last executing test programs:

2m8.996739354s ago: executing program 4 (id=1089):
creat(&(0x7f00000002c0)='./file0\x00', 0x109)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x20, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x4}}}}]}]}, 0x70}}, 0x20040000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$key(0xf, 0x3, 0x2)
socket$inet6(0xa, 0x3, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000001240)=""/53}, 0x20)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r0, @ANYBLOB="08000100", @ANYRES32=r1], 0x90}}, 0x0)

2m5.769890247s ago: executing program 4 (id=1100):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000a00000012000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

2m5.647895319s ago: executing program 4 (id=1102):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000700000e0000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000002600000000c0a01080000000000000000010000000900020073797a32000000003400038030000080080003400000000224000b80200001800e000100636f6e6e6c696d69740000000c000280080001400000000009000100"], 0xe4}}, 0x0)

2m4.749273243s ago: executing program 4 (id=1103):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x41, &(0x7f0000000940)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@abort}, {@noload}, {@nodiscard}]}, 0x64, 0x51e, &(0x7f0000000b00)="$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")

2m4.430000179s ago: executing program 4 (id=1107):
r0 = openat(0xffffffffffffff9c, 0x0, 0x143042, 0x0)
pwritev2(r0, 0x0, 0x0, 0x4, 0x83, 0x1e)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d40)={0x3, 0xc, &(0x7f0000000e00)=ANY=[@ANYBLOB="180200000000000000000000000000008500000011000000180100002020692500000000002020207b1af8ff00000000bfa110000000000007010000f8ffffffb702000008000000b70300000000000085000000ce0000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
getpgid(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r2)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x40004)

2m2.708709657s ago: executing program 4 (id=1114):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='mm_page_free\x00', r0}, 0x18)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r2 = dup2(r1, r1)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f00000001c0)={'\x00', 0x2da, 0x7, 0x4, 0x200040000004, 0x10})
ioctl$BLKTRACESETUP(r2, 0x1276, 0x0)

2m1.221716781s ago: executing program 32 (id=1114):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='mm_page_free\x00', r0}, 0x18)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r2 = dup2(r1, r1)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f00000001c0)={'\x00', 0x2da, 0x7, 0x4, 0x200040000004, 0x10})
ioctl$BLKTRACESETUP(r2, 0x1276, 0x0)

7.428093366s ago: executing program 3 (id=1673):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x10000}, 0x18)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000180)={0x400000000000000, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020f000015000000000000000000000005000500000000000a00ffffff800000000000000000000000000000000000000004000000000000080012000000020000000000020000000600000000000000090000000000000000000000000000000000000000000000ff01000000000000000000000000000105000600000000000a000002ffffffffff0200000000000000000000000000010000000000000000010018"], 0xa8}}, 0x0)

7.340129168s ago: executing program 3 (id=1674):
openat(0xffffffffffffff9c, 0x0, 0x143042, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="180000000000800000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r2)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r5, &(0x7f0000005140)=[{{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000640)=""/216, 0xd8}, {&(0x7f00000052c0)=""/235, 0xeb}, {0x0}], 0x3}, 0x3}], 0x1, 0x0, 0x0)

7.315294988s ago: executing program 2 (id=1675):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x44, 0x2c, 0xd27, 0x30bd29, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x14, 0x2, [@TCA_BASIC_EMATCHES={0x10, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

7.008467523s ago: executing program 1 (id=1678):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = memfd_create(0x0, 0x7)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
ioctl$USBDEVFS_RELEASEINTERFACE(r2, 0x80045510, 0x0)
close_range(0xffffffffffffffff, r1, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
syz_io_uring_setup(0xa94, 0x0, 0x0, 0x0)
r3 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x22)
pwritev2(r3, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)

5.37601764s ago: executing program 1 (id=1683):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="30020000", @ANYRES16=r1, @ANYBLOB="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"], 0x230}, 0x1, 0x0, 0x0, 0x5}, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
r3 = dup(r2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, 0xffffffffffffffff, 0x0, 0x9}, 0x18)
timerfd_create(0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x33fe0)
recvmsg$can_j1939(r3, &(0x7f0000000700)={&(0x7f0000000500)=@can, 0x80, &(0x7f0000000580)=[{&(0x7f0000000680)=""/89, 0x59}], 0x1, &(0x7f0000001c00)=""/187, 0xbb}, 0x21)

5.076494285s ago: executing program 1 (id=1685):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf090000000000005509010000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newtfilter={0x90, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {}, {0x7}}, [@filter_kind_options=@f_fw={{0x7}, {0x5c, 0x2, [@TCA_FW_ACT={0x58, 0x4, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0xfffffc00, 0x8, 0x10000000, 0xb, 0xff}, @broadcast, @multicast1, 0x0, 0x1}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xd, 0x8}}]}, 0x90}, 0x1, 0x0, 0x0, 0x4000844}, 0x4000800)

4.955414877s ago: executing program 0 (id=1688):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000400)={0x1, 0x1, 0x14, 0x3})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
futex(0x0, 0x3, 0x0, &(0x7f0000fd7ff0), 0x0, 0xfffffffd)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r3}, 0x10)
creat(&(0x7f0000000040)='./bus\x00', 0x8)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x4001, 0x1, 0x3, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

4.79500429s ago: executing program 0 (id=1689):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x80000000000000}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x1c, r3, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x14, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000600)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r5, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x1c, r6, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r7}, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x884}, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000000)={0x24, r4, 0xc4fc9e906872338b, 0x20, 0x0, {{0x15}, {@void, @val={0x0, 0x99, {0xc6, 0x37}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x4}]}]}]}, 0x24}}, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x4e21, @private=0xa010101}, 0x10)

2.9839847s ago: executing program 1 (id=1691):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = gettid()
mount$tmpfs(0x0, &(0x7f0000000080)='.\x00', &(0x7f00000000c0), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = add_key$keyring(0x0, &(0x7f0000000340)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000380)={'syz', 0x1}, 0x0, 0x0, r5)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = eventfd2(0x0, 0x0)
write$eventfd(r6, &(0x7f0000000140)=0xfffffffffffffff8, 0x8)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x248, 0x0, 0x11, 0x148, 0x0, 0x0, 0x440, 0x2a8, 0x2a8, 0x440, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0x110, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a8)
ioctl$KDSETMODE(r7, 0x4b45, 0x1)
ioctl$TIOCL_SETSEL(r7, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x0, 0x2fd, 0xffff, 0x101, 0x300}})
write$eventfd(r6, &(0x7f0000000040)=0x8, 0x8)

2.855329392s ago: executing program 5 (id=1692):
r0 = io_uring_setup(0x1694, &(0x7f0000000080)={0x0, 0x2a30d, 0x200, 0x1})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000003740)=""/4096, 0x1000}], 0x0, 0x1}, 0x20)
close_range(r0, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000002900)=ANY=[@ANYBLOB="000000000000000095000000000000007f677dfeef380be1f3301e57fffe275895b068c0d2db7cdc0872afcbeed283c0378639038d06f08a5bcf16cffdca2b7f39b612cc0092927e5284f0effa26ac105e3372e7cbcd916d288e72e7e223d4772dba4eb0d4a8ca23ca94c6f302d1028b8d8844bac60c60646b687c5d149811cd03171c66485d2112be63048c31743831ab366336dd0ad6", @ANYRES32=r0, @ANYBLOB="180000000000000000000000ff00000018180000", @ANYRES16=r0, @ANYRES8=r0], &(0x7f0000000100)='GPL\x00', 0x8000, 0x0, 0x0, 0x40f00, 0x4c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x53, 0x0, &(0x7f0000000140)=[{0x3, 0x2, 0xb, 0x1}, {0x4, 0x5, 0x5, 0x1}, {0x1, 0x1, 0xf, 0xb}, {0x6, 0x5, 0x2, 0x8}, {0x4, 0x1, 0x10, 0x4}, {0x0, 0x1, 0x3, 0x3}], 0x10, 0x7, @void, @value}, 0x94)
r1 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000028c0)=@generic={&(0x7f0000000880)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='rpcgss_seqno\x00', r1, 0x0, 0x10}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile(r3, r3, 0x0, 0x40000f63c)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
geteuid()
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_GET_MESH_CONFIG(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYRES32=r5, @ANYBLOB="0c009900080000005c000000"], 0x28}, 0x1, 0x0, 0x0, 0x400c014}, 0x4040)
sendmsg$NL80211_CMD_REGISTER_FRAME(r2, &(0x7f0000001580)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001540)={&(0x7f00000015c0)=ANY=[@ANYBLOB="1c110000", @ANYRES16, @ANYBLOB="000128bd7000ffdbdf253a000000088003007971a8f068da12b420511070402fb731c70fe8e58ef622474f1bfe8187a8cd695194d81178af750af038ec71cfda3864fdbe94de3955b14c08809aa4717b3537f6d5e2212750b7444b41796a9af61ed2ecb022b4b7d9a3bef180d2dff2672a4a1ae6e08f658d311d81b45117b0a92d838617c0a3c0d99fe31f9e6a7331d7ab78380fd09d5057a464879b4f714634b5e14df4c6fce1bca68f2e39f9ea25b062ce8ff39bc7eb0560d89bd976e53179f4840000", @ANYRES32=r5, @ANYBLOB="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"], 0x111c}, 0x1, 0x0, 0x0, 0x4}, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000020000"], 0x0, 0x5c5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kfree\x00', r6, 0x0, 0x8}, 0x18)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r7, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000c80)={'lo\x00', <r9=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r8, 0x8916, &(0x7f0000000040)={@rand_addr=' \x01\x00', 0x3c, r9})
ioctl$sock_inet6_SIOCSIFADDR(r8, 0x8916, &(0x7f0000000140)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x6a, r9})
recvmmsg(r8, &(0x7f00000027c0)=[{{&(0x7f00000004c0)=@can, 0x80, &(0x7f0000000280)=[{&(0x7f0000000040)=""/26, 0x1a}, {&(0x7f0000000540)=""/132, 0x84}], 0x2, 0xfffffffffffffffe}, 0x7}, {{&(0x7f00000006c0)=@generic, 0x5c, &(0x7f0000000b40)=[{&(0x7f0000000740)=""/51, 0x33}, {&(0x7f0000000780)=""/223, 0xdf}, {&(0x7f0000000880)}, {&(0x7f00000008c0)=""/145, 0x91}, {&(0x7f0000000980)=""/69, 0x45}, {&(0x7f0000000a00)=""/185, 0xb9}, {&(0x7f0000000ac0)=""/121, 0x79}], 0x7, &(0x7f0000004740)=""/4096, 0x1000}}, {{&(0x7f0000000bc0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000c40)=""/83, 0x53}, {&(0x7f0000005740)=""/4096, 0x1000}, {&(0x7f0000000cc0)=""/5, 0x5}, {&(0x7f0000000d00)=""/198, 0xc6}], 0x4, &(0x7f0000000e40)=""/93, 0x5d}, 0x7}, {{&(0x7f0000000ec0)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f00000013c0)=[{&(0x7f0000000f40)=""/206, 0xce}, {&(0x7f0000001040)=""/29, 0x1d}, {&(0x7f0000001080)=""/218, 0xda}, {&(0x7f0000001180)=""/145, 0x91}, {&(0x7f0000001300)=""/165, 0xa5}, {&(0x7f0000001240)=""/17, 0x11}], 0x6, &(0x7f0000001440)=""/207, 0xcf}, 0x800}], 0x4, 0x40008080, &(0x7f0000001280)={0x77359400})
r10 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r10, 0x1, 0x1a, &(0x7f0000fbe000)={0x20000000000002d9, &(0x7f00000002c0)=[{0x4, 0x2, 0xfe, 0x8001}]}, 0x10)
socket$inet(0x2, 0x80000, 0xfffffffb)

2.839527123s ago: executing program 0 (id=1693):
openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x242, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0xcc, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xad, &(0x7f0000000140)=""/173, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
dup(0xffffffffffffffff)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)

2.759305434s ago: executing program 2 (id=1694):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
r1 = dup(r0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno', @ANYRESHEX=r2])

2.740260504s ago: executing program 3 (id=1695):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="30020000", @ANYRES16=r1, @ANYBLOB="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"], 0x230}, 0x1, 0x0, 0x0, 0x5}, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
r3 = dup(r2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, 0xffffffffffffffff, 0x0, 0x9}, 0x18)
timerfd_create(0x0, 0x0)
recvmsg$can_j1939(r3, &(0x7f0000000700)={&(0x7f0000000500)=@can, 0x80, &(0x7f0000000580)=[{&(0x7f0000000680)=""/89, 0x59}], 0x1, &(0x7f0000001c00)=""/187, 0xbb}, 0x21)

