last executing test programs:

1m36.151273888s ago: executing program 3 (id=1646):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x88000)
read(r1, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x335, @time={0xa2eb, 0x8}, 0x0, {}, 0x20})
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f0000000940))
tkill(0x0, 0x7)

1m35.203100065s ago: executing program 3 (id=1654):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000680)='./file0\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@jqfmt_vfsv0}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x145)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000002080)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x20000014)

1m33.305665257s ago: executing program 3 (id=1660):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
lsetxattr$security_capability(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000140), 0x0, 0x0, 0x0)

1m32.770648671s ago: executing program 3 (id=1663):
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mq_open(0x0, 0x6e93ebbbcc0884f2, 0x0, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000001c0), 0x802, 0x0)
ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000f00)={0x0, 0xfb9, "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"})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x161442, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r1, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x41032, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
process_vm_writev(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)

1m32.143115761s ago: executing program 3 (id=1665):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000039"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000007000000010001000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1m31.798676029s ago: executing program 3 (id=1670):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000001000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x47, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4cf68d79c8eac253, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000300)="b9ff030768f1258c989e14f05c71", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1m31.378566273s ago: executing program 32 (id=1670):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000001000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x47, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4cf68d79c8eac253, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000300)="b9ff030768f1258c989e14f05c71", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1m20.287562717s ago: executing program 2 (id=1771):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))
shutdown(r1, 0x0)
epoll_wait(r0, &(0x7f0000000000)=[{}], 0x1, 0x101)

1m19.910412898s ago: executing program 2 (id=1776):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r2, 0x1}, 0x14}}, 0x0)
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x1}, 0x14}}, 0x0)

1m19.643085409s ago: executing program 2 (id=1780):
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x40047452, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @empty}, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0)

1m19.596676543s ago: executing program 2 (id=1782):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x2bc3c1f, 0xffffffffffffffff, 0x7, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000500)='./file0/../file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

1m19.435540146s ago: executing program 2 (id=1785):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x30, r0, 0xc4fc9e906872338b, 0x70bd2a, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0xc7, 0x3a}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4, 0x3, 0x0, 0x0}]}]}]}]}, 0x30}}, 0x0)

1m18.02256729s ago: executing program 2 (id=1801):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f0000001800)={@val={0x8, 0x800}, @val={0x3, 0x0, 0x0, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x1, 0x2b, 0x30, 0x68, 0x0, 0x60, 0x67, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, "21f3305280f125e6e11a9314b296b53b5d25867c0a8c27b6478984da"}}, 0xfdef)

1m17.722188574s ago: executing program 33 (id=1801):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f0000001800)={@val={0x8, 0x800}, @val={0x3, 0x0, 0x0, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x1, 0x2b, 0x30, 0x68, 0x0, 0x60, 0x67, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, "21f3305280f125e6e11a9314b296b53b5d25867c0a8c27b6478984da"}}, 0xfdef)

1.787218176s ago: executing program 1 (id=2526):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b70800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0b000000370000007f0000007f00000001"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0xca, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000005c0)={r0, &(0x7f0000000080), &(0x7f0000000140)=""/241}, 0x20)

1.765059238s ago: executing program 1 (id=2527):
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="20002abd7000"], 0x98}, 0x1, 0x0, 0x0, 0x48c0}, 0x80)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = dup(r0)
ioctl$PTP_EXTTS_REQUEST2(r1, 0xc0603d0f, &(0x7f0000000040))

1.696171294s ago: executing program 5 (id=2529):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x18)
fgetxattr(r0, 0x0, 0x0, 0x0)

1.572795133s ago: executing program 5 (id=2531):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
msgrcv(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2000)

1.572157393s ago: executing program 1 (id=2532):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/12, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=@newtfilter={0x54, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r4, {0xc, 0x4}, {}, {0x5, 0xfff3}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x1000, 0x8, 0x2}, {0xffffffffffffffff, 0x3, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8}]}]}}]}, 0x54}}, 0x20008050)

1.423083105s ago: executing program 5 (id=2534):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000208e052500000000040000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000040000008500000006000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f0000000580)=[{&(0x7f0000001180)="15a2", 0x2}], 0x1)
r3 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000740)=""/70, 0x46}], 0x1}, 0x4c2103a0)

1.309227804s ago: executing program 1 (id=2535):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
lseek(r1, 0x1000000, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
r3 = socket$packet(0x11, 0x3, 0x300)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='\x00')
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000000), r4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r5=>0x0})
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000100)={r5, 0x2, 0x6}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000240)={r5, 0x1, 0x6, @multicast}, 0x10)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

1.171074596s ago: executing program 0 (id=2538):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
r1 = open(&(0x7f0000001b80)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, 0x0)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)

984.0955ms ago: executing program 0 (id=2539):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x10001}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)

954.620023ms ago: executing program 1 (id=2540):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="200000006a00793668bd7000fddbdf250200000000000000080005"], 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000c4)

850.008612ms ago: executing program 4 (id=2542):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x0, {0x1, 0x0, 0x4}, 0x1}, 0x18)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r3=>0x0})
bind$can_j1939(r0, &(0x7f0000000280)={0x1d, r3, 0x0, {0x1, 0xff, 0x4}, 0x1}, 0x18)

783.102707ms ago: executing program 0 (id=2543):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/12, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, 0x0, &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=@newtfilter={0x54, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r4, {0xc, 0x4}, {}, {0x5, 0xfff3}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x1000, 0x8, 0x2}, {0xffffffffffffffff, 0x3, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8}]}]}}]}, 0x54}}, 0x20008050)

783.011737ms ago: executing program 1 (id=2544):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="12000000040000000400000001"], 0x48)
r0 = syz_open_procfs(0x0, 0x0)
read$eventfd(r0, &(0x7f0000000080), 0x8)

753.014149ms ago: executing program 4 (id=2545):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x20000400)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="a1ab000000040000000032"], 0x1c}, 0x1, 0x0, 0x0, 0x4050}, 0x0)

634.387298ms ago: executing program 0 (id=2547):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc)

567.290164ms ago: executing program 4 (id=2548):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000030a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003"], 0xcdc}}, 0x0)

490.34131ms ago: executing program 5 (id=2549):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010326bd6000000000002d9300000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040814)

449.326384ms ago: executing program 4 (id=2550):
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYBLOB="20002abd7000fe"], 0x98}, 0x1, 0x0, 0x0, 0x48c0}, 0x80)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = dup(r0)
ioctl$PTP_EXTTS_REQUEST2(r1, 0xc0603d0f, &(0x7f0000000040))

434.278975ms ago: executing program 0 (id=2551):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
sendmsg$inet6(r0, &(0x7f0000000740)={&(0x7f0000000480)={0xa, 0x4e23, 0x4, @dev={0xfe, 0x80, '\x00', 0x2a}, 0xb}, 0x1c, 0x0, 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="24000000000000002900000032000000fe8000000000000000000000000000bb"], 0x28}, 0x4000000)

264.136938ms ago: executing program 4 (id=2552):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="030300000000000000000600000008000300", @ANYRES32], 0x1c}}, 0x0)

215.007403ms ago: executing program 0 (id=2553):
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x59d, &(0x7f0000001100)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000400), r1)
getsockname$packet(r1, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4800000010000305ff810000fddbdf2500000000", @ANYRES32=r2, @ANYBLOB="1748000040000200280012800a000100767863616e0000001800028014000100000000", @ANYRES32=r2], 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x0)

214.838193ms ago: executing program 5 (id=2554):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x19, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a3200000000140000001100"], 0x54}, 0x1, 0x0, 0x0, 0x20048004}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003400000000000000002"], 0xcdc}}, 0x0)

31.843787ms ago: executing program 5 (id=2555):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/12, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, 0x0, &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=@newtfilter={0x54, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r4, {0xc, 0x4}, {}, {0x5, 0xfff3}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_EMATCHES={0x20, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x1000, 0x8, 0x2}, {0xffffffffffffffff, 0x3, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8}]}]}}]}, 0x54}}, 0x20008050)

0s ago: executing program 4 (id=2556):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='\xac\xed\x00\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00'}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
syz_mount_image$ext4(&(0x7f0000001280)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000001080), 0x1, 0x50d, &(0x7f0000000180)="$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")

kernel console output (not intermixed with test programs):

