last executing test programs:

1m40.019484963s ago: executing program 2 (id=868):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x5464fadc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xc}, 0x100b28, 0x9, 0x28000000, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xe4776000)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0xfffffffffffffff9, 0x80000000000, 0x0, 0xfffffffffffff30a, 0x5}, &(0x7f0000000000)={0x1c, 0x26d7, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x6, 0x9}, 0x0, 0x0, 0x0)

1m39.977460597s ago: executing program 2 (id=859):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_setup(0x239f, &(0x7f0000000380)=<r0=>0x0)
r1 = eventfd2(0x2, 0x80800)
io_submit(r0, 0x2, &(0x7f0000000180)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x6, r1, 0x0, 0x0, 0x800002, 0x0, 0x0, r1}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x7, 0x9841, r1, 0x0, 0x0, 0x5, 0x0, 0x1, r1}])
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040054)

1m39.788655223s ago: executing program 2 (id=861):
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0), 0x0, 0x20040001}, 0x20000000)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4000801}, 0xc0c4)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x2c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x2e0, 0xffffffff, 0xffffffff, 0x2e0, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0xa, 0x0, 0x9d6, '\x00', 'syz1\x00', {0x7fffffffffffffff}}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @loopback}, @local, [], [0x0, 0x0, 0x0, 0xffffff00], 'macvlan1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x2, 0xe0, {0x100}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x328)

1m39.776327484s ago: executing program 2 (id=864):
mkdir(&(0x7f0000001a80)='./file0\x00', 0xb33328a401cad7d9)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x8b7848, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0\x00', 0x0, 0x98d046, 0x0)

1m39.714884689s ago: executing program 2 (id=867):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x10, 0x0, 0x0, 0x0, 0x0, 0xa6820000}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), 0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000380)={0x0, 0x10, 0x10, 0x80000001, 0x9, 0x4000000}, &(0x7f00000003c0)=0x14)

1m39.499319039s ago: executing program 2 (id=872):
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000500)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000100)={r2, 0x7f, 0x1, "7f"}, 0x9)

1m39.499007878s ago: executing program 32 (id=872):
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000500)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000100)={r2, 0x7f, 0x1, "7f"}, 0x9)

33.644396374s ago: executing program 4 (id=2432):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000009c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}, @NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xd8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="40000000210a018800000000000000000a0000010900020073797a31000000000900010073797a310000000014000380100000800c000180060001"], 0x40}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

33.538111514s ago: executing program 4 (id=2436):
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000001000010025bd7000fddbdf2500000000", @ANYRES32=r1, @ANYBLOB="10080400895504002c001280110001006272696467655f736c6176650000000014000580050028"], 0x4c}, 0x1, 0x0, 0x0, 0x200404c1}, 0x4040010)

33.35667914s ago: executing program 4 (id=2442):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

33.305592164s ago: executing program 4 (id=2446):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200404, &(0x7f0000000280)={[{@noblock_validity}, {@nodelalloc}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@debug}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000700)="$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")
creat(&(0x7f0000000380)='./bus\x00', 0x4a)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000002380)={0x0, 0x0, 0x0, 0x1, 0x8008, 0x0, 0x0, 0x19, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8, 0x4]})

32.902371719s ago: executing program 4 (id=2454):
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x3c)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
fchmodat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0xfffffe11)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

32.610155034s ago: executing program 4 (id=2462):
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x200000, &(0x7f0000000200)={[{@block_validity}, {}, {@nombcache}, {@inode_readahead_blks}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@grpjquota}]}, 0x3, 0x57b, &(0x7f0000000800)="$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")
creat(&(0x7f0000000000)='./file1\x00', 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)=ANY=[], 0x841, 0x0)
lgetxattr(&(0x7f0000000240)='./file1\x00', &(0x7f0000000100)=@known='trusted.overlay.upper\x00', &(0x7f0000000300)=""/187, 0xbb)

32.556400449s ago: executing program 33 (id=2462):
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x200000, &(0x7f0000000200)={[{@block_validity}, {}, {@nombcache}, {@inode_readahead_blks}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@grpjquota}]}, 0x3, 0x57b, &(0x7f0000000800)="$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")
creat(&(0x7f0000000000)='./file1\x00', 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)=ANY=[], 0x841, 0x0)
lgetxattr(&(0x7f0000000240)='./file1\x00', &(0x7f0000000100)=@known='trusted.overlay.upper\x00', &(0x7f0000000300)=""/187, 0xbb)

27.131878563s ago: executing program 5 (id=2583):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='cdg', 0x3)
sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f00000003c0)="76cd3737249e92cdbad7b6", 0xb}, {0x0}, {0x0}], 0x3}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000006c0)="91f8a9849519def28691bb5ac2f580ade1b200cb9b6ca309c4173c3d6f357d0272b7319130feaab952ac4603cad0", 0x2e}], 0x1}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000300)="5d87983beb66847f43f344859bad98770a8811d5abac050ef453de3c60ec1346a127085b4cac2066334568b4", 0x2c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000ec0)=[{&(0x7f0000000740)="b973264e57fb", 0x6}], 0x1}}], 0x4, 0x420d1)

27.070067868s ago: executing program 5 (id=2586):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x3e)
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, &(0x7f0000000c40)=ANY=[@ANYBLOB='noswap,mpol=prefer'])
chdir(&(0x7f0000000000)='./file0\x00')
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

26.970160156s ago: executing program 5 (id=2590):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000000280)=[{0xffffffffffffffff}], 0x1, 0x0, 0x12a0}}], 0x1, 0x20008044)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="48000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32=r2, @ANYBLOB="0a0001"], 0x48}}, 0x0)

26.799615652s ago: executing program 5 (id=2596):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xe)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000180)='./file0\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='./file0/../file0/../file0/../file0\x00')

26.741321136s ago: executing program 5 (id=2600):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000180), 0x4)

26.524955905s ago: executing program 5 (id=2605):
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
write$selinux_attr(r0, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
r1 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\x03\x00l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\xea\xe8\x015\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz\xc213\x9b\x87\xd5\x99\r\xa2P\x03\x1cl\x0f\xcb)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af', 0x0)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

26.460003091s ago: executing program 34 (id=2605):
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
write$selinux_attr(r0, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
r1 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\x03\x00l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\xea\xe8\x015\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz\xc213\x9b\x87\xd5\x99\r\xa2P\x03\x1cl\x0f\xcb)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af', 0x0)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

3.593081277s ago: executing program 3 (id=3113):
r0 = syz_io_uring_setup(0x5c4, &(0x7f0000001d40)={0x0, 0x1001, 0x800}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_UNLINKAT={0x24, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}})
io_uring_enter(r0, 0x6e2, 0xa46b, 0x20, 0x0, 0x8a)

3.459189378s ago: executing program 3 (id=3119):
unshare(0x28020480)
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0xffffffffffffffff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(0x3)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r0)

3.364474456s ago: executing program 3 (id=3121):
r0 = syz_io_uring_setup(0x86d, &(0x7f00000003c0)={0x0, 0x79ad, 0x400, 0xfffffffd, 0x220}, &(0x7f0000000700)=<r1=>0x0, &(0x7f0000000380))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000340)=[{0x0}], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
pread64(r2, &(0x7f0000000080)=""/237, 0xed, 0x0)

2.468343944s ago: executing program 3 (id=3137):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002bc0)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4ea4, 0x20000, @local, 0x9}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x584}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

1.704122011s ago: executing program 3 (id=3153):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x27, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.341695442s ago: executing program 3 (id=3166):
syz_usb_connect(0x2, 0x6ee78b90ef7fb6da, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x88ce359bdb00143c, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000005c0))

1.314970165s ago: executing program 6 (id=3169):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000003040)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000003080)={0x30, r2, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x44}}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000050}, 0x20040084)

1.279820148s ago: executing program 6 (id=3170):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000003c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00'}, 0x94)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000100)={0x2ffc, 0x6000006, 0xfffffefc, 0x6}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000160001f47efde4be701161000a000000040000800400", @ANYRES32=r0], 0x1c}, 0x1, 0x0, 0x0, 0x4044}, 0x804)

1.217994693s ago: executing program 6 (id=3173):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})
write$P9_RVERSION(r2, &(0x7f0000000000)={0x15, 0x65, 0xffff, 0x7ff9, 0x8, '9P2000.u'}, 0x15)

916.32385ms ago: executing program 0 (id=3180):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b}, 0x42)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r0, r2, 0x25, 0x0, @val=@tcx}, 0x1c)
syz_emit_ethernet(0xfdef, &(0x7f0000000400)=ANY=[], 0x0)

827.833037ms ago: executing program 0 (id=3182):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000170900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}}, 0x2000c450)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xe}}}, 0x54}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000040)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0xe0}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)={0x14, 0x7, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x20004840}, 0x20008000)

786.172821ms ago: executing program 0 (id=3185):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r1 = dup2(r0, r0)
ioctl$EVIOCREVOKE(r1, 0x40044591, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
getsockopt$TIPC_NODE_RECVQ_DEPTH(r1, 0x10f, 0x83, 0x0, 0x0)

731.752526ms ago: executing program 0 (id=3187):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x8, 0x7fe2, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000bc0)={r1, 0x0, 0x0}, 0x10)

683.17756ms ago: executing program 0 (id=3189):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000005000000000000000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x921a}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r1, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x2)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=@newqdisc={0x120, 0x24, 0xf0b, 0x70bd2e, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_netem={{0xa}, {0xf0, 0x2, {{0x1, 0x401, 0x3, 0x4, 0x4}, [@TCA_NETEM_LOSS={0xd4, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0xffffffffffffff59, 0x2, {0x49, 0x2, 0xffffffff}}, @NETEM_LOSS_GE={0x14, 0x2, {0x5, 0xfffffffe, 0x6dbf, 0x2}}, @NETEM_LOSS_GE={0x14, 0x2, {0xffffffff, 0x40, 0x6, 0xfe}}, @NETEM_LOSS_GE={0x14, 0x2, {0x40c, 0x6, 0x2}}, @NETEM_LOSS_GE={0x14, 0x2, {0xffffffff, 0x8, 0x3, 0x4}}, @NETEM_LOSS_GI={0x18, 0x1, {0xfffff682, 0x800, 0xd4, 0x2, 0x3}}, @NETEM_LOSS_GE={0x14, 0x2, {0x7fffffff, 0x3823, 0x3, 0x3}}, @NETEM_LOSS_GE={0x14, 0x2, {0x7, 0x60000, 0x6b, 0x72b5}}, @NETEM_LOSS_GE={0x14, 0x2, {0x8, 0xfffffffd, 0x6, 0x4}}, @NETEM_LOSS_GI={0x18, 0x1, {0x3, 0x5, 0x1, 0x7, 0xfff}}]}]}}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000041}, 0x20008000)

665.246851ms ago: executing program 0 (id=3190):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x18050, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfffffe, 0x1, @perf_bp={0x0}, 0x1216, 0x10000, 0x5, 0x6, 0x8, 0x20005, 0x40b, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="500000000206030000000000000000000d0000000c000300686173683a69700005000400000000000900020073797a31000000000c000780080008400000005d05000500020000000500010006"], 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

581.100139ms ago: executing program 1 (id=3194):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001880)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
io_setup(0x2, &(0x7f0000000000)=<r0=>0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0x1)
syz_clone3(&(0x7f0000000300)={0x22800000, &(0x7f0000000040)=<r1=>0xffffffffffffffff, 0x0, 0x0, {0x2e}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_submit(r0, 0x2, &(0x7f0000000200)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r1, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x7, 0x7ba, r1, 0x0, 0x0, 0x7}])