2.438338719s ago: executing program 3 (id=1696):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0xd, &(0x7f0000000040)=0x6aba, 0x4)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000180)=0x40000000, 0x4)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000200)={@ifindex, 0x36, 0x1, 0xfffffff8, 0x0, 0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000100), 0x0}, 0x40)
recvmmsg(r0, 0x0, 0x0, 0x45833af92e4b39ff, 0x0)

1.714902871s ago: executing program 2 (id=1697):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x1ce)
close(r1)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe0}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r2, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
r3 = inotify_init1(0x800)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2f00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r4}, 0x10)
fcntl$setstatus(r1, 0x4, 0x2c00)
r5 = gettid()
fcntl$setown(r1, 0x8, r5)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r3, &(0x7f00000003c0)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioprio_set$uid(0x3, 0x0, 0x0)
r7 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0x4e382)
sendfile(r7, r7, 0x0, 0x24002de8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6, 0x0, 0x9}, 0x18)
splice(r4, &(0x7f0000000080)=0x9, r0, &(0x7f0000000200)=0x4, 0x8000000000000001, 0x1)

1.607855303s ago: executing program 5 (id=1698):
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}, 0x0, 0x80840, 0x1})
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c40)
setreuid(0x0, 0xee00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r0])

1.606177353s ago: executing program 0 (id=1699):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000400)={0x1, 0x1, 0x14, 0x3})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
futex(0x0, 0x3, 0x0, &(0x7f0000fd7ff0), 0x0, 0xfffffffd)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r4}, 0x10)
creat(&(0x7f0000000040)='./bus\x00', 0x8)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x4001, 0x1, 0x3, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

1.374042907s ago: executing program 5 (id=1700):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
fstat(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000e80)={<r3=>0xffffffffffffffff}, 0x111, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r3, 0x1}}, 0x18)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1980, 0x0)
ioctl$TUNSETOFFLOAD(r4, 0xc004743e, 0x110c230005)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x110c230040)
close(r5)

1.320162858s ago: executing program 0 (id=1701):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf090000000000005509010000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newtfilter={0x90, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {}, {0x7}}, [@filter_kind_options=@f_fw={{0x7}, {0x5c, 0x2, [@TCA_FW_ACT={0x58, 0x4, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0xfffffc00, 0x8, 0x10000000, 0xb, 0xff}, @broadcast, @multicast1, 0x0, 0x1}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xd, 0x8}}]}, 0x90}, 0x1, 0x0, 0x0, 0x4000844}, 0x4000800)

1.18186579s ago: executing program 3 (id=1702):
connect$netlink(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004580)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00'}, 0x10)
mount_setattr(0xffffffffffffff9c, 0x0, 0x8900, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0xb6c2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x62060200)

1.123933671s ago: executing program 1 (id=1703):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x80000000000000}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x1c, r3, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x14, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000600)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r5, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x1c, r6, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r7}, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x884}, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000000)={0x24, r4, 0xc4fc9e906872338b, 0x20, 0x0, {{0x15}, {@void, @val={0x0, 0x99, {0xc6, 0x37}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x4}]}]}]}, 0x24}}, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x4e21, @private=0xa010101}, 0x10)

1.007780653s ago: executing program 5 (id=1704):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x44, 0x2c, 0xd27, 0x30bd29, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x14, 0x2, [@TCA_BASIC_EMATCHES={0x10, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

864.033886ms ago: executing program 0 (id=1705):
openat(0xffffffffffffff9c, 0x0, 0x143042, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="180000000000800000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r2)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r5, &(0x7f0000005140)=[{{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000640)=""/216, 0xd8}, {&(0x7f0000003080)=""/4096, 0x1000}], 0x2}, 0x3}], 0x1, 0x0, 0x0)

380.504064ms ago: executing program 2 (id=1706):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="30020000", @ANYRES16=r1, @ANYBLOB="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"], 0x230}, 0x1, 0x0, 0x0, 0x5}, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
r3 = dup(r2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, 0xffffffffffffffff, 0x0, 0x9}, 0x18)
recvmsg$can_j1939(r3, &(0x7f0000000700)={&(0x7f0000000500)=@can, 0x80, &(0x7f0000000580)=[{&(0x7f0000000680)=""/89, 0x59}], 0x1, &(0x7f0000001c00)=""/187, 0xbb}, 0x21)

379.630214ms ago: executing program 5 (id=1707):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010028bd7000fedbdf250200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x8004)
write$nci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="414601", @ANYRES32=r2], 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000))

299.571745ms ago: executing program 2 (id=1708):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x400}}, 0x24)
sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[{0x18, 0x110, 0x1, '$'}], 0x18, 0xe000}, 0x5}], 0x1, 0x0)

77.070869ms ago: executing program 5 (id=1709):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x201000c, &(0x7f00000001c0), 0xff, 0x535, &(0x7f0000002800)="$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")
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)

62.002089ms ago: executing program 3 (id=1710):
r0 = socket(0x28, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
r3 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r3, &(0x7f0000000080), 0x10)
sendmmsg(r3, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{}], 0x1}}], 0x1, 0x24008094)
r4 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvfrom$unix(r4, &(0x7f0000000140)=""/263, 0x40000, 0x0, 0x0, 0x0)

4.62579ms ago: executing program 2 (id=1711):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000400)={0x1, 0x1, 0x14, 0x3})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
futex(0x0, 0x3, 0x0, &(0x7f0000fd7ff0), 0x0, 0xfffffffd)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r4}, 0x10)
creat(&(0x7f0000000040)='./bus\x00', 0x8)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x4001, 0x1, 0x3, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

0s ago: executing program 1 (id=1712):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0xd, &(0x7f0000000040)=0x6aba, 0x4)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000180)=0x40000000, 0x4)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000200)={@ifindex, 0x36, 0x1, 0xfffffff8, 0x0, 0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000100), 0x0}, 0x40)
recvmmsg(r0, 0x0, 0x0, 0x45833af92e4b39ff, 0x0)

kernel console output (not intermixed with test programs):