=0x7ffc0000
[  333.595450][   T28] audit: type=1326 audit(1754873263.972:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9624 comm="syz.1.1379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  334.086992][ T9666] syz.1.1393[9666] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  334.087137][ T9666] syz.1.1393[9666] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  334.641998][ T9689] loop1: detected capacity change from 0 to 512
[  334.677337][ T9689] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.690938][ T9689] ext4 filesystem being mounted at /323/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  334.773016][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.780296][ T9697] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1407'.
[  334.855771][ T9699] loop3: detected capacity change from 0 to 1024
[  334.864554][ T9699] EXT4-fs: Ignoring removed nomblk_io_submit option
[  334.900486][ T9699] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  334.950365][ T9705] loop1: detected capacity change from 0 to 1024
[  335.019769][ T9705] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  335.077689][ T9705] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4036: comm syz.1.1408: Allocating blocks 385-513 which overlap fs metadata
[  335.138515][ T9705] EXT4-fs (loop1): pa ffff88805b020488: logic 16, phys. 129, len 24
[  335.147250][ T9705] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5377: group 0, free 0, pa_free 8
[  335.479047][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.814201][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.839789][ T9729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1420'.
[  336.157185][ T9744] loop1: detected capacity change from 0 to 512
[  336.290431][ T9744] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.385735][ T9744] ext4 filesystem being mounted at /328/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  336.534132][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.984494][ T9770] syz_tun: entered allmulticast mode
[  337.031263][ T9769] syz_tun: left allmulticast mode
[  337.938657][ T9806] loop3: detected capacity change from 0 to 512
[  337.983263][ T9806] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  338.002442][ T9806] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.029784][   T28] kauditd_printk_skb: 41 callbacks suppressed
[  338.029800][   T28] audit: type=1800 audit(1754873269.082:1676): pid=9806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1452" name="file1" dev="loop3" ino=15 res=0 errno=0
[  338.118702][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.438960][   T28] audit: type=1326 audit(1754873269.492:1677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.2.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  338.472400][ T9821] ALSA: seq fatal error: cannot create timer (-22)
[  338.510034][   T28] audit: type=1326 audit(1754873269.492:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.2.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  338.533471][   T28] audit: type=1326 audit(1754873269.492:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.2.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  338.572303][   T28] audit: type=1326 audit(1754873269.492:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.2.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  338.632275][   T28] audit: type=1326 audit(1754873269.492:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.2.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  338.658226][ T9827] loop3: detected capacity change from 0 to 512
[  338.692432][   T28] audit: type=1326 audit(1754873269.492:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.2.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  338.728712][ T9827] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  338.742361][ T9827] ext4 filesystem being mounted at /358/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  338.754585][   T28] audit: type=1326 audit(1754873269.492:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.2.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  338.804480][ T9832] syz.0.1461[9832] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  338.804635][ T9832] syz.0.1461[9832] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  338.846509][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.994668][   T28] audit: type=1326 audit(1754873270.052:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9840 comm="syz.0.1463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  339.058974][   T28] audit: type=1326 audit(1754873270.052:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9840 comm="syz.0.1463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  340.047516][ T9885] ALSA: seq fatal error: cannot create timer (-22)
[  340.050200][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x1
[  340.086635][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.099637][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.111515][ T9886] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1480'.
[  340.125675][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.139824][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.154513][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.164800][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.176945][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.188103][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.207400][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.217865][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.231188][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.247853][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.255876][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.271695][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.293947][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.316467][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.331262][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.362406][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.369924][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.393716][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.408206][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.415830][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.429266][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.459399][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.480607][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.495775][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.506043][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.520645][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.530407][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.547940][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.558997][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.572907][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  340.580469][ T5850] hid-generic 0000:0000:0000.0001: unknown main item tag 0x1
[  340.603664][ T5850] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  340.714237][ T9902] syz.1.1487[9902] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  340.714386][ T9902] syz.1.1487[9902] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  340.937919][ T9910] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1491'.
[  340.976379][ T9912] loop3: detected capacity change from 0 to 512
[  341.051848][ T9912] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.066071][ T9912] ext4 filesystem being mounted at /367/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  341.128916][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.071747][ T9930] netlink: 'syz.0.1498': attribute type 1 has an invalid length.
[  342.115996][ T9930] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1498'.
[  342.325461][ T9940] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  344.208381][ T9986] loop1: detected capacity change from 0 to 512
[  344.287138][ T9986] EXT4-fs (loop1): too many log groups per flexible block group
[  344.318449][ T9986] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  344.348968][ T9986] EXT4-fs (loop1): mount failed
[  344.459661][   T28] kauditd_printk_skb: 123 callbacks suppressed
[  344.459679][   T28] audit: type=1326 audit(1754873275.512:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.507027][   T28] audit: type=1326 audit(1754873275.542:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.529425][   T28] audit: type=1326 audit(1754873275.552:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.554482][   T28] audit: type=1326 audit(1754873275.552:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.577780][   T28] audit: type=1326 audit(1754873275.552:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.600611][   T28] audit: type=1326 audit(1754873275.552:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.630855][   T28] audit: type=1326 audit(1754873275.552:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.710854][   T28] audit: type=1326 audit(1754873275.552:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.752460][   T28] audit: type=1326 audit(1754873275.552:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.802162][   T28] audit: type=1326 audit(1754873275.552:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10003 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb08918ebe9 code=0x7ffc0000
[  344.909818][T10015] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1534'.
[  346.433428][T10042] block device autoloading is deprecated and will be removed.
[  346.567634][T10050] loop0: detected capacity change from 0 to 512
[  346.621184][T10050] EXT4-fs (loop0): too many log groups per flexible block group
[  346.643163][T10050] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  346.660393][T10050] EXT4-fs (loop0): mount failed
[  346.997471][T10058] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1546'.
[  347.489149][T10079] loop1: detected capacity change from 0 to 764
[  347.552674][T10079] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  348.911438][T10091] 
: (slave batadv0): Releasing backup interface
[  348.939406][T10091] 
: (slave bond_slave_0): Releasing backup interface
[  348.964003][T10091] 
: (slave bond_slave_1): Releasing backup interface
[  348.967146][T10097] loop1: detected capacity change from 0 to 1024
[  348.979695][T10097] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  349.004039][T10091] team0: Port device team_slave_0 removed
[  349.010992][T10097] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  349.021157][T10097] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  349.033974][T10097] EXT4-fs (loop1): invalid journal inode
[  349.040259][T10097] EXT4-fs (loop1): can't get journal size
[  349.041726][T10091] team0: Port device team_slave_1 removed
[  349.054241][T10097] EXT4-fs error (device loop1): ext4_protect_reserved_inode:182: inode #3: comm syz.1.1563: blocks 2-2 from inode overlap system zone
[  349.081489][T10091] batman_adv: batadv0: Removing interface: batadv_slave_0
[  349.090034][T10097] EXT4-fs (loop1): failed to initialize system zone (-117)
[  349.102755][T10097] EXT4-fs (loop1): mount failed
[  349.122980][T10091] batman_adv: batadv0: Removing interface: batadv_slave_1
[  349.285167][T10107] loop3: detected capacity change from 0 to 128
[  349.332495][T10107] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  349.351433][T10107] ext4 filesystem being mounted at /383/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  349.440657][T10107] netlink: '+}[@': attribute type 10 has an invalid length.
[  349.467389][T10107] netlink: 40 bytes leftover after parsing attributes in process `+}[@'.
[  349.541456][ T5793] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  349.708524][T10129] loop3: detected capacity change from 0 to 512
[  349.726641][T10129] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1577: iget: bad i_size value: 38620345925642
[  349.740221][T10129] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1577: couldn't read orphan inode 15 (err -117)
[  349.758935][T10129] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  349.776465][T10134] loop1: detected capacity change from 0 to 512
[  349.806036][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.806756][T10134] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  349.829393][T10134] ext4 filesystem being mounted at /357/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  349.893460][T10139] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1579'.
[  349.897020][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.307884][T10157] loop3: detected capacity change from 0 to 512
[  350.352192][T10157] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.379426][T10157] ext4 filesystem being mounted at /389/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  350.487800][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.768288][T10169] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1589'.
[  351.990331][T10199] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1607'.
[  352.092893][T10204] syz.1.1609[10204] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  352.093040][T10204] syz.1.1609[10204] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  352.471146][T10212] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1608'.
[  353.435819][T10227] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1614'.
[  353.481221][T10223] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1614'.
[  353.497211][T10229] loop3: detected capacity change from 0 to 128
[  353.543854][T10225] loop1: detected capacity change from 0 to 512
[  353.553567][T10225] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  353.565214][   T28] kauditd_printk_skb: 23 callbacks suppressed
[  353.565229][   T28] audit: type=1326 audit(1754873284.592:1842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  353.618595][T10225] EXT4-fs (loop1): 1 truncate cleaned up
[  353.626187][T10225] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  353.696547][   T28] audit: type=1326 audit(1754873284.592:1843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  353.765201][   T28] audit: type=1326 audit(1754873284.592:1844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  353.801714][   T28] audit: type=1326 audit(1754873284.592:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2d7fb8ec23 code=0x7ffc0000
[  353.831081][   T28] audit: type=1326 audit(1754873284.592:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f2d7fb8d69f code=0x7ffc0000
[  353.885415][   T28] audit: type=1326 audit(1754873284.602:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f2d7fb8ec77 code=0x7ffc0000
[  353.959358][   T28] audit: type=1326 audit(1754873284.602:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d7fb8d550 code=0x7ffc0000
[  354.015281][   T28] audit: type=1326 audit(1754873284.602:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2d7fb8e7eb code=0x7ffc0000
[  354.058299][   T28] audit: type=1326 audit(1754873284.612:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2d7fb8d84a code=0x7ffc0000
[  354.117815][   T28] audit: type=1326 audit(1754873284.612:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.1.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2d7fb8d84a code=0x7ffc0000
[  354.123504][T10245] syz.3.1623[10245] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.163150][T10245] syz.3.1623[10245] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.275414][T10247] (null): rxe_set_mtu: Set mtu to 1024
