last executing test programs:

13m35.405523958s ago: executing program 32 (id=539):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="9f01000083667d1040206402d14e0102030109021b000100000000090400000190f19c000905f3ed"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000600)={0x84, &(0x7f00000000c0)=ANY=[@ANYBLOB="400f01"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f00000004c0)={0x34, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000ac0)={0x2c, &(0x7f00000008c0)={0x20, 0x7}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)

12m49.990148985s ago: executing program 0 (id=639):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', 0xa0, &(0x7f0000000100)=ANY=[], 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file1\x00', 0x42, 0x1ff)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322021, &(0x7f0000000480)=ANY=[], 0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
io_setup(0x3, &(0x7f0000000600)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000000)=[&(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x4, r0, 0x0, 0xf0}])

12m46.936227436s ago: executing program 0 (id=643):
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x2c0, 0x0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98b9, 0x800000000000009, 0x0, 0x100000000000004, 0x10000, 0x100, 0x1, 0x0, 0x5, 0x5, 0x5, 0x49, 0x3ff, 0x5, 0x0, 0x9, 0x7, 0x7, 0x1c1, 0x1000000003, 0x2, 0x2, 0x6, 0x7, 0x96, 0xffffffff, 0xffffffff00000000, 0x0, 0x4, 0x7, 0x23b, 0x3, 0x2, 0x6c3f, 0x4, 0x8, 0x6, 0x6, 0x3, 0xa3de, 0x20000000006, 0x8, 0x5c3e, 0x400, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x7, 0x0, 0xe6, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x40000005, 0xfffffffeffffffff, 0xc, 0xd, 0x9, 0xe8, 0x80000000, 0xfffffffffffffc00, 0x2, 0x4, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0xfff, 0x6, 0x4, 0x6, 0xab6, 0x0, 0x4, 0xfff, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x400000000008061d, 0x3, 0xa, 0xf6, 0x4, 0x6, 0x200, 0x7, 0xe53e, 0x2c, 0x8, 0x2293332f, 0x6, 0x5, 0x3, 0xd, 0x2, 0x5, 0x2, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x8, 0x8, 0x1, 0x53e0f0fe, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0x3ffc00000, 0x8, 0x3]})
ioctl$KVM_CAP_X86_GUEST_MODE(0xffffffffffffffff, 0x4068aea3, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x2, 0x180, 0x4, 0x10, 0xf1, 0x50, 0x7fffffffffffe, 0x1, 0x0, 0x9, 0x0, 0x6, 0x0, 0xbdb], 0xffff1001, 0x120182})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0xc003, 0x3, 0x5, 0x0, 0x4, 0x7, 0xd, 0xb9, 0x0, 0xe, 0x5, 0x204}, {0x804, 0x1, 0x4, 0x45, 0x7, 0xff, 0x2, 0xff, 0x0, 0x4, 0x4, 0x7b, 0x20c}, {0x1, 0x6, 0x18, 0x5, 0x80, 0xfd, 0x3, 0x2, 0x0, 0x70, 0x4, 0x7}], 0xfbffffff})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x5ffffffffff, 0x1000000000, 0x0, 0x43, 0x2000001, 0x0, 0x2004cb, 0x0, 0x1000000, 0x68ff, 0x5, 0x9, 0x3], 0x1, 0x202})
io_submit(0x0, 0x1, &(0x7f0000001580)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000480)={[{0x9570000, 0x3, 0x0, 0x0, 0x85, 0x1, 0xff, 0x2, 0x6, 0x4, 0x47, 0xf, 0x1}, {0x9f83, 0x7, 0xe, 0x5a, 0x1, 0x3, 0x9, 0x81, 0x7, 0x5, 0x6, 0x3, 0x6}, {0x6, 0x1005, 0x81, 0xa, 0x6, 0x46, 0xf8, 0x4f, 0xc, 0x98, 0x1a, 0x1, 0x8}], 0x3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

12m45.273543975s ago: executing program 0 (id=646):
unshare(0x24060400)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x23, 0x0, &(0x7f0000000200))

12m44.414525701s ago: executing program 0 (id=648):
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f00000000c0)='./file0\x00', 0x2000400, &(0x7f0000000640)=ANY=[@ANYBLOB="636f6465706167653d63703835322c006fb691d2737b705dc556d65d9df1cb7dba7e22e9401baeb7cec264b4e5364639fd3f79a413496c6f41cd1a0d6fe36ee520f4e84b336e780abd660b52e8e0821bb6db0d3823e1a16d8daa1b5613f213c29a616e2ef7bbce58232e3aa6ed2a6744cf109759d8491ce6643490d484408e16eede91d78ef35b7e90df199605a94fe0527e93cb7b2a98be7d4ddee04c980658d34ab783479a07adc05722c7fc5058312dc1e6ed8f0685e0a3a445d76146412c95e4715118847084a5baa5a7e1eec512c152d9feee0b7cd673b5c2f965fcecbf0d62972a98e12a14a3d980d6a37926d88c7c32c4b2531e78e0c8693ded07ac17c49a8bc4cfe434b818197f66a1cc56b4f14d97aa4385b43eaed584945fba3020c8347647eda9ce76f38c28d3cd37153352d5efe5785c9f19a9527869f4642d1d29a7ea10e3da51121d309e4a7a7fdaccfa203a1fa4fd61722e3868e8cb60f335fafc358947ad06c161545e2d00c2f6e07081dd61822e8e83bd4f9cab70f728f5"], 0x1, 0x2e0, &(0x7f0000000340)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x206e)

12m43.583885286s ago: executing program 0 (id=650):
socket$inet6(0xa, 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
mkdirat(0xffffffffffffff9c, 0x0, 0x50)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = socket(0x10, 0x80002, 0x0)
write$P9_RLERRORu(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ffff", @ANYRES16=r2], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}})

12m42.610323811s ago: executing program 0 (id=652):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', 0xa0, &(0x7f0000000100)=ANY=[], 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file1\x00', 0x42, 0x1ff)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322021, &(0x7f0000000480)=ANY=[], 0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
io_setup(0x3, &(0x7f0000000600)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000000)=[&(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x4, r0, 0x0, 0xf0}])

12m40.635703001s ago: executing program 33 (id=629):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000004c0), 0x80000, 0x0)
ioctl$SOUND_MIXER_READ_STEREODEVS(r2, 0x80044dfb, &(0x7f0000000240))

12m37.55940204s ago: executing program 34 (id=652):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', 0xa0, &(0x7f0000000100)=ANY=[], 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file1\x00', 0x42, 0x1ff)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322021, &(0x7f0000000480)=ANY=[], 0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
io_setup(0x3, &(0x7f0000000600)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000000)=[&(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x4, r0, 0x0, 0xf0}])

10m7.376264211s ago: executing program 2 (id=986):
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c800000af481aff4c8cf0c6408a0aa1e10b337146b963dd2e14dcd94133d6ed1442d7762996a7d4bff668"], 0x4c}}, 0x4000804)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r1, 0x0, 0x0)

10m6.50614056s ago: executing program 2 (id=992):
syz_open_dev$sg(0x0, 0x20000000000000, 0xa8401)
socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0xb, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x2, 0x5505, &(0x7f0000002480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000000})
link(&(0x7f0000000500)='./file0\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

10m4.161915438s ago: executing program 2 (id=993):
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x1048001, 0x0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x2, &(0x7f0000000400))

10m2.179335474s ago: executing program 2 (id=997):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000003c0)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8509}}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x458, &(0x7f0000000d80)="$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")
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
openat$dir(0xffffffffffffff9c, 0x0, 0x8000, 0x176)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
chdir(&(0x7f0000000000)='./cgroup\x00')
getdents(0xffffffffffffffff, &(0x7f0000001fc0)=""/184, 0xb8)

10m0.546806259s ago: executing program 2 (id=1002):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0x4e6f, 0x4)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000280)=ANY=[@ANYBLOB], 0xdd12}], 0x1, 0x0, 0x0, 0x4000}, 0x1)

9m57.181163088s ago: executing program 2 (id=1006):
syz_io_uring_setup(0x83, &(0x7f0000000580)={0x0, 0xe7b7, 0x13500, 0x0, 0x352}, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000005c0)=ANY=[@ANYBLOB="b900"], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000080), 0x1010412, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',cache=fscache'])
r3 = openat(0xffffffffffffff9c, 0x0, 0x20842, 0x22)
writev(r3, &(0x7f0000000000)=[{&(0x7f00000006c0)='\t', 0x2003f}], 0x1)
chmod(&(0x7f0000000040)='./file0\x00', 0x100)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

9m50.14625027s ago: executing program 35 (id=1006):
syz_io_uring_setup(0x83, &(0x7f0000000580)={0x0, 0xe7b7, 0x13500, 0x0, 0x352}, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000005c0)=ANY=[@ANYBLOB="b900"], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000080), 0x1010412, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',cache=fscache'])
r3 = openat(0xffffffffffffff9c, 0x0, 0x20842, 0x22)
writev(r3, &(0x7f0000000000)=[{&(0x7f00000006c0)='\t', 0x2003f}], 0x1)
chmod(&(0x7f0000000040)='./file0\x00', 0x100)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

9m48.201838356s ago: executing program 6 (id=1015):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1, 0x2, 0x10000}, 0x28)
r0 = syz_io_uring_setup(0x656f, &(0x7f0000000140)={0x0, 0xeac0, 0x10, 0x3, 0x312}, 0x0, &(0x7f0000000300)=<r1=>0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x60, 0x185100})
io_uring_enter(r0, 0x7277, 0x0, 0x28, 0x0, 0x0)

9m47.391758586s ago: executing program 6 (id=1017):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000006c0)="62043c00590200000001ad2f1eafbcf706e12b30087f5c582d26116642c47a5f8786ee601e65ab3c06d4b8bf4a81cb3e247345af215542f41ddf82f618438a34f90186cee8441e2305e495d04ad68ab8fef69df82de6456fbb48b63f60c9c9097be968ea872c4801e5d0711b4373c7224ed7a9cbd49d40f82bdb6afc0036824be26fc96e49a70e90797e6caa1b38ddacb3cb2b3eac7c068a185b644582f25edfa3d6a46e2a894ca809a422a6a29bd7145bb6e7992570484d6a710292ea0c3f97b7cbff701684b1", 0xc7}], 0x1}, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

9m43.352809304s ago: executing program 6 (id=1021):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x240, 0x380, 0x0})
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000740)="565a92bd2ad96a4be42a5362d11184", 0xf, 0x2000c0c0, &(0x7f0000000000)={0x11, 0x6, r1, 0x1, 0x1, 0x6, @local}, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r1, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

9m40.268824555s ago: executing program 6 (id=1025):
syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="00e611ed6229b237ad2a184a94283e2b34c24caf7280c18475708140abe763dfb52cdb0ba0cdc8c572346d0a832984b36248c4fa844eda0af4b1652605421a7821dcfde12aa77458d811a84538a156b05b0ec3eaf24a90ceb5b7463d9fd38b49d41fbfa868653605702abe43d9c2c30aed4da0b8cc18c6b369f086a965442c1217f19a67a534064b7236a6660000000000"], 0x1, 0x17b, &(0x7f0000000300)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x81040a, 0x0, 0x1, 0x0, &(0x7f00000007c0))
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000000)='./file0\x00', 0x1012076, &(0x7f0000000240)=ANY=[@ANYBLOB="626172726965722c646973636172642c6572726f72733d72656d6f756e742d726f2c6572726f72733d72656d05006e742d726f2c6e6f626172726965722c6f726465723d7374726963742c6572726f72733d636f6e74696e75652c6f726465723d72656c617865642c2c"], 0x2, 0xebd, &(0x7f0000004540)="$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")
getdents64(0xffffffffffffffff, &(0x7f00000000c0)=""/54, 0x36)

9m38.287589124s ago: executing program 5 (id=1028):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = dup2(r0, r1)
sendmmsg$inet(r2, &(0x7f0000001300)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)="316f825a3d29f96a2093a917017b4cd30000000000000035ed313e19d6dd", 0x1e}, {&(0x7f0000000800)="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", 0x15f}, {&(0x7f0000000700)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df283b3ca3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25c951279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbea5a0", 0xaa}], 0x3}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000002c0)="0eb1325c89f9adf45fee768467d013e887e116775db7b44fa483fc57939c8790104b7844ebbd6fd934425ece922fdfc5d29ee0ef8adae9419375f2145f0e38478f932d188a01197cf614400be3d267b2c435a90348c61da04d0bfe35c7b30ccc583d8e7f560ba62c0065344c19a98a30399c2a5ef933b9594d2532838d4d1a55f736f7c5315ed9416dd9f1e3dc1def01d5339c5c24d9359d363c3022927f4a7be9de573b18c399556955ae3f57cc0fab2bfb0487b47231953e99ed7ab2f5ac2d16004853b2ee5b373081e23d6d", 0xcd}, {&(0x7f00000004c0)}], 0x2}}, {{0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000000f00)="a98d4e3a568df934a791f3de6053c132988cee1cc6c9a9f19fdd0ea14e220604c56f8447bcaa8e3f28d830e464cc63d147375e45b30ae7eb959ce21da0792b7bf8e4117719192aaf4d6895d384a38b49b3860da547e9597019ddc4ae127f035dd6e51695d9192b0f2b37c672c9971f2c74f38e9ca05f8c99637198863e427e1893ed25f0129cc7895185df7e663e240d78770e67fbc5dc86a788c106e6e9e26d82a5372418f0bed15a0d7c3db9c2cfa7db907a1aaab13469c4e187333eceef", 0xbf}, {&(0x7f00000010c0)="57af25139bfc433ffceec628b81783909ca82430a39760a649ded8f91f", 0x1d}], 0x2}}], 0x3, 0x0)
sendmsg$TIPC_NL_SOCK_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[], 0x240}}, 0x0)

9m37.314904489s ago: executing program 5 (id=1030):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x80}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@usrjquota}]}, 0x1, 0x55a, &(0x7f0000001880)="$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")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, 0x0, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000480))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000001740)=""/192, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000240)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/4096})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

9m37.11209451s ago: executing program 6 (id=1031):
syz_usb_connect(0x0, 0x3d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010102ae299820fc0d0100ac240102030109022b0001fffa10170904510302ffffff01090507100800060808070593"], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x4480)

9m35.974580984s ago: executing program 6 (id=1034):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x240, 0x380, 0x0})
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000740)="565a92bd2ad96a4be42a5362d11184", 0xf, 0x2000c0c0, &(0x7f0000000000)={0x11, 0x6, r1, 0x1, 0x1, 0x6, @local}, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r1, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

9m30.229163835s ago: executing program 36 (id=1034):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x240, 0x380, 0x0})
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000740)="565a92bd2ad96a4be42a5362d11184", 0xf, 0x2000c0c0, &(0x7f0000000000)={0x11, 0x6, r1, 0x1, 0x1, 0x6, @local}, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r1, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

