last executing test programs:

7.143209495s ago: executing program 4 (id=2600):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000110000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000003fffffe218110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
brk(0x0)

7.034137986s ago: executing program 4 (id=2603):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x4, 0x70bd26, 0x25dfdbfb, {}, [@NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x64b}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x5c4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='tasks\x00', 0x2, 0x0)
llistxattr(&(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)=""/4096, 0x1000)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000015c0))

6.955445186s ago: executing program 4 (id=2604):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x279, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
write$tun(r0, &(0x7f0000001700)={@val={0x2000, 0x88fb}, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, {0x0, 0x0, 0x28, 0x0, @opaque="9b1fa4eee5153e9db9d87bd15ac2629eb59a888c2c94d5ae20b07315c4cbd9ac"}}}}}}, 0x4e)

1.110012725s ago: executing program 2 (id=2721):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r1, 0x2)
socket$packet(0x11, 0x2, 0x300)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
pselect6(0x73, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3fe}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.015578565s ago: executing program 3 (id=2724):
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x555)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
semtimedop(0x0, &(0x7f0000000280)=[{0x0, 0x0, 0x1000}], 0x1, 0x0)
unshare(0x2c040000)

1.015387555s ago: executing program 1 (id=2725):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f00000002c0)={0x0, 0x5, &(0x7f0000001200)={&(0x7f0000001080)={0x38, 0x1403, 0x1, 0x700, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'syzkaller0\x00'}}]}, 0x38}}, 0x0)

957.550296ms ago: executing program 3 (id=2726):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000005e00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1c000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="ddffffff14000000000000000100000001000000", @ANYRES32=r1], 0x38, 0x44080}}], 0x1, 0x0)

902.565516ms ago: executing program 3 (id=2727):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket(0x28, 0x5, 0x0)
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r3, 0x0)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
write$binfmt_elf64(r2, &(0x7f0000000240)=ANY=[], 0x40000)
r4 = accept4$unix(r3, 0x0, 0x0, 0x0)
recvfrom$unix(r4, &(0x7f0000001040)=""/259, 0x103, 0x0, 0x0, 0x0)

816.603946ms ago: executing program 3 (id=2728):
r0 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b703000008000040850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='sys_enter\x00', r2}, 0x10)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)

774.342246ms ago: executing program 3 (id=2730):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000200de030000000000000001040000000e0000f1850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001100)={&(0x7f00000010c0)='mm_page_free\x00', r0}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x444, &(0x7f0000000ac0)=ANY=[@ANYBLOB="75746638006d61703d6f983c756661703d6e6f726d616c2c6909000000f2ff00003dda5de4d586f0df206d65656b416d6f64653d3078303030303010303071303030303030302c73657373696f6e3d307830faffffff30303030303030f4e4b4f82c6d61736b3d4d4159574b50be30c8486470722677b93165cfe6f62127553b2017754598752d977369672c7063723d303030303030303030303030303030303030332c64566e745f6d6561737572652c00000000000000006bbf4d6406b59dbc529c00000000000000fada265ab14119997600a2299d2c35a2efc1bf037787a0d801f26d335ef2ba9ac2423a358ccbb776b21e1d3b", @ANYRESDEC=0x0, @ANYRESHEX], 0xfe, 0x667, &(0x7f00000002c0)="$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")
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r1, &(0x7f0000000000)='./file0\x00', 0x5)

711.428237ms ago: executing program 1 (id=2731):
prlimit64(0x0, 0xe, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000600)={@local, @random="6a2ddcf6177a", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5}}}}}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x4000004)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x36, &(0x7f00000000c0)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x4, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000001880)={'wg1\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)={0x40, r5, 0xa29, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r4}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x40}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x40, r5, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r4}]}, 0x40}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@gettfilter={0x44, 0x2e, 0x0, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0xb, 0x1}, {0x3, 0xe}, {0x9, 0xfff2}}, [{0x8, 0xb, 0x6d3}, {0x8, 0xb, 0x2194572e}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0xe}]}, 0x44}, 0x1, 0x0, 0x0, 0x40081}, 0x48040)

648.554487ms ago: executing program 0 (id=2732):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='signal_generate\x00', r2}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast1}, {0x2, 0x0, 0x4, @loopback}, r3}}, 0x48)

600.326087ms ago: executing program 3 (id=2733):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x20, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000140)=0x3)
ioctl$TCFLSH(r2, 0x540b, 0x1)
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = dup(r3)
ioctl$TIOCSLCKTRMIOS(r2, 0x5457, &(0x7f0000000080))
getsockname$llc(r4, 0x0, 0x0)

584.949567ms ago: executing program 0 (id=2734):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r1, 0x40047451, &(0x7f0000000200))
ioctl$PPPIOCSFLAGS1(r1, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r1, &(0x7f0000000540)=[{&(0x7f00000002c0)='\x00!', 0x2}], 0x1, 0x0, 0x0)

476.729998ms ago: executing program 1 (id=2735):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00')
pread64(r0, &(0x7f0000000100)=""/222, 0xde, 0x200000000013)

455.360628ms ago: executing program 1 (id=2736):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000a40)=@newtaction={0x88c, 0x30, 0x12f, 0x0, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x7f3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x40000001, 0x0, 0x8, 0x8, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x80000000, 0xffffffff, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0xfffffffd, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa369, 0x0, 0x8, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd8, 0x0, 0x0, 0x0, 0x0, 0x6, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5f5, 0x0, 0x0, 0x0, 0x40000000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x7e2, 0x0, 0x0, 0xd5, 0x7, 0x96e4, 0x0, 0x0, 0xa, 0x0, 0x3, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0xffffffff, 0x200000, 0x0, 0x0, 0x0, 0x2, 0x9, 0x8, 0xfffffffd, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb5f, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x80, 0x0, 0x0, 0x7fc, 0xfffff0e7, 0xffffffbd, 0xfff, 0x0, 0x0, 0x0, 0x1ff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x3, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x1ff}, {0xd, 0x0, 0x0, 0x80, 0x0, 0x2}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x88c}, 0x1, 0x0, 0x0, 0x40000}, 0x890)

436.306178ms ago: executing program 4 (id=2612):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101242, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000380)=ANY=[], 0x878)

386.884468ms ago: executing program 0 (id=2737):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="50000000100003eeffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="0001000020010000300012800b0001006d61637365630000200002800c0004000200000100c280"], 0x50}}, 0x0)

385.985669ms ago: executing program 2 (id=2738):
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
unshare(0x22020600)
r1 = timerfd_create(0x0, 0x0)
close(r1)
syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/ipc\x00')
lseek(r1, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000002070000000900010073797a300000000024000000000900020073797a310000000004000380140000001000010000000000000000000084000a"], 0x6c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x400)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000180)={{0xffffffffffffffff, 0x3, 0x8, 0x2, 0x1}})

312.528229ms ago: executing program 1 (id=2739):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{0xfffd}, {0x35, 0x0, 0x5}, {}, {}, {}, {}, {0xfffd}]}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x2}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0)

312.267919ms ago: executing program 0 (id=2740):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0xa, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
move_mount(0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file0\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0/file0\x00', 0x0)

273.755809ms ago: executing program 2 (id=2741):
setresgid(0x0, 0xee01, 0xee00)
keyctl$session_to_parent(0x12)
umount2(0x0, 0x0)

222.486719ms ago: executing program 4 (id=2742):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

180.304369ms ago: executing program 1 (id=2743):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b708000000f1ff007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
r4 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000600)={'team0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@newqdisc={0xc4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r5, {}, {0xffff, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x94, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x1, 0x4], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xffff]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x38, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}, {0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x55cb}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x7fffffff}]}, {0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x2}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x9e}]}]}]}}]}, 0xc4}}, 0x0)
connect$inet(r3, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000004c0)=@ipv6_newnexthop={0x18, 0x4a, 0x1}, 0x18}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r9, &(0x7f0000000040)=[{0x0}], 0x1, 0x20, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0c00000000000000100000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000400000000000000000000feffffffffffffff009776773122bc8d34d86e7fbc286b65646817e76ee1463876e144ee7833702f9d9e3b10"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r10], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='workqueue_queue_work\x00', r8, 0x0, 0x4}, 0x18)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r11, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a8, 0x1d8, 0x12, 0x60d, 0x0, 0x202, 0x2d8, 0x2e8, 0x2e8, 0x2d8, 0x2c0, 0x4, 0x0, {[{{@ipv6={@private1, @remote, [], [], 'veth0_to_team\x00', 'macsec0\x00'}, 0x0, 0x190, 0x1d8, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "000000165a2e2e0617ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f672225d6147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac05a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b5", 0x7, 0x2}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@common=@hl={{0x28}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x408)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

179.950609ms ago: executing program 0 (id=2744):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc)=0x8)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
syslog(0x4, 0xffffffffffffffff, 0x1000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

168.939859ms ago: executing program 2 (id=2745):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f00000001c0), &(0x7f00000002c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="8b330000000000ffff0015"], 0x2c}}, 0x0)

96.97134ms ago: executing program 0 (id=2746):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000500)='hrtimer_start\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x44}}, 0x0)

48.4323ms ago: executing program 2 (id=2747):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

48.13553ms ago: executing program 4 (id=2748):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nogrpid}, {@jqfmt_vfsv0}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@quota}, {@nolazytime}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/50, 0x32)

0s ago: executing program 2 (id=2749):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000440)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

kernel console output (not intermixed with test programs):