x7ffc0000
[  267.710118][   T27] audit: type=1326 audit(1745390910.729:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7134 comm="syz.4.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  267.765599][   T27] audit: type=1326 audit(1745390910.729:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7134 comm="syz.4.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  267.796134][ T4249] EXT4-fs (loop4): unmounting filesystem.
[  267.834662][   T27] audit: type=1326 audit(1745390910.729:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7134 comm="syz.4.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  267.916940][ T7153] program syz.4.863 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  267.943435][ T7155] loop3: detected capacity change from 0 to 2048
[  267.961677][ T7155] EXT4-fs: Ignoring removed bh option
[  267.974482][ T7157] loop1: detected capacity change from 0 to 1024
[  267.989258][ T7157] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  268.003398][ T7157] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  268.018500][ T7157] JBD2: no valid journal superblock found
[  268.030786][ T7157] EXT4-fs (loop1): error loading journal
[  268.036079][ T7155] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  268.074901][ T7155] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  268.092844][ T7155] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  268.107504][ T7155] EXT4-fs (loop3): This should not happen!! Data will be lost
[  268.107504][ T7155] 
[  268.122041][ T7155] EXT4-fs (loop3): Total free blocks count 0
[  268.128219][ T7155] EXT4-fs (loop3): Free/Dirty block details
[  268.134398][ T7155] EXT4-fs (loop3): free_blocks=2415919104
[  268.141691][ T7155] EXT4-fs (loop3): dirty_blocks=48
[  268.147073][ T7155] EXT4-fs (loop3): Block reservation details
[  268.153095][ T7155] EXT4-fs (loop3): i_reserved_data_blocks=3
[  268.162102][ T7162] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[  268.346158][ T7166] netlink: 8 bytes leftover after parsing attributes in process `syz.4.869'.
[  268.375649][ T7166] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  268.405396][ T7166] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  268.405548][ T7170] netlink: 4 bytes leftover after parsing attributes in process `syz.1.870'.
[  268.526300][ T7173] xt_hashlimit: max too large, truncated to 1048576
[  268.593933][ T7175] loop3: detected capacity change from 0 to 512
[  268.639180][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  268.645182][ T7175] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c119, mo2=0002]
[  268.670429][ T7175] System zones: 0-2, 18-18, 34-35
[  268.699380][ T7175] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  268.719087][ T7175] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  268.811776][ T7185] program syz.1.876 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  268.915685][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  269.027222][ T7195] netlink: 24 bytes leftover after parsing attributes in process `syz.3.879'.
[  269.037654][ T7194] loop2: detected capacity change from 0 to 512
[  269.062677][ T7194] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  269.091614][ T7194] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  269.118792][ T7194] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  269.133689][ T7194] System zones: 0-1, 15-15, 18-18, 34-34
[  269.161117][ T7201] xt_hashlimit: max too large, truncated to 1048576
[  269.162355][ T7194] EXT4-fs (loop2): orphan cleanup on readonly fs
[  269.194665][ T7194] EXT4-fs warning (device loop2): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  269.230399][ T7203] loop4: detected capacity change from 0 to 512
[  269.231596][ T7194] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  269.252429][ T7194] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.881: bad orphan inode 16
[  269.273465][ T7203] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  269.283594][ T7194] ext4_test_bit(bit=15, block=18) = 1
[  269.296112][ T7194] is_bad_inode(inode)=0
[  269.300871][ T7194] NEXT_ORPHAN(inode)=0
[  269.305859][ T7203] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  269.313563][ T7194] max_ino=32
[  269.319473][ T7194] i_nlink=2
[  269.322685][ T7194] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  269.360749][ T7194] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  269.369095][ T4267] Bluetooth: hci5: command 0x1003 tx timeout
[  269.371853][ T7194] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  269.375656][ T4265] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  269.609106][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  270.301862][ T7217] loop1: detected capacity change from 0 to 512
[  270.377212][ T4249] EXT4-fs (loop4): unmounting filesystem.
[  270.404416][ T7217] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c119, mo2=0002]
[  270.404501][ T7217] System zones: 0-2, 18-18, 34-35
[  270.412514][ T7217] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  270.470164][ T7217] ext4 filesystem being mounted at /199/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  270.521863][ T7227] xt_hashlimit: max too large, truncated to 1048576
[  270.683667][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  270.786443][ T7232] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  270.954733][ T7232] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.109858][ T7232] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.238083][ T7232] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.259320][ T7249] netlink: 24 bytes leftover after parsing attributes in process `syz.1.902'.
[  271.360535][ T7232] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  271.378673][ T7232] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  271.430329][ T7232] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  271.478685][ T7232] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  271.529156][ T7256] sd 0:0:1:0: device reset
[  271.640499][ T7260] loop0: detected capacity change from 0 to 512
[  271.655685][ T7260] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  271.690726][ T7260] EXT4-fs (loop0): orphan cleanup on readonly fs
[  271.705153][ T7260] EXT4-fs error (device loop0): ext4_acquire_dquot:6802: comm syz.0.904: Failed to acquire dquot type 1
[  271.723125][ T7260] EXT4-fs (loop0): 1 truncate cleaned up
[  272.072086][ T7259] loop3: detected capacity change from 0 to 8192
[  272.252567][   T27] kauditd_printk_skb: 9 callbacks suppressed
[  272.252585][   T27] audit: type=1800 audit(1745390915.829:1420): pid=7267 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.906" name="file1" dev="loop3" ino=1048604 res=0 errno=0
[  272.608602][ T7273] loop4: detected capacity change from 0 to 128
[  272.718689][ T7273] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  272.776329][ T7273] ext4 filesystem being mounted at /197/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  272.962181][ T7277] netlink: 8 bytes leftover after parsing attributes in process `syz.1.913'.
[  273.009748][ T7277] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  273.057644][ T7273] EXT4-fs error (device loop4): htree_dirblock_to_tree:1112: inode #2: block 4: comm syz.4.911: bad entry in directory: inode out of bounds - offset=1012, inode=128, rec_len=12, size=1024 fake=1
[  273.110707][ T7277] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  273.466513][ T7260] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  273.480522][ T4249] EXT4-fs (loop4): unmounting filesystem.
[  273.723753][ T4259] EXT4-fs (loop0): unmounting filesystem.
[  273.868444][ T7300] loop3: detected capacity change from 0 to 512
[  273.910339][ T7300] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  273.932355][ T7306] program syz.4.924 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  273.991974][ T7300] ext4 filesystem being mounted at /172/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  274.212418][ T7312] loop0: detected capacity change from 0 to 8192
[  274.336186][ T7312]  loop0: p1 p2 p4
[  274.343514][ T7312] loop0: partition table partially beyond EOD, truncated
[  274.378096][ T7312] loop0: p1 start 67159808 is beyond EOD, truncated
[  274.404905][ T7312] loop0: p2 start 4294967295 is beyond EOD, truncated
[  274.446722][ T7312] loop0: p4 size 3599499264 extends beyond EOD, truncated
[  274.469991][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  274.494811][   T27] audit: type=1326 audit(1745390918.069:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  274.539467][ T4437] Bluetooth: hci5: Frame reassembly failed (-84)
[  274.556662][ T7319] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  274.592226][   T27] audit: type=1326 audit(1745390918.109:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  274.614781][   T27] audit: type=1326 audit(1745390918.109:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  274.642949][   T27] audit: type=1326 audit(1745390918.109:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  274.666589][   T27] audit: type=1326 audit(1745390918.109:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  274.690273][   T27] audit: type=1326 audit(1745390918.109:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  274.804352][ T7329] loop3: detected capacity change from 0 to 512
[  274.822802][ T7329] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  274.841889][ T7329] EXT4-fs (loop3): orphan cleanup on readonly fs
[  274.850366][ T7329] Quota error (device loop3): do_check_range: Getting block 196613 out of range 1-5
[  274.861047][ T7329] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  274.870674][ T7329] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.931: Failed to acquire dquot type 1
[  274.885420][ T7329] EXT4-fs (loop3): 1 truncate cleaned up
[  274.891591][ T7329] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  274.974426][ T7333] loop0: detected capacity change from 0 to 164
[  275.046732][ T7333] syz.0.932: attempt to access beyond end of device
[  275.046732][ T7333] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  275.081842][ T7333] syz.0.932: attempt to access beyond end of device
[  275.081842][ T7333] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  275.310134][   T27] audit: type=1326 audit(1745390918.889:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faabdf8e169 code=0x7ffc0000
[  275.459553][ T7336] netlink: 12 bytes leftover after parsing attributes in process `syz.0.932'.
[  275.810241][ T7339] program syz.0.935 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  276.565680][ T4267] Bluetooth: hci5: command 0x1003 tx timeout
[  276.573707][ T4265] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  276.730763][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  276.880178][ T7351] xt_hashlimit: max too large, truncated to 1048576
[  277.246082][ T7361] device syzkaller0 entered promiscuous mode
[  277.263966][ T7367] program syz.4.947 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  277.506228][ T7375] loop0: detected capacity change from 0 to 512
[  277.524946][ T7375] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  277.542338][ T7375] EXT4-fs (loop0): orphan cleanup on readonly fs
[  277.550164][ T7375] __quota_error: 34 callbacks suppressed
[  277.550181][ T7375] Quota error (device loop0): do_check_range: Getting block 196613 out of range 1-5
[  277.565693][ T7375] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  277.575106][ T7375] EXT4-fs error (device loop0): ext4_acquire_dquot:6802: comm syz.0.949: Failed to acquire dquot type 1
[  277.596703][ T7375] EXT4-fs (loop0): 1 truncate cleaned up
[  277.605705][ T7375] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  278.558614][ T7383] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  278.649685][ T4412] Bluetooth: hci5: Frame reassembly failed (-84)
[  279.550386][ T4259] EXT4-fs (loop0): unmounting filesystem.
[  279.826415][ T7402] program syz.0.960 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  280.653257][ T4265] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  280.866949][ T7410] loop1: detected capacity change from 0 to 512
[  280.905649][ T7410] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  280.982536][ T7410] EXT4-fs (loop1): 1 truncate cleaned up
[  280.988475][ T7410] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  281.038414][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  283.730199][   T27] audit: type=1326 audit(1745390927.309:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  283.784272][   T27] audit: type=1326 audit(1745390927.309:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  283.814942][   T27] audit: type=1326 audit(1745390927.339:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  283.862498][ T7428] program syz.3.971 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  283.874669][   T27] audit: type=1326 audit(1745390927.339:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  283.944690][ T7432] netlink: 24 bytes leftover after parsing attributes in process `syz.4.970'.
[  283.953973][   T27] audit: type=1326 audit(1745390927.339:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  283.977498][   T27] audit: type=1326 audit(1745390927.339:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  284.001335][   T27] audit: type=1326 audit(1745390927.339:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  284.027147][   T27] audit: type=1326 audit(1745390927.339:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  284.060686][   T27] audit: type=1326 audit(1745390927.339:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  284.518843][   T27] audit: type=1326 audit(1745390927.339:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.0.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  284.677235][ T7432] netlink: 8 bytes leftover after parsing attributes in process `syz.4.970'.
[  285.101434][ T4473] Bluetooth: hci5: Frame reassembly failed (-84)
[  285.125681][ T7449] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  285.179061][ T7453] loop2: detected capacity change from 0 to 512
[  285.215251][ T7453] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  285.242326][ T7453] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  285.542396][ T7465] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  285.571013][ T7469] SET target dimension over the limit!
[  285.577395][ T7462] tipc: Resetting bearer <eth:syzkaller0>
[  286.341388][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  286.646092][ T7485] program syz.2.983 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  287.130318][ T4267] Bluetooth: hci5: command 0x1003 tx timeout
[  287.142233][ T4265] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  287.414808][ T7492] loop3: detected capacity change from 0 to 2048
[  287.491324][ T7492] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  287.506463][ T7492] ext4 filesystem being mounted at /178/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.631449][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  288.437466][ T7462] tipc: Disabling bearer <eth:syzkaller0>
[  288.872642][ T7516] program syz.2.994 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  288.903103][ T7514] random: crng reseeded on system resumption
[  289.201347][ T7526] loop2: detected capacity change from 0 to 512
[  289.273973][ T7526] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  289.314545][ T7526] ext4 filesystem being mounted at /176/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  289.402924][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  289.402943][   T27] audit: type=1800 audit(1745390932.979:1492): pid=7526 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.998" name="file1" dev="loop2" ino=15 res=0 errno=0
[  289.784412][ T7530] loop0: detected capacity change from 0 to 512
[  289.796553][ T7537] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  289.886080][ T7530] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  289.896027][ T7530] ext4 filesystem being mounted at /199/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  289.927121][   T27] audit: type=1800 audit(1745390933.509:1493): pid=7530 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.999" name="file1" dev="loop0" ino=15 res=0 errno=0
[  290.232793][ T4259] EXT4-fs (loop0): unmounting filesystem.
[  290.311496][ T7549] device syzkaller0 entered promiscuous mode
[  290.708648][ T7560] program syz.3.1008 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  291.222149][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  291.935803][   T27] audit: type=1326 audit(1745390935.519:1494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  291.985300][   T27] audit: type=1326 audit(1745390935.539:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  292.035852][   T27] audit: type=1326 audit(1745390935.539:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  292.105738][   T27] audit: type=1326 audit(1745390935.539:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  292.175820][   T27] audit: type=1326 audit(1745390935.539:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  292.204791][   T27] audit: type=1326 audit(1745390935.539:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  292.238948][   T27] audit: type=1326 audit(1745390935.539:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  292.263878][   T27] audit: type=1326 audit(1745390935.539:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.3.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  293.493135][ T7595] program syz.0.1020 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  293.749268][ T7604] loop0: detected capacity change from 0 to 1024
