][   T14] usb 4-1: device descriptor read/64, error -71
[  275.243358][   T14] usb usb4-port1: attempt power cycle
[  275.698607][   T14] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  275.742166][   T14] usb 4-1: device descriptor read/8, error -71
[  275.791724][ T8308] loop2: detected capacity change from 0 to 128
[  275.811830][ T8308] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  275.910044][   T26] audit: type=1326 audit(1738735650.191:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  275.947012][   T26] audit: type=1326 audit(1738735650.228:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.017694][   T26] audit: type=1326 audit(1738735650.228:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.051540][   T14] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  276.094353][   T26] audit: type=1326 audit(1738735650.228:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.095048][   T14] usb 4-1: device descriptor read/8, error -71
[  276.166032][   T26] audit: type=1326 audit(1738735650.228:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.199084][   T26] audit: type=1326 audit(1738735650.228:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.257224][   T26] audit: type=1326 audit(1738735650.228:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.286003][   T26] audit: type=1326 audit(1738735650.228:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.344414][   T14] usb usb4-port1: unable to enumerate USB device
[  276.407824][   T26] audit: type=1326 audit(1738735650.228:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.469444][   T26] audit: type=1326 audit(1738735650.228:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.1.1444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  276.916782][ T8332] loop3: detected capacity change from 0 to 512
[  276.981841][ T8331] loop5: detected capacity change from 0 to 4096
[  276.984865][ T8332] EXT4-fs: Ignoring removed nobh option
[  277.026385][ T8332] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  277.075283][ T8331] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  277.156562][ T8332] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  277.174296][ T8332] ext4 filesystem being mounted at /266/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  277.227444][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  277.240858][ T8332] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1454'.
[  277.306849][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  277.329690][ T8342] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1457'.
[  277.571682][ T8348] af_packet: tpacket_rcv: packet too big, clamped from 1 to 4294967272. macoff=96
[  277.897011][ T8360] loop3: detected capacity change from 0 to 128
[  278.767095][ T4262] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  278.787768][    C1] raw-gadget.0 gadget.5: ignoring, device is not running
[  278.959260][ T4262] usb 6-1: device descriptor read/64, error -32
[  279.165733][ T8374] loop0: detected capacity change from 0 to 512
[  279.223560][ T8374] EXT4-fs: Ignoring removed bh option
[  279.247889][ T4262] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  279.280395][ T8378] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1469'.
[  279.350243][ T8374] EXT4-fs error (device loop0): ext4_quota_enable:6986: comm syz.0.1466: inode #33554432: comm syz.0.1466: iget: illegal inode #
[  279.366243][ T8374] EXT4-fs (loop0): Remounting filesystem read-only
[  279.372802][ T8374] EXT4-fs error (device loop0): ext4_quota_enable:6989: comm syz.0.1466: Bad quota inode: 33554432, type: 2
[  279.399308][ T8374] EXT4-fs (loop0): Remounting filesystem read-only
[  279.405874][ T8374] EXT4-fs warning (device loop0): ext4_enable_quotas:7030: Failed to enable quota tracking (type=2, err=-117, ino=33554432). Please run e2fsck to fix.
[  279.408458][ T4262] usb 6-1: device descriptor read/64, error -71
[  279.478632][ T8374] EXT4-fs (loop0): mount failed
[  279.684066][ T4262] usb usb6-port1: attempt power cycle
[  280.095349][ T8399] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1477'.
[  280.127377][ T4262] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  280.181777][ T4262] usb 6-1: device descriptor read/8, error -71
[  280.234615][ T8405] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1479'.
[  280.274893][ T8407] netlink: 'syz.1.1480': attribute type 12 has an invalid length.
[  280.294342][ T8407] loop1: detected capacity change from 0 to 128
[  280.309816][ T8407] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  280.468187][ T4262] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  280.531282][ T4262] usb 6-1: device descriptor read/8, error -71
[  280.660472][ T4262] usb usb6-port1: unable to enumerate USB device
[  281.223770][ T8429] loop1: detected capacity change from 0 to 128
[  281.291048][ T8429] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  281.301902][ T8429] ext4 filesystem being mounted at /324/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.326870][ T8429] netlink: 244 bytes leftover after parsing attributes in process `syz.1.1489'.
[  281.392273][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  282.101729][ T8453] netlink: 'syz.5.1500': attribute type 12 has an invalid length.
[  282.160074][ T8455] device bridge0 entered promiscuous mode
[  282.162099][ T8453] loop5: detected capacity change from 0 to 128
[  282.174444][ T8455] device macvlan2 entered promiscuous mode
[  282.180718][ T8453] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  282.191425][ T8455] bridge0: port 1(macvlan2) entered blocking state
[  282.198153][ T8455] bridge0: port 1(macvlan2) entered disabled state
[  282.996499][ T8455] device bridge0 left promiscuous mode
[  283.128855][ T4239] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  283.310434][ T4239] usb 2-1: device descriptor read/64, error -71
[  283.342562][ T8471] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1506'.
[  283.599745][ T4239] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  283.791620][ T4239] usb 2-1: device descriptor read/64, error -71
[  283.930717][ T4239] usb usb2-port1: attempt power cycle
[  283.980143][ T8492] tmpfs: Bad value for 'mpol'
[  284.171685][   T26] kauditd_printk_skb: 30 callbacks suppressed
[  284.171703][   T26] audit: type=1326 audit(1738735657.927:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.227072][   T26] audit: type=1326 audit(1738735657.927:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.251165][   T26] audit: type=1326 audit(1738735657.927:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.283518][   T26] audit: type=1326 audit(1738735657.927:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.381576][ T4239] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  284.381730][   T26] audit: type=1326 audit(1738735657.936:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.418233][ T8501] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1521'.
[  284.444378][ T4239] usb 2-1: device descriptor read/8, error -71
[  284.448644][   T26] audit: type=1326 audit(1738735657.936:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.532012][   T26] audit: type=1326 audit(1738735657.964:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.577001][   T26] audit: type=1326 audit(1738735657.964:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.621553][   T26] audit: type=1326 audit(1738735657.964:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.0.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b5ed8cde9 code=0x7ffc0000
[  284.690972][ T8510] tipc: Started in network mode
[  284.695987][ T8510] tipc: Node identity 326b00000000000005, cluster identity 4711
[  284.742870][ T4239] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  284.797176][ T4239] usb 2-1: device descriptor read/8, error -71
[  284.935503][ T4239] usb usb2-port1: unable to enumerate USB device
[  285.948889][ T8552] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  285.990248][ T8552] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  286.022721][ T8552] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  286.806216][ T4262] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  287.018812][ T8552] team0: Mode changed to "loadbalance"
[  287.025818][ T4262] usb 6-1: device descriptor read/64, error -71
[  287.319315][ T4262] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  287.344824][ T8580] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1551'.
[  287.496427][ T4262] usb 6-1: device descriptor read/64, error -71
[  287.629664][ T4262] usb usb6-port1: attempt power cycle
[  287.648019][ T8592] loop2: detected capacity change from 0 to 128
[  287.678476][ T8592] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  288.067893][ T4262] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  288.111588][ T4262] usb 6-1: device descriptor read/8, error -71
[  288.124290][ T8608] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  288.168961][ T8608] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  288.194684][ T8608] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  288.205840][ T8608] device bridge_slave_0 left promiscuous mode
[  288.219900][ T8608] bridge0: port 1(bridge_slave_0) entered disabled state
[  288.236594][ T8608] device bridge_slave_1 left promiscuous mode
[  288.246636][ T8608] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.278582][ T8608] bond0: (slave bond_slave_0): Releasing backup interface
[  288.299846][   T26] audit: type=1326 audit(1738735661.781:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.1.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  288.352542][ T8608] bond0: (slave bond_slave_1): Releasing backup interface
[  288.399251][ T4262] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  288.442611][ T4262] usb 6-1: device descriptor read/8, error -71
[  288.483056][ T8608] infiniband syz!: set down
[  288.495613][ T8608] team0: Port device team_slave_0 removed
[  288.519974][ T8608] team0: Port device team_slave_1 removed
[  288.539704][ T8608] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  288.547191][ T8608] batman_adv: batadv0: Removing interface: batadv_slave_0
[  288.556882][ T8608] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  288.565709][ T8608] batman_adv: batadv0: Removing interface: batadv_slave_1
[  288.591698][ T4262] usb usb6-port1: unable to enumerate USB device
[  288.653178][ T8610] team0: Mode changed to "loadbalance"
[  288.748911][ T8619] syz.2.1563[8619] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  288.749012][ T8619] syz.2.1563[8619] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  288.984413][ T8619] loop2: detected capacity change from 0 to 8192
[  289.045239][ T8627] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1568'.
[  289.049634][ T8619] syz.2.1563: attempt to access beyond end of device
[  289.049634][ T8619] loop2: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  289.074263][ T8629] loop3: detected capacity change from 0 to 512
[  289.084199][ T8619] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[  289.093929][ T8629] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  289.119247][ T8619] FAT-fs (loop2): Filesystem has been set read-only
[  289.162748][ T8619] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[  289.181698][ T8619] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[  289.205306][ T8629] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  289.257169][ T8629] System zones: 0-2, 18-18, 34-35
[  289.276793][ T8629] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  289.390713][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  289.540499][ T8641] program syz.3.1571 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  289.915346][ T8657] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1575'.
[  290.131509][ T8667] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1579'.
[  291.778706][ T4262] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  291.795244][ T8694] rdma_op ffff88807dec59f0 conn xmit_rdma 0000000000000000
[  291.969652][ T8698] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1592'.
[  292.057810][ T4262] usb 4-1: device descriptor read/64, error -71
[  292.354948][ T4262] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  292.569507][ T4262] usb 4-1: device descriptor read/64, error -71
[  292.719313][ T4262] usb usb4-port1: attempt power cycle
[  293.274044][ T4262] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  293.327902][ T4262] usb 4-1: device descriptor read/8, error -71
[  293.830480][ T8741] lo speed is unknown, defaulting to 1000
[  294.092107][ T8750] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1610'.
[  294.432164][ T8741] ip6gretap0 speed is unknown, defaulting to 1000
[  295.743576][   T27] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  295.946829][   T27] usb 1-1: device descriptor read/64, error -71
[  296.246166][   T27] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  296.355675][ T8776] dccp_close: ABORT with 900 bytes unread
[  296.427879][   T27] usb 1-1: device descriptor read/64, error -71
[  296.556346][   T27] usb usb1-port1: attempt power cycle
[  296.994427][   T27] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  297.027275][   T27] usb 1-1: device descriptor read/8, error -71
[  297.093741][ T8799] loop1: detected capacity change from 0 to 128
[  297.129623][ T8799] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  297.166732][ T8803] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1633'.
[  297.325824][   T27] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  297.370409][   T27] usb 1-1: device descriptor read/8, error -71
[  297.497218][   T27] usb usb1-port1: unable to enumerate USB device
[  297.805456][ T8823] device bridge0 entered promiscuous mode
[  297.836702][ T8823] device macvlan2 entered promiscuous mode
[  297.866416][ T8823] bridge0: port 2(macvlan2) entered blocking state
[  297.874833][ T8827] loop5: detected capacity change from 0 to 512
[  297.896698][ T8823] bridge0: port 2(macvlan2) entered disabled state
[  297.935488][ T8823] device bridge0 left promiscuous mode
[  297.995525][ T8827] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  298.049902][ T8827] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  298.088236][ T8827] System zones: 0-2, 18-18, 34-35
[  298.100266][ T8827] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  298.318265][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  298.693289][ T8846] loop5: detected capacity change from 0 to 128
[  298.730766][ T8846] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  298.781637][ T8846] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  299.025255][ T8857] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1657'.