67295 subj=unconfined pid=6540 comm="syz.2.943" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=67 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  109.382453][   T26] audit: type=1326 audit(109.340:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6540 comm="syz.2.943" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  109.407352][   T26] audit: type=1326 audit(109.370:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.0.944" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  109.436514][   T26] audit: type=1326 audit(109.390:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.0.944" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=281 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  109.455101][   T26] audit: type=1326 audit(109.390:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.0.944" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  109.572881][ T6551] device syz_tun entered promiscuous mode
[  109.621533][ T6551] device batadv_slave_0 entered promiscuous mode
[  109.665422][ T6553] netlink: 16 bytes leftover after parsing attributes in process `syz.0.949'.
[  109.667554][ T6553] netlink: 4 bytes leftover after parsing attributes in process `syz.0.949'.
[  109.722276][ T6523] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.742654][ T6523] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.774400][ T6523] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.792113][ T6523] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.806237][   T26] audit: type=1326 audit(109.770:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.951" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  109.817450][   T26] audit: type=1326 audit(109.790:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.951" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  109.836927][   T26] audit: type=1326 audit(109.800:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.951" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  109.867900][   T26] audit: type=1326 audit(109.800:1236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.951" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  110.103962][ T6574] netlink: 36 bytes leftover after parsing attributes in process `syz.2.958'.
[  110.139631][ T6579] loop1: detected capacity change from 0 to 512
[  110.200492][ T6574] netlink: 36 bytes leftover after parsing attributes in process `syz.2.958'.
[  110.277493][ T6579] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000040000,minixdf,,errors=continue. Quota mode: writeback.
[  110.374750][ T6574] netlink: 36 bytes leftover after parsing attributes in process `syz.2.958'.
[  110.423712][ T6590] lo speed is unknown, defaulting to 1000
[  110.518795][ T6598] loop2: detected capacity change from 0 to 512
[  110.574946][ T6598] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  110.609363][ T6598] EXT4-fs (loop2): 1 orphan inode deleted
[  110.610753][ T6598] EXT4-fs (loop2): 1 truncate cleaned up
[  110.612659][ T6598] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[  110.867807][ T6612] netlink: 332 bytes leftover after parsing attributes in process `syz.0.974'.
[  110.940746][ T6618] loop4: detected capacity change from 0 to 128
[  110.956829][ T6618] FAT-fs (loop4): Unrecognized mount option "
" or missing value
[  111.874156][ T6409] Process accounting resumed
[  111.970076][ T6647] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.063531][ T6647] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.164582][ T6647] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.239786][ T6663] netlink: 4 bytes leftover after parsing attributes in process `syz.4.995'.
[  112.244536][ T6647] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.430093][ T6647] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  112.442557][ T6647] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  112.468543][ T6669] loop2: detected capacity change from 0 to 512
[  112.469406][ T6647] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  112.498072][ T6647] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  112.548558][ T6669] EXT4-fs warning (device loop2): ext4_enable_quotas:6432: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  112.615803][ T6678] xt_hashlimit: max too large, truncated to 1048576
[  112.624874][ T6676] netlink: 36 bytes leftover after parsing attributes in process `syz.4.998'.
[  112.635412][ T6669] EXT4-fs (loop2): mount failed
[  112.657201][ T6679] netlink: 4 bytes leftover after parsing attributes in process `syz.3.999'.
[  112.821417][ T6692] loop1: detected capacity change from 0 to 256
[  113.039025][ T6714] 9pnet: Could not find request transport: 0xffffffffffffffff
[  113.103230][ T6717] IPVS: set_ctl: invalid protocol: 44 172.30.0.3:20000
[  113.314725][ T6732] loop1: detected capacity change from 0 to 2048
[  113.357991][ T5387] Alternate GPT is invalid, using primary GPT.
[  113.359511][ T5387]  loop1: p1 p2 p3
[  113.376529][ T6732] Alternate GPT is invalid, using primary GPT.
[  113.378503][ T6732]  loop1: p1 p2 p3
[  113.390344][ T6740] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  113.396561][ T6740] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  113.446300][ T6739] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  113.463586][ T6739] bond0: (slave bond_slave_0): Releasing backup interface
[  113.511467][ T6739] device bond_slave_0 left promiscuous mode
[  113.526679][ T6739] bond0: (slave bond_slave_1): Releasing backup interface
[  113.563913][ T6739] device bond_slave_1 left promiscuous mode
[  113.604573][ T6739] team0: Port device team_slave_0 removed
[  113.643760][ T6739] team0: Port device team_slave_1 removed
[  113.648034][ T6739] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  113.652319][ T6739] batman_adv: batadv0: Removing interface: batadv_slave_0
[  113.659956][ T6739] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  113.664184][ T6739] batman_adv: batadv0: Removing interface: batadv_slave_1
[  113.668719][ T6745] Cannot find del_set index 4 as target
[  113.687481][ T6739] batman_adv: batadv0: Interface deactivated: geneve2
[  113.694180][ T6739] batman_adv: batadv0: Removing interface: geneve2
[  113.820212][ T6753] netlink: 'syz.1.1036': attribute type 153 has an invalid length.
[  113.833490][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  113.872397][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  113.930222][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  113.964267][ T6766] loop1: detected capacity change from 0 to 512
[  113.985833][ T6770] netlink: 'syz.3.1044': attribute type 24 has an invalid length.
[  114.062614][ T6766] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  114.080751][ T6762] loop2: detected capacity change from 0 to 8192
[  114.089233][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  114.092006][ T6775] loop3: detected capacity change from 0 to 512
[  114.095880][ T4555] udevd[4555]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  114.131394][ T6762] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  114.160197][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  114.168271][ T6775] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #2: comm syz.3.1046: corrupted xattr block 255
[  114.184761][ T4555] udevd[4555]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  114.196259][ T6775] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  114.201698][ T6775] EXT4-fs (loop3): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,dioread_lock,init_itable,auto_da_alloc,grpjquota=.noload,barrier=0x0000000000000007,jqfmt=vfsv1,grpid,,,errors=continue. Quota mode: writeback.
[  114.207208][ T6775] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #2: comm syz.3.1046: corrupted xattr block 255
[  114.217919][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  114.242446][ T4555] udevd[4555]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  114.958493][ T6779] loop1: detected capacity change from 0 to 1024
[  115.047585][ T6779] EXT4-fs (loop1): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,,errors=continue. Quota mode: writeback.
[  115.089242][ T6779] EXT4-fs (loop1): re-mounted. Opts: (null). Quota mode: writeback.
[  115.161121][ T6832] device bond1 entered promiscuous mode
[  115.163515][ T6832] 8021q: adding VLAN 0 to HW filter on device bond1
[  115.197000][ T6832] bond1 (unregistering): Released all slaves
[  115.355435][ T6841] loop2: detected capacity change from 0 to 512
[  115.455180][ T6841] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1075: bg 0: block 248: padding at end of block bitmap is not set
[  115.487751][ T6841] __quota_error: 150 callbacks suppressed
[  115.487764][ T6841] Quota error (device loop2): write_blk: dquota write failed
[  115.507981][ T6841] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  115.534674][ T6841] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.1075: Failed to acquire dquot type 1
[  115.567591][ T6841] EXT4-fs (loop2): 1 truncate cleaned up
[  115.569004][ T6841] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  115.646007][ T6841] tipc: Started in network mode
[  115.657856][ T6841] tipc: Node identity ac14140f, cluster identity 4711
[  115.659866][ T6841] tipc: New replicast peer: 255.255.255.255
[  115.685409][ T6841] tipc: Enabled bearer <udp:syz2>, priority 10
[  115.759452][ T6860] loop1: detected capacity change from 0 to 512
[  115.795384][ T6860] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  115.802979][ T6863] __nla_validate_parse: 5 callbacks suppressed
[  115.802993][ T6863] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1084'.
[  115.808710][ T6863] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1084'.
[  115.816060][ T6860] EXT4-fs (loop1): 1 truncate cleaned up
[  115.817346][ T6860] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  115.875218][ T6863] device team0 entered promiscuous mode
[  115.876711][ T6863] device team_slave_0 entered promiscuous mode
[  115.882564][ T6863] device team_slave_1 entered promiscuous mode
[  115.966394][ T6863] device team0 left promiscuous mode
[  115.967924][ T6863] device team_slave_0 left promiscuous mode
[  115.969524][ T6863] device team_slave_1 left promiscuous mode
[  116.380076][ T6888] ALSA: seq fatal error: cannot create timer (-22)
[  116.388155][   T26] audit: type=1326 audit(116.360:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.4.1095" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  116.397459][   T26] audit: type=1326 audit(116.360:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.4.1095" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  116.416917][   T26] audit: type=1326 audit(116.360:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.4.1095" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  116.430973][   T26] audit: type=1326 audit(116.360:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.4.1095" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  116.453460][   T26] audit: type=1326 audit(116.360:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.4.1095" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  116.471136][   T26] audit: type=1326 audit(116.360:1391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.4.1095" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  116.491167][   T26] audit: type=1326 audit(116.360:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.4.1095" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  116.496214][   T26] audit: type=1326 audit(116.360:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.4.1095" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=236 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  116.638481][ T6902] device geneve2 entered promiscuous mode
[  116.651638][ T6902] batman_adv: batadv0: Adding interface: geneve2
[  116.654007][ T6902] batman_adv: batadv0: Interface activated: geneve2
[  116.788015][ T6918] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1108'.
[  116.790141][ T6918] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1108'.
[  116.792803][   T25] tipc: Node number set to 2886997007
[  116.927017][ T6924] loop4: detected capacity change from 0 to 164
[  116.993276][ T6934] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1116'.
[  116.999446][ T6932] netlink: 'syz.3.1115': attribute type 10 has an invalid length.
[  118.106481][ T6962] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1126'.
[  118.186972][ T6962] device hsr_slave_1 left promiscuous mode
[  118.334971][ T6985] netlink: 'syz.3.1135': attribute type 10 has an invalid length.
[  118.338951][ T6985] 8021q: adding VLAN 0 to HW filter on device team0
[  118.345373][ T6985] bond0: (slave team0): Enslaving as an active interface with an up link
[  118.354991][ T6985] rdma_rxe: rxe_register_device failed with error -23
[  118.357510][ T6985] rdma_rxe: failed to add team_slave_0
[  119.260274][ T7002] device geneve2 entered promiscuous mode
[  119.438079][ T7021] netlink: 'syz.2.1147': attribute type 10 has an invalid length.
[  119.456521][ T7021] 8021q: adding VLAN 0 to HW filter on device team0
[  119.459342][ T7021] device team0 entered promiscuous mode
[  119.489951][ T7026] rdma_rxe: rxe_register_device failed with error -23
[  119.499094][ T7021] bond0: (slave team0): Enslaving as an active interface with an up link
[  119.515416][ T7026] rdma_rxe: failed to add team_slave_0
[  120.564818][ T7054] udc-core: couldn't find an available UDC or it's busy
[  120.566480][ T7054] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  120.635086][   T26] kauditd_printk_skb: 62 callbacks suppressed
[  120.635098][   T26] audit: type=1326 audit(120.580:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7056 comm="syz.4.1162" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  120.644630][   T26] audit: type=1326 audit(120.600:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.664147][   T26] audit: type=1326 audit(120.600:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.695563][   T26] audit: type=1326 audit(120.600:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.717532][   T26] audit: type=1326 audit(120.600:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.731025][   T26] audit: type=1326 audit(120.600:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.735995][   T26] audit: type=1326 audit(120.600:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.753126][   T26] audit: type=1326 audit(120.600:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.758198][ T7067] loop1: detected capacity change from 0 to 1024
[  120.759840][ T7064] device geneve2 entered promiscuous mode
[  120.763198][ T7064] batman_adv: batadv0: Adding interface: geneve2
[  120.764584][ T7064] batman_adv: batadv0: The MTU of interface geneve2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  120.776285][ T7064] batman_adv: batadv0: Interface activated: geneve2
[  120.784530][   T26] audit: type=1326 audit(120.600:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.804621][   T26] audit: type=1326 audit(120.600:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7057 comm="syz.0.1161" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  120.817400][ T7067] EXT4-fs (loop1): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,,errors=continue. Quota mode: writeback.
[  120.848404][ T7067] EXT4-fs (loop1): re-mounted. Opts: (null). Quota mode: writeback.
[  120.945501][ T7082] netlink: 'syz.0.1166': attribute type 10 has an invalid length.
[  120.998135][ T7082] 8021q: adding VLAN 0 to HW filter on device team0
[  121.000338][ T7088] rdma_rxe: rxe_register_device failed with error -23
[  121.021481][ T7088] rdma_rxe: failed to add team_slave_0
[  121.029257][ T7082] bond0: (slave team0): Enslaving as an active interface with an up link
[  122.024533][ T7103] loop2: detected capacity change from 0 to 2048
[  122.167939][ T7122] netlink: 'syz.4.1185': attribute type 10 has an invalid length.
[  122.195111][ T7122] 8021q: adding VLAN 0 to HW filter on device team0
[  122.198176][ T7122] bond0: (slave team0): Enslaving as an active interface with an up link