[  293.811185][ T7604] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  293.868701][ T7604] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3841: comm syz.0.1024: Allocating blocks 497-513 which overlap fs metadata
[  293.884747][ T7604] EXT4-fs (loop0): pa ffff88807526e380: logic 16, phys. 145, len 23
[  293.892913][ T7604] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1
[  293.954832][ T4259] EXT4-fs (loop0): unmounting filesystem.
[  294.500848][ T7615] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  294.615894][ T7618] loop1: detected capacity change from 0 to 256
[  294.632013][ T7618] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  294.921723][   T27] kauditd_printk_skb: 29 callbacks suppressed
[  294.921742][   T27] audit: type=1326 audit(1745390938.509:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  294.951867][   T27] audit: type=1326 audit(1745390938.509:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  294.983576][   T27] audit: type=1326 audit(1745390938.509:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  295.012969][   T27] audit: type=1326 audit(1745390938.509:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  295.048250][   T27] audit: type=1326 audit(1745390938.509:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  295.078311][   T27] audit: type=1326 audit(1745390938.509:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  295.113150][   T27] audit: type=1326 audit(1745390938.509:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  295.148577][   T27] audit: type=1326 audit(1745390938.509:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  295.188244][   T27] audit: type=1326 audit(1745390938.509:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  295.220477][   T27] audit: type=1326 audit(1745390938.509:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.1.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  296.187908][ T7587] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1017'.
[  296.213192][ T7589] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1017'.
[  296.428746][ T7627] netlink: 'syz.2.1029': attribute type 2 has an invalid length.
[  296.569213][ T4265] Bluetooth: hci5: command 0x1003 tx timeout
[  296.577715][ T4267] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  296.618806][ T7631] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  297.374082][ T7635] program syz.2.1033 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  297.591234][ T7643] sch_tbf: burst 3092 is lower than device lo mtu (65550) !
[  297.756903][ T7651] loop2: detected capacity change from 0 to 512
[  297.774975][ T7651] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  297.790434][ T7651] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  297.813828][ T7651] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  297.833082][ T7651] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  297.842184][ T7651] System zones: 0-2, 18-18, 34-35
[  297.861739][ T7657] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1041'.
[  297.866755][ T7651] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  297.922025][ T7651] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1040: bg 0: block 353: padding at end of block bitmap is not set
[  298.000490][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  298.028471][ T7661] device syzkaller0 entered promiscuous mode
[  298.246789][ T7670] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  298.450143][ T7674] program syz.4.1048 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  298.553776][ T4412] Bluetooth: hci5: Frame reassembly failed (-84)
[  298.565885][ T7672] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  298.689025][ T7683] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1052'.
[  298.712518][ T7681] random: crng reseeded on system resumption
[  298.906805][ T7691] loop9: detected capacity change from 0 to 7
[  298.934513][ T7691] Dev loop9: unable to read RDB block 7
[  298.955341][ T7691]  loop9: unable to read partition table
[  298.964274][ T7691] loop9: partition table beyond EOD, truncated
[  298.974036][ T7691] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  298.974036][ T7691] 
Uªÿÿÿÿÿÿ) failed (rc=-5)
[  299.181946][ T7697] loop1: detected capacity change from 0 to 512
[  299.232337][ T7697] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c119, mo2=0002]
[  299.255712][ T7697] System zones: 0-2, 18-18, 34-35
[  299.271620][ T7697] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  299.293908][ T7697] ext4 filesystem being mounted at /235/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  299.396026][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  299.580925][ T7707] program syz.4.1061 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  300.424145][   T27] kauditd_printk_skb: 189 callbacks suppressed
[  300.424163][   T27] audit: type=1326 audit(1745390944.009:1730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7722 comm="syz.1.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  300.490967][   T27] audit: type=1326 audit(1745390944.009:1731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7722 comm="syz.1.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  300.513955][   T27] audit: type=1326 audit(1745390944.009:1732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7722 comm="syz.1.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  300.565702][ T4258] Bluetooth: hci5: command 0x1003 tx timeout
[  300.582932][ T4267] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  300.799142][ T7728] xt_hashlimit: max too large, truncated to 1048576
[  300.891129][ T7730] loop2: detected capacity change from 0 to 512
[  300.970603][ T7730] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c119, mo2=0002]
[  300.979292][ T7730] System zones: 0-2, 18-18, 34-35
[  300.994814][ T7730] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  301.012085][ T7730] ext4 filesystem being mounted at /188/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  301.251486][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  301.338352][   T27] audit: type=1326 audit(1745390944.919:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7734 comm="syz.2.1071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  301.396287][   T27] audit: type=1326 audit(1745390944.949:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7734 comm="syz.2.1071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  301.432841][   T27] audit: type=1326 audit(1745390944.959:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7734 comm="syz.2.1071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  301.437516][ T7735] random: crng reseeded on system resumption
[  301.466796][   T27] audit: type=1326 audit(1745390945.009:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7734 comm="syz.2.1071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  301.497759][   T27] audit: type=1326 audit(1745390945.009:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7734 comm="syz.2.1071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  301.507987][ T7738] program syz.1.1072 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  301.527717][   T27] audit: type=1326 audit(1745390945.009:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7734 comm="syz.2.1071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  301.564809][   T27] audit: type=1326 audit(1745390945.009:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7734 comm="syz.2.1071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  302.255431][ T7717] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1064'.
[  303.091791][ T7758] loop1: detected capacity change from 0 to 512
[  303.155941][ T7758] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  303.179644][ T7758] EXT4-fs (loop1): orphan cleanup on readonly fs
[  303.189336][ T7758] EXT4-fs error (device loop1): ext4_acquire_dquot:6802: comm syz.1.1079: Failed to acquire dquot type 1
[  303.233968][ T7758] EXT4-fs (loop1): 1 truncate cleaned up
[  303.264174][ T4310] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[  303.302843][ T7758] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  303.655544][ T4310] usb 3-1: device descriptor read/64, error -71
[  303.935377][ T4310] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[  304.013689][ T7768] loop4: detected capacity change from 0 to 512
[  304.040005][ T7770] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1082'.
[  304.092824][ T7768] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  304.115452][ T4310] usb 3-1: device descriptor read/64, error -71
[  304.137786][ T7768] ext4 filesystem being mounted at /228/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  304.215930][ T4265] Bluetooth: hci5: sending frame failed (-49)
[  304.223581][ T4267] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  304.231778][ T7774] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  304.246735][ T4310] usb usb3-port1: attempt power cycle
[  304.287802][ T7768] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.1081: corrupted inode contents
[  304.354896][ T7768] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #2: comm syz.4.1081: mark_inode_dirty error
[  304.396826][ T7768] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.1081: corrupted inode contents
[  304.427571][ T7777] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.1081: corrupted inode contents
[  304.475081][ T7781] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  304.496716][ T7777] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #2: comm syz.4.1081: mark_inode_dirty error
[  304.526309][ T7777] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.1081: corrupted inode contents
[  304.544742][ T7777] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.1081: mark_inode_dirty error
[  304.564797][ T7777] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.1081: corrupted inode contents
[  304.578430][ T7777] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #2: comm syz.4.1081: mark_inode_dirty error
[  304.695696][ T4310] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  304.711593][ T4249] EXT4-fs (loop4): unmounting filesystem.
[  304.746111][ T4310] usb 3-1: device descriptor read/8, error -71
[  305.025323][ T4310] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  305.066036][ T4310] usb 3-1: device descriptor read/8, error -71
[  305.168534][ T7791] device syzkaller0 entered promiscuous mode
[  305.185449][ T4310] usb usb3-port1: unable to enumerate USB device
[  306.534763][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  308.064100][   T27] kauditd_printk_skb: 59 callbacks suppressed
[  308.064118][   T27] audit: type=1326 audit(1745390951.649:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.093576][   T27] audit: type=1326 audit(1745390951.649:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.116405][   T27] audit: type=1326 audit(1745390951.649:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.140048][   T27] audit: type=1326 audit(1745390951.649:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.163260][   T27] audit: type=1326 audit(1745390951.649:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.191876][   T27] audit: type=1326 audit(1745390951.739:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.219883][   T27] audit: type=1326 audit(1745390951.769:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.259021][   T27] audit: type=1326 audit(1745390951.769:1804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.290571][   T27] audit: type=1326 audit(1745390951.769:1805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.313439][   T27] audit: type=1326 audit(1745390951.769:1806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7816 comm="syz.1.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  308.629248][ T4265] Bluetooth: hci5: sending frame failed (-49)
[  308.636735][ T4267] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  308.637662][ T7820] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  308.834150][ T7800] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1089'.
[  308.845301][ T7800] netlink: 'syz.4.1089': attribute type 7 has an invalid length.
[  308.853091][ T7800] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1089'.
[  308.875045][ T7800] device syz_tun entered promiscuous mode
[  308.882725][ T7800] device erspan0 entered promiscuous mode
[  308.911449][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready
[  310.256594][ T7844] loop2: detected capacity change from 0 to 512
[  310.277366][ T7842] loop4: detected capacity change from 0 to 512
[  310.300054][ T7842] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  310.317790][ T7842] EXT4-fs (loop4): orphan cleanup on readonly fs
[  310.325971][ T7842] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.1103: Failed to acquire dquot type 1
[  310.339035][ T7842] EXT4-fs (loop4): 1 truncate cleaned up
[  310.345062][ T7842] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  310.397924][ T7844] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  310.400716][ T4249] EXT4-fs error (device loop4): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 12
[  310.415431][ T7844] ext4 filesystem being mounted at /196/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  310.522913][ T4249] EXT4-fs error (device loop4): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 12
[  311.610136][ T7684] EXT4-fs (loop4): unmounting filesystem.
[  311.744848][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  311.853991][ T7867] loop3: detected capacity change from 0 to 512
[  311.883809][ T7684] device syz_tun left promiscuous mode
[  311.904186][ T7867] EXT4-fs (loop3): orphan cleanup on readonly fs
[  311.910867][ T7867] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13
[  311.948637][ T7867] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  311.974134][ T7867] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.1110: attempt to clear invalid blocks 2 len 1
[  312.031511][ T7867] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.1110: invalid indirect mapped block 1819239214 (level 0)
[  312.097017][ T7867] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.1110: invalid indirect mapped block 1819239214 (level 1)
[  312.149521][ T7867] EXT4-fs (loop3): 1 truncate cleaned up
[  312.165734][ T7867] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  312.202793][ T7867] EXT4-fs error (device loop3): ext4_lookup:1855: inode #2: comm syz.3.1110: 'file1' linked to parent dir
[  312.476442][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  312.693154][   T56] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.391714][ T7885] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1115'.
[  313.583024][   T56] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.712116][   T56] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.818123][   T56] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.988629][ T7901] loop2: detected capacity change from 0 to 512
[  314.068332][ T7901] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  314.100564][ T7901] ext4 filesystem being mounted at /201/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  314.130406][   T27] kauditd_printk_skb: 35 callbacks suppressed
[  314.130422][   T27] audit: type=1800 audit(1745390957.709:1840): pid=7901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1121" name="file1" dev="loop2" ino=15 res=0 errno=0
[  314.360930][ T4265] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  314.370846][ T4265] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  314.379552][ T4265] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  316.076527][ T4265] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  316.086894][ T4265] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  316.094253][ T4265] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  316.541979][ T7916] loop3: detected capacity change from 0 to 512
[  316.721585][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  316.784551][ T7916] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  316.803963][ T7916] ext4 filesystem being mounted at /210/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  316.895913][ T7923] xt_hashlimit: max too large, truncated to 1048576
[  316.919383][ T7916] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1124: corrupted inode contents
[  316.949703][ T7916] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #2: comm syz.3.1124: mark_inode_dirty error
[  316.962121][ T7916] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1124: corrupted inode contents
[  316.983232][ T7921] device syzkaller0 entered promiscuous mode
[  317.023343][ T7916] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.1124: mark_inode_dirty error
[  317.052968][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  317.059494][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  318.154913][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  318.173251][ T4265] Bluetooth: hci1: command 0x0409 tx timeout
[  318.192044][ T7935] rdma_op ffff88802036e9f0 conn xmit_rdma 0000000000000000
[  318.369896][ T7940] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1131'.
[  319.004528][ T7951] loop3: detected capacity change from 0 to 512