[  299.280246][ T8864] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1658'.
[  299.407287][ T8864] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1658'.
[  299.977256][   T27] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  300.212267][   T27] usb 4-1: device descriptor read/64, error -71
[  300.407100][ T8872] loop5: detected capacity change from 0 to 512
[  300.429246][ T8872] EXT4-fs: Ignoring removed oldalloc option
[  300.482288][ T8872] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.1660: Parent and EA inode have the same ino 15
[  300.511750][   T27] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  300.543617][ T8872] EXT4-fs (loop5): Remounting filesystem read-only
[  300.565309][ T8872] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.1660: Parent and EA inode have the same ino 15
[  300.595653][ T8872] EXT4-fs (loop5): Remounting filesystem read-only
[  300.623653][ T8872] EXT4-fs (loop5): 1 orphan inode deleted
[  300.653810][ T8879] usb usb9: usbfs: process 8879 (syz.1.1663) did not claim interface 0 before use
[  300.668960][ T8872] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  300.682611][   T27] usb 4-1: device descriptor read/64, error -71
[  300.811065][   T27] usb usb4-port1: attempt power cycle
[  300.833151][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  300.930736][ T8883] loop2: detected capacity change from 0 to 128
[  301.007242][ T8883] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  301.041478][ T8883] ext4 filesystem being mounted at /331/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  301.249361][   T27] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  301.404283][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  301.436730][ T8895] loop1: detected capacity change from 0 to 512
[  301.448900][ T8894] loop0: detected capacity change from 0 to 512
[  301.469435][   T27] usb 4-1: device descriptor read/8, error -71
[  301.476825][ T8894] EXT4-fs: Ignoring removed bh option
[  301.495427][ T8895] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  301.540615][ T8894] EXT4-fs: Mount option(s) incompatible with ext2
[  301.560784][ T8895] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  301.585357][ T8895] ext4 filesystem being mounted at /370/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  301.608236][ T8895] capability: warning: `syz.1.1669' uses 32-bit capabilities (legacy support in use)
[  301.619871][ T4437] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  301.688489][ T8902] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1672'.
[  301.732314][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  301.783807][   T27] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  301.837811][   T27] usb 4-1: device descriptor read/8, error -71
[  301.971185][   T27] usb usb4-port1: unable to enumerate USB device
[  302.015369][ T8908] loop1: detected capacity change from 0 to 256
[  302.081849][   T26] kauditd_printk_skb: 5 callbacks suppressed
[  302.081865][   T26] audit: type=1804 audit(1738735674.680:490): pid=8908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1674" name="/newroot/372/bus/bus" dev="loop1" ino=1048610 res=1 errno=0
[  302.443725][ T8914] loop5: detected capacity change from 0 to 128
[  302.848188][ T8894] loop0: detected capacity change from 0 to 256
[  302.906305][   T26] audit: type=1804 audit(1738735675.447:491): pid=8894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1670" name="/newroot/344/file0/file1/file0" dev="loop0" ino=1048612 res=1 errno=0
[  302.994309][   T26] audit: type=1800 audit(1738735675.447:492): pid=8894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1670" name="file0" dev="loop0" ino=1048612 res=0 errno=0
[  303.016433][ T8922] device syzkaller0 entered promiscuous mode
[  304.404026][   T27] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  304.590736][   T27] usb 3-1: device descriptor read/64, error -71
[  304.884169][   T27] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  305.071395][   T27] usb 3-1: device descriptor read/64, error -71
[  305.210511][   T27] usb usb3-port1: attempt power cycle
[  305.669147][   T27] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  305.708144][   T27] usb 3-1: device descriptor read/8, error -71
[  305.878437][ T8960] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1694'.
[  305.996410][   T27] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  306.049375][   T27] usb 3-1: device descriptor read/8, error -71
[  306.178701][   T27] usb usb3-port1: unable to enumerate USB device
[  306.652328][ T8966] loop0: detected capacity change from 0 to 256
[  306.690851][   T26] audit: type=1804 audit(1738735678.973:493): pid=8966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1696" name="/newroot/353/bus/bus" dev="loop0" ino=1048613 res=1 errno=0
[  307.083212][ T8942] netlink: 'syz.1.1686': attribute type 13 has an invalid length.
[  308.930430][ T9007] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1712'.
[  308.930700][ T8942] bridge0: port 1(bridge_slave_0) entered disabled state
[  309.187912][ T4294] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  309.363457][ T4294] usb 1-1: device descriptor read/64, error -71
[  309.652107][ T4294] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  309.823492][ T4294] usb 1-1: device descriptor read/64, error -71
[  309.953179][ T4294] usb usb1-port1: attempt power cycle
[  310.392351][ T4294] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  310.447182][ T4294] usb 1-1: device descriptor read/8, error -71
[  310.471611][ T8942] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  310.480845][ T8942] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  310.489414][ T8942] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  310.498755][ T8942] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  310.734581][ T4294] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  310.775362][ T4294] usb 1-1: device descriptor read/8, error -71
[  310.919849][ T4294] usb usb1-port1: unable to enumerate USB device
[  311.116558][ T9011] device syzkaller0 entered promiscuous mode
[  311.137559][ T9033] loop0: detected capacity change from 0 to 1024
[  311.251671][ T9033] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  311.524153][ T9044] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1724'.
[  311.636701][   T11] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  311.666490][ T9048] loop5: detected capacity change from 0 to 512
[  311.673996][   T11] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 520 with error 28
[  311.716201][ T9048] EXT4-fs: Ignoring removed oldalloc option
[  311.720767][   T11] EXT4-fs (loop0): This should not happen!! Data will be lost
[  311.720767][   T11] 
[  311.759120][ T9048] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.1727: Parent and EA inode have the same ino 15
[  311.772359][   T11] EXT4-fs (loop0): Total free blocks count 0
[  311.778392][   T11] EXT4-fs (loop0): Free/Dirty block details
[  311.791772][ T9051] loop3: detected capacity change from 0 to 1024
[  311.800482][ T9048] EXT4-fs (loop5): Remounting filesystem read-only
[  311.816428][   T11] EXT4-fs (loop0): free_blocks=68451041280
[  311.822532][   T11] EXT4-fs (loop0): dirty_blocks=528
[  311.827856][   T11] EXT4-fs (loop0): Block reservation details
[  311.834148][   T11] EXT4-fs (loop0): i_reserved_data_blocks=33
[  311.838971][ T9048] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.1727: Parent and EA inode have the same ino 15
[  311.868089][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  311.943967][ T9048] EXT4-fs (loop5): Remounting filesystem read-only
[  311.987498][ T9048] EXT4-fs (loop5): 1 orphan inode deleted
[  312.010371][ T9048] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  312.083884][ T9051] EXT4-fs: Ignoring removed i_version option
[  312.111042][ T9051] EXT4-fs: inline encryption not supported
[  312.125464][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  312.130387][ T9051] EXT4-fs (loop3): Test dummy encryption mode enabled
[  312.171451][ T9051] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  312.426111][ T9068] loop0: detected capacity change from 0 to 128
[  312.450964][ T9068] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  312.465960][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  313.041057][ T4295] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  313.254741][ T4295] usb 2-1: device descriptor read/64, error -71
[  313.363397][ T9074] syz.3.1737[9074] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  313.363519][ T9074] syz.3.1737[9074] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  313.402126][ T9074] hub 6-0:1.0: USB hub found
[  313.462013][ T9074] hub 6-0:1.0: 1 port detected
[  313.586070][ T4295] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  313.778582][ T4295] usb 2-1: device descriptor read/64, error -71
[  313.835995][ T9087] loop3: detected capacity change from 0 to 128
[  313.907089][ T4295] usb usb2-port1: attempt power cycle
[  313.907552][ T9087] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  313.956947][ T9087] ext4 filesystem being mounted at /314/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  313.977139][ T9090] loop5: detected capacity change from 0 to 512
[  314.025175][ T9090] EXT4-fs: Ignoring removed oldalloc option
[  314.027658][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  314.082735][ T9090] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.1742: Parent and EA inode have the same ino 15
[  314.136791][ T9090] EXT4-fs (loop5): Remounting filesystem read-only
[  314.152546][ T9093] loop3: detected capacity change from 0 to 512
[  314.157581][ T9090] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.1742: Parent and EA inode have the same ino 15
[  314.179632][ T9090] EXT4-fs (loop5): Remounting filesystem read-only
[  314.206570][ T9093] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  314.209844][ T9090] EXT4-fs (loop5): 1 orphan inode deleted
[  314.226834][ T9093] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  314.234232][ T9090] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  314.248109][ T9093] System zones: 0-2, 18-18, 34-35
[  314.255729][ T9093] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  314.359126][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  314.380304][ T4295] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  314.420908][ T4295] usb 2-1: device descriptor read/8, error -71
[  314.538461][ T9100] loop3: detected capacity change from 0 to 512
[  314.583982][ T9100] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1745: inode #1: comm syz.3.1745: iget: illegal inode #
[  314.597745][ T9100] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1745: error while reading EA inode 1 err=-117
[  314.616018][ T9100] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1745: inode #1: comm syz.3.1745: iget: illegal inode #
[  314.629532][ T9100] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1745: error while reading EA inode 1 err=-117
[  314.643397][ T9100] EXT4-fs (loop3): 1 orphan inode deleted
[  314.650022][ T9100] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  314.735257][ T4295] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  314.779598][ T4295] usb 2-1: device descriptor read/8, error -71
[  314.782755][ T4251] EXT4-fs (loop3): unmounting filesystem.
[  314.922716][ T4295] usb usb2-port1: unable to enumerate USB device
[  315.917268][ T9120] loop1: detected capacity change from 0 to 512
[  315.965587][ T9120] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  315.985326][ T9120] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  315.993813][ T9120] System zones: 0-2, 18-18, 34-35
[  316.000065][ T9120] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  316.090582][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  316.520395][ T9077] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1736'.
[  316.658717][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  316.851959][ T9131] 9pnet_fd: Insufficient options for proto=fd
[  317.291673][ T9143] loop0: detected capacity change from 0 to 128
[  317.491388][ T9143] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  317.502295][ T9143] ext4 filesystem being mounted at /363/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  318.010303][ T9148] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1766'.
[  318.093537][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  318.361560][   T26] audit: type=1326 audit(1738735689.908:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.449292][   T26] audit: type=1326 audit(1738735689.908:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.466083][ T9164] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1773'.
[  318.506326][ T9168] syz.0.1775 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  318.518514][ T9166] 9pnet_fd: Insufficient options for proto=fd
[  318.557267][   T26] audit: type=1326 audit(1738735689.936:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.589756][ T9168] loop0: detected capacity change from 0 to 128
[  318.608430][ T9168] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  318.628608][ T9164] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1773'.
