last executing test programs:

6m55.140882752s ago: executing program 1 (id=377):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000100)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@measure}, {@smackfsfloor}, {@appraise_type}]}, 0xfd, 0x588, &(0x7f0000000680)="$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")
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f0000001240)='./file1\x00', 0x4)

6m54.889460022s ago: executing program 1 (id=379):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fedbdf25080000001800028014000380100001800400030008000100050000000c00018008000100", @ANYRES32=r3], 0x38}, 0x1, 0x0, 0x0, 0x40801}, 0x14)

6m54.740932499s ago: executing program 1 (id=380):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x3c, 0x0, 0xee, 0x7ffc9ff9}]})
socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x3, 0x40)
syz_usb_disconnect(r2)

6m53.693231643s ago: executing program 1 (id=384):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="02000000040000000f00000007"], 0x13)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x7, 0x3, 0x3, 0x0, 0xffffffffffffffff, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r2}, 0x10)

6m53.577372128s ago: executing program 1 (id=385):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ptrace$getenv(0x4201, 0x0, 0x7f, &(0x7f0000000040))
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = shmget$private(0x0, 0x2000, 0x100, &(0x7f0000ff9000/0x2000)=nil)
shmat(r4, &(0x7f0000000000/0x2000)=nil, 0x5000)
shmctl$SHM_LOCK(r4, 0xb)
shmctl$SHM_STAT_ANY(r4, 0xf, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x101042, 0xb0)
io_setup(0x6, &(0x7f00000003c0))

6m50.592454566s ago: executing program 1 (id=392):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='kmem_cache_free\x00', r2, 0x0, 0x80001}, 0x18)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff58)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f00000001c0)={'wpan1\x00', <r5=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="070000000400000008000000d900000000000000", @ANYRES32, @ANYBLOB="00000010000900000000000000009aebe8c1aa000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="0380c2000000aa65995fd676691159080045000030030190781200183f250000000000000000010000e00000017f"], 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYRESOCT=r3, @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000600)='task_rename\x00', r7, 0x0, 0x4b2}, 0x18)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f6873720000000014"], 0xfc}}, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x0)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffc000/0x1000)=nil)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r5, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c0001800500020000000000080004000500000008000100020000"], 0x7c}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@map=0x1, 0x7, 0x0, 0xce35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_SET_MESH(r10, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="ce00f3d942869c51b1368e0c57a256fc62920a0eb0e087", @ANYRES16=0x0, @ANYBLOB="020029bd7000ffdbdf250f00000005002a000000000008002b000000000008000b00000800000800340005000000050038000100000005002f00010000000800340000000100"], 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x40000c4)
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x172f}, 0x94)

6m35.555102219s ago: executing program 32 (id=392):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='kmem_cache_free\x00', r2, 0x0, 0x80001}, 0x18)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff58)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f00000001c0)={'wpan1\x00', <r5=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="070000000400000008000000d900000000000000", @ANYRES32, @ANYBLOB="00000010000900000000000000009aebe8c1aa000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="0380c2000000aa65995fd676691159080045000030030190781200183f250000000000000000010000e00000017f"], 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYRESOCT=r3, @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000600)='task_rename\x00', r7, 0x0, 0x4b2}, 0x18)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f6873720000000014"], 0xfc}}, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x0)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffc000/0x1000)=nil)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r5, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c0001800500020000000000080004000500000008000100020000"], 0x7c}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@map=0x1, 0x7, 0x0, 0xce35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_SET_MESH(r10, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="ce00f3d942869c51b1368e0c57a256fc62920a0eb0e087", @ANYRES16=0x0, @ANYBLOB="020029bd7000ffdbdf250f00000005002a000000000008002b000000000008000b00000800000800340005000000050038000100000005002f00010000000800340000000100"], 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x40000c4)
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x172f}, 0x94)

52.416639979s ago: executing program 0 (id=1843):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f00000004c0), 0x7, 0xd2002)
ioctl$BLKDISCARDZEROES(r0, 0x127c, &(0x7f0000000500))
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, 0x0, 0x40000d5)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x245, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004"], 0x48)
r2 = socket(0x8000000010, 0x2, 0x0)
write(r2, &(0x7f00000002c0)="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", 0xfc)

52.292358084s ago: executing program 0 (id=1844):
socket$kcm(0x29, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
syz_mount_image$vfat(&(0x7f0000009e40), &(0x7f0000000180)='./file1\x00', 0x8cdf6201961bca1f, &(0x7f00000002c0)=ANY=[@ANYRES64=0x0], 0x4a, 0x2dc, &(0x7f00000007c0)="$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")
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000780)={@ifindex, 0x37, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x92)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa2000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00'}, 0x18)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
syz_genetlink_get_family_id$gtp(&(0x7f0000000180), r1)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x8, 0x530, 0xc, 0x9, 0x59c})
ioctl$SG_BLKTRACETEARDOWN(r2, 0x1276, 0x20000000)
sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0xfffffff4}, 0x0)
recvmmsg(r1, &(0x7f0000005100)=[{{0x0, 0x0, 0x0}, 0x8000}, {{&(0x7f00000004c0)=@ieee802154, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000540)=""/123, 0x7b}, {&(0x7f0000000600)=""/200, 0xc8}, {&(0x7f0000000300)=""/22, 0x16}, {&(0x7f0000000400)=""/4, 0x4}, {&(0x7f0000000d00)=""/205, 0xcd}, {&(0x7f0000000700)=""/73, 0x49}, {&(0x7f0000000e00)=""/118, 0x76}], 0x7, &(0x7f0000000f00)=""/129, 0x81}, 0x5c}, {{0x0, 0x0, &(0x7f0000000fc0), 0x0, &(0x7f0000001000)=""/95, 0x5f}, 0x6}, {{&(0x7f0000001080)=@l2, 0x80, &(0x7f0000001100)=[{&(0x7f00000012c0)=""/232, 0xe8}, {&(0x7f00000013c0)=""/4096, 0x1000}], 0x2}, 0x3ff}, {{&(0x7f00000011c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x80, &(0x7f0000001140)=[{&(0x7f00000023c0)=""/125, 0x7d}, {&(0x7f0000002440)=""/178, 0xb2}], 0x2, &(0x7f0000002500)=""/94, 0x5e}, 0x2}, {{0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000001240)=""/6, 0x6}], 0x1, &(0x7f00000025c0)=""/225, 0xe1}, 0x80}, {{&(0x7f00000026c0)=@alg, 0x80, &(0x7f0000003b80)=[{&(0x7f0000002740)=""/4096, 0x1000}, {&(0x7f0000003740)=""/94, 0x5e}, {&(0x7f00000037c0)=""/145, 0x91}, {&(0x7f0000003880)=""/92, 0x5c}, {&(0x7f0000003900)=""/151, 0x97}, {&(0x7f00000039c0)=""/229, 0xe5}, {&(0x7f0000003ac0)=""/129, 0x81}, {&(0x7f0000003f00)=""/4096, 0x1000}], 0x8, &(0x7f0000003c00)=""/90, 0x5a}, 0x401}, {{0x0, 0x0, &(0x7f0000003d40)=[{&(0x7f0000003c80)=""/175, 0xaf}], 0x1, &(0x7f0000003d80)=""/33, 0x21}, 0x8}, {{&(0x7f0000003dc0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f0000003e80)=[{&(0x7f0000003e40)=""/59, 0x3b}, {&(0x7f0000004f00)=""/76, 0x4c}, {&(0x7f0000004f80)=""/115, 0x73}], 0x3, &(0x7f0000005000)=""/233, 0xe9}}], 0x9, 0x100, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000001280)=[{&(0x7f0000001180)="83", 0x1}], 0x1, 0x0)
socket$igmp(0x2, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xe, &(0x7f0000000d00)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340)={0x0, 0x10, 0x0, 0x2}, 0x10}, 0x94)

52.011151127s ago: executing program 0 (id=1847):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f0000000880)=ANY=[], 0x0, 0x7, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00'})
r3 = socket(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4, <r5=>0xffffffffffffffff}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
connect$netlink(r3, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000003040)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000570000"], 0x0}, 0x94)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x9}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r8, &(0x7f0000000100), &(0x7f00000001c0)=@udp6=r7, 0x1}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r8, &(0x7f0000000100), &(0x7f0000000140)=@udp6=r7, 0x1}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="383a587c0b80043c680c13000098", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9}, 0x10)
r10 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xd8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000400)='f2fs_background_gc\x00', r11}, 0x18)
getpgrp(0x0)
fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f00000018c0), 0x0, 0x0, 0x3)
ioctl$VT_RESIZEX(r10, 0x560a, &(0x7f00000006c0)={0x4, 0x66, 0x0, 0x0, 0x132, 0x3})

51.681334741s ago: executing program 0 (id=1848):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x1000, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000240)='./file0\x00', 0x240)

51.404838872s ago: executing program 0 (id=1849):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x100000000000000}, 0x18)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000400000008000700000000000800020005000000050008"], 0x34}, 0x1, 0x0, 0x0, 0x20008081}, 0x0)

50.978591891s ago: executing program 0 (id=1853):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f00000004c0), 0x7, 0xd2002)
ioctl$BLKDISCARDZEROES(r0, 0x127c, &(0x7f0000000500))
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, 0x0, 0x40000d5)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x245, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004"], 0x48)
r2 = socket(0x8000000010, 0x2, 0x0)
write(r2, &(0x7f00000002c0)="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", 0xfc)

50.52073226s ago: executing program 33 (id=1853):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f00000004c0), 0x7, 0xd2002)
ioctl$BLKDISCARDZEROES(r0, 0x127c, &(0x7f0000000500))
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, 0x0, 0x40000d5)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x245, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004"], 0x48)
r2 = socket(0x8000000010, 0x2, 0x0)
write(r2, &(0x7f00000002c0)="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", 0xfc)

10.244971342s ago: executing program 3 (id=1999):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x60442, 0x0)
r1 = dup(r0)
ioctl$PTP_PEROUT_REQUEST2(r1, 0x40043d0d, 0x0)

10.159490616s ago: executing program 3 (id=2001):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x3010002, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/419], 0x25, 0x34c, &(0x7f0000000200)="$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")
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f00000033c0), 0xffffffffffffffff)
r3 = socket$packet(0x11, 0x3, 0x300)
fchdir(r3)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0xc3)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$iommufd(0xffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f00000001c0)={{0x0, 0x0, 0xfffd, 0x8001}, 'syz1\x00'})
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3)
ioctl$UI_DEV_SETUP(r4, 0x5501, 0x0)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x34, r2, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'hsr0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x800)
sendmsg$SMC_PNETID_FLUSH(r1, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x800)
syz_usb_connect(0x2, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x201, 0x9a, 0xf1, 0xef, 0x40, 0x9022, 0xd421, 0x5280, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x1, 0x9, 0x40, 0x6, [{{0x9, 0x4, 0x17, 0x7, 0x0, 0x1d, 0x5c, 0x1b, 0x9}}]}}]}}, &(0x7f0000000480)={0x0, 0x0, 0x23, &(0x7f0000000240)=ANY=[@ANYBLOB="040f23"]})

5.729724925s ago: executing program 3 (id=2016):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000001c0))
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000040)={0x18, 0x2, {0x3, @dev={0xac, 0x14, 0x14, 0x2e}}}, 0x1e)
syz_usbip_server_init(0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
socket(0x10, 0x3, 0x0)
openat$sndseq(0xffffff9c, &(0x7f0000000000), 0x0)
r2 = syz_open_dev$sg(0x0, 0xf3c, 0x8630644572849689)
ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000040)=0x8000)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[], 0x248}}, 0x0)
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r4, 0x0, 0x0, 0x1000f4)
copy_file_range(r4, 0x0, r4, 0x0, 0xd, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x21c)
recvmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/229, 0xe5}, 0x12040)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000200)={0x0, 0x8, 0x398, 0x1, 0xc1a})

5.519111634s ago: executing program 5 (id=2020):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
r2 = open(&(0x7f0000000180)='.\x00', 0x0, 0x17)
flock(r2, 0x2)
flock(r2, 0x5)

4.675571611s ago: executing program 5 (id=2022):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000080), 0x10)
sendmsg$can_bcm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a00)=ANY=[@ANYBLOB="06"], 0x48}}, 0x0)

4.624088503s ago: executing program 4 (id=2023):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d00000004000000070000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x498, 0x320, 0xa, 0x148, 0x368, 0x60, 0x400, 0x2a8, 0x2a8, 0x400, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x368, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x1d, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4f8)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r8, r7, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r8}, &(0x7f0000000000), &(0x7f0000000080)=r4}, 0x20)
sendmsg$inet(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
recvmsg$unix(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)=""/229, 0xec1}], 0x1}, 0x0)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

4.016072528s ago: executing program 3 (id=2025):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x3010002, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/419], 0x25, 0x34c, &(0x7f0000000200)="$eJzs3T9oJGUUAPC3mU12EziTQji0Wu0EOS4RC21MOE44TKEni/8aFy7nn+wqZHEhFtlLo1gqNoJWdldoebVYiNhZ2HqCnIqN1x3c4cjuTHY3mcn9EbOn3u9XhJf3fW++byZDdhKSt6+uxua52Th/9eqVqNcrUV09tRrXKrEUM5FE5kIAAP8n19I0/kgzw8RTN5v90ULMZtHcVHYHAByF4ev/a8fGidrd3A0AMA2Fn//LPVuaffvItgUAHKHC6//D+4YP/Jq/OvqbAADgv+v5l15+Zm094myjUY/ovN9r9prx5Hh87Xy8Ee3YiJOxGDcisgeF7Glh8PHpM+unTzYGflmK5qCi14zo9HvN7ElhLRnW12I5FmMpr09H9cmgfnlY34iIC/3h+tGp9JqzsZCv/+NCbMRKLMb9hfqIM+unVxr5AZqdvfp+xG7U905isP8TsRjfzww/OReD2uxYg8zOcqNxKl3fV9+7WBvOAwAAAAAAAAAAAAAAAAAAAACAo3BiPvLuOY2lUf+btNPvvXc2n9Aojg/7+2TDeX+g3aw/UFrb687zQXKwP9D+/jy9ZjVm7uqZAwAAAAAAAAAAAAAAAAAAwL9Hd3suWu32xlZ3+93NcTDX7k9k3vr2i6/n4+CcN5NxJqrZ4fbNyXMxUZXEqDwdlafJvjl5kETkkyvRunhptOPJObXRWRTKB0GtMFTJ99Rqt4899POnZVV/jjNJjIbqpUtU8vUnhjr3Zamy/dw8qHS3V24x53KapoeV73xSrIp6RLXwhfsngm+uvP7AY93jj3cr1c3WV3nTh0ceXXzh8sef/7bZakd+adrtua3ujfRvr5VM3D+V/DpXSu6E8mB3nNnd6m63kh9+f/HBD787MDkpv3/Sycw7h6/15cHMXBYMtnk7ZzpbcvOXB69cH929d34xj3+22rq089OvexfzVlUT3yQ06gAAAAAAAAAAAAAAAAAAgKmY+F/xO/DEc0e3IwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYvvH7/08Eu4XM7QTX+1Ecqm1sdQ9dfH6qpwoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwD3srwAAAP//JT9zjQ==")
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f00000033c0), 0xffffffffffffffff)
r3 = socket$packet(0x11, 0x3, 0x300)
fchdir(r3)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0xc3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, 0x0, 0x0)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$iommufd(0xffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f00000001c0)={{0x0, 0x0, 0xfffd, 0x8001}, 'syz1\x00'})
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3)
ioctl$UI_DEV_SETUP(r4, 0x5501, 0x0)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x34, r2, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'hsr0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x800)
sendmsg$SMC_PNETID_FLUSH(r1, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x800)
syz_usb_connect(0x2, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x201, 0x9a, 0xf1, 0xef, 0x40, 0x9022, 0xd421, 0x5280, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x1, 0x9, 0x40, 0x6, [{{0x9, 0x4, 0x17, 0x7, 0x0, 0x1d, 0x5c, 0x1b, 0x9}}]}}]}}, &(0x7f0000000480)={0x0, 0x0, 0x23, &(0x7f0000000240)=ANY=[@ANYBLOB="040f23"]})