[  355.050666][T10261] lo speed is unknown, defaulting to 1000
[  356.423900][T10247] infiniband syz!: set down
[  356.502782][T10247] infiniband syz!: added team_slave_0
[  356.578774][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.812693][T10247] RDS/IB: syz!: added
[  356.818236][T10247] smc: adding ib device syz! with port count 1
[  356.861319][T10247] smc:    ib device syz! port 1 has pnetid 
[  357.673644][T10270] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1632'.
[  358.208023][T10280] loop1: detected capacity change from 0 to 512
[  358.230021][T10280] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.256416][T10280] ext4 filesystem being mounted at /370/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  358.450139][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.893679][T10294] loop0: detected capacity change from 0 to 128
[  359.647785][T10311] loop0: detected capacity change from 0 to 128
[  359.685232][   T28] kauditd_printk_skb: 16 callbacks suppressed
[  359.685249][   T28] audit: type=1800 audit(1754873290.742:1868): pid=10311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1648" name="file2" dev="loop0" ino=1048607 res=0 errno=0
[  359.687037][T10311] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  359.727984][T10311] FAT-fs (loop0): Filesystem has been set read-only
[  359.736925][T10311] syz.0.1648: attempt to access beyond end of device
[  359.736925][T10311] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  359.758712][T10311] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  359.766851][T10311] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  359.786426][T10312] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  359.810197][T10312] syz.0.1648: attempt to access beyond end of device
[  359.810197][T10312] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  359.837834][T10312] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  359.847670][T10312] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  359.867819][T10311] syz.0.1648: attempt to access beyond end of device
[  359.867819][T10311] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  359.898987][T10312] syz.0.1648: attempt to access beyond end of device
[  359.898987][T10312] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  359.936273][T10311] syz.0.1648: attempt to access beyond end of device
[  359.936273][T10311] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  359.953828][T10311] syz.0.1648: attempt to access beyond end of device
[  359.953828][T10311] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  359.975755][T10312] syz.0.1648: attempt to access beyond end of device
[  359.975755][T10312] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  360.007420][T10311] syz.0.1648: attempt to access beyond end of device
[  360.007420][T10311] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  360.027804][T10311] syz.0.1648: attempt to access beyond end of device
[  360.027804][T10311] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  360.048172][T10311] syz.0.1648: attempt to access beyond end of device
[  360.048172][T10311] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  360.092249][   T28] audit: type=1326 audit(1754873291.152:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  360.153450][   T28] audit: type=1326 audit(1754873291.152:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  360.203220][   T28] audit: type=1326 audit(1754873291.152:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  360.254432][   T28] audit: type=1326 audit(1754873291.152:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  360.258122][T10325] loop3: detected capacity change from 0 to 512
[  360.299151][   T28] audit: type=1326 audit(1754873291.172:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  360.345583][T10325] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  360.355817][   T28] audit: type=1326 audit(1754873291.172:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  360.405886][   T28] audit: type=1326 audit(1754873291.172:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  360.630472][T10333] lo speed is unknown, defaulting to 1000
[  361.097250][   T28] audit: type=1326 audit(1754873291.192:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  361.553163][T10325] EXT4-fs (loop3): 1 orphan inode deleted
[  361.578100][   T28] audit: type=1326 audit(1754873291.192:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.2.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd61038ebe9 code=0x7ffc0000
[  361.601136][T10325] EXT4-fs (loop3): 1 truncate cleaned up
[  361.608285][T10325] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.793045][T10325] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.3.1654: path /402/file0/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  361.902472][T10325] EXT4-fs (loop3): Remounting filesystem read-only
[  362.060202][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.288960][T10343] loop1: detected capacity change from 0 to 512
[  362.316991][T10343] EXT4-fs: Ignoring removed oldalloc option
[  362.367211][T10343] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.1661: Parent and EA inode have the same ino 15
[  362.758614][T10353] loop3: detected capacity change from 0 to 128
[  362.844492][T10343] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.1661: Parent and EA inode have the same ino 15
[  362.869355][T10353] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  362.889483][T10353] FAT-fs (loop3): Filesystem has been set read-only
[  362.910360][T10343] EXT4-fs (loop1): 1 orphan inode deleted
[  362.920538][T10353] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  362.948024][T10343] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.983494][T10353] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  363.224419][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.468735][T10366] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1668'.
[  363.478556][T10366] netem: change failed
[  363.544146][T10370] loop0: detected capacity change from 0 to 512
[  363.591280][T10370] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  363.624873][ T2952] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  363.641582][ T2952] netdevsim netdevsim3 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  363.657820][T10370] EXT4-fs (loop0): 1 orphan inode deleted
[  363.664582][T10370] EXT4-fs (loop0): 1 truncate cleaned up
[  363.671798][T10370] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.693071][T10370] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.0.1669: path /450/file0/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  363.715344][T10370] EXT4-fs (loop0): Remounting filesystem read-only
[  363.777083][ T5789] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.890058][ T2952] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  363.908092][ T2952] netdevsim netdevsim3 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  364.030001][ T2952] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  364.070804][ T2952] netdevsim netdevsim3 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  364.184298][ T2952] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  364.230838][ T2952] netdevsim netdevsim3 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  364.570253][ T5797] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  364.596585][ T5797] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  364.611433][ T5797] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  364.623009][ T5797] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  364.632152][ T5797] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  364.641378][ T5797] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  364.683203][ T2952] tipc: Disabling bearer <eth:syzkaller0>
[  364.770352][ T2952] tipc: Left network mode
[  364.799242][T10387] lo speed is unknown, defaulting to 1000
[  365.200389][T10397] loop1: detected capacity change from 0 to 512
[  365.214536][T10397] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  365.285296][T10397] EXT4-fs (loop1): 1 orphan inode deleted
[  365.316085][T10397] EXT4-fs (loop1): 1 truncate cleaned up
[  365.332676][   T28] kauditd_printk_skb: 8 callbacks suppressed
[  365.332691][   T28] audit: type=1326 audit(1754873296.392:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1681" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd61038ebe9 code=0x0
[  365.372193][T10397] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.521937][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.840431][T10387] chnl_net:caif_netlink_parms(): no params data found
[  366.238309][T10422] loop1: detected capacity change from 0 to 128
[  366.312236][T10387] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.324459][T10387] bridge0: port 1(bridge_slave_0) entered disabled state
[  366.336575][T10387] bridge_slave_0: entered allmulticast mode
[  366.348067][T10387] bridge_slave_0: entered promiscuous mode
[  366.387801][   T28] audit: type=1804 audit(1754873297.442:1887): pid=10422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1686" name="/newroot/384/file1/bus" dev="loop1" ino=1048615 res=1 errno=0
[  366.413084][   T28] audit: type=1804 audit(1754873297.472:1888): pid=10422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1686" name="/newroot/384/file1/bus" dev="loop1" ino=1048615 res=1 errno=0
[  366.441207][T10387] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.448539][T10387] bridge0: port 2(bridge_slave_1) entered disabled state
[  366.481018][T10387] bridge_slave_1: entered allmulticast mode
[  366.490980][T10387] bridge_slave_1: entered promiscuous mode
[  366.596474][T10428] loop0: detected capacity change from 0 to 512
[  366.669921][T10387] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.692087][   T50] Bluetooth: hci2: command tx timeout
[  366.700619][T10387] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.799030][T10432] loop1: detected capacity change from 0 to 512
[  366.824072][T10432] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  366.840179][T10432] EXT4-fs (loop1): orphan cleanup on readonly fs
[  366.849319][T10432] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:512: comm syz.1.1692: Block bitmap for bg 0 marked uninitialized
[  366.873171][T10432] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  366.883662][T10432] EXT4-fs (loop1): 1 orphan inode deleted
[  366.904535][T10432] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  366.963759][T10387] team0: Port device team_slave_0 added
[  367.006966][T10387] team0: Port device team_slave_1 added
[  367.069303][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.154380][T10387] batman_adv: batadv0: Adding interface: batadv_slave_0
[  367.174939][T10387] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  367.212876][T10387] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  367.233869][T10387] batman_adv: batadv0: Adding interface: batadv_slave_1
[  367.241508][T10387] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  367.280992][T10387] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  367.314057][ T2952] hsr_slave_0: left promiscuous mode
[  367.320392][ T2952] hsr_slave_1: left promiscuous mode
[  367.326582][ T2952] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  367.334350][ T2952] batman_adv: batadv0: Removing interface: batadv_slave_0
[  367.351804][ T2952] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  367.359271][ T2952] batman_adv: batadv0: Removing interface: batadv_slave_1
[  367.367588][ T2952] batadv1: left allmulticast mode
[  367.373598][ T2952] batadv1: left promiscuous mode
[  367.382149][ T2952] bridge0: port 3(batadv1) entered disabled state
[  367.392920][ T2952] bridge_slave_1: left allmulticast mode
[  367.398619][ T2952] bridge_slave_1: left promiscuous mode
[  367.405257][ T2952] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.415317][ T2952] bridge_slave_0: left allmulticast mode
[  367.421121][ T2952] bridge_slave_0: left promiscuous mode
[  367.426936][ T2952] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.456533][ T2952] veth1_vlan: left promiscuous mode
[  367.462568][ T2952] veth0_vlan: left promiscuous mode
[  367.783927][   T59] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[  367.866876][ T2952] bond1 (unregistering): (slave geneve2): Releasing backup interface
[  367.888781][ T2952] bond1 (unregistering): Released all slaves
[  368.078884][T10453] loop1: detected capacity change from 0 to 512
[  368.088031][T10453] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  368.114961][T10453] EXT4-fs (loop1): 1 orphan inode deleted
[  368.128226][T10453] EXT4-fs (loop1): 1 truncate cleaned up
[  368.135659][T10453] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  368.261532][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.308887][T10457] loop0: detected capacity change from 0 to 128
[  368.380516][   T28] audit: type=1804 audit(1754873299.432:1889): pid=10457 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1699" name="/newroot/458/file1/bus" dev="loop0" ino=1048618 res=1 errno=0
[  368.414583][   T28] audit: type=1804 audit(1754873299.432:1890): pid=10457 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1699" name="/newroot/458/file1/bus" dev="loop0" ino=1048618 res=1 errno=0
[  368.657097][ T2952] team0 (unregistering): Port device team_slave_1 removed
[  368.775967][   T50] Bluetooth: hci2: command tx timeout
[  368.795547][ T2952] team0 (unregistering): Port device team_slave_0 removed
[  368.854725][T10468] loop1: detected capacity change from 0 to 8192
[  368.899540][   T28] audit: type=1800 audit(1754873299.942:1891): pid=10468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1705" name="file1" dev="loop1" ino=1048619 res=0 errno=0
[  368.935886][ T2952] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  369.048092][ T2952] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  369.496757][T10481] loop0: detected capacity change from 0 to 128
[  369.550670][ T2952] team0 (unregistering): Port device dummy0 removed
[  369.582664][   T28] audit: type=1804 audit(1754873300.632:1892): pid=10481 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1711" name="/newroot/464/file1/bus" dev="loop0" ino=1048620 res=1 errno=0
[  369.750623][ T2952] bond0 (unregistering): (slave team0): Releasing backup interface
[  369.767581][   T55] infiniband syz1: ib_query_port failed (-19)
[  369.801300][T10483] netlink: 100 bytes leftover after parsing attributes in process `syz.0.1712'.
[  370.014904][ T2952] bond0 (unregistering): Released all slaves
[  370.034618][T10487] loop0: detected capacity change from 0 to 128
[  370.115858][   T28] audit: type=1326 audit(1754873301.172:1893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10486 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  370.148829][   T28] audit: type=1326 audit(1754873301.172:1894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10486 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  370.183944][   T28] audit: type=1326 audit(1754873301.172:1895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10486 comm="syz.0.1714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  370.277723][T10489] syzkaller1: entered promiscuous mode
[  370.290761][T10489] syzkaller1: entered allmulticast mode
[  370.303476][T10387] hsr_slave_0: entered promiscuous mode
[  370.310335][T10387] hsr_slave_1: entered promiscuous mode
[  370.373999][T10489] netlink: 'syz.0.1715': attribute type 39 has an invalid length.