[  318.628914][   T26] audit: type=1326 audit(1738735689.936:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.757638][   T26] audit: type=1326 audit(1738735689.936:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.834172][   T26] audit: type=1326 audit(1738735689.936:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.873680][ T9182] loop0: detected capacity change from 0 to 512
[  318.878430][   T26] audit: type=1326 audit(1738735689.936:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.926869][   T26] audit: type=1326 audit(1738735689.936:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.943035][ T9182] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  318.958223][   T26] audit: type=1326 audit(1738735689.946:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.984214][ T9185] loop5: detected capacity change from 0 to 128
[  318.988770][   T26] audit: type=1326 audit(1738735689.946:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.3.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  318.995128][ T9182] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  319.043499][ T9182] System zones: 0-2, 18-18, 34-35
[  319.050493][ T9182] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  319.067120][ T9185] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  319.091494][ T9185] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.139355][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  319.195979][ T9188] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1781'.
[  319.282096][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  319.558146][ T9202] 9pnet_fd: Insufficient options for proto=fd
[  319.825754][ T9217] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  319.825754][ T9217] The task syz.3.1790 (9217) triggered the difference, watch for misbehavior.
[  319.838252][ T9215] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1793'.
[  319.856303][ T9216] loop5: detected capacity change from 0 to 512
[  319.941261][ T9216] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  320.033666][ T9216] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  320.096666][ T9216] System zones: 0-2, 18-18, 34-35
[  320.126576][ T9216] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  320.263085][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  320.499030][ T9238] 9pnet_fd: Insufficient options for proto=fd
[  320.579256][ T9243] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1805'.
[  320.641163][ T9246] loop0: detected capacity change from 0 to 128
[  320.674955][ T9246] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  321.120492][ T9261] netlink: 'syz.3.1812': attribute type 13 has an invalid length.
[  321.124291][ T9260] loop1: detected capacity change from 0 to 512
[  321.220044][ T9260] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  321.271400][ T9260] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  321.302115][ T9261] gretap0: refused to change device tx_queue_len
[  321.315546][ T9261] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  321.329895][ T9260] System zones: 0-2, 18-18, 34-35
[  321.389237][ T9260] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  321.590108][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  322.116797][ T9284] netlink: 'syz.3.1822': attribute type 13 has an invalid length.
[  322.199485][ T9284] gretap0: refused to change device tx_queue_len
[  322.211922][ T9284] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  322.376162][ T9292] loop1: detected capacity change from 0 to 512
[  322.444823][ T9292] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  322.465917][ T9292] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  322.495585][ T9292] System zones: 0-2, 18-18, 34-35
[  322.557193][ T9292] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  322.794568][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  322.814787][ T9309] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1834'.
[  322.942519][ T9317] loop2: detected capacity change from 0 to 256
[  323.551381][ T9337] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1847'.
[  323.624689][ T9337] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  323.670368][ T9337] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  323.833850][ T9344] loop0: detected capacity change from 0 to 256
[  324.700438][ T9372] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1864'.
[  324.921253][ T9382] loop5: detected capacity change from 0 to 164
[  325.049464][ T9382] iso9660: Corrupted directory entry in block 4 of inode 1792
[  325.490250][   T26] kauditd_printk_skb: 14 callbacks suppressed
[  325.490268][   T26] audit: type=1326 audit(1738735696.578:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  325.582574][   T26] audit: type=1326 audit(1738735696.606:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  325.664477][   T26] audit: type=1326 audit(1738735696.606:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  325.730324][ T9409] loop2: detected capacity change from 0 to 256
[  325.747632][   T26] audit: type=1326 audit(1738735696.606:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  325.833199][   T26] audit: type=1326 audit(1738735696.606:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  325.918507][   T26] audit: type=1326 audit(1738735696.615:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  325.953291][ T9412] program syz.5.1883 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  325.970379][   T26] audit: type=1326 audit(1738735696.615:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  326.072876][   T26] audit: type=1326 audit(1738735696.615:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  326.172771][   T26] audit: type=1326 audit(1738735696.615:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  326.249138][   T26] audit: type=1326 audit(1738735696.615:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.2.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  327.473369][ T9442] loop2: detected capacity change from 0 to 256
[  327.561465][ T9444] program syz.0.1897 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  327.804902][ T9454] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1902'.
[  328.223222][ T9472] loop2: detected capacity change from 0 to 1024
[  328.311548][ T9472] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.1910: Invalid block bitmap block 0 in block_group 0
[  328.392002][ T9472] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.1910: Failed to acquire dquot type 0
[  328.406435][ T9472] EXT4-fs error (device loop2): ext4_free_blocks:6210: comm syz.2.1910: Freeing blocks not in datazone - block = 0, count = 4096
[  328.437414][ T9472] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.1910: Invalid inode bitmap blk 0 in block_group 0
[  328.468910][ T9472] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  328.478246][   T11] EXT4-fs error (device loop2): ext4_release_dquot:6818: comm kworker/u4:1: Failed to release dquot type 0
[  328.512903][ T9472] EXT4-fs (loop2): 1 orphan inode deleted
[  328.518760][ T9472] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  328.658756][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  328.667916][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  328.668105][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  328.925784][ T9494] loop0: detected capacity change from 0 to 128
[  329.077120][ T9498] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1922'.
[  329.308480][ T9502] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1923'.
[  329.384514][ T9504] loop5: detected capacity change from 0 to 1764
[  329.447412][ T9504] ISOFS: unable to read i-node block
[  329.454356][ T9504] isofs_fill_super: get root inode failed
[  329.927167][ T9526] loop0: detected capacity change from 0 to 512
[  329.960823][ T9526] EXT4-fs: Ignoring removed nomblk_io_submit option
[  330.007963][ T9528] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1936'.
[  330.012788][ T9526] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  330.033777][ T9530] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1935'.
[  330.101301][ T9526] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  330.115249][ T9526] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842c01c, mo2=0002]
[  330.124353][ T9526] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[  330.139780][ T9526] EXT4-fs (loop0): Skipping orphan cleanup due to unknown ROCOMPAT features
[  330.152839][ T9526] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  330.204980][ T9526] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.1934: dx entry: limit 65535 != root limit 120
[  330.218656][ T9526] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.1934: Corrupt directory, running e2fsck is recommended
[  330.232395][ T9526] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 3: comm syz.0.1934: path /402/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  330.326407][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  330.375527][ T9543] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1940'.
[  330.748204][ T9550] device syzkaller0 entered promiscuous mode
[  331.296078][ T9568] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1949'.
[  332.666369][ T9581] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1954'.
[  335.070378][ T9598] loop5: detected capacity change from 0 to 512
[  335.107977][ T9598] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.1961: casefold flag without casefold feature
[  335.271752][ T9605] lo speed is unknown, defaulting to 1000
[  335.748130][ T9605] ip6gretap0 speed is unknown, defaulting to 1000
[  336.051555][ T9598] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1961: couldn't read orphan inode 15 (err -117)
[  336.091972][ T9598] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  336.296099][ T9615] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  336.315254][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  336.352952][ T9615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  336.397009][ T9615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  336.951733][ T9631] device syzkaller0 entered promiscuous mode
[  337.342360][ T9644] loop0: detected capacity change from 0 to 128
[  337.643278][ T9644] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  337.657835][ T9644] ext4 filesystem being mounted at /409/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.110530][ T9648] loop1: detected capacity change from 0 to 512
[  338.114516][ T4261] EXT4-fs (loop0): unmounting filesystem.
[  338.151260][ T9648] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.1979: casefold flag without casefold feature
[  338.313695][ T9648] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1979: couldn't read orphan inode 15 (err -117)
[  338.345020][ T9648] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  338.528334][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  342.168973][ T9661] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  342.178739][ T9661] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  342.186621][ T9661] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  342.199735][ T9661] device bridge_slave_1 left promiscuous mode
[  342.206557][ T9661] bridge0: port 2(bridge_slave_1) entered disabled state
[  342.277600][ T9661] team0: Port device team_slave_0 removed
[  342.317440][ T9661] team0: Port device team_slave_1 removed
[  342.329004][ T9661] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  342.337163][ T9661] batman_adv: batadv0: Removing interface: batadv_slave_0
[  342.356418][ T9661] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  342.363982][ T9661] batman_adv: batadv0: Removing interface: batadv_slave_1
[  342.542364][ T9690] loop5: detected capacity change from 0 to 512
[  342.587604][ T9690] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.1995: casefold flag without casefold feature
[  342.606978][ T9690] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1995: couldn't read orphan inode 15 (err -117)
[  342.620324][ T9690] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  342.755378][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  343.343833][ T9715] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2001'.
[  343.445341][ T9715] lo speed is unknown, defaulting to 1000
[  343.918992][ T9715] ip6gretap0 speed is unknown, defaulting to 1000
[  344.622528][ T9721] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  344.693064][ T9721] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  344.799897][ T9721] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  345.486250][ T9734] loop0: detected capacity change from 0 to 512
[  345.584408][ T9734] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2010: casefold flag without casefold feature
[  345.950059][ T9742] loop1: detected capacity change from 0 to 512
[  346.611569][ T9734] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2010: couldn't read orphan inode 15 (err -117)
[  346.646180][ T9734] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  346.966505][ T9742] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  347.226708][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  347.458348][ T9759] 9pnet_fd: Insufficient options for proto=fd
[  347.599950][ T9761] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  347.633611][ T9761] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  347.710879][ T9761] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  348.280152][ T9770] device wireguard0 entered promiscuous mode
[  348.871258][ T9774] loop5: detected capacity change from 0 to 512
[  349.106181][ T9774] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.2027: casefold flag without casefold feature
[  349.135020][ T9774] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.2027: couldn't read orphan inode 15 (err -117)
[  349.244554][ T9784] loop1: detected capacity change from 0 to 512
[  349.917091][ T9785] loop2: detected capacity change from 0 to 1024
[  350.053819][ T9774] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  350.127523][ T9785] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  350.849060][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  350.953828][ T9784] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  351.282952][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  351.305239][ T9790] loop5: detected capacity change from 0 to 512
[  351.427993][ T9790] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  351.458912][ T9790] ext4 filesystem being mounted at /309/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  352.061374][ T9796] lo speed is unknown, defaulting to 1000
[  352.428907][ T9796] ip6gretap0 speed is unknown, defaulting to 1000
[  352.572019][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  352.736126][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  352.932115][ T9803] 9pnet_fd: Insufficient options for proto=fd
[  353.827657][ T9818] loop1: detected capacity change from 0 to 512
[  354.271717][ T9823] loop2: detected capacity change from 0 to 512
[  354.354295][ T9818] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2040: casefold flag without casefold feature
[  354.391152][ T9823] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  354.697582][ T9818] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2040: couldn't read orphan inode 15 (err -117)
[  354.773311][ T9818] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  354.916343][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  355.087800][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  355.133018][ T9832] loop2: detected capacity change from 0 to 1024
[  355.242258][ T9832] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  355.408512][ T9840] 9pnet_fd: Insufficient options for proto=fd
[  355.550460][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  355.716930][ T9851] loop2: detected capacity change from 0 to 128
[  355.876274][ T9851] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  355.932631][ T9851] ext4 filesystem being mounted at /394/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  356.747349][ T9859] loop5: detected capacity change from 0 to 512
[  356.808035][ T9859] EXT4-fs: Ignoring removed orlov option
[  356.854126][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  356.859569][ T9859] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  356.906130][ T9859] EXT4-fs (loop5): orphan cleanup on readonly fs
[  356.913475][ T9865] loop1: detected capacity change from 0 to 512
[  356.963595][ T9859] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.2054: bg 0: block 248: padding at end of block bitmap is not set
[  356.990043][ T9865] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2056: casefold flag without casefold feature
[  357.043294][ T9859] __quota_error: 20 callbacks suppressed
[  357.043318][ T9859] Quota error (device loop5): write_blk: dquota write failed
[  357.061646][ T9859] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  357.072282][ T9859] EXT4-fs error (device loop5): ext4_acquire_dquot:6795: comm syz.5.2054: Failed to acquire dquot type 1
[  357.094749][ T9859] EXT4-fs (loop5): 1 truncate cleaned up
[  357.099804][ T9865] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2056: couldn't read orphan inode 15 (err -117)
[  357.141852][ T9859] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  357.184842][ T9865] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  357.238027][ T9859] EXT4-fs: Ignoring removed orlov option
[  357.268246][ T9859] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  357.276749][ T9859] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  357.335280][ T9859] EXT4-fs error (device loop5): __ext4_remount:6611: comm syz.5.2054: Abort forced by user
[  357.353962][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  357.388948][ T9859] EXT4-fs (loop5): Remounting filesystem read-only
[  357.407216][ T9859] EXT4-fs (loop5): re-mounted. Quota mode: writeback.