9m30.198105293s ago: executing program 5 (id=1038):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1, 0x2, 0x10000}, 0x28)
r0 = syz_io_uring_setup(0x656f, &(0x7f0000000140)={0x0, 0xeac0, 0x10, 0x3, 0x312}, &(0x7f0000000200)=<r1=>0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x60, 0x185100})
io_uring_enter(r0, 0x7277, 0x0, 0x28, 0x0, 0x0)

9m28.437912303s ago: executing program 5 (id=1040):
syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="00e611ed6229b237ad2a184a94283e2b34c24caf7280c18475708140abe763dfb52cdb0ba0cdc8c572346d0a832984b36248c4fa844eda0af4b1652605421a7821dcfde12aa77458d811a84538a156b05b0ec3eaf24a90ceb5b7463d9fd38b49d41fbfa868653605702abe43d9c2c30aed4da0b8cc18c6b369f086a965442c1217f19a67a534064b7236a6660000000000"], 0x1, 0x17b, &(0x7f0000000300)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x81040a, 0x0, 0x1, 0x0, &(0x7f00000007c0))
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f00000000c0)=""/54, 0x36)

9m26.985169056s ago: executing program 5 (id=1042):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = dup2(r0, r1)
sendmmsg$inet(r2, &(0x7f0000001300)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000002c0)="0eb1325c89f9adf45fee768467d013e887e116775db7b44fa483fc57939c8790104b7844ebbd6fd934425ece922fdfc5d29ee0ef8adae9419375f2145f0e38478f932d188a01197cf614400be3d267b2c435a90348c61da04d0bfe35c7b30ccc583d8e7f560ba62c0065344c19a98a30399c2a5ef933b9594d2532838d4d1a55f736f7c5315ed9416dd9f1e3dc1def01d5339c5c24d9359d363c3022927f4a7be9de573b18c399556955ae3f57cc0fab2bfb0487b47231953e99ed7ab2f5ac2d16004853b2ee5b373081e23d6d01bcdb75d3", 0xd2}, {&(0x7f00000004c0)}], 0x2}}, {{0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000000f00)="a98d4e3a568df934a791f3de6053c132988cee1cc6c9a9f19fdd0ea14e220604c56f8447bcaa8e3f28d830e464cc63d147375e45b30ae7eb959ce21da0792b7bf8e4117719192aaf4d6895d384a38b49b3860da547e9597019ddc4ae127f035dd6e51695d9192b0f2b37c672c9971f2c74f38e9ca05f8c99637198863e427e1893ed25f0129cc7895185df7e663e240d78770e67fbc5dc86a788c106e6e9e26d82a5372418f0bed15a0d7c3db9c2cfa7db907a1aaab13469c4e187333eceef", 0xbf}, {&(0x7f00000010c0)="57af25139bfc433ffceec628b81783909ca82430a39760a649ded8f91f", 0x1d}], 0x2}}], 0x2, 0x0)
sendmsg$TIPC_NL_SOCK_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[], 0x240}}, 0x0)

9m25.929949297s ago: executing program 5 (id=1044):
syz_usb_connect(0x0, 0x3d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010102ae299820fc0d0100ac240102030109022b0001fffa10170904510302ffffff01090507100800060808070593"], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x4480)

9m22.755187146s ago: executing program 37 (id=1044):
syz_usb_connect(0x0, 0x3d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010102ae299820fc0d0100ac240102030109022b0001fffa10170904510302ffffff01090507100800060808070593"], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x4480)

1m59.534371698s ago: executing program 8 (id=2978):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='sched_switch\x00', r1}, 0x18)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r2, &(0x7f0000000240), 0xfffffecc)
ioctl$TIOCSSOFTCAR(r2, 0x541a, &(0x7f0000000000)=0x81d)

1m57.75740476s ago: executing program 8 (id=2983):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x8, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0x14, 0x30, 0x871a15abc695fa3d, 0xfffffffd, 0x300}, 0x14}}, 0x0)

1m57.476802022s ago: executing program 8 (id=2985):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000440)=ANY=[], 0x1, 0x1b1, &(0x7f0000000280)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x189800, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x40047211, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mark_victim\x00', r2, 0x0, 0x2}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010e7010000000000000000000000000a20000000000a03000000000000000000070000000c00044000000000000000021c000000090a010400000000000000000700000008000a4000000003"], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x34, 0x10, 0x40d, 0x70bd25, 0x25ffdbfc, {0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
socket$l2tp(0x2, 0x2, 0x73)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
syz_emit_ethernet(0xfc0, &(0x7f0000007940)=ANY=[@ANYBLOB="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"], 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m56.601243506s ago: executing program 8 (id=2988):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x94, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}]}, 0x94}}, 0x0)

1m55.134752677s ago: executing program 8 (id=2995):
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r2}, 0x10)
openat$tun(0xffffffffffffff9c, 0x0, 0x100, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'ip_vti0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x7, 0x6361, 0x5, 0xffffffff, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x240080c1}, 0x0)

1m54.366885853s ago: executing program 8 (id=2999):
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000700000000821ec3cb02726d85b5f1809fa6539c43be048e63"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={0x0}, 0x18)
r2 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
epoll_create1(0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x481, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000040)=ANY=[], 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298)
sendto$inet(r3, 0x0, 0x0, 0x24000080, 0x0, 0x0)

1m38.983456811s ago: executing program 38 (id=2999):
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000700000000821ec3cb02726d85b5f1809fa6539c43be048e63"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={0x0}, 0x18)
r2 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
epoll_create1(0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x481, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000040)=ANY=[], 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298)
sendto$inet(r3, 0x0, 0x0, 0x24000080, 0x0, 0x0)

5.120502252s ago: executing program 1 (id=3412):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00'}, 0x18)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x1)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="bd", 0x1}], 0x1}}], 0x1, 0x0)

3.885454461s ago: executing program 7 (id=3415):
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r1, &(0x7f0000000d00)=[{&(0x7f0000001b80)=""/4096, 0x1000}], 0x1, 0x2, 0x200)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b'], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xd, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe00181100", @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r2}, 0x18)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x800c4}, 0x850)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600)

3.809650224s ago: executing program 9 (id=3416):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x22020600)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/connector\x00')
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x134, 0x2, 0x1, 0x503, 0x0, 0x0, {0x4, 0x0, 0xa}, [@CTA_LABELS={0xc, 0x16, 0x1, 0x0, [0x6, 0x4]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x6}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x3}, @CTA_MARK={0x8}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'snmp_trap\x00'}}, @CTA_LABELS={0x1c, 0x16, 0x1, 0x0, [0x48, 0xcb, 0x0, 0x3, 0x1, 0x9]}, @CTA_TUPLE_MASTER={0x8c, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xa}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x34}}]}, @CTA_PROTOINFO={0x40, 0x4, 0x0, 0x1, @CTA_PROTOINFO_SCTP={0x3c, 0x3, 0x0, 0x1, [@CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0x401}, @CTA_PROTOINFO_SCTP_VTAG_REPLY={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0x10}, @CTA_PROTOINFO_SCTP_VTAG_REPLY={0x8, 0x3, 0x1, 0x0, 0x80000001}, @CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0x2}, @CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0xf0}]}}]}, 0x134}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)

3.628554057s ago: executing program 1 (id=3418):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000540), 0x1, 0x490, &(0x7f0000000580)="$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")
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, 0x0)

3.363063987s ago: executing program 9 (id=3420):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="900000000002010400000000000000000a000000040001803c0003800c00028005000100840000002c00018014000300ff01000000000000000000000000000114000400fc0000000000000000000000000000003c0002800c00028005000108"], 0x90}, 0x1, 0x0, 0x0, 0x14}, 0x0)

3.123011269s ago: executing program 4 (id=3421):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q;', 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)

3.12070805s ago: executing program 3 (id=3422):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

2.724790185s ago: executing program 1 (id=3423):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
close(r1)

2.701872492s ago: executing program 9 (id=3424):
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000240)="390000fa461ad7e48489bffa5602001300111868090707120000ab450f0000ff3f21000000170a00170000000004001407100003000131d7b2d0370a00f302415af0083f527c33cdf1586f", 0x4b}], 0x1)
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=0x0])

2.680977644s ago: executing program 3 (id=3425):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
pread64(r0, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)

2.562600179s ago: executing program 7 (id=3426):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x28)

2.547386011s ago: executing program 4 (id=3427):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
close(r2)

2.294473039s ago: executing program 3 (id=3428):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00'}, 0x18)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x1)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="bd", 0x1}], 0x1}}], 0x1, 0x0)

2.29207539s ago: executing program 9 (id=3429):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c0130"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r1], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x0)

2.011485586s ago: executing program 4 (id=3430):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x22020600)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/connector\x00')
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x134, 0x2, 0x1, 0x503, 0x0, 0x0, {0x4, 0x0, 0xa}, [@CTA_LABELS={0xc, 0x16, 0x1, 0x0, [0x6, 0x4]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x6}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x3}, @CTA_MARK={0x8}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'snmp_trap\x00'}}, @CTA_LABELS={0x1c, 0x16, 0x1, 0x0, [0x48, 0xcb, 0x0, 0x3, 0x1, 0x9]}, @CTA_TUPLE_MASTER={0x8c, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xa}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x34}}]}, @CTA_PROTOINFO={0x40, 0x4, 0x0, 0x1, @CTA_PROTOINFO_SCTP={0x3c, 0x3, 0x0, 0x1, [@CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0x401}, @CTA_PROTOINFO_SCTP_VTAG_REPLY={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0x10}, @CTA_PROTOINFO_SCTP_VTAG_REPLY={0x8, 0x3, 0x1, 0x0, 0x80000001}, @CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0x2}, @CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0xf0}]}}]}, 0x134}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)

1.992797267s ago: executing program 7 (id=3431):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="7c010000190001000000000003000000ac141425000000000000000000000000fe8000000000000000000000000000aa00000000fffd00060a00008000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="02000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000c4000500fe880000000000000000000000000101000004d62b000000020000000a0101020000000000000000000000000000000004030700080000000400000001000000fe80000000000000000000000000004c000004d66c00000002"], 0x17c}}, 0x10)

1.819526868s ago: executing program 1 (id=3432):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
keyctl$setperm(0x5, 0x0, 0x13220c28)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_clone(0xfdba2180, 0x0, 0x0, 0x0, 0x0, 0x0)

1.694874404s ago: executing program 9 (id=3433):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="a1ab0000000000000000320000000800"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1.537065683s ago: executing program 3 (id=3434):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="900000000002010400000000000000000a000000040001803c0003800c00028005000100840000002c00018014000300ff01000000000000000000000000000114000400fc0000000000000000000000000000003c0002800c00028005000108000000002c00018014000300fc020000"], 0x90}, 0x1, 0x0, 0x0, 0x14}, 0x0)

1.355580945s ago: executing program 7 (id=3435):
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

1.259336609s ago: executing program 1 (id=3436):
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r1, &(0x7f0000000d00)=[{&(0x7f0000001b80)=""/4096, 0x1000}], 0x1, 0x2, 0x200)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b'], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xd, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe00181100", @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r2}, 0x18)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x800c4}, 0x850)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600)

1.257465344s ago: executing program 4 (id=3437):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q;', 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)

997.348969ms ago: executing program 7 (id=3438):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x88640, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x4, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
r3 = syz_open_pts(r2, 0x141601)
write(r3, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000080)={0x8, 0x20000000, 0xfffffffc, 0x7fffffd, 0x5, "682341f2fd71a6a76177920ea7e60c0ac7a4a5"})
close_range(r1, 0xffffffffffffffff, 0x0)

773.864395ms ago: executing program 9 (id=3439):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
pread64(0xffffffffffffffff, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)

751.424839ms ago: executing program 3 (id=3440):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x10000000000}, 0x18)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
close_range(r3, 0xffffffffffffffff, 0x0)

582.199739ms ago: executing program 4 (id=3441):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x28)

99.195929ms ago: executing program 4 (id=3442):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000400003800800014000000000080002400000fbff2b0003801400010067656e6576653000000000000000000014000100776732000000000000000000c6e49c0f5c000000180a0101000b000000000000010000000900020073797a30000000000900010073797a3000"], 0x110}}, 0x0)

98.61852ms ago: executing program 3 (id=3443):
rseq(0x0, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x3, @empty, 0x1}, 0x1c)
listen(r1, 0x1)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = accept(r0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r4}, 0x18)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000006000/0x4000)=nil)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0x20000814}, 0x80)
connect$unix(r3, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0xe, &(0x7f0000000440)=@raw=[@ldst={0x0, 0x2, 0x0, 0xa, 0xa, 0x0, 0xfffffffffffffff0}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x2}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @alu={0x7, 0x0, 0xc, 0x8, 0x3, 0xfffffffffffffffc, 0x4}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xc3}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], &(0x7f0000000100)='syzkaller\x00', 0x0, 0xea, &(0x7f0000000140)=""/234, 0x0, 0x12, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000040)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x0, 0x2, 0x76cceb2a, 0xffffffff}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f00000002c0)=[{0x2, 0x4, 0x9, 0x5}, {0x5, 0x3, 0xd}, {0x5, 0x5, 0x3, 0x9}, {0x2, 0x5, 0x7, 0xc}]}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='objagg_obj_root_create\x00', r5, 0x0, 0x2}, 0x18)

67.697474ms ago: executing program 7 (id=3444):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x8, @loopback, 0x8}, 0x1c)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00'}, 0x18)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x1)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="bd", 0x1}], 0x1}}], 0x1, 0x0)