[  122.255322][ T7122] rdma_rxe: rxe_register_device failed with error -23
[  122.257291][ T7122] rdma_rxe: failed to add team_slave_0
[  122.264454][ T7126] netlink: 'syz.1.1197': attribute type 5 has an invalid length.
[  122.329283][ T7135] udc-core: couldn't find an available UDC or it's busy
[  122.341656][ T7135] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  122.640233][ T7157] netlink: 'syz.4.1201': attribute type 5 has an invalid length.
[  123.174860][ T7210] loop4: detected capacity change from 0 to 512
[  123.266101][ T7221] udc-core: couldn't find an available UDC or it's busy
[  123.267773][ T7221] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  123.293420][ T7210] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.1224: inode #1: comm syz.4.1224: iget: illegal inode #
[  123.298972][ T7210] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1224: error while reading EA inode 1 err=-117
[  123.309709][ T7210] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.1224: inode #1: comm syz.4.1224: iget: illegal inode #
[  123.316513][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  123.358939][ T7210] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1224: error while reading EA inode 1 err=-117
[  123.363632][ T7225] loop2: detected capacity change from 0 to 512
[  123.369188][ T7210] EXT4-fs (loop4): 1 orphan inode deleted
[  123.372826][ T7210] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,nogrpid,debug_want_extra_isize=0x0000000000000058,noauto_da_alloc,noauto_da_alloc,grpquota,usrjquota=,,errors=continue. Quota mode: writeback.
[  123.445402][ T7225] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  123.447424][ T7225] System zones: 0-2, 18-18, 34-34
[  123.452923][ T7225] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1229: bg 0: block 248: padding at end of block bitmap is not set
[  123.458601][ T7225] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.1229: Failed to acquire dquot type 1
[  123.479353][ T7225] EXT4-fs (loop2): 1 truncate cleaned up
[  123.481166][ T7225] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  123.637341][ T7234] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1233'.
[  123.777164][ T7247] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1240'.
[  124.108827][ T7255] lo speed is unknown, defaulting to 1000
[  124.246364][ T7278] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1256'.
[  124.285313][ T7281] udc-core: couldn't find an available UDC or it's busy
[  124.287054][ T7281] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  124.444359][ T7294] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1262'.
[  124.672178][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  124.907000][ T7330] loop4: detected capacity change from 0 to 128
[  124.960773][ T7330] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  125.156772][ T7349] xt_hashlimit: max too large, truncated to 1048576
[  125.173180][ T7348] hub 2-0:1.0: USB hub found
[  125.174753][ T7348] hub 2-0:1.0: 8 ports detected
[  125.253763][ T7354] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1289'.
[  125.417167][ T7369] netlink: 'syz.4.1295': attribute type 4 has an invalid length.
[  125.565090][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  125.737723][ T7384] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1303'.
[  126.041294][ T4074] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  126.047997][ T7402] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  126.049462][ T7402] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  126.053937][ T7402] vhci_hcd vhci_hcd.0: Device attached
[  126.056261][ T7403] vhci_hcd: connection closed
[  126.056858][ T4266] vhci_hcd: stop threads
[  126.059083][ T4266] vhci_hcd: release socket
[  126.060211][ T4266] vhci_hcd: disconnect device
[  126.080751][ T7406] loop2: detected capacity change from 0 to 512
[  126.139885][ T7408] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1313'.
[  126.168228][ T7406] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1312: inode #1: comm syz.2.1312: iget: illegal inode #
[  126.186452][ T7406] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1312: error while reading EA inode 1 err=-117
[  126.194453][ T7406] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1312: inode #1: comm syz.2.1312: iget: illegal inode #
[  126.198215][ T7406] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1312: error while reading EA inode 1 err=-117
[  126.209818][ T7406] EXT4-fs (loop2): 1 orphan inode deleted
[  126.216846][ T7406] EXT4-fs (loop2): mounted filesystem without journal. Opts: noquota,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[  126.231026][ T4074] usb 1-1: device descriptor read/64, error -71
[  126.406332][   T26] kauditd_printk_skb: 180 callbacks suppressed
[  126.406345][   T26] audit: type=1326 audit(126.370:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.2.1314" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  126.423070][   T26] audit: type=1326 audit(126.390:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.2.1314" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=43 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  126.439750][   T26] audit: type=1326 audit(126.390:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.2.1314" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  126.458702][   T26] audit: type=1326 audit(126.410:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  126.478989][   T26] audit: type=1326 audit(126.410:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  126.497765][   T26] audit: type=1326 audit(126.430:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  126.503327][ T4074] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  126.513497][   T26] audit: type=1326 audit(126.430:1650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  126.533759][   T26] audit: type=1326 audit(126.430:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  126.552742][   T26] audit: type=1326 audit(126.430:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  126.568747][   T26] audit: type=1326 audit(126.430:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  126.626941][ T7428] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1320'.
[  126.676565][ T7432] loop2: detected capacity change from 0 to 512
[  126.691170][ T4074] usb 1-1: device descriptor read/64, error -71
[  126.776033][ T7432] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.1322: casefold flag without casefold feature
[  126.781140][ T7432] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1322: couldn't read orphan inode 15 (err -117)
[  126.784132][ T7432] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  126.811952][ T4074] usb usb1-port1: attempt power cycle
[  127.017266][ T7442] loop3: detected capacity change from 0 to 512
[  127.065511][ T7444] IPv6: NLM_F_CREATE should be specified when creating new route
[  127.145047][ T7442] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1324: inode #1: comm syz.3.1324: iget: illegal inode #
[  127.154920][ T7442] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1324: error while reading EA inode 1 err=-117
[  127.160252][ T7442] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1324: inode #1: comm syz.3.1324: iget: illegal inode #
[  127.163829][ T7442] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1324: error while reading EA inode 1 err=-117
[  127.174174][ T7442] EXT4-fs (loop3): 1 orphan inode deleted
[  127.175456][ T7442] EXT4-fs (loop3): mounted filesystem without journal. Opts: noquota,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[  127.220885][ T4074] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  127.312234][ T4074] usb 1-1: device descriptor read/8, error -71
[  127.440769][ T7462] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1334'.
[  127.581011][ T4074] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  127.676183][ T4074] usb 1-1: device descriptor read/8, error -71
[  127.678567][ T7484] loop2: detected capacity change from 0 to 512
[  127.738239][ T7484] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  127.761201][ T7484] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.1343: invalid block
[  127.768482][ T7484] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1343: invalid indirect mapped block 4294967295 (level 1)
[  127.791130][ T4074] usb usb1-port1: unable to enumerate USB device
[  127.793765][ T7484] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1343: invalid indirect mapped block 4294967295 (level 1)
[  127.804917][ T7484] EXT4-fs (loop2): 2 truncates cleaned up
[  127.806284][ T7484] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000003,dioread_nolock,,errors=continue. Quota mode: writeback.
[  127.826517][ T7484] EXT4-fs error (device loop2): ext4_get_parent:1906: inode #11: comm syz.2.1343: bad parent inode number: 3
[  127.882889][ T7491] loop4: detected capacity change from 0 to 512
[  128.000222][ T7491] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.1346: inode #1: comm syz.4.1346: iget: illegal inode #
[  128.007279][ T7491] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1346: error while reading EA inode 1 err=-117
[  128.016228][ T7491] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.1346: inode #1: comm syz.4.1346: iget: illegal inode #
[  128.029891][ T7491] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1346: error while reading EA inode 1 err=-117
[  128.038843][ T7491] EXT4-fs (loop4): 1 orphan inode deleted
[  128.040459][ T7491] EXT4-fs (loop4): mounted filesystem without journal. Opts: noquota,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[  128.246213][ T7516] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1351'.
[  128.250636][ T7514] bond0: (slave syz_tun): Releasing backup interface
[  128.396439][ T7522] loop1: detected capacity change from 0 to 1024
[  128.409449][ T7513] lo speed is unknown, defaulting to 1000
[  128.513322][ T7522] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  128.543860][ T7522] EXT4-fs (loop1): shut down requested (0)
[  128.613204][  T514] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  128.624942][  T514] EXT4-fs (loop1): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 1 with error 28
[  128.630715][  T514] EXT4-fs (loop1): This should not happen!! Data will be lost
[  128.630715][  T514] 
[  128.654880][  T514] EXT4-fs (loop1): Total free blocks count 0
[  128.657575][  T514] EXT4-fs (loop1): Free/Dirty block details
[  128.665266][  T514] EXT4-fs (loop1): free_blocks=68451041280
[  128.667367][  T514] EXT4-fs (loop1): dirty_blocks=16
[  128.668720][  T514] EXT4-fs (loop1): Block reservation details
[  128.670278][  T514] EXT4-fs (loop1): i_reserved_data_blocks=1
[  128.861728][ T7545] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1365'.
[  128.871860][ T7545] netlink: 348 bytes leftover after parsing attributes in process `syz.0.1365'.
[  128.911689][ T7550] loop1: detected capacity change from 0 to 512
[  128.979919][ T7550] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.1362: inode #1: comm syz.1.1362: iget: illegal inode #
[  129.015544][ T7550] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1362: error while reading EA inode 1 err=-117
[  129.025488][ T7550] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.1362: inode #1: comm syz.1.1362: iget: illegal inode #
[  129.061108][ T7550] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1362: error while reading EA inode 1 err=-117
[  129.075705][ T7550] EXT4-fs (loop1): 1 orphan inode deleted
[  129.076935][ T7550] EXT4-fs (loop1): mounted filesystem without journal. Opts: noquota,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[  129.479279][ T7605] loop2: detected capacity change from 0 to 512
[  129.499255][ T7600] loop3: detected capacity change from 0 to 4096
[  129.517912][ T7612] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1396'.
[  129.520184][ T7612] netlink: 116 bytes leftover after parsing attributes in process `syz.4.1396'.
[  129.553445][ T7600] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  129.616485][ T7605] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1392: inode #1: comm syz.2.1392: iget: illegal inode #
[  129.620215][ T7605] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1392: error while reading EA inode 1 err=-117
[  129.624098][ T7605] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1392: inode #1: comm syz.2.1392: iget: illegal inode #
[  129.648143][ T7605] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1392: error while reading EA inode 1 err=-117
[  129.654979][ T7605] EXT4-fs (loop2): 1 orphan inode deleted
[  129.656344][ T7605] EXT4-fs (loop2): mounted filesystem without journal. Opts: user_xattr,nogrpid,debug_want_extra_isize=0x0000000000000058,noauto_da_alloc,noauto_da_alloc,grpquota,usrjquota=,,errors=continue. Quota mode: writeback.
[  129.868036][ T7635] loop1: detected capacity change from 0 to 1024
[  129.872360][ T7637] xt_TCPMSS: Only works on TCP SYN packets
[  129.907170][ T7640] loop3: detected capacity change from 0 to 512
[  129.937990][ T7635] EXT4-fs (loop1): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,,errors=continue. Quota mode: writeback.
[  129.950540][ T7635] EXT4-fs (loop1): re-mounted. Opts: (null). Quota mode: writeback.
[  130.011967][ T7640] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  130.014023][ T7640] System zones: 0-2, 18-18, 34-34
[  130.017296][ T7640] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1406: bg 0: block 248: padding at end of block bitmap is not set
[  130.045346][ T7648] hub 9-0:1.0: USB hub found
[  130.054129][ T7648] hub 9-0:1.0: 8 ports detected
[  130.055383][ T7640] EXT4-fs error (device loop3): ext4_acquire_dquot:6197: comm syz.3.1406: Failed to acquire dquot type 1
[  130.065089][ T7640] EXT4-fs (loop3): 1 truncate cleaned up
[  130.066489][ T7640] EXT4-fs (loop3): mounted filesystem without journal. Opts: discard,noload,,errors=continue. Quota mode: writeback.
[  130.165299][ T7655] loop4: detected capacity change from 0 to 256
[  130.259182][ T7664] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1414'.
[  130.275896][ T7655] FAT-fs (loop4): Directory bread(block 64) failed
[  130.281396][ T7655] FAT-fs (loop4): Directory bread(block 65) failed
[  130.283058][ T7655] FAT-fs (loop4): Directory bread(block 66) failed
[  130.284519][ T7655] FAT-fs (loop4): Directory bread(block 67) failed
[  130.301113][ T7655] FAT-fs (loop4): Directory bread(block 68) failed
[  130.302797][ T7655] FAT-fs (loop4): Directory bread(block 69) failed
[  130.304353][ T7655] FAT-fs (loop4): Directory bread(block 70) failed
[  130.305889][ T7655] FAT-fs (loop4): Directory bread(block 71) failed
[  130.307404][ T7655] FAT-fs (loop4): Directory bread(block 72) failed
[  130.308992][ T7655] FAT-fs (loop4): Directory bread(block 73) failed
[  130.456677][ T7655] handle_bad_sector: 2083 callbacks suppressed
[  130.456693][ T7655] attempt to access beyond end of device
[  130.456693][ T7655] loop4: rw=524288, want=1772, limit=256
[  130.486120][ T7655] attempt to access beyond end of device
[  130.486120][ T7655] loop4: rw=0, want=1772, limit=256
[  130.493294][ T7655] attempt to access beyond end of device
[  130.493294][ T7655] loop4: rw=0, want=1772, limit=256
[  130.502828][ T7655] attempt to access beyond end of device
[  130.502828][ T7655] loop4: rw=0, want=1772, limit=256
[  130.519323][ T7654] attempt to access beyond end of device
[  130.519323][ T7654] loop4: rw=0, want=1772, limit=256
[  130.526517][ T7654] attempt to access beyond end of device
[  130.526517][ T7654] loop4: rw=0, want=1772, limit=256
[  130.532183][ T7655] attempt to access beyond end of device
[  130.532183][ T7655] loop4: rw=0, want=1772, limit=256
[  130.555243][ T7655] attempt to access beyond end of device
[  130.555243][ T7655] loop4: rw=0, want=1772, limit=256
[  130.558043][ T7674] attempt to access beyond end of device
[  130.558043][ T7674] loop4: rw=0, want=1772, limit=256