[  357.414110][ T9859] ext4 filesystem being remounted at /316/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  357.490947][ T9874] 9pnet_fd: Insufficient options for proto=fd
[  357.584879][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  357.601752][ T9859] syz.5.2054 (9859) used greatest stack depth: 18816 bytes left
[  358.148140][ T9894] loop5: detected capacity change from 0 to 512
[  358.420407][ T9894] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.2069: casefold flag without casefold feature
[  358.717696][ T9894] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.2069: couldn't read orphan inode 15 (err -117)
[  358.935996][ T9894] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  359.089082][ T9898] loop1: detected capacity change from 0 to 512
[  359.107557][ T9898] EXT4-fs: Ignoring removed nomblk_io_submit option
[  359.114225][ T9898] EXT4-fs: Ignoring removed oldalloc option
[  359.176321][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  359.193631][ T9898] EXT4-fs: Ignoring removed mblk_io_submit option
[  359.278469][ T9898] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  359.355345][ T9912] 9pnet_fd: Insufficient options for proto=fd
[  359.568510][ T9917] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2078'.
[  359.998760][ T9931] loop2: detected capacity change from 0 to 512
[  360.164489][ T9931] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.2084: casefold flag without casefold feature
[  360.199028][ T9931] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.2084: couldn't read orphan inode 15 (err -117)
[  360.221640][ T9931] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  361.122178][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  362.442643][ T9950] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2091'.
[  362.725326][ T9956] loop5: detected capacity change from 0 to 1024
[  362.968714][ T9956] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  363.284121][   T26] audit: type=1326 audit(1738735731.926:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9958 comm="syz.3.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  363.415004][   T26] audit: type=1326 audit(1738735731.954:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9958 comm="syz.3.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  363.650373][   T26] audit: type=1326 audit(1738735732.123:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9958 comm="syz.3.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  364.837617][   T26] audit: type=1326 audit(1738735732.123:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9958 comm="syz.3.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  364.884074][ T9969] lo speed is unknown, defaulting to 1000
[  365.029827][ T9969] ip6gretap0 speed is unknown, defaulting to 1000
[  365.789147][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  365.997165][   T26] audit: type=1326 audit(1738735732.123:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9958 comm="syz.3.2094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  366.212201][ T9981] loop2: detected capacity change from 0 to 512
[  366.248794][ T9981] EXT4-fs: Ignoring removed nomblk_io_submit option
[  366.269729][ T9981] EXT4-fs: Ignoring removed oldalloc option
[  366.275725][ T9981] EXT4-fs: Ignoring removed mblk_io_submit option
[  366.297245][ T9983] loop5: detected capacity change from 0 to 1024
[  366.370530][ T9987] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2105'.
[  366.419554][ T9981] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  366.501147][ T9983] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #11: comm syz.5.2100: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  366.558792][ T9983] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.2100: couldn't read orphan inode 11 (err -117)
[  366.687998][ T9991] loop1: detected capacity change from 0 to 128
[  366.823947][ T9983] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  366.923771][ T9991] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  366.938816][ T9991] ext4 filesystem being mounted at /461/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  367.383210][ T4253] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  367.402885][ T4253] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  367.414543][ T4253] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  367.423526][ T4253] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  367.433399][ T4253] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  367.442105][ T4253] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  367.486577][ T9983] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:477: comm syz.5.2100: Invalid block bitmap block 0 in block_group 0
[  367.536643][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  367.604269][T10005] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2110'.
[  367.623570][ T9994] lo speed is unknown, defaulting to 1000
[  367.633775][ T9983] Quota error (device loop5): write_blk: dquota write failed
[  367.680712][ T9983] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  367.690768][ T9983] EXT4-fs error (device loop5): ext4_acquire_dquot:6795: comm syz.5.2100: Failed to acquire dquot type 0
[  367.913590][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  367.946759][ T4418] Quota error (device loop5): do_check_range: Getting block 0 out of range 1-8
[  367.971054][ T4418] EXT4-fs error (device loop5): ext4_release_dquot:6818: comm kworker/u4:9: Failed to release dquot type 0
[  369.688664][ T4252] Bluetooth: hci5: command 0x0409 tx timeout
[  369.960774][T10015] lo speed is unknown, defaulting to 1000
[  370.001054][   T26] audit: type=1326 audit(1738735738.212:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.025434][ T9994] ip6gretap0 speed is unknown, defaulting to 1000
[  370.104006][T10025] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2114'.
[  370.150502][   T26] audit: type=1326 audit(1738735738.231:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.226124][T10025] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2114'.
[  370.249838][T10028] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2115'.
[  370.277340][   T26] audit: type=1326 audit(1738735738.250:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.342512][   T26] audit: type=1326 audit(1738735738.250:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.425085][   T26] audit: type=1326 audit(1738735738.250:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.481555][   T26] audit: type=1326 audit(1738735738.250:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.563559][   T26] audit: type=1326 audit(1738735738.296:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.656546][   T26] audit: type=1326 audit(1738735738.296:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.683123][   T26] audit: type=1326 audit(1738735738.296:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  370.716891][   T26] audit: type=1326 audit(1738735738.296:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.2.2114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  371.200096][T10015] ip6gretap0 speed is unknown, defaulting to 1000
[  371.667512][T10038] loop1: detected capacity change from 0 to 128
[  371.849947][ T4252] Bluetooth: hci5: command 0x041b tx timeout
[  372.145120][T10055] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2125'.
[  372.253682][ T9994] chnl_net:caif_netlink_parms(): no params data found
[  373.288051][T10068] lo speed is unknown, defaulting to 1000
[  373.723206][T10068] ip6gretap0 speed is unknown, defaulting to 1000
[  374.003700][T10078] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2132'.
[  374.073679][ T4252] Bluetooth: hci5: command 0x040f tx timeout
[  374.091113][T10078] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2132'.
[  374.766326][ T9146] Bluetooth: Error in BCSP hdr checksum
[  374.876430][ T9994] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.883598][ T9994] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.913414][ T9994] device bridge_slave_0 entered promiscuous mode
[  374.967348][ T9994] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.993041][ T9994] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.026361][ T9994] device bridge_slave_1 entered promiscuous mode
[  375.139123][ T9994] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  375.180738][ T9994] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  375.337704][ T9994] team0: Port device team_slave_0 added
[  375.399562][ T9994] team0: Port device team_slave_1 added
[  375.503643][ T9994] batman_adv: batadv0: Adding interface: batadv_slave_0
[  375.543377][ T9994] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  375.591050][ T9994] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  375.616967][ T9994] batman_adv: batadv0: Adding interface: batadv_slave_1
[  375.633914][ T9994] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  376.192165][ T9994] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  376.355047][ T4253] Bluetooth: hci5: command 0x0419 tx timeout
[  376.564482][ T4252] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  377.784609][ T9994] device hsr_slave_0 entered promiscuous mode
[  377.806539][T10110] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2142'.
[  377.859406][ T9994] device hsr_slave_1 entered promiscuous mode
[  377.878896][ T9994] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  377.944064][ T9994] Cannot create hsr debugfs directory
[  378.505449][ T9994] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  378.554059][ T9994] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  378.586296][ T9994] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  378.615209][ T9994] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  378.731989][T10124] device syzkaller0 entered promiscuous mode
[  386.056435][T10148] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2153'.
[  386.065416][T10137] lo speed is unknown, defaulting to 1000
[  386.165996][T10137] ip6gretap0 speed is unknown, defaulting to 1000
[  386.378160][ T9994] 8021q: adding VLAN 0 to HW filter on device bond0
[  386.465703][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  386.503558][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  386.602780][ T9994] 8021q: adding VLAN 0 to HW filter on device team0
[  386.816589][   T26] kauditd_printk_skb: 38 callbacks suppressed
[  386.816618][   T26] audit: type=1326 audit(1738735753.918:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10170 comm="syz.3.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  386.876195][T10172] loop2: detected capacity change from 0 to 128
[  386.920543][T10172] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  386.929467][T10172] ext4 filesystem being mounted at /421/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  387.005503][   T26] audit: type=1326 audit(1738735753.918:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10170 comm="syz.3.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  387.133053][   T26] audit: type=1326 audit(1738735753.918:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10170 comm="syz.3.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  387.236924][   T26] audit: type=1326 audit(1738735753.918:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10170 comm="syz.3.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  387.278988][   T26] audit: type=1326 audit(1738735753.918:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10170 comm="syz.3.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  388.036226][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  388.057256][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  388.081065][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  388.129526][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.136766][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  388.196422][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  388.218394][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  388.250052][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.257208][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  388.292754][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  388.579175][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  388.921441][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  389.121639][T10190] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2164'.
[  389.183765][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  389.302374][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  389.481693][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  389.553710][ T4252] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  389.562284][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  389.949096][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  390.268669][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  390.321490][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  390.341158][T10196] lo speed is unknown, defaulting to 1000
[  390.354487][ T9994] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  390.410299][ T9994] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  390.523570][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  390.539939][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  390.616380][T10196] ip6gretap0 speed is unknown, defaulting to 1000
[  390.955331][   T26] audit: type=1326 audit(1738735757.818:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10207 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  391.059347][   T26] audit: type=1326 audit(1738735757.818:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10207 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  391.221602][   T26] audit: type=1326 audit(1738735757.837:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10207 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  391.279156][T10210] ptrace attach of "./syz-executor exec"[10215] was attempted by "./syz-executor exec"[10210]
[  391.347410][T10217] loop1: detected capacity change from 0 to 128
[  391.370742][   T26] audit: type=1326 audit(1738735757.837:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10207 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  391.395522][T10217] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  391.426621][T10217] ext4 filesystem being mounted at /476/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  391.450193][   T26] audit: type=1326 audit(1738735757.837:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10207 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  391.861499][T10226] Driver unsupported XDP return value 0 on prog  (id 678) dev N/A, expect packet loss!