[  370.851076][   T50] Bluetooth: hci2: command tx timeout
[  371.129097][T10387] 8021q: adding VLAN 0 to HW filter on device bond0
[  371.195877][T10387] 8021q: adding VLAN 0 to HW filter on device team0
[  371.219822][ T8397] bridge0: port 1(bridge_slave_0) entered blocking state
[  371.227187][ T8397] bridge0: port 1(bridge_slave_0) entered forwarding state
[  371.282068][ T2952] bridge0: port 2(bridge_slave_1) entered blocking state
[  371.289336][ T2952] bridge0: port 2(bridge_slave_1) entered forwarding state
[  371.303326][T10522] loop1: detected capacity change from 0 to 128
[  371.386594][T10387] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  371.470976][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  371.470991][   T28] audit: type=1804 audit(1754873302.522:1897): pid=10522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1728" name="/newroot/400/file1/bus" dev="loop1" ino=1048621 res=1 errno=0
[  371.702965][T10531] loop1: detected capacity change from 0 to 128
[  371.741819][T10531] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  371.766326][T10531] ext4 filesystem being mounted at /401/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  371.885768][ T5795] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  371.963569][T10387] 8021q: adding VLAN 0 to HW filter on device batadv0
[  372.296883][T10548] loop0: detected capacity change from 0 to 1024
[  372.382624][T10548] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.486542][ T5789] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.651682][T10562] loop0: detected capacity change from 0 to 512
[  372.669611][T10562] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  372.681726][T10387] veth0_vlan: entered promiscuous mode
[  372.720106][T10562] EXT4-fs (loop0): 1 orphan inode deleted
[  372.746652][T10387] veth1_vlan: entered promiscuous mode
[  372.754790][T10562] EXT4-fs (loop0): 1 truncate cleaned up
[  372.769811][T10562] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.827911][T10387] veth0_macvtap: entered promiscuous mode
[  372.839200][T10387] veth1_macvtap: entered promiscuous mode
[  372.875576][T10387] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  372.895663][T10387] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  372.907872][T10387] batman_adv: batadv0: Interface activated: batadv_slave_0
[  372.931051][   T50] Bluetooth: hci2: command tx timeout
[  372.949550][T10387] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  372.982647][ T5789] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.998298][T10387] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  373.023072][T10387] batman_adv: batadv0: Interface activated: batadv_slave_1
[  373.233696][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  373.256052][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  373.396317][ T8403] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  373.410836][ T8403] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  373.651058][   T28] audit: type=1326 audit(1754873304.702:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10580 comm="syz.4.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  373.741032][   T28] audit: type=1326 audit(1754873304.712:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10580 comm="syz.4.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  373.796873][   T28] audit: type=1326 audit(1754873304.712:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10580 comm="syz.4.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  373.829135][   T28] audit: type=1326 audit(1754873304.712:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10580 comm="syz.4.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  373.859705][   T28] audit: type=1326 audit(1754873304.712:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10580 comm="syz.4.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  374.059304][   T28] audit: type=1326 audit(1754873305.112:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10599 comm="syz.0.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  374.117396][   T28] audit: type=1326 audit(1754873305.112:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10599 comm="syz.0.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  374.141568][T10598] syzkaller1: entered promiscuous mode
[  374.147116][T10598] syzkaller1: entered allmulticast mode
[  374.186034][   T28] audit: type=1326 audit(1754873305.142:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10599 comm="syz.0.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  374.224861][T10598] netlink: 'syz.2.1751': attribute type 39 has an invalid length.
[  374.239675][   T28] audit: type=1326 audit(1754873305.142:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10599 comm="syz.0.1754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  374.322158][T10607] loop1: detected capacity change from 0 to 1024
[  374.379841][T10607] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.418299][T10605] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1756'.
[  374.516541][T10607] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1757'.
[  374.708462][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.929433][T10630] loop1: detected capacity change from 0 to 1024
[  374.954567][T10630] EXT4-fs: Ignoring removed orlov option
[  374.987686][T10630] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  375.116051][T10640] can0: slcan on ttyS3.
[  375.192991][T10640] can0 (unregistered): slcan off ttyS3.
[  375.408394][T10650] loop0: detected capacity change from 0 to 128
[  375.827079][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.045909][T10676] loop1: detected capacity change from 0 to 512
[  376.077210][T10676] EXT4-fs error (device loop1): ext4_init_orphan_info:586: comm syz.1.1783: inode #0: comm syz.1.1783: iget: illegal inode #
[  376.097571][T10679] loop0: detected capacity change from 0 to 128
[  376.102100][T10676] EXT4-fs (loop1): get orphan inode failed
[  376.113077][T10676] EXT4-fs (loop1): mount failed
[  376.357254][T10683] syzkaller1: entered promiscuous mode
[  376.367286][T10683] syzkaller1: entered allmulticast mode
[  376.499382][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  376.499398][   T28] audit: type=1326 audit(1754873307.552:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.539732][   T28] audit: type=1326 audit(1754873307.562:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.570445][   T28] audit: type=1326 audit(1754873307.562:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.600645][   T28] audit: type=1326 audit(1754873307.562:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.628715][   T28] audit: type=1326 audit(1754873307.562:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.658127][   T28] audit: type=1326 audit(1754873307.562:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.686453][   T28] audit: type=1326 audit(1754873307.562:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.774610][   T28] audit: type=1326 audit(1754873307.562:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.843120][   T28] audit: type=1326 audit(1754873307.742:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  376.873908][   T28] audit: type=1326 audit(1754873307.742:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.4.1790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  378.150981][ T5797] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  378.171306][ T5797] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  378.275633][ T5797] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  378.291961][ T5797] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  378.315279][ T5797] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  378.325174][ T5797] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  378.926740][T10728] lo speed is unknown, defaulting to 1000
[  379.028340][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  379.034800][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  379.103592][T10741] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1811'.
[  379.491719][T10760] loop0: detected capacity change from 0 to 128
[  379.642606][T10728] chnl_net:caif_netlink_parms(): no params data found
[  379.871211][T10728] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.878609][T10728] bridge0: port 1(bridge_slave_0) entered disabled state
[  379.886352][T10728] bridge_slave_0: entered allmulticast mode
[  379.903463][T10728] bridge_slave_0: entered promiscuous mode
[  379.944146][T10728] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.965476][T10728] bridge0: port 2(bridge_slave_1) entered disabled state
[  379.996156][T10728] bridge_slave_1: entered allmulticast mode
[  380.018540][T10728] bridge_slave_1: entered promiscuous mode
[  380.181795][T10728] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  380.196881][T10728] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  380.271021][T10728] team0: Port device team_slave_0 added
[  380.288490][T10728] team0: Port device team_slave_1 added
[  380.341564][T10786] Bluetooth: MGMT ver 1.22
[  380.377229][T10728] batman_adv: batadv0: Adding interface: batadv_slave_0
[  380.388525][T10728] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  380.425780][T10728] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  380.444917][T10728] batman_adv: batadv0: Adding interface: batadv_slave_1
[  380.451065][   T50] Bluetooth: hci1: command tx timeout
[  380.456099][T10728] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  380.498844][T10728] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  380.592716][T10728] hsr_slave_0: entered promiscuous mode
[  380.610859][T10728] hsr_slave_1: entered promiscuous mode
[  380.621522][T10728] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  380.629127][T10728] Cannot create hsr debugfs directory
[  381.231633][T10728] 8021q: adding VLAN 0 to HW filter on device bond0
[  381.264927][T10728] 8021q: adding VLAN 0 to HW filter on device team0
[  381.323160][ T2952] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.330409][ T2952] bridge0: port 1(bridge_slave_0) entered forwarding state
[  381.362933][ T2952] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.370126][ T2952] bridge0: port 2(bridge_slave_1) entered forwarding state
[  381.394496][T10826] netdevsim netdevsim0: Direct firmware load for ./file0 failed with error -2
[  381.434623][T10826] netdevsim netdevsim0: Falling back to sysfs fallback for: ./file0
[  381.731645][T10728] 8021q: adding VLAN 0 to HW filter on device batadv0
[  382.265784][T10728] veth0_vlan: entered promiscuous mode
[  382.302331][T10728] veth1_vlan: entered promiscuous mode
[  382.377567][T10728] veth0_macvtap: entered promiscuous mode
[  382.413795][T10728] veth1_macvtap: entered promiscuous mode
[  382.478407][T10728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  382.503129][T10728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  382.530513][T10728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  382.542925][   T50] Bluetooth: hci1: command tx timeout
[  382.565684][T10728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  382.593684][T10728] batman_adv: batadv0: Interface activated: batadv_slave_0
[  382.616938][T10728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  382.660887][T10728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  382.690873][T10728] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  382.711982][T10728] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  382.753381][T10728] batman_adv: batadv0: Interface activated: batadv_slave_1
[  383.185529][ T8403] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  383.210158][ T8403] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  383.301320][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  383.317636][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  384.610979][   T50] Bluetooth: hci1: command tx timeout
[  384.619297][T10927] loop1: detected capacity change from 0 to 512
[  384.634281][T10929] loop5: detected capacity change from 0 to 128
[  384.680679][T10927] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.721049][   T28] kauditd_printk_skb: 30 callbacks suppressed
[  384.721066][   T28] audit: type=1804 audit(1754873315.772:1961): pid=10929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1872" name="/newroot/5/file1/bus" dev="loop5" ino=1048629 res=1 errno=0
[  384.731024][T10927] ext4 filesystem being mounted at /443/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  384.816038][   T28] audit: type=1804 audit(1754873315.772:1962): pid=10929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1872" name="/newroot/5/file1/bus" dev="loop5" ino=1048629 res=1 errno=0
[  384.930039][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.993457][T10942] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1875'.
[  385.149721][   T28] audit: type=1326 audit(1754873316.202:1963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.0.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  385.154941][T10950] loop0: detected capacity change from 0 to 128
[  385.181825][   T28] audit: type=1326 audit(1754873316.202:1964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.0.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  385.214415][   T28] audit: type=1326 audit(1754873316.202:1965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.0.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  385.217984][T10950] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  385.237614][   T28] audit: type=1326 audit(1754873316.202:1966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.0.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff107b8ec23 code=0x7ffc0000
[  385.280427][   T28] audit: type=1326 audit(1754873316.212:1967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.0.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff107b8d69f code=0x7ffc0000
[  385.303951][   T28] audit: type=1326 audit(1754873316.212:1968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.0.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff107b8ec77 code=0x7ffc0000
[  385.326679][   T28] audit: type=1326 audit(1754873316.212:1969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.0.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff107b8d550 code=0x7ffc0000
[  385.350264][   T28] audit: type=1326 audit(1754873316.212:1970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10947 comm="syz.0.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff107b8e7eb code=0x7ffc0000
[  385.377600][T10950] ext4 filesystem being mounted at /521/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  385.522479][ T5789] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  385.584725][T10964] loop1: detected capacity change from 0 to 512
[  385.603494][T10964] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  385.649074][T10964] EXT4-fs (loop1): 1 truncate cleaned up
[  385.666491][T10964] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.716417][T10964] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1883'.
[  385.862245][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.556649][T10977] loop1: detected capacity change from 0 to 512
[  386.716567][   T50] Bluetooth: hci1: command tx timeout
[  386.890049][T10977] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.941486][T10977] ext4 filesystem being mounted at /446/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  387.231919][T10991] netlink: 'syz.5.1891': attribute type 4 has an invalid length.