3.991474299s ago: executing program 5 (id=2026):
socket(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='xs_stream_read_request\x00', r0}, 0x18)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r1}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

2.938257955s ago: executing program 4 (id=2028):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000009d70d85a000000000000000700000082a40adadd04f105d31be945ae99fd58cf6cff96a3e34e3ceba5b681e3a0ff23dc84bdd6b86021ec54d5a9140056ae23f24489148522e8adbcb14f9010db722826d4531bab7145793d83ddb44a137872f30e530cbf7539412033787acbab55cc1638570a2f471e195f9887bf163d9e888da839f30c6275000b9a760ee38b230893b5a03a78be8c18b718d5ce6ee400a9c418cf9f8f0dffb633ce7d92f3be83f02a775b5928e085efb263fb25b6e4a7e4b84a388b02267d77641ef691b2e22d91c93940841a5701fc99af9b554c7206476563b7a8a781", @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x50)
r0 = socket$inet6(0xa, 0x6, 0x32)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f00000001c0)=0x1000000002, 0x12)
connect$pppl2tp(r1, &(0x7f0000000140)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e22, @empty}, 0x3, 0x2, 0x3, 0x4}}, 0x2e)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYRES16, @ANYRES32, @ANYBLOB=' '], 0x38}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r3, &(0x7f0000000100), &(0x7f0000000000), 0x2}, 0x20)

2.888933477s ago: executing program 2 (id=2029):
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@abort}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r1, &(0x7f0000000380)='2', 0x54, 0xe7d)
write$binfmt_aout(r1, &(0x7f0000000400)=ANY=[@ANYRESDEC=r0], 0xb9df)

2.540807271s ago: executing program 2 (id=2030):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)={0x18, 0x29, 0x1, 0x0, 0x25dfdbfc, "", [@typed={0x6, 0x11c, 0x0, 0x0, @str='@\x00'}]}, 0x18}], 0x1, 0x0, 0x0, 0x1}, 0x0)

2.465727334s ago: executing program 5 (id=2031):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r0, 0x0, 0xf}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ptrace$getregset(0x4205, 0x0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28})
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x4e21, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000400)=[@mask_cswp={0x58, 0x114, 0x9, {{0xffffffff, 0x4}, &(0x7f0000000240)=0x59eb, 0x0, 0x488, 0x7e4, 0x1, 0xc, 0x2, 0x5}}], 0x58, 0x4000010}, 0x0)

2.392864188s ago: executing program 4 (id=2032):
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
read$FUSE(r0, &(0x7f0000002500)={0x2020}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3e, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x7}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x6)
setgroups(0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0, r5})
syz_open_dev$MSR(0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000005c0)=ANY=[@ANYRES32=r6, @ANYBLOB='/\x00'/12, @ANYRES32, @ANYRES64=0x0], 0x20)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000180), 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000480)=ANY=[@ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="2f000000382000007f000000552b23d08233554c575b497e16c61aba33b91daa085d29bae369f2c4a23c8af041c90000000000", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)

2.304958192s ago: executing program 2 (id=2033):
setfsgid(0x0)

2.133023869s ago: executing program 5 (id=2034):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000001c0))
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000040)={0x18, 0x2, {0x3, @dev={0xac, 0x14, 0x14, 0x2e}}}, 0x1e)
syz_usbip_server_init(0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
socket(0x10, 0x3, 0x0)
openat$sndseq(0xffffff9c, &(0x7f0000000000), 0x0)
r2 = syz_open_dev$sg(0x0, 0xf3c, 0x8630644572849689)
ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000040)=0x8000)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[], 0x248}}, 0x0)
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r4, 0x0, 0x0, 0x1000f4)
copy_file_range(r4, 0x0, r4, 0x0, 0xd, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x21c)
recvmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/229, 0xe5}, 0x12040)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000200)={0x0, 0x8, 0x398, 0x1, 0xc1a})

1.41477214s ago: executing program 2 (id=2035):
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="000018"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c4300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, &(0x7f0000000180), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1804"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r1, 0x4010744d, &(0x7f0000000180))
close(r2)

1.323263923s ago: executing program 4 (id=2036):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="070000000400000008020000d9"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000423972d918120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'bridge0\x00'})
sendmsg$nl_route(r2, 0x0, 0x40840)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000002480)="$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")
r3 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x39)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f00)={{0x14}, [@NFT_MSG_NEWRULE={0x268, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x23c, 0x4, 0x0, 0x1, [{0x238, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x228, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x214, 0x3, "d67a8527f76ec1d39e537c4c3060c6a405106c72848aa8bcb429b3a20d532452032d5f166334739d1719a5778bd4f724ee4ca57f2527aeeb0c75755d68fc6fa55f4825682ee95e581039823e5963beedcf65b8b005623d90772b8b6ebd2498b0aff725a3eabb6c99cb2edfe10b9c33be8a971e08401bc0807e75a2ff376b7934473bc1f02bb512b77414daf260c9c7d4e1f0758b56ec5823892af310e6252fcfb1d9dbaddefdaa26f43f12f831fd221926d6536eeff641db46920ae0e48f3ff5de599714ba6510ce479d4116a519792281736f39c9fc0e10ef557392c43389271cebcf36543fcf6f83bf74b93ee4eb5e8c82e35bb4784cc1ed0ad291b16e8368487589f7590bf5896f340a36555a1cf69736da230a809176dbdfba3d47efb9a6932e5503d277532b7d4e6f7c7373a298e5843a9f74d5fd07fbc6ad22bc644ba9b3c94ec3c8f0b9321b16e5826b1f058f781760a5d4b6a8880202b41689139c37cd51f65a92d883f8901add03b650c9ec182fb565a4d657ebba9d6a5eb426b22d5933b72362e6ec327fb679aa8034b8b3b6680ad138be47652a3e77981187d2921cebfc1639aa280e3d38dba9b1af49ceded79c78a2d656b3a3e946e17e6257def6679f70f11aa01a2d906aecf4dbc7d1a332a8932ed719ce7eecb5450f494f944b3f6b637502ddba609c6e45dcfad1db7c7dda3e2c755ddcf27132985442e9b8df16f96c82e72e3e2491856d07756b9f"}, @NFTA_MATCH_NAME={0x8, 0x1, 'bpf\x00'}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x290}}, 0x4048010)

1.114197732s ago: executing program 2 (id=2037):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffc}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setlease(r0, 0x400, 0x2)

656.014662ms ago: executing program 2 (id=2038):
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000240)={0x2c, &(0x7f0000000000)={0x0, 0x9, 0x60, {0x60, 0x30, "85262928f95d38909e1db88ee37c17f86c5fa54189e442a79e3318622dff9bd97dfdf1a4122a53a4da136943ccd9a0e9db587161d4337d3ae09989088bf40e428a634cf8083245459c1cebfbf3cc8193892d6e21742dcd7cc5f1948846c8"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a01020000000000000000020019000900010073797a3000000000aa000300"], 0x1e4}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x7fff, 0x0)

593.502035ms ago: executing program 3 (id=2039):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="000018"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c4300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, &(0x7f0000000180), 0x0}, 0x20)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000280)=0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1804"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r1, 0x4010744d, &(0x7f0000000180))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
getsockopt$bt_BT_RCVMTU(0xffffffffffffffff, 0x112, 0xd, 0x0, &(0x7f0000000280))
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r6, 0x325, 0x400, 0x0, {0x8}}, 0x14}}, 0x4800)
close(r2)

532.670377ms ago: executing program 5 (id=2040):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10812, &(0x7f00000000c0)={[{@quota}, {@jqfmt_vfsold}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$eJzs3M9vFGUfAPDvbLu0wMtLRSQBUQtobExsoaBw8IKJiQdNjHiQY9MWUlnA0B6ENLIkBs8k3o1H400Tr3o0nvwD8ODBxJAQ5QJ4WjO7M9vt/uh2S2nT7ueTLDzP7PPM8zwz88w+M09nAuhbo+k/ScT/IuJuROytRZcnGK399+jB4vTjB4vTUa5Uzv2dVNM9TOOZPN/uLDJWiCh8kTStsGb++o1LU6XS7LUoV+MTC5c/nZi/fuP1uctTF2cvzl6ZPHPm1MkTp9+cfKM563DXRrUpL23Xw0OfXz188N3zd96fHmxeWWM7Ospz/VPumjTybdvBK43r2wb2NIST1nbd3NDKsGrD2WFYTPv/Yuno+c2uELBhKpVKZajz1+VKs1stS4AtK4nNrgGwOfIf+vT6N//UlhQ3Yvix6e6frV0APXywWLkZMf2o3v7BKGRpik3Xt6kVxkw9GY2Ij8v/fp1+YqX7EH+sU4EAQN/7+Ww2DEyiafxXiAMN6f6fzaGMRMQzEbEvIp6NiP0R8VzEsrTLJBGVFcrf37ygXv4P2SxC4d5a27Ya6fjvrWxuK/9k5eZJRgay2J6IfMA8ezzbJmNRHLowV5o90WH9O7qU3zj+Sz9p+flYMKvHvcGmwebM1MLU2lrb6v6tiEODze1PBtMdl0/jJBFxMCIO9bDekYbw3GvfHq5Hmi4rure/qtJmSm9d5s8q30S8Wtv/5Vi2/5dKTBrnJwst85MTw1GaPT6RHgXH25bx62+3P+hUftf2//hnc5Z3Tv907kmbXZfu/10Nx3/k87dL7R9JIpL6fO18RGWgtzJu//5ldb2jx1q/W+vxvyP5qBrO+9dnUwsL105E7Ejea10+uZQ3j+fp0/aPHWvf//dledIt8XxEpAfxCxHxYsRAXvcjEXE0Ito0re6Xt1/+pNN3qzz+n5q0/TNtz3/L9v/SfP0qA3nmdMnApSN3H3c4eWTt37vy/j9VDY1lS9qf/5Jlp4jV1vTJth4AAABsDYWo/u1/YbweLhTGx2v3gPbHrkLp6vzCSxFxZab2jMBIFAsX5kqz+Q25kSgm+f3PkYb4ZFP8ZHbf+KuBndX4+PTV0sxmNx763O5qn09a+n/qrx7v8wJb0DZ6Dg3oUbf+f+DOBlUE2HB+/6F/NfT/Tm+2KPtLGdie/P5D/2rX/2/Gdys+u+CcAVtfRV+GvrZy/+/+vk1g6xqMD+vh6mPPbZ+2BbYj43/oS70+199boDLU/qvhaPPGgOGnU42dbcralEA6slrHFRYjYnWJd66liHwI2PkND4XeVjgUrV8NxEq5kvbvcYiIcsdc6VbpWp+LB9b94M/fibLeh833S/20uMrd/aQB1/sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMC28l8AAAD//w1dzgU=")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)

386.431984ms ago: executing program 4 (id=2041):
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
msgget$private(0x0, 0x0)

385.510604ms ago: executing program 3 (id=2042):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x4})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)
futimesat(0xffffffffffffffff, 0x0, 0x0)

0s ago: executing program 4 (id=2043):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@noblock_validity}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x478, &(0x7f0000000cc0)="$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")

kernel console output (not intermixed with test programs):