477.876668ms ago: executing program 1 (id=3198):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000040)=ANY=[@ANYRES16=r1], 0xffc9)
close_range(r0, 0xffffffffffffffff, 0x0)

432.949772ms ago: executing program 7 (id=3200):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x103040, 0x16)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000360000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000380)=r0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r2, &(0x7f00000005c0), 0x0}, 0x20)

424.643512ms ago: executing program 1 (id=3201):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x3})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0x1, 0x800001, 0x0, 0x0, 0x0)

395.238405ms ago: executing program 7 (id=3202):
syz_clone(0x140011, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0x0, 0x47, 0x0, 0x0, @tick, {0x40, 0xff}, {0x0, 0x9}, @control={0x3, 0x5a, 0x92}}, {0x0, 0x0, 0x0, 0x2, @time={0x367b, 0xfffffffd}, {}, {0x80}, @connect={{0x40, 0x7}, {0x80, 0xf6}}}], 0x38)
read$msr(r1, 0x0, 0x300)

367.293768ms ago: executing program 1 (id=3203):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r1, &(0x7f0000000040)={0x23, 0x14}, 0x10)
bind$phonet(r0, &(0x7f0000000000)={0x23, 0x4}, 0x10)
close(0x3)

344.651309ms ago: executing program 7 (id=3204):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x0, 0x0, 'sed\x00', 0xe, 0x400eeb4, 0x14}, 0x2c)

322.657272ms ago: executing program 1 (id=3205):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x3, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328)
setsockopt$inet_tcp_int(r0, 0x6, 0x18, &(0x7f0000000380)=0x2, 0x4)

289.185945ms ago: executing program 6 (id=3206):
r0 = mq_open(&(0x7f0000000a00)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xafUD\x9dA\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00', 0x42, 0x1f0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x37, 0x7fffffff}]})
mq_timedsend(r0, &(0x7f0000000dc0)="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", 0xfd1, 0x8000000000000001, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')

243.765279ms ago: executing program 6 (id=3207):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./control\x00', 0xc480, &(0x7f0000000000), 0x1, 0x786, &(0x7f0000000f80)="$eJzs3c9rHGUfAPDvbLNJ37Tv27zwwms9BQQNlG5Mja2Ch4oHESwU9Gy7bLahZpMt2U1pQkCLCF4EFQ+CXnq2Wm9e/XHVP8C7B2mpmhYjHiQym9102+ymmzSbbdnPByZ5npnZfOc7z8w8T3aG3QD61mj6IxNxOCI+SCIO1ecnEZGtlQYiTq6vt7qyXEinJNbWXvstqa1ze2W5EE2vSR2oVx6LiO/ejTiS2Ry3srg0ky+VivP1+nh19sJ4ZXHp6PnZ/HRxujh3fGJy8tiJZ08c371c//hx6eCND19+6suTf73z/2vvf5/EyThYX9acx24ZjdH6Psmmu/AuL8Vbux2up5JebwA7kp6a+9bP8jicpOWBXm8SANBl6Sh0DQDoM4n+HwD6TON9gNsry4XG1Nt3JPbWzRcjYv96/o37m+tLBur37PbX7oMO307uujOSRMTILsQfjYjPvn7jajpFl+5DArTy9uWIODsyuvn6n2x6ZmG7nu5gndF76hvxf8o+YHTgfr5Jxz/PtRr/ZTbGP9Fi/DPU4tzdibbn/4bM9V0I01Y6/nuh6dm21ab860b21Wv/ro35ssm586Viem37T0SMRXYorU9sEWPs1t+32i1rHv/9/tGbn6fx09931shcHxi6+zVT+Wr+QXJudvNyxOMDrfJPNto/aTP+Pd1hjFeef+/TdsvS/NN8G9Pm/Ltr7UrEky3b/84TbcmWzyeO1w6H8cZB0cJXP38y3C5+c/un0+rK8loScXX3M20tbf/hrfMfSZqf16xsP8YPVw59225Zi/wLjf+F1rU+/geT12vlwfq8S/lqdX4iYjB5dfP8Y3de26g31k/zH3ui9fm/1fGfjk7Odpj/wI1fv9h5/t2V5j+1rfbffuHa6sy+dvE7a//JWmmsPqeT61+nG/gg+w4AAAAAAAAAAAAAAAAAAAAAAAAAOpWJiIORZHIb5Uwml1v/Du//xXCmVK5Uj5wrL8xNRe27skcim2l81OWhps9Dnah/Hn6jfuye+jMR8d+I+HjoX7V6rlAuTfU6eQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACoO9Dm+/9Tvwz1eusAgK7Z3+sNAAD2nP4fAPqP/h8A+o/+HwD6j/4fAPqP/h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAuO33qVDqt/bmyXEjrUxcXF2bKF49OFSszudmFQq5Qnr+Qmy6Xp0vFXKE8e7+/VyqXL0zG3MKl8WqxUh2vLC6dmS0vzFXPnJ/NTxfPFLN7khUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAbE9lcWkmXyoV5xUegcJAvdUelu3ZUSHTSGKvgg52K4uHYGd2r9DDixIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAI+SfAAAA///WoyFe")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x52)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000480)='.\x00', 0x10000, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @a}})
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x4, 0x8001, 0x9})

239.226439ms ago: executing program 1 (id=3208):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000000)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x0)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000001480)=[{&(0x7f0000000040)="05", 0x1}, {0x0}], 0x2, &(0x7f0000000340)=[@sndrcv={0x30, 0x84, 0x1, {0x2, 0x0, 0x41, 0x8, 0x2, 0xffffffff, 0x3, 0x7fffffff}}], 0x30}, 0x0)

186.949013ms ago: executing program 7 (id=3209):
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x24, 0x0, 0x400, 0xfffffffe, 0x4, {0x10}, [@ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x8}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x1600c091}, 0x8000)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x4, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000140)={0x16f, @tick=0x7})

106.24758ms ago: executing program 7 (id=3210):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x0, {[0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x100]}}, 0x5c)
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x4, 0x9, @dev={0xfe, 0x80, '\x00', 0x33}, 0x2}, {0xa, 0x4e24, 0x8000000, @mcast2, 0x59cb}, 0x1, {[0x8, 0x0, 0x6, 0xfffffffe, 0x0, 0x0, 0x0, 0x2]}}, 0x5c)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd4, 0x0, 0x0)
timer_create(0x7, &(0x7f0000000000)={0x0, 0x2d, 0xcbbc48433744eb72}, 0x0)

79.743093ms ago: executing program 7 (id=3211):
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x14c)
fallocate(r0, 0x0, 0x9, 0x2000403)
chown(&(0x7f00000001c0)='./file1\x00', 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x63, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0xfffffffd, 0xfc}, 0x0, 0x0, 0x800000, 0x6, 0x2, 0xcb, 0xffff, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xfff7ffffffffffff, 0xffffffffffffffff, 0x1)
chown(&(0x7f0000000040)='./file1\x00', 0xee01, 0x0)

0s ago: executing program 6 (id=3212):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x1}, 0x2002, 0x32, 0x7, 0x7, 0x9, 0x2, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x25dfdc00, {0x0, 0x0, 0x74, 0x0, 0x800}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0xe}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000801}, 0x24008804)

kernel console output (not intermixed with test programs):