0s ago: executing program 1 (id=3445):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000540)='\x00', &(0x7f0000001c80)="6ed4", 0x2)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000580)='syzkall\x1ar\x00\x88\xa3\xb4\xc2\xd8,\x0e\xc3\xff[\x1d9\xb1\xf2D\xb4g\x1f\xb0\xcd\x06\x9d\xc0\x10\x8c\xd3C\b\x00\xe6\xb8\xcen\xea\xbd\xb8\t\xccv\x8esV\x8c\x17\xa4f\xbe\xd2\xda\xc2\v\xce\x9eY[\x9a_k\xfbx\x91\xed\xdb\xbc\x86\xebf\xc2\x12_\x94\x0f\xacU\xbf\xb4\xc7:\xcd\a\xd0\x03\xe3\xba\xe4\xb5\x00\xc7\x89\xb3\x92$)\x01\xa7{\xf1^&oG\xde\x17X\xa2m/\x1c\xfdE\x1d\r\x03\x00\x00\x00\f8!\x1e\xcc\xbc\xe1\x8a\xe4\xbe\xc0\xca\xa3\xe2%\xffT\xfd_;\xda\x14GP\x92\x88\xb3\xb5\x97\xec\x84\xcel\x02qxD3\x98\xe5\f\x94k\xec\b0\x10\xfb\xbe\xd4^\xc2e\xfc[\xe3\x8chl\x19\\\xe8\xef\x98\xd6\xfeF\x00IsTT\xcb\x97\xa7\xc8\x8e\xb0\xbb\x7fx\xfe9S\xd8M>\x0e\x82\xe6+\xe2afl\x01\x04\rk\xb3^\x13^J\xdao\x84\x12\xb3\x13\xbb6\xd4fY\x94|M6\x97\x17\xdc\x1eiw\xcd\x00\xd3\xef\xc1e\x19w\xd4\x82t%\t\x14\xed\xd5%\xa3n\a\x00\x00\x00', &(0x7f00000003c0)='8\xbe\xf1\x957\x9c\x93\xb4\xf1\xff\x9d\xccr\x8b\x8a\x12\x80\r\x97\xfa\x9d\x82\x91=+\r\xdf\xed\x82XH\x15\xf5\x98\xf7\x14', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
close(r0)

kernel console output (not intermixed with test programs):