nconfined pid=10244 comm="syz.3.1362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  467.875289][T10259] loop4: detected capacity change from 0 to 512
[  467.883147][T10255] : left promiscuous mode
[  467.896864][T10259] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  467.921648][T10259] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  467.929851][T10259] System zones: 1-2, 4-12, 8-8
[  467.935428][T10259] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1367: iget: bad i_size value: 38620345925642
[  467.954506][T10259] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1367: couldn't read orphan inode 15 (err -117)
[  467.984516][T10259] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  468.212486][T10267] syzkaller0: entered promiscuous mode
[  468.218403][T10267] syzkaller0: entered allmulticast mode
[  468.231388][T10267] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  468.305562][T10269] loop2: detected capacity change from 0 to 256
[  468.338968][T10269] FAT-fs (loop2): Directory bread(block 64) failed
[  468.345868][T10269] FAT-fs (loop2): Directory bread(block 65) failed
[  468.358269][T10269] FAT-fs (loop2): Directory bread(block 66) failed
[  468.365123][T10269] FAT-fs (loop2): Directory bread(block 67) failed
[  468.376345][T10269] FAT-fs (loop2): Directory bread(block 68) failed
[  468.384793][T10269] FAT-fs (loop2): Directory bread(block 69) failed
[  468.395840][T10269] FAT-fs (loop2): Directory bread(block 70) failed
[  468.404985][T10269] FAT-fs (loop2): Directory bread(block 71) failed
[  468.416036][T10269] FAT-fs (loop2): Directory bread(block 72) failed
[  468.424455][T10269] FAT-fs (loop2): Directory bread(block 73) failed
[  468.712019][T10259] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm syz.4.1367: bg 0: block 5: invalid block bitmap
[  468.730708][T10259] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  468.743526][T10259] EXT4-fs (loop4): This should not happen!! Data will be lost
[  468.743526][T10259] 
[  468.753517][T10259] EXT4-fs (loop4): Total free blocks count 0
[  468.759669][T10259] EXT4-fs (loop4): Free/Dirty block details
[  468.765764][T10259] EXT4-fs (loop4): free_blocks=0
[  468.770878][T10259] EXT4-fs (loop4): dirty_blocks=9056
[  468.776279][T10259] EXT4-fs (loop4): Block reservation details
[  468.782408][T10259] EXT4-fs (loop4): i_reserved_data_blocks=9056
[  469.138459][ T5842] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  469.473902][ T5842] usb 3-1: unable to get BOS descriptor or descriptor too short
[  469.509319][ T5842] usb 3-1: not running at top speed; connect to a high speed hub
[  469.542698][ T5842] usb 3-1: config 1 has an invalid interface number: 23 but max is 0
[  469.567095][ T5842] usb 3-1: config 1 has no interface number 0
[  469.577914][ T5842] usb 3-1: config 1 interface 23 has no altsetting 0
[  469.599438][ T5842] usb 3-1: New USB device found, idVendor=9022, idProduct=d421, bcdDevice=52.80
[  469.614619][T10079] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  469.627059][ T5842] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.636526][ T5842] usb 3-1: Product: syz
[  469.646633][ T5842] usb 3-1: Manufacturer: syz
[  469.658430][ T5842] usb 3-1: SerialNumber: syz
[  469.987015][T10281] wlan0 speed is unknown, defaulting to 1000
[  470.003588][T10281] wg2 speed is unknown, defaulting to 1000
[  471.129202][T10290] bridge0: entered promiscuous mode
[  471.135508][T10290] macsec1: entered promiscuous mode
[  471.154316][T10290] bridge0: port 3(macsec1) entered blocking state
[  471.161370][T10290] bridge0: port 3(macsec1) entered disabled state
[  471.168318][T10290] macsec1: entered allmulticast mode
[  471.173816][T10290] bridge0: entered allmulticast mode
[  471.183878][T10290] macsec1: left allmulticast mode
[  471.189560][T10290] bridge0: left allmulticast mode
[  471.197656][T10290] bridge0: left promiscuous mode
[  471.416529][T10298] loop3: detected capacity change from 0 to 512
[  471.427231][T10298] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  471.439702][T10298] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  471.452197][T10298] System zones: 1-2, 4-12, 8-8
[  471.464922][T10298] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1385: iget: bad i_size value: 38620345925642
[  471.481353][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  471.481368][   T28] audit: type=1326 audit(1764878026.949:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  471.488126][T10298] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1385: couldn't read orphan inode 15 (err -117)
[  471.516358][   T28] audit: type=1326 audit(1764878026.949:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  471.549058][T10301] loop4: detected capacity change from 0 to 1024
[  471.561382][   T28] audit: type=1326 audit(1764878026.949:1448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  471.561716][T10298] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  471.585171][   T28] audit: type=1326 audit(1764878026.949:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  471.632587][   T28] audit: type=1326 audit(1764878026.949:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  471.746252][   T28] audit: type=1326 audit(1764878026.949:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  471.817305][   T28] audit: type=1326 audit(1764878026.949:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  471.861597][T10301] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  471.916001][   T28] audit: type=1326 audit(1764878026.949:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  472.039415][   T28] audit: type=1326 audit(1764878026.949:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  472.136437][   T28] audit: type=1326 audit(1764878026.949:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10300 comm="syz.4.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  472.160890][ T5842] dw2102: su3000_identify_state
[  472.165823][ T5842] dvb-usb: found a 'TeVii S421 PCI' in warm state.
[  472.183833][ T5842] dw2102: su3000_power_ctrl: 1, initialized 0
[  472.188899][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.199411][ T5842] dvb-usb: bulk message failed: -22 (2/0)
[  472.212995][ T5842] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  472.225886][ T5842] dvb-usb: TeVii S421 PCI error while loading driver (-19)
[  472.254079][ T5842] usb 3-1: USB disconnect, device number 11
[  472.278682][T10298] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm syz.3.1385: bg 0: block 5: invalid block bitmap
[  472.319218][T10298] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1596 with error 28
[  472.344042][T10298] EXT4-fs (loop3): This should not happen!! Data will be lost
[  472.344042][T10298] 
[  472.361951][T10298] EXT4-fs (loop3): Total free blocks count 0
[  472.371069][T10298] EXT4-fs (loop3): Free/Dirty block details
[  472.380194][T10298] EXT4-fs (loop3): free_blocks=0
[  472.385340][T10298] EXT4-fs (loop3): dirty_blocks=1596
[  472.393605][T10298] EXT4-fs (loop3): Block reservation details
[  472.402832][T10298] EXT4-fs (loop3): i_reserved_data_blocks=1596
[  472.576191][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.906128][T10332] loop0: detected capacity change from 0 to 164
[  472.933622][T10332] ISOFS: unable to read i-node block
[  472.950905][T10332] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  472.991847][T10323] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1393'.
[  473.140780][T10338] loop0: detected capacity change from 0 to 512
[  473.150863][T10338] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  473.163214][T10338] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  473.173248][T10338] System zones: 1-2, 4-12, 8-8
[  473.174228][T10340] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  473.184157][T10338] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.1402: iget: bad i_size value: 38620345925642
[  473.199376][T10338] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.1402: couldn't read orphan inode 15 (err -117)
[  473.213292][T10338] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  473.863170][T10356] loop2: detected capacity change from 0 to 1024
[  473.902735][T10356] EXT4-fs: Ignoring removed orlov option
[  473.917195][T10356] EXT4-fs: Ignoring removed nomblk_io_submit option
[  473.953231][T10356] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  473.982991][T10358] loop4: detected capacity change from 0 to 4096
[  473.998974][T10338] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm syz.0.1402: bg 0: block 5: invalid block bitmap
[  474.016756][T10338] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  474.035903][T10358] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.042614][T10338] EXT4-fs (loop0): This should not happen!! Data will be lost
[  474.042614][T10338] 
[  474.058547][T10338] EXT4-fs (loop0): Total free blocks count 0
[  474.064679][T10338] EXT4-fs (loop0): Free/Dirty block details
[  474.071033][T10338] EXT4-fs (loop0): free_blocks=0
[  474.076098][T10338] EXT4-fs (loop0): dirty_blocks=8872
[  474.082142][T10338] EXT4-fs (loop0): Block reservation details
[  474.089127][T10338] EXT4-fs (loop0): i_reserved_data_blocks=8872
[  474.182415][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.202107][T10079] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  474.398684][T10365] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1410'.
[  474.912729][T10365] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  474.936061][T10365] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  474.951359][T10365] bond0 (unregistering): Released all slaves
[  474.989426][T10362] syz.4.1410 (10362) used greatest stack depth: 17064 bytes left
[  475.060267][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.177102][T10379] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1416'.
[  475.204489][T10385] loop2: detected capacity change from 0 to 1024
[  475.212585][T10385] EXT4-fs: Ignoring removed orlov option
[  475.223854][T10385] EXT4-fs: Ignoring removed nomblk_io_submit option
[  475.236876][T10387] xt_TPROXY: Can be used only with -p tcp or -p udp
[  475.272280][T10385] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  475.378086][T10392] loop3: detected capacity change from 0 to 1024
[  475.403078][T10392] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  475.425159][T10395] loop4: detected capacity change from 0 to 512
[  475.459953][T10395] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  475.477867][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.503909][T10395] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  475.551531][T10395] System zones: 1-2, 4-12, 8-8
[  475.561823][T10395] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1421: iget: bad i_size value: 38620345925642
[  475.590706][T10395] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1421: couldn't read orphan inode 15 (err -117)
[  475.614782][T10395] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  476.599129][T10395] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm syz.4.1421: bg 0: block 5: invalid block bitmap
[  476.660958][T10395] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1504 with error 28
[  476.686431][T10395] EXT4-fs (loop4): This should not happen!! Data will be lost
[  476.686431][T10395] 
[  476.697548][T10395] EXT4-fs (loop4): Total free blocks count 0
[  476.703588][T10395] EXT4-fs (loop4): Free/Dirty block details
[  476.713157][T10395] EXT4-fs (loop4): free_blocks=0
[  476.720651][T10395] EXT4-fs (loop4): dirty_blocks=1504
[  476.754624][T10413] syz.3.1428[10413] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  476.754775][T10413] syz.3.1428[10413] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  476.796635][T10395] EXT4-fs (loop4): Block reservation details
[  476.846474][T10395] EXT4-fs (loop4): i_reserved_data_blocks=1504
[  477.091690][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  478.130548][   T28] kauditd_printk_skb: 101 callbacks suppressed
[  478.130564][   T28] audit: type=1326 audit(1764878033.609:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.2.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  478.196505][   T28] audit: type=1326 audit(1764878033.639:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.2.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  478.219543][   T28] audit: type=1326 audit(1764878033.639:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.2.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  478.242004][    C0] vkms_vblank_simulate: vblank timer overrun
[  478.388450][T10440] loop2: detected capacity change from 0 to 512
[  478.396512][T10440] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  478.420331][T10441] loop4: detected capacity change from 0 to 512
[  478.429016][T10441] ext4: Unknown parameter 'seclabel'
[  478.663659][T10447] loop2: detected capacity change from 0 to 256
[  479.317258][T10441] loop4: detected capacity change from 0 to 8192
[  479.381791][   T28] audit: type=1800 audit(1764878034.839:1560): pid=10441 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1439" name="file2" dev="loop4" ino=1048601 res=0 errno=0
[  479.420420][T10441] bio_check_eod: 1373 callbacks suppressed
[  479.420441][T10441] syz.4.1439: attempt to access beyond end of device
[  479.420441][T10441] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  479.498821][T10441] buffer_io_error: 1270 callbacks suppressed
[  479.498839][T10441] Buffer I/O error on dev loop4, logical block 57847, async page read
[  479.516839][T10441] syz.4.1439: attempt to access beyond end of device
[  479.516839][T10441] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  479.531623][T10441] Buffer I/O error on dev loop4, logical block 57847, async page read
[  479.540154][T10441] syz.4.1439: attempt to access beyond end of device
[  479.540154][T10441] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  479.554382][T10441] Buffer I/O error on dev loop4, logical block 57847, async page read
[  479.564297][T10441] syz.4.1439: attempt to access beyond end of device
[  479.564297][T10441] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  479.578049][T10441] Buffer I/O error on dev loop4, logical block 57847, async page read
[  479.587172][T10441] syz.4.1439: attempt to access beyond end of device
[  479.587172][T10441] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  479.606854][T10441] Buffer I/O error on dev loop4, logical block 57847, async page read
[  479.615441][T10441] syz.4.1439: attempt to access beyond end of device
[  479.615441][T10441] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  479.629077][T10441] Buffer I/O error on dev loop4, logical block 57847, async page read
[  479.647816][T10452] netlink: 'syz.0.1444': attribute type 12 has an invalid length.
[  480.778394][T10463] loop0: detected capacity change from 0 to 8192
[  480.898469][T10463] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  480.898532][T10463] FAT-fs (loop0): Filesystem has been set read-only
[  481.989226][   T28] audit: type=1326 audit(1764878037.469:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10484 comm="syz.3.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  482.025474][T10489] netlink: 'syz.2.1457': attribute type 12 has an invalid length.
[  482.037463][   T28] audit: type=1326 audit(1764878037.469:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10484 comm="syz.3.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=84 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  482.060193][   T28] audit: type=1326 audit(1764878037.469:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10484 comm="syz.3.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  482.142698][T10491] loop4: detected capacity change from 0 to 1024
[  482.150378][T10491] EXT4-fs: inline encryption not supported
[  482.156301][T10491] EXT4-fs: Ignoring removed orlov option
[  482.168068][T10491] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  482.209430][T10493] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  482.216061][T10493] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  482.219161][T10491] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a800c019, mo2=0002]
[  482.238864][T10491] System zones: 0-1, 3-12
[  482.243920][T10493] vhci_hcd vhci_hcd.0: Device attached
[  482.253358][T10491] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  482.279128][   T28] audit: type=1326 audit(1764878037.749:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10490 comm="syz.4.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  482.342808][   T28] audit: type=1326 audit(1764878037.749:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10490 comm="syz.4.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  482.367904][T10501] netlink: 'syz.3.1459': attribute type 1 has an invalid length.
[  482.540170][   T28] audit: type=1326 audit(1764878037.759:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10490 comm="syz.4.1458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  482.567160][ T5842] usb 40-1: SetAddress Request (27) to port 0
[  482.573524][ T5842] usb 40-1: new SuperSpeed USB device number 27 using vhci_hcd
[  482.750490][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  483.185745][T10496] vhci_hcd: connection closed
[  483.398761][   T60] vhci_hcd: stop threads
[  483.442594][   T60] vhci_hcd: release socket
[  483.463718][   T60] vhci_hcd: disconnect device
[  483.667159][ T5842] usb 40-1: enqueue for inactive port 0
[  483.724857][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  483.724874][   T28] audit: type=1326 audit(1764878039.199:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  483.811554][   T28] audit: type=1326 audit(1764878039.199:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  483.852584][T10517] netlink: 'syz.0.1468': attribute type 12 has an invalid length.
[  483.874509][   T28] audit: type=1326 audit(1764878039.199:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  483.906241][   T28] audit: type=1326 audit(1764878039.199:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  483.930271][   T28] audit: type=1326 audit(1764878039.199:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  484.001311][   T28] audit: type=1326 audit(1764878039.199:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  484.023815][    C0] vkms_vblank_simulate: vblank timer overrun
[  484.036214][   T28] audit: type=1326 audit(1764878039.199:1575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  484.058728][    C0] vkms_vblank_simulate: vblank timer overrun
[  484.072676][   T28] audit: type=1326 audit(1764878039.199:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  484.106072][   T28] audit: type=1326 audit(1764878039.199:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  484.138948][ T5842] usb usb40-port1: attempt power cycle
[  484.159357][   T28] audit: type=1326 audit(1764878039.199:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10510 comm="syz.3.1467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  484.183878][T10529] syz.0.1471[10529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  484.184030][T10529] syz.0.1471[10529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  484.457596][T10540] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  484.475593][T10540] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  484.497312][T10540] vhci_hcd vhci_hcd.0: Device attached
[  484.570854][T10545] netlink: 'syz.2.1475': attribute type 1 has an invalid length.