0 ro without journal. Quota mode: writeback.
[  126.294799][ T8107] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  126.313946][ T8107] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  126.339640][ T8107] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  126.444540][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.580391][ T8131] loop1: detected capacity change from 0 to 1024
[  126.604203][ T8131] EXT4-fs: Ignoring removed orlov option
[  126.633307][ T8131] EXT4-fs: Ignoring removed nobh option
[  126.664864][ T8131] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.695577][ T8144] loop0: detected capacity change from 0 to 1024
[  126.703615][ T8144] EXT4-fs: Ignoring removed nobh option
[  126.746053][ T8144] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.768982][ T8144] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.879246][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.933566][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.052987][ T8161] loop0: detected capacity change from 0 to 1024
[  127.079298][ T8163] macvtap1: entered promiscuous mode
[  127.093635][ T8161] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.104946][ T8163] bond0: entered promiscuous mode
[  127.123312][ T8161] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e854c01c, mo2=0003]
[  127.134764][ T8161] System zones: 0-1, 3-36
[  127.143937][ T8161] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.161048][ T8163] macvtap1: entered allmulticast mode
[  127.175267][ T8163] bond0: entered allmulticast mode
[  127.188418][ T8161] EXT4-fs error (device loop0): ext4_iget_extra_inode:5025: inode #15: comm syz.0.1863: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  127.213355][ T8163] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  127.228928][ T8163] bond0: left allmulticast mode
[  127.268659][ T8163] bond0: left promiscuous mode
[  127.358519][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.391799][   T28] kauditd_printk_skb: 118 callbacks suppressed
[  127.391820][   T28] audit: type=1400 audit(383.363:851): avc:  denied  { create } for  pid=8167 comm="syz.0.1866" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  127.552047][ T8180] loop4: detected capacity change from 0 to 512
[  127.565080][ T8180] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1872: inode has both inline data and extents flags
[  127.597155][ T8188] GUP no longer grows the stack in syz.5.1875 (8188): 200000004000-20000000a000 (200000002000)
[  127.608077][ T8188] CPU: 1 UID: 0 PID: 8188 Comm: syz.5.1875 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  127.608121][ T8188] Tainted: [W]=WARN
[  127.608130][ T8188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  127.608160][ T8188] Call Trace:
[  127.608179][ T8188]  <TASK>
[  127.608190][ T8188]  __dump_stack+0x1d/0x30
[  127.608229][ T8188]  dump_stack_lvl+0x95/0xd0
[  127.608292][ T8188]  dump_stack+0x15/0x1b
[  127.608317][ T8188]  __get_user_pages+0x195b/0x1ea0
[  127.608392][ T8188]  ? xfd_validate_state+0x45/0xf0
[  127.608445][ T8188]  ? __rcu_read_unlock+0x4e/0x70
[  127.608475][ T8188]  get_user_pages_remote+0x1d5/0x6b0
[  127.608518][ T8188]  __access_remote_vm+0x15c/0x580
[  127.608572][ T8188]  access_remote_vm+0x32/0x40
[  127.608614][ T8188]  proc_pid_cmdline_read+0x32b/0x6b0
[  127.608677][ T8188]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  127.608760][ T8188]  vfs_readv+0x432/0x6e0
[  127.608794][ T8188]  __x64_sys_preadv+0xfd/0x1c0
[  127.608821][ T8188]  x64_sys_call+0x2915/0x3020
[  127.608858][ T8188]  do_syscall_64+0x12c/0x370
[  127.608980][ T8188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.609014][ T8188] RIP: 0033:0x7f34756dc629
[  127.609081][ T8188] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  127.609107][ T8188] RSP: 002b:00007f347412f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  127.609138][ T8188] RAX: ffffffffffffffda RBX: 00007f3475955fa0 RCX: 00007f34756dc629
[  127.609177][ T8188] RDX: 0000000000000001 RSI: 0000200000000680 RDI: 0000000000000003
[  127.609196][ T8188] RBP: 00007f3475772b39 R08: 00000000fffffff9 R09: 0000000000000000
[  127.609290][ T8188] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000000
[  127.609307][ T8188] R13: 00007f3475956038 R14: 00007f3475955fa0 R15: 00007fff6a001828
[  127.609331][ T8188]  </TASK>
[  127.806830][ T8190] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1876'.
[  127.817732][ T8180] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  127.823135][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  127.839691][    C1] EXT4-fs (loop4): initial error at time 383: ext4_orphan_get:1391: inode 15
[  127.848666][    C1] EXT4-fs (loop4): last error at time 383: ext4_orphan_get:1391: inode 15
[  127.867813][ T8180] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1872: couldn't read orphan inode 15 (err -117)
[  127.881825][ T8180] loop4: lost filesystem error report for type 5 error -117
[  127.882591][ T8180] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.954347][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.084819][   T28] audit: type=1400 audit(384.043:852): avc:  denied  { connect } for  pid=8209 comm="syz.4.1884" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  128.117229][   T28] audit: type=1400 audit(384.093:853): avc:  denied  { name_bind } for  pid=8214 comm="syz.4.1886" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  128.139850][ T8213] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1885'.
[  128.149280][ T8213] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1885'.
[  128.347354][   T28] audit: type=1400 audit(384.313:854): avc:  denied  { watch } for  pid=8221 comm="syz.0.1889" path="/369" dev="tmpfs" ino=1913 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  128.391476][   T28] audit: type=1400 audit(384.313:855): avc:  denied  { watch_reads } for  pid=8221 comm="syz.0.1889" path="/369" dev="tmpfs" ino=1913 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  128.461198][   T28] audit: type=1400 audit(384.433:856): avc:  denied  { create } for  pid=8225 comm="syz.0.1891" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  128.490986][   T28] audit: type=1400 audit(384.433:857): avc:  denied  { connect } for  pid=8225 comm="syz.0.1891" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  128.526851][ T8228] loop0: detected capacity change from 0 to 512
[  128.555001][ T8228] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.1892: EA inode hash validation failed
[  128.577068][ T8228] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #15: comm syz.0.1892: corrupted inode contents
[  128.590465][ T8228] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  128.590752][ T8228] EXT4-fs error (device loop0): ext4_dirty_inode:6450: inode #15: comm syz.0.1892: mark_inode_dirty error
[  128.600149][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  128.600171][    C1] EXT4-fs (loop0): initial error at time 384: ext4_do_update_inode:5569: inode 15
[  128.600199][    C1] EXT4-fs (loop0): last error at time 384: ext4_do_update_inode:5569: inode 15
[  128.649820][ T8228] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  128.650083][ T8228] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #15: comm syz.0.1892: corrupted inode contents
[  128.672908][ T8228] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  128.674823][ T8228] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2999: inode #15: comm syz.0.1892: mark_inode_dirty error
[  128.696990][ T8228] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  128.697154][ T8228] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3002: inode #15: comm syz.0.1892: mark inode dirty (error -117)
[  128.720432][ T8228] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  128.720793][ T8228] EXT4-fs warning (device loop0): ext4_evict_inode:275: xattr delete (err -117)
[  128.741649][ T8228] EXT4-fs (loop0): 1 orphan inode deleted
[  128.749496][ T8228] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.835939][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.884117][   T28] audit: type=1400 audit(384.863:858): avc:  denied  { read write } for  pid=8240 comm="syz.3.1899" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  128.924181][ T3429] hid_parser_main: 2 callbacks suppressed
[  128.924206][ T3429] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  128.943574][   T28] audit: type=1400 audit(384.893:859): avc:  denied  { open } for  pid=8240 comm="syz.3.1899" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  128.993021][ T3429] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  129.069789][   T28] audit: type=1400 audit(385.013:860): avc:  denied  { create } for  pid=8254 comm="syz.5.1903" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  129.089570][ T8250] loop0: detected capacity change from 0 to 128
[  129.120541][ T8258] fido_id[8258]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  129.124685][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.124685][ T8250] loop0: rw=2049, sector=138, nr_sectors = 8 limit=128
[  129.171422][ T8260] loop4: detected capacity change from 0 to 256
[  129.181155][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.181155][ T8250] loop0: rw=2049, sector=146, nr_sectors = 6 limit=128
[  129.202485][ T8265] loop3: detected capacity change from 0 to 1024
[  129.212224][ T8260] FAT-fs (loop4): error, clusters badly computed (0 != 128)
[  129.212990][ T8265] EXT4-fs: Ignoring removed orlov option
[  129.231627][ T8260] FAT-fs (loop4): Filesystem has been set read-only
[  129.238783][ T8260] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  129.250130][ T8265] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.301780][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.301780][ T8250] loop0: rw=8390657, sector=150, nr_sectors = 2 limit=128
[  129.363760][ T8273] loop1: detected capacity change from 0 to 1024
[  129.382919][ T8250] Buffer I/O error on dev loop0, logical block 75, lost async page write
[  129.391810][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.391810][ T8250] loop0: rw=8390657, sector=152, nr_sectors = 2 limit=128
[  129.395900][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.407017][ T8250] Buffer I/O error on dev loop0, logical block 76, lost async page write
[  129.424464][ T8273] EXT4-fs: inline encryption not supported
[  129.431776][ T8273] EXT4-fs: Ignoring removed nobh option
[  129.440898][ T8273] EXT4-fs: Ignoring removed bh option
[  129.473816][ T8273] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.491210][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.491210][ T8250] loop0: rw=2049, sector=170, nr_sectors = 6 limit=128
[  129.537496][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.537496][ T8250] loop0: rw=8390657, sector=174, nr_sectors = 2 limit=128
[  129.555512][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.568431][ T8250] Buffer I/O error on dev loop0, logical block 87, lost async page write
[  129.583268][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.583268][ T8250] loop0: rw=8390657, sector=176, nr_sectors = 2 limit=128
[  129.651067][ T8250] Buffer I/O error on dev loop0, logical block 88, lost async page write
[  129.694975][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.694975][ T8250] loop0: rw=2049, sector=178, nr_sectors = 6 limit=128
[  129.740571][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.740571][ T8250] loop0: rw=8390657, sector=182, nr_sectors = 2 limit=128
[  129.755130][ T8250] Buffer I/O error on dev loop0, logical block 91, lost async page write
[  129.763910][ T8250] syz.0.1901: attempt to access beyond end of device
[  129.763910][ T8250] loop0: rw=8390657, sector=184, nr_sectors = 2 limit=128
[  129.778244][ T8250] Buffer I/O error on dev loop0, logical block 92, lost async page write
[  130.022542][ T8307] xt_hashlimit: size too large, truncated to 1048576
[  130.141221][ T8320] EXT4-fs: Ignoring removed nobh option
[  130.154366][ T8320] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  130.164795][ T8320] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1930: iget: bad i_size value: 38620345925642
[  130.178058][ T8320] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  130.178317][ T8320] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1930: couldn't read orphan inode 15 (err -117)
[  130.187705][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  130.187730][    C0] EXT4-fs (loop3): initial error at time 386: ext4_orphan_get:1391: inode 15
[  130.187758][    C0] EXT4-fs (loop3): last error at time 386: ext4_orphan_get:1391: inode 15
[  130.225700][ T8320] loop3: lost filesystem error report for type 5 error -117
[  130.226351][ T8320] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.285964][ T8320] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.1930: bg 0: block 5: invalid block bitmap
[  130.316892][ T8320] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  130.329770][ T8320] EXT4-fs (loop3): This should not happen!! Data will be lost
[  130.329770][ T8320] 
[  130.340395][ T8320] EXT4-fs (loop3): Total free blocks count 0
[  130.346557][ T8320] EXT4-fs (loop3): Free/Dirty block details
[  130.364036][ T8320] EXT4-fs (loop3): free_blocks=0
[  130.376900][ T8320] EXT4-fs (loop3): dirty_blocks=1
[  130.382072][ T8320] EXT4-fs (loop3): Block reservation details
[  130.388294][ T8320] EXT4-fs (loop3): i_reserved_data_blocks=1
[  130.433188][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.462591][ T1031] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  130.483898][ T3309]  loop0: p1 p2 p3 < > p4 < p5 p6 >
[  130.491974][ T3309] loop0: partition table partially beyond EOD, truncated
[  130.499422][ T3309] loop0: p1 start 30976 is beyond EOD, truncated
[  130.505681][ T1031] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  130.552469][ T3309] loop0: p2 size 16128 extends beyond EOD, truncated
[  130.584024][ T3309] loop0: p3 start 327168 is beyond EOD, truncated
[  130.596321][ T3309] loop0: p5 start 30976 is beyond EOD, truncated
[  130.611380][ T3309] loop0: p6 size 16128 extends beyond EOD, truncated
[  130.698066][ T8327]  loop0: p1 p2 p3 < > p4 < p5 p6 >
[  130.718640][ T8327] loop0: partition table partially beyond EOD, truncated
[  130.775145][ T8327] loop0: p1 start 30976 is beyond EOD, truncated