it: type=1326 audit(1752931250.598:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14276 comm="syz.8.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf9f98e9a9 code=0x7ffc0000
[ 1092.120393][   T30] audit: type=1326 audit(1752931250.598:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14276 comm="syz.8.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf9f98e9a9 code=0x7ffc0000
[ 1092.143943][   T30] audit: type=1326 audit(1752931250.638:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14276 comm="syz.8.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf9f98e9a9 code=0x7ffc0000
[ 1092.166924][   T30] audit: type=1326 audit(1752931250.638:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14276 comm="syz.8.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf9f98e9a9 code=0x7ffc0000
[ 1092.193122][   T30] audit: type=1326 audit(1752931250.648:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14276 comm="syz.8.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fdf9f98e9a9 code=0x7ffc0000
[ 1092.217647][   T30] audit: type=1326 audit(1752931250.648:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14276 comm="syz.8.2714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf9f98e9a9 code=0x7ffc0000
[ 1092.538816][T14280] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2716'.
[ 1092.611300][T14280] smc: net device bond0 applied user defined pnetid SYZ0
[ 1092.648459][T14280] smc: net device bond0 erased user defined pnetid SYZ0
[ 1092.791219][T14284] loop8: detected capacity change from 0 to 2048
[ 1093.363772][T14284] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1093.988767][ T9364] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1094.984543][T14314] loop9: detected capacity change from 0 to 128
[ 1095.158174][T14314] netlink: 20 bytes leftover after parsing attributes in process `syz.9.2726'.
[ 1096.645481][   T30] kauditd_printk_skb: 2 callbacks suppressed
[ 1096.645565][   T30] audit: type=1326 audit(1752931255.658:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1096.675429][   T30] audit: type=1326 audit(1752931255.658:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1096.783923][T14340] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2733'.
[ 1096.861913][T14343] smc: net device bond0 applied user defined pnetid SYZ0
[ 1096.881342][T14340] smc: net device bond0 erased user defined pnetid SYZ0
[ 1097.515292][   T30] audit: type=1326 audit(1752931256.508:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1097.538834][   T30] audit: type=1326 audit(1752931256.508:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1097.565287][   T30] audit: type=1326 audit(1752931256.508:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.2730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1097.666087][T14348] loop9: detected capacity change from 0 to 128
[ 1097.879399][T14348] netlink: 20 bytes leftover after parsing attributes in process `syz.9.2737'.
[ 1099.043312][T14368] loop8: detected capacity change from 0 to 128
[ 1099.222716][T14368] syz.8.2741: attempt to access beyond end of device
[ 1099.222716][T14368] loop8: rw=2049, sector=137, nr_sectors = 8 limit=128
[ 1099.289133][T14374] syz.8.2741: attempt to access beyond end of device
[ 1099.289133][T14374] loop8: rw=2049, sector=145, nr_sectors = 1 limit=128
[ 1100.293329][T14381] loop9: detected capacity change from 0 to 2048
[ 1100.317223][T14389] loop3: detected capacity change from 0 to 128
[ 1100.488924][T14381] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1100.632582][T14389] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2750'.
[ 1100.659632][T14389] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1100.670153][T14389] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1100.684794][T14389] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1100.695501][T14389] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1100.849240][T14389] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1100.858772][T14389] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1100.868292][T14389] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1100.883079][T14389] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1100.970974][T14402] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2754'.
[ 1101.139485][T14402] smc: net device bond0 applied user defined pnetid SYZ0
[ 1101.157241][T14409] smc: net device bond0 erased user defined pnetid SYZ0
[ 1101.326057][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1102.986328][   T30] audit: type=1326 audit(1752931261.958:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14428 comm="syz.1.2762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1103.009798][   T30] audit: type=1326 audit(1752931261.958:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14428 comm="syz.1.2762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1103.272794][   T30] audit: type=1326 audit(1752931262.208:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14428 comm="syz.1.2762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1103.296659][   T30] audit: type=1326 audit(1752931262.218:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14428 comm="syz.1.2762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1103.319990][   T30] audit: type=1326 audit(1752931262.218:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14428 comm="syz.1.2762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1103.620912][   T30] audit: type=1326 audit(1752931262.398:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14428 comm="syz.1.2762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1103.647163][   T30] audit: type=1326 audit(1752931262.398:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14428 comm="syz.1.2762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1103.672025][   T30] audit: type=1326 audit(1752931262.398:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14428 comm="syz.1.2762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ea0f8e9a9 code=0x7ffc0000
[ 1103.921702][T14449] loop7: detected capacity change from 0 to 128
[ 1103.968799][T14445] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2768'.
[ 1104.088630][   T30] audit: type=1800 audit(1752931263.088:634): pid=14449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2769" name="file2" dev="loop7" ino=1048671 res=0 errno=0
[ 1104.116592][T14449] syz.7.2769: attempt to access beyond end of device
[ 1104.116592][T14449] loop7: rw=0, sector=2071, nr_sectors = 1 limit=128
[ 1104.266451][   T30] audit: type=1800 audit(1752931263.268:635): pid=14449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2769" name="file2" dev="loop7" ino=1048671 res=0 errno=0
[ 1104.690342][T14460] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2774'.
[ 1104.773666][T14460] smc: net device bond0 applied user defined pnetid SYZ0
[ 1104.815769][T14460] smc: net device bond0 erased user defined pnetid SYZ0
[ 1105.208183][T14468] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2777'.
[ 1106.464976][T14481] loop9: detected capacity change from 0 to 128
[ 1106.660391][T14481] netlink: 20 bytes leftover after parsing attributes in process `syz.9.2782'.
[ 1107.145931][T14492] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2786'.
[ 1107.324583][T14496] netlink: 36 bytes leftover after parsing attributes in process `syz.7.2790'.
[ 1107.599023][T14499] veth1_to_bond: entered allmulticast mode
[ 1107.629832][T14499] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2791'.
[ 1107.734381][T14499] bond0: (slave bond_slave_1): Releasing backup interface
[ 1107.767083][T14503] loop8: detected capacity change from 0 to 512
[ 1107.792959][T14499] veth1_to_bond (unregistering): left allmulticast mode
[ 1107.825024][T14503] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1107.969639][T14503] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1107.983175][T14503] ext4 filesystem being mounted at /338/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1108.145739][T14510] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2794'.
[ 1108.200667][T14503] EXT4-fs error (device loop8): ext4_xattr_block_get:593: inode #15: comm syz.8.2793: corrupted xattr block 19: overlapping e_value 
[ 1108.270119][T14510] smc: net device bond0 applied user defined pnetid SYZ0
[ 1108.305897][T14510] smc: net device bond0 erased user defined pnetid SYZ0
[ 1108.484540][T14514] loop3: detected capacity change from 0 to 512
[ 1108.523823][T14514] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[ 1108.577513][T14514] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[ 1108.729887][T14520] loop7: detected capacity change from 0 to 128
[ 1108.756171][T14514] System zones: 1-12
[ 1108.842801][T14514] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 1108.858919][T14514] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #11: comm syz.3.2797: corrupted inode contents
[ 1108.883573][ T9364] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1108.950616][T14520] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2799'.
[ 1108.983938][T14520] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1108.993176][T14520] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1109.002430][T14520] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1109.011782][T14520] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1109.028999][T14514] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #11: comm syz.3.2797: mark_inode_dirty error
[ 1109.063629][T14514] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.2797: invalid indirect mapped block 1 (level 1)
[ 1109.082954][T14520] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1109.092528][T14520] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1109.101946][T14520] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1109.111482][T14520] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1109.121422][T14514] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #11: comm syz.3.2797: corrupted inode contents
[ 1109.143187][T14514] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[ 1109.153413][T14514] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #11: comm syz.3.2797: corrupted inode contents
[ 1109.193320][T14514] EXT4-fs error (device loop3): ext4_truncate:4597: inode #11: comm syz.3.2797: mark_inode_dirty error
[ 1109.241273][T14514] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[ 1109.252959][T14514] EXT4-fs (loop3): 1 truncate cleaned up
[ 1109.262550][T14514] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1109.663899][ T9525] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1110.785760][T14534] netlink: 'syz.1.2805': attribute type 5 has an invalid length.
[ 1111.087265][T14538] loop7: detected capacity change from 0 to 512
[ 1111.782136][T14542] loop1: detected capacity change from 0 to 1024
[ 1111.841762][T14542] EXT4-fs: Ignoring removed oldalloc option
[ 1111.848545][T14542] EXT4-fs: Ignoring removed bh option
[ 1112.163848][T14542] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1112.410311][   T30] audit: type=1804 audit(1752931271.398:636): pid=14542 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2808" name="/newroot/588/file1/bus" dev="loop1" ino=18 res=1 errno=0
[ 1112.768984][T14551] loop3: detected capacity change from 0 to 512
[ 1112.926798][T14551] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1113.103604][ T5814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1113.153676][T14551] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1113.173243][T14551] ext4 filesystem being mounted at /334/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1113.234715][T14551] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.2810: corrupted xattr block 19: overlapping e_value 
[ 1113.542269][ T9525] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1113.686300][T14562] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2814'.
[ 1113.726239][T14562] smc: net device bond0 applied user defined pnetid SYZ0
[ 1113.740973][T14565] usb usb1: check_ctrlrecip: process 14565 (syz.1.2812) requesting ep 01 but needs 81
[ 1113.754043][T14562] smc: net device bond0 erased user defined pnetid SYZ0
[ 1114.536075][T14559] loop8: detected capacity change from 0 to 8192
[ 1114.584492][T14559] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1115.175817][T14575] netlink: 'syz.7.2817': attribute type 5 has an invalid length.
[ 1116.864512][T14585] loop8: detected capacity change from 0 to 512
[ 1117.036886][T14591] loop1: detected capacity change from 0 to 512
[ 1117.086591][T14591] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1117.221878][T14591] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1117.302540][T14591] ext4 filesystem being mounted at /593/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1117.342150][T14591] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.2826: corrupted xattr block 19: overlapping e_value 
[ 1117.357956][T14595] sd 0:0:1:0: device reset
[ 1117.552430][ T5814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1117.961010][T14611] netlink: 'syz.8.2832': attribute type 5 has an invalid length.
[ 1118.244921][T14613] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2833'.
[ 1119.187670][T14626] loop7: detected capacity change from 0 to 512
[ 1120.320850][T14637] loop8: detected capacity change from 0 to 512
[ 1120.366130][   T30] audit: type=1326 audit(1752931279.318:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14634 comm="syz.7.2842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1120.389631][   T30] audit: type=1326 audit(1752931279.318:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14634 comm="syz.7.2842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1120.412945][   T30] audit: type=1326 audit(1752931279.328:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14634 comm="syz.7.2842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1120.439259][   T30] audit: type=1326 audit(1752931279.328:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14634 comm="syz.7.2842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1120.463375][   T30] audit: type=1326 audit(1752931279.348:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14634 comm="syz.7.2842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1120.632147][T14637] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1120.810034][T14637] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1120.823459][T14637] ext4 filesystem being mounted at /347/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1121.078970][T14637] EXT4-fs error (device loop8): ext4_xattr_block_get:593: inode #15: comm syz.8.2841: corrupted xattr block 19: overlapping e_value 
[ 1121.427357][ T9364] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1121.746342][T14650] netlink: 36 bytes leftover after parsing attributes in process `syz.7.2847'.
[ 1122.759688][T14670] netlink: 236 bytes leftover after parsing attributes in process `syz.7.2857'.
[ 1122.841350][T14671] loop1: detected capacity change from 0 to 512
[ 1122.890056][T14671] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1123.148633][T14671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1123.162233][T14671] ext4 filesystem being mounted at /598/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1123.237236][   T30] audit: type=1326 audit(1752931282.208:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14677 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1123.260563][   T30] audit: type=1326 audit(1752931282.208:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14677 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1123.283537][   T30] audit: type=1326 audit(1752931282.208:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14677 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1123.310348][   T30] audit: type=1326 audit(1752931282.218:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14677 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1123.334597][   T30] audit: type=1326 audit(1752931282.328:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14677 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1123.452711][T14671] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.2856: corrupted xattr block 19: overlapping e_value 
[ 1123.683397][T14686] loop9: detected capacity change from 0 to 128
[ 1123.812719][ T5814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1125.513781][   T30] kauditd_printk_skb: 48 callbacks suppressed
[ 1125.513864][   T30] audit: type=1326 audit(1752931284.508:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14705 comm="syz.3.2871" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x0
[ 1125.573189][T14709] netlink: 96 bytes leftover after parsing attributes in process `syz.7.2870'.
[ 1126.020725][T14713] loop9: detected capacity change from 0 to 512
[ 1126.100521][T14713] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1126.232645][T14713] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1126.246189][T14713] ext4 filesystem being mounted at /376/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1126.354568][T14713] EXT4-fs error (device loop9): ext4_xattr_block_get:593: inode #15: comm syz.9.2874: corrupted xattr block 19: overlapping e_value 
[ 1126.570836][ T5110] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1126.597921][ T5110] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1126.613238][ T5110] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1126.648132][ T5110] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1126.911699][ T5110] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1126.953109][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1127.875600][T14733] loop9: detected capacity change from 0 to 128
[ 1128.562735][T14722] chnl_net:caif_netlink_parms(): no params data found
[ 1128.602239][T14740] loop7: detected capacity change from 0 to 128
[ 1129.069921][T11226] Bluetooth: hci4: command tx timeout
[ 1129.380541][ T7474] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1129.390978][ T7474] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1129.581256][ T7474] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1129.591705][ T7474] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1129.778528][ T7474] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1129.788803][ T7474] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1129.918990][T14752] loop7: detected capacity change from 0 to 512
[ 1129.964903][ T7474] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1129.975561][ T7474] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1130.034979][T14752] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1130.135898][T14752] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1130.149193][T14752] ext4 filesystem being mounted at /438/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1130.260275][T14752] EXT4-fs error (device loop7): ext4_xattr_block_get:593: inode #15: comm syz.7.2887: corrupted xattr block 19: overlapping e_value 
[ 1130.733869][ T7474] bridge_slave_1: left allmulticast mode
[ 1130.742272][ T7474] bridge_slave_1: left promiscuous mode
[ 1130.749142][ T7474] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1130.764218][ T7975] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1130.782526][ T7474] bridge_slave_0: left allmulticast mode
[ 1130.788867][ T7474] bridge_slave_0: left promiscuous mode
[ 1130.795877][ T7474] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1131.185749][T11226] Bluetooth: hci4: command tx timeout
[ 1131.381533][T14772] loop7: detected capacity change from 0 to 128
[ 1131.467722][T14770] loop9: detected capacity change from 0 to 2048
[ 1131.616683][T14770]  loop9: p1 < > p4
[ 1131.667911][T14770] loop9: p4 size 8388608 extends beyond EOD, truncated
[ 1132.397256][ T7474] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1132.461639][ T7474] bond0 (unregistering): Released all slaves
[ 1132.762849][T14722] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1132.771699][T14722] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1132.779683][T14722] bridge_slave_0: entered allmulticast mode
[ 1132.789691][T14722] bridge_slave_0: entered promiscuous mode
[ 1132.808012][ T7474] tipc: Left network mode
[ 1132.848188][T14722] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1132.860043][T14722] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1132.868336][T14722] bridge_slave_1: entered allmulticast mode
[ 1132.878201][T14722] bridge_slave_1: entered promiscuous mode
[ 1133.127616][T14791] netlink: 'syz.7.2902': attribute type 7 has an invalid length.
[ 1133.140681][T14791] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2902'.
[ 1133.219315][T11226] Bluetooth: hci4: command tx timeout
[ 1133.659836][T14722] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1133.824693][ T7474] hsr_slave_0: left promiscuous mode
[ 1133.885497][ T7474] hsr_slave_1: left promiscuous mode
[ 1133.897463][ T7474] batman_adv: batadv0: Interface deactivated: dummy0
[ 1133.904791][ T7474] batman_adv: batadv0: Removing interface: dummy0
[ 1133.976581][ T7474] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1133.984550][ T7474] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1134.017583][ T7474] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1134.025594][ T7474] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1134.131450][ T7474] veth1_macvtap: left promiscuous mode
[ 1134.137437][ T7474] veth0_macvtap: left promiscuous mode
[ 1134.143564][ T7474] veth1_vlan: left promiscuous mode
[ 1134.149326][ T7474] veth0_vlan: left promiscuous mode
[ 1135.023496][T14813] loop9: detected capacity change from 0 to 512
[ 1135.299234][T11226] Bluetooth: hci4: command tx timeout
[ 1135.701900][ T7474] team0 (unregistering): Port device team_slave_1 removed
[ 1135.742366][T14819] loop7: detected capacity change from 0 to 512
[ 1135.811202][T14819] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[ 1135.840224][ T7474] team0 (unregistering): Port device team_slave_0 removed
[ 1135.965007][T14819] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[ 1135.981890][T14819] System zones: 1-12
[ 1136.015535][T14819] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 1136.031149][T14819] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #11: comm syz.7.2915: corrupted inode contents