[  484.807112][  T787] usb 38-1: SetAddress Request (23) to port 0
[  484.813461][  T787] usb 38-1: new SuperSpeed USB device number 23 using vhci_hcd
[  484.967715][ T5842] usb usb40-port1: unable to enumerate USB device
[  485.534133][T10541] vhci_hcd: connection closed
[  486.012585][T10079] vhci_hcd: stop threads
[  486.021937][T10079] vhci_hcd: release socket
[  486.026530][T10079] vhci_hcd: disconnect device
[  486.037476][  T787] usb 38-1: enqueue for inactive port 0
[  486.160463][T10557] loop4: detected capacity change from 0 to 512
[  486.173286][T10557] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  486.184844][T10557] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  486.199004][T10557] System zones: 1-2, 4-12, 8-8
[  486.204530][T10557] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1481: iget: bad i_size value: 38620345925642
[  486.232585][T10557] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1481: couldn't read orphan inode 15 (err -117)
[  486.238378][T10560] netlink: 'syz.0.1480': attribute type 12 has an invalid length.
[  486.259916][T10557] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  486.480116][  T787] usb usb38-port1: attempt power cycle
[  486.611695][T10572] 9pnet_fd: Insufficient options for proto=fd
[  486.797074][T10578] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  486.803677][T10578] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  486.839159][T10578] vhci_hcd vhci_hcd.0: Device attached
[  486.945715][T10578] netlink: 'syz.0.1490': attribute type 1 has an invalid length.
[  487.138275][  T787] usb usb38-port1: unable to enumerate USB device
[  487.177376][ T2132] usb 34-1: SetAddress Request (30) to port 0
[  487.246351][ T2132] usb 34-1: new SuperSpeed USB device number 30 using vhci_hcd
[  487.322243][T10557] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm syz.4.1481: bg 0: block 5: invalid block bitmap
[  487.495979][T10557] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  487.548046][T10557] EXT4-fs (loop4): This should not happen!! Data will be lost
[  487.548046][T10557] 
[  487.602678][T10557] EXT4-fs (loop4): Total free blocks count 0
[  487.626179][T10557] EXT4-fs (loop4): Free/Dirty block details
[  487.637783][T10579] vhci_hcd: connection reset by peer
[  487.649750][T10557] EXT4-fs (loop4): free_blocks=0
[  487.666138][T10557] EXT4-fs (loop4): dirty_blocks=6444
[  487.686471][T10557] EXT4-fs (loop4): Block reservation details
[  487.720281][T10557] EXT4-fs (loop4): i_reserved_data_blocks=6444
[  487.774254][T10071] vhci_hcd: stop threads
[  487.803383][T10071] vhci_hcd: release socket
[  487.828817][T10071] vhci_hcd: disconnect device
[  488.424398][T10587] netlink: 'syz.0.1494': attribute type 12 has an invalid length.
[  488.580657][T10079] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  489.107398][T10609] x_tables: duplicate underflow at hook 3
[  489.122158][T10609] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1499'.
[  489.203406][   T28] kauditd_printk_skb: 57 callbacks suppressed
[  489.203421][   T28] audit: type=1326 audit(1764878044.679:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.0.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  489.249829][T10612] loop3: detected capacity change from 0 to 512
[  489.256349][   T28] audit: type=1326 audit(1764878044.709:1637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.0.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  489.273541][T10612] journal_path: Lookup failure for './bus'
[  489.306677][   T28] audit: type=1326 audit(1764878044.709:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.0.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  489.360231][T10612] EXT4-fs: error: could not find journal device path
[  489.370261][   T28] audit: type=1326 audit(1764878044.709:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.0.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  489.464431][T10621] netlink: 'syz.2.1504': attribute type 12 has an invalid length.
[  489.567260][T10623] loop4: detected capacity change from 0 to 512
[  489.596089][T10623] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  489.605604][T10629] loop0: detected capacity change from 0 to 256
[  489.622879][   T28] audit: type=1326 audit(1764878045.099:1640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10626 comm="syz.3.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  489.628661][T10623] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  489.679295][T10623] System zones: 1-2, 4-12
[  489.697295][   T28] audit: type=1326 audit(1764878045.129:1641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10626 comm="syz.3.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  489.734542][T10623] , 8-8
[  489.796757][   T28] audit: type=1326 audit(1764878045.129:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10626 comm="syz.3.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  489.848625][T10623] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1505: iget: bad i_size value: 38620345925642
[  489.890470][T10623] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1505: couldn't read orphan inode 15 (err -117)
[  489.897186][   T28] audit: type=1326 audit(1764878045.129:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10626 comm="syz.3.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  489.925795][   T28] audit: type=1326 audit(1764878045.129:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10626 comm="syz.3.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  489.955543][T10623] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  489.970420][   T28] audit: type=1326 audit(1764878045.129:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10626 comm="syz.3.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  490.166296][T10635] wlan0 speed is unknown, defaulting to 1000
[  490.180747][T10635] wg2 speed is unknown, defaulting to 1000
[  490.913761][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.301181][T10643] loop4: detected capacity change from 0 to 512
[  491.345121][T10643] EXT4-fs (loop4): orphan cleanup on readonly fs
[  491.351656][T10643] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13
[  491.971294][T10643] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  492.060400][T10643] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.1512: attempt to clear invalid blocks 2 len 1
[  492.095416][T10643] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.1512: invalid indirect mapped block 1819239214 (level 0)
[  492.137795][T10643] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.1512: invalid indirect mapped block 1819239214 (level 1)
[  492.188210][T10643] EXT4-fs (loop4): 1 truncate cleaned up
[  492.195304][T10643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  492.249605][T10643] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  492.263884][T10643] EXT4-fs error (device loop4): __ext4_remount:6736: comm syz.4.1512: Abort forced by user
[  492.276236][T10643] EXT4-fs (loop4): Remounting filesystem read-only
[  492.287286][T10643] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  492.318641][T10652] loop0: detected capacity change from 0 to 2048
[  492.349367][T10655] netlink: 'syz.3.1516': attribute type 12 has an invalid length.
[  492.359799][T10652]  loop0: p1 < > p4
[  492.372206][T10652] loop0: p4 size 8388608 extends beyond EOD, truncated
[  492.404673][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  492.437171][ T2132] usb 34-1: device descriptor read/8, error -110
[  492.495993][T10659] loop4: detected capacity change from 0 to 256
[  492.866060][T10663] loop4: detected capacity change from 0 to 512
[  492.891389][T10663] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  492.923301][T10663] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  492.935810][T10663] System zones: 1-2, 4-12, 8-8
[  492.943215][T10663] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1520: iget: bad i_size value: 38620345925642
[  492.958053][T10663] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1520: couldn't read orphan inode 15 (err -117)
[  492.970151][T10665] syz_tun: entered allmulticast mode
[  492.996330][T10663] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  493.184722][T10668] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  493.191335][T10668] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  493.224968][T10668] vhci_hcd vhci_hcd.0: Device attached
[  493.238291][ T2132] usb usb34-port1: attempt power cycle
[  493.292218][T10673] loop2: detected capacity change from 0 to 128
[  493.333930][T10671] netlink: 'syz.3.1522': attribute type 1 has an invalid length.
[  493.660518][ T5842] usb 40-1: SetAddress Request (31) to port 0
[  493.711513][ T5842] usb 40-1: new SuperSpeed USB device number 31 using vhci_hcd
[  494.029548][T10669] vhci_hcd: connection reset by peer
[  494.068157][T10663] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm syz.4.1520: bg 0: block 5: invalid block bitmap
[  494.128000][   T60] vhci_hcd: stop threads
[  494.145928][   T60] vhci_hcd: release socket
[  494.151766][   T60] vhci_hcd: disconnect device
[  494.245855][T10663] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1988 with error 28
[  494.314530][T10663] EXT4-fs (loop4): This should not happen!! Data will be lost
[  494.314530][T10663] 
[  494.381335][T10663] EXT4-fs (loop4): Total free blocks count 0
[  494.421414][T10663] EXT4-fs (loop4): Free/Dirty block details
[  494.474302][T10663] EXT4-fs (loop4): free_blocks=0
[  494.505648][T10663] EXT4-fs (loop4): dirty_blocks=1988
[  494.541327][T10663] EXT4-fs (loop4): Block reservation details
[  494.576391][T10663] EXT4-fs (loop4): i_reserved_data_blocks=1988
[  494.738550][ T2132] usb usb34-port1: unable to enumerate USB device
[  494.856086][T10684] netlink: 'syz.3.1526': attribute type 12 has an invalid length.
[  494.962184][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.029686][T10692] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1531'.
[  495.141309][T10696] netlink: 204 bytes leftover after parsing attributes in process `syz.0.1532'.
[  495.240673][T10701] netlink: 'syz.4.1534': attribute type 3 has an invalid length.
[  495.307836][T10705] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  495.314445][T10705] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  495.322962][T10705] vhci_hcd vhci_hcd.0: Device attached
[  495.353016][T10705] netlink: 'syz.0.1535': attribute type 1 has an invalid length.
[  495.391069][T10706] vhci_hcd: connection closed
[  495.391501][T10054] vhci_hcd: stop threads
[  495.417528][T10054] vhci_hcd: release socket
[  495.422042][T10054] vhci_hcd: disconnect device
[  495.518722][T10715] netlink: 'syz.4.1538': attribute type 12 has an invalid length.
[  495.695672][T10721] loop3: detected capacity change from 0 to 2048
[  495.865379][T10721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  495.941694][ T5794] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  497.516296][ T5794] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  497.600949][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.611604][   T28] kauditd_printk_skb: 65 callbacks suppressed
[  497.611620][   T28] audit: type=1326 audit(1764878053.089:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7c2218f749 code=0x0
[  497.710664][T10733] loop4: detected capacity change from 0 to 128
[  497.713755][   T28] audit: type=1326 audit(1764878053.159:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  497.759883][   T28] audit: type=1326 audit(1764878053.159:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  497.800590][   T28] audit: type=1326 audit(1764878053.169:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  497.845390][   T28] audit: type=1326 audit(1764878053.169:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  497.847679][T10737] (unnamed net_device) (uninitialized): option updelay: invalid value (18446744073709510910)
[  497.878637][T10737] (unnamed net_device) (uninitialized): option updelay: allowed values 0 - 2147483647
[  497.890652][   T28] audit: type=1326 audit(1764878053.179:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  497.942085][   T28] audit: type=1326 audit(1764878053.179:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  497.990524][   T28] audit: type=1326 audit(1764878053.179:1718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  498.024462][   T28] audit: type=1326 audit(1764878053.179:1719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  498.055040][   T28] audit: type=1326 audit(1764878053.179:1720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10730 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  498.154363][T10744] netlink: 'syz.0.1549': attribute type 12 has an invalid length.
[  498.429497][T10752] wlan0 speed is unknown, defaulting to 1000
[  498.481031][T10752] wg2 speed is unknown, defaulting to 1000
[  498.535463][T10754] loop0: detected capacity change from 0 to 512
[  498.589096][T10754] journal_path: Lookup failure for './bus'
[  498.595015][T10754] EXT4-fs: error: could not find journal device path
[  498.637105][T10758] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  498.643701][T10758] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  498.658253][T10758] vhci_hcd vhci_hcd.0: Device attached
[  498.703939][T10758] netlink: 'syz.4.1554': attribute type 1 has an invalid length.
[  498.730104][T10759] vhci_hcd: connection closed
[  498.730687][T10050] vhci_hcd: stop threads
[  498.757010][T10050] vhci_hcd: release socket
[  498.761528][T10050] vhci_hcd: disconnect device
[  498.776106][T10762] syz.2.1556[10762] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  498.776328][T10762] syz.2.1556[10762] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  498.907505][T10751] loop0: detected capacity change from 0 to 8192
[  498.969159][T10751]  loop0: p1 p2 p4
[  498.976256][T10751] loop0: p4 size 262912 extends beyond EOD, truncated
[  498.987626][ T5842] usb 40-1: device descriptor read/8, error -110
[  499.383198][T10770] loop0: detected capacity change from 0 to 164
[  499.408372][T10770] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  499.416008][T10771] loop4: detected capacity change from 0 to 1024
[  499.424392][ T5842] usb usb40-port1: attempt power cycle
[  499.435491][T10770] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  499.444569][T10771] EXT4-fs: Ignoring removed mblk_io_submit option
[  499.461029][T10770] Symlink component flag not implemented
[  499.477155][T10770] Symlink component flag not implemented
[  499.485288][T10770] Symlink component flag not implemented (7)
[  499.496619][T10770] Symlink component flag not implemented (116)
[  499.515411][T10771] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  499.564911][T10771] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  499.745140][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.072096][ T5842] usb usb40-port1: unable to enumerate USB device
[  500.268229][T10790] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1565'.
[  500.492380][T10795] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  500.498994][T10795] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  500.527261][T10795] vhci_hcd vhci_hcd.0: Device attached
[  500.548940][T10795] netlink: 'syz.0.1567': attribute type 1 has an invalid length.
[  500.570086][T10796] vhci_hcd: connection closed
[  500.570520][T10073] vhci_hcd: stop threads
[  500.589382][T10073] vhci_hcd: release socket
[  500.602603][T10073] vhci_hcd: disconnect device
[  500.763383][T10801] netlink: 'syz.4.1569': attribute type 12 has an invalid length.
[  501.341415][T10805] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1570'.
[  502.657526][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  503.168205][T10810] netlink: 'syz.0.1572': attribute type 5 has an invalid length.
[  503.207693][T10810] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  503.216010][T10810] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  503.224952][T10810] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  503.233650][T10810] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  503.254380][T10810] batman_adv: batadv0: Adding interface: vxlan0
[  503.262454][T10810] batman_adv: batadv0: The MTU of interface vxlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  503.292983][T10810] batman_adv: batadv0: Interface activated: vxlan0
[  503.487389][T10825] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  503.494009][T10825] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  503.505032][T10825] vhci_hcd vhci_hcd.0: Device attached
[  503.516325][T10825] netlink: 'syz.2.1580': attribute type 1 has an invalid length.
[  503.541297][T10828] vhci_hcd: connection closed
[  503.544940][T10060] vhci_hcd: stop threads
[  503.570461][T10060] vhci_hcd: release socket
[  503.582849][T10060] vhci_hcd: disconnect device
[  503.667967][T10836] netlink: 'syz.4.1584': attribute type 12 has an invalid length.
[  503.871084][T10832] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1582'.
[  503.874780][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  503.874801][   T28] audit: type=1326 audit(1764878059.349:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10831 comm="syz.3.1582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  503.922885][   T28] audit: type=1326 audit(1764878059.349:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10831 comm="syz.3.1582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  503.952094][   T28] audit: type=1326 audit(1764878059.349:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10831 comm="syz.3.1582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  503.984855][   T28] audit: type=1326 audit(1764878059.369:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10831 comm="syz.3.1582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  504.006861][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  504.013180][   T28] audit: type=1326 audit(1764878059.369:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10831 comm="syz.3.1582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  504.028047][T10848] loop4: detected capacity change from 0 to 2048
[  504.059127][    T9] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  504.082232][   T28] audit: type=1326 audit(1764878059.429:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10831 comm="syz.3.1582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  504.115535][   T28] audit: type=1326 audit(1764878059.429:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10831 comm="syz.3.1582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  504.143015][   T28] audit: type=1326 audit(1764878059.589:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10831 comm="syz.3.1582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f812198f749 code=0x7ffc0000
[  504.157640][T10848] Alternate GPT is invalid, using primary GPT.
[  504.175922][T10848]  loop4: p2 p3 p7
[  504.208041][   T28] audit: type=1326 audit(1764878059.689:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10852 comm="syz.2.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  504.261299][   T28] audit: type=1326 audit(1764878059.689:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10852 comm="syz.2.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  504.416887][T10857] loop2: detected capacity change from 0 to 512
[  504.449698][T10857] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  504.462705][T10857] ext4 filesystem being mounted at /423/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  504.595294][T10867] netlink: 'syz.3.1595': attribute type 12 has an invalid length.