[  130.794421][ T8327] loop0: p2 size 16128 extends beyond EOD, truncated
[  130.811765][ T8327] loop0: p3 start 327168 is beyond EOD, truncated
[  130.833922][ T8327] loop0: p5 start 30976 is beyond EOD, truncated
[  130.853137][ T8327] loop0: p6 size 16128 extends beyond EOD, truncated
[  130.984686][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory
[  130.996685][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  131.008071][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  131.031206][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory
[  131.043546][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  131.053934][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  131.159468][ T8382] Invalid argument reading file caps for ./file0
[  131.241271][ T8389] ip6erspan0: entered allmulticast mode
[  131.281636][ T8392] set_capacity_and_notify: 3 callbacks suppressed
[  131.281656][ T8392] loop3: detected capacity change from 0 to 128
[  131.309966][ T8394] loop0: detected capacity change from 0 to 1024
[  131.364416][ T8394] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.395656][ T8394] EXT4-fs error (device loop0): ext4_find_dest_de:2050: inode #12: block 7: comm syz.0.1960: bad entry in directory: rec_len is smaller than minimal - offset=16, inode=14, rec_len=8, size=56 fake=0
[  131.462275][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.701070][ T8418] loop0: detected capacity change from 0 to 512
[  131.724903][ T8418] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.764033][ T8418] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #15: comm syz.0.1969: corrupted xattr block 33: invalid ea_ino
[  131.794253][ T8418] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  131.805160][ T8418] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #15: comm syz.0.1969: corrupted xattr block 33: invalid ea_ino
[  131.819168][ T8418] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  131.830046][ T8418] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #15: comm syz.0.1969: corrupted xattr block 33: invalid ea_ino
[  131.838159][ T8428] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #15: comm syz.0.1969: corrupted xattr block 33: invalid ea_ino
[  131.857388][ T8418] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  131.860798][ T8429] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1972'.
[  131.880925][ T8428] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  131.891630][ T8428] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #15: comm syz.0.1969: corrupted xattr block 33: invalid ea_ino
[  131.907241][ T8428] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  131.941820][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.189998][ T8454] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1984'.
[  132.563700][ T8489] loop0: detected capacity change from 0 to 512
[  132.572852][ T8489] EXT4-fs: Ignoring removed nobh option
[  132.582603][ T8489] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  132.600826][ T8489] EXT4-fs (loop0): 1 truncate cleaned up
[  132.608635][ T8489] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.654960][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.695876][   T28] kauditd_printk_skb: 55 callbacks suppressed
[  132.695894][   T28] audit: type=1400 audit(388.673:916): avc:  denied  { mounton } for  pid=8493 comm="syz.0.1999" path="/397/file0" dev="tmpfs" ino=2069 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  132.752226][   T28] audit: type=1400 audit(388.723:917): avc:  denied  { write } for  pid=8486 comm="syz.5.1997" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  133.031550][   T28] audit: type=1400 audit(389.003:918): avc:  denied  { read } for  pid=8504 comm="syz.5.2005" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  133.116726][   T28] audit: type=1400 audit(389.093:919): avc:  denied  { append } for  pid=8510 comm="syz.5.2008" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  133.139450][   T28] audit: type=1400 audit(389.093:920): avc:  denied  { ioctl } for  pid=8510 comm="syz.5.2008" path="/dev/usbmon7" dev="devtmpfs" ino=163 ioctlcmd=0x920a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  133.194380][   T28] audit: type=1400 audit(389.173:921): avc:  denied  { accept } for  pid=8513 comm="syz.5.2009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  133.298583][   T28] audit: type=1400 audit(389.273:922): avc:  denied  { mount } for  pid=8517 comm="syz.3.2011" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  133.369424][   T28] audit: type=1400 audit(389.323:923): avc:  denied  { unmount } for  pid=3317 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  133.396667][   T28] audit: type=1400 audit(389.343:924): avc:  denied  { shutdown } for  pid=8525 comm="syz.3.2016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  133.418022][   T28] audit: type=1400 audit(389.343:925): avc:  denied  { mounton } for  pid=8525 comm="syz.3.2016" path="/431/file1" dev="tmpfs" ino=2252 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  133.440442][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811c967000: rx timeout, send abort
[  133.448952][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88811c967000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  133.559976][ T8544] loop5: detected capacity change from 0 to 512
[  133.578340][ T8544] EXT4-fs: Ignoring removed i_version option
[  133.619115][ T8544] EXT4-fs (loop5): shut down requested (1)
[  133.698042][   T50] Bluetooth: hci0: Frame reassembly failed (-84)
[  133.870193][ T8581] loop0: detected capacity change from 0 to 2048
[  133.926196][ T3307] Alternate GPT is invalid, using primary GPT.
[  133.932758][ T3307]  loop0: p2 p3 p7
[  133.965236][ T8581] Alternate GPT is invalid, using primary GPT.
[  133.971885][ T8581]  loop0: p2 p3 p7
[  134.079247][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[  134.091537][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  134.104767][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  134.123488][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[  134.208621][ T8604] loop0: detected capacity change from 0 to 512
[  134.229272][ T8604] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  134.240171][ T8608] veth1_to_bond: entered allmulticast mode
[  134.246955][ T8608] veth1_to_bond: entered promiscuous mode
[  134.252992][ T8604] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  134.263523][ T8607] veth1_to_bond: left promiscuous mode
[  134.269144][ T8607] veth1_to_bond: left allmulticast mode
[  134.755602][ T8645] loop0: detected capacity change from 0 to 512
[  134.781381][ T8659] loop3: detected capacity change from 0 to 128
[  134.791032][ T8645] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #4: comm syz.0.2062: corrupted inode contents
[  134.821432][ T8645] EXT4-fs error (device loop0): ext4_dirty_inode:6450: inode #4: comm syz.0.2062: mark_inode_dirty error
[  134.852264][ T8645] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #4: comm syz.0.2062: corrupted inode contents
[  134.865763][ T8645] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #4: comm syz.0.2062: mark_inode_dirty error
[  134.884696][ T8645] EXT4-fs error (device loop0): ext4_acquire_dquot:7001: comm syz.0.2062: Failed to acquire dquot type 1
[  134.949469][ T8669] futex_wake_op: syz.4.2069 tries to shift op by -1; fix this program
[  135.068804][ T8671] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  135.078597][ T8671] SELinux: failed to load policy
[  135.138598][ T8684] net_ratelimit: 11 callbacks suppressed
[  135.138662][ T8684] sock: sock_set_timeout: `syz.3.2076' (pid 8684) tries to set negative timeout
[  135.224697][ T8692] veth0_vlan: entered allmulticast mode
[  135.300315][ T8693] veth0_vlan: left promiscuous mode
[  135.321527][ T8693] veth0_vlan: entered promiscuous mode
[  135.672374][ T8711] SELinux: failed to load policy
[  135.713192][ T3666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  135.713254][ T4409] Bluetooth: hci0: command 0x1003 tx timeout
[  135.837492][ T8732] sctp: [Deprecated]: syz.4.2096 (pid 8732) Use of int in maxseg socket option.
[  135.837492][ T8732] Use struct sctp_assoc_value instead
[  135.871113][ T8734] netlink: 'syz.5.2097': attribute type 4 has an invalid length.
[  135.879458][ T8734] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2097'.
[  135.925036][ T8738] Invalid argument reading file caps for ./file0
[  136.067395][ T8757] loop1: detected capacity change from 0 to 128
[  136.302885][ T8773] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2115'.
[  136.320970][ T8773] loop0: detected capacity change from 0 to 512
[  136.329065][ T8773] EXT4-fs: Ignoring removed mblk_io_submit option
[  136.336514][ T8773] EXT4-fs: inline encryption not supported
[  136.343691][ T8773] EXT4-fs: test_dummy_encryption option not supported
[  136.351696][ T8773] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2115'.
[  137.318151][ T8817] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.2135'.
[  137.341279][ T8819] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2136'.
[  137.373651][ T8819] netlink: 'syz.4.2136': attribute type 20 has an invalid length.
[  137.381563][ T8819] netlink: 'syz.4.2136': attribute type 21 has an invalid length.
[  137.533054][ T8842] loop4: detected capacity change from 0 to 512
[  137.553710][ T8842] EXT4-fs: inline encryption not supported
[  137.596351][ T8842] EXT4-fs error (device loop4): ext4_get_first_dir_block:3527: inode #12: comm syz.4.2146: Attempting to read directory block (0) that is past i_size (3)
[  137.628488][ T8842] EXT4-fs (loop4): Remounting filesystem read-only
[  137.682574][ T3321] EXT4-fs unmount: 5 callbacks suppressed
[  137.682612][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.698213][   T30] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  137.739614][   T30] __quota_error: 49 callbacks suppressed
[  137.739633][   T30] Quota error (device loop4): write_blk: dquota write failed
[  137.758527][ T8859] IPVS: fo: FWM 3 0x00000003 - no destination available
[  137.766024][   T30] Quota error (device loop4): free_dqentry: Can't write quota data block 5
[  138.155919][   T28] audit: type=1400 audit(394.133:972): avc:  denied  { map } for  pid=8886 comm="syz.4.2164" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  138.295998][ T8901] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2170'.
[  138.311657][ T8901] netlink: 'syz.4.2170': attribute type 30 has an invalid length.
[  138.321879][ T8902] loop1: detected capacity change from 0 to 1024
[  138.339702][   T30] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  138.354130][ T8901] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2170'.
[  138.360167][ T8902] EXT4-fs: inline encryption not supported
[  138.363956][   T30] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  138.388153][ T8901] netlink: 'syz.4.2170': attribute type 30 has an invalid length.
[  138.398217][   T30] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  138.411361][   T30] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  138.515903][   T28] audit: type=1400 audit(394.493:973): avc:  denied  { write } for  pid=8911 comm="syz.3.2174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  138.541655][   T28] audit: type=1400 audit(394.513:974): avc:  denied  { nlmsg_write } for  pid=8911 comm="syz.3.2174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  138.564475][ T8902] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.597864][ T8902] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4223: comm syz.1.2169: Allocating blocks 497-513 which overlap fs metadata
[  138.612143][ T8902] EXT4-fs (loop1): Remounting filesystem read-only
[  138.660083][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.731832][   T28] audit: type=1400 audit(394.703:975): avc:  denied  { wake_alarm } for  pid=8927 comm="syz.1.2179" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  138.745376][   T36] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  138.768034][   T36] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  138.777570][   T36] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  138.805307][   T36] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  139.016554][ T8942] batadv_slave_1: entered promiscuous mode
[  139.023172][ T8941] batadv_slave_1: left promiscuous mode
[  139.063024][   T28] audit: type=1400 audit(395.033:976): avc:  denied  { search } for  pid=3040 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  139.086568][   T28] audit: type=1400 audit(395.033:977): avc:  denied  { search } for  pid=3040 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  139.108472][   T28] audit: type=1400 audit(395.033:978): avc:  denied  { search } for  pid=3040 comm="dhcpcd" name="data" dev="tmpfs" ino=13 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  139.129952][   T28] audit: type=1400 audit(395.033:979): avc:  denied  { read } for  pid=3040 comm="dhcpcd" name="n30" dev="tmpfs" ino=10359 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  139.160586][ T8947] loop3: detected capacity change from 0 to 512
[  139.173750][ T8949] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2187'.
[  139.182915][ T8949] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2187'.
[  139.193890][ T8947] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.2186: inode has both inline data and extents flags
[  139.207964][ T8947] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  139.213099][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  139.229009][    C1] EXT4-fs (loop3): initial error at time 395: ext4_orphan_get:1391: inode 15
[  139.237918][    C1] EXT4-fs (loop3): last error at time 395: ext4_orphan_get:1391: inode 15
[  139.247206][ T8947] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.2186: couldn't read orphan inode 15 (err -117)
[  139.276719][ T8947] loop3: lost filesystem error report for type 5 error -117
[  139.280071][ T8947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.481989][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.525603][ T8978] loop3: detected capacity change from 0 to 128
[  139.543476][ T8978] FAT-fs (loop3): bogus number of reserved sectors