[ 1136.118070][T14819] EXT4-fs error (device loop7): ext4_dirty_inode:6459: inode #11: comm syz.7.2915: mark_inode_dirty error
[ 1136.229582][T14819] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.2915: invalid indirect mapped block 1 (level 1)
[ 1136.292482][T14819] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #11: comm syz.7.2915: corrupted inode contents
[ 1136.380331][T14819] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem
[ 1136.449532][T14819] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #11: comm syz.7.2915: corrupted inode contents
[ 1136.476818][T14722] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1136.522629][T14819] EXT4-fs error (device loop7): ext4_truncate:4597: inode #11: comm syz.7.2915: mark_inode_dirty error
[ 1136.586390][T14819] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem
[ 1136.610397][T14819] EXT4-fs (loop7): 1 truncate cleaned up
[ 1136.624434][T14819] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1136.674634][T14817] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2914'.
[ 1136.701456][T14817] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1136.711709][T14817] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1136.725682][T14817] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1136.734768][T14817] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1136.766571][T14828] netlink: 'syz.8.2917': attribute type 7 has an invalid length.
[ 1136.774658][T14828] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2917'.
[ 1136.871163][T14817] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1136.880862][T14817] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1136.890351][T14817] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1136.900677][T14817] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1136.991620][ T7975] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1137.271506][T14722] team0: Port device team_slave_0 added
[ 1137.346562][T14722] team0: Port device team_slave_1 added
[ 1139.296593][T14722] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1139.303810][T14722] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1139.330999][T14722] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1139.730281][T14722] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1139.738271][T14722] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1139.764877][T14722] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1140.789738][T14858] loop8: detected capacity change from 0 to 512
[ 1140.969042][T14722] hsr_slave_0: entered promiscuous mode
[ 1140.980474][T14722] hsr_slave_1: entered promiscuous mode
[ 1140.989715][T14722] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1140.997908][T14722] Cannot create hsr debugfs directory
[ 1141.645913][T14866] loop8: detected capacity change from 0 to 128
[ 1141.882574][T14862] loop9: detected capacity change from 0 to 512
[ 1141.958395][T14866] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2930'.
[ 1142.009480][T14862] EXT4-fs (loop9): mounting ext2 file system using the ext4 subsystem
[ 1142.136886][T14862] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[ 1142.194076][T14862] System zones: 1-12
[ 1142.317580][T14862] EXT4-fs error (device loop9): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 1142.333184][T14862] EXT4-fs error (device loop9): ext4_do_update_inode:5568: inode #11: comm syz.9.2928: corrupted inode contents
[ 1142.415683][T14862] EXT4-fs error (device loop9): ext4_dirty_inode:6459: inode #11: comm syz.9.2928: mark_inode_dirty error
[ 1142.439899][T14862] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.2928: invalid indirect mapped block 1 (level 1)
[ 1142.502256][T14862] EXT4-fs error (device loop9): ext4_do_update_inode:5568: inode #11: comm syz.9.2928: corrupted inode contents
[ 1142.565845][T14862] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem
[ 1142.619428][T14862] EXT4-fs error (device loop9): ext4_do_update_inode:5568: inode #11: comm syz.9.2928: corrupted inode contents
[ 1142.665787][T14862] EXT4-fs error (device loop9): ext4_truncate:4597: inode #11: comm syz.9.2928: mark_inode_dirty error
[ 1142.699139][T14862] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem
[ 1142.720858][T14862] EXT4-fs (loop9): 1 truncate cleaned up
[ 1142.729412][T14862] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1143.327901][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1143.387837][T14722] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1143.447049][T14722] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1143.516719][T14722] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1143.599177][T14722] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1145.140538][T14891] loop8: detected capacity change from 0 to 512
[ 1145.164569][T14722] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1145.296751][T14722] 8021q: adding VLAN 0 to HW filter on device team0
[ 1145.384948][T14850] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1145.392715][T14850] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1145.410140][T14850] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1145.418086][T14850] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1145.593128][T14893] loop9: detected capacity change from 0 to 2048
[ 1145.782509][T14895] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2941'.
[ 1145.810794][T14895] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1145.820149][T14895] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1145.829448][T14895] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1145.843224][T14895] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1145.918282][T14893] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1145.962948][T14895] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1145.972672][T14895] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1145.982217][T14895] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1145.991665][T14895] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1146.317027][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1146.952820][T14907] loop9: detected capacity change from 0 to 512
[ 1147.046980][T14907] EXT4-fs (loop9): mounting ext2 file system using the ext4 subsystem
[ 1147.141608][T14907] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[ 1147.191235][T14907] System zones: 1-12
[ 1147.286312][T14907] EXT4-fs error (device loop9): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 1147.302452][T14907] EXT4-fs error (device loop9): ext4_do_update_inode:5568: inode #11: comm syz.9.2943: corrupted inode contents
[ 1147.406009][T14907] EXT4-fs error (device loop9): ext4_dirty_inode:6459: inode #11: comm syz.9.2943: mark_inode_dirty error
[ 1147.458815][T14907] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.2943: invalid indirect mapped block 1 (level 1)
[ 1147.565401][T14907] EXT4-fs error (device loop9): ext4_do_update_inode:5568: inode #11: comm syz.9.2943: corrupted inode contents
[ 1147.666072][T14907] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem
[ 1147.733475][T14907] EXT4-fs error (device loop9): ext4_do_update_inode:5568: inode #11: comm syz.9.2943: corrupted inode contents
[ 1147.835638][T14907] EXT4-fs error (device loop9): ext4_truncate:4597: inode #11: comm syz.9.2943: mark_inode_dirty error
[ 1147.900187][T14907] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem
[ 1147.955475][T14907] EXT4-fs (loop9): 1 truncate cleaned up
[ 1147.963831][T14907] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1148.438186][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1148.550761][T14722] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1149.098506][T14925] loop9: detected capacity change from 0 to 512
[ 1149.173860][T14722] veth0_vlan: entered promiscuous mode
[ 1149.307632][T14722] veth1_vlan: entered promiscuous mode
[ 1149.713246][T14722] veth0_macvtap: entered promiscuous mode
[ 1149.814350][T14931] loop9: detected capacity change from 0 to 128
[ 1149.836609][T14722] veth1_macvtap: entered promiscuous mode
[ 1149.963629][T14931] netlink: 20 bytes leftover after parsing attributes in process `syz.9.2954'.
[ 1150.044173][T14722] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1150.174504][T14722] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1150.290067][T14722] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1150.299629][T14722] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1150.308901][T14722] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1150.318359][T14722] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1151.246455][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[ 1152.689849][T14957] loop8: detected capacity change from 0 to 512
[ 1153.809061][T14968] loop7: detected capacity change from 0 to 128
[ 1154.071841][T14968] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2967'.
[ 1154.103435][T14968] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1154.112968][T14968] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1154.122496][T14968] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1154.137396][T14968] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1154.391888][T14968] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1154.401867][T14968] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1154.411336][T14968] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1154.420863][T14968] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1156.977438][   T30] audit: type=1326 audit(1752931315.978:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.004607][   T30] audit: type=1326 audit(1752931315.978:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.028981][   T30] audit: type=1326 audit(1752931315.988:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.055444][   T30] audit: type=1326 audit(1752931315.988:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.078310][T15011] xt_hashlimit: size too large, truncated to 1048576
[ 1157.078396][T15011] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[ 1157.087002][   T30] audit: type=1326 audit(1752931315.988:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.118843][   T30] audit: type=1326 audit(1752931315.998:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.142968][   T30] audit: type=1326 audit(1752931315.998:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.166017][   T30] audit: type=1326 audit(1752931316.018:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.189211][   T30] audit: type=1326 audit(1752931316.018:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.216548][   T30] audit: type=1326 audit(1752931316.018:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15010 comm="syz.7.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1157.865423][T15020] loop8: detected capacity change from 0 to 128
[ 1158.077688][T15020] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2985'.
[ 1158.713711][T15025] loop7: detected capacity change from 0 to 512
[ 1159.899856][ T7511] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1159.899961][ T7511] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1160.153635][ T7511] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1160.153750][ T7511] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1160.872083][T15057] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2997'.
[ 1162.340947][T15079] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3004'.
[ 1162.482454][T15075] loop7: detected capacity change from 0 to 2048
[ 1162.670382][T15075] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1163.054288][ T7975] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1163.783847][T15098] loop7: detected capacity change from 0 to 512
[ 1163.916041][T15098] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1163.929359][T15098] ext4 filesystem being mounted at /457/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1164.151813][T15098] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #2: comm syz.7.3009: corrupted inode contents
[ 1164.205522][T15098] EXT4-fs error (device loop7): ext4_dirty_inode:6459: inode #2: comm syz.7.3009: mark_inode_dirty error
[ 1164.238425][T15098] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #2: comm syz.7.3009: corrupted inode contents
[ 1164.460772][T15111] loop9: detected capacity change from 0 to 512
[ 1164.517269][ T7975] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1165.641442][T15126] netlink: 48 bytes leftover after parsing attributes in process `syz.7.3021'.
[ 1165.682342][   T30] kauditd_printk_skb: 20 callbacks suppressed
[ 1165.682427][   T30] audit: type=1326 audit(1752931324.688:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.682675][   T30] audit: type=1326 audit(1752931324.688:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.734181][   T30] audit: type=1326 audit(1752931324.748:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.737564][   T30] audit: type=1326 audit(1752931324.758:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.739124][   T30] audit: type=1326 audit(1752931324.758:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.750989][   T30] audit: type=1326 audit(1752931324.768:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.751243][   T30] audit: type=1326 audit(1752931324.768:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.766106][   T30] audit: type=1326 audit(1752931324.768:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.766373][   T30] audit: type=1326 audit(1752931324.768:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1165.773247][   T30] audit: type=1326 audit(1752931324.788:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15127 comm="syz.1.3022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1167.156906][T15144] loop9: detected capacity change from 0 to 512
[ 1168.270626][T15154] loop7: detected capacity change from 0 to 1024
[ 1168.761022][T15154] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1168.777944][T15154] ext4 filesystem being mounted at /463/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1168.866302][T15164] 9pnet_fd: Insufficient options for proto=fd
[ 1170.524125][ T7975] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1170.594945][T15179] loop9: detected capacity change from 0 to 512
[ 1171.587921][T15191] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3047'.
[ 1173.225354][   T30] kauditd_printk_skb: 45 callbacks suppressed
[ 1173.225439][   T30] audit: type=1326 audit(1752931332.238:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.254900][   T30] audit: type=1326 audit(1752931332.238:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.281899][   T30] audit: type=1326 audit(1752931332.238:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.306179][   T30] audit: type=1326 audit(1752931332.268:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.329771][   T30] audit: type=1326 audit(1752931332.268:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.352780][   T30] audit: type=1326 audit(1752931332.278:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.379260][   T30] audit: type=1326 audit(1752931332.278:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.403614][   T30] audit: type=1326 audit(1752931332.278:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.426614][   T30] audit: type=1326 audit(1752931332.278:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.449539][   T30] audit: type=1326 audit(1752931332.278:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15209 comm="syz.7.3051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1173.932483][T15222] loop1: detected capacity change from 0 to 128
[ 1174.027289][T15222] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3053'.
[ 1174.053610][T15222] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1174.063079][T15222] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1174.072320][T15222] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1174.081816][T15222] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1174.129126][T15222] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1174.138829][T15222] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1174.148301][T15222] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1174.157690][T15222] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1177.638763][T15258] loop9: detected capacity change from 0 to 128
[ 1177.667846][ T5110] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1177.693941][ T5110] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1177.710513][ T5110] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1177.759824][ T5110] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1177.790642][ T5110] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1177.918247][T15258] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3071'.
[ 1178.581088][T15271] 9pnet_fd: Insufficient options for proto=fd
[ 1179.598534][T15259] chnl_net:caif_netlink_parms(): no params data found
[ 1179.866154][T11226] Bluetooth: hci1: command tx timeout
[ 1181.055295][T15301] loop1: detected capacity change from 0 to 128
[ 1181.940392][T11226] Bluetooth: hci1: command tx timeout
[ 1182.177958][T15305] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3087'.
[ 1182.367578][T15308] 9pnet_fd: Insufficient options for proto=fd
[ 1182.585449][T15259] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1182.601625][T15259] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1182.609702][T15259] bridge_slave_0: entered allmulticast mode
[ 1182.619958][T15259] bridge_slave_0: entered promiscuous mode
[ 1182.922214][T15305] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1182.931521][T15305] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1182.940805][T15305] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1182.950023][T15305] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1182.985711][T15305] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1182.995390][T15305] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1183.009691][T15305] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1183.021626][T15305] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1184.015381][T11226] Bluetooth: hci1: command tx timeout
[ 1184.085748][T15259] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1184.086235][T15259] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1184.086953][T15259] bridge_slave_1: entered allmulticast mode
[ 1184.090537][T15259] bridge_slave_1: entered promiscuous mode
[ 1184.112572][T15314] vlan2: entered allmulticast mode
[ 1184.112683][T15314] vlan1: entered allmulticast mode
[ 1184.112779][T15314] veth0_vlan: entered allmulticast mode
[ 1184.573050][T15259] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1184.608976][T15259] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1184.941249][T15259] team0: Port device team_slave_0 added
[ 1185.026321][T15259] team0: Port device team_slave_1 added
[ 1185.539248][T15259] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1185.546901][T15259] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1185.579407][T15259] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1185.690472][T15259] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1185.698193][T15259] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1185.725295][T15259] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1186.105765][T11226] Bluetooth: hci1: command tx timeout
[ 1186.327405][T15259] hsr_slave_0: entered promiscuous mode
[ 1186.338085][T15259] hsr_slave_1: entered promiscuous mode
[ 1186.347582][T15259] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1186.355626][T15259] Cannot create hsr debugfs directory
[ 1186.702619][T15337] sch_tbf: burst 480 is lower than device lo mtu (65550) !
[ 1186.762717][T15338] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3100'.
[ 1186.823594][T15337] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3100'.
[ 1187.987634][T15347] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3105'.
[ 1188.709886][T15356] 9pnet_fd: Insufficient options for proto=fd
[ 1189.380828][T15259] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1189.483815][T15259] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1189.577058][T15259] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1189.638933][T15259] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1190.008217][T15370] pim6reg1: entered promiscuous mode
[ 1190.008780][T15373] netlink: 'syz.3.3116': attribute type 10 has an invalid length.
[ 1190.013822][T15370] pim6reg1: entered allmulticast mode
[ 1190.022153][T15373] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3116'.
[ 1190.044895][T15373] dummy0: entered promiscuous mode
[ 1190.054096][T15373] bridge0: port 1(dummy0) entered blocking state
[ 1190.061410][T15373] bridge0: port 1(dummy0) entered disabled state
[ 1190.074004][T15373] dummy0: entered allmulticast mode
[ 1190.085997][T15373] bridge0: port 1(dummy0) entered blocking state
[ 1190.092952][T15373] bridge0: port 1(dummy0) entered forwarding state
[ 1190.153330][T15374] loop7: detected capacity change from 0 to 1024
[ 1190.234722][T15374] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1190.258289][T15374] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1191.166119][T15259] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1191.435764][T15259] 8021q: adding VLAN 0 to HW filter on device team0
[ 1191.537829][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1191.545659][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1191.672577][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1191.680413][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1191.735562][   T30] kauditd_printk_skb: 25 callbacks suppressed