[  392.102334][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  392.116790][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  392.128471][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  392.237164][ T9994] 8021q: adding VLAN 0 to HW filter on device batadv0
[  392.489289][T10234] loop5: detected capacity change from 0 to 512
[  392.688898][T10237] loop1: detected capacity change from 0 to 1024
[  392.772749][T10234] EXT4-fs: Ignoring removed oldalloc option
[  392.951013][T10237] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  393.180955][T10234] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.2178: Parent and EA inode have the same ino 15
[  393.411449][T10234] EXT4-fs (loop5): Remounting filesystem read-only
[  393.445192][T10234] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.2178: Parent and EA inode have the same ino 15
[  393.563474][T10234] EXT4-fs (loop5): Remounting filesystem read-only
[  393.570322][T10234] EXT4-fs (loop5): 1 orphan inode deleted
[  393.662856][T10234] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  394.079038][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  394.496910][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  394.503395][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  394.532306][T10254] 9pnet: Could not find request transport: fd0x0000000000000004
[  394.736416][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  394.864605][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  394.896755][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  395.677092][   T26] audit: type=1326 audit(1738735762.224:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  395.761109][   T26] audit: type=1326 audit(1738735762.252:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  395.818614][   T26] audit: type=1326 audit(1738735762.252:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  395.841349][   T26] audit: type=1326 audit(1738735762.252:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  395.864070][   T26] audit: type=1326 audit(1738735762.252:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  395.894876][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  395.903486][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  395.936829][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  395.944834][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  395.958373][ T9994] device veth0_vlan entered promiscuous mode
[  396.017878][ T9994] device veth1_vlan entered promiscuous mode
[  396.171413][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  396.181331][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  396.212415][ T9994] device veth0_macvtap entered promiscuous mode
[  396.249420][ T9994] device veth1_macvtap entered promiscuous mode
[  396.326491][ T9994] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  396.418183][ T9994] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  396.430249][ T9994] batman_adv: batadv0: Interface activated: batadv_slave_0
[  396.439346][ T4418] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  396.448623][ T4418] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  396.700420][ T4418] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  396.972734][ T4418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  397.315898][ T9994] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  397.422005][ T9994] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.436574][T10284] loop5: detected capacity change from 0 to 128
[  397.480069][ T9994] batman_adv: batadv0: Interface activated: batadv_slave_1
[  397.515136][ T4418] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  397.553720][ T4418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  397.559527][T10284] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  397.582878][T10284] ext4 filesystem being mounted at /346/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  397.816539][ T9994] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  397.848957][ T9994] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  397.951494][T10295] loop1: detected capacity change from 0 to 1024
[  398.042377][T10295] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  398.093986][ T9994] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  398.359450][ T9994] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.653132][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  399.390488][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  399.414443][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  400.278778][T10300] 9pnet: Could not find request transport: fd0x0000000000000004
[  400.646872][   T26] audit: type=1326 audit(1738735766.873:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10306 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  400.689590][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  400.700165][ T4418] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  400.778049][ T4319] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  400.797101][ T4319] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  400.813524][   T26] audit: type=1326 audit(1738735766.938:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10306 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  400.833119][ T4418] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  400.904084][   T26] audit: type=1326 audit(1738735766.938:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10306 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  401.001761][   T26] audit: type=1326 audit(1738735766.938:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10306 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  401.078473][   T26] audit: type=1326 audit(1738735766.938:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10306 comm="syz.2.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  402.468850][ T4252] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  403.189124][T10334] 9pnet: Could not find request transport: fd0x0000000000000004
[  403.227132][   T26] audit: type=1326 audit(1738735769.286:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10336 comm="syz.3.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  403.478436][T10340] lo speed is unknown, defaulting to 1000
[  403.938520][T10340] ip6gretap0 speed is unknown, defaulting to 1000
[  404.279707][   T26] audit: type=1326 audit(1738735769.286:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10336 comm="syz.3.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  404.402002][   T26] audit: type=1326 audit(1738735769.286:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10336 comm="syz.3.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  404.667005][T10346] loop1: detected capacity change from 0 to 1024
[  404.969529][T10346] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  405.003417][   T26] audit: type=1326 audit(1738735769.286:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10336 comm="syz.3.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  405.277957][T10354] netlink: 68 bytes leftover after parsing attributes in process `syz.6.2214'.
[  405.344685][T10353] loop2: detected capacity change from 0 to 128
[  405.415263][   T26] audit: type=1326 audit(1738735769.286:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10336 comm="syz.3.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  406.180867][T10361] loop2: detected capacity change from 0 to 128
[  406.305126][T10361] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  406.400342][T10361] ext4 filesystem being mounted at /438/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  406.777978][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  407.729111][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  408.090840][   T26] audit: type=1326 audit(1738735773.832:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10371 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  408.496913][   T26] audit: type=1326 audit(1738735773.870:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10371 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  408.621480][   T26] audit: type=1326 audit(1738735773.898:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10371 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  408.656600][   T26] audit: type=1326 audit(1738735773.916:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10371 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  408.738753][   T26] audit: type=1326 audit(1738735773.935:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10371 comm="syz.3.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  408.773982][T10380] 9pnet_fd: Insufficient options for proto=fd
[  409.245320][T10386] loop2: detected capacity change from 0 to 512
[  409.379644][T10386] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  409.806920][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  409.960016][T10391] netlink: 68 bytes leftover after parsing attributes in process `syz.6.2229'.
[  411.413238][T10401] loop1: detected capacity change from 0 to 128
[  413.586143][ T4249] Bluetooth: hci6: command 0x1003 tx timeout
[  413.594601][ T4252] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  417.302670][T10451] loop2: detected capacity change from 0 to 1024
[  417.494754][T10451] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  419.231409][T10474] loop5: detected capacity change from 0 to 512
[  419.609839][ T4252] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  419.609891][ T4253] Bluetooth: hci6: command 0x1003 tx timeout
[  419.943487][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  419.985565][T10474] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  420.283477][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  420.414414][T10489] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2258'.
[  421.743640][T10503] loop1: detected capacity change from 0 to 512
[  421.871913][T10503] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  421.926387][T10503] ext4 filesystem being mounted at /497/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  422.424012][T10518] lo speed is unknown, defaulting to 1000
[  422.835321][T10518] ip6gretap0 speed is unknown, defaulting to 1000
[  423.308210][T10523] loop2: detected capacity change from 0 to 1024
[  423.563413][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  424.770122][T10523] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  425.549671][T10536] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2273'.
[  426.149831][T10531] loop6: detected capacity change from 0 to 512
[  426.579792][T10531] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  426.794578][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  428.322400][T10576] loop5: detected capacity change from 0 to 512
[  428.410819][T10576] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  428.426944][T10576] ext4 filesystem being mounted at /363/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  429.414570][T10586] lo speed is unknown, defaulting to 1000
[  429.513702][ T9994] EXT4-fs (loop6): unmounting filesystem.
[  429.519572][T10586] ip6gretap0 speed is unknown, defaulting to 1000
[  429.851274][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  430.031017][T10599] loop6: detected capacity change from 0 to 128
[  431.110576][T10618] loop1: detected capacity change from 0 to 512
[  433.533930][T10618] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  434.949760][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  435.144881][T10631] loop1: detected capacity change from 0 to 512
[  435.269695][T10636] loop6: detected capacity change from 0 to 128
[  435.272889][T10631] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  435.288196][T10631] ext4 filesystem being mounted at /504/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  435.363225][T10636] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  435.395225][ T4252] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  435.436461][T10636] ext4 filesystem being mounted at /21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  435.789286][T10643] lo speed is unknown, defaulting to 1000
[  435.891361][T10643] ip6gretap0 speed is unknown, defaulting to 1000
[  436.095705][ T9994] EXT4-fs (loop6): unmounting filesystem.
[  436.332780][T10658] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2308'.
[  436.413299][T10659] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2311'.
[  437.492287][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  438.101702][T10675] lo speed is unknown, defaulting to 1000
[  438.263872][T10675] ip6gretap0 speed is unknown, defaulting to 1000
[  438.779580][T10678] loop6: detected capacity change from 0 to 512
[  439.010268][T10678] EXT4-fs: Ignoring removed oldalloc option
[  439.116995][T10682] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2317'.
[  439.301226][T10678] EXT4-fs error (device loop6): ext4_xattr_inode_iget:400: comm syz.6.2316: Parent and EA inode have the same ino 15
[  439.460113][T10678] EXT4-fs (loop6): Remounting filesystem read-only
[  439.466780][T10678] EXT4-fs error (device loop6): ext4_xattr_inode_iget:400: comm syz.6.2316: Parent and EA inode have the same ino 15
[  439.799609][T10678] EXT4-fs (loop6): Remounting filesystem read-only
[  439.806380][T10678] EXT4-fs (loop6): 1 orphan inode deleted
[  439.863758][T10678] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  439.998606][ T9994] EXT4-fs (loop6): unmounting filesystem.
[  440.373044][T10699] loop2: detected capacity change from 0 to 512
[  440.464719][T10699] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  440.513368][T10699] ext4 filesystem being mounted at /456/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  440.570309][T10705] loop5: detected capacity change from 0 to 512
[  440.660361][T10704] loop6: detected capacity change from 0 to 128
[  440.811945][T10705] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  441.421464][T10708] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2326'.
[  441.481569][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  441.723809][T10710] lo speed is unknown, defaulting to 1000
[  442.133336][T10710] ip6gretap0 speed is unknown, defaulting to 1000
[  442.526664][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  443.041562][T10727] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2331'.
[  444.014651][T10735] loop1: detected capacity change from 0 to 128
[  444.194860][T10735] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  444.256964][T10735] ext4 filesystem being mounted at /510/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  444.627546][T10741] loop2: detected capacity change from 0 to 512
[  444.783460][T10741] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  445.264901][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  445.302328][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  445.496091][T10751] loop1: detected capacity change from 0 to 512
[  445.575419][T10751] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  445.789433][T10751] ext4 filesystem being mounted at /511/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  446.603118][T10761] loop5: detected capacity change from 0 to 1024
[  446.856111][T10761] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  446.954387][T10766] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2344'.
[  449.118152][T10772] lo speed is unknown, defaulting to 1000
[  449.304895][T10776] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2346'.
[  450.615679][T10772] ip6gretap0 speed is unknown, defaulting to 1000
[  450.819391][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  451.578080][T10791] loop2: detected capacity change from 0 to 128
[  451.698683][T10793] loop5: detected capacity change from 0 to 512
[  451.884053][T10793] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  452.011291][T10791] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  452.325924][T10791] ext4 filesystem being mounted at /464/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  452.447028][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  452.588153][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  452.597534][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  452.784633][T10802] loop5: detected capacity change from 0 to 2048
[  452.921685][T10802] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  452.962155][T10802] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  454.146274][    T7] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  454.225484][T10823] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2360'.