[  139.550232][ T8978] FAT-fs (loop3): This looks like a DOS 1.x volume, but isn't a recognized floppy size (128 sectors)
[  139.593550][ T8978] FAT-fs (loop3): Can't find a valid FAT filesystem
[  139.601791][ T8983] loop4: detected capacity change from 0 to 512
[  139.636837][ T8983] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.669653][ T8978] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2191'.
[  139.766891][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.044797][ T9031] loop5: detected capacity change from 0 to 128
[  140.113164][ T3666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  140.267841][ T9052] loop3: detected capacity change from 0 to 256
[  140.285811][ T9052] FAT-fs (loop3): bogus number of FAT sectors
[  140.293713][ T9052] FAT-fs (loop3): Can't find a valid FAT filesystem
[  140.646048][ T9070] loop7: detected capacity change from 0 to 16384
[  141.735565][ T9136] loop1: detected capacity change from 0 to 1024
[  141.767440][ T9136] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.802702][ T9136] EXT4-fs (loop1): shut down requested (0)
[  141.860824][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.954505][ T9162] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  141.954505][ T9162] The task syz.3.2261 (9162) triggered the difference, watch for misbehavior.
[  142.327664][ T9187] loop0: detected capacity change from 0 to 512
[  142.355841][ T9187] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.378664][ T9187] EXT4-fs (loop0): shut down requested (2)
[  142.387364][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  142.397502][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  142.406711][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[  142.415794][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=13
[  142.424881][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  142.433958][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  142.444889][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=13
[  142.454206][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[  142.463575][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[  142.472597][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  142.481775][ T9187] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=13
[  142.507893][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.855238][ T9241] loop4: detected capacity change from 0 to 512
[  142.893492][ T9241] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.2289: inode has both inline data and extents flags
[  142.907330][ T9241] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  142.907509][ T9241] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.2289: couldn't read orphan inode 15 (err -117)
[  142.916887][    C0] EXT4-fs (loop4): error count since last fsck: 1
[  142.916909][    C0] EXT4-fs (loop4): initial error at time 398: ext4_orphan_get:1391: inode 15
[  142.916947][    C0] EXT4-fs (loop4): last error at time 398: ext4_orphan_get:1391: inode 15
[  142.952891][ T9241] loop4: lost filesystem error report for type 5 error -117
[  142.956318][ T9241] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.045442][ T9251] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2291'.
[  143.254227][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.658567][   T28] kauditd_printk_skb: 28 callbacks suppressed
[  143.658590][   T28] audit: type=1326 audit(399.626:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9337 comm="syz.4.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60784c629 code=0x7ffc0000
[  143.714850][   T28] audit: type=1326 audit(399.666:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9337 comm="syz.4.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60784c629 code=0x7ffc0000
[  143.757083][   T28] audit: type=1326 audit(399.666:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9337 comm="syz.4.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7fe60784c629 code=0x7ffc0000
[  143.811183][   T28] audit: type=1326 audit(399.666:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9337 comm="syz.4.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60784c629 code=0x7ffc0000
[  143.840413][   T28] audit: type=1326 audit(399.666:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9337 comm="syz.4.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60784c629 code=0x7ffc0000
[  143.870195][ T9344] loop4: detected capacity change from 0 to 1024
[  143.897536][ T9344] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.911774][ T9340] loop5: detected capacity change from 0 to 8192
[  143.976227][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.004501][   T28] audit: type=1326 audit(399.966:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9350 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f014a81c629 code=0x7ffc0000
[  144.043774][   T28] audit: type=1326 audit(399.976:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9350 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f014a81c629 code=0x7ffc0000
[  144.078056][   T28] audit: type=1326 audit(399.976:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9350 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f014a81c629 code=0x7ffc0000
[  144.101544][   T28] audit: type=1326 audit(399.976:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9350 comm="syz.1.2314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f014a81c629 code=0x7ffc0000
[  144.149863][ T9356] loop3: detected capacity change from 0 to 2048
[  144.193547][ T9356] EXT4-fs error (device loop3): __ext4_fill_super:5563: inode #2: comm syz.3.2307: inode has both inline data and extents flags
[  144.220903][ T9366] loop5: detected capacity change from 0 to 512
[  144.245672][ T9356] loop3: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117
[  144.253099][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  144.268692][    C1] EXT4-fs (loop3): initial error at time 400: __ext4_fill_super:5563: inode 2
[  144.277729][    C1] EXT4-fs (loop3): last error at time 400: __ext4_fill_super:5563: inode 2
[  144.286844][ T9356] EXT4-fs (loop3): get root inode failed
[  144.294045][ T9366] EXT4-fs (loop5): 1 truncate cleaned up
[  144.314557][ T9366] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.347093][ T9356] EXT4-fs (loop3): mount failed
[  144.378154][ T9366] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2309: bg 0: block 465: padding at end of block bitmap is not set
[  144.488489][ T9366] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 8 with error 28
[  144.534064][ T9366] EXT4-fs (loop5): This should not happen!! Data will be lost
[  144.534064][ T9366] 
[  144.560955][ T9366] EXT4-fs (loop5): Total free blocks count 0
[  144.579057][ T9366] EXT4-fs (loop5): Free/Dirty block details
[  144.606937][ T9366] EXT4-fs (loop5): free_blocks=0
[  144.616942][ T9366] EXT4-fs (loop5): dirty_blocks=12
[  144.633164][ T9366] EXT4-fs (loop5): Block reservation details
[  144.655208][ T9366] EXT4-fs (loop5): i_reserved_data_blocks=12
[  144.688326][ T9387] loop1: detected capacity change from 0 to 1024
[  144.719155][ T9387] EXT4-fs: inline encryption not supported
[  144.773814][ T9387] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.787677][ T5593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.822819][ T9387] EXT4-fs error (device loop1): mb_free_blocks:2047: group 0, inode 15: block 385:freeing already freed block (bit 24); block bitmap corrupt.
[  144.883933][ T9387] EXT4-fs (loop1): Remounting filesystem read-only
[  144.903355][ T9393] EXT4-fs (loop1): ext4_do_writepages: jbd2_start: 9223372036854775806 pages, ino 15; err -30
[  144.982445][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.055839][ T9404] loop3: detected capacity change from 0 to 128
[  145.087577][ T9404] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  145.155573][   T28] audit: type=1400 audit(401.126:1017): avc:  denied  { append } for  pid=9403 comm="syz.3.2324" path="/512/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/cgroup.controllers" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  145.241753][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  146.875809][ T9471] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2353'.
[  146.892842][ T9473] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2354'.
[  146.904446][ T9473] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2354'.
[  146.981991][ T9483] loop5: detected capacity change from 0 to 1024
[  147.002851][ T9483] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  147.019886][ T9483] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2359: bg 0: block 112: padding at end of block bitmap is not set
[  147.036184][ T9483] EXT4-fs (loop5): Remounting filesystem read-only
[  147.081793][ T5593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  147.110648][ T9491] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  147.214066][ T9499] netlink: 'syz.1.2362': attribute type 3 has an invalid length.
[  147.496828][ T9522] loop4: detected capacity change from 0 to 128
[  147.625202][ T9531] sctp: [Deprecated]: syz.5.2377 (pid 9531) Use of struct sctp_assoc_value in delayed_ack socket option.
[  147.625202][ T9531] Use struct sctp_sack_info instead
[  147.713320][ T9537] loop5: detected capacity change from 0 to 1024
[  147.739548][ T9537] EXT4-fs: inline encryption not supported
[  147.764643][ T9537] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.874737][ T5593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.021237][ T9555] loop3: detected capacity change from 0 to 256
[  148.064429][ T9559] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  148.082960][ T9555] FAT-fs (loop3): Directory bread(block 64) failed
[  148.096683][ T9555] FAT-fs (loop3): Directory bread(block 65) failed
[  148.108721][ T9555] FAT-fs (loop3): Directory bread(block 66) failed
[  148.116087][ T9555] FAT-fs (loop3): Directory bread(block 67) failed
[  148.123141][ T9555] FAT-fs (loop3): Directory bread(block 68) failed
[  148.130143][ T9555] FAT-fs (loop3): Directory bread(block 69) failed
[  148.137404][ T9555] FAT-fs (loop3): Directory bread(block 70) failed
[  148.144124][ T9555] FAT-fs (loop3): Directory bread(block 71) failed
[  148.150974][ T9555] FAT-fs (loop3): Directory bread(block 72) failed
[  148.157853][ T9555] FAT-fs (loop3): Directory bread(block 73) failed
[  148.955361][ T9623] loop4: detected capacity change from 0 to 128
[  148.993568][   T28] kauditd_printk_skb: 35 callbacks suppressed
[  148.993588][   T28] audit: type=1400 audit(404.966:1053): avc:  denied  { read write } for  pid=9626 comm="syz.1.2420" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  149.031424][   T28] audit: type=1400 audit(404.996:1054): avc:  denied  { block_suspend } for  pid=9626 comm="syz.1.2420" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  149.159311][   T28] audit: type=1400 audit(405.126:1055): avc:  denied  { ioctl } for  pid=9634 comm="syz.0.2425" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  149.194307][ T9642] loop5: detected capacity change from 0 to 128
[  149.258651][ T9647] netlink: 35284 bytes leftover after parsing attributes in process `syz.0.2429'.
[  149.290801][ T9647] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2429'.
[  149.305304][ T9652] bio_check_eod: 112 callbacks suppressed
[  149.305355][ T9652] syz.5.2428: attempt to access beyond end of device
[  149.305355][ T9652] loop5: rw=2049, sector=225, nr_sectors = 128 limit=128
[  149.415876][ T9660] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2436'.
[  149.424979][ T9320] kworker/u8:10: attempt to access beyond end of device
[  149.424979][ T9320] loop5: rw=8388609, sector=171, nr_sectors = 1 limit=128
[  149.469240][ T9320] Buffer I/O error on dev loop5, logical block 171, lost async page write
[  149.501745][ T9669] netlink: 'syz.5.2438': attribute type 2 has an invalid length.
[  149.593980][ T9681] loop4: detected capacity change from 0 to 1024
[  149.600958][ T9681] EXT4-fs: Ignoring removed orlov option
[  149.608931][ T9681] EXT4-fs: Ignoring removed nomblk_io_submit option
[  149.632028][ T9684] loop0: detected capacity change from 0 to 512
[  149.651775][ T9684] EXT4-fs: Ignoring removed orlov option
[  149.660528][ T9681] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8043c118, mo2=0002]
[  149.675030][ T9681] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.697618][ T9684] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  149.703635][ T9692] batadv_slave_1: entered promiscuous mode
[  149.717913][ T9691] batadv_slave_1: left promiscuous mode
[  149.722941][ T9684] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  149.726879][   T28] audit: type=1400 audit(405.706:1056): avc:  denied  { mounton } for  pid=9680 comm="syz.4.2446" path="/499/file1/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  149.756494][ T9684] EXT4-fs error (device loop0): ext4_iget_extra_inode:5025: inode #15: comm syz.0.2447: corrupted in-inode xattr: e_value size too large
[  149.772479][ T9684] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  149.772756][ T9684] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.2447: couldn't read orphan inode 15 (err -117)
[  149.782081][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  149.782101][    C1] EXT4-fs (loop0): initial error at time 405: ext4_iget_extra_inode:5025: inode 15
[  149.782126][    C1] EXT4-fs (loop0): last error at time 405: ext4_iget_extra_inode:5025: inode 15
[  149.819234][ T9684] loop0: lost filesystem error report for type 5 error -117
[  149.823598][ T9684] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.853283][ T9681] loop4: detected capacity change from 1024 to 64
[  149.875960][   T28] audit: type=1326 audit(405.846:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9697 comm="syz.3.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  149.904992][ T9700] loop5: detected capacity change from 0 to 512
[  149.918572][ T9700] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  149.923331][   T28] audit: type=1326 audit(405.846:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9697 comm="syz.3.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  149.928062][ T3321] EXT4-fs error (device loop4): ext4_readdir:265: inode #2: block 16: comm syz-executor: path /499/file1: bad entry in directory: inode out of bounds - offset=0, inode=201326592, rec_len=256, size=1024 fake=0