[ 1191.735643][   T30] audit: type=1326 audit(1752931350.748:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1191.873345][   T30] audit: type=1326 audit(1752931350.798:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1191.896985][   T30] audit: type=1326 audit(1752931350.798:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1191.923630][   T30] audit: type=1326 audit(1752931350.808:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1191.947820][   T30] audit: type=1326 audit(1752931350.808:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1191.970849][   T30] audit: type=1326 audit(1752931350.808:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1191.997789][   T30] audit: type=1326 audit(1752931350.808:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1192.024148][   T30] audit: type=1326 audit(1752931350.808:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1192.049092][   T30] audit: type=1326 audit(1752931350.818:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1192.072274][   T30] audit: type=1326 audit(1752931350.818:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15386 comm="syz.3.3122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1192.986288][T15410] loop7: detected capacity change from 0 to 512
[ 1193.105876][T15410] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1193.119233][T15410] ext4 filesystem being mounted at /484/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1193.739132][ T7975] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1194.857841][T15259] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1195.102892][T15445] loop1: detected capacity change from 0 to 128
[ 1195.173911][T15445] vfat: Unknown parameter '/dev/input/event#'
[ 1195.747675][T15448] infiniband syz!: set active
[ 1195.752726][T15448] infiniband syz!: added team_slave_0
[ 1196.141098][T15448] RDS/IB: syz!: added
[ 1196.145614][T15448] smc: adding ib device syz! with port count 1
[ 1196.152053][T15448] smc:    ib device syz! port 1 has pnetid 
[ 1197.091669][T15461] loop7: detected capacity change from 0 to 512
[ 1198.358086][T15472] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3146'.
[ 1199.245758][T15461] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1199.259130][T15461] ext4 filesystem being mounted at /488/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1200.190170][ T7975] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1200.213265][T15259] veth0_vlan: entered promiscuous mode
[ 1200.368697][T15259] veth1_vlan: entered promiscuous mode
[ 1200.900486][T15259] veth0_macvtap: entered promiscuous mode
[ 1201.048879][T15259] veth1_macvtap: entered promiscuous mode
[ 1201.245620][T15487] loop9: detected capacity change from 0 to 128
[ 1201.250067][T15259] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1201.349972][   T30] kauditd_printk_skb: 21 callbacks suppressed
[ 1201.350053][   T30] audit: type=1800 audit(1752931360.368:847): pid=15487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3150" name="file2" dev="loop9" ino=1048698 res=0 errno=0
[ 1201.364145][T15487] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100)
[ 1201.391091][T15487] FAT-fs (loop9): Filesystem has been set read-only
[ 1201.398154][T15487] syz.9.3150: attempt to access beyond end of device
[ 1201.398154][T15487] loop9: rw=524288, sector=2065, nr_sectors = 8 limit=128
[ 1201.412604][T15487] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100)
[ 1201.420969][T15487] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100)
[ 1201.473877][T15259] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1201.520134][T15490] syz.9.3150: attempt to access beyond end of device
[ 1201.520134][T15490] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.534086][T15490] syz.9.3150: attempt to access beyond end of device
[ 1201.534086][T15490] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.554128][T15490] syz.9.3150: attempt to access beyond end of device
[ 1201.554128][T15490] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.570010][T15490] syz.9.3150: attempt to access beyond end of device
[ 1201.570010][T15490] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.600503][T15259] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1201.609839][T15259] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1201.614357][T15486] syz.9.3150: attempt to access beyond end of device
[ 1201.614357][T15486] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.620400][T15259] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1201.633263][T15486] syz.9.3150: attempt to access beyond end of device
[ 1201.633263][T15486] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.646798][T15259] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1201.672735][T15486] syz.9.3150: attempt to access beyond end of device
[ 1201.672735][T15486] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.707200][T15487] syz.9.3150: attempt to access beyond end of device
[ 1201.707200][T15487] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.755529][T15487] syz.9.3150: attempt to access beyond end of device
[ 1201.755529][T15487] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1201.996574][T15490] buffer_io_error: 22 callbacks suppressed
[ 1201.996675][T15490] Buffer I/O error on dev loop9, logical block 2065, async page read
[ 1202.011474][T15490] Buffer I/O error on dev loop9, logical block 2066, async page read
[ 1202.020154][T15490] Buffer I/O error on dev loop9, logical block 2067, async page read
[ 1202.028781][T15490] Buffer I/O error on dev loop9, logical block 2068, async page read
[ 1202.037448][T15490] Buffer I/O error on dev loop9, logical block 2069, async page read
[ 1202.046302][T15490] Buffer I/O error on dev loop9, logical block 2070, async page read
[ 1202.062120][T15490] Buffer I/O error on dev loop9, logical block 2071, async page read
[ 1202.072775][T15490] Buffer I/O error on dev loop9, logical block 2072, async page read
[ 1202.095567][T15487] Buffer I/O error on dev loop9, logical block 2065, async page read
[ 1202.104029][T15487] Buffer I/O error on dev loop9, logical block 2066, async page read
[ 1202.340740][   T30] audit: type=1326 audit(1752931361.348:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1202.367152][   T30] audit: type=1326 audit(1752931361.348:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1202.391280][   T30] audit: type=1326 audit(1752931361.388:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1202.414965][   T30] audit: type=1326 audit(1752931361.388:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1202.441119][   T30] audit: type=1326 audit(1752931361.398:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1203.319548][   T30] audit: type=1326 audit(1752931361.528:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1203.343163][   T30] audit: type=1326 audit(1752931361.528:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1203.366677][   T30] audit: type=1326 audit(1752931361.528:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1203.393855][   T30] audit: type=1326 audit(1752931361.588:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15495 comm="syz.3.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1205.116870][T15511] loop9: detected capacity change from 0 to 512
[ 1205.679282][T15511] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1205.692984][T15511] ext4 filesystem being mounted at /446/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1206.170851][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1206.278953][T15526] 9pnet_fd: Insufficient options for proto=fd
[ 1209.252763][   T30] kauditd_printk_skb: 46 callbacks suppressed
[ 1209.252851][   T30] audit: type=1326 audit(1752931368.248:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.282648][   T30] audit: type=1326 audit(1752931368.248:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.306235][   T30] audit: type=1326 audit(1752931368.298:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.502059][   T30] audit: type=1326 audit(1752931368.358:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.529323][   T30] audit: type=1326 audit(1752931368.358:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.553721][   T30] audit: type=1326 audit(1752931368.388:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.579489][   T30] audit: type=1326 audit(1752931368.418:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.605322][   T30] audit: type=1326 audit(1752931368.418:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.632045][   T30] audit: type=1326 audit(1752931368.438:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1209.656107][   T30] audit: type=1326 audit(1752931368.438:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15559 comm="syz.7.3168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1210.063747][T15567] 9pnet_fd: Insufficient options for proto=fd
[ 1210.838186][T15573] hub 9-0:1.0: USB hub found
[ 1210.891394][T15573] hub 9-0:1.0: 1 port detected
[ 1211.770867][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1211.782590][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1212.096089][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1212.104352][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1212.691483][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[ 1212.860238][T15602] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3178'.
[ 1213.865325][T15611] 9pnet_fd: Insufficient options for proto=fd
[ 1214.406114][T15613] loop9: detected capacity change from 0 to 1764
[ 1214.505397][T15613] iso9660: Unknown parameter '0000000000000000000018446744073709551615ƒ?ÙGvnâ@Úª'ØÜõ¿Ô±ýµ6ÃP)ñ#ò–QpË&Bl'Ø-¥Ø'
[ 1216.671194][T15642] 9pnet_fd: Insufficient options for proto=fd
[ 1216.772655][T15640] loop9: detected capacity change from 0 to 164
[ 1216.847491][T15640] ISOFS: unable to read i-node block
[ 1216.853175][T15640] isofs_fill_super: get root inode failed
[ 1217.849210][T15649] netlink: 'syz.4.3197': attribute type 13 has an invalid length.
[ 1218.221717][   T30] kauditd_printk_skb: 4 callbacks suppressed
[ 1218.221805][   T30] audit: type=1326 audit(1752931377.218:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1218.260263][   T30] audit: type=1326 audit(1752931377.228:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1218.283319][   T30] audit: type=1326 audit(1752931377.228:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1218.306437][   T30] audit: type=1326 audit(1752931377.228:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1218.335862][   T30] audit: type=1326 audit(1752931377.228:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1218.976657][   T30] audit: type=1326 audit(1752931377.378:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1218.999862][   T30] audit: type=1326 audit(1752931377.378:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1219.023911][   T30] audit: type=1326 audit(1752931377.378:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1219.053491][   T30] audit: type=1326 audit(1752931377.578:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1219.079110][   T30] audit: type=1326 audit(1752931377.578:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15647 comm="syz.4.3197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1219.805466][T15661] loop9: detected capacity change from 0 to 512
[ 1219.860643][T15649] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1219.870747][T15649] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1220.098996][T15661] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1220.112395][T15661] ext4 filesystem being mounted at /459/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1220.352876][T15649] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1220.393142][T15649] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1221.256779][T15649] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.266845][T15649] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.278013][T15649] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.287389][T15649] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.707867][T15665] netdevsim netdevsim9 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1221.726449][T15665] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.842378][T15665] netdevsim netdevsim9 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1221.855601][T15665] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.961703][T15665] netdevsim netdevsim9 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1221.972597][T15665] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1222.064007][T15665] netdevsim netdevsim9 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1222.075140][T15665] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1222.219784][T15665] netdevsim netdevsim9 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1222.236577][T15665] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1222.272553][T15665] netdevsim netdevsim9 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1222.286475][T15665] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1222.337910][T15665] netdevsim netdevsim9 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1222.346751][T15665] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1222.380096][T15665] netdevsim netdevsim9 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1222.388998][T15665] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1222.887613][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1223.258697][ T7474] netdevsim netdevsim8 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1223.269784][ T7474] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1223.532922][ T7474] netdevsim netdevsim8 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1223.544042][ T7474] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1223.576360][T15683] loop9: detected capacity change from 0 to 128
[ 1223.684126][ T7474] netdevsim netdevsim8 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1223.688399][T15683] EXT4-fs: Ignoring removed nobh option
[ 1223.695074][ T7474] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1223.860848][T15683] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1223.981679][ T7474] netdevsim netdevsim8 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1223.993270][ T7474] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.043276][T15683] ext4 filesystem being mounted at /460/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1224.201811][   T30] kauditd_printk_skb: 7 callbacks suppressed
[ 1224.201899][   T30] audit: type=1804 audit(1752931383.218:934): pid=15683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.3206" name="/newroot/460/mnt/bus" dev="loop9" ino=12 res=1 errno=0
[ 1224.326638][T15697] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3215'.
[ 1224.533666][   T30] audit: type=1326 audit(1752931383.528:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.536007][   T30] audit: type=1326 audit(1752931383.548:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.536258][   T30] audit: type=1326 audit(1752931383.548:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.537538][   T30] audit: type=1326 audit(1752931383.558:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.625975][   T30] audit: type=1326 audit(1752931383.638:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.626241][   T30] audit: type=1326 audit(1752931383.638:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.626579][   T30] audit: type=1326 audit(1752931383.638:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.658032][   T30] audit: type=1326 audit(1752931383.678:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.658303][   T30] audit: type=1326 audit(1752931383.678:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15693 comm="syz.4.3213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1224.733975][ T7474] bridge_slave_1: left allmulticast mode
[ 1224.929934][ T7474] bridge_slave_1: left promiscuous mode
[ 1224.930869][ T7474] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1224.964186][ T9481] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1225.536357][ T7474] bridge_slave_0: left allmulticast mode
[ 1225.542451][ T7474] bridge_slave_0: left promiscuous mode
[ 1225.549403][ T7474] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1225.957399][T15717] loop9: detected capacity change from 0 to 1024
[ 1225.985359][T15068] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[ 1226.135900][T15068] usb 2-1: device descriptor read/64, error -71
[ 1226.246321][T15717] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1226.395821][T15068] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[ 1226.445800][T15717] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 1 with error 28
[ 1226.459209][T15717] EXT4-fs (loop9): This should not happen!! Data will be lost
[ 1226.459209][T15717] 
[ 1226.469356][T15717] EXT4-fs (loop9): Total free blocks count 0
[ 1226.475844][T15717] EXT4-fs (loop9): Free/Dirty block details
[ 1226.482001][T15717] EXT4-fs (loop9): free_blocks=0
[ 1226.487442][T15717] EXT4-fs (loop9): dirty_blocks=0
[ 1226.492735][T15717] EXT4-fs (loop9): Block reservation details
[ 1226.499149][T15717] EXT4-fs (loop9): i_reserved_data_blocks=0
[ 1226.585304][T15068] usb 2-1: device descriptor read/64, error -71
[ 1226.707309][T15068] usb usb2-port1: attempt power cycle
[ 1226.823670][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1226.890835][ T7474] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1226.967240][ T7474] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1227.022311][ T7474] bond0 (unregistering): Released all slaves
[ 1227.115537][T15068] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[ 1227.148197][T15726] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3224'.
[ 1227.201315][T15068] usb 2-1: device descriptor read/8, error -71
[ 1227.485315][T15068] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1227.544564][T15730] loop9: detected capacity change from 0 to 1024
[ 1227.554558][T15068] usb 2-1: device descriptor read/8, error -71
[ 1227.659890][T15068] usb usb2-port1: unable to enumerate USB device
[ 1227.752941][T15730] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1228.463520][T15737] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3228'.
[ 1228.515389][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1228.625627][ T7474] hsr_slave_0: left promiscuous mode
[ 1228.661511][ T7474] hsr_slave_1: left promiscuous mode
[ 1228.670037][ T7474] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1228.681384][ T7474] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1228.818601][ T7474] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1228.826765][ T7474] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1228.974332][ T7474] veth1_macvtap: left promiscuous mode
[ 1228.986383][ T7474] veth0_macvtap: left promiscuous mode
[ 1228.992448][ T7474] veth1_vlan: left promiscuous mode
[ 1228.998478][ T7474] veth0_vlan: left promiscuous mode
[ 1229.308766][T15748] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3229'.
[ 1231.306594][T15762] netlink: 60 bytes leftover after parsing attributes in process `syz.9.3238'.
[ 1232.376126][T15776] 9pnet_fd: p9_fd_create_tcp (15776): problem connecting socket to 127.0.0.1
[ 1233.567269][T15791] loop9: detected capacity change from 0 to 512
[ 1233.592388][T15791] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1233.656362][T15791] EXT4-fs (loop9): 1 truncate cleaned up
[ 1233.658661][T15791] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1233.805929][T15791] EXT4-fs (loop9): shut down requested (1)
[ 1234.086720][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1234.803911][T15815] loop9: detected capacity change from 0 to 128
[ 1234.878556][   T30] kauditd_printk_skb: 3 callbacks suppressed
[ 1234.878638][   T30] audit: type=1800 audit(1752931393.898:947): pid=15815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3258" name="file2" dev="loop9" ino=1048703 res=0 errno=0
[ 1234.937563][T15815] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100)
[ 1234.946293][T15815] FAT-fs (loop9): Filesystem has been set read-only
[ 1234.953171][T15815] bio_check_eod: 935 callbacks suppressed
[ 1234.953253][T15815] syz.9.3258: attempt to access beyond end of device
[ 1234.953253][T15815] loop9: rw=524288, sector=2065, nr_sectors = 8 limit=128
[ 1234.977614][T15815] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100)
[ 1234.985974][T15815] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100)
[ 1235.054566][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.054566][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.120861][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.120861][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.186495][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.186495][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.248738][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.248738][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.285965][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.285965][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.355924][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.355924][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.414232][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.414232][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.508589][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.508589][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.565797][T15828] loop7: detected capacity change from 0 to 128
[ 1235.581601][T15815] syz.9.3258: attempt to access beyond end of device
[ 1235.581601][T15815] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1235.698693][T15828] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3263'.
[ 1235.725673][T15828] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1235.734817][T15828] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1235.749853][T15828] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1235.760900][T15828] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1235.909268][T15828] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1235.918949][T15828] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1235.928377][T15828] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1235.937826][T15828] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1236.241213][T15834] loop4: detected capacity change from 0 to 2048
[ 1236.329276][T15834] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1236.798426][T15840] loop1: detected capacity change from 0 to 2048
[ 1236.805605][T15259] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1236.924531][T15840] random: crng reseeded on system resumption
[ 1236.963007][T15851] loop7: detected capacity change from 0 to 128