[  454.339652][    T7] usb 2-1: device descriptor read/64, error -71
[  454.673041][    T7] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  454.916135][    T7] usb 2-1: device descriptor read/64, error -71
[  455.062259][    T7] usb usb2-port1: attempt power cycle
[  455.521648][    T7] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  455.558360][    T7] usb 2-1: device descriptor read/8, error -71
[  455.846320][    T7] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  455.901390][    T7] usb 2-1: device descriptor read/8, error -71
[  456.038711][    T7] usb usb2-port1: unable to enumerate USB device
[  456.918481][T10839] loop1: detected capacity change from 0 to 128
[  456.949159][ T9740] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set
[  458.237678][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  459.504118][T10859] loop1: detected capacity change from 0 to 128
[  459.651482][T10861] loop2: detected capacity change from 0 to 128
[  459.662395][T10859] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  459.676543][T10859] ext4 filesystem being mounted at /517/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  459.840558][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  459.847347][T10866] loop5: detected capacity change from 0 to 128
[  459.857270][T10164] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  459.891453][T10866] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  459.949744][T10866] ext4 filesystem being mounted at /376/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  460.028555][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  460.038321][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  460.407842][T10869] lo speed is unknown, defaulting to 1000
[  460.947865][T10869] ip6gretap0 speed is unknown, defaulting to 1000
[  461.204808][   T26] audit: type=1326 audit(1738735823.521:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  461.258775][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  461.289333][T10879] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2379'.
[  461.309329][   T26] audit: type=1326 audit(1738735823.521:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  461.341064][T10879] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2379'.
[  461.411316][   T26] audit: type=1326 audit(1738735823.549:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  461.506273][   T26] audit: type=1326 audit(1738735823.549:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  461.602745][   T26] audit: type=1326 audit(1738735823.549:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  461.669394][   T26] audit: type=1326 audit(1738735823.549:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  461.763919][   T26] audit: type=1326 audit(1738735823.595:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  461.860756][T10886] device syzkaller0 entered promiscuous mode
[  461.886506][   T26] audit: type=1326 audit(1738735823.595:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  461.991546][   T26] audit: type=1326 audit(1738735823.595:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  462.075375][   T26] audit: type=1326 audit(1738735823.595:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.1.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f698058cde9 code=0x7ffc0000
[  463.458674][ T4290] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  463.526123][T10917] loop6: detected capacity change from 0 to 128
[  463.594411][T10917] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  463.615873][T10917] ext4 filesystem being mounted at /39/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  463.671621][ T4290] usb 6-1: device descriptor read/64, error -71
[  463.810426][ T9994] EXT4-fs (loop6): unmounting filesystem.
[  463.960558][ T4290] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  464.135945][ T4290] usb 6-1: device descriptor read/64, error -71
[  464.285933][ T4290] usb usb6-port1: attempt power cycle
[  464.432321][T10937] loop6: detected capacity change from 0 to 128
[  464.522242][T10937] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00)
[  464.546728][T10937] FAT-fs (loop6): Filesystem has been set read-only
[  464.569379][T10937] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00)
[  464.595991][T10939] xt_connbytes: Forcing CT accounting to be enabled
[  464.620286][T10939] Cannot find del_set index 1 as target
[  464.740945][ T4290] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  464.796743][ T4290] usb 6-1: device descriptor read/8, error -71
[  465.093654][ T4290] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  465.126196][ T4290] usb 6-1: device descriptor read/8, error -71
[  465.259191][ T4290] usb usb6-port1: unable to enumerate USB device
[  466.614637][   T46] Bluetooth: Error in BCSP hdr checksum
[  468.499304][ T4252] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  468.508044][ T4253] Bluetooth: hci6: command 0x1003 tx timeout
[  468.756051][T10947] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2402'.
[  468.771672][T10947] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2402'.
[  469.089786][T10960] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2406'.
[  470.100963][T10966] loop1: detected capacity change from 0 to 128
[  470.164790][T10966] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  470.206839][T10971] loop2: detected capacity change from 0 to 1024
[  470.214396][T10966] ext4 filesystem being mounted at /522/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  470.347765][T10971] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  470.577831][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  470.643160][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  470.729728][T10978] loop5: detected capacity change from 0 to 512
[  470.758425][T10978] EXT4-fs: Ignoring removed nomblk_io_submit option
[  470.821670][T10978] EXT4-fs: Ignoring removed oldalloc option
[  470.840361][T10978] EXT4-fs: Ignoring removed mblk_io_submit option
[  470.857273][T10982] usb usb9: usbfs: interface 0 claimed by hub while 'syz.2.2413' sets config #3
[  471.025025][T10978] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  471.935412][ T4295] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  472.127969][ T4295] usb 2-1: device descriptor read/64, error -71
[  472.464996][T10998] syz.3.2418[10998] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  472.465109][T10998] syz.3.2418[10998] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  472.476310][T10999] syz.2.2419[10999] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  472.476911][ T4295] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  472.510472][T10999] syz.2.2419[10999] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  472.566720][T10998] syz.3.2418[10998] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  472.627825][T10998] syz.3.2418[10998] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  472.769398][ T4295] usb 2-1: device descriptor read/64, error -71
[  472.941291][T11011] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2423'.
[  472.952869][   T26] kauditd_printk_skb: 28 callbacks suppressed
[  472.952886][   T26] audit: type=1326 audit(1738735834.512:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  472.982796][ T4295] usb usb2-port1: attempt power cycle
[  473.061220][T11016] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2421'.
[  473.079135][   T26] audit: type=1326 audit(1738735834.512:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.099465][T11016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2421'.
[  473.154196][   T26] audit: type=1326 audit(1738735834.549:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.249741][   T26] audit: type=1326 audit(1738735834.549:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.338310][   T26] audit: type=1326 audit(1738735834.549:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.340008][T11021] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2424'.
[  473.419321][   T26] audit: type=1326 audit(1738735834.549:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.442568][ T4295] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  473.488590][ T4295] usb 2-1: device descriptor read/8, error -71
[  473.514888][   T26] audit: type=1326 audit(1738735834.549:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.589435][   T26] audit: type=1326 audit(1738735834.549:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.656629][   T26] audit: type=1326 audit(1738735834.549:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.699392][   T26] audit: type=1326 audit(1738735834.605:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.2.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  473.806375][ T4295] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  473.850035][ T4295] usb 2-1: device descriptor read/8, error -71
[  474.036450][ T4295] usb usb2-port1: unable to enumerate USB device
[  474.170853][T11029] loop2: detected capacity change from 0 to 128
[  474.224209][T11029] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  474.236770][T11029] ext4 filesystem being mounted at /476/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  474.418878][ T4256] EXT4-fs (loop2): unmounting filesystem.
[  474.785103][T11040] loop1: detected capacity change from 0 to 128
[  475.631053][ T4292] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  475.805498][ T4292] usb 3-1: device descriptor read/64, error -71
[  475.976788][T11052] loop6: detected capacity change from 0 to 512
[  476.030388][T11052] EXT4-fs: Ignoring removed nomblk_io_submit option
[  476.037065][T11052] EXT4-fs: Ignoring removed oldalloc option
[  476.079500][T11052] EXT4-fs: Ignoring removed mblk_io_submit option
[  476.126289][ T4292] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  476.147815][T11052] EXT4-fs (loop6): can't mount with data=, fs mounted w/o journal
[  476.297271][ T4292] usb 3-1: device descriptor read/64, error -71
[  476.492201][ T4292] usb usb3-port1: attempt power cycle
[  476.526237][T11069] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2437'.
[  476.587061][T11069] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2437'.
[  476.946738][ T4292] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  477.080155][ T4292] usb 3-1: device descriptor read/8, error -71
[  477.387947][ T4262] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  477.512100][T11074] loop1: detected capacity change from 0 to 128
[  477.627342][T11074] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  477.643554][T11074] ext4 filesystem being mounted at /530/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  477.916365][ T4292] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  477.983021][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  477.997059][ T4262] usb 6-1: device descriptor read/64, error -71
[  478.157621][ T4292] usb 3-1: device not accepting address 13, error -71
[  478.175671][ T4292] usb usb3-port1: unable to enumerate USB device
[  478.182981][T11081] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2442'.
[  478.335276][ T4262] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  478.398300][T11087] loop2: detected capacity change from 0 to 128
[  478.510161][ T4262] usb 6-1: device descriptor read/64, error -71
[  478.639240][ T4262] usb usb6-port1: attempt power cycle
[  479.273438][T11093] lo speed is unknown, defaulting to 1000
[  479.768867][T11093] ip6gretap0 speed is unknown, defaulting to 1000
[  479.965094][ T4262] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  480.064672][ T4262] usb 6-1: device descriptor read/8, error -71
[  480.718176][T11109] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2452'.
[  481.386283][  T126] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  481.606075][  T126] usb 7-1: device descriptor read/64, error -71
[  481.628528][T11113] loop1: detected capacity change from 0 to 128
[  481.719971][T11113] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  481.729105][T11113] ext4 filesystem being mounted at /532/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  481.834030][   T26] kauditd_printk_skb: 32 callbacks suppressed
[  481.834046][   T26] audit: type=1326 audit(1738735842.818:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  481.934763][T11121] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2454'.
[  481.952573][  T126] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  482.033370][   T26] audit: type=1326 audit(1738735842.855:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  482.099886][T11121] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2454'.
[  482.110338][   T26] audit: type=1326 audit(1738735842.855:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  482.135038][  T126] usb 7-1: device descriptor read/64, error -71
[  482.141443][   T26] audit: type=1326 audit(1738735842.855:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  482.147111][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  482.240056][   T26] audit: type=1326 audit(1738735842.855:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  482.305656][  T126] usb usb7-port1: attempt power cycle
[  482.377105][   T26] audit: type=1326 audit(1738735842.855:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  482.457520][   T26] audit: type=1326 audit(1738735842.902:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  482.538787][   T26] audit: type=1326 audit(1738735842.902:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  482.666316][T11133] loop1: detected capacity change from 0 to 512
[  482.683955][   T26] audit: type=1326 audit(1738735842.902:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  482.754429][  T126] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  482.765644][T11133] EXT4-fs: Ignoring removed nomblk_io_submit option
[  482.772313][T11133] EXT4-fs: Ignoring removed oldalloc option
[  482.780037][T11133] EXT4-fs: Ignoring removed mblk_io_submit option
[  482.787140][   T26] audit: type=1326 audit(1738735842.911:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11115 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f44caf8cde9 code=0x7ffc0000
[  483.078633][T11133] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  483.582757][T11135] lo speed is unknown, defaulting to 1000
[  483.590875][  T126] usb 7-1: device descriptor read/8, error -71
[  483.683329][T11135] ip6gretap0 speed is unknown, defaulting to 1000
[  484.855007][T11163] syz.2.2470[11163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  484.855119][T11163] syz.2.2470[11163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  485.205398][T11170] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2471'.
[  485.884813][T11170] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2471'.
[  486.282267][ T4290] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  486.464007][ T4290] usb 3-1: device descriptor read/64, error -71
[  486.754917][ T4290] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  486.890296][T11189] lo speed is unknown, defaulting to 1000
[  487.362710][T11189] ip6gretap0 speed is unknown, defaulting to 1000
[  487.789732][ T4290] usb 3-1: device descriptor read/64, error -71
[  487.929561][ T4290] usb usb3-port1: attempt power cycle
[  488.126730][T11199] team0: Unable to change to the same mode the team is in
[  488.321918][T11205] loop5: detected capacity change from 0 to 512
[  488.391910][T11205] EXT4-fs: Ignoring removed nomblk_io_submit option
[  488.398682][T11205] EXT4-fs: Ignoring removed oldalloc option
[  488.440479][T11205] EXT4-fs: Ignoring removed mblk_io_submit option
[  488.496451][   T26] kauditd_printk_skb: 26 callbacks suppressed
[  488.496469][   T26] audit: type=1326 audit(1738735849.057:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  488.576930][   T26] audit: type=1326 audit(1738735849.094:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  488.600049][T11205] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  488.624537][T11218] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2486'.