[  149.950576][   T28] audit: type=1326 audit(405.856:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9697 comm="syz.3.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  149.998602][   T28] audit: type=1326 audit(405.856:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9697 comm="syz.3.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  150.022740][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.032687][ T9700] EXT4-fs (loop5): invalid journal inode
[  150.042599][ T9700] EXT4-fs (loop5): can't get journal size
[  150.085630][ T9700] EXT4-fs (loop5): 1 truncate cleaned up
[  150.091781][ T9700] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.104020][   T28] audit: type=1326 audit(405.856:1061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9697 comm="syz.3.2452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  150.144178][ T7919] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.164087][   T28] audit: type=1400 audit(406.126:1062): avc:  denied  { ioctl } for  pid=9706 comm="syz.0.2457" path="/dev/rtc0" dev="devtmpfs" ino=245 ioctlcmd=0x7005 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  150.190206][ T9689] kmmpd-loop4: attempt to access beyond end of device
[  150.190206][ T9689] loop4: rw=8402945, sector=128, nr_sectors = 2 limit=64
[  150.191404][ T5593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.205506][ T9689] Buffer I/O error on dev loop4, logical block 64, lost sync page write
[  150.243001][ T9711] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  150.267595][ T9711] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  150.305363][ T9320] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  150.344641][ T9320] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  150.423804][ T9320] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  150.501781][ T9734] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.515011][ T9320] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  150.590026][ T9747] tun0: tun_chr_ioctl cmd 1074025675
[  150.601953][ T9747] tun0: persist enabled
[  150.607695][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.629942][ T9747] tun0: tun_chr_ioctl cmd 1074025675
[  150.643296][ T9747] tun0: persist disabled
[  150.668868][ T9320] vlan2: left promiscuous mode
[  150.679922][ T9320] geneve0: left promiscuous mode
[  150.686010][ T9320] bridge0: port 3(vlan2) entered disabled state
[  150.693303][ T9320] bridge_slave_1: left allmulticast mode
[  150.698994][ T9320] bridge_slave_1: left promiscuous mode
[  150.705239][ T9320] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.713168][ T9320] bridge_slave_0: left allmulticast mode
[  150.719080][ T9320] bridge_slave_0: left promiscuous mode
[  150.724979][ T9320] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.815860][ T9320] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  150.825498][ T9320] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  150.835128][ T9320] bond0 (unregistering): Released all slaves
[  150.842907][ T9320] bond1 (unregistering): Released all slaves
[  150.916722][ T9320] tipc: Left network mode
[  150.943227][ T9778] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  150.963768][ T9320] hsr_slave_0: left promiscuous mode
[  150.969980][ T9320] hsr_slave_1: left promiscuous mode
[  150.976174][ T9320] batman_adv: batadv0: Removing interface: batadv_slave_0
[  150.983979][ T9320] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.027710][ T9320] team0 (unregistering): Port device team_slave_1 removed
[  151.035964][ T9781] FAT-fs (loop5): error, corrupted file size (i_pos 196, 32777)
[  151.043847][ T9781] FAT-fs (loop5): Filesystem has been set read-only
[  151.044080][ T9320] team0 (unregistering): Port device team_slave_0 removed
[  151.050869][ T9781] FAT-fs (loop5): error, corrupted file size (i_pos 196, 32777)
[  151.143608][ T9726] chnl_net:caif_netlink_parms(): no params data found
[  151.205821][ T9726] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.213580][ T9726] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.221264][ T9726] bridge_slave_0: entered allmulticast mode
[  151.228020][ T9726] bridge_slave_0: entered promiscuous mode
[  151.237233][ T9726] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.245419][ T9726] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.252765][ T9726] bridge_slave_1: entered allmulticast mode
[  151.260801][ T9726] bridge_slave_1: entered promiscuous mode
[  151.294237][ T9726] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  151.317561][ T9726] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  151.356066][ T9726] team0: Port device team_slave_0 added
[  151.383784][ T9726] team0: Port device team_slave_1 added
[  151.409155][ T9320] IPVS: stop unused estimator thread 0...
[  151.464477][ T9726] batman_adv: batadv0: Adding interface: batadv_slave_0
[  151.491540][ T9726] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  151.518843][ T9726] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  151.595815][ T9726] batman_adv: batadv0: Adding interface: batadv_slave_1
[  151.619384][ T9726] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  151.653205][ T9726] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  151.678628][ T9836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2491'.
[  151.705331][ T9836] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2491'.
[  151.721188][ T9726] hsr_slave_0: entered promiscuous mode
[  151.727852][ T9726] hsr_slave_1: entered promiscuous mode
[  151.763564][ T9836] geneve2: entered promiscuous mode
[  151.769038][ T9836] geneve2: entered allmulticast mode
[  151.866521][ T9846] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  151.912624][ T9846] EXT4-fs error (device loop3): ext4_map_blocks:818: inode #15: block 3: comm syz.3.2495: lblock 3 mapped to illegal pblock 3 (length 3)
[  151.972745][ T9846] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  151.973779][ T9726] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  152.002331][ T9846] EXT4-fs (loop3): This should not happen!! Data will be lost
[  152.002331][ T9846] 
[  152.014533][ T9726] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  152.035088][ T9869] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9869 comm=syz.0.2500
[  152.039070][ T9726] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  152.086369][ T9872] pimreg: entered allmulticast mode
[  152.096332][ T9726] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  152.122049][ T9872] pimreg: left allmulticast mode
[  152.450636][ T9726] 8021q: adding VLAN 0 to HW filter on device bond0
[  152.504015][ T9726] 8021q: adding VLAN 0 to HW filter on device team0
[  152.516554][ T9867] EXT4-fs error (device loop3): ext4_map_blocks:818: inode #15: comm syz.3.2495: lblock 0 mapped to illegal pblock 0 (length 3)
[  152.530423][ T9867] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 117
[  152.542774][ T9867] EXT4-fs (loop3): This should not happen!! Data will be lost
[  152.542774][ T9867] 
[  152.563797][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.570976][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[  152.607407][ T9318] EXT4-fs error (device loop3): ext4_map_blocks:818: inode #15: block 4: comm kworker/u8:9: lblock 4 mapped to illegal pblock 4 (length 2)
[  152.625744][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.632896][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  152.640985][ T9318] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 2 with error 117
[  152.654032][ T9318] EXT4-fs (loop3): This should not happen!! Data will be lost
[  152.654032][ T9318] 
[  152.677970][ T9318] EXT4-fs error (device loop3): ext4_map_blocks:818: inode #15: block 8: comm kworker/u8:9: lblock 8 mapped to illegal pblock 8 (length 8)
[  152.707320][ T9318] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  152.753429][ T9318] EXT4-fs (loop3): This should not happen!! Data will be lost
[  152.753429][ T9318] 
[  152.852631][ T9726] 8021q: adding VLAN 0 to HW filter on device batadv0
[  152.930539][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  152.958917][ T9912] set_capacity_and_notify: 5 callbacks suppressed
[  152.958941][ T9912] loop5: detected capacity change from 0 to 512
[  153.015473][ T9912] EXT4-fs: Ignoring removed oldalloc option
[  153.053501][ T9912] EXT4-fs (loop5): 1 truncate cleaned up
[  153.061215][ T9921] loop3: detected capacity change from 0 to 1024
[  153.064452][ T9912] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.120335][ T9921] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.142988][ T9912] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.2511: invalid indirect mapped block 234881024 (level 0)
[  153.165765][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.190797][ T9934] loop0: detected capacity change from 0 to 512
[  153.198649][ T9912] EXT4-fs (loop5): Remounting filesystem read-only
[  153.211341][ T9934] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  153.224709][ T9934] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.2515: bad orphan inode 131083
[  153.243310][ T9934] loop0: lost filesystem error report for type 5 error -117
[  153.253154][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  153.267002][    C1] EXT4-fs (loop0): initial error at time 409: ext4_orphan_get:1417
[  153.274967][    C1] EXT4-fs (loop0): last error at time 409: ext4_orphan_get:1417
[  153.283328][ T9934] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.296870][ T5593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.320916][ T9726] veth0_vlan: entered promiscuous mode
[  153.387299][ T9726] veth1_vlan: entered promiscuous mode
[  153.438512][ T9726] veth0_macvtap: entered promiscuous mode
[  153.447672][ T9726] veth1_macvtap: entered promiscuous mode
[  153.483347][ T9726] batman_adv: batadv0: Interface activated: batadv_slave_0
[  153.488537][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.501000][ T9726] batman_adv: batadv0: Interface activated: batadv_slave_1
[  153.538314][   T30] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.558678][   T30] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.597051][   T30] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.613585][   T30] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.698081][ T9971] loop6: detected capacity change from 0 to 512
[  153.715307][ T9971] FAT-fs (loop6): Directory bread(block 199916) failed
[  153.722325][ T9971] FAT-fs (loop6): Directory bread(block 199917) failed
[  153.736719][ T9971] FAT-fs (loop6): Directory bread(block 199918) failed
[  153.759104][ T9971] FAT-fs (loop6): Directory bread(block 199919) failed
[  153.766807][ T9971] FAT-fs (loop6): Directory bread(block 199920) failed
[  153.785656][ T9971] FAT-fs (loop6): Directory bread(block 199921) failed
[  153.792656][ T9971] FAT-fs (loop6): Directory bread(block 199922) failed
[  153.799728][ T9971] FAT-fs (loop6): Directory bread(block 199923) failed
[  153.821014][ T9971] FAT-fs (loop6): Directory bread(block 199916) failed
[  153.829805][ T9971] FAT-fs (loop6): Directory bread(block 199917) failed
[  153.905221][ T9982] loop1: detected capacity change from 0 to 736
[  154.038450][   T28] kauditd_printk_skb: 15 callbacks suppressed
[  154.038472][   T28] audit: type=1400 audit(410.006:1078): avc:  denied  { ioctl } for  pid=9992 comm="syz.6.2536" path="socket:[28512]" dev="sockfs" ino=28512 ioctlcmd=0x7436 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  154.120462][T10001] loop5: detected capacity change from 0 to 1024
[  154.130019][T10001] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  154.138638][T10001] System zones: 0-1, 3-36
[  154.146667][T10001] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.2539: bad orphan inode 134217728
[  154.157958][T10001] loop5: lost filesystem error report for type 5 error -117
[  154.158688][T10001] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.159350][T10005] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2537'.
[  154.180551][T10001] EXT4-fs (loop5): shut down requested (1)
[  154.201101][   T28] audit: type=1400 audit(410.166:1079): avc:  denied  { create } for  pid=9995 comm="syz.6.2537" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  154.214671][T10005] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2537'.
[  154.238830][ T5593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.260085][   T28] audit: type=1400 audit(410.226:1080): avc:  denied  { write } for  pid=10006 comm="syz.5.2540" path="socket:[28531]" dev="sockfs" ino=28531 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  154.309636][T10011] syzkaller1: entered promiscuous mode
[  154.317515][T10011] syzkaller1: entered allmulticast mode
[  154.476894][T10019] loop6: detected capacity change from 0 to 1024
[  154.491929][T10019] EXT4-fs: Ignoring removed bh option
[  154.513312][   T28] audit: type=1326 audit(410.476:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10021 comm="syz.0.2549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7e4dc629 code=0x7ffc0000
[  154.547020][   T28] audit: type=1326 audit(410.476:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10021 comm="syz.0.2549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f5a7e4dc629 code=0x7ffc0000
[  154.554534][T10019] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.572550][   T28] audit: type=1326 audit(410.476:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10021 comm="syz.0.2549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7e4dc629 code=0x7ffc0000
[  154.606667][   T28] audit: type=1326 audit(410.476:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10021 comm="syz.0.2549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7e4dc629 code=0x7ffc0000
[  154.667086][ T9726] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.805637][   T28] audit: type=1326 audit(410.776:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10045 comm="syz.6.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x7ffc0000
[  154.830401][   T28] audit: type=1326 audit(410.776:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10045 comm="syz.6.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x7ffc0000