[  387.536865][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.778162][T11008] loop0: detected capacity change from 0 to 512
[  387.846955][T11008] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  387.878532][T11012] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1898'.
[  387.890984][T11008] ext4 filesystem being mounted at /526/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  387.893418][T11012] smc: net device bond0 applied user defined pnetid S
[  387.943197][T11008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.062013][T11008] netem: change failed
[  388.129103][T11019] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1902'.
[  388.184750][T11023] hub 6-0:1.0: USB hub found
[  388.192232][T11023] hub 6-0:1.0: 1 port detected
[  388.295072][T11028] sd 0:0:1:0: device reset
[  388.522980][T11028] loop1: detected capacity change from 0 to 8192
[  388.701778][T11028]  loop1: p1 p2[DM] p3 p4
[  388.706780][T11028] loop1: p1 size 196608 extends beyond EOD, truncated
[  388.753784][T11028] loop1: p2 start 4292936063 is beyond EOD, truncated
[  388.761051][T11028] loop1: p3 size 189005824 extends beyond EOD, truncated
[  388.769706][T11028] loop1: p4 size 50331648 extends beyond EOD, truncated
[  388.971472][T11049] loop5: detected capacity change from 0 to 1024
[  389.034871][T11049] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  389.794888][T11078] loop0: detected capacity change from 0 to 128
[  389.886730][T11078] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  389.907388][T11078] ext4 filesystem being mounted at /534/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  390.392506][T11076] loop1: detected capacity change from 0 to 512
[  390.610131][T11076] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.1926: invalid block
[  390.667126][T11076] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1926: invalid indirect mapped block 4294967295 (level 1)
[  390.734077][T11076] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1926: invalid indirect mapped block 4294967295 (level 1)
[  390.791703][T11076] EXT4-fs (loop1): 2 truncates cleaned up
[  390.812265][T11076] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.919747][T11084] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.051428][T11084] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.205832][T11084] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.273221][T11087] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1929'.
[  391.299084][T11088] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1929'.
[  391.368603][T11084] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.696405][T11084] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  391.778788][T11084] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  391.871321][T11084] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  391.928893][T11084] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  392.097232][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.165613][ T5789] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  392.345171][T11098] veth0_to_team: entered promiscuous mode
[  392.494913][T11102] lo speed is unknown, defaulting to 1000
[  394.035366][T11144] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.143939][T11144] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.296259][T11144] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.514053][T11144] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.559876][T10728] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.588471][T11156] smc: net device bond0 erased user defined pnetid S
[  394.921540][T11164] netlink: 428 bytes leftover after parsing attributes in process `syz.4.1962'.
[  395.002760][T11168] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1964'.
[  395.033800][T11168] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1964'.
[  395.061945][T11168] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1964'.
[  395.082582][T11168] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1964'.
[  395.126868][T11172] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1966'.
[  395.394647][T11180] smc: net device bond0 applied user defined pnetid SYZ0
[  395.429779][T11180] smc: net device bond0 erased user defined pnetid SYZ0
[  396.255802][T11207] loop5: detected capacity change from 0 to 128
[  396.370183][T11207] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  396.384350][T11207] ext4 filesystem being mounted at /27/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  396.510967][   T28] kauditd_printk_skb: 84 callbacks suppressed
[  396.511028][   T28] audit: type=1326 audit(1754873327.562:2055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  396.920568][   T28] audit: type=1326 audit(1754873327.562:2056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  397.387795][   T28] audit: type=1326 audit(1754873327.602:2057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  397.422957][T11144] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  397.503453][T11144] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  397.520116][   T28] audit: type=1326 audit(1754873327.612:2058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  397.605618][T11144] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  397.624516][   T28] audit: type=1326 audit(1754873327.612:2059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  397.719377][T11144] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.110529][T11218] smc: net device bond0 applied user defined pnetid SYZ0
[  398.128536][T11219] smc: net device bond0 erased user defined pnetid SYZ0
[  398.420915][   T28] audit: type=1326 audit(1754873329.472:2060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11222 comm="syz.1.1985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  398.540965][   T28] audit: type=1326 audit(1754873329.472:2061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11222 comm="syz.1.1985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  398.647047][   T28] audit: type=1326 audit(1754873329.512:2062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11222 comm="syz.1.1985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  398.681695][T10728] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  398.731028][   T28] audit: type=1326 audit(1754873329.512:2063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11222 comm="syz.1.1985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  398.761531][T11231] loop1: detected capacity change from 0 to 512
[  398.768760][T11231] EXT4-fs: Ignoring removed oldalloc option
[  398.778628][T11231] EXT4-fs: Ignoring removed mblk_io_submit option
[  398.785197][   T28] audit: type=1326 audit(1754873329.512:2064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11222 comm="syz.1.1985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  398.821194][T11231] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  398.846050][T11231] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=2840c01c, mo2=0102]
[  398.859134][T11231] System zones: 0-2, 18-18, 34-34
[  398.881309][T11231] EXT4-fs (loop1): orphan cleanup on readonly fs
[  398.946573][T11231] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1988: Failed to acquire dquot type 1
[  398.974821][T11231] EXT4-fs (loop1): 1 truncate cleaned up
[  399.004874][T11231] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  399.031191][T11241] netlink: 'syz.4.1993': attribute type 1 has an invalid length.
[  399.072101][T11241] 8021q: adding VLAN 0 to HW filter on device bond1
[  399.079537][T11231] EXT4-fs: Ignoring removed orlov option
[  399.085656][T11231] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[  399.115787][T11241] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1993'.
[  399.125442][T11231] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  399.180839][T11231] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  399.200988][T11231] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=842c11c, mo2=0102]
[  399.254079][T11231] EXT4-fs error (device loop1): __ext4_remount:6741: comm syz.1.1988: Abort forced by user
[  399.273680][T11231] EXT4-fs (loop1): Remounting filesystem read-only
[  399.281553][T11231] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  399.322735][T11231] ext4 filesystem being remounted at /464/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  399.322857][T11250] loop5: detected capacity change from 0 to 512
[  399.354702][T11250] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  399.458415][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.480595][T11250] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  399.504413][T11241] bond1 (unregistering): Released all slaves
[  399.654675][T10728] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.027431][T11271] loop1: detected capacity change from 0 to 128
[  401.253402][T11271] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  401.538870][T11271] ext4 filesystem being mounted at /466/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  403.128323][T11289] batadv_slave_0: entered promiscuous mode
[  403.160271][T11289] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2011'.
[  403.189698][T11289] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  403.535352][T11289] batadv_slave_0 (unregistering): left promiscuous mode
[  403.566702][T11289] batman_adv: batadv0: Removing interface: batadv_slave_0
[  403.665935][ T5795] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  404.150156][T11306] loop1: detected capacity change from 0 to 128
[  404.776411][T11336] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2032'.
[  404.946573][T11344] sd 0:0:1:0: device reset
[  405.256962][T11355] loop5: detected capacity change from 0 to 1024
[  405.273184][T11355] EXT4-fs: inline encryption not supported
[  405.279332][T11355] EXT4-fs: Ignoring removed i_version option
[  405.286656][T11355] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  405.396516][T11355] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 2: comm syz.5.2045: lblock 2 mapped to illegal pblock 2 (length 1)
[  405.436529][T11355] __quota_error: 37 callbacks suppressed
[  405.436549][T11355] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  405.458024][T11355] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 48: comm syz.5.2045: lblock 0 mapped to illegal pblock 48 (length 1)
[  405.481721][T11355] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  405.499578][T11355] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2045: Failed to acquire dquot type 0
[  405.518884][T11355] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  405.551461][T11355] EXT4-fs error (device loop5): ext4_evict_inode:252: inode #11: comm syz.5.2045: mark_inode_dirty error
[  405.567326][T11355] EXT4-fs warning (device loop5): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  405.578181][T11355] EXT4-fs (loop5): 1 orphan inode deleted
[  405.603258][ T2932] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  405.613591][T11355] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  405.632126][ T2932] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  405.640641][ T2932] EXT4-fs error (device loop5): ext4_release_dquot:6974: comm kworker/u4:7: Failed to release dquot type 0
[  405.690212][T11355] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.711036][T11355] EXT4-fs error (device loop5): __ext4_get_inode_loc:4483: comm syz.5.2045: Invalid inode table block 1 in block_group 0
[  405.731473][T11355] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  405.748141][T11355] EXT4-fs error (device loop5): ext4_quota_off:7222: inode #3: comm syz.5.2045: mark_inode_dirty error
[  406.057350][T11386] random: crng reseeded on system resumption
[  406.322041][   T28] audit: type=1326 audit(1754873337.382:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11390 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  406.355007][   T28] audit: type=1326 audit(1754873337.382:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11390 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  406.378216][   T28] audit: type=1326 audit(1754873337.382:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11390 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  406.407775][   T28] audit: type=1326 audit(1754873337.382:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11390 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  406.437906][   T28] audit: type=1326 audit(1754873337.432:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11390 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  406.807918][   T28] audit: type=1326 audit(1754873337.862:2105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11405 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  406.874145][   T28] audit: type=1326 audit(1754873337.862:2106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11405 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  407.219050][T11423] loop5: detected capacity change from 0 to 512
[  407.267639][T11423] EXT4-fs (loop5): 1 orphan inode deleted
[  407.275487][T11423] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  407.292470][ T3506] EXT4-fs error (device loop5): ext4_release_dquot:6974: comm kworker/u4:12: Failed to release dquot type 1
[  407.301899][T11423] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  407.401331][   T59] EXT4-fs error (device loop5): ext4_release_dquot:6974: comm kworker/u4:4: Failed to release dquot type 1
[  407.424050][T10728] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.160392][T11464] loop0: detected capacity change from 0 to 128
[  408.179840][T11463] loop1: detected capacity change from 0 to 1024
[  408.218426][T11463] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  408.246602][T11463] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2077'.
[  408.278008][T11468] program syz.4.2080 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  408.329214][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.583388][T11481] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1340
[  408.858336][T11498] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2092'.
[  408.984151][T11505] loop1: detected capacity change from 0 to 128
[  409.309413][T11511] pim6reg: entered allmulticast mode
[  409.870051][T11528] loop1: detected capacity change from 0 to 2048
[  409.905178][T11528] ext4: Unknown parameter 'rootcontext'
[  410.069421][T11528] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2103'.
[  410.102993][T11528] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2103'.
[  410.198726][T11528] bond1: entered promiscuous mode
[  410.251367][T11528] bond1: entered allmulticast mode
[  410.281220][T11528] 8021q: adding VLAN 0 to HW filter on device bond1
[  410.658377][   T28] kauditd_printk_skb: 94 callbacks suppressed
[  410.658394][   T28] audit: type=1326 audit(1754873341.712:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  410.710132][   T28] audit: type=1326 audit(1754873341.712:2200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  410.743058][   T28] audit: type=1326 audit(1754873341.712:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  410.780445][   T28] audit: type=1326 audit(1754873341.712:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  410.813559][T11528] bond1 (unregistering): Released all slaves
[  410.843093][   T28] audit: type=1326 audit(1754873341.712:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  410.915149][T11538] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2103'.