[  504.688332][T10873] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  504.695033][T10873] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  504.703281][T10873] vhci_hcd vhci_hcd.0: Device attached
[  504.716083][T10873] netlink: 'syz.4.1598': attribute type 1 has an invalid length.
[  504.742472][T10874] vhci_hcd: connection closed
[  504.744444][T10050] vhci_hcd: stop threads
[  504.754316][T10050] vhci_hcd: release socket
[  504.761689][T10050] vhci_hcd: disconnect device
[  505.262252][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  505.349649][T10884] loop2: detected capacity change from 0 to 256
[  505.489012][T10889] loop2: detected capacity change from 0 to 512
[  505.497152][T10889] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  505.501802][T10891] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1605'.
[  505.509258][T10889] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  505.523031][T10889] System zones: 1-2, 4-12, 8-8
[  505.525708][T10891] IPVS: Unknown mcast interface: vet
[  505.540631][T10889] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1604: iget: bad i_size value: 38620345925642
[  505.555383][T10889] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1604: couldn't read orphan inode 15 (err -117)
[  505.569219][T10889] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  505.587285][  T787] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  505.690227][T10895] netlink: 'syz.4.1606': attribute type 12 has an invalid length.
[  505.786800][  T787] usb 1-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  505.807555][  T787] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  505.823692][  T787] usb 1-1: Product: syz
[  505.834558][  T787] usb 1-1: Manufacturer: syz
[  505.839419][  T787] usb 1-1: SerialNumber: syz
[  506.060860][T10905] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1611'.
[  506.076668][T10905] hsr_slave_0: left promiscuous mode
[  506.099024][T10905] hsr_slave_1: left promiscuous mode
[  506.181155][  T787] rtl8150 1-1:1.0: couldn't reset the device
[  506.206352][  T787] rtl8150: probe of 1-1:1.0 failed with error -5
[  506.263905][  T787] usb 1-1: USB disconnect, device number 8
[  506.272665][T10905] smc: removing net device hsr0 with user defined pnetid SYZ2
[  506.444118][T10907] loop4: detected capacity change from 0 to 256
[  507.030127][T10889] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.1604: bg 0: block 5: invalid block bitmap
[  507.103025][T10889] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  507.162470][T10889] EXT4-fs (loop2): This should not happen!! Data will be lost
[  507.162470][T10889] 
[  507.187281][T10889] EXT4-fs (loop2): Total free blocks count 0
[  507.213777][T10889] EXT4-fs (loop2): Free/Dirty block details
[  507.222512][T10911] loop3: detected capacity change from 0 to 256
[  507.240448][T10889] EXT4-fs (loop2): free_blocks=0
[  507.255708][T10889] EXT4-fs (loop2): dirty_blocks=6552
[  507.277278][T10889] EXT4-fs (loop2): Block reservation details
[  507.303778][T10889] EXT4-fs (loop2): i_reserved_data_blocks=6552
[  507.680320][T10050] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  507.828279][T10919] netlink: 'syz.0.1616': attribute type 12 has an invalid length.
[  507.951111][T10921] syz.3.1618[10921] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  507.951257][T10921] syz.3.1618[10921] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  508.527348][T10930] wlan0 speed is unknown, defaulting to 1000
[  508.558849][T10930] wg2 speed is unknown, defaulting to 1000
[  508.625185][T10941] loop4: detected capacity change from 0 to 512
[  508.661747][T10943] loop2: detected capacity change from 0 to 256
[  508.683436][T10941] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  508.707132][T10941] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  508.740712][T10941] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.1623: Corrupt directory, running e2fsck is recommended
[  508.772357][T10941] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  508.789584][T10941] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.1623: corrupted in-inode xattr: invalid ea_ino
[  508.820905][T10941] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1623: couldn't read orphan inode 15 (err -117)
[  508.861476][T10941] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  508.949060][T10941] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  508.976084][T10941] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  508.987055][T10941] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.1623: Corrupt directory, running e2fsck is recommended
[  509.007360][T10948] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  509.013963][T10948] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  509.026472][T10950] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  509.044865][T10948] vhci_hcd vhci_hcd.0: Device attached
[  509.050891][T10950] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  509.066369][T10950] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.1623: Corrupt directory, running e2fsck is recommended
[  509.099951][T10948] netlink: 'syz.0.1626': attribute type 1 has an invalid length.
[  509.153842][T10949] vhci_hcd: connection closed
[  509.154183][T10054] vhci_hcd: stop threads
[  509.163466][T10054] vhci_hcd: release socket
[  509.174419][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  509.203480][T10956] loop2: detected capacity change from 0 to 2048
[  509.211191][T10054] vhci_hcd: disconnect device
[  509.243701][T10956]  loop2: p1 < > p4
[  509.249295][T10956] loop2: p4 size 8388608 extends beyond EOD, truncated
[  509.397931][T10958] loop4: detected capacity change from 0 to 1024
[  509.407138][T10958] EXT4-fs (loop4): bad geometry: first data block 458752 is beyond end of filesystem (512)
[  509.551357][T10961] netlink: 'syz.4.1630': attribute type 30 has an invalid length.
[  509.576274][T10961] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  509.584633][T10961] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  509.593493][T10961] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  509.601816][T10961] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  509.614166][T10961] netdevsim netdevsim4 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  509.622889][T10961] netdevsim netdevsim4 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  509.631462][T10961] netdevsim netdevsim4 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  509.640008][T10961] netdevsim netdevsim4 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  509.897873][   T28] kauditd_printk_skb: 41 callbacks suppressed
[  509.897890][   T28] audit: type=1326 audit(1764878065.379:1784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  509.947507][   T28] audit: type=1326 audit(1764878065.409:1785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  509.984223][   T28] audit: type=1326 audit(1764878065.409:1786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  510.007347][   T28] audit: type=1326 audit(1764878065.409:1787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  510.065204][T10973] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xd
[  510.075178][   T28] audit: type=1326 audit(1764878065.409:1788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  510.117412][   T28] audit: type=1326 audit(1764878065.409:1789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  510.162955][   T28] audit: type=1326 audit(1764878065.409:1790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  510.200085][   T28] audit: type=1326 audit(1764878065.409:1791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  510.215537][T10975] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1637'.
[  510.236228][   T28] audit: type=1326 audit(1764878065.409:1792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  510.263623][   T28] audit: type=1326 audit(1764878065.409:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.4.1632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  510.436653][T10981] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  510.443246][T10981] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  510.473214][T10981] vhci_hcd vhci_hcd.0: Device attached
[  510.517257][T10981] netlink: 'syz.4.1639': attribute type 1 has an invalid length.
[  510.598443][T10982] vhci_hcd: connection closed
[  510.617037][T10073] vhci_hcd: stop threads
[  510.641676][T10073] vhci_hcd: release socket
[  510.646215][T10073] vhci_hcd: disconnect device
[  511.589173][T11014] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1655'.
[  511.924438][T11024] netlink: 'syz.2.1659': attribute type 1 has an invalid length.
[  511.966045][T11028] loop3: detected capacity change from 0 to 164
[  512.001370][T11028] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  512.018095][T11028] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  512.027441][T11028] Symlink component flag not implemented
[  512.038140][T11028] Symlink component flag not implemented
[  512.044910][T11028] Symlink component flag not implemented (7)
[  512.055320][T11028] Symlink component flag not implemented (116)
[  513.305001][T11044] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1667'.
[  513.503820][T11050] xt_policy: too many policy elements
[  513.512352][T11050] rdma_op ffff88802f1c09f0 conn xmit_rdma 0000000000000000
[  513.732836][T11049] loop4: detected capacity change from 0 to 512
[  514.250657][T11049] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  514.263719][T11053] netlink: 'syz.0.1669': attribute type 1 has an invalid length.
[  514.277222][T11049] ext4 filesystem being mounted at /312/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  514.314672][T11049] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #2: comm syz.4.1668: corrupted inode contents
[  514.373062][T11049] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #2: comm syz.4.1668: mark_inode_dirty error
[  514.380515][T11053] 8021q: adding VLAN 0 to HW filter on device bond1
[  514.391946][T11049] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #2: comm syz.4.1668: corrupted inode contents
[  514.400052][T11054] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1669'.
[  514.417094][T11049] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.1668: mark_inode_dirty error
[  514.633502][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  514.733865][T11054] bond1 (unregistering): Released all slaves
[  515.072657][   T28] kauditd_printk_skb: 32 callbacks suppressed
[  515.072674][   T28] audit: type=1326 audit(1764878070.549:1826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  515.106095][   T28] audit: type=1326 audit(1764878070.549:1827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  515.137547][ T2132] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  515.207203][   T28] audit: type=1326 audit(1764878070.549:1828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  515.233050][   T28] audit: type=1326 audit(1764878070.549:1829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  515.824260][   T28] audit: type=1326 audit(1764878070.549:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  515.867143][   T28] audit: type=1326 audit(1764878070.549:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  515.928463][ T2132] usb 4-1: device descriptor read/64, error -71
[  515.955618][   T28] audit: type=1326 audit(1764878070.549:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  516.040065][   T28] audit: type=1326 audit(1764878070.559:1833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  516.094859][   T28] audit: type=1326 audit(1764878070.579:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  516.131103][   T28] audit: type=1326 audit(1764878070.579:1835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.0.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fa4def8f749 code=0x7ffc0000
[  516.158468][T11087] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  516.165146][T11087] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  516.190595][T11087] vhci_hcd vhci_hcd.0: Device attached
[  516.218255][T11087] netlink: 'syz.0.1679': attribute type 1 has an invalid length.
[  516.243015][T11091] vhci_hcd: connection closed
[  516.243331][T10050] vhci_hcd: stop threads
[  516.252584][ T2132] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  516.260703][T10050] vhci_hcd: release socket
[  516.270248][T10050] vhci_hcd: disconnect device
[  516.318486][T11095] netlink: 'syz.2.1684': attribute type 3 has an invalid length.
[  516.437257][ T2132] usb 4-1: device descriptor read/64, error -71
[  516.567561][ T2132] usb usb4-port1: attempt power cycle
[  517.517546][ T2132] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  517.563183][ T2132] usb 4-1: device descriptor read/8, error -71
[  518.638561][T11129] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  518.645173][T11129] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  518.657200][T11129] vhci_hcd vhci_hcd.0: Device attached
[  518.820476][T11129] netlink: 'syz.0.1699': attribute type 1 has an invalid length.
[  520.492082][T11130] vhci_hcd: connection closed
[  520.492519][T10050] vhci_hcd: stop threads
[  520.512134][T10050] vhci_hcd: release socket
[  520.526492][T10050] vhci_hcd: disconnect device
[  520.625256][  T787] usb 34-1: enqueue for inactive port 0
[  521.016024][T11154] pimreg: entered allmulticast mode
[  521.030639][T11154] pimreg: left allmulticast mode
[  521.136898][T11156] loop0: detected capacity change from 0 to 256
[  521.158464][  T787] usb usb34-port1: attempt power cycle
[  521.376518][T11160] loop0: detected capacity change from 0 to 512
[  521.419917][T11160] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  521.445664][T11160] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  521.473999][T11160] System zones: 1-2, 4-12, 8-8
[  522.000593][T11160] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.1712: iget: bad i_size value: 38620345925642
[  522.157636][T11160] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.1712: couldn't read orphan inode 15 (err -117)
[  522.219573][T11160] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  522.442464][T11170] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1715'.
[  522.518016][T11160] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm syz.0.1712: bg 0: block 5: invalid block bitmap
[  522.581558][T11160] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 872 with error 28
[  522.608196][  T787] usb usb34-port1: unable to enumerate USB device
[  522.645025][T11160] EXT4-fs (loop0): This should not happen!! Data will be lost
[  522.645025][T11160] 
[  522.680879][T11160] EXT4-fs (loop0): Total free blocks count 0
[  522.707269][T11160] EXT4-fs (loop0): Free/Dirty block details
[  522.713319][T11160] EXT4-fs (loop0): free_blocks=0
[  522.738766][T11160] EXT4-fs (loop0): dirty_blocks=872
[  522.744079][T11160] EXT4-fs (loop0): Block reservation details
[  522.777155][T11160] EXT4-fs (loop0): i_reserved_data_blocks=872
[  522.811618][T11178] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  522.818237][T11178] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  522.847309][T11178] vhci_hcd vhci_hcd.0: Device attached
[  522.921162][T11178] netlink: 'syz.3.1719': attribute type 1 has an invalid length.
[  522.964221][T11179] vhci_hcd: connection closed
[  522.966481][T10073] vhci_hcd: stop threads
[  522.988602][T10073] vhci_hcd: release socket
[  522.993116][T10073] vhci_hcd: disconnect device
[  523.022534][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  524.840029][T11204] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1728'.
[  524.864096][T11202] netlink: 'syz.0.1727': attribute type 12 has an invalid length.
[  524.982336][T11210] netlink: 'syz.2.1731': attribute type 1 has an invalid length.
[  525.719852][T11235] netlink: 'syz.0.1741': attribute type 12 has an invalid length.
[  526.020185][T11247] netlink: 'syz.3.1746': attribute type 13 has an invalid length.
[  526.184425][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  526.184440][   T28] audit: type=1326 audit(1764878081.659:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11250 comm="syz.2.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  526.247510][T11252] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  526.254131][T11252] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  526.277755][   T28] audit: type=1326 audit(1764878081.689:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11250 comm="syz.2.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  526.307232][T11252] vhci_hcd vhci_hcd.0: Device attached
[  526.337045][   T28] audit: type=1326 audit(1764878081.689:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11250 comm="syz.2.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  526.375225][T11252] netlink: 'syz.0.1748': attribute type 1 has an invalid length.
[  526.382294][   T28] audit: type=1326 audit(1764878081.689:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11250 comm="syz.2.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  526.439750][T11253] vhci_hcd: connection closed
[  526.441219][T10073] vhci_hcd: stop threads
[  526.458569][   T28] audit: type=1326 audit(1764878081.699:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11250 comm="syz.2.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  526.463985][T10073] vhci_hcd: release socket
[  526.488122][T10073] vhci_hcd: disconnect device
[  526.531550][   T28] audit: type=1326 audit(1764878081.799:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11250 comm="syz.2.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  526.583453][   T28] audit: type=1326 audit(1764878081.799:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11250 comm="syz.2.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  527.242254][T11277] loop0: detected capacity change from 0 to 512
[  527.255883][T11277] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  527.269804][T11277] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  527.279474][T11277] System zones: 1-2, 4-12, 8-8
[  527.285260][T11277] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.1758: iget: bad i_size value: 38620345925642
[  527.298954][T11277] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.1758: couldn't read orphan inode 15 (err -117)
[  527.313124][T11277] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  527.674547][T11247] infiniband syz!: set down
[  527.761144][T11247] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  527.822395][T11247] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  528.041235][T10079] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm kworker/u4:34: bg 0: block 5: invalid block bitmap
[  528.063280][T10079] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  528.076342][T10079] EXT4-fs (loop0): This should not happen!! Data will be lost
[  528.076342][T10079] 
[  528.090637][T10079] EXT4-fs (loop0): Total free blocks count 0
[  528.096730][T10079] EXT4-fs (loop0): Free/Dirty block details
[  528.102851][T10079] EXT4-fs (loop0): free_blocks=0
[  528.109870][T10079] EXT4-fs (loop0): dirty_blocks=10688
[  528.115414][T10079] EXT4-fs (loop0): Block reservation details
[  528.121651][T10079] EXT4-fs (loop0): i_reserved_data_blocks=10688