[  154.854312][   T28] audit: type=1326 audit(410.776:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10045 comm="syz.6.2557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x7ffc0000
[  154.946698][T10056] loop1: detected capacity change from 0 to 128
[  155.006072][T10060] sctp: [Deprecated]: syz.1.2562 (pid 10060) Use of struct sctp_assoc_value in delayed_ack socket option.
[  155.006072][T10060] Use struct sctp_sack_info instead
[  155.095158][T10067] loop1: detected capacity change from 0 to 128
[  155.255475][T10082] netlink: 88 bytes leftover after parsing attributes in process `syz.6.2571'.
[  155.268850][T10082] netlink: 48 bytes leftover after parsing attributes in process `syz.6.2571'.
[  155.585191][T10096] Invalid argument reading file caps for ./file0
[  155.696674][T10102] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2580'.
[  155.717107][T10102] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2580'.
[  155.743937][ T9316] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  155.753308][ T9316] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  155.768521][T10102] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2580'.
[  155.782378][ T9316] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  155.809348][T10102] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2580'.
[  155.826232][ T9316] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  155.988827][T10123] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2591'.
[  156.002625][   T10] kernel write not supported for file bpf-prog (pid: 10 comm: kworker/0:1)
[  156.338110][T10147] loop0: detected capacity change from 0 to 8192
[  156.377453][   T65] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.403209][T10152] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  156.409902][T10152] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  156.451782][T10152] vhci_hcd vhci_hcd.0: Device attached
[  156.471758][   T65] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.502472][T10153] vhci_hcd: connection closed
[  156.502750][ T9318] vhci_hcd vhci_hcd.0: stop threads
[  156.513907][ T9318] vhci_hcd vhci_hcd.0: release socket
[  156.528127][ T9318] vhci_hcd vhci_hcd.0: disconnect device
[  156.577711][   T65] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.646730][   T65] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.752585][T10172] 8021q: adding VLAN 0 to HW filter on device bond1
[  156.820697][T10179] EXT4-fs: Ignoring removed orlov option
[  156.847018][   T65] bridge_slave_1: left allmulticast mode
[  156.852738][   T65] bridge_slave_1: left promiscuous mode
[  156.872332][   T65] bridge0: port 2(bridge_slave_1) entered disabled state
[  156.884814][   T65] bridge_slave_0: left allmulticast mode
[  156.890522][   T65] bridge_slave_0: left promiscuous mode
[  156.896904][   T65] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.910322][T10179] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.964728][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.172130][T10201] ip6tnl1: entered allmulticast mode
[  157.217803][   T65] tipc: Disabling bearer <udp:syz1>
[  157.246458][   T65] tipc: Left network mode
[  157.255921][T10158] chnl_net:caif_netlink_parms(): no params data found
[  157.315971][T10205] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2623'.
[  157.359460][T10205] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2623'.
[  157.398583][   T65] hsr_slave_0: left promiscuous mode
[  157.452504][   T65] hsr_slave_1: left promiscuous mode
[  157.476984][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  157.494438][   T65] batman_adv: batadv0: Removing interface: batadv_slave_0
[  157.536556][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  157.546986][   T65] batman_adv: batadv0: Removing interface: batadv_slave_1
[  157.565869][T10229] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.597956][   T65] veth1_macvtap: left promiscuous mode
[  157.603740][   T65] veth0_macvtap: left promiscuous mode
[  157.609807][   T65] veth1_vlan: left promiscuous mode
[  157.615565][   T65] veth0_vlan: left promiscuous mode
[  157.642453][T10229] EXT4-fs (loop0): shut down requested (1)
[  157.674994][T10229] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  157.705910][T10229] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  157.742153][T10229] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=13
[  157.775445][T10229] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=13
[  157.788747][T10229] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=13
[  157.798222][   T65] team0 (unregistering): Port device team_slave_1 removed
[  157.808788][   T65] team0 (unregistering): Port device team_slave_0 removed
[  157.844288][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.001717][T10158] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.009308][T10158] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.017212][T10158] bridge_slave_0: entered allmulticast mode
[  158.024065][T10158] bridge_slave_0: entered promiscuous mode
[  158.052672][T10257] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2638'.
[  158.062452][T10158] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.081033][T10158] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.094565][T10158] bridge_slave_1: entered allmulticast mode
[  158.101678][T10158] bridge_slave_1: entered promiscuous mode
[  158.130969][T10158] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.155342][T10267] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.166441][T10158] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.208523][T10267] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.230290][T10267] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  158.251498][   T65] IPVS: stop unused estimator thread 0...
[  158.275384][T10158] team0: Port device team_slave_0 added
[  158.294990][T10158] team0: Port device team_slave_1 added
[  158.328883][T10158] batman_adv: batadv0: Adding interface: batadv_slave_0
[  158.361540][T10158] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  158.388877][T10158] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  158.401175][T10158] batman_adv: batadv0: Adding interface: batadv_slave_1
[  158.408518][T10158] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  158.438549][T10158] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  158.512323][T10158] hsr_slave_0: entered promiscuous mode
[  158.518919][T10158] hsr_slave_1: entered promiscuous mode
[  158.525802][T10158] debugfs: 'hsr0' already exists in 'hsr'
[  158.531891][T10158] Cannot create hsr debugfs directory
[  158.728461][T10158] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  158.763248][T10158] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  158.794393][T10158] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  158.822676][T10158] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  158.913631][T10158] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.956298][T10158] 8021q: adding VLAN 0 to HW filter on device team0
[  158.982177][   T30] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.990351][   T30] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.016186][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.023951][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.149707][T10158] 8021q: adding VLAN 0 to HW filter on device batadv0
[  159.183761][   T28] kauditd_printk_skb: 13 callbacks suppressed
[  159.183781][   T28] audit: type=1326 audit(415.156:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10287 comm="syz.6.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x7fc00000
[  159.292487][T10387] set_capacity_and_notify: 4 callbacks suppressed
[  159.292509][T10387] loop3: detected capacity change from 0 to 128
[  159.426326][   T28] audit: type=1400 audit(415.396:1102): avc:  denied  { setopt } for  pid=10400 comm="syz.1.2671" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  159.488661][T10405] loop6: detected capacity change from 0 to 1024
[  159.523583][T10405] EXT4-fs: Ignoring removed bh option
[  159.530385][T10405] EXT4-fs: Ignoring removed nomblk_io_submit option
[  159.562209][T10405] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c01c, mo2=0003]
[  159.579180][T10405] System zones: 0-1, 3-36
[  159.594237][T10405] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.623313][T10158] veth0_vlan: entered promiscuous mode
[  159.632533][T10158] veth1_vlan: entered promiscuous mode
[  159.654609][T10405] EXT4-fs (loop6): shut down requested (2)
[  159.674312][T10158] veth0_macvtap: entered promiscuous mode
[  159.682146][ T9726] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.687616][T10158] veth1_macvtap: entered promiscuous mode
[  159.705371][T10158] batman_adv: batadv0: Interface activated: batadv_slave_0
[  159.715343][T10158] batman_adv: batadv0: Interface activated: batadv_slave_1
[  159.750440][   T30] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  159.794631][ T9318] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  159.810756][ T9318] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  159.835572][ T9318] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.977730][T10430] loop7: detected capacity change from 0 to 1024
[  159.986019][T10430] EXT4-fs: Ignoring removed orlov option
[  160.026821][T10430] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.151101][T10158] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.210824][   T28] audit: type=1326 audit(416.176:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10439 comm="syz.7.2682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc293c629 code=0x7ffc0000
[  160.258000][   T28] audit: type=1326 audit(416.176:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10439 comm="syz.7.2682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc293c629 code=0x7ffc0000
[  160.281936][   T28] audit: type=1326 audit(416.176:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10439 comm="syz.7.2682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fabc293c629 code=0x7ffc0000
[  160.306156][   T28] audit: type=1326 audit(416.176:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10439 comm="syz.7.2682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc293c629 code=0x7ffc0000
[  160.329612][   T28] audit: type=1326 audit(416.186:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10439 comm="syz.7.2682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc293c629 code=0x7ffc0000
[  160.386044][   T28] audit: type=1326 audit(416.356:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10444 comm="syz.7.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc293c629 code=0x7ffc0000
[  160.412650][   T28] audit: type=1326 audit(416.356:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10444 comm="syz.7.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc293c629 code=0x7ffc0000
[  160.439202][   T28] audit: type=1326 audit(416.376:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10444 comm="syz.7.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fabc293c629 code=0x7ffc0000
[  160.507843][T10453] syzkaller0: entered promiscuous mode
[  160.518320][T10453] syzkaller0: entered allmulticast mode
[  161.068047][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[  161.232765][T10484] bridge_slave_0: left allmulticast mode
[  161.253828][T10484] bridge_slave_0: left promiscuous mode
[  161.265648][T10484] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.285545][T10484] bridge_slave_1: left allmulticast mode
[  161.296724][T10484] bridge_slave_1: left promiscuous mode
[  161.305835][T10484] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.318296][T10484] bond0: (slave bond_slave_0): Releasing backup interface
[  161.347131][T10484] bond0: (slave bond_slave_1): Releasing backup interface
[  161.385636][T10484] team0: Port device team_slave_0 removed
[  161.423405][T10484] team0: Port device team_slave_1 removed
[  161.441714][T10484] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  161.449739][T10484] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.459171][T10484] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.469397][T10484] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.487024][T10484] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  161.898778][T10535] random: crng reseeded on system resumption
[  161.987068][T10516] chnl_net:caif_netlink_parms(): no params data found
[  162.038295][T10516] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.045640][T10516] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.052868][T10516] bridge_slave_0: entered allmulticast mode
[  162.059568][T10516] bridge_slave_0: entered promiscuous mode
[  162.066689][T10516] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.073955][T10516] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.081322][T10516] bridge_slave_1: entered allmulticast mode
[  162.088090][T10516] bridge_slave_1: entered promiscuous mode
[  162.106801][T10516] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  162.118049][T10516] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  162.140884][T10516] team0: Port device team_slave_0 added
[  162.148638][T10516] team0: Port device team_slave_1 added
[  162.169002][T10549] loop6: detected capacity change from 0 to 2048
[  162.177479][T10516] batman_adv: batadv0: Adding interface: batadv_slave_0
[  162.184745][T10516] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  162.211192][T10516] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  162.227629][T10516] batman_adv: batadv0: Adding interface: batadv_slave_1
[  162.237162][T10516] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  162.237751][T10551] netlink: 'syz.1.2721': attribute type 4 has an invalid length.
[  162.274499][T10516] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  162.373633][T10516] hsr_slave_0: entered promiscuous mode
[  162.381339][T10516] hsr_slave_1: entered promiscuous mode
[  162.397098][T10516] debugfs: 'hsr0' already exists in 'hsr'
[  162.410044][T10516] Cannot create hsr debugfs directory
[  162.518974][T10516] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.555623][T10564] loop1: detected capacity change from 0 to 8192
[  162.568483][T10516] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.636009][T10516] team0: Port device netdevsim1 removed