[  319.044874][ T7951] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  319.054242][ T7951] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  319.079772][   T27] audit: type=1800 audit(1745390962.659:1841): pid=7951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1136" name="file1" dev="loop3" ino=15 res=0 errno=0
[  320.245968][ T4265] Bluetooth: hci1: command 0x041b tx timeout
[  320.361461][ T7960] xt_hashlimit: max too large, truncated to 1048576
[  320.604799][   T27] audit: type=1326 audit(1745390964.179:1842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  320.812263][   T27] audit: type=1326 audit(1745390964.179:1843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  320.843121][   T27] audit: type=1326 audit(1745390964.179:1844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  321.049363][   T27] audit: type=1326 audit(1745390964.179:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  321.169499][   T27] audit: type=1326 audit(1745390964.179:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  321.290826][   T27] audit: type=1326 audit(1745390964.179:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  321.404351][   T27] audit: type=1326 audit(1745390964.179:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  321.534922][   T27] audit: type=1326 audit(1745390964.179:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  321.570313][   T27] audit: type=1326 audit(1745390964.179:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  321.593076][   T27] audit: type=1326 audit(1745390964.179:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7965 comm="syz.2.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  322.325779][ T4265] Bluetooth: hci1: command 0x040f tx timeout
[  322.437851][ T7928] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1127'.
[  322.644317][ T7971] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1141'.
[  322.851903][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  323.018267][ T7988] xt_hashlimit: max too large, truncated to 1048576
[  324.338784][ T7998] loop1: detected capacity change from 0 to 512
[  324.668489][ T4265] Bluetooth: hci1: command 0x0419 tx timeout
[  324.691401][ T7998] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  324.717253][ T7998] EXT4-fs (loop1): orphan cleanup on readonly fs
[  324.726110][ T7998] EXT4-fs error (device loop1): ext4_acquire_dquot:6802: comm syz.1.1148: Failed to acquire dquot type 1
[  324.740456][ T7998] EXT4-fs (loop1): 1 truncate cleaned up
[  324.746887][ T7998] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  324.803640][ T7995] random: crng reseeded on system resumption
[  325.089859][   T56] device erspan0 left promiscuous mode
[  326.363656][ T7908] chnl_net:caif_netlink_parms(): no params data found
[  326.384305][ T8014] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1151'.
[  326.803715][ T7908] bridge0: port 1(bridge_slave_0) entered blocking state
[  326.839132][ T7908] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.871622][ T7908] device bridge_slave_0 entered promiscuous mode
[  326.974218][ T7908] bridge0: port 2(bridge_slave_1) entered blocking state
[  326.984298][ T7908] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.027926][ T7908] device bridge_slave_1 entered promiscuous mode
[  327.161908][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  327.403511][ T7908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  327.511514][ T8034] loop1: detected capacity change from 0 to 512
[  327.518447][ T7908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  327.615277][ T8034] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  327.638224][ T8034] ext4 filesystem being mounted at /251/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  327.704656][   T27] kauditd_printk_skb: 17 callbacks suppressed
[  327.704673][   T27] audit: type=1800 audit(1745390971.289:1867): pid=8027 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1154" name="file1" dev="loop1" ino=15 res=0 errno=0
[  327.914761][ T8044] xt_hashlimit: max too large, truncated to 1048576
[  328.246476][ T8042] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1157'.
[  328.300426][ T7908] team0: Port device team_slave_0 added
[  328.343346][ T8047] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  328.512628][   T56] device hsr_slave_0 left promiscuous mode
[  328.735592][   T56] device hsr_slave_1 left promiscuous mode
[  330.407308][   T56] device veth1_macvtap left promiscuous mode
[  330.433552][   T56] device veth0_macvtap left promiscuous mode
[  330.455424][   T56] device veth1_vlan left promiscuous mode
[  330.475762][   T56] device veth0_vlan left promiscuous mode
[  330.746988][ T8064] random: crng reseeded on system resumption
[  330.853717][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  331.033470][ T8074] xt_hashlimit: max too large, truncated to 1048576
[  331.253785][ T8078] loop1: detected capacity change from 0 to 256
[  331.399292][   T27] audit: type=1804 audit(1745390974.979:1868): pid=8078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1170" name="/newroot/254/file1/file0" dev="loop1" ino=1048606 res=1 errno=0
[  332.376945][   T27] audit: type=1326 audit(1745390975.959:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  332.411808][   T27] audit: type=1326 audit(1745390975.959:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  332.517768][   T27] audit: type=1326 audit(1745390975.979:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  332.581325][   T27] audit: type=1326 audit(1745390975.979:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  332.657630][   T27] audit: type=1326 audit(1745390975.979:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  333.098564][   T27] audit: type=1326 audit(1745390975.979:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  333.378038][   T27] audit: type=1326 audit(1745390975.979:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  333.400570][   T27] audit: type=1326 audit(1745390975.979:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  333.423011][   T27] audit: type=1326 audit(1745390975.979:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  333.446027][   T27] audit: type=1326 audit(1745390975.979:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  333.472765][   T27] audit: type=1326 audit(1745390975.979:1879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8084 comm="syz.0.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  334.323034][   T56] bond0 (unregistering): Released all slaves
[  334.392316][ T7908] team0: Port device team_slave_1 added
[  334.405999][ T8054] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1161'.
[  334.630752][ T7908] batman_adv: batadv0: Adding interface: batadv_slave_0
[  334.649607][ T7908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  334.703258][ T7908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  334.737425][ T7908] batman_adv: batadv0: Adding interface: batadv_slave_1
[  334.744422][ T7908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  334.840841][ T7908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  334.848908][ T8108] xt_hashlimit: max too large, truncated to 1048576
[  334.976891][ T8107] random: crng reseeded on system resumption
[  335.016224][ T7908] device hsr_slave_0 entered promiscuous mode
[  335.033232][ T7908] device hsr_slave_1 entered promiscuous mode
[  335.106180][ T7908] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  335.160665][ T7908] Cannot create hsr debugfs directory
[  336.024182][   T27] audit: type=1326 audit(1745390979.599:1880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  336.081585][   T27] audit: type=1326 audit(1745390979.639:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  336.105078][   T27] audit: type=1326 audit(1745390979.639:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  336.145743][   T27] audit: type=1326 audit(1745390979.639:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.1184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  337.207939][ T7908] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  337.269821][ T7908] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  337.306803][ T7908] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  337.318083][ T7908] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  337.446254][ T8137] loop3: detected capacity change from 0 to 512
[  337.469545][ T8137] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  337.626050][ T8137] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  337.712366][ T8137] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  337.729406][ T8137] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  337.745390][ T8137] System zones: 0-2, 18-18, 34-35
[  337.871272][ T8137] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  338.036028][ T7908] 8021q: adding VLAN 0 to HW filter on device bond0
[  338.467358][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  338.481781][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  338.521929][ T7908] 8021q: adding VLAN 0 to HW filter on device team0
[  338.600232][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  338.624623][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  338.664048][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  338.694504][ T5709] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.701759][ T5709] bridge0: port 1(bridge_slave_0) entered forwarding state
[  338.775716][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  338.806482][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  338.813840][   T27] kauditd_printk_skb: 7 callbacks suppressed
[  338.813859][   T27] audit: type=1326 audit(1745390982.389:1891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  338.835659][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  338.894724][ T5709] bridge0: port 2(bridge_slave_1) entered blocking state
[  338.895376][   T27] audit: type=1326 audit(1745390982.439:1892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  338.901999][ T5709] bridge0: port 2(bridge_slave_1) entered forwarding state
[  338.962922][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  338.990220][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  339.015578][   T27] audit: type=1326 audit(1745390982.439:1893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  339.079290][ T5354] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  339.095866][   T27] audit: type=1326 audit(1745390982.439:1894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  339.131670][ T5354] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  339.155420][ T5354] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  339.173241][ T5354] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  339.181831][   T27] audit: type=1326 audit(1745390982.439:1895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  339.215708][ T8159] loop2: detected capacity change from 0 to 512
[  339.223803][ T8159] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  339.247982][ T8159] EXT4-fs (loop2): orphan cleanup on readonly fs
[  339.255706][ T8159] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[  339.265442][ T8159] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  339.268863][ T5354] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  339.275484][ T8159] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.1197: Failed to acquire dquot type 1
[  339.284496][ T5354] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  339.307837][ T8159] EXT4-fs (loop2): 1 truncate cleaned up
[  339.312579][ T5354] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  339.328015][ T8162] random: crng reseeded on system resumption
[  339.336766][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  339.378241][ T8159] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  339.389563][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  339.415550][ T7908] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  339.416391][   T27] audit: type=1326 audit(1745390982.439:1896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  339.458637][   T27] audit: type=1326 audit(1745390982.439:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  339.483600][   T27] audit: type=1326 audit(1745390982.439:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  339.956436][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  340.780495][ T8177] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1201'.
[  340.837424][ T8177] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  340.863976][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  340.880764][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  340.906325][ T8177] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  340.923310][ T7908] 8021q: adding VLAN 0 to HW filter on device batadv0
[  341.342516][ T8191] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1205'.
[  342.278427][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  342.290428][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  342.329880][ T7908] device veth0_vlan entered promiscuous mode
[  342.340047][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  342.369631][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  342.417636][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  342.441158][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  342.467539][ T7908] device veth1_vlan entered promiscuous mode
[  342.549032][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  342.578238][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  342.598921][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  342.618296][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  342.752336][ T7908] device veth0_macvtap entered promiscuous mode
[  344.935581][ T8220] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1212'.
[  344.950021][ T7908] device veth1_macvtap entered promiscuous mode
[  344.990549][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.008417][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.021563][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.041042][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.053071][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.069947][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.080410][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.097383][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.114154][ T7908] batman_adv: batadv0: Interface activated: batadv_slave_0
[  345.131269][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  345.154608][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.165637][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  345.176358][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.186317][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  345.196808][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.206713][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  345.217864][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.229467][ T7908] batman_adv: batadv0: Interface activated: batadv_slave_1
[  345.245293][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  345.270446][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  345.279003][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  345.288099][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  345.297304][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  345.306785][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  345.369712][ T8229] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1216'.
[  345.468462][ T7908] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  345.477579][ T7908] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  345.484757][ T8232] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1217'.
[  345.487640][ T7908] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  345.504167][ T7908] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  345.536278][ T8232] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  345.555935][ T8232] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  345.655790][   T27] kauditd_printk_skb: 12 callbacks suppressed
[  345.655805][   T27] audit: type=1326 audit(1745390989.239:1911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  345.703511][   T27] audit: type=1326 audit(1745390989.269:1912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  345.771268][   T27] audit: type=1326 audit(1745390989.269:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  345.794244][   T27] audit: type=1326 audit(1745390989.269:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  345.856003][   T27] audit: type=1326 audit(1745390989.269:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  345.904853][ T4412] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  345.921180][ T4412] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  345.935381][   T27] audit: type=1326 audit(1745390989.269:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  345.960650][   T27] audit: type=1326 audit(1745390989.269:1917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  345.984045][   T27] audit: type=1326 audit(1745390989.269:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  346.861418][ T5709] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  346.903195][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  346.912748][   T27] audit: type=1326 audit(1745390989.269:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  346.933708][ T5709] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  347.014511][   T27] audit: type=1326 audit(1745390989.269:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8236 comm="syz.0.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  347.064863][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  347.109325][ T8248] random: crng reseeded on system resumption