[  130.560759][ T7674] attempt to access beyond end of device
[  130.560759][ T7674] loop4: rw=0, want=1772, limit=256
[  130.640635][ T7665] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1413'.
[  130.656918][ T7661] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1413'.
[  130.839001][ T7684] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1423'.
[  130.845815][ T7684] 0ªX¹¦À: renamed from caif0
[  130.931001][ T7684] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  131.004931][ T7693] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1428'.
[  131.133569][ T7701] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1431'.
[  131.357104][ T7723] loop1: detected capacity change from 0 to 256
[  131.419132][   T26] kauditd_printk_skb: 263 callbacks suppressed
[  131.419144][   T26] audit: type=1326 audit(131.380:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffff86806e0c code=0x7ffc0000
[  131.439493][   T26] audit: type=1326 audit(131.400:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff8690387c code=0x7ffc0000
[  131.450955][   T26] audit: type=1326 audit(131.400:1917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffff86806e0c code=0x7ffc0000
[  131.452131][ T7723] FAT-fs (loop1): Directory bread(block 64) failed
[  131.457227][ T7723] FAT-fs (loop1): Directory bread(block 65) failed
[  131.458740][ T7723] FAT-fs (loop1): Directory bread(block 66) failed
[  131.460323][ T7723] FAT-fs (loop1): Directory bread(block 67) failed
[  131.462679][   T26] audit: type=1326 audit(131.400:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff8690387c code=0x7ffc0000
[  131.475446][   T26] audit: type=1326 audit(131.400:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=203 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  131.484877][ T7723] FAT-fs (loop1): Directory bread(block 68) failed
[  131.486530][ T7723] FAT-fs (loop1): Directory bread(block 69) failed
[  131.486540][   T26] audit: type=1326 audit(131.400:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffff86806e0c code=0x7ffc0000
[  131.488081][ T7723] FAT-fs (loop1): Directory bread(block 70) failed
[  131.504063][   T26] audit: type=1326 audit(131.400:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff8690387c code=0x7ffc0000
[  131.514683][   T26] audit: type=1326 audit(131.400:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=203 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  131.522393][   T26] audit: type=1326 audit(131.420:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffff86806e0c code=0x7ffc0000
[  131.527812][   T26] audit: type=1326 audit(131.420:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.2.1425" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff8690387c code=0x7ffc0000
[  131.529094][ T7723] FAT-fs (loop1): Directory bread(block 71) failed
[  131.549852][ T7723] FAT-fs (loop1): Directory bread(block 72) failed
[  131.557185][ T7723] FAT-fs (loop1): Directory bread(block 73) failed
[  131.586018][ T7719] lo speed is unknown, defaulting to 1000
[  131.734091][ T7732] loop3: detected capacity change from 0 to 512
[  131.813864][ T7732] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  131.846109][ T7732] EXT4-fs (loop3): 1 truncate cleaned up
[  131.847450][ T7732] EXT4-fs (loop3): mounted filesystem without journal. Opts: nolazytime,lazytime,debug_want_extra_isize=0x0000000000000068,bsdgroups,errors=remount-ro,noload,. Quota mode: none.
[  133.399362][ T7796] atomic_op 000000002867b680 conn xmit_atomic 0000000000000000
[  133.459190][ T7800] loop0: detected capacity change from 0 to 256
[  133.531789][ T7800] FAT-fs (loop0): Directory bread(block 64) failed
[  133.533353][ T7800] FAT-fs (loop0): Directory bread(block 65) failed
[  133.535008][ T7800] FAT-fs (loop0): Directory bread(block 66) failed
[  133.536506][ T7800] FAT-fs (loop0): Directory bread(block 67) failed
[  133.538170][ T7800] FAT-fs (loop0): Directory bread(block 68) failed
[  133.539634][ T7800] FAT-fs (loop0): Directory bread(block 69) failed
[  133.625950][ T7800] FAT-fs (loop0): Directory bread(block 70) failed
[  133.627865][ T7800] FAT-fs (loop0): Directory bread(block 71) failed
[  133.630406][ T7800] FAT-fs (loop0): Directory bread(block 72) failed
[  133.649817][ T7800] FAT-fs (loop0): Directory bread(block 73) failed
[  134.192809][ T7818] loop1: detected capacity change from 0 to 512
[  134.287911][ T7828] loop2: detected capacity change from 0 to 1024
[  134.311519][ T7818] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec01c, mo2=0002]
[  134.313410][ T7818] System zones: 0-2, 18-18, 34-34
[  134.326230][ T7818] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1480: bg 0: block 248: padding at end of block bitmap is not set
[  134.326600][ T7828] EXT4-fs (loop2): Ignoring removed orlov option
[  134.343833][ T7818] EXT4-fs error (device loop1): ext4_acquire_dquot:6197: comm syz.1.1480: Failed to acquire dquot type 1
[  134.365478][ T7818] EXT4-fs (loop1): 1 truncate cleaned up
[  134.366899][ T7818] EXT4-fs (loop1): mounted filesystem without journal. Opts: sb=0x0000000000000001,usrquota,,errors=continue. Quota mode: writeback.
[  134.375813][ T7828] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  134.453576][ T7828] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  134.859366][ T7840] __nla_validate_parse: 3 callbacks suppressed
[  134.859380][ T7840] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1490'.
[  134.886624][ T7845] loop4: detected capacity change from 0 to 512
[  134.929655][ T7845] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  134.964875][ T7845] EXT4-fs (loop4): 1 truncate cleaned up
[  134.966272][ T7845] EXT4-fs (loop4): mounted filesystem without journal. Opts: quota,resuid=0x000000000000ee01,barrier=0x0000000000000003,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  135.354824][ T7865] loop3: detected capacity change from 0 to 256
[  135.432126][ T7869] loop2: detected capacity change from 0 to 512
[  135.460065][ T7865] FAT-fs (loop3): Directory bread(block 64) failed
[  135.465367][ T7865] FAT-fs (loop3): Directory bread(block 65) failed
[  135.467054][ T7865] FAT-fs (loop3): Directory bread(block 66) failed
[  135.486618][ T7865] FAT-fs (loop3): Directory bread(block 67) failed
[  135.488278][ T7865] FAT-fs (loop3): Directory bread(block 68) failed
[  135.504680][ T7865] FAT-fs (loop3): Directory bread(block 69) failed
[  135.510326][ T7865] FAT-fs (loop3): Directory bread(block 70) failed
[  135.526881][ T7865] FAT-fs (loop3): Directory bread(block 71) failed
[  135.528522][ T7865] FAT-fs (loop3): Directory bread(block 72) failed
[  135.530013][ T7865] FAT-fs (loop3): Directory bread(block 73) failed
[  135.609014][ T7869] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  135.611093][ T7869] System zones: 0-2, 18-18, 34-34
[  135.627686][ T7869] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set
[  135.637173][ T7869] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm +}[@: Failed to acquire dquot type 1
[  135.655013][ T7869] EXT4-fs (loop2): 1 truncate cleaned up
[  135.676637][ T7869] EXT4-fs (loop2): mounted filesystem without journal. Opts: discard,noload,,errors=continue. Quota mode: writeback.
[  135.711759][ T7865] handle_bad_sector: 5619 callbacks suppressed
[  135.711775][ T7865] attempt to access beyond end of device
[  135.711775][ T7865] loop3: rw=524288, want=1772, limit=256
[  135.715938][ T7865] attempt to access beyond end of device
[  135.715938][ T7865] loop3: rw=0, want=1772, limit=256
[  135.718389][ T7865] attempt to access beyond end of device
[  135.718389][ T7865] loop3: rw=0, want=1772, limit=256
[  135.738497][ T4033] EXT4-fs error (device loop4): mb_free_blocks:1865: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  135.751131][ T7865] attempt to access beyond end of device
[  135.751131][ T7865] loop3: rw=0, want=1772, limit=256
[  135.754930][ T7865] attempt to access beyond end of device
[  135.754930][ T7865] loop3: rw=0, want=1772, limit=256
[  135.757597][ T7865] attempt to access beyond end of device
[  135.757597][ T7865] loop3: rw=0, want=1772, limit=256
[  135.760342][ T7865] attempt to access beyond end of device
[  135.760342][ T7865] loop3: rw=0, want=1772, limit=256
[  135.769024][ T7865] attempt to access beyond end of device
[  135.769024][ T7865] loop3: rw=0, want=1772, limit=256
[  135.771865][ T7865] attempt to access beyond end of device
[  135.771865][ T7865] loop3: rw=0, want=1772, limit=256
[  135.774506][ T7865] attempt to access beyond end of device
[  135.774506][ T7865] loop3: rw=0, want=1772, limit=256
[  136.128274][ T7903] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1517'.
[  137.721619][ T7944] loop2: detected capacity change from 0 to 128
[  137.812097][ T7944] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  137.869299][ T7953] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1538'.
[  138.566755][ T7978] IPv6: Can't replace route, no match found
[  138.596613][ T7979] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1550'.
[  138.746631][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  138.809251][ T4555] udevd[4555]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  138.852309][ T7995] loop1: detected capacity change from 0 to 512
[  138.907347][ T7995] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,,errors=continue. Quota mode: writeback.
[  138.980041][ T8001] netlink: '+}[@': attribute type 1 has an invalid length.
[  139.069089][ T8005] IPv6: Can't replace route, no match found
[  139.161574][ T8011] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1566'.
[  139.194670][ T4207] udevd[4207]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  139.265895][ T8015] device pim6reg1 entered promiscuous mode
[  139.538198][   T26] kauditd_printk_skb: 100 callbacks suppressed
[  139.538211][   T26] audit: type=1326 audit(139.500:2021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.550649][   T26] audit: type=1326 audit(139.510:2022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.569352][   T26] audit: type=1326 audit(139.510:2023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.586744][   T26] audit: type=1326 audit(139.520:2024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.600933][   T26] audit: type=1326 audit(139.520:2025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.612964][   T26] audit: type=1326 audit(139.520:2026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.618916][   T26] audit: type=1326 audit(139.520:2027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.637801][   T26] audit: type=1326 audit(139.520:2028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.653186][   T26] audit: type=1326 audit(139.520:2029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=186 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.659554][ T8037] IPv6: Can't replace route, no match found
[  139.673369][   T26] audit: type=1326 audit(139.520:2030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8030 comm="syz.4.1575" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  139.792701][ T8029] udc-core: couldn't find an available UDC or it's busy
[  139.794321][ T8029] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  140.133869][ T8065] IPv6: Can't replace route, no match found
[  140.220644][ T8076] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1597'.
[  140.279073][ T8076] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1597'.
[  140.398836][ T8076] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1597'.
[  140.479942][ T8104] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1607'.
[  140.693610][ T8125] netlink: 100 bytes leftover after parsing attributes in process `syz.4.1616'.
[  140.765712][ T8132] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  140.876407][ T8141] loop4: detected capacity change from 0 to 2048
[  141.002025][ T8141] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  141.007727][ T8141] 9pnet: Insufficient options for proto=fd
[  141.114770][ T8148] loop3: detected capacity change from 0 to 512
[  141.117590][ T8150] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1626'.
[  141.120098][ T8150] 0ªX¹¦À: renamed from caif0
[  141.173529][ T8148] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  141.201128][ T8150] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  141.649958][ T8194] loop3: detected capacity change from 0 to 164
[  141.717919][ T8194] Unable to read rock-ridge attributes
[  141.733124][ T8194] Unable to read rock-ridge attributes
[  141.827302][ T8203] xt_recent: hitcount (456) is larger than allowed maximum (255)
[  142.810604][ T8216] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  142.812658][ T8216] vhci_hcd: invalid port number 23
[  142.818042][ T8211] lo speed is unknown, defaulting to 1000
[  142.875396][ T8214] Process accounting paused
[  142.967429][ T8223] rdma_op 0000000080f5b0b1 conn xmit_rdma 0000000000000000
[  142.981949][ T8220] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1658'.
[  142.988332][ T8220] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1658'.
[  143.151620][ T8235] hub 9-0:1.0: USB hub found
[  143.162679][ T8235] hub 9-0:1.0: 8 ports detected
[  143.169623][ T8243] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1668'.
[  143.243549][ T8245] loop4: detected capacity change from 0 to 512
[  143.320334][ T8245] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  143.514497][ T8267] Falling back ldisc for ttyS3.
[  143.578577][ T8280] netlink: 'syz.4.1683': attribute type 10 has an invalid length.
[  143.651576][ T8288] xt_NFQUEUE: number of total queues is 0
[  144.000318][ T8309] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  144.002947][ T8309] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  144.086554][ T8319] loop2: detected capacity change from 0 to 512
[  144.593869][ T8350] rdma_op 0000000003e407a4 conn xmit_rdma 0000000000000000
[  144.704503][ T8360] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  144.942376][ T8368] sctp: [Deprecated]: syz.3.1721 (pid 8368) Use of int in maxseg socket option.
[  144.942376][ T8368] Use struct sctp_assoc_value instead
[  144.988089][   T26] kauditd_printk_skb: 174 callbacks suppressed
[  144.988110][   T26] audit: type=1107 audit(144.950:2205): pid=8372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  145.134205][   T26] audit: type=1326 audit(145.100:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.145763][   T26] audit: type=1326 audit(145.110:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.160242][   T26] audit: type=1326 audit(145.120:2208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.183373][   T26] audit: type=1326 audit(145.120:2209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.208761][   T26] audit: type=1326 audit(145.120:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.231416][   T26] audit: type=1326 audit(145.120:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.244113][   T26] audit: type=1326 audit(145.120:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.249071][   T26] audit: type=1326 audit(145.130:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.256639][ T8385] __nla_validate_parse: 7 callbacks suppressed
[  145.256651][ T8385] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1731'.
[  145.270892][   T26] audit: type=1326 audit(145.130:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8378 comm="syz.3.1728" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  145.447013][ T8399] loop4: detected capacity change from 0 to 512
[  145.473667][ T8399] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  145.490667][ T8399] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1737: invalid indirect mapped block 4294967295 (level 1)
[  145.494768][ T8399] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1737: invalid indirect mapped block 4294967295 (level 1)
[  145.498881][ T8399] EXT4-fs (loop4): 2 truncates cleaned up
[  145.500138][ T8399] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000003,dioread_nolock,,errors=continue. Quota mode: writeback.