[  410.918713][   T28] audit: type=1326 audit(1754873341.712:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  410.997625][   T28] audit: type=1326 audit(1754873341.712:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  411.101134][   T28] audit: type=1326 audit(1754873341.742:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  411.123644][    C1] vkms_vblank_simulate: vblank timer overrun
[  411.177566][   T28] audit: type=1326 audit(1754873341.742:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  411.269532][   T28] audit: type=1326 audit(1754873341.742:2208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff107b8ebe9 code=0x7ffc0000
[  411.292029][    C1] vkms_vblank_simulate: vblank timer overrun
[  411.447373][T11563] loop0: detected capacity change from 0 to 128
[  411.942499][T11586] loop5: detected capacity change from 0 to 512
[  411.984434][T11586] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.013588][T11586] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  412.115183][T10728] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.213121][T11601] loop0: detected capacity change from 0 to 128
[  412.346443][T11604] lo speed is unknown, defaulting to 1000
[  413.811728][T11648] loop1: detected capacity change from 0 to 512
[  413.829019][T11648] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  413.869746][T11648] EXT4-fs (loop1): 1 truncate cleaned up
[  413.887838][T11648] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.123049][T11659] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2155'.
[  414.658732][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.794816][T11672] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2161'.
[  415.236310][T11679] netlink: 29 bytes leftover after parsing attributes in process `syz.1.2165'.
[  416.132273][ T5797] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  416.143600][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  416.154271][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  416.171444][ T5797] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  416.180385][ T5797] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  416.188228][ T5797] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  416.345202][T11687] lo speed is unknown, defaulting to 1000
[  416.836335][ T2952] tipc: Left network mode
[  417.013928][T11702] netlink: 'syz.4.2173': attribute type 1 has an invalid length.
[  417.022156][T11702] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2173'.
[  417.038101][T11702] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2173'.
[  417.211712][T11705] loop1: detected capacity change from 0 to 256
[  417.261822][T11705] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  417.429455][T11687] chnl_net:caif_netlink_parms(): no params data found
[  417.805697][T11724] loop5: detected capacity change from 0 to 512
[  417.813146][T11724] EXT4-fs: Ignoring removed mblk_io_submit option
[  417.821470][T11724] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  417.841646][T11724] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  417.850183][T11724] EXT4-fs (loop5): orphan cleanup on readonly fs
[  417.874958][T11724] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:478: comm syz.5.2181: Invalid block bitmap block 0 in block_group 0
[  417.922220][T11724] EXT4-fs (loop5): Remounting filesystem read-only
[  417.941491][T11724] __quota_error: 51 callbacks suppressed
[  417.941507][T11724] Quota error (device loop5): write_blk: dquota write failed
[  417.984768][T11724] Quota error (device loop5): write_blk: dquota write failed
[  418.015193][T11724] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  418.026549][T11724] EXT4-fs (loop5): 1 orphan inode deleted
[  418.034504][T11724] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  418.097109][T11687] bridge0: port 1(bridge_slave_0) entered blocking state
[  418.125288][T11687] bridge0: port 1(bridge_slave_0) entered disabled state
[  418.141218][T11687] bridge_slave_0: entered allmulticast mode
[  418.150982][T10728] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.157626][T11687] bridge_slave_0: entered promiscuous mode
[  418.220937][ T5797] Bluetooth: hci0: command tx timeout
[  418.283644][T11687] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.291458][T11687] bridge0: port 2(bridge_slave_1) entered disabled state
[  418.298742][T11687] bridge_slave_1: entered allmulticast mode
[  418.306369][T11687] bridge_slave_1: entered promiscuous mode
[  418.432179][T11687] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  418.485412][T11687] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  418.689301][T11687] team0: Port device team_slave_0 added
[  418.705493][T11687] team0: Port device team_slave_1 added
[  418.913048][T11687] batman_adv: batadv0: Adding interface: batadv_slave_0
[  418.920067][T11687] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  418.969736][T11687] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  419.072385][T11687] batman_adv: batadv0: Adding interface: batadv_slave_1
[  419.079594][T11687] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  419.095151][T11757] loop1: detected capacity change from 0 to 8192
[  419.131224][T11687] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  419.159501][T11757] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  419.324092][T11764] loop5: detected capacity change from 0 to 1024
[  419.357102][T11764] EXT4-fs: Ignoring removed bh option
[  419.371056][T11764] EXT4-fs: inline encryption not supported
[  419.382886][T11764] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  419.416852][T11764] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  419.428027][ T2952] hsr_slave_0: left promiscuous mode
[  419.450420][ T2952] hsr_slave_1: left promiscuous mode
[  419.461132][T11764] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 2: comm syz.5.2199: lblock 2 mapped to illegal pblock 2 (length 1)
[  419.486912][T11764] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  419.530082][T11764] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 48: comm syz.5.2199: lblock 0 mapped to illegal pblock 48 (length 1)
[  419.582373][T11764] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  419.609335][ T2952] pim6reg (unregistering): left allmulticast mode
[  419.618835][T11764] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2199: Failed to acquire dquot type 0
[  419.660588][T11764] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  419.671037][ T2952] pimreg (unregistering): left allmulticast mode
[  419.689677][T11764] EXT4-fs error (device loop5): ext4_evict_inode:252: inode #11: comm syz.5.2199: mark_inode_dirty error
[  419.714611][T11764] EXT4-fs warning (device loop5): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  419.725243][T11764] EXT4-fs (loop5): 1 orphan inode deleted
[  419.758360][   T28] audit: type=1326 audit(1754873350.812:2260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11776 comm="syz.4.2204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  419.781219][   T12] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  419.782048][T11764] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  419.829860][   T12] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  419.840876][   T28] audit: type=1326 audit(1754873350.812:2261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11776 comm="syz.4.2204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  419.881047][   T12] EXT4-fs error (device loop5): ext4_release_dquot:6974: comm kworker/u4:1: Failed to release dquot type 0
[  419.929874][T11764] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #2: block 16: comm syz.5.2199: lblock 0 mapped to illegal pblock 16 (length 1)
[  419.946267][   T28] audit: type=1326 audit(1754873350.892:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11776 comm="syz.4.2204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  419.972388][   T28] audit: type=1326 audit(1754873350.892:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11776 comm="syz.4.2204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  420.303848][ T5797] Bluetooth: hci0: command tx timeout
[  421.355618][ T8395] smc: removing ib device syz!
[  422.405751][ T5797] Bluetooth: hci0: command tx timeout
[  422.752340][ T2952] 
 (unregistering): Released all slaves
[  422.806628][T11687] hsr_slave_0: entered promiscuous mode
[  422.813533][T11687] hsr_slave_1: entered promiscuous mode
[  422.820277][T11687] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  422.827977][T11687] Cannot create hsr debugfs directory
[  422.845942][T11764] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  422.866565][T11764] batman_adv: batadv0: Removing interface: batadv_slave_0
[  422.883586][T11764] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  422.891208][T11764] batman_adv: batadv0: Removing interface: batadv_slave_1
[  423.068529][   T28] kauditd_printk_skb: 44 callbacks suppressed
[  423.068546][   T28] audit: type=1326 audit(1754873354.122:2308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11800 comm="syz.4.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  423.146175][   T28] audit: type=1326 audit(1754873354.122:2309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11800 comm="syz.4.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  423.212319][T10728] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.237026][   T28] audit: type=1326 audit(1754873354.132:2310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11800 comm="syz.4.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  423.266740][T10728] EXT4-fs error (device loop5): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0
[  423.297712][T11805] loop1: detected capacity change from 0 to 128
[  423.304724][T10728] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  423.320795][   T28] audit: type=1326 audit(1754873354.132:2311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11800 comm="syz.4.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  423.331801][T10728] EXT4-fs error (device loop5): ext4_quota_off:7222: inode #3: comm syz-executor: mark_inode_dirty error
[  423.351264][T11805] FAT-fs (loop1): Unrecognized mount option "nonuGail=Á¶
[  423.351264][T11805] ("’±Üåì ëÚˆy0" or missing value
[  423.379290][   T28] audit: type=1326 audit(1754873354.152:2312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11800 comm="syz.4.2211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  423.430430][ T2952] IPVS: stop unused estimator thread 0...
[  423.498157][T11816] sd 0:0:1:0: device reset
[  423.651757][T11687] 8021q: adding VLAN 0 to HW filter on device bond0
[  423.687384][T11687] 8021q: adding VLAN 0 to HW filter on device team0
[  423.706445][ T8397] bridge0: port 1(bridge_slave_0) entered blocking state
[  423.713726][ T8397] bridge0: port 1(bridge_slave_0) entered forwarding state
[  423.748749][ T8397] bridge0: port 2(bridge_slave_1) entered blocking state
[  423.755964][ T8397] bridge0: port 2(bridge_slave_1) entered forwarding state
[  423.832203][   T28] audit: type=1326 audit(1754873354.882:2313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.5.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  423.865486][   T28] audit: type=1326 audit(1754873354.892:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.5.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  423.904333][   T28] audit: type=1326 audit(1754873354.892:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.5.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  423.942110][   T28] audit: type=1326 audit(1754873354.892:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.5.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  424.010858][   T28] audit: type=1326 audit(1754873354.892:2317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.5.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  424.318350][T11687] 8021q: adding VLAN 0 to HW filter on device batadv0
[  424.451541][ T5797] Bluetooth: hci0: command tx timeout
[  424.649735][T11857] netlink: 'syz.1.2230': attribute type 1 has an invalid length.
[  424.660968][T11857] netlink: 'syz.1.2230': attribute type 2 has an invalid length.
[  424.887932][T11687] veth0_vlan: entered promiscuous mode
[  424.914084][T11687] veth1_vlan: entered promiscuous mode
[  424.979867][T11687] veth0_macvtap: entered promiscuous mode
[  424.999330][T11687] veth1_macvtap: entered promiscuous mode
[  425.078276][T11687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.111960][T11687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.138939][T11687] batman_adv: batadv0: Interface activated: batadv_slave_0
[  425.168220][T11687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.194853][T11687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.214579][T11687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.230815][T11687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.250009][T11687] batman_adv: batadv0: Interface activated: batadv_slave_1
[  425.347220][T11875] loop1: detected capacity change from 0 to 1024
[  425.395624][ T8395] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  425.410803][ T8395] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  425.459678][ T2952] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  425.471253][T11875] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  425.471646][ T2952] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  425.492898][T11883] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2238'.
[  425.515613][T11875] EXT4-fs error (device loop1): ext4_lookup:1858: comm syz.1.2236: inode #12: comm syz.1.2236: iget: illegal inode #
[  425.536776][T11875] EXT4-fs (loop1): Remounting filesystem read-only
[  425.573871][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.827397][T11900] syz.4.2243[11900] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  425.827541][T11900] syz.4.2243[11900] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  426.162775][T11913] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2249'.
[  427.054830][T11956] loop5: detected capacity change from 0 to 128
[  427.085993][T11956] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  427.115836][T11956] ext4 filesystem being mounted at /98/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  427.252854][T10728] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  427.369244][T11969] loop5: detected capacity change from 0 to 1024
[  427.392920][T11969] EXT4-fs: Ignoring removed orlov option
[  427.435086][T11969] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  427.503866][T11969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.563923][T11978] pim6reg: entered allmulticast mode
[  427.575278][T11978] pim6reg: left allmulticast mode
[  428.459549][T12011] loop0: detected capacity change from 0 to 2048
[  428.778641][   T28] kauditd_printk_skb: 135 callbacks suppressed
[  428.778658][   T28] audit: type=1326 audit(1754873359.832:2453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.0.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  428.842858][   T28] audit: type=1326 audit(1754873359.842:2454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.0.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  428.906937][   T28] audit: type=1326 audit(1754873359.862:2455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.0.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  428.980383][   T28] audit: type=1326 audit(1754873359.862:2456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.0.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  429.039039][   T28] audit: type=1326 audit(1754873359.862:2457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.0.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  429.190654][T12040] syz.1.2295[12040] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  429.192660][T12040] syz.1.2295[12040] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  429.250228][T12040] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.328812][T12046] loop1: detected capacity change from 0 to 512