[  347.166165][ T8253] xt_hashlimit: max too large, truncated to 1048576
[  347.492714][ T8260] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1225'.
[  348.296474][ T8261] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  348.322941][   T46] Bluetooth: hci5: Frame reassembly failed (-84)
[  348.802474][ T8276] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1234'.
[  348.812308][ T8276] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  348.828802][ T8276] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  350.326161][ T4267] Bluetooth: hci5: command 0x1003 tx timeout
[  350.334823][ T4265] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  350.546586][ T8300] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1238'.
[  352.432478][   T27] kauditd_printk_skb: 31 callbacks suppressed
[  352.432494][   T27] audit: type=1326 audit(1745390996.009:1952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  352.587362][   T27] audit: type=1326 audit(1745390996.049:1953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  352.624275][ T8319] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1247'.
[  352.645053][   T27] audit: type=1326 audit(1745390996.049:1954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  352.647072][ T8315] random: crng reseeded on system resumption
[  352.668065][   T27] audit: type=1326 audit(1745390996.149:1955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  352.698307][   T27] audit: type=1326 audit(1745390996.149:1956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  352.721051][   T27] audit: type=1326 audit(1745390996.199:1957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  352.955435][   T27] audit: type=1326 audit(1745390996.199:1958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  353.471870][   T27] audit: type=1326 audit(1745390996.199:1959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  353.595434][   T27] audit: type=1326 audit(1745390996.219:1960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  353.693937][   T27] audit: type=1326 audit(1745390996.219:1961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8314 comm="syz.2.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  353.721307][ T8329] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1250'.
[  353.749239][ T8329] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  353.765623][ T8329] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  354.131467][ T8339] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1254'.
[  354.403821][ T8350] loop3: detected capacity change from 0 to 512
[  354.414691][ T8350] EXT4-fs: Ignoring removed orlov option
[  354.430558][ T8350] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  354.591436][ T8350] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  354.606967][ T8350] ext4 filesystem being mounted at /243/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  355.563746][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  355.932645][ T8376] random: crng reseeded on system resumption
[  356.674586][ T8395] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1271'.
[  357.079413][ T8403] loop2: detected capacity change from 0 to 128
[  357.108173][ T8403] FAT-fs (loop2): bogus number of reserved sectors
[  357.142386][ T8403] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  357.346061][ T8403] FAT-fs (loop2): Can't find a valid FAT filesystem
[  358.071712][   T27] kauditd_printk_skb: 78 callbacks suppressed
[  358.071730][   T27] audit: type=1326 audit(1745391001.649:2040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  358.155298][   T27] audit: type=1326 audit(1745391001.649:2041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  358.164941][ T8417] syz.3.1281[8417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  358.205399][   T27] audit: type=1326 audit(1745391001.699:2042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  358.251415][ T8417] syz.3.1281[8417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  358.281026][   T27] audit: type=1326 audit(1745391001.699:2043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  358.373488][   T27] audit: type=1326 audit(1745391001.699:2044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  358.396123][   T27] audit: type=1326 audit(1745391001.699:2045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  358.419855][   T27] audit: type=1326 audit(1745391001.699:2046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  358.464574][   T27] audit: type=1326 audit(1745391001.699:2047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  359.089358][   T27] audit: type=1326 audit(1745391001.699:2048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  359.220966][   T27] audit: type=1326 audit(1745391001.699:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8410 comm="syz.1.1279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  359.332751][ T8430] loop5: detected capacity change from 0 to 512
[  359.337286][ T8425] random: crng reseeded on system resumption
[  359.398434][ T8430] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c119, mo2=0002]
[  359.445953][ T8430] System zones: 0-2, 18-18, 34-35
[  359.486995][ T8430] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  359.538676][ T8430] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  359.694172][ T7908] EXT4-fs (loop5): unmounting filesystem.
[  360.983431][ T8458] loop1: detected capacity change from 0 to 512
[  361.023418][ T8459] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  361.261431][ T8458] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  361.275466][ T8458] ext4 filesystem being mounted at /277/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  363.850824][ T8502] loop2: detected capacity change from 0 to 512
[  363.890281][   T27] kauditd_printk_skb: 122 callbacks suppressed
[  363.890298][   T27] audit: type=1326 audit(1745391007.469:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  363.940125][ T8502] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c119, mo2=0002]
[  363.964820][ T8502] System zones: 0-2, 18-18, 34-35
[  363.978912][   T27] audit: type=1326 audit(1745391007.509:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  364.007016][ T8504] random: crng reseeded on system resumption
[  364.020326][ T8502] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  364.073079][   T27] audit: type=1326 audit(1745391007.509:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  364.112504][ T8502] ext4 filesystem being mounted at /252/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  364.195268][   T27] audit: type=1326 audit(1745391007.539:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  364.275303][   T27] audit: type=1326 audit(1745391007.539:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8507 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe8061c0a25 code=0x7ffc0000
[  364.304728][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  364.353489][   T27] audit: type=1326 audit(1745391007.589:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  364.485410][   T27] audit: type=1326 audit(1745391007.589:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  364.595135][   T27] audit: type=1326 audit(1745391007.589:2179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe80612a359 code=0x7ffc0000
[  364.625312][   T27] audit: type=1326 audit(1745391007.589:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  365.218050][   T27] audit: type=1326 audit(1745391007.589:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.5.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  365.569293][ T8522] loop3: detected capacity change from 0 to 512
[  365.584197][ T8522] EXT4-fs: Ignoring removed orlov option
[  365.624380][ T8522] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  365.710229][ T8522] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  365.720148][ T8522] ext4 filesystem being mounted at /253/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  365.797504][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  365.899727][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  365.952109][ T8531] netlink: 'syz.2.1313': attribute type 13 has an invalid length.
[  366.502741][ T8546] loop1: detected capacity change from 0 to 8192
[  366.895254][ T8531] bridge0: port 2(bridge_slave_1) entered disabled state
[  366.902635][ T8531] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.777664][ T8570] random: crng reseeded on system resumption
[  367.892799][ T8577] loop1: detected capacity change from 0 to 512
[  367.983217][ T8577] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  368.000201][ T8577] ext4 filesystem being mounted at /283/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  368.092719][ T8531] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  368.193601][ T8531] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  369.300196][   T27] kauditd_printk_skb: 96 callbacks suppressed
[  369.300214][   T27] audit: type=1326 audit(1745391012.879:2278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.349608][ T8593] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  369.360184][   T27] audit: type=1326 audit(1745391012.919:2279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.421175][   T27] audit: type=1326 audit(1745391012.919:2280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.472572][   T27] audit: type=1326 audit(1745391012.919:2281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.525833][   T27] audit: type=1326 audit(1745391012.919:2282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.575245][   T27] audit: type=1326 audit(1745391012.919:2283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.633454][   T27] audit: type=1326 audit(1745391012.919:2284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.682366][   T27] audit: type=1326 audit(1745391012.919:2285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.689734][ T8599] loop3: detected capacity change from 0 to 8192
[  369.712939][   T27] audit: type=1326 audit(1745391012.919:2286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.737765][   T27] audit: type=1326 audit(1745391012.919:2287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8592 comm="syz.3.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  369.805756][ T8531] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  369.814694][ T8531] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  369.826344][ T8531] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  369.835903][ T8531] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  370.089206][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  370.110919][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  370.126637][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  370.146491][ T8595] device bridge_slave_0 left promiscuous mode
[  370.153449][ T8595] bridge0: port 1(bridge_slave_0) entered disabled state
[  370.189911][ T8595] device bridge_slave_1 left promiscuous mode
[  370.223667][ T8595] bridge0: port 2(bridge_slave_1) entered disabled state
[  370.251250][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  370.298135][ T8595] bond0: (slave bond_slave_0): Releasing backup interface
[  370.352043][ T8595] bond0: (slave bond_slave_1): Releasing backup interface
[  370.458169][ T8595] team0: Port device team_slave_0 removed
[  370.501531][ T8595] team0: Port device team_slave_1 removed
[  370.522533][ T8595] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  370.551628][ T8595] batman_adv: batadv0: Removing interface: batadv_slave_0
[  370.572522][ T8595] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  370.588962][ T8595] batman_adv: batadv0: Removing interface: batadv_slave_1
[  371.131381][ T8615] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1340'.
[  372.448791][ T8613] random: crng reseeded on system resumption
[  372.475808][ T8615] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  372.524203][ T8615] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  372.555744][ T8625] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  372.691903][ T8628] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1344'.
[  372.779263][ T8632] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1345'.
[  372.959980][ T8632] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1345'.
[  373.137944][ T8645] 9pnet_fd: Insufficient options for proto=fd
[  373.231349][ T8632] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1345'.
[  375.293149][ T8663] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1356'.
[  375.333261][ T8663] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  375.373692][ T8663] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  375.558432][   T27] kauditd_printk_skb: 122 callbacks suppressed
[  375.558451][   T27] audit: type=1326 audit(1745391019.139:2410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  375.623521][ T8676] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1360'.
[  375.641662][   T27] audit: type=1326 audit(1745391019.179:2411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  375.641901][ T8672] random: crng reseeded on system resumption
[  375.694534][   T27] audit: type=1326 audit(1745391019.199:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  375.743257][   T27] audit: type=1326 audit(1745391019.199:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8677 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc3631c0a25 code=0x7ffc0000
[  375.792935][   T27] audit: type=1326 audit(1745391019.219:2414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  375.836712][   T27] audit: type=1326 audit(1745391019.219:2415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  375.888068][   T27] audit: type=1326 audit(1745391019.219:2416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc36312a359 code=0x7ffc0000
[  375.914851][   T27] audit: type=1326 audit(1745391019.219:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  375.939424][   T27] audit: type=1326 audit(1745391019.219:2418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  375.991102][   T27] audit: type=1326 audit(1745391019.219:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  377.490597][ T8711] random: crng reseeded on system resumption
[  377.837925][ T8722] program syz.3.1376 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  377.962589][ T8724] tipc: Started in network mode
[  377.991908][ T8724] tipc: Node identity ac14140f, cluster identity 4711
[  378.042331][ T8724] tipc: New replicast peer: 255.255.255.83
[  378.076769][ T8724] tipc: Enabled bearer <udp:£ >, priority 10
[  378.488636][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  378.495012][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  379.147918][ T8761] random: crng reseeded on system resumption
[  379.224792][ T4328] tipc: Node number set to 2886997007
[  380.753817][   T27] kauditd_printk_skb: 76 callbacks suppressed
[  380.753836][   T27] audit: type=1326 audit(1745391024.329:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  380.859855][   T27] audit: type=1326 audit(1745391024.369:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.007341][   T27] audit: type=1326 audit(1745391024.369:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.067480][ T8805] device syzkaller0 entered promiscuous mode
[  381.086011][   T27] audit: type=1326 audit(1745391024.369:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.126062][ T8820] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1406'.
[  381.163693][   T27] audit: type=1326 audit(1745391024.379:2500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.202511][   T27] audit: type=1326 audit(1745391024.379:2501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.204637][ T8822] loop1: detected capacity change from 0 to 512
[  381.244263][   T27] audit: type=1326 audit(1745391024.379:2502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.268218][   T27] audit: type=1326 audit(1745391024.379:2503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.291165][   T27] audit: type=1326 audit(1745391024.379:2504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.314296][   T27] audit: type=1326 audit(1745391024.379:2505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.1.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  381.315890][ T8822] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  381.473051][ T8822] ext4 filesystem being mounted at /299/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  385.023573][ T8820] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  385.040901][ T8820] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  385.399203][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  385.570442][ T8872] sg_write: data in/out 122/14 bytes for SCSI command 0x1f-- guessing data in;
[  385.570442][ T8872]    program syz.1.1421 not setting count and/or reply_len properly
[  385.635780][ T8869] device syzkaller0 entered promiscuous mode
[  385.818217][ T8882] loop1: detected capacity change from 0 to 512
[  385.825897][ T8882] EXT4-fs: inline encryption not supported
[  385.848486][ T8882] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  385.865733][ T8882] ext4 filesystem being mounted at /302/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  385.971784][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  386.142697][ T8888] loop1: detected capacity change from 0 to 512