[  146.547317][ T8414] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1742'.
[  146.783673][   T25] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  146.857201][ T8437] loop3: detected capacity change from 0 to 1024
[  146.958966][ T8437] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,lazytime,noblock_validity,,errors=continue. Quota mode: none.
[  146.971163][   T25] usb 1-1: device descriptor read/64, error -71
[  147.131666][ T8450] netlink: 'syz.4.1758': attribute type 1 has an invalid length.
[  147.243450][   T25] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  147.433503][   T25] usb 1-1: device descriptor read/64, error -71
[  147.551801][   T25] usb usb1-port1: attempt power cycle
[  147.968718][ T8490] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1775'.
[  147.971631][   T25] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  147.991172][ T8490] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1775'.
[  148.038219][ T8490] loop1: detected capacity change from 0 to 128
[  148.061242][   T25] usb 1-1: device descriptor read/8, error -71
[  148.330940][   T25] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  148.401001][   T25] usb 1-1: device descriptor read/8, error -71
[  148.524206][   T25] usb usb1-port1: unable to enumerate USB device
[  149.206732][ T8543] lo speed is unknown, defaulting to 1000
[  150.124902][ T8591] xt_CT: You must specify a L4 protocol and not use inversions on it
[  150.204609][ T8600] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1820'.
[  150.431536][ T8622] device bond1 entered promiscuous mode
[  150.438752][ T8622] 8021q: adding VLAN 0 to HW filter on device bond1
[  150.461927][ T8622] bond1 (unregistering): Released all slaves
[  150.647248][ T8630] xt_CT: You must specify a L4 protocol and not use inversions on it
[  150.825773][ T8640] hub 9-0:1.0: USB hub found
[  150.827150][ T8640] hub 9-0:1.0: 8 ports detected
[  150.880711][   T26] kauditd_printk_skb: 43 callbacks suppressed
[  150.880725][   T26] audit: type=1326 audit(150.840:2258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8635 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  150.890968][   T26] audit: type=1326 audit(150.860:2259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8635 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  150.894016][ T8647] loop1: detected capacity change from 0 to 512
[  150.957913][   T26] audit: type=1326 audit(150.920:2260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8635 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  150.967018][   T26] audit: type=1326 audit(150.920:2261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8635 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  151.034539][   T26] audit: type=1326 audit(151.000:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8652 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  151.039649][   T26] audit: type=1326 audit(151.000:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8652 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  151.072567][   T26] audit: type=1326 audit(151.020:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8652 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  151.073723][ T8647] handle_bad_sector: 985 callbacks suppressed
[  151.073738][ T8647] attempt to access beyond end of device
[  151.073738][ T8647] loop1: rw=0, want=1022040, limit=512
[  151.094975][   T26] audit: type=1326 audit(151.020:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8652 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  151.111708][   T26] audit: type=1326 audit(151.020:2266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8652 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  151.148425][   T26] audit: type=1326 audit(151.020:2267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8652 comm="syz.2.1847" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  151.305903][ T8666] xt_CT: You must specify a L4 protocol and not use inversions on it
[  151.799169][ T8704] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  151.877497][ T8713] netlink: 'syz.3.1873': attribute type 10 has an invalid length.
[  151.882698][ T8655] 9pnet: p9_fd_create_tcp (8655): problem connecting socket to 127.0.0.1
[  151.951096][ T8713] device geneve0 entered promiscuous mode
[  151.979608][ T8713] bond0: (slave geneve0): Enslaving as an active interface with an up link
[  153.198466][ T8775] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1900'.
[  153.349677][ T8769] lo speed is unknown, defaulting to 1000
[  153.410389][ T8785] udc-core: couldn't find an available UDC or it's busy
[  153.412181][ T8785] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  153.547117][ T8769] Process accounting resumed
[  153.769460][ T8801] lo speed is unknown, defaulting to 1000
[  153.938386][ T8825] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1923'.
[  153.962112][ T8829] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1924'.
[  154.135197][ T8846] loop3: detected capacity change from 0 to 512
[  154.240287][ T8846] EXT4-fs (loop3): mounted filesystem without journal. Opts: nodelalloc,grpid,auto_da_alloc,,errors=continue. Quota mode: writeback.
[  154.363576][ T8864] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1938'.
[  154.885382][ T8902] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1952'.
[  155.031426][ T8916] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1962'.
[  155.076630][ T8916] vhci_hcd: default hub control req: 0000 v0005 i0000 l0
[  155.127736][ T8916] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  155.258310][ T8937] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1972'.
[  155.262393][ T8935] loop3: detected capacity change from 0 to 512
[  155.314954][ T8939] 9pnet: Could not find request transport: 0xffffffffffffffff
[  155.353026][ T8935] EXT4-fs (loop3): orphan cleanup on readonly fs
[  155.358108][ T8935] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1971: bg 0: block 248: padding at end of block bitmap is not set
[  155.366872][ T8935] EXT4-fs error (device loop3): ext4_acquire_dquot:6197: comm syz.3.1971: Failed to acquire dquot type 1
[  155.374151][ T8935] EXT4-fs (loop3): 1 truncate cleaned up
[  155.377522][ T8935] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  155.688652][ T8959] loop3: detected capacity change from 0 to 1024
[  155.698292][ T8959] EXT4-fs (loop3): Ignoring removed nobh option
[  155.703641][ T8959] EXT4-fs (loop3): Ignoring removed orlov option
[  155.733319][ T8959] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000001000,abort,block_validity,init_itable=0x0000000000000006,block_validity,max_dir_size_kb=0x00000000000001ff,nobh,block_validity,orlov,user_xattr,init_itable=0x0000000000000400,,errors=continue. Quota mode: none.
[  155.781372][ T8959] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1982'.
[  155.806067][ T8966] lo speed is unknown, defaulting to 1000
[  155.807484][ T8966] lo speed is unknown, defaulting to 1000
[  155.811392][ T8966] lo speed is unknown, defaulting to 1000
[  155.814533][ T8966] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  155.819806][ T8966] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  155.838813][ T8966] lo speed is unknown, defaulting to 1000
[  155.841332][ T8966] lo speed is unknown, defaulting to 1000
[  155.843530][ T8966] lo speed is unknown, defaulting to 1000
[  155.845483][ T8966] lo speed is unknown, defaulting to 1000
[  155.847480][ T8966] lo speed is unknown, defaulting to 1000
[  155.849335][ T8966] lo speed is unknown, defaulting to 1000
[  155.907082][   T26] kauditd_printk_skb: 224 callbacks suppressed
[  155.907096][   T26] audit: type=1326 audit(155.870:2490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  155.914795][   T26] audit: type=1326 audit(155.880:2491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  155.987396][   T26] audit: type=1326 audit(155.950:2492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=199 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  155.996833][   T26] audit: type=1326 audit(155.950:2493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  156.017406][   T26] audit: type=1326 audit(155.960:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=203 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  156.024128][ T8973] loop2: detected capacity change from 0 to 2048
[  156.041385][ T8959] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  156.044384][   T26] audit: type=1326 audit(155.960:2495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  156.064239][   T26] audit: type=1326 audit(155.960:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb4e4e844 code=0x7ffc0000
[  156.069621][   T26] audit: type=1326 audit(156.000:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  156.091249][   T26] audit: type=1326 audit(156.010:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  156.102508][ T8975] rdma_op 00000000666c16f0 conn xmit_rdma 0000000000000000
[  156.105517][   T26] audit: type=1326 audit(156.010:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.3.1982" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  156.117974][ T8973] EXT4-fs (loop2): failed to initialize system zone (-117)
[  156.119835][ T8973] EXT4-fs (loop2): mount failed
[  156.304893][ T8983] loop2: detected capacity change from 0 to 512
[  156.349958][ T8983] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  156.352668][ T8983] EXT4-fs (loop2): orphan cleanup on readonly fs
[  156.356497][ T8983] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #16: comm syz.2.1989: casefold flag without casefold feature
[  156.365014][ T8983] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1989: couldn't read orphan inode 16 (err -117)
[  156.375790][ T8983] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  156.567594][ T8995] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1994'.
[  156.668412][ T8995] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1994'.
[  157.696542][ T9033] ebtables: ebtables: counters copy to user failed while replacing table
[  158.055728][ T9062] binfmt_misc: register: failed to install interpreter file ./file0/../file0
[  158.226273][ T9071] loop4: detected capacity change from 0 to 512
[  158.289052][ T9071] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #2: comm syz.4.2026: corrupted xattr block 255
[  158.294917][ T9071] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  158.296942][ T9071] EXT4-fs (loop4): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,dioread_lock,init_itable,auto_da_alloc,grpjquota=.noload,barrier=0x0000000000000007,jqfmt=vfsv1,grpid,,,errors=continue. Quota mode: writeback.
[  158.312088][ T9076] __nla_validate_parse: 1 callbacks suppressed
[  158.312100][ T9076] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2028'.
[  158.324979][ T9071] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #2: comm syz.4.2026: corrupted xattr block 255
[  158.933503][ T9094] netlink: 128 bytes leftover after parsing attributes in process `syz.2.2037'.
[  159.681033][ T9123] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2048'.
[  159.683112][ T9123] netlink: 188 bytes leftover after parsing attributes in process `syz.1.2048'.
[  159.819529][ T9124] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  160.507310][ T9131] loop1: detected capacity change from 0 to 8192
[  160.787772][ T9147] rdma_rxe: rxe_register_device failed with error -23
[  160.797967][ T9147] rdma_rxe: failed to add team_slave_0
[  160.866764][ T9149] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2060'.
[  160.869080][ T9149] netlink: 188 bytes leftover after parsing attributes in process `syz.0.2060'.
[  160.896918][ T9151] loop4: detected capacity change from 0 to 512
[  160.968511][ T9151] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #2: comm syz.4.2061: corrupted xattr block 255
[  160.974720][ T9151] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  160.978376][ T9151] EXT4-fs (loop4): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,dioread_lock,init_itable,auto_da_alloc,grpjquota=.noload,barrier=0x0000000000000007,jqfmt=vfsv1,grpid,,,errors=continue. Quota mode: writeback.
[  160.995944][ T9151] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #2: comm syz.4.2061: corrupted xattr block 255
[  161.068540][ T9149] infiniband syz2: set active
[  161.083909][ T9149] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  161.092251][ T9149] bond0: (slave team0): Releasing backup interface
[  161.158616][ T9157] usb usb1: usbfs: process 9157 (syz.4.2062) did not claim interface 0 before use
[  161.218811][ T9149] bond0: (slave netdevsim0): Releasing backup interface
[  161.264492][ T9149] batman_adv: batadv0: Interface deactivated: geneve2
[  161.266196][ T9149] batman_adv: batadv0: Removing interface: geneve2
[  161.279668][ T4415] lo speed is unknown, defaulting to 1000
[  161.358888][ T9163] loop4: detected capacity change from 0 to 512
[  161.400412][   T26] kauditd_printk_skb: 281 callbacks suppressed
[  161.400425][   T26] audit: type=1326 audit(161.360:2781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.421406][   T26] audit: type=1326 audit(161.380:2782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.434622][   T26] audit: type=1326 audit(161.390:2783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.450943][ T9163] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  161.458481][   T26] audit: type=1326 audit(161.390:2784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.464509][   T26] audit: type=1326 audit(161.390:2785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.469424][   T26] audit: type=1326 audit(161.400:2786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.486392][   T26] audit: type=1326 audit(161.400:2787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.515742][   T26] audit: type=1326 audit(161.400:2788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.568337][   T26] audit: type=1326 audit(161.400:2789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.597383][   T26] audit: type=1326 audit(161.400:2790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9164 comm="syz.0.2066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  161.827585][ T9181] loop1: detected capacity change from 0 to 512
[  161.886292][ T9181] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #2: comm syz.1.2073: corrupted xattr block 255
[  161.889479][ T9181] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  161.891774][ T9181] EXT4-fs (loop1): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,dioread_lock,init_itable,auto_da_alloc,grpjquota=.noload,barrier=0x0000000000000007,jqfmt=vfsv1,grpid,,,errors=continue. Quota mode: writeback.
[  161.910749][ T9181] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #2: comm syz.1.2073: corrupted xattr block 255
[  161.944498][ T9190] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2077'.
[  161.950617][ T9190] netlink: 188 bytes leftover after parsing attributes in process `syz.4.2077'.
[  162.082593][ T9190] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  162.087328][ T9190] bond0: (slave team0): Releasing backup interface
[  162.092429][ T9203] netlink: 140 bytes leftover after parsing attributes in process `syz.3.2078'.
[  162.153837][ T9190] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  162.159219][ T9190] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  162.170033][ T9190] device bridge_slave_0 left promiscuous mode
[  162.172557][ T9190] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.223660][ T9190] device bridge_slave_1 left promiscuous mode
[  162.225482][ T9190] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.254851][ T9190] bond0: (slave bond_slave_1): Releasing backup interface
[  162.336858][ T9190] team0: Port device team_slave_0 removed
[  162.369113][ T9190] team0: Port device team_slave_1 removed