[  429.383083][T12040] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.424729][T12046] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.2295: bg 0: block 393: padding at end of block bitmap is not set
[  429.443589][T12046] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  429.455446][T12046] EXT4-fs (loop1): 2 truncates cleaned up
[  429.462673][T12046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  429.517037][T12040] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.636827][T12040] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.821133][T12040] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  429.843278][T12040] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  429.872990][T12040] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  430.146745][T12040] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  430.156209][T12056] netlink: 3 bytes leftover after parsing attributes in process `syz.4.2300'.
[  430.173718][T12056] batadv1: entered promiscuous mode
[  430.179326][T12056] batadv1: entered allmulticast mode
[  430.198403][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.587971][T12071] loop1: detected capacity change from 0 to 512
[  430.625304][T12071] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.673717][T12071] ext4 filesystem being mounted at /545/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  430.696711][   T28] audit: type=1326 audit(1754873361.752:2458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12074 comm="syz.5.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  430.772141][   T28] audit: type=1326 audit(1754873361.772:2459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12074 comm="syz.5.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  430.821104][   T28] audit: type=1326 audit(1754873361.782:2460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12074 comm="syz.5.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  430.912850][   T28] audit: type=1326 audit(1754873361.782:2461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12074 comm="syz.5.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  430.998834][   T28] audit: type=1326 audit(1754873361.782:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12074 comm="syz.5.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f101098ebe9 code=0x7ffc0000
[  431.099976][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.359972][T12133] bridge0: port 3(batadv1) entered blocking state
[  432.366978][T12133] bridge0: port 3(batadv1) entered disabled state
[  432.373959][T12133] batadv1: entered allmulticast mode
[  432.381264][T12133] batadv1: entered promiscuous mode
[  432.872358][ T2952] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  432.881801][ T2952] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  433.990858][T12171] lo speed is unknown, defaulting to 1000
[  434.652414][   T28] kauditd_printk_skb: 105 callbacks suppressed
[  434.652495][   T28] audit: type=1326 audit(1754873365.712:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12180 comm="syz.4.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  434.682974][   T28] audit: type=1326 audit(1754873365.712:2569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12180 comm="syz.4.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  434.745380][   T28] audit: type=1326 audit(1754873365.712:2570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12180 comm="syz.4.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  434.785034][   T28] audit: type=1326 audit(1754873365.712:2571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12180 comm="syz.4.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  434.815852][   T28] audit: type=1326 audit(1754873365.712:2572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12180 comm="syz.4.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  434.854799][   T28] audit: type=1326 audit(1754873365.712:2573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12180 comm="syz.4.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  434.884142][   T28] audit: type=1326 audit(1754873365.712:2574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12180 comm="syz.4.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  434.965826][   T28] audit: type=1326 audit(1754873366.022:2575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12186 comm="syz.4.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  435.028267][   T28] audit: type=1326 audit(1754873366.022:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12186 comm="syz.4.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  435.068502][   T28] audit: type=1326 audit(1754873366.022:2577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12186 comm="syz.4.2358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221738ebe9 code=0x7ffc0000
[  435.291638][T12189] lo speed is unknown, defaulting to 1000
[  435.992211][T12196] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2360'.
[  436.029140][T12196] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2360'.
[  436.319536][T12209] geneve2: entered promiscuous mode
[  436.324997][T12209] geneve2: entered allmulticast mode
[  436.364205][T12200] syz.4.2363[12200] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  436.364358][T12200] syz.4.2363[12200] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  437.145997][T12236] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2378'.
[  437.184008][T12234] macvlan1: entered promiscuous mode
[  437.202229][T12234] ipvlan0: entered promiscuous mode
[  437.213087][T12234] ipvlan0: left promiscuous mode
[  437.230632][T12234] macvlan1: left promiscuous mode
[  437.311864][T12242] tipc: Started in network mode
[  437.316985][T12242] tipc: Node identity ac14140f, cluster identity 4711
[  437.336586][T12242] tipc: New replicast peer: 255.255.255.255
[  437.353285][T12242] tipc: Enabled bearer <udp:syz2>, priority 10
[  437.370964][T12242] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2381'.
[  437.380089][T12242] tipc: Disabling bearer <udp:syz2>
[  437.538320][T12249] tipc: Started in network mode
[  437.560967][T12249] tipc: Node identity 6a055c73727a, cluster identity 4711
[  437.587019][T12249] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  437.670848][T12244] tipc: Resetting bearer <eth:syzkaller0>
[  438.683868][ T7289] tipc: Node number set to 410999923
[  439.661152][   T28] kauditd_printk_skb: 93 callbacks suppressed
[  439.661167][   T28] audit: type=1326 audit(1754873370.722:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  439.692395][   T28] audit: type=1326 audit(1754873370.752:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  439.742847][   T28] audit: type=1326 audit(1754873370.772:2673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  439.801051][   T28] audit: type=1326 audit(1754873370.782:2674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  439.850636][   T28] audit: type=1326 audit(1754873370.802:2675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  439.875378][   T28] audit: type=1326 audit(1754873370.822:2676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  439.911045][   T28] audit: type=1326 audit(1754873370.832:2677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  439.934018][   T28] audit: type=1326 audit(1754873370.842:2678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  439.976798][   T28] audit: type=1326 audit(1754873370.862:2679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  440.044270][   T28] audit: type=1326 audit(1754873370.882:2680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12281 comm="syz.1.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d7fb8ebe9 code=0x7ffc0000
[  440.462321][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  440.469187][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  440.898997][T12311] netlink: 88 bytes leftover after parsing attributes in process `syz.4.2406'.
[  442.246305][T12244] tipc: Disabling bearer <eth:syzkaller0>
[  442.285792][T12264] lo speed is unknown, defaulting to 1000
[  442.879447][T12341] netlink: 'syz.4.2417': attribute type 21 has an invalid length.
[  442.898473][T12341] netlink: 156 bytes leftover after parsing attributes in process `syz.4.2417'.
[  444.208083][T12396] lo speed is unknown, defaulting to 1000
[  444.219512][T12400] loop5: detected capacity change from 0 to 128
[  444.247468][T12400] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  444.264009][T12400] ext4 filesystem being mounted at /137/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  444.386424][T10728] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  444.619796][T12412] loop5: detected capacity change from 0 to 1024
[  444.630344][T12381] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  444.652957][T12412] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  444.704737][T12412] EXT4-fs error (device loop5): ext4_map_blocks:718: inode #3: block 1: comm syz.5.2449: lblock 1 mapped to illegal pblock 1 (length 1)
[  444.725387][T12412] __quota_error: 8 callbacks suppressed
[  444.725408][T12412] Quota error (device loop5): write_blk: dquota write failed
[  444.767156][T12416] can0: slcan on ttyS3.
[  444.780876][T12412] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  444.802317][T12412] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.2449: Failed to acquire dquot type 0
[  444.820825][T12412] EXT4-fs error (device loop5): ext4_free_blocks:6681: comm syz.5.2449: Freeing blocks not in datazone - block = 0, count = 4096
[  444.835395][T12412] EXT4-fs error (device loop5): ext4_read_inode_bitmap:140: comm syz.5.2449: Invalid inode bitmap blk 0 in block_group 0
[  444.858646][T12412] EXT4-fs error (device loop5) in ext4_free_inode:363: Corrupt filesystem
[  444.868120][ T8403] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:19: lblock 1 mapped to illegal pblock 1 (length 1)
[  444.882699][T12412] EXT4-fs (loop5): 1 orphan inode deleted
[  444.891441][T12412] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  444.905280][ T8403] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  444.915215][ T8403] EXT4-fs error (device loop5): ext4_release_dquot:6974: comm kworker/u4:19: Failed to release dquot type 0
[  444.930756][T12416] can0 (unregistered): slcan off ttyS3.
[  444.941694][T12416] Falling back ldisc for ttyS3.
[  444.986611][T12412] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.030018][T12420] pim6reg: entered allmulticast mode
[  445.060175][T12421] pim6reg: left allmulticast mode
[  445.233660][T12425] loop0: detected capacity change from 0 to 512
[  445.283466][T12425] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  445.300222][T12430] loop5: detected capacity change from 0 to 128
[  445.336840][T12425] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  445.391865][T12430] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  445.443324][T12430] ext4 filesystem being mounted at /140/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  445.625866][T10728] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  445.868737][T11687] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.218185][T12461] loop0: detected capacity change from 0 to 128
[  446.242666][T12461] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  446.284952][T12461] ext4 filesystem being mounted at /33/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  446.416990][T11687] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  446.642733][   T28] audit: type=1326 audit(1754873377.702:2689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12470 comm="syz.0.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  446.680789][ T5835] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  446.710936][   T28] audit: type=1326 audit(1754873377.722:2690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12470 comm="syz.0.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  446.761879][   T28] audit: type=1326 audit(1754873377.722:2691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12470 comm="syz.0.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  446.801000][   T28] audit: type=1326 audit(1754873377.722:2692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12470 comm="syz.0.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  446.837173][   T28] audit: type=1326 audit(1754873377.722:2693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12470 comm="syz.0.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  446.861513][ T5835] usb 2-1: device descriptor read/64, error -71
[  446.896633][   T28] audit: type=1326 audit(1754873377.862:2694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12470 comm="syz.0.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  446.947935][   T28] audit: type=1326 audit(1754873377.862:2695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12470 comm="syz.0.2471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  447.160884][ T5835] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  447.199476][T12476] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2473'.
[  447.332077][ T5835] usb 2-1: device descriptor read/64, error -71
[  447.341336][T12476] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2473'.
[  447.462042][ T5835] usb usb2-port1: attempt power cycle
[  447.529144][T12476] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2473'.
[  447.910889][ T5835] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  447.962473][ T5835] usb 2-1: device descriptor read/8, error -71
[  448.311130][ T5835] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  448.464005][ T5835] usb 2-1: device descriptor read/8, error -71
[  448.664507][ T5835] usb usb2-port1: unable to enumerate USB device
[  449.818890][T12511] lo speed is unknown, defaulting to 1000
[  451.994384][T12548] loop5: detected capacity change from 0 to 128
[  452.028174][T12548] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  452.048361][   T28] audit: type=1326 audit(1754873383.102:2696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.101102][   T28] audit: type=1326 audit(1754873383.102:2697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.124170][T12548] ext4 filesystem being mounted at /153/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  452.177298][   T28] audit: type=1326 audit(1754873383.102:2698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.212927][   T28] audit: type=1326 audit(1754873383.102:2699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.276409][   T28] audit: type=1326 audit(1754873383.102:2700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.316847][T10728] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  452.326664][T12559] netlink: 'syz.1.2504': attribute type 10 has an invalid length.
[  452.335267][   T28] audit: type=1326 audit(1754873383.102:2701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.416197][   T28] audit: type=1326 audit(1754873383.102:2702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.473994][   T28] audit: type=1326 audit(1754873383.112:2703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.517605][   T28] audit: type=1326 audit(1754873383.112:2704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.557342][   T28] audit: type=1326 audit(1754873383.112:2705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12552 comm="syz.0.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26a678ebe9 code=0x7ffc0000