[  488.665817][   T26] audit: type=1326 audit(1738735849.094:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  488.722726][T11218] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2486'.
[  488.792196][   T26] audit: type=1326 audit(1738735849.094:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  488.895912][   T26] audit: type=1326 audit(1738735849.094:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  488.932990][   T26] audit: type=1326 audit(1738735849.094:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  488.968989][   T26] audit: type=1326 audit(1738735849.169:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  488.999763][   T26] audit: type=1326 audit(1738735849.169:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  489.023341][T11226] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2491'.
[  489.041547][   T26] audit: type=1326 audit(1738735849.169:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  489.125682][   T26] audit: type=1326 audit(1738735849.169:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11208 comm="syz.6.2486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  489.358921][T11229] lo speed is unknown, defaulting to 1000
[  489.838392][T11229] ip6gretap0 speed is unknown, defaulting to 1000
[  492.696899][   T22] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  492.899848][   T22] usb 2-1: device descriptor read/64, error -71
[  493.171421][T11248] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  493.200893][   T22] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  493.201543][T11248] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  493.259680][T11248] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  493.308604][T11248] device bridge_slave_0 left promiscuous mode
[  493.326027][T11248] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.367444][T11248] device bridge_slave_1 left promiscuous mode
[  493.380937][   T22] usb 2-1: device descriptor read/64, error -71
[  493.399634][T11248] bridge0: port 2(bridge_slave_1) entered disabled state
[  493.415808][T11248] bond0: (slave bond_slave_0): Releasing backup interface
[  493.454085][T11248] bond0: (slave bond_slave_1): Releasing backup interface
[  493.509467][   T22] usb usb2-port1: attempt power cycle
[  493.589584][T11248] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  493.610411][T11248] team0: Port device team_slave_0 removed
[  493.667481][T11248] team0: Failed to send options change via netlink (err -105)
[  493.704820][T11248] team0: Failed to send port change of device team_slave_1 via netlink (err -105)
[  493.853198][T11248] team0: Port device team_slave_1 removed
[  493.857445][T11260] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2502'.
[  493.886227][T11248] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  493.926090][T11248] batman_adv: batadv0: Removing interface: batadv_slave_0
[  493.964835][T11248] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  494.012141][T11248] batman_adv: batadv0: Removing interface: batadv_slave_1
[  494.014901][T11263] loop1: detected capacity change from 0 to 512
[  494.226274][T11263] EXT4-fs: Ignoring removed oldalloc option
[  494.285682][T11251] team0: Mode changed to "loadbalance"
[  494.313396][T11263] EXT4-fs error (device loop1): ext4_xattr_inode_iget:400: comm syz.1.2504: Parent and EA inode have the same ino 15
[  494.345579][T11263] EXT4-fs (loop1): Remounting filesystem read-only
[  494.363727][T11263] EXT4-fs error (device loop1): ext4_xattr_inode_iget:400: comm syz.1.2504: Parent and EA inode have the same ino 15
[  494.795386][T11263] EXT4-fs (loop1): Remounting filesystem read-only
[  494.937327][T11273] lo speed is unknown, defaulting to 1000
[  495.131966][T11273] ip6gretap0 speed is unknown, defaulting to 1000
[  495.155664][T11263] EXT4-fs (loop1): 1 orphan inode deleted
[  495.210073][   T26] kauditd_printk_skb: 10 callbacks suppressed
[  495.210090][   T26] audit: type=1326 audit(1738735855.334:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  495.248206][T11263] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  495.310829][T11279] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2506'.
[  495.314337][T11263] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2504'.
[  495.436174][T11279] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2506'.
[  495.477540][   T26] audit: type=1326 audit(1738735855.362:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  495.603549][   T26] audit: type=1326 audit(1738735855.362:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  495.620590][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  495.643039][T11285] loop2: detected capacity change from 0 to 512
[  495.690427][   T26] audit: type=1326 audit(1738735855.362:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  495.744838][T11287] loop6: detected capacity change from 0 to 1024
[  495.752385][T11285] EXT4-fs: Ignoring removed nomblk_io_submit option
[  495.794224][T11287] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  495.803216][T11285] EXT4-fs: Ignoring removed oldalloc option
[  495.826641][   T26] audit: type=1326 audit(1738735855.362:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  495.853357][T11285] EXT4-fs: Ignoring removed mblk_io_submit option
[  495.864476][   T26] audit: type=1326 audit(1738735855.362:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  495.921615][T11287] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  495.938788][   T26] audit: type=1326 audit(1738735855.427:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  495.965014][   T26] audit: type=1326 audit(1738735855.427:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  495.988466][   T26] audit: type=1326 audit(1738735855.427:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  496.011212][   T26] audit: type=1326 audit(1738735855.427:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc57138cde9 code=0x7ffc0000
[  496.033849][T11285] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  496.058859][T11287] EXT4-fs (loop6): re-mounted. Quota mode: writeback.
[  496.252388][ T9994] EXT4-fs (loop6): unmounting filesystem.
[  496.464299][T11307] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2515'.
[  497.293970][    T7] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  497.507360][    T7] usb 7-1: device descriptor read/64, error -71
[  497.866930][    T7] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  498.048642][    T7] usb 7-1: device descriptor read/64, error -71
[  498.191758][    T7] usb usb7-port1: attempt power cycle
[  498.327215][T11318] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2518'.
[  498.651217][    T7] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  498.705487][    T7] usb 7-1: device descriptor read/8, error -71
[  498.913835][T11322] lo speed is unknown, defaulting to 1000
[  499.349716][T11322] ip6gretap0 speed is unknown, defaulting to 1000
[  499.825897][T11326] netlink: 580 bytes leftover after parsing attributes in process `syz.2.2520'.
[  499.859914][    T7] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  500.116238][    T7] usb 7-1: device not accepting address 9, error -71
[  500.140116][    T7] usb usb7-port1: unable to enumerate USB device
[  500.236383][T11334] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2523'.
[  500.279593][T11334] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2523'.
[  500.317424][T11341] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2526'.
[  500.565018][ T4253] Bluetooth: hci5: command 0x0406 tx timeout
[  500.594423][   T26] kauditd_printk_skb: 32 callbacks suppressed
[  500.594443][   T26] audit: type=1326 audit(1738735860.366:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11329 comm="syz.6.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  500.709601][   T26] audit: type=1326 audit(1738735860.366:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11329 comm="syz.6.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a478cde9 code=0x7ffc0000
[  501.112401][T11355] loop1: detected capacity change from 0 to 1024
[  501.428158][T11355] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  501.762486][   T28] INFO: task syz-executor:4261 blocked for more than 144 seconds.
[  501.770491][   T28]       Not tainted 6.1.128-syzkaller #0
[  501.845475][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  501.935700][   T28] task:syz-executor    state:D stack:20248 pid:4261  ppid:1      flags:0x00004004
[  501.997915][T11359] loop2: detected capacity change from 0 to 512
[  502.021174][   T28] Call Trace:
[  502.026900][   T28]  <TASK>
[  502.065059][T11359] EXT4-fs: Ignoring removed nomblk_io_submit option
[  502.081239][   T28]  __schedule+0x143f/0x4570
[  502.089009][T11361] loop5: detected capacity change from 0 to 512
[  502.123274][   T28]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  502.139303][T11359] EXT4-fs: Ignoring removed oldalloc option
[  502.161288][T11361] EXT4-fs: Ignoring removed oldalloc option
[  502.177976][   T28]  ? release_firmware_map_entry+0x186/0x186
[  502.191869][T11359] EXT4-fs: Ignoring removed mblk_io_submit option
[  502.233440][   T28]  ? prepare_to_wait_event+0x3b5/0x3f0
[  502.254540][T11361] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.2532: Parent and EA inode have the same ino 15
[  502.281384][   T28]  schedule+0xbf/0x180
[  502.286851][T11359] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  502.309846][   T28]  wb_wait_for_completion+0x162/0x290
[  502.334453][T11361] EXT4-fs (loop5): Remounting filesystem read-only
[  502.344884][   T28]  ? __bpf_trace_writeback_inode_template+0x20/0x20
[  502.375703][T11361] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.2532: Parent and EA inode have the same ino 15
[  502.390718][   T28]  ? wake_bit_function+0x210/0x210
[  502.418034][   T28]  __writeback_inodes_sb_nr+0x2ce/0x370
[  502.442003][   T28]  ? writeback_inodes_sb_nr+0x30/0x30
[  502.469817][   T28]  ? get_nr_dirty_inodes+0x2ab/0x2e0
[  502.475192][   T28]  sync_filesystem+0xa0/0x220
[  502.479979][   T28]  generic_shutdown_super+0x6b/0x340
[  502.485399][   T28]  kill_block_super+0x7a/0xe0
[  502.490170][   T28]  deactivate_locked_super+0xa0/0x110
[  502.495596][   T28]  cleanup_mnt+0x490/0x520
[  502.500219][   T28]  ? lockdep_hardirqs_on+0x94/0x130
[  502.505467][   T28]  task_work_run+0x246/0x300
[  502.511065][   T28]  ? task_work_cancel+0x2e0/0x2e0
[  502.516312][   T28]  ? exit_to_user_mode_loop+0x39/0x100
[  502.561080][   T28]  exit_to_user_mode_loop+0xde/0x100
[  502.567249][T11361] EXT4-fs (loop5): Remounting filesystem read-only
[  502.574445][T11361] EXT4-fs (loop5): 1 orphan inode deleted
[  502.593462][   T28]  exit_to_user_mode_prepare+0xb1/0x140
[  502.604500][T11361] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  502.624803][   T28]  syscall_exit_to_user_mode+0x60/0x270
[  502.658249][   T28]  do_syscall_64+0x47/0xb0
[  502.685096][   T28]  ? clear_bhb_loop+0x45/0xa0
[  502.703103][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  502.707321][T11361] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2532'.