[  162.377652][ T9190] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  162.385229][ T9190] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.404335][ T9190] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  162.406621][ T9190] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.426234][ T9190] batman_adv: batadv0: Interface deactivated: geneve2
[  162.431037][ T9190] batman_adv: batadv0: Removing interface: geneve2
[  162.437000][ T9196] lo speed is unknown, defaulting to 1000
[  162.504473][ T9196] lo speed is unknown, defaulting to 1000
[  162.631465][ T9230] loop2: detected capacity change from 0 to 512
[  162.696097][ T9230] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #2: comm syz.2.2091: corrupted xattr block 255
[  162.699515][ T9230] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  162.704597][ T9230] EXT4-fs (loop2): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,dioread_lock,init_itable,auto_da_alloc,grpjquota=.noload,barrier=0x0000000000000007,jqfmt=vfsv1,grpid,,,errors=continue. Quota mode: writeback.
[  162.711362][ T9230] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #2: comm syz.2.2091: corrupted xattr block 255
[  162.760137][ T9235] netlink: 140 bytes leftover after parsing attributes in process `syz.1.2101'.
[  162.799865][ T9226] lo speed is unknown, defaulting to 1000
[  162.857758][ T9226] lo speed is unknown, defaulting to 1000
[  162.954810][ T9242] bridge0: port 3(vlan2) entered blocking state
[  162.963668][ T9242] bridge0: port 3(vlan2) entered disabled state
[  163.413715][ T9264] loop2: detected capacity change from 0 to 128
[  163.693892][ T9266] lo speed is unknown, defaulting to 1000
[  163.813826][ T9266] lo speed is unknown, defaulting to 1000
[  163.930463][ T9270] loop1: detected capacity change from 0 to 512
[  164.041258][ T9270] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.2112: inode #1: comm syz.1.2112: iget: illegal inode #
[  164.046713][ T9274] __nla_validate_parse: 1 callbacks suppressed
[  164.046745][ T9274] netlink: 140 bytes leftover after parsing attributes in process `syz.4.2111'.
[  164.061752][ T9270] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.2112: error while reading EA inode 1 err=-117
[  164.103823][ T9270] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.2112: inode #1: comm syz.1.2112: iget: illegal inode #
[  164.124671][ T9270] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.2112: error while reading EA inode 1 err=-117
[  164.149061][ T9270] EXT4-fs (loop1): 1 orphan inode deleted
[  164.150451][ T9270] EXT4-fs (loop1): mounted filesystem without journal. Opts: noquota,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[  164.254529][ T9272] lo speed is unknown, defaulting to 1000
[  164.413915][ T9284] tipc: Started in network mode
[  164.417651][ T9284] tipc: Node identity 07, cluster identity 4711
[  164.435408][ T9272] lo speed is unknown, defaulting to 1000
[  164.611121][ T9289] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2114'.
[  164.815203][ T9292] lo speed is unknown, defaulting to 1000
[  164.957453][ T9292] lo speed is unknown, defaulting to 1000
[  165.400633][ T9319] netlink: 140 bytes leftover after parsing attributes in process `syz.2.2129'.
[  165.486504][ T9325] loop4: detected capacity change from 0 to 512
[  165.542540][ T9325] EXT4-fs error (device loop4): ext4_acquire_dquot:6197: comm syz.4.2132: Failed to acquire dquot type 1
[  165.550227][ T9325] EXT4-fs (loop4): 1 truncate cleaned up
[  165.552040][ T9325] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpid,auto_da_alloc,delalloc,nodioread_nolock,max_batch_time=0x0000000000000005,,errors=continue. Quota mode: writeback.
[  165.605477][ T9329] device bond1 entered promiscuous mode
[  165.607092][ T9329] 8021q: adding VLAN 0 to HW filter on device bond1
[  165.649859][ T9329] bond1 (unregistering): Released all slaves
[  165.739091][ T9315] lo speed is unknown, defaulting to 1000
[  165.745030][ T9333] tipc: Started in network mode
[  165.753466][ T9333] tipc: Node identity ac14140f, cluster identity 4711
[  165.761109][ T9333] tipc: New replicast peer: 255.255.255.255
[  165.767282][ T9333] tipc: Enabled bearer <udp:syz2>, priority 10
[  165.889480][ T9339] loop1: detected capacity change from 0 to 1024
[  165.906725][ T9339] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  165.912206][ T9339] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (25054!=20869)
[  165.917959][ T9339] EXT4-fs (loop1): filesystem has both journal inode and journal device!
[  165.926979][ T9337] loop4: detected capacity change from 0 to 1764
[  166.060185][ T9315] lo speed is unknown, defaulting to 1000
[  166.196558][ T9337] blk_update_request: I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 0
[  166.760980][ T4342] tipc: Node number set to 2886997007
[  166.839517][ T9355] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.926642][ T9358] loop1: detected capacity change from 0 to 4096
[  166.962294][ T9355] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.019756][ T9355] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.062546][ T9358] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  167.084666][ T9355] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.279866][ T9367] device bond2 entered promiscuous mode
[  167.297168][ T9367] 8021q: adding VLAN 0 to HW filter on device bond2
[  167.335060][ T9367] bond2 (unregistering): Released all slaves
[  167.380072][ T9355] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  167.420359][ T9355] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  167.456871][ T9355] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  167.472976][ T9355] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  167.781073][ T9378] loop1: detected capacity change from 0 to 1024
[  167.841589][ T9378] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  167.886637][ T9378] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,data_err=abort,resuid=0x0000000000000000,errors=remount-ro,norecovery,max_dir_size_kb=0x00000000000007b1,stripe=0x0000000000000005,noinit_itable,nomblk_io_submit,grpquota,nogrpid,. Quota mode: writeback.
[  167.921854][ T9378] EXT4-fs (loop1): re-mounted. Opts: . Quota mode: writeback.
[  167.960529][ T9387] netlink: 88 bytes leftover after parsing attributes in process `syz.2.2154'.
[  167.981040][ T9387] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2154'.
[  168.000767][ T9380] lo speed is unknown, defaulting to 1000
[  168.184109][ T9380] lo speed is unknown, defaulting to 1000
[  168.266731][   T26] kauditd_printk_skb: 99 callbacks suppressed
[  168.266746][   T26] audit: type=1326 audit(168.230:2888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.2.2159" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  168.275656][   T26] audit: type=1326 audit(168.230:2889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.2.2159" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  168.280483][   T26] audit: type=1326 audit(168.230:2890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.2.2159" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=427 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  168.323651][   T26] audit: type=1326 audit(168.230:2891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.2.2159" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  168.337855][   T26] audit: type=1326 audit(168.230:2892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.2.2159" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  168.344684][ T9401] device bond2 entered promiscuous mode
[  168.346222][ T9401] 8021q: adding VLAN 0 to HW filter on device bond2
[  168.376523][ T9407] loop0: detected capacity change from 0 to 512
[  168.390193][ T9401] bond2 (unregistering): Released all slaves
[  168.545798][ T9407] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  168.566828][ T9416] loop2: detected capacity change from 0 to 512
[  168.627201][ T9421] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  168.635052][ T9416] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.2166: Parent and EA inode have the same ino 15
[  168.661501][ T9416] EXT4-fs (loop2): 1 orphan inode deleted
[  168.662808][ T9416] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  168.824115][ T9435] 9pnet: Could not find request transport: 0xffffffffffffffff
[  168.907854][ T9442] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2178'.
[  168.971244][ T9372] Bluetooth: hci1: command 0x0406 tx timeout
[  168.972936][ T9372] Bluetooth: hci3: command 0x0406 tx timeout
[  168.974387][ T9372] Bluetooth: hci2: command 0x0406 tx timeout
[  168.975762][ T9372] Bluetooth: hci0: command 0x0406 tx timeout
[  168.977635][ T9372] Bluetooth: hci4: command 0x0406 tx timeout
[  168.997761][   T26] audit: type=1326 audit(168.960:2893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9451 comm="syz.2.2182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  169.003971][   T26] audit: type=1326 audit(168.970:2894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9451 comm="syz.2.2182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  169.019841][ T9447] device bond1 entered promiscuous mode
[  169.053095][   T26] audit: type=1326 audit(169.020:2895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9451 comm="syz.2.2182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  169.053973][ T9447] 8021q: adding VLAN 0 to HW filter on device bond1
[  169.058185][   T26] audit: type=1326 audit(169.020:2896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9451 comm="syz.2.2182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  169.064841][   T26] audit: type=1326 audit(169.020:2897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9451 comm="syz.2.2182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  169.081672][ T9447] bond1 (unregistering): Released all slaves
[  169.476920][ T9474] loop0: detected capacity change from 0 to 512
[  169.577005][ T9474] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,errors=continue,quota,,errors=continue. Quota mode: writeback.
[  169.809238][ T9494] loop0: detected capacity change from 0 to 1024
[  169.885820][ T9494] EXT4-fs (loop0): Ignoring removed nobh option
[  169.887469][ T9494] EXT4-fs (loop0): Ignoring removed orlov option
[  169.915388][ T9494] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000001000,abort,block_validity,init_itable=0x0000000000000006,block_validity,max_dir_size_kb=0x00000000000001ff,nobh,block_validity,orlov,user_xattr,init_itable=0x0000000000000400,,errors=continue. Quota mode: none.
[  169.981383][ T9494] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2198'.
[  170.222646][ T9494] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  170.422568][ T9522] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2209'.
[  170.427072][ T9522] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2209'.
[  171.712058][ T9590] netlink: 'syz.4.2240': attribute type 1 has an invalid length.
[  172.063569][ T4555] udevd[4555]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  172.092414][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  172.099188][ T5387] udevd[5387]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  172.418426][ T9632] netlink: 'syz.1.2260': attribute type 4 has an invalid length.
[  172.488690][ T9634] netlink: 332 bytes leftover after parsing attributes in process `syz.1.2261'.
[  172.873056][ T9656] Process accounting resumed
[  173.097247][ T9670] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2279'.
[  173.129254][ T9672] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2280'.
[  173.580735][   T26] kauditd_printk_skb: 202 callbacks suppressed
[  173.580751][   T26] audit: type=1326 audit(173.540:3100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9681 comm="syz.1.2285" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9659f2a8 code=0x7ffc0000
[  173.587588][   T26] audit: type=1326 audit(173.540:3101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9681 comm="syz.1.2285" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=165 compat=0 ip=0xffff9659f2a8 code=0x7ffc0000
[  173.629361][   T26] audit: type=1326 audit(173.540:3102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9681 comm="syz.1.2285" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9659f2a8 code=0x7ffc0000
[  173.811629][ T9695] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.920588][ T9695] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.082163][ T9695] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.100723][   T26] audit: type=1326 audit(174.060:3103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9712 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  174.110243][   T26] audit: type=1326 audit(174.060:3104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9712 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=266 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  174.130279][   T26] audit: type=1326 audit(174.080:3105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9712 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  174.169827][ T9695] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.178930][   T26] audit: type=1326 audit(174.150:3106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9714 comm="syz.4.2298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  174.188413][   T26] audit: type=1326 audit(174.160:3107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9714 comm="syz.4.2298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  174.200077][   T26] audit: type=1326 audit(174.160:3108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9714 comm="syz.4.2298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  174.219531][   T26] audit: type=1326 audit(174.160:3109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9714 comm="syz.4.2298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=266 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  174.296510][ T9695] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.307939][ T9695] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.315919][ T9695] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.324164][ T9695] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.456075][ T9727] netlink: 'syz.4.2304': attribute type 4 has an invalid length.
[  174.474268][ T9727] netlink: 'syz.4.2304': attribute type 4 has an invalid length.
[  174.711609][ T9726] lo speed is unknown, defaulting to 1000
[  174.779477][ T9742] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2310'.
[  174.896301][ T9726] lo speed is unknown, defaulting to 1000
[  175.147567][ T9754] lo speed is unknown, defaulting to 1000
[  175.264684][ T9754] lo speed is unknown, defaulting to 1000
[  175.493414][ T9779] loop4: detected capacity change from 0 to 256
[  175.871014][ T4343] usb 1-1: new full-speed USB device number 14 using dummy_hcd
[  176.034321][ T9805] loop2: detected capacity change from 0 to 2048
[  176.089733][ T9805] Alternate GPT is invalid, using primary GPT.
[  176.091510][ T9805]  loop2: p2 p3 p7
[  176.295619][ T9831] bridge0: port 3(erspan0) entered blocking state
[  176.297166][ T9831] bridge0: port 3(erspan0) entered disabled state
[  176.304159][ T9831] device erspan0 entered promiscuous mode
[  176.311195][ T4343] usb 1-1: config 1 interface 0 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  176.313931][ T4343] usb 1-1: config 1 interface 0 altsetting 1 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  176.316860][ T4343] usb 1-1: config 1 interface 0 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  176.320292][ T9831] bridge0: port 3(erspan0) entered blocking state
[  176.321945][ T9831] bridge0: port 3(erspan0) entered forwarding state
[  176.341060][ T4343] usb 1-1: config 1 interface 0 has no altsetting 0
[  176.427628][ T9840] rdma_rxe: already configured on team_slave_0
[  176.533693][ T4343] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  176.535821][ T4343] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.537648][ T4343] usb 1-1: Product: syz
[  176.538706][ T4343] usb 1-1: Manufacturer: syz
[  176.539777][ T4343] usb 1-1: SerialNumber: syz
[  176.605168][ T9784] raw-gadget.4 gadget: fail, usb_ep_enable returned -22