[  528.194861][T11277] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  528.602147][T11247] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  528.612164][T11247] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  528.625550][T11247] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  528.634717][T11247] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  528.761040][T11264] netlink: 'syz.2.1753': attribute type 12 has an invalid length.
[  528.954338][T11288] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  528.972822][T11288] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  528.987222][T11290] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  528.993814][T11290] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  528.996991][T11288] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  529.019960][T11288] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  529.047059][T11290] vhci_hcd vhci_hcd.0: Device attached
[  529.099169][T11290] netlink: 'syz.0.1764': attribute type 1 has an invalid length.
[  529.128405][T11291] vhci_hcd: connection closed
[  529.130112][T10079] vhci_hcd: stop threads
[  529.157913][T10079] vhci_hcd: release socket
[  529.162421][T10079] vhci_hcd: disconnect device
[  529.262923][T11304] netlink: 'syz.3.1770': attribute type 12 has an invalid length.
[  530.273985][T11316] syz.2.1774[11316] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  530.274124][T11316] syz.2.1774[11316] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  530.297159][T11316] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1774'.
[  530.598221][T11329] netlink: 'syz.2.1780': attribute type 14 has an invalid length.
[  530.772272][T11331] netlink: 'syz.3.1781': attribute type 12 has an invalid length.
[  530.837816][T11335] loop4: detected capacity change from 0 to 128
[  530.872616][T11335] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  530.914769][T11335] ext4 filesystem being mounted at /336/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  531.168206][ T7211] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  531.623108][T11344] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  531.629713][T11344] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  531.682189][T11344] vhci_hcd vhci_hcd.0: Device attached
[  531.689705][T11348] smc: net device bond0 applied user defined pnetid SYZ0
[  531.708921][T11348] smc: net device bond0 erased user defined pnetid SYZ0
[  531.808794][T11350] netlink: 'syz.0.1787': attribute type 1 has an invalid length.
[  531.997092][ T2132] usb 34-1: SetAddress Request (38) to port 0
[  532.003426][ T2132] usb 34-1: new SuperSpeed USB device number 38 using vhci_hcd
[  532.473951][T11346] vhci_hcd: connection closed
[  532.577093][T10060] vhci_hcd: stop threads
[  532.629789][T10060] vhci_hcd: release socket
[  532.663061][T10060] vhci_hcd: disconnect device
[  532.984167][T11358] loop3: detected capacity change from 0 to 512
[  533.197195][ T2132] usb 34-1: enqueue for inactive port 0
[  533.234614][T11358] EXT4-fs (loop3): 1 orphan inode deleted
[  533.243158][T11358] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  533.259818][T11358] ext4 filesystem being mounted at /430/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  533.291915][T11367] netlink: 'syz.0.1794': attribute type 12 has an invalid length.
[  533.307560][   T28] audit: type=1326 audit(1764878088.789:1852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.376710][   T28] audit: type=1326 audit(1764878088.789:1853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.461801][   T28] audit: type=1326 audit(1764878088.789:1854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.544439][   T28] audit: type=1326 audit(1764878088.789:1855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.576433][   T28] audit: type=1326 audit(1764878088.789:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.622533][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  533.648356][ T2132] usb usb34-port1: attempt power cycle
[  533.810688][   T28] audit: type=1326 audit(1764878088.789:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.850175][   T28] audit: type=1326 audit(1764878088.789:1858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.875568][   T28] audit: type=1326 audit(1764878088.789:1859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.900238][   T28] audit: type=1326 audit(1764878088.789:1860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  533.922950][   T28] audit: type=1326 audit(1764878088.789:1861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  534.341782][ T2132] usb usb34-port1: unable to enumerate USB device
[  534.390747][T11386] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  534.397353][T11386] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  534.617823][T11386] vhci_hcd vhci_hcd.0: Device attached
[  534.711472][T11391] netlink: 'syz.4.1803': attribute type 1 has an invalid length.
[  534.895325][T11396] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1804'.
[  534.927215][    T9] usb 42-1: SetAddress Request (16) to port 0
[  534.933592][    T9] usb 42-1: new SuperSpeed USB device number 16 using vhci_hcd
[  534.944463][T11396] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1804'.
[  535.115975][T11388] vhci_hcd: connection closed
[  535.268089][T10050] vhci_hcd: stop threads
[  535.335975][T10050] vhci_hcd: release socket
[  535.377789][T10050] vhci_hcd: disconnect device
[  535.607812][T11398] netlink: 'syz.3.1806': attribute type 12 has an invalid length.
[  535.623374][    T9] usb 42-1: enqueue for inactive port 0
[  535.819708][T11410] sd 0:0:1:0: device reset
[  535.914372][T11409] loop0: detected capacity change from 0 to 2048
[  535.989007][T11409] Dev loop0: RDB in block 1 has bad checksum
[  536.104057][T11414] syzkaller0: entered promiscuous mode
[  536.125300][T11414] syzkaller0: entered allmulticast mode
[  536.175766][    T9] usb usb42-port1: attempt power cycle
[  536.318297][T11425] xt_policy: too many policy elements
[  536.881830][T11424] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  536.888423][T11424] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  536.977300][    T9] usb usb42-port1: unable to enumerate USB device
[  537.101355][T11424] vhci_hcd vhci_hcd.0: Device attached
[  537.281529][T11427] netlink: 'syz.0.1817': attribute type 1 has an invalid length.
[  537.547902][ T2132] usb 34-1: SetAddress Request (42) to port 0
[  537.587139][ T2132] usb 34-1: new SuperSpeed USB device number 42 using vhci_hcd
[  537.609438][T11426] vhci_hcd: connection closed
[  537.632294][T10079] vhci_hcd: stop threads
[  537.706723][T10079] vhci_hcd: release socket
[  537.751026][T10079] vhci_hcd: disconnect device
[  538.558629][T11447] loop0: detected capacity change from 0 to 512
[  538.581833][T11447] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  538.628075][T11447] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  538.636330][T11447] System zones: 1-2, 4-12, 8-8
[  538.647310][T11447] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.1826: iget: bad i_size value: 38620345925642
[  538.666361][T11447] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.1826: couldn't read orphan inode 15 (err -117)
[  538.685838][T11447] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  538.827601][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.977892][T11459] netlink: 'syz.2.1831': attribute type 1 has an invalid length.
[  539.797356][T11466] raw_sendmsg: syz.2.1834 forgot to set AF_INET. Fix it!
[  541.039363][T11435] netlink: 'syz.3.1820': attribute type 12 has an invalid length.
[  541.169254][T11470] vlan2: entered allmulticast mode
[  541.174615][T11470] dummy0: entered allmulticast mode
[  541.433734][T11476] atomic_op ffff88807e9c6998 conn xmit_atomic 0000000000000000
[  541.485103][T11478] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  541.491713][T11478] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  541.504753][T11478] vhci_hcd vhci_hcd.0: Device attached
[  541.581854][T11481] netlink: 'syz.0.1840': attribute type 1 has an invalid length.
[  542.342086][T11479] vhci_hcd: connection reset by peer
[  542.716481][T10060] vhci_hcd: stop threads
[  542.745477][T10060] vhci_hcd: release socket
[  542.757137][ T2132] usb 34-1: device descriptor read/8, error -110
[  542.772800][T10060] vhci_hcd: disconnect device
[  543.128327][T11487] netlink: 'syz.0.1843': attribute type 12 has an invalid length.
[  543.219037][T11490] loop0: detected capacity change from 0 to 256
[  543.241574][T11491] loop4: detected capacity change from 0 to 512
[  543.283407][T11491] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  543.328271][ T2132] usb usb34-port1: attempt power cycle
[  543.333956][T11491] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  543.352500][T11491] System zones: 1-2, 4-12, 8-8
[  543.365942][T11491] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.1842: iget: bad i_size value: 38620345925642
[  543.397592][T11491] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1842: couldn't read orphan inode 15 (err -117)
[  543.411532][T11491] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  544.028616][ T2132] usb usb34-port1: unable to enumerate USB device
[  544.075256][T11491] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm syz.4.1842: bg 0: block 5: invalid block bitmap
[  544.088746][T11491] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  544.106090][T11491] EXT4-fs (loop4): This should not happen!! Data will be lost
[  544.106090][T11491] 
[  544.116157][T11491] EXT4-fs (loop4): Total free blocks count 0
[  544.127884][T11491] EXT4-fs (loop4): Free/Dirty block details
[  544.133884][T11491] EXT4-fs (loop4): free_blocks=0
[  544.142400][T11491] EXT4-fs (loop4): dirty_blocks=4540
[  544.149060][T11491] EXT4-fs (loop4): Block reservation details
[  544.155264][T11491] EXT4-fs (loop4): i_reserved_data_blocks=4540
[  544.334727][T10071] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  544.447655][T11507] netlink: 'syz.2.1852': attribute type 1 has an invalid length.
[  544.554481][   T60] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  544.594980][   T60] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.654385][T11503] wlan0 speed is unknown, defaulting to 1000
[  544.692964][   T60] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  544.727346][   T60] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.768887][T11503] wg2 speed is unknown, defaulting to 1000
[  544.841396][   T60] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  544.867079][   T60] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.990896][   T60] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  545.015344][   T60] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  545.295257][   T60] : left promiscuous mode
[  545.321337][T11517] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1856'.
[  545.417244][   T60] tipc: Left network mode
[  546.488975][T11526] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  546.501264][T11526] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  546.510158][T11526] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  546.520054][T11526] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  546.530819][T11526] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  546.538466][T11526] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  546.571454][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  546.609650][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  546.617400][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  546.628688][   T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  546.640107][   T51] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  546.648063][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  546.720823][T11530] loop4: detected capacity change from 0 to 512
[  546.737808][T11530] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  546.787169][T11530] EXT4-fs (loop4): 1 truncate cleaned up
[  546.794294][T11530] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  546.834863][T11522] wlan0 speed is unknown, defaulting to 1000
[  546.846426][T11522] wg2 speed is unknown, defaulting to 1000
[  546.883622][T11534] syz.2.1861[11534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  546.883766][T11534] syz.2.1861[11534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  547.083008][T11536] netlink: 'syz.2.1862': attribute type 1 has an invalid length.
[  547.203805][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.441534][T11542] syz.4.1865[11542] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  547.441722][T11542] syz.4.1865[11542] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  548.751523][   T51] Bluetooth: hci1: command tx timeout
[  549.010027][T11522] chnl_net:caif_netlink_parms(): no params data found
[  550.212318][   T60] hsr_slave_0: left promiscuous mode
[  550.223792][   T60] hsr_slave_1: left promiscuous mode
[  550.234150][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  550.245879][   T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[  550.255377][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  550.265237][   T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[  550.274903][   T60] batman_adv: batadv0: Interface deactivated: vxlan0
[  550.281901][   T60] batman_adv: batadv0: Removing interface: vxlan0
[  550.289408][   T60] bridge_slave_1: left allmulticast mode
[  550.295101][   T60] bridge_slave_1: left promiscuous mode
[  550.301035][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  550.311610][   T60] bridge_slave_0: left allmulticast mode
[  550.317706][   T60] bridge_slave_0: left promiscuous mode
[  550.323604][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  550.356053][   T60] veth1_macvtap: left promiscuous mode
[  550.361689][   T60] veth0_macvtap: left promiscuous mode
[  550.369363][   T60] veth1_vlan: left promiscuous mode
[  550.374695][   T60] veth0_vlan: left promiscuous mode
[  550.832742][   T51] Bluetooth: hci1: command tx timeout
[  550.936393][   T60] smc: removing net device hsr0 with user defined pnetid SYZ2
[  552.014621][   T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  552.110359][   T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  552.156764][T11577] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  552.163366][T11577] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  552.192982][T11577] vhci_hcd vhci_hcd.0: Device attached
[  552.301010][T11580] netlink: 'syz.4.1876': attribute type 1 has an invalid length.
[  552.953657][   T51] Bluetooth: hci1: command tx timeout
[  553.045004][T11578] vhci_hcd: connection closed
[  553.068319][T10071] vhci_hcd: stop threads
[  553.104041][T10071] vhci_hcd: release socket
[  553.121656][T10071] vhci_hcd: disconnect device
[  553.765540][T11583] syz.4.1877[11583] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  553.765685][T11583] syz.4.1877[11583] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  553.854585][   T60] bond0 (unregistering): Released all slaves
[  553.995564][T11522] bridge0: port 1(bridge_slave_0) entered blocking state
[  554.003099][T11522] bridge0: port 1(bridge_slave_0) entered disabled state
[  554.016846][T11522] bridge_slave_0: entered allmulticast mode
[  554.025626][T11522] bridge_slave_0: entered promiscuous mode
[  554.054537][T11571] veth0: entered promiscuous mode
[  554.062242][T11571] veth0: entered allmulticast mode
[  554.088909][T11522] bridge0: port 2(bridge_slave_1) entered blocking state
[  554.096116][T11522] bridge0: port 2(bridge_slave_1) entered disabled state
[  554.125351][T11522] bridge_slave_1: entered allmulticast mode
[  554.133109][T11522] bridge_slave_1: entered promiscuous mode
[  554.210191][T11522] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  554.232706][T11522] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  554.400191][T11522] team0: Port device team_slave_0 added
[  554.427923][T11522] team0: Port device team_slave_1 added
[  554.698624][T11522] batman_adv: batadv0: Adding interface: batadv_slave_0
[  554.733979][T11522] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  555.946671][   T51] Bluetooth: hci1: command tx timeout
[  555.968628][T11522] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  556.000381][T11522] batman_adv: batadv0: Adding interface: batadv_slave_1
[  556.226038][T11522] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  556.697662][T11522] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  557.008720][T11611] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1886'.
[  557.035739][T11522] hsr_slave_0: entered promiscuous mode
[  557.049190][T11522] hsr_slave_1: entered promiscuous mode
[  557.354117][T11617] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  557.432390][T11522] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  557.459632][T11617] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  557.479534][T11522] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  557.503028][T11522] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  557.515110][T11522] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  557.571154][T11617] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  557.667879][T11617] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  557.675527][   T28] kauditd_printk_skb: 92 callbacks suppressed
[  557.675545][   T28] audit: type=1326 audit(1764878113.149:1954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11630 comm="syz.4.1892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  557.713269][   T28] audit: type=1326 audit(1764878113.169:1955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11630 comm="syz.4.1892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  557.737562][   T28] audit: type=1326 audit(1764878113.169:1956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11630 comm="syz.4.1892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  557.751587][T11522] 8021q: adding VLAN 0 to HW filter on device bond0
[  557.825782][T11522] 8021q: adding VLAN 0 to HW filter on device team0
[  557.881973][T11522] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  557.892974][T11522] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  557.940787][T11617] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  557.959218][T10073] bridge0: port 1(bridge_slave_0) entered blocking state
[  557.966510][T10073] bridge0: port 1(bridge_slave_0) entered forwarding state
[  557.981402][T10073] bridge0: port 2(bridge_slave_1) entered blocking state
[  557.988871][T10073] bridge0: port 2(bridge_slave_1) entered forwarding state
[  558.055491][T11617] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  558.766416][T11617] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  558.911436][T11617] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  559.040891][T11638] wlan0 speed is unknown, defaulting to 1000
[  559.078951][T11638] wg2 speed is unknown, defaulting to 1000
[  559.671057][T11522] 8021q: adding VLAN 0 to HW filter on device batadv0
[  560.515472][T11522] veth0_vlan: entered promiscuous mode
[  560.536349][T11522] veth1_vlan: entered promiscuous mode
[  560.618593][T11522] veth0_macvtap: entered promiscuous mode
[  560.639385][T11522] veth1_macvtap: entered promiscuous mode
[  560.661764][T11522] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  560.672818][T11522] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  560.684906][T11522] batman_adv: batadv0: Interface activated: batadv_slave_0
[  560.700123][T11522] batman_adv: batadv0: Interface activated: batadv_slave_1