[  502.709065][   T28] RIP: 0033:0x7f4b5ed8e117
[  502.709105][   T28] RSP: 002b:00007ffd1a71f8f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  502.709133][   T28] RAX: 0000000000000000 RBX: 00007f4b5ee0e08c RCX: 00007f4b5ed8e117
[  502.709151][   T28] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd1a71f9b0
[  502.945044][   T28] RBP: 00007ffd1a71f9b0 R08: 0000000000000000 R09: 0000000000000000
[  502.987511][   T28] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd1a720a40
[  503.011655][   T28] R13: 00007f4b5ee0e08c R14: 00000000000519bb R15: 00007ffd1a720a80
[  503.039060][   T28]  </TASK>
[  503.050730][   T28] 
[  503.050730][   T28] Showing all locks held in the system:
[  503.077116][   T28] 1 lock held by rcu_tasks_kthre/12:
[  503.094858][   T28]  #0: ffffffff8d32b290 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  503.112442][   T28] 1 lock held by rcu_tasks_trace/13:
[  503.117794][   T28]  #0: ffffffff8d32ba90 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  503.128925][   T28] 1 lock held by khungtaskd/28:
[  503.134990][   T28]  #0: ffffffff8d32b0c0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[  503.145168][   T28] 2 locks held by getty/4010:
[  503.149878][   T28]  #0: ffff88814d2bf098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[  503.159768][   T28]  #1: ffffc9000325e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0
[  503.170594][   T28] 1 lock held by syz-executor/4261:
[  503.175900][   T28]  #0: ffff88807beb40e0 (&type->s_umount_key#32){++++}-{3:3}, at: deactivate_super+0xa9/0xe0
[  503.186211][   T28] 2 locks held by kworker/0:3/4290:
[  503.191436][   T28]  #0: ffff888017c72138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  503.201936][   T28]  #1: ffffc90004067d20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  503.213508][   T28] 2 locks held by kworker/u4:5/4298:
[  503.219093][   T28] 3 locks held by kworker/u4:10/4633:
[  503.224506][   T28]  #0: ffff8880b8e3a9d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140
[  503.234779][   T28]  #1: ffff8880b8e27788 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x419/0x790
[  503.246350][   T28]  #2: ffff8880b8e3a9d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140
[  503.256403][   T28] 1 lock held by syz-executor/5312:
[  503.261685][   T28]  #0: ffffffff8d3306b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x930
[  503.278194][   T28] 4 locks held by kworker/u4:21/10951:
[  503.283947][   T28]  #0: ffff888017e16938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  503.294668][   T28]  #1: ffffc90003587d20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  503.304976][   T28]  #2: ffffffff8e4ffad0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x166/0xd20
[  503.314698][   T28]  #3: ffffffff8e50bfa8 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_delete_nets+0xc9/0x330
[  503.324647][   T28] 1 lock held by syz.6.2531/11363:
[  503.329789][   T28]  #0: ffffffff8e50bfa8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  503.339542][   T28] 
[  503.342772][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  503.344229][   T28] =============================================
[  503.344229][   T28] 
[  503.356026][ T5312] EXT4-fs (loop5): unmounting filesystem.
[  503.453814][   T28] NMI backtrace for cpu 0
[  503.458201][   T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.128-syzkaller #0
[  503.466119][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  503.476195][   T28] Call Trace:
[  503.479482][   T28]  <TASK>
[  503.482434][   T28]  dump_stack_lvl+0x1e3/0x2cb
[  503.487128][   T28]  ? nf_tcp_handle_invalid+0x642/0x642
[  503.492601][   T28]  ? panic+0x764/0x764
[  503.496694][   T28]  ? vprintk_emit+0x622/0x740
[  503.501395][   T28]  ? printk_sprint+0x490/0x490
[  503.506178][   T28]  ? nmi_cpu_backtrace+0x252/0x560
[  503.511299][   T28]  nmi_cpu_backtrace+0x4e1/0x560
[  503.516246][   T28]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  503.522493][   T28]  ? _printk+0xd1/0x111
[  503.526662][   T28]  ? panic+0x764/0x764
[  503.530789][   T28]  ? __wake_up_klogd+0xcc/0x100
[  503.535659][   T28]  ? panic+0x764/0x764
[  503.539736][   T28]  ? nmi_trigger_cpumask_backtrace+0xe0/0x3f0
[  503.545811][   T28]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  503.552576][   T28]  nmi_trigger_cpumask_backtrace+0x1ae/0x3f0
[  503.558563][   T28]  watchdog+0xf88/0xfd0
[  503.562743][   T28]  ? watchdog+0x1f8/0xfd0
[  503.567086][   T28]  kthread+0x28d/0x320
[  503.571171][   T28]  ? hungtask_pm_notify+0x50/0x50
[  503.576205][   T28]  ? kthread_blkcg+0xd0/0xd0
[  503.580821][   T28]  ret_from_fork+0x1f/0x30
[  503.585258][   T28]  </TASK>
[  503.589102][   T28] Sending NMI from CPU 0 to CPUs 1:
[  503.594577][    C1] NMI backtrace for cpu 1
[  503.594600][    C1] CPU: 1 PID: 6377 Comm: kworker/u4:16 Not tainted 6.1.128-syzkaller #0
[  503.594617][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  503.594628][    C1] Workqueue: phy11 ieee80211_iface_work
[  503.594653][    C1] RIP: 0010:_ieee802_11_parse_elems_full+0x630/0x3880
[  503.594674][    C1] Code: 20 48 89 8c 24 58 01 00 00 48 83 c0 18 48 89 84 24 50 01 00 00 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 <84> c0 0f 85 5c 29 00 00 49 8d 47 02 48 89 44 24 18 45 0f b6 37 48
[  503.594689][    C1] RSP: 0018:ffffc90004e47300 EFLAGS: 00000a03
[  503.594703][    C1] RAX: 0000000000000000 RBX: 0000000000000016 RCX: dffffc0000000000
[  503.594714][    C1] RDX: 0000000000000000 RSI: 0000000000000016 RDI: 0000000000000001
[  503.594724][    C1] RBP: ffffc90004e476d0 R08: ffffffff8a3c871e R09: fffff520009c8ec5
[  503.594738][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001
[  503.594748][    C1] R13: 0000000000000003 R14: ffff888055c7209c R15: ffff888055c72086
[  503.594760][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  503.594775][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  503.594787][    C1] CR2: 00007f44cbd65fe0 CR3: 000000007cb47000 CR4: 00000000003506e0
[  503.594802][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  503.594811][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  503.594822][    C1] Call Trace:
[  503.594827][    C1]  <NMI>
[  503.594833][    C1]  ? nmi_cpu_backtrace+0x3de/0x560
[  503.594851][    C1]  ? read_lock_is_recursive+0x10/0x10
[  503.594879][    C1]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  503.594896][    C1]  ? nmi_handle+0x25/0x440
[  503.594932][    C1]  ? nmi_cpu_backtrace_handler+0x8/0x10
[  503.594947][    C1]  ? nmi_handle+0x12e/0x440
[  503.594973][    C1]  ? nmi_handle+0x25/0x440
[  503.594999][    C1]  ? _ieee802_11_parse_elems_full+0x630/0x3880
[  503.595017][    C1]  ? default_do_nmi+0x62/0x150
[  503.595036][    C1]  ? exc_nmi+0xa8/0x100
[  503.595052][    C1]  ? end_repeat_nmi+0x16/0x31
[  503.595072][    C1]  ? _ieee802_11_parse_elems_full+0x2ade/0x3880
[  503.595093][    C1]  ? _ieee802_11_parse_elems_full+0x630/0x3880
[  503.595111][    C1]  ? _ieee802_11_parse_elems_full+0x630/0x3880
[  503.595131][    C1]  ? _ieee802_11_parse_elems_full+0x630/0x3880
[  503.595150][    C1]  </NMI>
[  503.595160][    C1]  <TASK>
[  503.595207][    C1]  ? ieee802_11_parse_elems_full+0x1380/0x1380
[  503.595226][    C1]  ? ieee802_11_parse_elems_full+0xc4/0x1380
[  503.595245][    C1]  ? rcu_is_watching+0x11/0xb0
[  503.595260][    C1]  ? cfg80211_find_elem_match+0x170/0x1a0
[  503.595277][    C1]  ? __kmalloc+0xe2/0x230
[  503.595298][    C1]  ieee802_11_parse_elems_full+0xd60/0x1380
[  503.595318][    C1]  ? trace_raw_output_contention_end+0xd0/0xd0
[  503.595343][    C1]  ? rcu_is_watching+0x11/0xb0
[  503.595359][    C1]  ? trace_contention_end+0x61/0x170
[  503.595381][    C1]  ? __mutex_lock+0x2f7/0xd80
[  503.595402][    C1]  ? reacquire_held_locks+0x660/0x660
[  503.595420][    C1]  ? ieee80211_queue_delayed_work+0x160/0x160
[  503.595438][    C1]  ? mutex_lock_nested+0x10/0x10
[  503.595459][    C1]  ? mark_lock+0x9a/0x340
[  503.595490][    C1]  ieee80211_ibss_rx_queued_mgmt+0x430/0x2dd0
[  503.595513][    C1]  ? __lock_acquire+0x125b/0x1f80
[  503.595546][    C1]  ? ieee80211_ibss_rx_no_sta+0x740/0x740
[  503.595571][    C1]  ? mark_lock+0x9a/0x340
[  503.595598][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  503.595625][    C1]  ? print_irqtrace_events+0x210/0x210
[  503.595650][    C1]  ? do_raw_spin_unlock+0x137/0x8a0
[  503.595670][    C1]  ? lockdep_hardirqs_on+0x94/0x130
[  503.595691][    C1]  ? skb_dequeue+0x10f/0x140
[  503.595709][    C1]  ieee80211_iface_work+0x7aa/0xce0
[  503.595734][    C1]  ? process_one_work+0x7a9/0x11d0
[  503.595754][    C1]  process_one_work+0x8a9/0x11d0
[  503.595782][    C1]  ? worker_detach_from_pool+0x260/0x260
[  503.595805][    C1]  ? _raw_spin_lock_irqsave+0x120/0x120
[  503.595828][    C1]  ? kthread_data+0x4e/0xc0
[  503.595856][    C1]  ? wq_worker_running+0x97/0x190
[  503.595873][    C1]  worker_thread+0xa47/0x1200
[  503.595907][    C1]  kthread+0x28d/0x320
[  503.595922][    C1]  ? worker_clr_flags+0x190/0x190
[  503.595941][    C1]  ? kthread_blkcg+0xd0/0xd0
[  503.595957][    C1]  ret_from_fork+0x1f/0x30
[  503.595988][    C1]  </TASK>
[  503.787628][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[  503.787645][   T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.128-syzkaller #0
[  503.787669][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  503.787681][   T28] Call Trace:
[  503.787689][   T28]  <TASK>
[  503.787700][   T28]  dump_stack_lvl+0x1e3/0x2cb
[  503.787731][   T28]  ? nf_tcp_handle_invalid+0x642/0x642
[  503.787755][   T28]  ? panic+0x764/0x764
[  503.787781][   T28]  ? llist_add_batch+0x160/0x1d0
[  503.787817][   T28]  ? vscnprintf+0x59/0x80
[  503.787847][   T28]  panic+0x318/0x764
[  503.787875][   T28]  ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0
[  503.787909][   T28]  ? memcpy_page_flushcache+0xfc/0xfc
[  503.787941][   T28]  ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0
[  503.787963][   T28]  ? nmi_trigger_cpumask_backtrace+0x338/0x3f0
[  503.787989][   T28]  ? nmi_trigger_cpumask_backtrace+0x33d/0x3f0
[  503.788016][   T28]  watchdog+0xfc7/0xfd0
[  503.788052][   T28]  ? watchdog+0x1f8/0xfd0
[  503.788086][   T28]  kthread+0x28d/0x320
[  503.788106][   T28]  ? hungtask_pm_notify+0x50/0x50
[  503.788134][   T28]  ? kthread_blkcg+0xd0/0xd0
[  503.788157][   T28]  ret_from_fork+0x1f/0x30
[  503.788201][   T28]  </TASK>
[  503.790005][   T28] Kernel Offset: disabled
[  504.139273][   T28] Rebooting in 86400 seconds..