[  176.608269][ T9784] raw-gadget.4 gadget: fail, usb_ep_enable returned -22
[  176.784563][ T9852] blk_update_request: I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 0
[  176.790715][ T9864] netlink: 3 bytes leftover after parsing attributes in process `syz.4.2366'.
[  176.809772][ T9864] 1ªX¹¦À: renamed from 
60ªX¹¦À
[  176.862364][ T9864] A link change request failed with some changes committed already. Interface 
61ªX¹¦À may have been left with an inconsistent configuration, please check.
[  176.935508][ T9870] rdma_rxe: rxe_register_device failed with error -23
[  176.937348][ T9870] rdma_rxe: failed to add team_slave_0
[  176.966481][ T9875] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2372'.
[  177.019657][ T9878] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2374'.
[  177.364240][ T9898] netlink: 3 bytes leftover after parsing attributes in process `syz.2.2384'.
[  177.371031][ T9898] 0ªX¹¦À: renamed from caif0
[  177.443334][ T9898] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  177.564443][ T9902] rdma_rxe: rxe_register_device failed with error -23
[  177.570753][ T9902] rdma_rxe: failed to add team_slave_0
[  178.143635][ T9917] hub 9-0:1.0: USB hub found
[  178.148305][ T9917] hub 9-0:1.0: 8 ports detected
[  178.343896][ T9923] device team0 entered promiscuous mode
[  178.345937][ T9923] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  178.367437][ T9923] team0: Device macvlan3 is already an upper device of the team interface
[  178.406354][ T9923] device team0 left promiscuous mode
[  178.561068][ T9931] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2397'.
[  178.563376][ T9931] 1ªX¹¦À: renamed from 
60ªX¹¦À
[  178.611856][ T9931] A link change request failed with some changes committed already. Interface 
61ªX¹¦À may have been left with an inconsistent configuration, please check.
[  178.892109][ T4343] cdc_ether: probe of 1-1:1.0 failed with error -71
[  178.916183][ T4343] usb 1-1: USB disconnect, device number 14
[  178.942704][ T9939] rdma_rxe: rxe_register_device failed with error -23
[  178.944460][ T9939] rdma_rxe: failed to add team_slave_0
[  179.194085][ T9952] udc-core: couldn't find an available UDC or it's busy
[  179.194108][ T9952] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  179.317575][ T9955] x_tables: duplicate underflow at hook 1
[  179.322651][ T4343] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  179.326321][ T4343] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  179.407698][   T26] kauditd_printk_skb: 140 callbacks suppressed
[  179.407711][   T26] audit: type=1326 audit(179.370:3250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  179.426712][   T26] audit: type=1326 audit(179.390:3251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  179.465519][   T26] audit: type=1326 audit(179.390:3252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffffb4e4e724 code=0x7ffc0000
[  179.470568][   T26] audit: type=1326 audit(179.400:3253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  179.502399][   T26] audit: type=1326 audit(179.400:3254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=40 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  179.519873][   T26] audit: type=1326 audit(179.400:3255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  179.547278][   T26] audit: type=1326 audit(179.400:3256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=39 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  179.565965][   T26] audit: type=1326 audit(179.410:3257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9960 comm="syz.3.2411" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  179.637257][ T4343] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  179.678593][   T26] audit: type=1326 audit(179.640:3258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9972 comm="syz.2.2416" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  179.683377][ T9975] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2417'.
[  179.690745][ T9975] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2417'.
[  179.692277][   T26] audit: type=1326 audit(179.650:3259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9972 comm="syz.2.2416" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8680f2a8 code=0x7ffc0000
[  179.719457][ T9975] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2417'.
[  179.833564][ T4343] usb 1-1: device descriptor read/64, error -71
[  180.121656][ T4343] usb 1-1: new full-speed USB device number 16 using dummy_hcd
[  180.331075][ T4343] usb 1-1: device descriptor read/64, error -71
[  180.461054][ T4343] usb usb1-port1: attempt power cycle
[  180.613106][T10006] netlink: 140 bytes leftover after parsing attributes in process `syz.2.2431'.
[  180.910942][ T4343] usb 1-1: new full-speed USB device number 17 using dummy_hcd
[  181.031130][ T4343] usb 1-1: device descriptor read/8, error -71
[  181.300961][ T4343] usb 1-1: new full-speed USB device number 18 using dummy_hcd
[  181.392207][ T4343] usb 1-1: device descriptor read/8, error -71
[  181.396189][T10014] lo speed is unknown, defaulting to 1000
[  181.406935][T10025] netlink: 'syz.4.2440': attribute type 1 has an invalid length.
[  181.514110][ T4343] usb usb1-port1: unable to enumerate USB device
[  181.526243][T10032] loop3: detected capacity change from 0 to 512
[  181.566033][T10036] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2446'.
[  181.583235][T10014] lo speed is unknown, defaulting to 1000
[  181.589953][T10032] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  181.595094][T10032] EXT4-fs (loop3): orphan cleanup on readonly fs
[  181.597475][T10032] EXT4-fs warning (device loop3): ext4_enable_quotas:6432: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  181.606118][T10032] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  181.612859][T10032] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #13: comm syz.3.2444: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  181.619235][T10032] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.2444: couldn't read orphan inode 13 (err -117)
[  181.635399][T10032] EXT4-fs (loop3): mounted filesystem without journal. Opts: sysvgroups,noblock_validity,debug,grpquota,debug,debug,grpid,,errors=continue. Quota mode: writeback.
[  181.691967][T10032] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  181.696007][T10032] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  181.737230][T10032] EXT4-fs warning (device loop3): ext4_enable_quotas:6432: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  181.777580][T10043] device ipip0 entered promiscuous mode
[  181.952793][T10050] netlink: 'syz.2.2451': attribute type 4 has an invalid length.
[  182.004422][ T4411] lo speed is unknown, defaulting to 1000
[  182.008895][T10041] lo speed is unknown, defaulting to 1000
[  182.153284][T10041] lo speed is unknown, defaulting to 1000
[  182.400124][T10072] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2462' sets config #1
[  182.896495][T10098] udc-core: couldn't find an available UDC or it's busy
[  182.909506][T10098] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  183.624022][T10123] Process accounting paused
[  183.683164][T10125] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  183.696602][T10128] loop4: detected capacity change from 0 to 512
[  183.749665][T10128] EXT4-fs (loop4): Ignoring removed nobh option
[  183.790062][T10128] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2487: inode #1: comm syz.4.2487: iget: illegal inode #
[  183.813756][T10128] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2487: error while reading EA inode 1 err=-117
[  183.817320][T10128] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2487: inode #1: comm syz.4.2487: iget: illegal inode #
[  183.845411][T10128] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2487: error while reading EA inode 1 err=-117
[  183.866012][T10128] EXT4-fs (loop4): 1 orphan inode deleted
[  183.867542][T10128] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,nogrpid,debug_want_extra_isize=0x0000000000000058,noauto_da_alloc,noauto_da_alloc,grpquota,nobh,,errors=continue. Quota mode: writeback.
[  184.799104][   T26] kauditd_printk_skb: 73 callbacks suppressed
[  184.799117][   T26] audit: type=1326 audit(184.760:3333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  184.807423][   T26] audit: type=1326 audit(184.780:3334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  184.826945][T10162] kernel profiling enabled (shift: 63)
[  184.828782][T10162] profiling shift: 63 too large
[  184.861368][   T26] audit: type=1326 audit(184.790:3335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=430 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  184.874459][   T26] audit: type=1326 audit(184.790:3336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  184.910038][   T26] audit: type=1326 audit(184.790:3337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  184.998891][   T26] audit: type=1326 audit(184.790:3338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  185.044925][   T26] audit: type=1326 audit(184.790:3339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  185.117934][   T26] audit: type=1326 audit(184.790:3340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  185.192072][   T26] audit: type=1326 audit(184.790:3341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=25 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  185.244639][   T26] audit: type=1326 audit(184.790:3342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10159 comm="syz.0.2501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8fd32a8 code=0x7ffc0000
[  185.689793][T10188] kernel profiling enabled (shift: 63)
[  185.691289][T10188] profiling shift: 63 too large
[  185.865705][T10197] delete_channel: no stack
[  186.563272][T10218] kernel profiling enabled (shift: 63)
[  186.564868][T10218] profiling shift: 63 too large
[  186.864364][T10227] loop4: detected capacity change from 0 to 128
[  187.355457][T10250] loop2: detected capacity change from 0 to 1024
[  187.438035][T10250] EXT4-fs (loop2): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,noblock_validity,norecovery,mb_optimize_scan=0x0000000000000001,lazytime,nodelalloc,nodioread_nolock,noauto_da_alloc,,errors=continue. Quota mode: none.
[  187.935663][T10284] udc-core: couldn't find an available UDC or it's busy
[  187.937489][T10284] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  188.679956][T10314] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2569'.
[  189.365527][T10352] IPv6: NLM_F_CREATE should be specified when creating new route
[  189.493934][T10347] lo speed is unknown, defaulting to 1000
[  189.670686][T10368] loop2: detected capacity change from 0 to 512
[  189.687639][T10347] lo speed is unknown, defaulting to 1000
[  189.734650][T10368] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  190.179090][   T26] kauditd_printk_skb: 151 callbacks suppressed
[  190.179106][   T26] audit: type=1326 audit(190.140:3494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.192429][   T26] audit: type=1326 audit(190.140:3495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.197385][   T26] audit: type=1326 audit(190.160:3496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.244924][   T26] audit: type=1326 audit(190.160:3497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.249846][   T26] audit: type=1326 audit(190.160:3498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.283548][   T26] audit: type=1326 audit(190.160:3499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.315134][   T26] audit: type=1326 audit(190.160:3500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.320341][   T26] audit: type=1326 audit(190.160:3501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.362254][   T26] audit: type=1326 audit(190.160:3502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.379615][   T26] audit: type=1326 audit(190.160:3503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.4.2600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbde8d2a8 code=0x7ffc0000
[  190.669454][T10404] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  191.716090][T10421] tipc: Enabling of bearer <eth:batadv0> rejected, failed to enable media
[  191.814665][T10428] tipc: New replicast peer: 100.1.1.1
[  191.816130][T10428] tipc: Enabled bearer <udp:syz2>, priority 10
[  192.109493][T10423] lo speed is unknown, defaulting to 1000
[  192.177273][T10423] lo speed is unknown, defaulting to 1000
[  192.356796][T10465] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2631'.
[  192.384653][T10423] chnl_net:caif_netlink_parms(): no params data found
[  192.519463][T10474] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2636'.
[  192.525421][T10474] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2636'.
[  192.584976][T10423] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.595465][T10423] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.606554][T10423] device bridge_slave_0 entered promiscuous mode
[  192.627274][T10423] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.628901][T10423] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.633010][T10423] device bridge_slave_1 entered promiscuous mode
[  192.890803][T10508] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2650'.
[  192.931021][ T4343] tipc: Node number set to 117440512
[  193.003915][  T136] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.040759][T10423] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  193.062030][T10423] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  193.101929][  T136] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.130655][T10423] team0: Port device team_slave_0 added
[  193.140043][T10423] team0: Port device team_slave_1 added
[  193.198751][  T136] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.205713][T10423] batman_adv: batadv0: Adding interface: batadv_slave_0
[  193.207308][T10423] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  193.221895][T10423] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  193.226524][T10423] batman_adv: batadv0: Adding interface: batadv_slave_1
[  193.228163][T10423] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  193.238048][T10423] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  193.255563][T10533] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2661'.
[  193.298604][  T136] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.377649][T10529] lo speed is unknown, defaulting to 1000
[  193.388829][T10546] netlink: 'syz.3.2667': attribute type 21 has an invalid length.
[  193.398643][T10546] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2667'.
[  193.453060][T10423] device hsr_slave_0 entered promiscuous mode
[  193.485381][T10423] device hsr_slave_1 entered promiscuous mode
[  193.520980][T10423] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  193.522898][T10423] Cannot create hsr debugfs directory
[  193.544265][T10529] lo speed is unknown, defaulting to 1000
[  193.758431][T10568] loop2: detected capacity change from 0 to 512
[  193.850933][ T4411] Bluetooth: hci5: command 0x0409 tx timeout
[  193.861313][  T136] tipc: Disabling bearer <udp:syz2>
[  193.866639][  T136] tipc: Left network mode
[  193.911431][T10568] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2677: bg 0: block 248: padding at end of block bitmap is not set
[  193.926076][T10575] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2680'.
[  193.945160][T10568] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.2677: Failed to acquire dquot type 1
[  193.986228][T10568] EXT4-fs (loop2): 1 truncate cleaned up
[  193.987530][T10568] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  194.680106][T10637] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2696'.
[  194.737748][T10423] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  194.779041][T10645] xt_CT: You must specify a L4 protocol and not use inversions on it