[  560.712656][T11522] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  560.722072][T11522] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  560.737825][T11522] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  560.752653][T11522] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  560.915757][T10054] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  560.926508][T10054] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  561.672673][T10071] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  561.690076][T10071] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  561.925257][T11678] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1903'.
[  562.022620][T11680] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  562.303616][T11680] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  562.362986][T11680] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.161145][T11680] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.342240][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  563.513977][T11680] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  564.055975][T11680] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  564.248589][T11680] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  564.269047][T11702] loop5: detected capacity change from 0 to 512
[  564.314907][T11702] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  564.332865][T11680] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  564.410122][T11702] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.1913: iget: bad i_size value: 38620345925642
[  564.450954][T11702] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.1913: couldn't read orphan inode 15 (err -117)
[  564.494109][T11702] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  564.565939][   T28] audit: type=1326 audit(1764878120.039:1957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11701 comm="syz.5.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  564.631928][   T28] audit: type=1326 audit(1764878120.039:1958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11701 comm="syz.5.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  564.690727][T11522] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  564.729050][   T28] audit: type=1326 audit(1764878120.039:1959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11701 comm="syz.5.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  564.832865][   T28] audit: type=1326 audit(1764878120.039:1960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11701 comm="syz.5.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  564.855499][    C0] vkms_vblank_simulate: vblank timer overrun
[  564.876513][   T28] audit: type=1326 audit(1764878120.039:1961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11701 comm="syz.5.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  564.899345][   T28] audit: type=1326 audit(1764878120.049:1962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11701 comm="syz.5.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  564.922701][   T28] audit: type=1326 audit(1764878120.049:1963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11701 comm="syz.5.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  564.945391][   T28] audit: type=1326 audit(1764878120.049:1964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11701 comm="syz.5.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  565.527049][   T28] audit: type=1326 audit(1764878120.999:1965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.5.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  565.556304][T11724] loop5: detected capacity change from 0 to 164
[  565.601315][T11724] ISOFS: unable to read i-node block
[  565.620744][   T28] audit: type=1326 audit(1764878120.999:1966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.5.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  565.649766][T11724] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  565.831576][T11732] loop4: detected capacity change from 0 to 256
[  565.900560][T11732] FAT-fs (loop4): Directory bread(block 64) failed
[  565.927818][T11732] FAT-fs (loop4): Directory bread(block 65) failed
[  565.934547][T11732] FAT-fs (loop4): Directory bread(block 66) failed
[  565.941536][T11732] FAT-fs (loop4): Directory bread(block 67) failed
[  565.948814][T11732] FAT-fs (loop4): Directory bread(block 68) failed
[  565.955411][T11732] FAT-fs (loop4): Directory bread(block 69) failed
[  566.002194][T11732] FAT-fs (loop4): Directory bread(block 70) failed
[  566.512508][T11732] FAT-fs (loop4): Directory bread(block 71) failed
[  566.541196][T11732] FAT-fs (loop4): Directory bread(block 72) failed
[  566.567087][T11732] FAT-fs (loop4): Directory bread(block 73) failed
[  566.586326][T11737] unsupported nla_type 52263
[  567.119973][T11749] input: syz1 as /devices/virtual/input/input44
[  567.409212][   T23] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  567.614912][   T23] usb 5-1: unable to get BOS descriptor or descriptor too short
[  567.687544][   T23] usb 5-1: not running at top speed; connect to a high speed hub
[  567.911282][   T23] usb 5-1: config 1 has an invalid interface number: 23 but max is 0
[  568.058848][   T23] usb 5-1: config 1 has no interface number 0
[  568.360489][   T23] usb 5-1: config 1 interface 23 has no altsetting 0
[  568.387930][T11762] xt_policy: too many policy elements
[  568.396833][T11762] rdma_op ffff88805c4e61f0 conn xmit_rdma 0000000000000000
[  568.454767][   T23] usb 5-1: New USB device found, idVendor=9022, idProduct=d421, bcdDevice=52.80
[  568.468130][   T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  568.476240][   T23] usb 5-1: Product: syz
[  568.480692][   T23] usb 5-1: Manufacturer: syz
[  568.485416][   T23] usb 5-1: SerialNumber: syz
[  570.108457][   T23] dw2102: su3000_identify_state
[  570.113409][   T23] dvb-usb: found a 'TeVii S421 PCI' in warm state.
[  570.120896][T11781] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  570.127485][T11781] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  570.140903][   T23] dw2102: su3000_power_ctrl: 1, initialized 0
[  570.150139][   T23] dvb-usb: bulk message failed: -22 (2/0)
[  570.171113][T11781] vhci_hcd vhci_hcd.0: Device attached
[  570.182871][   T23] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  570.223227][   T23] dvb-usb: TeVii S421 PCI error while loading driver (-19)
[  570.997277][  T787] usb 44-1: SetAddress Request (2) to port 0
[  571.039834][  T787] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  571.130522][T11783] vhci_hcd: connection closed
[  571.134770][   T23] usb 5-1: USB disconnect, device number 8
[  571.177465][T10060] vhci_hcd: stop threads
[  571.181837][T10060] vhci_hcd: release socket
[  571.191552][T10060] vhci_hcd: disconnect device
[  571.780570][T11797] syz.2.1945[11797] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  571.780751][T11797] syz.2.1945[11797] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  571.833335][T11797] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1945'.
[  572.192749][T11807] loop4: detected capacity change from 0 to 512
[  573.700895][T11807] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  573.713769][T11807] ext4 filesystem being mounted at /384/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  573.928342][T11814] loop5: detected capacity change from 0 to 512
[  573.952386][T11814] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  573.971787][T11814] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  573.980904][T11814] System zones: 1-2, 4-12, 8-8
[  573.986650][T11814] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.1948: iget: bad i_size value: 38620345925642
[  574.034225][T11814] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.1948: couldn't read orphan inode 15 (err -117)
[  574.078640][T11814] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  574.452748][T11806] wlan0 speed is unknown, defaulting to 1000
[  574.460470][T11806] wg2 speed is unknown, defaulting to 1000
[  574.737362][T11814] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm syz.5.1948: bg 0: block 5: invalid block bitmap
[  574.790082][T11814] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  574.817505][T11814] EXT4-fs (loop5): This should not happen!! Data will be lost
[  574.817505][T11814] 
[  574.828690][T11814] EXT4-fs (loop5): Total free blocks count 0
[  574.834770][T11814] EXT4-fs (loop5): Free/Dirty block details
[  574.852505][T11814] EXT4-fs (loop5): free_blocks=0
[  574.858323][T11814] EXT4-fs (loop5): dirty_blocks=2664
[  574.863671][T11814] EXT4-fs (loop5): Block reservation details
[  574.870328][T11814] EXT4-fs (loop5): i_reserved_data_blocks=2664
[  574.871422][T11799] loop3: detected capacity change from 0 to 512
[  574.948518][T11799] EXT4-fs (loop3): 1 orphan inode deleted
[  574.955902][T11799] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  574.979987][T10054] __quota_error: 23 callbacks suppressed
[  574.980012][T10054] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  574.998766][T10054] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:16: Failed to release dquot type 1
[  575.004497][T11799] ext4 filesystem being mounted at /460/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  575.028131][T10062] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 612 with error 28
[  575.305291][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.524514][T11839] xt_policy: too many policy elements
[  575.533264][T11839] rdma_op ffff88807941f1f0 conn xmit_rdma 0000000000000000
[  576.192235][  T787] usb 44-1: device descriptor read/8, error -110
[  576.476500][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  577.042618][T11854] loop4: detected capacity change from 0 to 512
[  577.050612][T11854] EXT4-fs: Ignoring removed i_version option
[  577.062153][T11854] EXT4-fs: Ignoring removed bh option
[  577.111430][T11858] loop3: detected capacity change from 0 to 512
[  577.116029][T11854] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  577.135933][T11858] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  577.145445][T11854] ext4 filesystem being mounted at /385/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  577.164874][T11858] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  577.178544][T11858] System zones: 1-2, 4-12, 8-8
[  577.187194][T11858] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1960: iget: bad i_size value: 38620345925642
[  577.215293][T11858] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1960: couldn't read orphan inode 15 (err -117)
[  577.235085][T11858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  577.256144][  T787] usb usb44-port1: attempt power cycle
[  577.278395][T11854] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1957'.
[  577.288238][T11854] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1957'.
[  577.536561][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.416656][T11858] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm syz.3.1960: bg 0: block 5: invalid block bitmap
[  578.471566][T11858] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  578.592573][T11858] EXT4-fs (loop3): This should not happen!! Data will be lost
[  578.592573][T11858] 
[  578.632460][   T28] audit: type=1326 audit(1764878134.069:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11869 comm="syz.2.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  578.665768][T11858] EXT4-fs (loop3): Total free blocks count 0
[  578.679644][T11858] EXT4-fs (loop3): Free/Dirty block details
[  578.691092][  T787] usb usb44-port1: unable to enumerate USB device
[  578.703865][T11858] EXT4-fs (loop3): free_blocks=0
[  578.730420][   T28] audit: type=1326 audit(1764878134.069:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11869 comm="syz.2.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  578.736992][T11858] EXT4-fs (loop3): dirty_blocks=3716
[  578.770300][T11875] xt_policy: too many policy elements
[  578.773651][   T28] audit: type=1326 audit(1764878134.069:1992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11869 comm="syz.2.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  578.787380][T11858] EXT4-fs (loop3): Block reservation details
[  578.808309][T11875] rdma_op ffff88823bde0df0 conn xmit_rdma 0000000000000000
[  578.831245][T11858] EXT4-fs (loop3): i_reserved_data_blocks=3716
[  578.845911][   T28] audit: type=1326 audit(1764878134.069:1993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11869 comm="syz.2.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  578.875855][   T28] audit: type=1326 audit(1764878134.069:1994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11869 comm="syz.2.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  578.900122][   T28] audit: type=1326 audit(1764878134.069:1995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11869 comm="syz.2.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  578.946543][   T28] audit: type=1326 audit(1764878134.069:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11869 comm="syz.2.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  578.974706][T10050] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 1664 with error 28
[  579.222949][T11889] loop3: detected capacity change from 0 to 256
[  579.476241][   T28] audit: type=1326 audit(1764878134.949:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11896 comm="syz.5.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  579.495252][T11889] FAT-fs (loop3): Directory bread(block 64) failed
[  579.498759][    C1] vkms_vblank_simulate: vblank timer overrun
[  580.005876][T11889] FAT-fs (loop3): Directory bread(block 65) failed
[  580.150058][   T28] audit: type=1326 audit(1764878134.979:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11896 comm="syz.5.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  580.177204][T11889] FAT-fs (loop3): Directory bread(block 66) failed
[  580.207220][T11889] FAT-fs (loop3): Directory bread(block 67) failed
[  580.213988][T11889] FAT-fs (loop3): Directory bread(block 68) failed
[  580.267844][T11889] FAT-fs (loop3): Directory bread(block 69) failed
[  580.274592][   T28] audit: type=1326 audit(1764878134.979:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11896 comm="syz.5.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  580.297069][    C1] vkms_vblank_simulate: vblank timer overrun
[  580.321518][T11889] FAT-fs (loop3): Directory bread(block 70) failed
[  580.345174][T11889] FAT-fs (loop3): Directory bread(block 71) failed
[  580.363106][   T28] audit: type=1326 audit(1764878134.979:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11896 comm="syz.5.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb37c98f749 code=0x7ffc0000
[  580.388229][T11889] FAT-fs (loop3): Directory bread(block 72) failed
[  580.394841][T11889] FAT-fs (loop3): Directory bread(block 73) failed
[  580.413540][T11902] loop5: detected capacity change from 0 to 512
[  580.431247][T11900] loop4: detected capacity change from 0 to 512
[  580.437785][T11902] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  580.451151][T11900] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  580.454786][T11902] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  580.487077][T11902] System zones: 1-2, 4-12, 8-8
[  580.518505][T11902] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.1978: iget: bad i_size value: 38620345925642
[  580.538995][T11900] EXT4-fs (loop4): 1 truncate cleaned up
[  580.546054][T11900] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.563339][T11902] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.1978: couldn't read orphan inode 15 (err -117)
[  580.615312][T11909] SET target dimension over the limit!
[  580.669998][T11902] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  580.703886][T11889] input: syz1 as /devices/virtual/input/input46
[  580.749194][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.830460][T11913] netlink: 'syz.2.1981': attribute type 39 has an invalid length.
[  580.922479][T11915] loop4: detected capacity change from 0 to 512
[  580.932252][T11915] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  580.954876][T11915] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  580.987008][ T2132] usb 4-1: new full-speed USB device number 15 using dummy_hcd
[  581.004100][T11915] ext4 filesystem being mounted at /393/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  581.085128][ T7211] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.180419][   T28] audit: type=1326 audit(1764878136.649:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11918 comm="syz.2.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  581.208534][ T2132] usb 4-1: unable to get BOS descriptor or descriptor too short
[  581.231641][T11902] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm syz.5.1978: bg 0: block 5: invalid block bitmap
[  581.237563][ T2132] usb 4-1: not running at top speed; connect to a high speed hub
[  581.244734][   T28] audit: type=1326 audit(1764878136.649:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11918 comm="syz.2.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  581.274705][   T28] audit: type=1326 audit(1764878136.659:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11918 comm="syz.2.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  581.296410][ T2132] usb 4-1: config 1 has an invalid interface number: 23 but max is 0
[  581.297699][T11902] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  581.305642][ T2132] usb 4-1: config 1 has no interface number 0
[  581.324488][ T2132] usb 4-1: config 1 interface 23 has no altsetting 0
[  581.337599][   T28] audit: type=1326 audit(1764878136.659:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11918 comm="syz.2.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  581.374410][ T2132] usb 4-1: New USB device found, idVendor=9022, idProduct=d421, bcdDevice=52.80
[  581.383571][T11902] EXT4-fs (loop5): This should not happen!! Data will be lost
[  581.383571][T11902] 
[  581.383596][T11902] EXT4-fs (loop5): Total free blocks count 0
[  581.383612][T11902] EXT4-fs (loop5): Free/Dirty block details
[  581.383628][T11902] EXT4-fs (loop5): free_blocks=0
[  581.383644][T11902] EXT4-fs (loop5): dirty_blocks=5776
[  581.383658][T11902] EXT4-fs (loop5): Block reservation details
[  581.383671][T11902] EXT4-fs (loop5): i_reserved_data_blocks=5776
[  581.436978][   T28] audit: type=1326 audit(1764878136.659:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11918 comm="syz.2.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  581.470582][   T28] audit: type=1326 audit(1764878136.659:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11918 comm="syz.2.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  581.493272][ T2132] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  581.501441][   T28] audit: type=1326 audit(1764878136.659:2007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11918 comm="syz.2.1984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  581.537451][ T2132] usb 4-1: Product: syz
[  581.541708][ T2132] usb 4-1: Manufacturer: syz
[  581.556835][ T2132] usb 4-1: SerialNumber: syz
[  581.636567][T10062] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  581.881973][T11931] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  581.890715][T11931] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  581.892046][ T2132] dw2102: su3000_identify_state
[  581.908102][ T2132] dvb-usb: found a 'TeVii S421 PCI' in warm state.
[  581.916738][ T2132] dw2102: su3000_power_ctrl: 1, initialized 0
[  581.922957][ T2132] dvb-usb: bulk message failed: -22 (2/0)