[ 1236.985262][T15840] sctp: [Deprecated]: syz.1.3269 (pid 15840) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1236.985262][T15840] Use struct sctp_sack_info instead
[ 1237.074925][   T30] audit: type=1800 audit(1752931396.088:948): pid=15851 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3272" name="file2" dev="loop7" ino=1048705 res=0 errno=0
[ 1237.111260][T15851] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1237.119822][T15851] FAT-fs (loop7): Filesystem has been set read-only
[ 1237.127107][T15851] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1237.135459][T15851] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1237.288093][T15854] buffer_io_error: 742 callbacks suppressed
[ 1237.288187][T15854] Buffer I/O error on dev loop7, logical block 2065, async page read
[ 1237.304158][T15854] Buffer I/O error on dev loop7, logical block 2066, async page read
[ 1237.312781][T15854] Buffer I/O error on dev loop7, logical block 2067, async page read
[ 1237.321389][T15854] Buffer I/O error on dev loop7, logical block 2068, async page read
[ 1237.329989][T15854] Buffer I/O error on dev loop7, logical block 2069, async page read
[ 1237.338623][T15854] Buffer I/O error on dev loop7, logical block 2070, async page read
[ 1237.347282][T15854] Buffer I/O error on dev loop7, logical block 2071, async page read
[ 1237.355911][T15854] Buffer I/O error on dev loop7, logical block 2072, async page read
[ 1237.364516][T15854] Buffer I/O error on dev loop7, logical block 2065, async page read
[ 1237.373182][T15854] Buffer I/O error on dev loop7, logical block 2066, async page read
[ 1238.645581][   T30] audit: type=1326 audit(1752931397.658:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15867 comm="syz.4.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1238.669980][   T30] audit: type=1326 audit(1752931397.658:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15867 comm="syz.4.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1238.693565][   T30] audit: type=1326 audit(1752931397.658:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15867 comm="syz.4.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdba18e9a9 code=0x7ffc0000
[ 1238.936550][T15871] loop9: detected capacity change from 0 to 128
[ 1239.186654][T15877] bond2: entered promiscuous mode
[ 1239.191999][T15877] bond2: entered allmulticast mode
[ 1239.199497][T15877] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1239.335551][T15877] bond2 (unregistering): Released all slaves
[ 1239.386790][T15871] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3282'.
[ 1239.723071][T15882] loop4: detected capacity change from 0 to 512
[ 1239.788656][T15882] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1239.905404][T15882] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1239.918790][T15882] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1240.132977][T15882] EXT4-fs error (device loop4): __ext4_remount:6736: comm syz.4.3287: Abort forced by user
[ 1240.184289][T15068] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[ 1240.222216][T15882] EXT4-fs (loop4): Remounting filesystem read-only
[ 1240.229403][T15882] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000d40000.
[ 1240.294528][T15068] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1240.391281][T15890] loop9: detected capacity change from 0 to 1024
[ 1240.442936][T15890] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1240.490061][T15890] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1240.606638][T15890] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1240.670739][T15259] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1240.730272][T15890] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1241.446581][T15908] loop7: detected capacity change from 0 to 2048
[ 1241.509207][T15913] loop9: detected capacity change from 0 to 128
[ 1241.552732][T15908] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1241.689927][T15913] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3299'.
[ 1241.747252][ T7975] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1241.903589][T15917] loop4: detected capacity change from 0 to 2048
[ 1242.037703][T15917] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1242.050653][T15917] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1242.109682][T15917] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3300: bg 0: block 345: padding at end of block bitmap is not set
[ 1242.150459][T15917] EXT4-fs (loop4): Remounting filesystem read-only
[ 1242.165681][T15917] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1597: inode #18: comm syz.4.3300: cleanup dec ref error -117
[ 1242.380084][T15259] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1242.583250][T15931] loop7: detected capacity change from 0 to 128
[ 1242.816356][   T30] audit: type=1800 audit(1752931401.828:952): pid=15931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3307" name="file2" dev="loop7" ino=1048708 res=0 errno=0
[ 1242.827426][T15931] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1242.846683][T15931] FAT-fs (loop7): Filesystem has been set read-only
[ 1242.853620][T15931] bio_check_eod: 2055 callbacks suppressed
[ 1242.853704][T15931] syz.7.3307: attempt to access beyond end of device
[ 1242.853704][T15931] loop7: rw=524288, sector=2065, nr_sectors = 8 limit=128
[ 1242.874164][T15931] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1242.882581][T15931] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1242.943960][T15934] syz.7.3307: attempt to access beyond end of device
[ 1242.943960][T15934] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1242.957944][T15934] syz.7.3307: attempt to access beyond end of device
[ 1242.957944][T15934] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1242.971885][T15934] syz.7.3307: attempt to access beyond end of device
[ 1242.971885][T15934] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1242.985709][T15934] syz.7.3307: attempt to access beyond end of device
[ 1242.985709][T15934] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1243.057744][T15930] syz.7.3307: attempt to access beyond end of device
[ 1243.057744][T15930] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1243.071822][T15930] syz.7.3307: attempt to access beyond end of device
[ 1243.071822][T15930] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1243.089355][T15930] syz.7.3307: attempt to access beyond end of device
[ 1243.089355][T15930] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1243.156292][T15931] syz.7.3307: attempt to access beyond end of device
[ 1243.156292][T15931] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1243.191738][T15931] syz.7.3307: attempt to access beyond end of device
[ 1243.191738][T15931] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1243.267998][T15934] buffer_io_error: 1806 callbacks suppressed
[ 1243.268093][T15934] Buffer I/O error on dev loop7, logical block 2065, async page read
[ 1243.283198][T15934] Buffer I/O error on dev loop7, logical block 2066, async page read
[ 1243.291760][T15934] Buffer I/O error on dev loop7, logical block 2067, async page read
[ 1243.300764][T15934] Buffer I/O error on dev loop7, logical block 2068, async page read
[ 1243.309312][T15934] Buffer I/O error on dev loop7, logical block 2069, async page read
[ 1243.321420][T15934] Buffer I/O error on dev loop7, logical block 2070, async page read
[ 1243.330982][T15934] Buffer I/O error on dev loop7, logical block 2071, async page read
[ 1243.339835][T15934] Buffer I/O error on dev loop7, logical block 2072, async page read
[ 1243.348650][T15934] Buffer I/O error on dev loop7, logical block 2065, async page read
[ 1243.357179][T15934] Buffer I/O error on dev loop7, logical block 2066, async page read
[ 1243.891482][T15937] loop1: detected capacity change from 0 to 8192
[ 1244.054556][T15937] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[ 1244.063320][T15937] FAT-fs (loop1): Filesystem has been set read-only
[ 1244.110768][T15937] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[ 1244.152578][T15937] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[ 1245.138507][T15963] loop9: detected capacity change from 0 to 128
[ 1245.294455][T15963] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3314'.
[ 1246.335905][T15977] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[ 1246.366569][T15977] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3319'.
[ 1246.382907][   T30] audit: type=1326 audit(1752931405.368:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1246.410655][   T30] audit: type=1326 audit(1752931405.368:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1246.435548][   T30] audit: type=1326 audit(1752931405.368:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1246.458469][   T30] audit: type=1326 audit(1752931405.368:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1246.481511][   T30] audit: type=1326 audit(1752931405.368:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1246.508391][   T30] audit: type=1326 audit(1752931405.378:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f808519083c code=0x7ffc0000
[ 1246.532610][   T30] audit: type=1326 audit(1752931405.378:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f8085190774 code=0x7ffc0000
[ 1246.555544][   T30] audit: type=1326 audit(1752931405.378:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f8085190774 code=0x7ffc0000
[ 1246.578367][   T30] audit: type=1326 audit(1752931405.378:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15967 comm="syz.7.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f808518e9a9 code=0x7ffc0000
[ 1247.377005][T15977] syz.7.3319 (15977) used greatest stack depth: 2472 bytes left
[ 1247.506800][T15980] loop4: detected capacity change from 0 to 128
[ 1247.651667][T15980] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[ 1247.660463][T15980] FAT-fs (loop4): Filesystem has been set read-only
[ 1247.667656][T15980] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[ 1247.675975][T15980] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[ 1247.877314][T15980] bio_check_eod: 1304 callbacks suppressed
[ 1247.877405][T15980] syz.4.3322: attempt to access beyond end of device
[ 1247.877405][T15980] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1247.898240][T15982] syz.4.3322: attempt to access beyond end of device
[ 1247.898240][T15982] loop4: rw=0, sector=2065, nr_sectors = 1 limit=128
[ 1247.912134][T15982] syz.4.3322: attempt to access beyond end of device
[ 1247.912134][T15982] loop4: rw=0, sector=2066, nr_sectors = 1 limit=128
[ 1247.932084][T15982] syz.4.3322: attempt to access beyond end of device
[ 1247.932084][T15982] loop4: rw=0, sector=2067, nr_sectors = 1 limit=128
[ 1247.947627][T15982] syz.4.3322: attempt to access beyond end of device
[ 1247.947627][T15982] loop4: rw=0, sector=2068, nr_sectors = 1 limit=128
[ 1247.961651][T15982] syz.4.3322: attempt to access beyond end of device
[ 1247.961651][T15982] loop4: rw=0, sector=2069, nr_sectors = 1 limit=128
[ 1247.975495][T15982] syz.4.3322: attempt to access beyond end of device
[ 1247.975495][T15982] loop4: rw=0, sector=2070, nr_sectors = 1 limit=128
[ 1247.989283][T15982] syz.4.3322: attempt to access beyond end of device
[ 1247.989283][T15982] loop4: rw=0, sector=2071, nr_sectors = 1 limit=128
[ 1248.003029][T15982] syz.4.3322: attempt to access beyond end of device
[ 1248.003029][T15982] loop4: rw=0, sector=2072, nr_sectors = 1 limit=128
[ 1248.016940][T15982] syz.4.3322: attempt to access beyond end of device
[ 1248.016940][T15982] loop4: rw=0, sector=2065, nr_sectors = 1 limit=128
[ 1248.052766][T15985] loop1: detected capacity change from 0 to 128
[ 1248.235590][   T30] kauditd_printk_skb: 5 callbacks suppressed
[ 1248.235681][   T30] audit: type=1800 audit(1752931407.238:967): pid=15985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3324" name="file2" dev="loop1" ino=1048712 res=0 errno=0
[ 1248.876970][T15990] 9pnet_fd: Insufficient options for proto=fd
[ 1249.364278][T15997] loop9: detected capacity change from 0 to 512
[ 1249.422726][T15997] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1250.047472][T16007] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1250.146576][T16010] Invalid ELF header magic: != ELF
[ 1250.199024][T15997] EXT4-fs (loop9): 1 truncate cleaned up
[ 1250.208711][T15997] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1250.657393][T11226] Bluetooth: hci4: command 0x0406 tx timeout
[ 1250.682992][T16016] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3332'.
[ 1251.040394][T16016] hsr_slave_0 (unregistering): left promiscuous mode
[ 1251.242151][T16007] loop1: detected capacity change from 0 to 764
[ 1251.372895][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1251.400714][T16007] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1252.098752][T16027] loop1: detected capacity change from 0 to 128
[ 1252.223360][T16027] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3336'.
[ 1252.257088][T16027] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1252.266456][T16027] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1252.275926][T16027] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1252.284977][T16027] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1252.550027][T16027] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1252.560038][T16027] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1252.569621][T16027] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1252.579099][T16027] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1253.519133][T16038] loop9: detected capacity change from 0 to 128
[ 1253.639632][T16041] 9pnet_fd: Insufficient options for proto=fd
[ 1253.772438][T16043] loop1: detected capacity change from 0 to 128
[ 1253.940708][T16043] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[ 1253.949180][T16043] FAT-fs (loop1): Filesystem has been set read-only
[ 1253.956214][T16043] bio_check_eod: 399 callbacks suppressed
[ 1253.956292][T16043] syz.1.3340: attempt to access beyond end of device
[ 1253.956292][T16043] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[ 1253.956434][   T30] audit: type=1800 audit(1752931412.948:968): pid=16043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3340" name="file2" dev="loop1" ino=1048714 res=0 errno=0
[ 1253.962356][T16043] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[ 1253.962502][T16043] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[ 1254.217227][T16043] syz.1.3340: attempt to access beyond end of device
[ 1254.217227][T16043] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.231846][T16050] syz.1.3340: attempt to access beyond end of device
[ 1254.231846][T16050] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.246174][T16050] syz.1.3340: attempt to access beyond end of device
[ 1254.246174][T16050] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.260283][T16050] syz.1.3340: attempt to access beyond end of device
[ 1254.260283][T16050] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.277232][T16050] syz.1.3340: attempt to access beyond end of device
[ 1254.277232][T16050] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.335853][T16043] syz.1.3340: attempt to access beyond end of device
[ 1254.335853][T16043] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.378430][T16043] syz.1.3340: attempt to access beyond end of device
[ 1254.378430][T16043] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.425503][T16043] syz.1.3340: attempt to access beyond end of device
[ 1254.425503][T16043] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.465736][T16043] syz.1.3340: attempt to access beyond end of device
[ 1254.465736][T16043] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1254.529630][T16050] buffer_io_error: 1622 callbacks suppressed
[ 1254.529717][T16050] Buffer I/O error on dev loop1, logical block 2065, async page read
[ 1254.544585][T16050] Buffer I/O error on dev loop1, logical block 2066, async page read
[ 1254.553377][T16050] Buffer I/O error on dev loop1, logical block 2067, async page read
[ 1254.567519][T16050] Buffer I/O error on dev loop1, logical block 2068, async page read
[ 1254.576301][T16050] Buffer I/O error on dev loop1, logical block 2069, async page read
[ 1254.588451][T16050] Buffer I/O error on dev loop1, logical block 2070, async page read
[ 1254.598281][T16050] Buffer I/O error on dev loop1, logical block 2071, async page read
[ 1254.606806][T16050] Buffer I/O error on dev loop1, logical block 2072, async page read
[ 1254.615581][T16050] Buffer I/O error on dev loop1, logical block 2065, async page read
[ 1254.623968][T16050] Buffer I/O error on dev loop1, logical block 2066, async page read
[ 1255.801039][T16071] loop7: detected capacity change from 0 to 128
[ 1255.844362][T16073] 9pnet_fd: Insufficient options for proto=fd
[ 1255.863135][T16069] loop9: detected capacity change from 0 to 128
[ 1255.972541][T16069] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3350'.
[ 1256.590679][T16086] loop7: detected capacity change from 0 to 128
[ 1256.665998][T15068] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[ 1256.699257][T16086] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1256.708389][T16086] FAT-fs (loop7): Filesystem has been set read-only
[ 1256.715562][T16086] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1256.723881][T16086] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1256.745480][   T30] audit: type=1800 audit(1752931415.698:969): pid=16086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3359" name="file2" dev="loop7" ino=1048716 res=0 errno=0
[ 1256.791209][T15068] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1256.839952][T16078] loop4: detected capacity change from 0 to 1024
[ 1256.863230][T16078] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1256.899084][T16078] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1257.010942][T16078] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1257.074107][T16078] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1257.357349][T16091] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[ 1257.458601][T16091] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3358'.
[ 1257.597000][   T30] audit: type=1326 audit(1752931416.388:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16082 comm="syz.9.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523438e9a9 code=0x7ffc0000
[ 1257.620223][   T30] audit: type=1326 audit(1752931416.388:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16082 comm="syz.9.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523438e9a9 code=0x7ffc0000
[ 1257.643664][   T30] audit: type=1326 audit(1752931416.388:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16082 comm="syz.9.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f523438e9a9 code=0x7ffc0000
[ 1257.671095][   T30] audit: type=1326 audit(1752931416.388:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16082 comm="syz.9.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523438e9a9 code=0x7ffc0000
[ 1257.697215][   T30] audit: type=1326 audit(1752931416.388:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16082 comm="syz.9.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523438e9a9 code=0x7ffc0000
[ 1257.720493][   T30] audit: type=1326 audit(1752931416.398:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16082 comm="syz.9.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f523438e9a9 code=0x7ffc0000
[ 1257.743460][   T30] audit: type=1326 audit(1752931416.398:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16082 comm="syz.9.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523438e9a9 code=0x7ffc0000
[ 1257.770319][   T30] audit: type=1326 audit(1752931416.398:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16082 comm="syz.9.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523438e9a9 code=0x7ffc0000
[ 1258.854610][T16110] 9pnet_fd: Insufficient options for proto=fd
[ 1259.012537][T16112] loop1: detected capacity change from 0 to 128
[ 1259.210350][T16112] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3368'.
[ 1259.236624][T16112] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1259.245978][T16112] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1259.255199][T16112] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1259.264478][T16112] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1259.460175][T16112] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1259.469933][T16112] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1259.479695][T16112] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1259.489260][T16112] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1261.194406][T16147] 9pnet_fd: Insufficient options for proto=fd
[ 1261.691875][T16158] loop7: detected capacity change from 0 to 128
[ 1261.799889][T16159] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3386'.
[ 1261.826173][T16159] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1261.835442][T16159] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1261.844641][T16159] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1261.859801][T16159] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1261.908102][T16158] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1261.916460][T16158] FAT-fs (loop7): Filesystem has been set read-only
[ 1261.923347][T16158] bio_check_eod: 4455 callbacks suppressed
[ 1261.923429][T16158] syz.7.3384: attempt to access beyond end of device
[ 1261.923429][T16158] loop7: rw=524288, sector=2065, nr_sectors = 8 limit=128
[ 1261.944049][T16158] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1261.956519][   T30] kauditd_printk_skb: 23 callbacks suppressed
[ 1261.956610][   T30] audit: type=1800 audit(1752931420.908:1001): pid=16158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3384" name="file2" dev="loop7" ino=1048718 res=0 errno=0
[ 1261.988067][T16158] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1261.998194][T16159] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1262.008134][T16159] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1262.017622][T16159] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1262.027025][T16159] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1262.038433][T16158] syz.7.3384: attempt to access beyond end of device