[  452.639923][T12570] IPv6: Can't replace route, no match found
[  452.748150][T12573] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2511'.
[  452.854234][T12578] loop1: detected capacity change from 0 to 1024
[  452.872527][T12578] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.2514: Failed to acquire dquot type 0
[  452.902379][T12578] EXT4-fs error (device loop1): mb_free_blocks:1943: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  452.929557][T12578] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #13: comm syz.1.2514: corrupted inode contents
[  452.951045][T12578] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #13: comm syz.1.2514: mark_inode_dirty error
[  452.968743][T12578] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #13: comm syz.1.2514: corrupted inode contents
[  452.990430][T12578] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #13: comm syz.1.2514: mark_inode_dirty error
[  453.033034][T12578] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #13: comm syz.1.2514: corrupted inode contents
[  453.078084][T12578] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  453.125945][T12578] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #13: comm syz.1.2514: corrupted inode contents
[  453.144322][T12578] EXT4-fs error (device loop1): ext4_truncate:4288: inode #13: comm syz.1.2514: mark_inode_dirty error
[  453.167833][T12578] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  453.189811][T12578] EXT4-fs (loop1): 1 truncate cleaned up
[  453.199483][T12578] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  453.310044][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.439572][T12598] loop0: detected capacity change from 0 to 128
[  453.454815][T12598] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  453.476699][T12598] ext4 filesystem being mounted at /49/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  453.682337][T11687] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  454.206879][T12629] loop0: detected capacity change from 0 to 128
[  454.231289][T12629] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  454.258122][T12629] ext4 filesystem being mounted at /53/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  454.369972][T11687] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  454.668832][T12648] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2545'.
[  455.190556][T12663] loop0: detected capacity change from 0 to 1024
[  455.255759][T12663] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.2553: Failed to acquire dquot type 0
[  455.318109][T12663] EXT4-fs error (device loop0): mb_free_blocks:1943: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  455.386113][T12663] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #13: comm syz.0.2553: corrupted inode contents
[  455.433351][T12663] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #13: comm syz.0.2553: mark_inode_dirty error
[  455.482836][T12663] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #13: comm syz.0.2553: corrupted inode contents
[  455.489003][   T50] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  455.505573][   T50] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  455.530113][T12663] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #13: comm syz.0.2553: mark_inode_dirty error
[  455.531060][   T50] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  455.554979][   T50] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  455.562705][T12663] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #13: comm syz.0.2553: corrupted inode contents
[  455.576108][   T50] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  455.584021][   T50] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  455.615455][T12663] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  455.654350][T12663] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #13: comm syz.0.2553: corrupted inode contents
[  455.667197][T12663] EXT4-fs error (device loop0): ext4_truncate:4288: inode #13: comm syz.0.2553: mark_inode_dirty error
[  455.686252][ T5968] ==================================================================
[  455.694393][ T5968] BUG: KASAN: slab-use-after-free in __mutex_lock+0x6cb/0xcc0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  455.701900][ T5968] Read of size 8 at addr ffff88802faf40a0 by task khidpd_04580058/5968
[  455.710164][ T5968] 
[  455.712515][ T5968] CPU: 0 PID: 5968 Comm: khidpd_04580058 Not tainted 6.6.101-syzkaller #0
[  455.721048][ T5968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  455.731141][ T5968] Call Trace:
[  455.734451][ T5968]  <TASK>
[  455.737411][ T5968]  dump_stack_lvl+0x16c/0x230
[  455.742130][ T5968]  ? __lock_acquire+0x7c80/0x7c80
[  455.747247][ T5968]  ? show_regs_print_info+0x20/0x20
[  455.752566][ T5968]  ? load_image+0x3b0/0x3b0
[  455.757112][ T5968]  ? __virt_addr_valid+0x469/0x540
[  455.762261][ T5968]  print_report+0xac/0x220
[  455.766703][ T5968]  ? __mutex_lock+0x6cb/0xcc0
[  455.771415][ T5968]  kasan_report+0x117/0x150
[  455.775960][ T5968]  ? __mutex_lock+0x6cb/0xcc0
[  455.780779][ T5968]  __mutex_lock+0x6cb/0xcc0
[  455.785324][ T5968]  ? __mutex_lock+0x4e8/0xcc0
[  455.790051][ T5968]  ? l2cap_unregister_user+0x6a/0x1a0
[  455.793197][T12663] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  455.795454][ T5968]  ? mutex_lock_nested+0x20/0x20
[  455.809391][ T5968]  ? __wake_up+0x11f/0x190
[  455.813034][T12669] lo speed is unknown, defaulting to 1000
[  455.813829][ T5968]  ? __wake_up_bit+0x1e0/0x1e0
[  455.824373][ T5968]  ? _raw_spin_unlock+0x40/0x40
[  455.829329][ T5968]  l2cap_unregister_user+0x6a/0x1a0
[  455.834573][ T5968]  hidp_session_thread+0x3c8/0x410
[  455.839721][ T5968]  ? hidp_session_get+0x80/0x80
[  455.844612][ T5968]  ? hidp_session_thread+0x410/0x410
[  455.849942][ T5968]  ? lockdep_hardirqs_on+0x98/0x150
[  455.855182][ T5968]  ? hidp_session_thread+0x410/0x410
[  455.860507][ T5968]  kthread+0x2fa/0x390
[  455.864599][ T5968]  ? hidp_session_get+0x80/0x80
[  455.869482][ T5968]  ? kthread_blkcg+0xd0/0xd0
[  455.874104][ T5968]  ret_from_fork+0x48/0x80
[  455.878560][ T5968]  ? kthread_blkcg+0xd0/0xd0
[  455.883184][ T5968]  ret_from_fork_asm+0x11/0x20
[  455.887992][ T5968]  </TASK>
[  455.891037][ T5968] 
[  455.893389][ T5968] Allocated by task 5795:
[  455.897740][ T5968]  kasan_set_track+0x4e/0x70
[  455.902366][ T5968]  __kasan_kmalloc+0x8f/0xa0
[  455.906986][ T5968]  __kmalloc+0xb4/0x240
[  455.911180][ T5968]  hci_alloc_dev_priv+0x28/0x2040
[  455.916238][ T5968]  vhci_create_device+0x11b/0x6e0
[  455.920750][T12663] EXT4-fs (loop0): 1 truncate cleaned up
[  455.921279][ T5968]  vhci_write+0x3b5/0x470
[  455.928463][T12663] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  455.931245][ T5968]  vfs_write+0x43b/0x940
[  455.931273][ T5968]  ksys_write+0x147/0x250
[  455.931295][ T5968]  do_syscall_64+0x55/0xb0
[  455.931317][ T5968]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  455.962667][ T5968] 
[  455.965052][ T5968] Freed by task 11787:
[  455.969143][ T5968]  kasan_set_track+0x4e/0x70
[  455.973773][ T5968]  kasan_save_free_info+0x2e/0x50
[  455.978839][ T5968]  ____kasan_slab_free+0x126/0x1e0
[  455.983984][ T5968]  slab_free_freelist_hook+0x130/0x1b0
[  455.989473][ T5968]  __kmem_cache_free+0xba/0x1f0
[  455.994379][ T5968]  bt_host_release+0x82/0x90
[  455.999061][ T5968]  device_release+0x96/0x1c0
[  456.003783][ T5968]  kobject_put+0x221/0x470
[  456.008248][ T5968]  vhci_release+0x8b/0xd0
[  456.012611][ T5968]  __fput+0x234/0x970
[  456.016629][ T5968]  task_work_run+0x1ce/0x250
[  456.021255][ T5968]  do_exit+0x90b/0x23c0
[  456.025447][ T5968]  do_group_exit+0x21b/0x2d0
[  456.030070][ T5968]  get_signal+0x12fc/0x1400
[  456.034606][ T5968]  arch_do_signal_or_restart+0x96/0x780
[  456.040182][ T5968]  exit_to_user_mode_loop+0x70/0x110
[  456.045510][ T5968]  exit_to_user_mode_prepare+0xb1/0x140
[  456.051145][ T5968]  syscall_exit_to_user_mode+0x1a/0x50
[  456.056638][ T5968]  do_syscall_64+0x61/0xb0
[  456.061089][ T5968]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  456.067041][ T5968] 
[  456.069384][ T5968] Last potentially related work creation:
[  456.075116][ T5968]  kasan_save_stack+0x3e/0x60
[  456.079824][ T5968]  __kasan_record_aux_stack+0xaf/0xc0
[  456.085235][ T5968]  insert_work+0x3d/0x310
[  456.089606][ T5968]  __queue_work+0xd2c/0x1020
[  456.094234][ T5968]  queue_work_on+0x121/0x1e0
[  456.098858][ T5968]  process_scheduled_works+0xa45/0x15b0
[  456.104493][ T5968]  worker_thread+0xa55/0xfc0
[  456.109125][ T5968]  kthread+0x2fa/0x390
[  456.113219][ T5968]  ret_from_fork+0x48/0x80
[  456.117679][ T5968]  ret_from_fork_asm+0x11/0x20
[  456.122482][ T5968] 
[  456.124837][ T5968] Second to last potentially related work creation:
[  456.131480][ T5968]  kasan_save_stack+0x3e/0x60
[  456.136199][ T5968]  __kasan_record_aux_stack+0xaf/0xc0
[  456.141612][ T5968]  insert_work+0x3d/0x310
[  456.145967][ T5968]  __queue_work+0xc39/0x1020
[  456.150592][ T5968]  call_timer_fn+0x16e/0x530
[  456.155224][ T5968]  __run_timers+0x558/0x7d0
[  456.159762][ T5968]  run_timer_softirq+0x67/0xf0
[  456.164550][ T5968]  handle_softirqs+0x280/0x820
[  456.169338][ T5968]  __irq_exit_rcu+0xc7/0x190
[  456.173946][ T5968]  irq_exit_rcu+0x9/0x20
[  456.178209][ T5968]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  456.183875][ T5968]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  456.189935][ T5968] 
[  456.192276][ T5968] The buggy address belongs to the object at ffff88802faf4000
[  456.192276][ T5968]  which belongs to the cache kmalloc-8k of size 8192
[  456.206346][ T5968] The buggy address is located 160 bytes inside of
[  456.206346][ T5968]  freed 8192-byte region [ffff88802faf4000, ffff88802faf6000)
[  456.220268][ T5968] 
[  456.222608][ T5968] The buggy address belongs to the physical page:
[  456.229045][ T5968] page:ffffea0000bebc00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2faf0
[  456.239210][ T5968] head:ffffea0000bebc00 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  456.248169][ T5968] anon flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  456.256707][ T5968] page_type: 0xffffffff()
[  456.261061][ T5968] raw: 00fff00000000840 ffff888017842280 0000000000000000 dead000000000001
[  456.269659][ T5968] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[  456.278252][ T5968] page dumped because: kasan: bad access detected
[  456.284684][ T5968] page_owner tracks the page as allocated
[  456.290454][ T5968] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5446, tgid 5446 (S40network), ts 52113541622, free_ts 52054907300
[  456.310891][ T5968]  post_alloc_hook+0x1cd/0x210
[  456.315678][ T5968]  get_page_from_freelist+0x195c/0x19f0
[  456.321258][ T5968]  __alloc_pages+0x1e3/0x460
[  456.325885][ T5968]  alloc_slab_page+0x5d/0x170
[  456.330586][ T5968]  new_slab+0x87/0x2e0
[  456.334740][ T5968]  ___slab_alloc+0xc6d/0x12f0
[  456.339441][ T5968]  __kmem_cache_alloc_node+0x1a2/0x260
[  456.344918][ T5968]  kmalloc_trace+0x2a/0xe0
[  456.349354][ T5968]  tomoyo_init_log+0x1104/0x1f10
[  456.354302][ T5968]  tomoyo_supervisor+0x32d/0x1080
[  456.359339][ T5968]  tomoyo_env_perm+0x14a/0x1e0
[  456.364121][ T5968]  tomoyo_find_next_domain+0x1594/0x1a60
[  456.369772][ T5968]  tomoyo_bprm_check_security+0x116/0x170
[  456.375503][ T5968]  security_bprm_check+0x62/0xa0
[  456.380475][ T5968]  bprm_execve+0xa51/0x16f0
[  456.385002][ T5968]  do_execveat_common+0x51b/0x6c0
[  456.390054][ T5968] page last free stack trace:
[  456.394816][ T5968]  free_unref_page_prepare+0x7ce/0x8e0
[  456.400391][ T5968]  free_unref_page+0x32/0x2e0
[  456.405088][ T5968]  __unfreeze_partials+0x1cf/0x210
[  456.410218][ T5968]  put_cpu_partial+0x17c/0x250
[  456.415000][ T5968]  __slab_free+0x31d/0x410
[  456.419456][ T5968]  qlist_free_all+0x75/0xe0
[  456.423979][ T5968]  kasan_quarantine_reduce+0x143/0x160
[  456.429457][ T5968]  __kasan_slab_alloc+0x22/0x80
[  456.434315][ T5968]  slab_post_alloc_hook+0x6e/0x4d0
[  456.439441][ T5968]  __kmem_cache_alloc_node+0x13e/0x260
[  456.444925][ T5968]  __kmalloc+0xa4/0x240
[  456.449095][ T5968]  tomoyo_supervisor+0xb70/0x1080
[  456.454130][ T5968]  tomoyo_path_permission+0x25a/0x380
[  456.459523][ T5968]  tomoyo_check_open_permission+0x256/0x3c0
[  456.465441][ T5968]  security_file_open+0x62/0xa0
[  456.470307][ T5968]  do_dentry_open+0x380/0x1500
[  456.475083][ T5968] 
[  456.477412][ T5968] Memory state around the buggy address:
[  456.483045][ T5968]  ffff88802faf3f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  456.491130][ T5968]  ffff88802faf4000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  456.499206][ T5968] >ffff88802faf4080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  456.507277][ T5968]                                ^
[  456.512393][ T5968]  ffff88802faf4100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  456.520463][ T5968]  ffff88802faf4180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  456.528532][ T5968] ==================================================================
[  456.539218][ T5968] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  456.546476][ T5968] CPU: 0 PID: 5968 Comm: khidpd_04580058 Not tainted 6.6.101-syzkaller #0
[  456.555016][ T5968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  456.565119][ T5968] Call Trace:
[  456.568432][ T5968]  <TASK>
[  456.571386][ T5968]  dump_stack_lvl+0x16c/0x230
[  456.576106][ T5968]  ? show_regs_print_info+0x20/0x20
[  456.581336][ T5968]  ? load_image+0x3b0/0x3b0
[  456.585984][ T5968]  panic+0x2c0/0x710
[  456.589933][ T5968]  ? bpf_jit_dump+0xd0/0xd0
[  456.594485][ T5968]  ? _raw_spin_unlock_irqrestore+0xa9/0x110
[  456.600424][ T5968]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  456.606360][ T5968]  ? _raw_spin_unlock+0x40/0x40
[  456.611253][ T5968]  ? print_memory_metadata+0x314/0x400
[  456.616753][ T5968]  ? __mutex_lock+0x6cb/0xcc0
[  456.621454][ T5968]  check_panic_on_warn+0x84/0xa0
[  456.626406][ T5968]  ? __mutex_lock+0x6cb/0xcc0
[  456.631096][ T5968]  end_report+0x6f/0x140
[  456.635347][ T5968]  kasan_report+0x128/0x150
[  456.639868][ T5968]  ? __mutex_lock+0x6cb/0xcc0
[  456.644566][ T5968]  __mutex_lock+0x6cb/0xcc0
[  456.649085][ T5968]  ? __mutex_lock+0x4e8/0xcc0
[  456.653774][ T5968]  ? l2cap_unregister_user+0x6a/0x1a0
[  456.659161][ T5968]  ? mutex_lock_nested+0x20/0x20
[  456.664116][ T5968]  ? __wake_up+0x11f/0x190
[  456.668560][ T5968]  ? __wake_up_bit+0x1e0/0x1e0
[  456.673335][ T5968]  ? _raw_spin_unlock+0x40/0x40
[  456.678207][ T5968]  l2cap_unregister_user+0x6a/0x1a0
[  456.683561][ T5968]  hidp_session_thread+0x3c8/0x410
[  456.688691][ T5968]  ? hidp_session_get+0x80/0x80
[  456.693559][ T5968]  ? hidp_session_thread+0x410/0x410
[  456.699289][ T5968]  ? lockdep_hardirqs_on+0x98/0x150
[  456.704516][ T5968]  ? hidp_session_thread+0x410/0x410
[  456.709825][ T5968]  kthread+0x2fa/0x390
[  456.713907][ T5968]  ? hidp_session_get+0x80/0x80
[  456.718788][ T5968]  ? kthread_blkcg+0xd0/0xd0
[  456.723386][ T5968]  ret_from_fork+0x48/0x80
[  456.727832][ T5968]  ? kthread_blkcg+0xd0/0xd0
[  456.732435][ T5968]  ret_from_fork_asm+0x11/0x20
[  456.737246][ T5968]  </TASK>
[  456.740634][ T5968] Kernel Offset: disabled
[  456.744984][ T5968] Rebooting in 86400 seconds..