[  386.152462][ T8888] EXT4-fs: Ignoring removed mblk_io_submit option
[  386.230470][ T8888] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[  386.234185][ T8894] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1430'.
[  386.259519][ T8888] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.1428: attempt to clear invalid blocks 2 len 1
[  386.294923][ T8888] EXT4-fs (loop1): Remounting filesystem read-only
[  386.302147][ T8888] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  386.328803][ T8888] EXT4-fs (loop1): Remounting filesystem read-only
[  386.335856][ T8888] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.1428: invalid indirect mapped block 1819239214 (level 0)
[  386.350979][ T8888] EXT4-fs (loop1): Remounting filesystem read-only
[  386.359495][ T8888] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.1428: invalid indirect mapped block 1819239214 (level 1)
[  386.375594][ T8888] EXT4-fs (loop1): Remounting filesystem read-only
[  386.383927][ T8888] EXT4-fs (loop1): 1 truncate cleaned up
[  386.390129][ T8888] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  386.512474][ T8900] loop5: detected capacity change from 0 to 512
[  386.555533][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  386.618755][ T8900] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  386.633229][ T8900] ext4 filesystem being mounted at /32/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  386.727316][   T27] kauditd_printk_skb: 19 callbacks suppressed
[  386.727336][   T27] audit: type=1800 audit(1745391030.309:2525): pid=8900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1432" name="file1" dev="loop5" ino=15 res=0 errno=0
[  390.304004][ T8894] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  390.313696][ T8894] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  390.329793][ T8919] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1440'.
[  390.623403][ T7908] EXT4-fs (loop5): unmounting filesystem.
[  390.730496][   T27] audit: type=1326 audit(1745391034.299:2526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  390.768833][ T8944] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  390.809793][   T27] audit: type=1326 audit(1745391034.309:2527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  390.880428][   T27] audit: type=1326 audit(1745391034.309:2528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  390.918646][   T27] audit: type=1326 audit(1745391034.309:2529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  390.948081][   T27] audit: type=1326 audit(1745391034.309:2530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  390.984896][   T27] audit: type=1326 audit(1745391034.309:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  391.013268][   T27] audit: type=1326 audit(1745391034.309:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  391.041554][   T27] audit: type=1326 audit(1745391034.309:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  391.069881][   T27] audit: type=1326 audit(1745391034.319:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.3.1448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc36318e169 code=0x7ffc0000
[  392.227143][ T8964] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1455'.
[  392.269453][ T8964] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  392.343402][ T8964] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  392.478262][ T8969] device syzkaller0 entered promiscuous mode
[  393.980050][ T8933] Set syz1 is full, maxelem 65536 reached
[  394.180454][ T8994] loop1: detected capacity change from 0 to 2048
[  394.253766][ T8994] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  394.268021][ T8994] ext4 filesystem being mounted at /313/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  397.389063][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  397.545104][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1473'.
[  397.688330][ T9021] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1474'.
[  398.498196][ T9021] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  398.508124][ T9024] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1476'.
[  398.524443][ T9021] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  399.071714][   T27] kauditd_printk_skb: 25 callbacks suppressed
[  399.071731][   T27] audit: type=1326 audit(1745391042.649:2560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  399.152561][   T27] audit: type=1326 audit(1745391042.679:2561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  399.222119][   T27] audit: type=1326 audit(1745391042.679:2562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  399.298228][   T27] audit: type=1326 audit(1745391042.679:2563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  399.321356][   T27] audit: type=1326 audit(1745391042.679:2564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  399.345071][   T27] audit: type=1326 audit(1745391042.689:2565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  399.380837][   T27] audit: type=1326 audit(1745391042.689:2566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  399.435786][   T27] audit: type=1326 audit(1745391042.689:2567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  400.091425][ T9055] loop5: detected capacity change from 0 to 512
[  400.159508][   T27] audit: type=1326 audit(1745391042.689:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  400.208491][   T27] audit: type=1326 audit(1745391042.689:2569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9047 comm="syz.2.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  400.319182][ T9059] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1491'.
[  400.322280][ T9055] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  400.352977][ T9055] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  400.387157][ T9059] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  400.470683][ T9059] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  400.615523][ T7908] EXT4-fs (loop5): unmounting filesystem.
[  401.008812][ T9090] program syz.5.1501 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  401.382412][ T9101] loop3: detected capacity change from 0 to 512
[  401.453844][ T9101] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  401.480051][ T9101] ext4 filesystem being mounted at /293/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  401.711637][ T4253] EXT4-fs (loop3): unmounting filesystem.
[  401.804631][ T9121] loop5: detected capacity change from 0 to 764
[  401.841277][ T9123] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1516'.
[  401.856710][ T9123] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  401.870356][ T9123] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  401.882053][ T9125] program syz.2.1517 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  401.907252][ T9121] Symlink component flag not implemented
[  401.914708][ T9121] Symlink component flag not implemented (7)
[  402.548601][ T9135] loop2: detected capacity change from 0 to 8192
[  403.675599][ T9160] program syz.1.1531 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  404.661717][ T9169] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1535'.
[  404.733856][ T9169] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  404.778962][ T9169] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  404.783842][ T9174] program syz.1.1534 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  405.574008][ T9179] loop2: detected capacity change from 0 to 1024
[  405.603122][ T9179] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869)
[  405.658248][ T9179] EXT4-fs (loop2): invalid journal inode
[  406.612474][ T9207] program syz.0.1546 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  408.177516][ T9234] loop1: detected capacity change from 0 to 164
[  408.222876][ T9234] Unable to read rock-ridge attributes
[  408.259051][ T9211] Set syz1 is full, maxelem 65536 reached
[  408.269397][ T9234] Unable to read rock-ridge attributes
[  408.508082][ T9247] program syz.1.1561 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  408.739701][ T9256] loop1: detected capacity change from 0 to 512
[  408.864925][ T9256] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  408.881146][ T9256] ext4 filesystem being mounted at /343/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  408.902534][   T27] kauditd_printk_skb: 43 callbacks suppressed
[  408.902553][   T27] audit: type=1800 audit(1745391052.479:2613): pid=9255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1565" name="file1" dev="loop1" ino=15 res=0 errno=0
[  410.118070][   T27] audit: type=1326 audit(1745391053.699:2614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.180181][   T27] audit: type=1326 audit(1745391053.729:2615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.270478][   T27] audit: type=1326 audit(1745391053.729:2616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.333455][   T27] audit: type=1326 audit(1745391053.729:2617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.411039][   T27] audit: type=1326 audit(1745391053.789:2618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.474805][   T27] audit: type=1326 audit(1745391053.809:2619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.547159][   T27] audit: type=1326 audit(1745391053.809:2620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.609708][   T27] audit: type=1326 audit(1745391053.809:2621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.680557][ T9286] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1574'.
[  410.710418][   T27] audit: type=1326 audit(1745391053.809:2622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7fe06978e169 code=0x7ffc0000
[  410.770523][ T4248] EXT4-fs (loop1): unmounting filesystem.
[  410.815340][ T9284] device syzkaller0 entered promiscuous mode
[  410.934390][ T9293] program syz.1.1575 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  410.984511][ T9295] xt_hashlimit: max too large, truncated to 1048576
[  411.064516][ T9295] smc: net device bond0 applied user defined pnetid SYZ0
[  411.200603][ T9309] 9pnet_fd: Insufficient options for proto=fd
[  411.282399][ T9311] loop5: detected capacity change from 0 to 512
[  411.326675][ T9311] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  411.342860][ T9311] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  411.371996][ T9311] EXT4-fs (loop5): shut down requested (0)
[  411.445272][ T7908] EXT4-fs (loop5): unmounting filesystem.
[  411.446218][ T9307] Set syz1 is full, maxelem 65536 reached
[  411.528768][ T9316] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  412.724596][ T9330] loop2: detected capacity change from 0 to 8192
[  412.877928][ T9336] program syz.0.1591 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  413.075787][ T9340] loop1: detected capacity change from 0 to 764
[  413.130975][ T9342] 9pnet_fd: Insufficient options for proto=fd
[  413.306387][ T9346] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  413.409537][ T9349] xt_CT: You must specify a L4 protocol and not use inversions on it
[  413.568063][ T9344] loop2: detected capacity change from 0 to 128
[  413.580106][ T9344] FAT-fs (loop2): bogus number of FAT structure
[  413.586677][ T9344] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  413.596569][ T9344] FAT-fs (loop2): Can't find a valid FAT filesystem
[  413.657710][ T9344] loop2: detected capacity change from 0 to 512
[  413.673522][ T9344] EXT4-fs (loop2): external journal device major/minor numbers have changed
[  413.711646][ T9344] block device autoloading is deprecated and will be removed.
[  413.724038][ T9344] EXT4-fs (loop2): couldn't read superblock of external journal
[  414.619257][ T9365] program syz.0.1602 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  415.735049][ T9375] 9pnet_fd: Insufficient options for proto=fd
[  415.906804][ T9373] loop2: detected capacity change from 0 to 8192
[  415.999429][   T27] kauditd_printk_skb: 83 callbacks suppressed
[  415.999447][   T27] audit: type=1800 audit(1745391059.589:2706): pid=9379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1605" name="file1" dev="loop2" ino=1048619 res=0 errno=0
[  417.685370][   T27] audit: type=1326 audit(1745391061.259:2707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  417.736821][   T27] audit: type=1326 audit(1745391061.259:2708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  417.765998][   T27] audit: type=1326 audit(1745391061.269:2709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  417.789176][   T27] audit: type=1326 audit(1745391061.269:2710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  417.812357][   T27] audit: type=1326 audit(1745391061.269:2711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  417.835039][   T27] audit: type=1326 audit(1745391061.269:2712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  417.858517][   T27] audit: type=1326 audit(1745391061.269:2713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  417.881818][   T27] audit: type=1326 audit(1745391061.269:2714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  417.904485][   T27] audit: type=1326 audit(1745391061.269:2715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9391 comm="syz.2.1612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  418.594806][ T9357] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1600'.
[  418.608229][ T9395] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1613'.
[  418.623987][ T9397] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1613'.
[  419.036547][ T9404] xt_hashlimit: max too large, truncated to 1048576
[  419.064737][ T9404] Cannot find add_set index 0 as target
[  419.081615][ T9406] 9pnet_fd: Insufficient options for proto=fd
[  420.106511][ T9409] loop5: detected capacity change from 0 to 8192
[  420.353777][ T9427] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1625'.
[  421.300228][ T9438] 9pnet_fd: Insufficient options for proto=fd
[  421.569949][   T27] kauditd_printk_skb: 42 callbacks suppressed
[  421.569972][   T27] audit: type=1326 audit(1745391065.119:2758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9445 comm="syz.2.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  421.661098][   T27] audit: type=1326 audit(1745391065.119:2759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9445 comm="syz.2.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  421.684218][   T27] audit: type=1326 audit(1745391065.119:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9445 comm="syz.2.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  421.725319][   T27] audit: type=1326 audit(1745391065.119:2761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9445 comm="syz.2.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  422.527390][   T27] audit: type=1326 audit(1745391066.109:2762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.2.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  422.608017][   T27] audit: type=1326 audit(1745391066.159:2763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  422.610409][ T9458] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1638'.
[  422.631102][   T27] audit: type=1326 audit(1745391066.159:2764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9453 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c878e169 code=0x7ffc0000
[  422.631152][   T27] audit: type=1326 audit(1745391066.159:2765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.2.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  422.631192][   T27] audit: type=1326 audit(1745391066.159:2766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.2.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  422.631230][   T27] audit: type=1326 audit(1745391066.159:2767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.2.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff75658e169 code=0x7ffc0000
[  422.873844][ T9462] loop3: detected capacity change from 0 to 8192
[  423.003875][ T9464] device syzkaller0 entered promiscuous mode
[  423.042089][ T9474] 9pnet_fd: Insufficient options for proto=fd
[  423.942356][ T9495] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  424.311225][ T9505] 9pnet_fd: Insufficient options for proto=fd
[  424.557772][    T7] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  424.716497][ T9511] xt_CT: You must specify a L4 protocol and not use inversions on it
[  424.751393][ T9511] loop5: detected capacity change from 0 to 128
[  424.764912][ T9511] FAT-fs (loop5): bogus number of FAT structure
[  424.768286][    T7] usb 4-1: Using ep0 maxpacket: 32
[  424.771526][ T9511] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  424.787702][ T9511] FAT-fs (loop5): Can't find a valid FAT filesystem
[  424.808210][    T7] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  424.818921][    T7] usb 4-1: config 0 has no interfaces?
[  424.824451][    T7] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  424.833605][    T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.847389][    T7] usb 4-1: config 0 descriptor??
[  424.864854][ T9511] loop5: detected capacity change from 0 to 512
[  424.878545][ T9511] EXT4-fs (loop5): external journal device major/minor numbers have changed
[  424.898122][ T9511] EXT4-fs (loop5): couldn't read superblock of external journal
[  425.269413][ T4252] usb 4-1: USB disconnect, device number 2
[  425.893199][ T9519] loop3: detected capacity change from 0 to 8192
[  426.630787][   T27] kauditd_printk_skb: 194 callbacks suppressed