[  581.932189][ T2132] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  581.942000][T11931] vhci_hcd vhci_hcd.0: Device attached
[  581.950129][ T2132] dvb-usb: TeVii S421 PCI error while loading driver (-19)
[  581.962676][ T2132] usb 4-1: USB disconnect, device number 15
[  582.969310][T11932] vhci_hcd: connection closed
[  583.349773][ T5828] usb 42-1: SetAddress Request (21) to port 0
[  583.364067][T10073] vhci_hcd: stop threads
[  583.366669][ T5828] usb 42-1: new SuperSpeed USB device number 21 using vhci_hcd
[  583.368542][T10073] vhci_hcd: release socket
[  583.368575][T10073] vhci_hcd: disconnect device
[  583.440161][ T5828] usb 42-1: enqueue for inactive port 0
[  584.212245][ T5828] usb usb42-port1: attempt power cycle
[  585.433932][T11966] loop3: detected capacity change from 0 to 256
[  585.512413][T11966] FAT-fs (loop3): Directory bread(block 64) failed
[  585.552187][T11966] FAT-fs (loop3): Directory bread(block 65) failed
[  585.585778][T11966] FAT-fs (loop3): Directory bread(block 66) failed
[  586.032357][ T5828] usb usb42-port1: unable to enumerate USB device
[  586.083681][T11966] FAT-fs (loop3): Directory bread(block 67) failed
[  586.128759][T11969] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  586.135443][T11969] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  586.247449][T11966] FAT-fs (loop3): Directory bread(block 68) failed
[  586.254057][T11966] FAT-fs (loop3): Directory bread(block 69) failed
[  586.430578][T11969] vhci_hcd vhci_hcd.0: Device attached
[  586.436544][T11966] FAT-fs (loop3): Directory bread(block 70) failed
[  586.477232][T11966] FAT-fs (loop3): Directory bread(block 71) failed
[  586.483957][T11966] FAT-fs (loop3): Directory bread(block 72) failed
[  586.521529][T11966] FAT-fs (loop3): Directory bread(block 73) failed
[  586.757225][  T787] usb 42-1: SetAddress Request (25) to port 0
[  586.765966][  T787] usb 42-1: new SuperSpeed USB device number 25 using vhci_hcd
[  586.783282][T11972] vhci_hcd: connection closed
[  586.783614][T10054] vhci_hcd: stop threads
[  586.793149][T10054] vhci_hcd: release socket
[  586.798145][T10054] vhci_hcd: disconnect device
[  586.808602][  T787] usb 42-1: enqueue for inactive port 0
[  586.823026][T11966] input: syz1 as /devices/virtual/input/input48
[  587.064261][   T28] kauditd_printk_skb: 6 callbacks suppressed
[  587.064278][   T28] audit: type=1326 audit(1764878142.539:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11979 comm="syz.2.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  587.157098][T11669] usb 4-1: new full-speed USB device number 16 using dummy_hcd
[  587.177268][   T28] audit: type=1326 audit(1764878142.539:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11979 comm="syz.2.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c2218f749 code=0x7ffc0000
[  587.247720][  T787] usb usb42-port1: attempt power cycle
[  587.485338][T11669] usb 4-1: unable to get BOS descriptor or descriptor too short
[  587.495002][T11669] usb 4-1: not running at top speed; connect to a high speed hub
[  588.235217][T11669] usb 4-1: config 1 has an invalid interface number: 23 but max is 0
[  588.243489][T11669] usb 4-1: config 1 has no interface number 0
[  588.249715][T11669] usb 4-1: config 1 interface 23 has no altsetting 0
[  588.259274][T11669] usb 4-1: New USB device found, idVendor=9022, idProduct=d421, bcdDevice=52.80
[  588.286978][T11669] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  588.295505][T11669] usb 4-1: Product: syz
[  588.306961][T11669] usb 4-1: Manufacturer: syz
[  588.311664][T11669] usb 4-1: SerialNumber: syz
[  588.425310][T11669] dw2102: su3000_identify_state
[  588.433454][T11669] dvb-usb: found a 'TeVii S421 PCI' in warm state.
[  588.450726][T11669] dw2102: su3000_power_ctrl: 1, initialized 0
[  588.464383][T11669] dvb-usb: bulk message failed: -22 (2/0)
[  588.485216][T11669] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  588.519545][T11669] dvb-usb: TeVii S421 PCI error while loading driver (-19)
[  588.542402][T11669] usb 4-1: USB disconnect, device number 16
[  588.762733][  T787] usb usb42-port1: unable to enumerate USB device
[  589.919681][T12011] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  589.926297][T12011] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  589.934586][T12011] vhci_hcd vhci_hcd.0: Device attached
[  590.599199][ T5828] usb 40-1: SetAddress Request (35) to port 0
[  590.605534][ T5828] usb 40-1: new SuperSpeed USB device number 35 using vhci_hcd
[  590.940567][T12014] vhci_hcd: connection closed
[  590.951365][T10062] vhci_hcd: stop threads
[  591.035787][T10062] vhci_hcd: release socket
[  591.076728][T10062] vhci_hcd: disconnect device
[  591.437357][ T5828] usb 40-1: enqueue for inactive port 0
[  591.658168][T12035] loop3: detected capacity change from 0 to 256
[  592.113500][ T5828] usb usb40-port1: attempt power cycle
[  592.335199][T12035] FAT-fs (loop3): Directory bread(block 64) failed
[  592.358072][T12035] FAT-fs (loop3): Directory bread(block 65) failed
[  592.384484][T12035] FAT-fs (loop3): Directory bread(block 66) failed
[  592.406513][T12035] FAT-fs (loop3): Directory bread(block 67) failed
[  592.437253][T12035] FAT-fs (loop3): Directory bread(block 68) failed
[  592.443964][T12035] FAT-fs (loop3): Directory bread(block 69) failed
[  592.506021][T12035] FAT-fs (loop3): Directory bread(block 70) failed
[  592.535977][T12035] FAT-fs (loop3): Directory bread(block 71) failed
[  592.547317][T12035] FAT-fs (loop3): Directory bread(block 72) failed
[  592.588279][T12035] FAT-fs (loop3): Directory bread(block 73) failed
[  592.877573][ T5828] usb usb40-port1: unable to enumerate USB device
[  593.120408][T12058] atomic_op ffff88805ef05198 conn xmit_atomic 0000000000000000
[  593.271809][T12035] input: syz1 as /devices/virtual/input/input50
[  593.373353][T12064] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  593.379961][T12064] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  593.392124][T12064] vhci_hcd vhci_hcd.0: Device attached
[  593.577367][ T5842] usb 4-1: new full-speed USB device number 17 using dummy_hcd
[  594.238667][T12065] vhci_hcd: connection closed
[  594.245754][T10054] vhci_hcd: stop threads
[  594.313500][T10054] vhci_hcd: release socket
[  594.344263][T10054] vhci_hcd: disconnect device
[  594.451788][ T5828] usb 44-1: enqueue for inactive port 0
[  594.993145][T12073] loop4: detected capacity change from 0 to 8192
[  595.052524][T12082] loop5: detected capacity change from 0 to 512
[  595.067086][T12082] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  595.084861][T12082] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  595.093245][T12082] System zones: 1-2, 4-12, 8-8
[  595.111505][T12082] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.2040: iget: bad i_size value: 38620345925642
[  595.146572][T12082] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2040: couldn't read orphan inode 15 (err -117)
[  595.189327][T12082] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  595.271110][   T28] audit: type=1326 audit(1764878150.749:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  595.308093][ T5828] usb usb44-port1: attempt power cycle
[  595.353076][   T28] audit: type=1326 audit(1764878150.769:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  595.375547][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.434137][   T28] audit: type=1326 audit(1764878150.779:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  595.456665][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.484684][T12091] loop4: detected capacity change from 0 to 512
[  595.505127][   T28] audit: type=1326 audit(1764878150.779:2019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  595.547914][T12091] ------------[ cut here ]------------
[  595.554224][T12091] EA inode 11 i_nlink=0
[  595.558112][T12091] WARNING: CPU: 0 PID: 12091 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550
[  595.572922][T12091] Modules linked in:
[  595.576870][T12091] CPU: 0 PID: 12091 Comm: syz.4.2043 Not tainted syzkaller #0
[  595.584442][T12091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  595.594658][T12091] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[  595.601527][T12091] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 ff 49 2c 08
[  595.621207][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.627711][T12091] RSP: 0018:ffffc9000b68f2e0 EFLAGS: 00010246
[  595.633848][T12091] RAX: 47c7a77995881d00 RBX: 0000000000000000 RCX: 0000000000080000
[  595.642121][T12091] RDX: ffffc90004cf1000 RSI: 0000000000011a08 RDI: 0000000000011a09
[  595.650495][T12091] RBP: ffffc9000b68f3d0 R08: ffffc9000b68eee7 R09: 1ffff920016d1ddc
[  595.658687][T12091] R10: dffffc0000000000 R11: fffff520016d1ddd R12: dffffc0000000000
[  595.666718][T12091] R13: ffff88805cfcdea8 R14: ffff88805cfcdcb0 R15: ffff88805cfcdd00
[  595.674847][T12091] FS:  00007f8f871f66c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  595.683933][T12091] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  595.690660][T12091] CR2: 0000200000181000 CR3: 000000002e115000 CR4: 00000000003506f0
[  595.698758][T12091] Call Trace:
[  595.702083][T12091]  <TASK>
[  595.705097][T12091]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  595.710898][T12091]  ? __ext4_journal_ensure_credits+0x30/0x450
[  595.717109][T12091]  ext4_xattr_inode_dec_ref_all+0xa2b/0xf90
[  595.723140][T12091]  ? ext4_xattr_delete_inode+0xc00/0xc00
[  595.728913][T12091]  ? __ext4_journal_ensure_credits+0x450/0x450
[  595.729500][   T28] audit: type=1326 audit(1764878150.779:2020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  595.735125][T12091]  ext4_xattr_delete_inode+0xa45/0xc00
[  595.757590][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.758528][   T28] audit: type=1326 audit(1764878150.779:2021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  595.763320][T12091]  ? ext4_reserve_inode_write+0x248/0x2a0
[  595.763366][T12091]  ? ext4_expand_extra_isize_ea+0x19e0/0x19e0
[  595.791805][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.810167][T12091]  ext4_evict_inode+0xaa3/0xea0
[  595.815077][T12091]  ? _raw_spin_unlock+0x28/0x40
[  595.820113][T12091]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  595.826083][T12091]  ? do_raw_spin_unlock+0x121/0x230
[  595.826629][   T28] audit: type=1326 audit(1764878150.779:2022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  595.831387][T12091]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  595.831424][T12091]  evict+0x486/0x870
[  595.831449][T12091]  ? __lock_acquire+0x7c80/0x7c80
[  595.831480][T12091]  ? proc_nr_inodes+0x230/0x230
[  595.853899][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.881158][T12091]  ? do_raw_spin_unlock+0x121/0x230
[  595.886419][T12091]  ? _raw_spin_unlock+0x28/0x40
[  595.891445][T12091]  ? iput+0x70a/0x920
[  595.895496][T12091]  ext4_orphan_cleanup+0xbd4/0x1400
[  595.900384][T12082] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm syz.5.2040: bg 0: block 5: invalid block bitmap
[  595.900860][T12091]  ? ext4_orphan_del+0xba0/0xba0
[  595.918118][T12091]  ? ext4_register_li_request+0x183/0x940
[  595.923964][T12091]  ? errseq_check_and_advance+0x66/0x120
[  595.929734][T12091]  ext4_fill_super+0x5de4/0x66c0
[  595.934760][T12091]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  595.941202][T12091]  ? __might_sleep+0xe0/0xe0
[  595.945865][T12091]  ? read_lock_is_recursive+0x20/0x20
[  595.947150][   T28] audit: type=1326 audit(1764878150.779:2023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  595.951876][T12091]  ? snprintf+0xdb/0x120
[  595.973618][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.984121][T12091]  ? vscnprintf+0x80/0x80
[  595.988438][ T5828] usb usb44-port1: unable to enumerate USB device
[  595.988586][T12091]  ? down_write+0x162/0x1f0
[  595.999611][T12091]  ? down_read_killable+0x340/0x340
[  596.002029][T12082] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1940 with error 28
[  596.004879][T12091]  ? setup_bdev_super+0x56b/0x660
[  596.022506][T12091]  get_tree_bdev+0x3e4/0x510
[  596.023666][T12082] EXT4-fs (loop5): This should not happen!! Data will be lost
[  596.023666][T12082] 
[  596.027284][T12091]  ? vfs_parse_fs_string+0x160/0x160
[  596.027349][T12091]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  596.027385][T12091]  ? setup_bdev_super+0x660/0x660
[  596.027409][T12091]  ? apparmor_capable+0x137/0x1a0
[  596.043593][   T28] audit: type=1326 audit(1764878150.779:2024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12088 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88f8f749 code=0x7ffc0000
[  596.048787][T12091]  ? bpf_lsm_capable+0x9/0x10
[  596.086264][T12091]  ? security_capable+0x89/0xb0
[  596.086386][T12082] EXT4-fs (loop5): Total free blocks count 0
[  596.091257][T12091]  vfs_get_tree+0x8c/0x280
[  596.101753][T12091]  do_new_mount+0x24b/0xa40
[  596.106355][T12091]  __se_sys_mount+0x2da/0x3c0
[  596.111138][T12091]  ? __x64_sys_mount+0xc0/0xc0
[  596.115949][T12091]  ? lockdep_hardirqs_on+0x98/0x150
[  596.116076][T12082] EXT4-fs (loop5): Free/Dirty block details
[  596.121256][T12091]  ? __x64_sys_mount+0x20/0xc0
[  596.121287][T12091]  do_syscall_64+0x55/0xb0
[  596.121317][T12091]  ? clear_bhb_loop+0x40/0x90
[  596.121343][T12091]  ? clear_bhb_loop+0x40/0x90
[  596.121371][T12091]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  596.121397][T12091] RIP: 0033:0x7f8f88f90eea
[  596.121418][T12091] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  596.121438][T12091] RSP: 002b:00007f8f871f5e68 EFLAGS: 00000246
[  596.133650][T12082] EXT4-fs (loop5): free_blocks=0
[  596.136646][T12091]  ORIG_RAX: 00000000000000a5
[  596.141599][T12082] EXT4-fs (loop5): dirty_blocks=1940
[  596.146065][T12091] RAX: ffffffffffffffda RBX: 00007f8f871f5ef0 RCX: 00007f8f88f90eea
[  596.146085][T12091] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8f871f5eb0
[  596.146103][T12091] RBP: 0000200000000180 R08: 00007f8f871f5ef0 R09: 0000000000800700
[  596.158949][T12082] EXT4-fs (loop5): Block reservation details
[  596.176240][T12091] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  596.176262][T12091] R13: 00007f8f871f5eb0 R14: 0000000000000478 R15: 000000000000002c
[  596.176297][T12091]  </TASK>
[  596.176309][T12091] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  596.176321][T12091] CPU: 0 PID: 12091 Comm: syz.4.2043 Not tainted syzkaller #0
[  596.176341][T12091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  596.176353][T12091] Call Trace:
[  596.176361][T12091]  <TASK>
[  596.176369][T12091]  dump_stack_lvl+0x16c/0x230
[  596.176406][T12091]  ? show_regs_print_info+0x20/0x20
[  596.176434][T12091]  ? load_image+0x3b0/0x3b0
[  596.176478][T12091]  panic+0x2c0/0x710
[  596.176511][T12091]  ? bpf_jit_dump+0xd0/0xd0
[  596.176557][T12091]  __warn+0x2e0/0x470
[  596.176580][T12091]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  596.176620][T12091]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  596.176655][T12091]  report_bug+0x2be/0x4f0
[  596.176690][T12091]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  596.176726][T12091]  ? ext4_xattr_inode_update_ref+0x4fb/0x550
[  596.176761][T12091]  ? ext4_xattr_inode_update_ref+0x4fd/0x550
[  596.176803][T12091]  handle_bug+0xcf/0x120
[  596.176838][T12091]  exc_invalid_op+0x1a/0x50
[  596.176881][T12091]  asm_exc_invalid_op+0x1a/0x20
[  596.176905][T12091] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550
[  596.176942][T12091] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 ff 49 2c 08
[  596.176964][T12091] RSP: 0018:ffffc9000b68f2e0 EFLAGS: 00010246
[  596.176986][T12091] RAX: 47c7a77995881d00 RBX: 0000000000000000 RCX: 0000000000080000
[  596.177003][T12091] RDX: ffffc90004cf1000 RSI: 0000000000011a08 RDI: 0000000000011a09
[  596.177019][T12091] RBP: ffffc9000b68f3d0 R08: ffffc9000b68eee7 R09: 1ffff920016d1ddc
[  596.177038][T12091] R10: dffffc0000000000 R11: fffff520016d1ddd R12: dffffc0000000000
[  596.177056][T12091] R13: ffff88805cfcdea8 R14: ffff88805cfcdcb0 R15: ffff88805cfcdd00
[  596.177103][T12091]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  596.177144][T12091]  ? __ext4_journal_ensure_credits+0x30/0x450
[  596.177187][T12091]  ext4_xattr_inode_dec_ref_all+0xa2b/0xf90
[  596.177250][T12091]  ? ext4_xattr_delete_inode+0xc00/0xc00
[  596.177288][T12091]  ? __ext4_journal_ensure_credits+0x450/0x450
[  596.177334][T12091]  ext4_xattr_delete_inode+0xa45/0xc00
[  596.177378][T12091]  ? ext4_reserve_inode_write+0x248/0x2a0
[  596.177417][T12091]  ? ext4_expand_extra_isize_ea+0x19e0/0x19e0
[  596.177498][T12091]  ext4_evict_inode+0xaa3/0xea0
[  596.177538][T12091]  ? _raw_spin_unlock+0x28/0x40
[  596.177594][T12091]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  596.177630][T12091]  ? do_raw_spin_unlock+0x121/0x230
[  596.177665][T12091]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  596.177701][T12091]  evict+0x486/0x870
[  596.177735][T12091]  ? __lock_acquire+0x7c80/0x7c80
[  596.177769][T12091]  ? proc_nr_inodes+0x230/0x230
[  596.177803][T12091]  ? do_raw_spin_unlock+0x121/0x230
[  596.177838][T12091]  ? _raw_spin_unlock+0x28/0x40
[  596.177863][T12091]  ? iput+0x70a/0x920
[  596.177895][T12091]  ext4_orphan_cleanup+0xbd4/0x1400
[  596.177951][T12091]  ? ext4_orphan_del+0xba0/0xba0
[  596.177991][T12091]  ? ext4_register_li_request+0x183/0x940
[  596.178027][T12091]  ? errseq_check_and_advance+0x66/0x120
[  596.178061][T12091]  ext4_fill_super+0x5de4/0x66c0
[  596.178118][T12091]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  596.178148][T12091]  ? __might_sleep+0xe0/0xe0
[  596.178178][T12091]  ? read_lock_is_recursive+0x20/0x20
[  596.178202][T12091]  ? snprintf+0xdb/0x120
[  596.178235][T12091]  ? vscnprintf+0x80/0x80
[  596.178265][T12091]  ? down_write+0x162/0x1f0
[  596.178286][T12091]  ? down_read_killable+0x340/0x340
[  596.178315][T12091]  ? setup_bdev_super+0x56b/0x660
[  596.178349][T12091]  get_tree_bdev+0x3e4/0x510
[  596.178373][T12091]  ? vfs_parse_fs_string+0x160/0x160
[  596.178403][T12091]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  596.178430][T12091]  ? setup_bdev_super+0x660/0x660
[  596.178452][T12091]  ? apparmor_capable+0x137/0x1a0
[  596.178479][T12091]  ? bpf_lsm_capable+0x9/0x10
[  596.178512][T12091]  ? security_capable+0x89/0xb0
[  596.178544][T12091]  vfs_get_tree+0x8c/0x280
[  596.178570][T12091]  do_new_mount+0x24b/0xa40
[  596.178603][T12091]  __se_sys_mount+0x2da/0x3c0
[  596.178633][T12091]  ? __x64_sys_mount+0xc0/0xc0
[  596.178661][T12091]  ? lockdep_hardirqs_on+0x98/0x150
[  596.178683][T12091]  ? __x64_sys_mount+0x20/0xc0
[  596.178708][T12091]  do_syscall_64+0x55/0xb0
[  596.178740][T12091]  ? clear_bhb_loop+0x40/0x90
[  596.178764][T12091]  ? clear_bhb_loop+0x40/0x90
[  596.178800][T12091]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  596.178826][T12091] RIP: 0033:0x7f8f88f90eea
[  596.178848][T12091] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  596.178869][T12091] RSP: 002b:00007f8f871f5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  596.178892][T12091] RAX: ffffffffffffffda RBX: 00007f8f871f5ef0 RCX: 00007f8f88f90eea
[  596.178910][T12091] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8f871f5eb0
[  596.178927][T12091] RBP: 0000200000000180 R08: 00007f8f871f5ef0 R09: 0000000000800700
[  596.178945][T12091] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  596.178960][T12091] R13: 00007f8f871f5eb0 R14: 0000000000000478 R15: 000000000000002c
[  596.179001][T12091]  </TASK>
[  596.182763][T12091] Kernel Offset: disabled