[  194.783048][T10423] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  194.827234][T10423] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  194.883359][T10423] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  194.992649][T10423] 8021q: adding VLAN 0 to HW filter on device bond0
[  195.044910][T10423] 8021q: adding VLAN 0 to HW filter on device team0
[  195.046722][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  195.049298][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  195.062698][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  195.065127][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  195.075180][ T1623] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.076798][ T1623] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.135213][T10666] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2703'.
[  195.137945][T10661] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2703'.
[  195.144428][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  195.146833][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  195.149394][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  195.157316][ T1623] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.159079][ T1623] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.163712][T10673] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2705'.
[  195.166054][T10673] bond0: (slave team0): Slave does not support ipsec offload
[  195.173474][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  195.207170][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  195.209927][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  195.242263][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  195.249219][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  195.258615][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  195.276470][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  195.289199][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  195.309864][T10423] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  195.316337][T10423] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  195.324960][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  195.327367][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  195.329699][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  195.346567][   T26] kauditd_printk_skb: 91 callbacks suppressed
[  195.346580][   T26] audit: type=1326 audit(195.314:3593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  195.366304][T10688] loop2: detected capacity change from 0 to 512
[  195.389122][   T26] audit: type=1326 audit(195.324:3594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  195.412380][   T26] audit: type=1326 audit(195.324:3595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb4e4e844 code=0x7ffc0000
[  195.418513][   T26] audit: type=1326 audit(195.324:3596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=268 compat=0 ip=0xffffb4e51e0c code=0x7ffc0000
[  195.432175][   T26] audit: type=1326 audit(195.324:3597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  195.445198][   T26] audit: type=1326 audit(195.324:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=268 compat=0 ip=0xffffb4e51e0c code=0x7ffc0000
[  195.447323][T10688] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  195.450400][   T26] audit: type=1326 audit(195.324:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffffb4e4ec1c code=0x7ffc0000
[  195.450439][   T26] audit: type=1326 audit(195.324:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  195.463562][   T26] audit: type=1326 audit(195.324:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2710" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  195.491436][T10699] IPv6: Can't replace route, no match found
[  195.657061][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  195.659031][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  195.685844][T10423] 8021q: adding VLAN 0 to HW filter on device batadv0
[  195.760450][T10707] loop2: detected capacity change from 0 to 4096
[  195.847706][T10707] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  195.931038][ T4411] Bluetooth: hci5: command 0x041b tx timeout
[  195.967793][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  195.977241][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  195.981072][T10701] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2715'.
[  195.989974][T10701] device dummy0 entered promiscuous mode
[  196.022039][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  196.025704][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  196.028926][   T26] audit: type=1326 audit(195.994:3602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10719 comm="syz.3.2719" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb4e502a8 code=0x7ffc0000
[  196.039262][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  196.041928][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  196.048947][T10423] device veth0_vlan entered promiscuous mode
[  196.065756][T10423] device veth1_vlan entered promiscuous mode
[  196.127940][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  196.130449][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  196.139048][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  196.158412][ T1623] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  196.171505][T10423] device veth0_macvtap entered promiscuous mode
[  196.176537][T10423] device veth1_macvtap entered promiscuous mode
[  196.278106][T10423] batman_adv: batadv0: Interface activated: batadv_slave_0
[  196.280010][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  196.283036][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  196.285537][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  196.290237][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  196.309805][T10423] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.321608][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  196.324973][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  196.346193][T10423] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.348155][T10423] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.350116][T10423] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  196.356616][T10423] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.516218][T10743] loop3: detected capacity change from 0 to 164
[  196.590228][ T7004] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.598468][ T7004] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.602085][T10745] bridge0: port 1(syz_tun) entered blocking state
[  196.611385][T10745] bridge0: port 1(syz_tun) entered disabled state
[  196.617610][T10743] Unable to read rock-ridge attributes
[  196.625685][T10743] Unable to read rock-ridge attributes
[  196.643883][ T7779] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  196.678442][ T7004] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.682635][ T7004] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.696832][  T514] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  196.858812][T10759] loop4: detected capacity change from 0 to 512
[  196.891971][T10761] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2737'.
[  196.964711][T10759] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,auto_da_alloc,minixdf,,errors=continue. Quota mode: writeback.
[  197.129544][T10776] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2745'.
[  197.249452][T10783] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2746'.
[  197.283197][T10786] loop4: detected capacity change from 0 to 512
[  197.301707][T10772] 
[  197.302405][T10772] ======================================================
[  197.304073][T10772] WARNING: possible circular locking dependency detected
[  197.305686][T10772] 5.15.172-syzkaller #0 Not tainted
[  197.306936][T10772] ------------------------------------------------------
[  197.308555][T10772] syz.1.2743/10772 is trying to acquire lock:
[  197.309935][T10772] ffff0000c9724c28 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}, at: __flush_work+0xd0/0x1c0
[  197.312504][T10772] 
[  197.312504][T10772] but task is already holding lock:
[  197.314277][T10772] ffff800016e77228 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0x250/0x750
[  197.316835][T10772] 
[  197.316835][T10772] which lock already depends on the new lock.
[  197.316835][T10772] 
[  197.319404][T10772] 
[  197.319404][T10772] the existing dependency chain (in reverse order) is:
[  197.321542][T10772] 
[  197.321542][T10772] -> #4 (rfkill_global_mutex){+.+.}-{3:3}:
[  197.323416][T10772]        __mutex_lock_common+0x194/0x2154
[  197.324680][T10772]        mutex_lock_nested+0xa4/0xf8
[  197.325939][T10772]        rfkill_register+0x44/0x7a4
[  197.327149][T10772]        hci_register_dev+0x3e0/0x880
[  197.328456][T10772]        vhci_create_device+0x2c4/0x568
[  197.329799][T10772]        vhci_write+0x318/0x3b8
[  197.330964][T10772]        vfs_write+0x884/0xb44
[  197.332147][T10772]        ksys_write+0x15c/0x26c
[  197.333245][T10772]        __arm64_sys_write+0x7c/0x90
[  197.334443][T10772]        invoke_syscall+0x98/0x2b8
[  197.335643][T10772]        el0_svc_common+0x138/0x258
[  197.336884][T10772]        do_el0_svc+0x58/0x14c
[  197.338031][T10772]        el0_svc+0x7c/0x1f0
[  197.339035][T10772]        el0t_64_sync_handler+0x84/0xe4
[  197.340246][T10772]        el0t_64_sync+0x1a0/0x1a4
[  197.341421][T10772] 
[  197.341421][T10772] -> #3 (&data->open_mutex){+.+.}-{3:3}:
[  197.343310][T10772]        __mutex_lock_common+0x194/0x2154
[  197.344603][T10772]        mutex_lock_nested+0xa4/0xf8
[  197.345849][T10772]        vhci_send_frame+0x8c/0x10c
[  197.347138][T10772]        hci_send_frame+0x194/0x2f0
[  197.348397][T10772]        hci_tx_work+0x9ac/0x16cc
[  197.349565][T10772]        process_one_work+0x790/0x11b8
[  197.350830][T10772]        worker_thread+0x910/0x1034
[  197.352046][T10772]        kthread+0x37c/0x45c
[  197.353182][T10772]        ret_from_fork+0x10/0x20
[  197.354390][T10772] 
[  197.354390][T10772] -> #2 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}:
[  197.356404][T10772]        __flush_work+0xf8/0x1c0
[  197.357650][T10772]        flush_work+0x24/0x38
[  197.358722][T10772]        hci_dev_do_close+0x16c/0x1060
[  197.359985][T10772]        hci_unregister_dev+0x248/0x4d4
[  197.361275][T10772]        vhci_release+0x74/0xc4
[  197.362367][T10772]        __fput+0x1c4/0x800
[  197.363417][T10772]        ____fput+0x20/0x30
[  197.364395][T10772]        task_work_run+0x130/0x1e4
[  197.365599][T10772]        do_exit+0x670/0x20bc
[  197.366633][T10772]        do_group_exit+0x110/0x268
[  197.367850][T10772]        get_signal+0x634/0x1550
[  197.368901][T10772]        do_notify_resume+0x3d0/0x32b8
[  197.370144][T10772]        el0_svc+0xfc/0x1f0
[  197.371232][T10772]        el0t_64_sync_handler+0x84/0xe4
[  197.372483][T10772]        el0t_64_sync+0x1a0/0x1a4
[  197.373605][T10772] 
[  197.373605][T10772] -> #1 (&hdev->req_lock){+.+.}-{3:3}:
[  197.375461][T10772]        __mutex_lock_common+0x194/0x2154
[  197.376798][T10772]        mutex_lock_nested+0xa4/0xf8
[  197.378102][T10772]        bg_scan_update+0x9c/0x470
[  197.379243][T10772]        process_one_work+0x790/0x11b8
[  197.380420][T10772]        worker_thread+0x910/0x1034
[  197.381772][T10772]        kthread+0x37c/0x45c
[  197.382883][T10772]        ret_from_fork+0x10/0x20
[  197.384063][T10772] 
[  197.384063][T10772] -> #0 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}:
[  197.386408][T10772]        __lock_acquire+0x32d4/0x7638
[  197.387762][T10772]        lock_acquire+0x240/0x77c
[  197.388854][T10772]        __flush_work+0xf8/0x1c0
[  197.390028][T10772]        __cancel_work_timer+0x3ec/0x548
[  197.391268][T10772]        cancel_work_sync+0x24/0x38
[  197.392613][T10772]        hci_request_cancel_all+0xcc/0x2d0
[  197.394049][T10772]        hci_dev_do_close+0x54/0x1060
[  197.395067][T10772]        hci_rfkill_set_block+0xdc/0x1d0
[  197.396130][T10772]        rfkill_set_block+0x18c/0x37c
[  197.397141][T10772]        rfkill_fop_write+0x594/0x750
[  197.398159][T10772]        vfs_write+0x280/0xb44
[  197.399055][T10772]        ksys_write+0x15c/0x26c
[  197.400196][T10772]        __arm64_sys_write+0x7c/0x90
[  197.401437][T10772]        invoke_syscall+0x98/0x2b8
[  197.402745][T10772]        el0_svc_common+0x138/0x258
[  197.403938][T10772]        do_el0_svc+0x58/0x14c
[  197.405121][T10772]        el0_svc+0x7c/0x1f0
[  197.406050][T10772]        el0t_64_sync_handler+0x84/0xe4
[  197.407326][T10772]        el0t_64_sync+0x1a0/0x1a4
[  197.408491][T10772] 
[  197.408491][T10772] other info that might help us debug this:
[  197.408491][T10772] 
[  197.410808][T10772] Chain exists of:
[  197.410808][T10772]   (work_completion)(&hdev->bg_scan_update) --> &data->open_mutex --> rfkill_global_mutex
[  197.410808][T10772] 
[  197.414540][T10772]  Possible unsafe locking scenario:
[  197.414540][T10772] 
[  197.416327][T10772]        CPU0                    CPU1
[  197.417541][T10772]        ----                    ----
[  197.418822][T10772]   lock(rfkill_global_mutex);
[  197.419891][T10772]                                lock(&data->open_mutex);
[  197.421497][T10772]                                lock(rfkill_global_mutex);
[  197.423106][T10772]   lock((work_completion)(&hdev->bg_scan_update));
[  197.424574][T10772] 
[  197.424574][T10772]  *** DEADLOCK ***
[  197.424574][T10772] 
[  197.426418][T10772] 1 lock held by syz.1.2743/10772:
[  197.427617][T10772]  #0: ffff800016e77228 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0x250/0x750
[  197.429833][T10772] 
[  197.429833][T10772] stack backtrace:
[  197.431180][T10772] CPU: 1 PID: 10772 Comm: syz.1.2743 Not tainted 5.15.172-syzkaller #0
[  197.433040][T10772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  197.435296][T10772] Call trace:
[  197.436054][T10772]  dump_backtrace+0x0/0x530
[  197.437235][T10772]  show_stack+0x2c/0x3c
[  197.438198][T10772]  dump_stack_lvl+0x108/0x170
[  197.439298][T10772]  dump_stack+0x1c/0x58
[  197.440251][T10772]  print_circular_bug+0x150/0x1b8
[  197.441431][T10772]  check_noncircular+0x2cc/0x378
[  197.442520][T10772]  __lock_acquire+0x32d4/0x7638
[  197.443657][T10772]  lock_acquire+0x240/0x77c
[  197.444614][T10772]  __flush_work+0xf8/0x1c0
[  197.445621][T10772]  __cancel_work_timer+0x3ec/0x548
[  197.446747][T10772]  cancel_work_sync+0x24/0x38
[  197.447763][T10772]  hci_request_cancel_all+0xcc/0x2d0
[  197.448921][T10772]  hci_dev_do_close+0x54/0x1060
[  197.450142][T10772]  hci_rfkill_set_block+0xdc/0x1d0
[  197.451267][T10772]  rfkill_set_block+0x18c/0x37c
[  197.452385][T10772]  rfkill_fop_write+0x594/0x750
[  197.453454][T10772]  vfs_write+0x280/0xb44
[  197.454467][T10772]  ksys_write+0x15c/0x26c
[  197.455475][T10772]  __arm64_sys_write+0x7c/0x90
[  197.456555][T10772]  invoke_syscall+0x98/0x2b8
[  197.457687][T10772]  el0_svc_common+0x138/0x258
[  197.458841][T10772]  do_el0_svc+0x58/0x14c
[  197.459730][T10772]  el0_svc+0x7c/0x1f0
[  197.460691][T10772]  el0t_64_sync_handler+0x84/0xe4
[  197.461917][T10772]  el0t_64_sync+0x1a0/0x1a4
[  197.475810][T10786] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  197.486007][  T136] device hsr_slave_0 left promiscuous mode
[  197.495707][T10786] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  197.497861][T10786] System zones: 1-12
[  197.500335][T10786] EXT4-fs (loop4): ext4_process_orphan: truncating inode 15 to 10 bytes
[  197.507212][T10786] EXT4-fs (loop4): 1 truncate cleaned up
[  197.511136][T10786] EXT4-fs (loop4): mounted filesystem without journal. Opts: nogrpid,jqfmt=vfsv0,debug_want_extra_isize=0x0000000000000068,debug,nombcache,quota,nolazytime,,errors=continue. Quota mode: writeback.
[  197.525878][  T136] device hsr_slave_1 left promiscuous mode
[  197.723313][  T136] device veth1_macvtap left promiscuous mode
[  197.724820][  T136] device veth0_macvtap left promiscuous mode
[  197.726311][  T136] device veth1_vlan left promiscuous mode
[  197.727820][  T136] device veth0_vlan left promiscuous mode
[  198.005241][  T136] bond0 (unregistering): Released all slaves
[  198.011084][ T4076] Bluetooth: hci5: command 0x040f tx timeout