[  426.630804][   T27] audit: type=1326 audit(1745391070.209:2962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  426.703047][ T9526] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  426.755321][   T27] audit: type=1326 audit(1745391070.249:2963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  426.846538][   T27] audit: type=1326 audit(1745391070.249:2964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  426.909709][ T9532] 9pnet_fd: Insufficient options for proto=fd
[  426.949806][   T27] audit: type=1326 audit(1745391070.249:2965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  426.994420][ T9534] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1667'.
[  427.027158][   T27] audit: type=1326 audit(1745391070.249:2966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  427.101850][   T27] audit: type=1326 audit(1745391070.249:2967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  427.159772][   T27] audit: type=1326 audit(1745391070.249:2968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  427.222367][   T27] audit: type=1326 audit(1745391070.249:2969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  427.283982][   T27] audit: type=1326 audit(1745391070.249:2970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  427.335881][   T27] audit: type=1326 audit(1745391070.259:2971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.5.1662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  427.552824][ T9556] device syzkaller0 entered promiscuous mode
[  427.747867][ T9565] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  427.938332][ T9569] loop1: detected capacity change from 0 to 8192
[  428.293203][ T9572] random: crng reseeded on system resumption
[  429.522612][ T9582] 9pnet_fd: Insufficient options for proto=fd
[  429.663380][ T9585] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1683'.
[  429.927691][ T9597] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  430.135130][ T9603] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1689'.
[  431.790370][ T9603] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  431.845252][ T9603] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  431.991611][ T9610] random: crng reseeded on system resumption
[  432.143357][ T9618] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1695'.
[  432.184707][   T27] kauditd_printk_skb: 103 callbacks suppressed
[  432.184725][   T27] audit: type=1326 audit(1745391075.759:3075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  432.251689][   T27] audit: type=1326 audit(1745391075.799:3076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  432.277188][   T27] audit: type=1326 audit(1745391075.799:3077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  432.292859][ T9622] 9pnet_fd: Insufficient options for proto=fd
[  432.305644][   T27] audit: type=1326 audit(1745391075.799:3078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  432.329836][   T27] audit: type=1326 audit(1745391075.799:3079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80618e169 code=0x7ffc0000
[  432.369209][   T27] audit: type=1326 audit(1745391075.799:3080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe806190087 code=0x7ffc0000
[  432.991295][   T27] audit: type=1326 audit(1745391075.799:3081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fe80618fffc code=0x7ffc0000
[  433.145283][   T27] audit: type=1326 audit(1745391075.799:3082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fe80618ff34 code=0x7ffc0000
[  433.236097][   T27] audit: type=1326 audit(1745391075.799:3083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fe80618ff34 code=0x7ffc0000
[  433.265179][   T27] audit: type=1326 audit(1745391075.799:3084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9614 comm="syz.5.1692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe80618cdca code=0x7ffc0000
[  433.306459][ T9633] program syz.5.1698 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  433.332575][ T9632] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  433.360148][ T9635] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  433.804719][ T9648] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1703'.
[  433.869022][ T9648] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  433.927056][ T9648] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  434.078412][ T9655] device syzkaller0 entered promiscuous mode
[  434.439446][ T9660] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1706'.
[  434.840166][ T9671] loop5: detected capacity change from 0 to 512
[  434.888167][ T9673] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  434.906136][ T9671] 
[  434.908514][ T9671] ======================================================
[  434.915552][ T9671] WARNING: possible circular locking dependency detected
[  434.922601][ T9671] 6.1.134-syzkaller #0 Not tainted
[  434.927729][ T9671] ------------------------------------------------------
[  434.934766][ T9671] syz.5.1709/9671 is trying to acquire lock:
[  434.940768][ T9671] ffff888055a3e6d8 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x379/0x1cb0
[  434.950325][ T9671] 
[  434.950325][ T9671] but task is already holding lock:
[  434.957715][ T9671] ffff88807bf40208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_read_dquot+0x4a/0x100
[  434.967170][ T9671] 
[  434.967170][ T9671] which lock already depends on the new lock.
[  434.967170][ T9671] 
[  434.977605][ T9671] 
[  434.977605][ T9671] the existing dependency chain (in reverse order) is:
[  434.986645][ T9671] 
[  434.986645][ T9671] -> #2 (&s->s_dquot.dqio_sem){++++}-{3:3}:
[  434.994768][ T9671]        lock_acquire+0x1f8/0x5a0
[  434.999838][ T9671]        down_read+0xad/0xa30
[  435.004548][ T9671]        v2_read_dquot+0x4a/0x100
[  435.009636][ T9671]        dquot_acquire+0x188/0x680
[  435.014758][ T9671]        ext4_acquire_dquot+0x2eb/0x4a0
[  435.020320][ T9671]        dqget+0x762/0xe90
[  435.024772][ T9671]        __dquot_initialize+0x2d9/0xea0
[  435.030354][ T9671]        ext4_file_open+0x2cf/0x710
[  435.035611][ T9671]        do_dentry_open+0x7f9/0x10f0
[  435.040932][ T9671]        path_openat+0x2644/0x2e60
[  435.046071][ T9671]        do_filp_open+0x230/0x480
[  435.051124][ T9671]        do_sys_openat2+0x13b/0x4f0
[  435.056350][ T9671]        __x64_sys_openat+0x243/0x290
[  435.061729][ T9671]        do_syscall_64+0x3b/0x80
[  435.066669][ T9671]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  435.073088][ T9671] 
[  435.073088][ T9671] -> #1 (&dquot->dq_lock){+.+.}-{3:3}:
[  435.080728][ T9671]        lock_acquire+0x1f8/0x5a0
[  435.085788][ T9671]        __mutex_lock+0x132/0xd80
[  435.090841][ T9671]        dquot_commit+0x57/0x510
[  435.095788][ T9671]        ext4_write_dquot+0x1fd/0x360
[  435.101164][ T9671]        mark_all_dquot_dirty+0xf7/0x400
[  435.106816][ T9671]        __dquot_free_space+0x956/0xe70
[  435.112392][ T9671]        ext4_free_blocks+0x1fb4/0x3020
[  435.117980][ T9671]        ext4_ext_remove_space+0x25c6/0x4f40
[  435.123995][ T9671]        ext4_ext_truncate+0x201/0x360
[  435.129492][ T9671]        ext4_truncate+0xa1d/0x1290
[  435.134725][ T9671]        ext4_setattr+0x10f5/0x1a00
[  435.139952][ T9671]        notify_change+0xce3/0xfc0
[  435.145094][ T9671]        do_truncate+0x21c/0x300
[  435.150046][ T9671]        path_openat+0x27e2/0x2e60
[  435.155166][ T9671]        do_filp_open+0x230/0x480
[  435.160207][ T9671]        do_sys_openat2+0x13b/0x4f0
[  435.165421][ T9671]        __x64_sys_openat+0x243/0x290
[  435.170805][ T9671]        do_syscall_64+0x3b/0x80
[  435.175753][ T9671]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  435.182183][ T9671] 
[  435.182183][ T9671] -> #0 (&ei->i_data_sem/2){++++}-{3:3}:
[  435.190015][ T9671]        validate_chain+0x1661/0x5950
[  435.195399][ T9671]        __lock_acquire+0x125b/0x1f80
[  435.200782][ T9671]        lock_acquire+0x1f8/0x5a0
[  435.205816][ T9671]        down_read+0xad/0xa30
[  435.210497][ T9671]        ext4_map_blocks+0x379/0x1cb0
[  435.215889][ T9671]        ext4_getblk+0x1eb/0x7c0
[  435.220829][ T9671]        ext4_bread+0x2a/0x170
[  435.225598][ T9671]        ext4_quota_read+0x1ae/0x2d0
[  435.230891][ T9671]        find_tree_dqentry+0x1db/0x1020
[  435.236442][ T9671]        find_tree_dqentry+0x6eb/0x1020
[  435.241994][ T9671]        find_tree_dqentry+0x6eb/0x1020
[  435.247546][ T9671]        find_tree_dqentry+0x6eb/0x1020
[  435.253096][ T9671]        qtree_read_dquot+0x546/0x7f0
[  435.258474][ T9671]        v2_read_dquot+0xbe/0x100
[  435.263589][ T9671]        dquot_acquire+0x188/0x680
[  435.268700][ T9671]        ext4_acquire_dquot+0x2eb/0x4a0
[  435.274252][ T9671]        dqget+0x762/0xe90
[  435.278673][ T9671]        __dquot_initialize+0x45e/0xea0
[  435.284244][ T9671]        ext4_process_orphan+0x57/0x2d0
[  435.289790][ T9671]        ext4_orphan_cleanup+0xb70/0x1400
[  435.295595][ T9671]        ext4_fill_super+0x84b2/0x89e0
[  435.301059][ T9671]        get_tree_bdev+0x3fe/0x620
[  435.306173][ T9671]        vfs_get_tree+0x88/0x270
[  435.311112][ T9671]        do_new_mount+0x2ba/0xb40
[  435.316159][ T9671]        __se_sys_mount+0x2d5/0x3c0
[  435.321360][ T9671]        do_syscall_64+0x3b/0x80
[  435.326315][ T9671]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  435.332742][ T9671] 
[  435.332742][ T9671] other info that might help us debug this:
[  435.332742][ T9671] 
[  435.342967][ T9671] Chain exists of:
[  435.342967][ T9671]   &ei->i_data_sem/2 --> &dquot->dq_lock --> &s->s_dquot.dqio_sem
[  435.342967][ T9671] 
[  435.356713][ T9671]  Possible unsafe locking scenario:
[  435.356713][ T9671] 
[  435.364177][ T9671]        CPU0                    CPU1
[  435.369537][ T9671]        ----                    ----
[  435.374900][ T9671]   lock(&s->s_dquot.dqio_sem);
[  435.379756][ T9671]                                lock(&dquot->dq_lock);
[  435.386694][ T9671]                                lock(&s->s_dquot.dqio_sem);
[  435.394067][ T9671]   lock(&ei->i_data_sem/2);
[  435.398666][ T9671] 
[  435.398666][ T9671]  *** DEADLOCK ***
[  435.398666][ T9671] 
[  435.406805][ T9671] 3 locks held by syz.5.1709/9671:
[  435.411913][ T9671]  #0: ffff88807bf400e0 (&type->s_umount_key#28/1){+.+.}-{3:3}, at: alloc_super+0x217/0x930
[  435.422031][ T9671]  #1: ffff8880720a3e68 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_acquire+0x64/0x680
[  435.431440][ T9671]  #2: ffff88807bf40208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_read_dquot+0x4a/0x100
[  435.441286][ T9671] 
[  435.441286][ T9671] stack backtrace:
[  435.447169][ T9671] CPU: 1 PID: 9671 Comm: syz.5.1709 Not tainted 6.1.134-syzkaller #0
[  435.455236][ T9671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  435.465293][ T9671] Call Trace:
[  435.468586][ T9671]  <TASK>
[  435.471543][ T9671]  dump_stack_lvl+0x1e3/0x2cb
[  435.476231][ T9671]  ? nf_tcp_handle_invalid+0x647/0x647
[  435.481788][ T9671]  ? print_circular_bug+0x12b/0x1a0
[  435.486999][ T9671]  check_noncircular+0x2fa/0x3b0
[  435.491951][ T9671]  ? add_chain_block+0x850/0x850
[  435.496898][ T9671]  ? queued_spin_lock_slowpath+0x42/0x50
[  435.502542][ T9671]  ? lockdep_lock+0x1a7/0x2a0
[  435.507227][ T9671]  ? mark_lock+0x9a/0x340
[  435.511564][ T9671]  ? _find_first_zero_bit+0xd0/0x100
[  435.516862][ T9671]  validate_chain+0x1661/0x5950
[  435.521730][ T9671]  ? validate_chain+0x112/0x5950
[  435.526679][ T9671]  ? reacquire_held_locks+0x660/0x660
[  435.532067][ T9671]  ? validate_chain+0x112/0x5950
[  435.537018][ T9671]  ? validate_chain+0x112/0x5950
[  435.541964][ T9671]  ? reacquire_held_locks+0x660/0x660
[  435.547365][ T9671]  ? mark_lock+0x9a/0x340
[  435.551721][ T9671]  ? mark_lock+0x9a/0x340
[  435.556064][ T9671]  __lock_acquire+0x125b/0x1f80
[  435.560938][ T9671]  lock_acquire+0x1f8/0x5a0
[  435.565455][ T9671]  ? ext4_map_blocks+0x379/0x1cb0
[  435.570489][ T9671]  ? read_lock_is_recursive+0x10/0x10
[  435.575873][ T9671]  ? __might_sleep+0xb0/0xb0
[  435.580482][ T9671]  down_read+0xad/0xa30
[  435.584651][ T9671]  ? ext4_map_blocks+0x379/0x1cb0
[  435.589678][ T9671]  ? __lock_acquire+0x1f80/0x1f80
[  435.594723][ T9671]  ? unwind_get_return_address+0x49/0x80
[  435.600383][ T9671]  ? arch_stack_walk+0xf3/0x140
[  435.605254][ T9671]  ? __down_common+0x8b0/0x8b0
[  435.610027][ T9671]  ? percpu_counter_add_batch+0x142/0x160
[  435.615764][ T9671]  ? rcu_is_watching+0x11/0xb0
[  435.620541][ T9671]  ? ext4_es_lookup_extent+0x44a/0xb70
[  435.626014][ T9671]  ext4_map_blocks+0x379/0x1cb0
[  435.630871][ T9671]  ? __stack_depot_save+0x36/0x470
[  435.636007][ T9671]  ? find_tree_dqentry+0x59/0x1020
[  435.641128][ T9671]  ? find_tree_dqentry+0x6eb/0x1020
[  435.646336][ T9671]  ? find_tree_dqentry+0x6eb/0x1020
[  435.651543][ T9671]  ? ext4_issue_zeroout+0x250/0x250
[  435.656741][ T9671]  ? dquot_acquire+0x188/0x680
[  435.661514][ T9671]  ? ext4_fill_super+0x84b2/0x89e0
[  435.666629][ T9671]  ? get_tree_bdev+0x3fe/0x620
[  435.671420][ T9671]  ? vfs_get_tree+0x88/0x270
[  435.676032][ T9671]  ? do_new_mount+0x2ba/0xb40
[  435.680727][ T9671]  ? __se_sys_mount+0x2d5/0x3c0
[  435.685588][ T9671]  ? do_syscall_64+0x3b/0x80
[  435.690186][ T9671]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  435.696267][ T9671]  ext4_getblk+0x1eb/0x7c0
[  435.700689][ T9671]  ? ext4_get_block_unwritten+0x100/0x100
[  435.706418][ T9671]  ext4_bread+0x2a/0x170
[  435.710696][ T9671]  ext4_quota_read+0x1ae/0x2d0
[  435.715490][ T9671]  find_tree_dqentry+0x1db/0x1020
[  435.720614][ T9671]  ? ext4_show_options+0x50/0x50
[  435.725564][ T9671]  ? make_kgid+0x6f0/0x6f0
[  435.729985][ T9671]  ? __brelse+0x55/0x90
[  435.734154][ T9671]  find_tree_dqentry+0x6eb/0x1020
[  435.739230][ T9671]  find_tree_dqentry+0x6eb/0x1020
[  435.744274][ T9671]  find_tree_dqentry+0x6eb/0x1020
[  435.749314][ T9671]  qtree_read_dquot+0x546/0x7f0
[  435.754177][ T9671]  ? remove_tree+0x21c0/0x21c0
[  435.758950][ T9671]  ? __mutex_lock+0x2f7/0xd80
[  435.763638][ T9671]  v2_read_dquot+0xbe/0x100
[  435.768149][ T9671]  dquot_acquire+0x188/0x680
[  435.772746][ T9671]  ? ext4_acquire_dquot+0x2cc/0x4a0
[  435.777963][ T9671]  ext4_acquire_dquot+0x2eb/0x4a0
[  435.782997][ T9671]  dqget+0x762/0xe90
[  435.786900][ T9671]  __dquot_initialize+0x45e/0xea0
[  435.791932][ T9671]  ? dquot_initialize+0x20/0x20
[  435.796789][ T9671]  ? ext4_read_inode_bitmap+0xff0/0x11f0
[  435.802435][ T9671]  ext4_process_orphan+0x57/0x2d0
[  435.807465][ T9671]  ext4_orphan_cleanup+0xb70/0x1400
[  435.812694][ T9671]  ? ext4_orphan_del+0xc50/0xc50
[  435.817635][ T9671]  ? __init_swait_queue_head+0xaa/0x140
[  435.823190][ T9671]  ? errseq_check_and_advance+0x60/0x110
[  435.828826][ T9671]  ext4_fill_super+0x84b2/0x89e0
[  435.833770][ T9671]  ? vsnprintf+0x1c70/0x1c70
[  435.838385][ T9671]  ? ext4_parse_test_dummy_encryption+0xa0/0xa0
[  435.844635][ T9671]  ? snprintf+0xd6/0x120
[  435.848893][ T9671]  ? set_blocksize+0x1c6/0x350
[  435.853664][ T9671]  get_tree_bdev+0x3fe/0x620
[  435.858261][ T9671]  ? ext4_parse_test_dummy_encryption+0xa0/0xa0
[  435.864513][ T9671]  vfs_get_tree+0x88/0x270
[  435.868937][ T9671]  do_new_mount+0x2ba/0xb40
[  435.873447][ T9671]  ? ns_capable+0x85/0xe0
[  435.877807][ T9671]  ? do_move_mount_old+0x160/0x160
[  435.882932][ T9671]  __se_sys_mount+0x2d5/0x3c0
[  435.887626][ T9671]  ? __x64_sys_mount+0xc0/0xc0
[  435.892399][ T9671]  ? syscall_enter_from_user_mode+0x2e/0x230
[  435.898395][ T9671]  ? lockdep_hardirqs_on+0x94/0x130
[  435.903613][ T9671]  ? __x64_sys_mount+0x1c/0xc0
[  435.908389][ T9671]  do_syscall_64+0x3b/0x80
[  435.912814][ T9671]  ? clear_bhb_loop+0x45/0xa0
[  435.917528][ T9671]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  435.923441][ T9671] RIP: 0033:0x7fe80618f90a
[  435.927864][ T9671] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  435.947482][ T9671] RSP: 002b:00007fe806f64e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  435.955901][ T9671] RAX: ffffffffffffffda RBX: 00007fe806f64ef0 RCX: 00007fe80618f90a
[  435.963876][ T9671] RDX: 0000200000000040 RSI: 00002000000003c0 RDI: 00007fe806f64eb0
[  435.971849][ T9671] RBP: 0000200000000040 R08: 00007fe806f64ef0 R09: 000000000201000c
[  435.979821][ T9671] R10: 000000000201000c R11: 0000000000000246 R12: 00002000000003c0
[  435.987795][ T9671] R13: 00007fe806f64eb0 R14: 0000000000000535 R15: 00002000000001c0
[  435.995775][ T9671]  </TASK>
[  436.039609][ T9671] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1709: bg 0: block 248: padding at end of block bitmap is not set
[  436.080934][ T9682] random: crng reseeded on system resumption
[  436.087356][ T9671] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.1709: Failed to acquire dquot type 1
[  436.102858][ T9682] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[  436.111624][ T9682] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[  436.120736][ T9682] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[  436.132461][ T9671] EXT4-fs (loop5): 1 truncate cleaned up
[  436.138322][ T9671] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  436.165541][ T9671] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.253872][ T7908] EXT4-fs (loop5): unmounting filesystem.
[  436.268437][ T9682] PM: hibernation: Basic memory bitmaps created
[  436.313419][ T9681] PM: hibernation: Basic memory bitmaps freed
[  439.927266][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  439.933779][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  442.005365][ T4267] Bluetooth: hci1: command 0x0406 tx timeout