[ 1262.038433][T16158] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.060389][T16158] syz.7.3384: attempt to access beyond end of device
[ 1262.060389][T16158] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.105507][T16161] syz.7.3384: attempt to access beyond end of device
[ 1262.105507][T16161] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.119611][T16161] syz.7.3384: attempt to access beyond end of device
[ 1262.119611][T16161] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.133517][T16161] syz.7.3384: attempt to access beyond end of device
[ 1262.133517][T16161] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.147614][T16161] syz.7.3384: attempt to access beyond end of device
[ 1262.147614][T16161] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.166476][T16158] syz.7.3384: attempt to access beyond end of device
[ 1262.166476][T16158] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.236050][T16158] syz.7.3384: attempt to access beyond end of device
[ 1262.236050][T16158] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.268904][T16158] syz.7.3384: attempt to access beyond end of device
[ 1262.268904][T16158] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1262.366368][T16162] buffer_io_error: 4430 callbacks suppressed
[ 1262.366478][T16162] Buffer I/O error on dev loop7, logical block 2065, async page read
[ 1262.381474][T16162] Buffer I/O error on dev loop7, logical block 2066, async page read
[ 1262.390837][T16162] Buffer I/O error on dev loop7, logical block 2067, async page read
[ 1262.399411][T16162] Buffer I/O error on dev loop7, logical block 2068, async page read
[ 1262.407984][T16162] Buffer I/O error on dev loop7, logical block 2069, async page read
[ 1262.417435][T16162] Buffer I/O error on dev loop7, logical block 2070, async page read
[ 1262.426005][T16162] Buffer I/O error on dev loop7, logical block 2071, async page read
[ 1262.434442][T16162] Buffer I/O error on dev loop7, logical block 2072, async page read
[ 1262.443142][T16162] Buffer I/O error on dev loop7, logical block 2065, async page read
[ 1262.451800][T16162] Buffer I/O error on dev loop7, logical block 2066, async page read
[ 1262.914150][T16169] loop9: detected capacity change from 0 to 1024
[ 1262.988381][T16169] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1263.072791][T16169] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.3388: Invalid block bitmap block 0 in block_group 0
[ 1263.246309][T16169] Quota error (device loop9): write_blk: dquota write failed
[ 1263.254413][T16169] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota
[ 1263.265791][T16169] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.3388: Failed to acquire dquot type 0
[ 1263.426212][T16169] EXT4-fs error (device loop9): ext4_free_blocks:6587: comm syz.9.3388: Freeing blocks not in datazone - block = 0, count = 4096
[ 1263.512869][T16169] EXT4-fs error (device loop9): ext4_read_inode_bitmap:139: comm syz.9.3388: Invalid inode bitmap blk 0 in block_group 0
[ 1263.536344][ T7512] Quota error (device loop9): do_check_range: Getting block 0 out of range 1-8
[ 1263.546186][ T7512] EXT4-fs error (device loop9): ext4_release_dquot:6969: comm kworker/u8:8: Failed to release dquot type 0
[ 1263.567143][T16169] EXT4-fs error (device loop9) in ext4_free_inode:361: Corrupt filesystem
[ 1263.579845][T16169] EXT4-fs (loop9): 1 orphan inode deleted
[ 1263.588445][T16169] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1266.062336][T16202] loop4: detected capacity change from 0 to 128
[ 1266.105866][T16203] loop1: detected capacity change from 0 to 128
[ 1266.293109][   T30] audit: type=1800 audit(1752931425.308:1002): pid=16202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3400" name="file2" dev="loop4" ino=1048720 res=0 errno=0
[ 1266.347034][T16202] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[ 1266.358779][T16202] FAT-fs (loop4): Filesystem has been set read-only
[ 1266.367167][T16202] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[ 1266.375484][T16202] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[ 1266.428660][T16203] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3399'.
[ 1266.454605][T16203] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1266.467415][T16203] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1266.477774][T16203] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1266.487006][T16203] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1266.827275][T16203] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1266.837081][T16203] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1266.846657][T16203] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1266.856079][T16203] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1266.925276][T16202] bio_check_eod: 615 callbacks suppressed
[ 1266.925369][T16202] syz.4.3400: attempt to access beyond end of device
[ 1266.925369][T16202] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.050322][T16202] syz.4.3400: attempt to access beyond end of device
[ 1267.050322][T16202] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.134377][T16202] syz.4.3400: attempt to access beyond end of device
[ 1267.134377][T16202] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.227370][T16202] syz.4.3400: attempt to access beyond end of device
[ 1267.227370][T16202] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.259083][T16198] syz.4.3400: attempt to access beyond end of device
[ 1267.259083][T16198] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.273356][T16198] syz.4.3400: attempt to access beyond end of device
[ 1267.273356][T16198] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.290143][T16198] syz.4.3400: attempt to access beyond end of device
[ 1267.290143][T16198] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.348420][ T9481] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1267.366513][T16202] syz.4.3400: attempt to access beyond end of device
[ 1267.366513][T16202] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.392025][T16202] syz.4.3400: attempt to access beyond end of device
[ 1267.392025][T16202] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.411072][T16205] syz.4.3400: attempt to access beyond end of device
[ 1267.411072][T16205] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1267.500274][T16205] buffer_io_error: 126 callbacks suppressed
[ 1267.500367][T16205] Buffer I/O error on dev loop4, logical block 2065, async page read
[ 1267.518286][T16205] Buffer I/O error on dev loop4, logical block 2066, async page read
[ 1267.528154][T16205] Buffer I/O error on dev loop4, logical block 2067, async page read
[ 1267.537110][T16205] Buffer I/O error on dev loop4, logical block 2068, async page read
[ 1267.545831][T16205] Buffer I/O error on dev loop4, logical block 2069, async page read
[ 1267.554434][T16205] Buffer I/O error on dev loop4, logical block 2070, async page read
[ 1267.563285][T16205] Buffer I/O error on dev loop4, logical block 2071, async page read
[ 1267.571922][T16205] Buffer I/O error on dev loop4, logical block 2072, async page read
[ 1267.580568][T16205] Buffer I/O error on dev loop4, logical block 2065, async page read
[ 1267.592820][T16205] Buffer I/O error on dev loop4, logical block 2066, async page read
[ 1267.913576][T16207] loop7: detected capacity change from 0 to 8192
[ 1269.394785][T16222] netlink: 72 bytes leftover after parsing attributes in process `syz.3.3408'.
[ 1270.995930][   T30] audit: type=1326 audit(1752931430.008:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16234 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1271.097084][   T30] audit: type=1326 audit(1752931430.048:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16234 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc9bed8e9a9 code=0x7ffc0000
[ 1271.420589][T16247] loop7: detected capacity change from 0 to 128
[ 1271.518855][T16247] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1271.525849][   T30] audit: type=1800 audit(1752931430.528:1005): pid=16247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3415" name="file2" dev="loop7" ino=1048723 res=0 errno=0
[ 1271.527219][T16247] FAT-fs (loop7): Filesystem has been set read-only
[ 1271.555554][T16247] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1271.563706][T16247] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[ 1271.635406][T16249] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3417'.
[ 1271.746755][T16253] loop1: detected capacity change from 0 to 512
[ 1271.852754][T16253] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1271.866559][T16253] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1271.920998][T16259] netlink: 44 bytes leftover after parsing attributes in process `syz.9.3420'.
[ 1271.939275][T16247] bio_check_eod: 1005 callbacks suppressed
[ 1271.939356][T16247] syz.7.3415: attempt to access beyond end of device
[ 1271.939356][T16247] loop7: rw=0, sector=2065, nr_sectors = 1 limit=128
[ 1271.962161][T16247] syz.7.3415: attempt to access beyond end of device
[ 1271.962161][T16247] loop7: rw=0, sector=2066, nr_sectors = 1 limit=128
[ 1271.976912][T16247] syz.7.3415: attempt to access beyond end of device
[ 1271.976912][T16247] loop7: rw=0, sector=2067, nr_sectors = 1 limit=128
[ 1271.995772][T16247] syz.7.3415: attempt to access beyond end of device
[ 1271.995772][T16247] loop7: rw=0, sector=2068, nr_sectors = 1 limit=128
[ 1272.011117][T16247] syz.7.3415: attempt to access beyond end of device
[ 1272.011117][T16247] loop7: rw=0, sector=2069, nr_sectors = 1 limit=128
[ 1272.024921][T16247] syz.7.3415: attempt to access beyond end of device
[ 1272.024921][T16247] loop7: rw=0, sector=2070, nr_sectors = 1 limit=128
[ 1272.038891][T16247] syz.7.3415: attempt to access beyond end of device
[ 1272.038891][T16247] loop7: rw=0, sector=2071, nr_sectors = 1 limit=128
[ 1272.052812][T16247] syz.7.3415: attempt to access beyond end of device
[ 1272.052812][T16247] loop7: rw=0, sector=2072, nr_sectors = 1 limit=128
[ 1272.178589][T16247] syz.7.3415: attempt to access beyond end of device
[ 1272.178589][T16247] loop7: rw=0, sector=2065, nr_sectors = 1 limit=128
[ 1272.196352][T16247] syz.7.3415: attempt to access beyond end of device
[ 1272.196352][T16247] loop7: rw=0, sector=2066, nr_sectors = 1 limit=128
[ 1272.323221][T14722] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1272.538860][T16266] program syz.9.3424 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1273.070655][T16278] netlink: 264 bytes leftover after parsing attributes in process `syz.9.3429'.
[ 1273.397672][   T30] audit: type=1326 audit(1752931432.408:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16285 comm="syz.1.3432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1273.423562][   T30] audit: type=1326 audit(1752931432.418:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16285 comm="syz.1.3432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1273.532226][   T30] audit: type=1326 audit(1752931432.488:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16285 comm="syz.1.3432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1273.555748][   T30] audit: type=1326 audit(1752931432.508:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16285 comm="syz.1.3432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1273.579349][   T30] audit: type=1326 audit(1752931432.508:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16285 comm="syz.1.3432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1273.602503][   T30] audit: type=1326 audit(1752931432.508:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16285 comm="syz.1.3432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1273.628120][   T30] audit: type=1326 audit(1752931432.508:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16285 comm="syz.1.3432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5d078e9a9 code=0x7ffc0000
[ 1273.897555][T16288] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3433'.
[ 1273.908576][T16291] loop1: detected capacity change from 0 to 128
[ 1274.005212][T16295] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3434'.
[ 1274.066174][T16291] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[ 1274.074454][T16291] FAT-fs (loop1): Filesystem has been set read-only
[ 1274.081906][T16291] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[ 1274.090216][T16291] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[ 1274.141247][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[ 1274.305556][T16297] buffer_io_error: 774 callbacks suppressed
[ 1274.305666][T16297] Buffer I/O error on dev loop1, logical block 2065, async page read
[ 1274.320654][T16297] Buffer I/O error on dev loop1, logical block 2066, async page read
[ 1274.329230][T16297] Buffer I/O error on dev loop1, logical block 2067, async page read
[ 1274.338569][T16297] Buffer I/O error on dev loop1, logical block 2068, async page read
[ 1274.350851][T16297] Buffer I/O error on dev loop1, logical block 2069, async page read
[ 1274.360509][T16297] Buffer I/O error on dev loop1, logical block 2070, async page read
[ 1274.369189][T16297] Buffer I/O error on dev loop1, logical block 2071, async page read
[ 1274.378491][T16297] Buffer I/O error on dev loop1, logical block 2072, async page read
[ 1274.387403][T16297] Buffer I/O error on dev loop1, logical block 2065, async page read
[ 1274.395962][T16297] Buffer I/O error on dev loop1, logical block 2066, async page read
[ 1275.254365][T16312] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3442'.
[ 1275.304343][T16313] =====================================================
[ 1275.312205][T16313] BUG: KMSAN: uninit-value in sctp_inq_pop+0x14dc/0x19e0
[ 1275.319685][T16313]  sctp_inq_pop+0x14dc/0x19e0
[ 1275.324745][T16313]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[ 1275.330170][T16313]  sctp_inq_push+0x2a6/0x350
[ 1275.335276][T16313]  sctp_backlog_rcv+0x3c7/0xda0
[ 1275.340406][T16313]  sk_backlog_rcv+0x13f/0x420
[ 1275.345845][T16313]  __release_sock+0x1d3/0x330
[ 1275.350856][T16313]  release_sock+0x6b/0x270
[ 1275.355702][T16313]  sctp_wait_for_connect+0x458/0x820
[ 1275.361363][T16313]  sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1275.372454][T16313]  sctp_sendmsg+0x3910/0x49f0
[ 1275.379325][T16313]  inet_sendmsg+0x26c/0x2a0
[ 1275.384087][T16313]  __sock_sendmsg+0x278/0x3d0
[ 1275.389158][T16313]  __sys_sendto+0x593/0x720
[ 1275.393882][T16313]  __x64_sys_sendto+0x130/0x200
[ 1275.399173][T16313]  x64_sys_call+0x3c0b/0x3db0
[ 1275.404137][T16313]  do_syscall_64+0xd9/0x210
[ 1275.408999][T16313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1275.415288][T16313] 
[ 1275.417750][T16313] Uninit was stored to memory at:
[ 1275.423186][T16313]  sctp_inq_pop+0x144a/0x19e0
[ 1275.428280][T16313]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[ 1275.433513][T16313]  sctp_inq_push+0x2a6/0x350
[ 1275.438496][T16313]  sctp_backlog_rcv+0x3c7/0xda0
[ 1275.443598][T16313]  sk_backlog_rcv+0x13f/0x420
[ 1275.448672][T16313]  __release_sock+0x1d3/0x330
[ 1275.453859][T16313]  release_sock+0x6b/0x270
[ 1275.458761][T16313]  sctp_wait_for_connect+0x458/0x820
[ 1275.464306][T16313]  sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1275.475369][T16313]  sctp_sendmsg+0x3910/0x49f0
[ 1275.480323][T16313]  inet_sendmsg+0x26c/0x2a0
[ 1275.486950][T16313]  __sock_sendmsg+0x278/0x3d0
[ 1275.491901][T16313]  __sys_sendto+0x593/0x720
[ 1275.496726][T16313]  __x64_sys_sendto+0x130/0x200
[ 1275.501814][T16313]  x64_sys_call+0x3c0b/0x3db0
[ 1275.506931][T16313]  do_syscall_64+0xd9/0x210
[ 1275.511766][T16313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1275.518376][T16313] 
[ 1275.520867][T16313] Uninit was created at:
[ 1275.525589][T16313]  __kmalloc_node_track_caller_noprof+0x96d/0x12f0
[ 1275.532384][T16313]  kmalloc_reserve+0x22f/0x4b0
[ 1275.537534][T16313]  __alloc_skb+0x347/0x7d0
[ 1275.542261][T16313]  sctp_packet_transmit+0x18a1/0x46d0
[ 1275.548449][T16313]  sctp_outq_flush+0x1c7d/0x67c0
[ 1275.553663][T16313]  sctp_outq_uncork+0x9e/0xc0
[ 1275.558710][T16313]  sctp_do_sm+0x8c8e/0x9720
[ 1275.563477][T16313]  sctp_assoc_bh_rcv+0x88b/0xbc0
[ 1275.568796][T16313]  sctp_inq_push+0x2a6/0x350
[ 1275.579071][T16313]  sctp_backlog_rcv+0x3c7/0xda0
[ 1275.584194][T16313]  sk_backlog_rcv+0x13f/0x420
[ 1275.591015][T16313]  __release_sock+0x1d3/0x330
[ 1275.596086][T16313]  release_sock+0x6b/0x270
[ 1275.600795][T16313]  sctp_wait_for_connect+0x458/0x820
[ 1275.606493][T16313]  sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1275.612110][T16313]  sctp_sendmsg+0x3910/0x49f0
[ 1275.617220][T16313]  inet_sendmsg+0x26c/0x2a0
[ 1275.621959][T16313]  __sock_sendmsg+0x278/0x3d0
[ 1275.627004][T16313]  __sys_sendto+0x593/0x720
[ 1275.631734][T16313]  __x64_sys_sendto+0x130/0x200
[ 1275.636948][T16313]  x64_sys_call+0x3c0b/0x3db0
[ 1275.641925][T16313]  do_syscall_64+0xd9/0x210
[ 1275.647131][T16313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1275.653305][T16313] 
[ 1275.655956][T16313] CPU: 0 UID: 0 PID: 16313 Comm: syz.7.3444 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(none) 
[ 1275.668719][T16313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1275.684350][T16313] =====================================================
[ 1275.693145][T16313] Disabling lock debugging due to kernel taint
[ 1275.699687][T16313] Kernel panic - not syncing: kmsan.panic set ...
[ 1275.706334][T16313] CPU: 0 UID: 0 PID: 16313 Comm: syz.7.3444 Tainted: G    B               6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(none) 
[ 1275.720236][T16313] Tainted: [B]=BAD_PAGE
[ 1275.724525][T16313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1275.734756][T16313] Call Trace:
[ 1275.738177][T16313]  <TASK>
[ 1275.741250][T16313]  __dump_stack+0x26/0x30
[ 1275.745808][T16313]  dump_stack_lvl+0x53/0x270
[ 1275.750629][T16313]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1275.756654][T16313]  dump_stack+0x1e/0x25
[ 1275.761017][T16313]  panic+0x4bd/0xd50
[ 1275.765194][T16313]  kmsan_report+0x31c/0x320
[ 1275.769910][T16313]  ? __msan_warning+0x1b/0x30
[ 1275.774792][T16313]  ? sctp_inq_pop+0x14dc/0x19e0
[ 1275.780003][T16313]  ? sctp_assoc_bh_rcv+0x1a0/0xbc0
[ 1275.785361][T16313]  ? sctp_inq_push+0x2a6/0x350
[ 1275.790377][T16313]  ? sctp_backlog_rcv+0x3c7/0xda0
[ 1275.795629][T16313]  ? sk_backlog_rcv+0x13f/0x420
[ 1275.800731][T16313]  ? __release_sock+0x1d3/0x330
[ 1275.806109][T16313]  ? release_sock+0x6b/0x270
[ 1275.810952][T16313]  ? sctp_wait_for_connect+0x458/0x820
[ 1275.816629][T16313]  ? sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1275.822484][T16313]  ? sctp_sendmsg+0x3910/0x49f0
[ 1275.827588][T16313]  ? inet_sendmsg+0x26c/0x2a0
[ 1275.832474][T16313]  ? __sock_sendmsg+0x278/0x3d0
[ 1275.837559][T16313]  ? __sys_sendto+0x593/0x720
[ 1275.842428][T16313]  ? __x64_sys_sendto+0x130/0x200
[ 1275.847644][T16313]  ? x64_sys_call+0x3c0b/0x3db0
[ 1275.852719][T16313]  ? do_syscall_64+0xd9/0x210
[ 1275.857597][T16313]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1275.863865][T16313]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1275.870155][T16313]  ? __bpf_prog_run32+0xc2/0xf0
[ 1275.875305][T16313]  ? kmsan_get_metadata+0xfb/0x160
[ 1275.880634][T16313]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1275.886677][T16313]  ? kmsan_get_metadata+0x150/0x160
[ 1275.892085][T16313]  ? kmsan_get_metadata+0xfb/0x160
[ 1275.897396][T16313]  ? kmsan_get_metadata+0xfb/0x160
[ 1275.902714][T16313]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1275.908736][T16313]  ? kmsan_get_metadata+0xfb/0x160
[ 1275.914060][T16313]  __msan_warning+0x1b/0x30
[ 1275.918747][T16313]  sctp_inq_pop+0x14dc/0x19e0
[ 1275.923673][T16313]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[ 1275.928856][T16313]  ? __schedule+0x2682/0x76c0
[ 1275.933770][T16313]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1275.939803][T16313]  ? __pfx_sctp_assoc_bh_rcv+0x10/0x10
[ 1275.945485][T16313]  sctp_inq_push+0x2a6/0x350
[ 1275.950313][T16313]  sctp_backlog_rcv+0x3c7/0xda0
[ 1275.955387][T16313]  ? kmsan_get_metadata+0xfb/0x160
[ 1275.960711][T16313]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[ 1275.966314][T16313]  sk_backlog_rcv+0x13f/0x420
[ 1275.971257][T16313]  __release_sock+0x1d3/0x330
[ 1275.976164][T16313]  release_sock+0x6b/0x270
[ 1275.980851][T16313]  sctp_wait_for_connect+0x458/0x820
[ 1275.986398][T16313]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1275.992839][T16313]  sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1275.998439][T16313]  ? kmsan_get_metadata+0xfb/0x160
[ 1276.003784][T16313]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1276.009886][T16313]  sctp_sendmsg+0x3910/0x49f0
[ 1276.014789][T16313]  ? kmsan_internal_set_shadow_origin+0x10/0x110
[ 1276.021491][T16313]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1276.026743][T16313]  inet_sendmsg+0x26c/0x2a0
[ 1276.031480][T16313]  __sock_sendmsg+0x278/0x3d0
[ 1276.036400][T16313]  __sys_sendto+0x593/0x720
[ 1276.041105][T16313]  ? do_futex+0x3a1/0x480
[ 1276.045672][T16313]  ? kmsan_get_metadata+0xfb/0x160
[ 1276.050994][T16313]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1276.057097][T16313]  __x64_sys_sendto+0x130/0x200
[ 1276.062185][T16313]  x64_sys_call+0x3c0b/0x3db0
[ 1276.067105][T16313]  do_syscall_64+0xd9/0x210
[ 1276.071817][T16313]  ? irqentry_exit+0x16/0x60
[ 1276.076612][T16313]  ? clear_bhb_loop+0x40/0x90
[ 1276.081504][T16313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1276.087618][T16313] RIP: 0033:0x7f808518e9a9
[ 1276.092204][T16313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1276.112086][T16313] RSP: 002b:00007f8085f30038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1276.120731][T16313] RAX: ffffffffffffffda RBX: 00007f80853b5fa0 RCX: 00007f808518e9a9
[ 1276.128886][T16313] RDX: 000000000000fee4 RSI: 0000200000847fff RDI: 0000000000000003
[ 1276.137027][T16313] RBP: 00007f8085210d69 R08: 000020000005ffe4 R09: 000000000000001c
[ 1276.145199][T16313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1276.153378][T16313] R13: 0000000000000000 R14: 00007f80853b5fa0 R15: 00007fff82b763a8
[ 1276.161562][T16313]  </TASK>
[ 1276.165126][T16313] Kernel Offset: disabled
[ 1276.169555][T16313] Rebooting in 86400 seconds..