[  162.643593][T10516] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.682120][T10569] __nla_validate_parse: 4 callbacks suppressed
[  162.682139][T10569] netlink: 182 bytes leftover after parsing attributes in process `syz.6.2728'.
[  162.704179][T10516] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.837415][T10516] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  162.850012][T10575] loop6: detected capacity change from 0 to 8192
[  162.860714][T10516] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  162.870858][T10516] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  162.887768][T10516] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  162.898096][ T3307]  loop6: p1 < > p2 p3 < p5 p6 > p4
[  162.903607][ T3307] loop6: partition table partially beyond EOD, truncated
[  162.912670][ T3307] loop6: p1 start 100663296 is beyond EOD, truncated
[  162.931065][ T3307] loop6: p2 size 134217732 extends beyond EOD, truncated
[  162.955073][ T3307] loop6: p4 size 14876672 extends beyond EOD, truncated
[  162.976363][ T3307] loop6: p5 size 134217732 extends beyond EOD, truncated
[  162.992140][ T3307] loop6: p6 size 14876672 extends beyond EOD, truncated
[  163.023756][T10575]  loop6: p1 < > p2 p3 < p5 p6 > p4
[  163.024746][T10516] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.029047][T10575] loop6: partition table partially beyond EOD, truncated
[  163.029316][T10575] loop6: p1 start 100663296 is beyond EOD, truncated
[  163.054932][T10575] loop6: p2 size 134217732 extends beyond EOD, truncated
[  163.070217][T10516] 8021q: adding VLAN 0 to HW filter on device team0
[  163.083582][ T4409] Bluetooth: hci0: command 0x1003 tx timeout
[  163.089653][ T3666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  163.101327][T10575] loop6: p4 size 14876672 extends beyond EOD, truncated
[  163.101359][   T30] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.115468][   T30] bridge0: port 1(bridge_slave_0) entered forwarding state
[  163.142248][T10575] loop6: p5 size 134217732 extends beyond EOD, truncated
[  163.164220][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.171369][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.173521][T10575] loop6: p6 size 14876672 extends beyond EOD, truncated
[  163.243430][T10612] loop7: detected capacity change from 0 to 1024
[  163.270737][T10612] EXT4-fs: Ignoring removed oldalloc option
[  163.294455][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[  163.294844][ T5631] udevd[5631]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  163.311961][T10612] EXT4-fs: Ignoring removed orlov option
[  163.322278][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop6p6, 10) failed: No such file or directory
[  163.328755][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  163.354452][ T8246] udevd[8246]: inotify_add_watch(7, /dev/loop6p5, 10) failed: No such file or directory
[  163.371207][T10612] EXT4-fs (loop7): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  163.404315][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[  163.404342][ T8246] udevd[8246]: inotify_add_watch(7, /dev/loop6p6, 10) failed: No such file or directory
[  163.421809][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  163.438416][ T5631] udevd[5631]: inotify_add_watch(7, /dev/loop6p5, 10) failed: No such file or directory
[  163.453725][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  163.483745][T10612] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.521633][T10158] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.600818][T10516] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.685137][T10645] syzkaller1: entered promiscuous mode
[  163.690691][T10645] syzkaller1: entered allmulticast mode
[  163.926061][T10516] veth0_vlan: entered promiscuous mode
[  163.946283][T10516] veth1_vlan: entered promiscuous mode
[  164.006410][T10516] veth0_macvtap: entered promiscuous mode
[  164.029149][T10516] veth1_macvtap: entered promiscuous mode
[  164.060755][T10516] batman_adv: batadv0: Interface activated: batadv_slave_0
[  164.103526][T10516] batman_adv: batadv0: Interface activated: batadv_slave_1
[  164.148308][ T9318] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.180553][ T9318] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.214830][ T9318] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.250466][ T9318] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.309240][T10696] loop1: detected capacity change from 0 to 1024
[  164.384394][T10696] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  164.421551][T10696] System zones: 0-1, 3-36
[  164.430934][T10707] netlink: 212916 bytes leftover after parsing attributes in process `syz.6.2756'.
[  164.463900][T10696] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.2755: bad orphan inode 134217728
[  164.496937][T10696] loop1: lost filesystem error report for type 5 error -117
[  164.503095][    C0] EXT4-fs (loop1): error count since last fsck: 1
[  164.516992][    C0] EXT4-fs (loop1): initial error at time 420: ext4_orphan_get:1417
[  164.524962][    C0] EXT4-fs (loop1): last error at time 420: ext4_orphan_get:1417
[  164.533913][T10696] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.552725][   T28] kauditd_printk_skb: 443 callbacks suppressed
[  164.552743][   T28] audit: type=1400 audit(420.516:1554): avc:  denied  { execute } for  pid=10694 comm="syz.1.2755" path="/497/bus/cpu.stat" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  164.615056][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.875669][T10733] loop0: detected capacity change from 0 to 8192
[  164.931606][T10742] batadv_slave_1: entered promiscuous mode
[  164.953802][T10740] batadv_slave_1: left promiscuous mode
[  165.048212][T10745] loop1: detected capacity change from 0 to 2048
[  165.056651][T10747] loop6: detected capacity change from 0 to 128
[  165.100754][T10745] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.214266][T10745] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  165.383680][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.019481][T10766] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  166.042126][T10766] SELinux: failed to load policy
[  166.192712][   T28] audit: type=1400 audit(422.156:1555): avc:  denied  { relabelfrom } for  pid=10779 comm="syz.6.2783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  166.246372][   T28] audit: type=1400 audit(422.156:1556): avc:  denied  { relabelto } for  pid=10779 comm="syz.6.2783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  166.364065][T10787] loop6: detected capacity change from 0 to 2048
[  166.390283][T10787] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.435137][T10787] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  166.500690][T10800] netlink: 'syz.1.2789': attribute type 1 has an invalid length.
[  166.508688][T10800] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2789'.
[  166.543829][ T9726] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.607529][T10812] netlink: 'syz.7.2794': attribute type 6 has an invalid length.
[  166.611460][   T28] audit: type=1400 audit(422.576:1557): avc:  denied  { write } for  pid=10810 comm="syz.7.2794" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  166.782845][T10819] syzkaller1: entered promiscuous mode
[  166.797666][T10819] syzkaller1: entered allmulticast mode
[  166.888902][T10823] loop7: detected capacity change from 0 to 256
[  166.922500][T10825] loop6: detected capacity change from 0 to 512
[  167.050185][T10831] SELinux:  unknown common 
[  167.055167][T10831] SELinux: failed to load policy
[  167.214274][T10841] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2808'.
[  167.491884][T10852] loop7: detected capacity change from 0 to 8192
[  167.558957][T10857] loop0: detected capacity change from 0 to 8192
[  167.590444][T10866] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2817'.
[  167.870100][T10872] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2821'.
[  167.959856][   T28] audit: type=1400 audit(423.916:1558): avc:  denied  { write } for  pid=10878 comm="syz.6.2824" name="event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  168.021962][T10883] netlink: 63503 bytes leftover after parsing attributes in process `syz.3.2826'.
[  168.031515][   T28] audit: type=1400 audit(423.926:1559): avc:  denied  { ioctl } for  pid=10878 comm="syz.6.2824" path="/dev/input/event0" dev="devtmpfs" ino=242 ioctlcmd=0x4592 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  168.098334][T10884] netdevsim netdevsim0: Direct firmware load for ./file0 failed with error -2
[  168.150840][T10891] loop6: detected capacity change from 0 to 256
[  168.165580][T10891] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  168.240454][   T28] audit: type=1400 audit(424.206:1560): avc:  denied  { remount } for  pid=10889 comm="syz.6.2830" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  168.267446][T10894] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  168.438983][T10894] FAT-fs (loop0): Directory bread(block 64) failed
[  168.458505][T10894] FAT-fs (loop0): Directory bread(block 65) failed
[  168.468644][T10894] FAT-fs (loop0): Directory bread(block 66) failed
[  168.488446][T10894] FAT-fs (loop0): Directory bread(block 67) failed
[  168.502928][T10894] FAT-fs (loop0): Directory bread(block 68) failed
[  168.549335][T10894] FAT-fs (loop0): Directory bread(block 69) failed
[  168.557007][T10894] FAT-fs (loop0): Directory bread(block 70) failed
[  168.564697][T10894] FAT-fs (loop0): Directory bread(block 71) failed
[  168.571392][T10894] FAT-fs (loop0): Directory bread(block 72) failed
[  168.583368][T10894] FAT-fs (loop0): Directory bread(block 73) failed
[  168.672454][T10909] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  168.704168][T10909] EXT4-fs error (device loop6): ext4_map_blocks:818: inode #15: block 3: comm syz.6.2837: lblock 3 mapped to illegal pblock 3 (length 3)
[  168.719156][T10909] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  168.732247][T10909] EXT4-fs (loop6): This should not happen!! Data will be lost
[  168.732247][T10909] 
[  168.752846][T10909] EXT4-fs error (device loop6): ext4_map_blocks:818: inode #15: comm syz.6.2837: lblock 0 mapped to illegal pblock 0 (length 3)
[  168.794286][T10909] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 117
[  168.806834][T10909] EXT4-fs (loop6): This should not happen!! Data will be lost
[  168.806834][T10909] 
[  168.888245][   T28] audit: type=1400 audit(424.856:1561): avc:  denied  { watch watch_reads } for  pid=10924 comm="syz.0.2843" path="/16/file0" dev="tmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=lnk_file permissive=1
[  168.977353][T10929] dummy0: entered promiscuous mode
[  168.977675][   T65] EXT4-fs error (device loop6): ext4_map_blocks:818: inode #15: block 8: comm kworker/u8:4: lblock 8 mapped to illegal pblock 8 (length 8)
[  168.997676][T10929] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2846'.
[  169.007196][   T65] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  169.019577][   T65] EXT4-fs (loop6): This should not happen!! Data will be lost
[  169.019577][   T65] 
[  169.054603][T10929] dummy0 (unregistering): left promiscuous mode
[  169.084004][ T9726] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  169.147716][T10935] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  169.184377][T10935] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.219868][T10935] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2845: bg 0: block 217: padding at end of block bitmap is not set
[  169.236526][T10935] EXT4-fs (loop6): Remounting filesystem read-only
[  169.273745][ T9726] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.609018][T10962] lo: entered promiscuous mode
[  169.629090][T10962] lo: entered allmulticast mode
[  169.651113][T10962] tunl0: entered promiscuous mode
[  169.666558][T10962] tunl0: entered allmulticast mode
[  169.684314][T10962] gre0: entered promiscuous mode
[  169.699705][T10962] gre0: entered allmulticast mode
[  169.716759][T10962] gretap0: entered promiscuous mode
[  169.731890][T10962] gretap0: entered allmulticast mode
[  169.744769][T10962] erspan0: entered promiscuous mode
[  169.760442][T10962] erspan0: entered allmulticast mode
[  169.771993][T10962] ip_vti0: entered promiscuous mode
[  169.782883][T10962] ip_vti0: entered allmulticast mode
[  169.798908][   T28] audit: type=1326 audit(425.766:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  169.824932][T10962] ip6_vti0: entered promiscuous mode
[  169.830358][T10962] ip6_vti0: entered allmulticast mode
[  169.846073][T10962] sit0: entered promiscuous mode
[  169.863221][T10962] sit0: entered allmulticast mode
[  169.867544][   T28] audit: type=1326 audit(425.766:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  169.879488][T10962] ip6tnl0: entered promiscuous mode
[  169.904701][   T28] audit: type=1326 audit(425.766:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  169.928020][   T28] audit: type=1326 audit(425.766:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  169.935701][T10962] ip6tnl0: entered allmulticast mode
[  169.964211][   T28] audit: type=1326 audit(425.766:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  169.987760][   T28] audit: type=1326 audit(425.766:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  170.008142][T10962] ip6gre0: entered promiscuous mode
[  170.012034][   T28] audit: type=1326 audit(425.766:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  170.022980][T10962] ip6gre0: entered allmulticast mode
[  170.071408][T10962] syz_tun: entered promiscuous mode
[  170.084539][T10962] syz_tun: entered allmulticast mode
[  170.091544][T10962] ip6gretap0: entered promiscuous mode
[  170.097265][   T28] audit: type=1326 audit(425.766:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  170.121073][T10962] ip6gretap0: entered allmulticast mode
[  170.128720][T10962] bridge0: entered promiscuous mode
[  170.130959][   T28] audit: type=1326 audit(425.766:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10969 comm="syz.3.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6adb76c629 code=0x7ffc0000
[  170.134835][T10962] bridge0: entered allmulticast mode
[  170.165253][T10962] vcan0: entered promiscuous mode
[  170.170383][T10962] vcan0: entered allmulticast mode
[  170.204397][T10962] bond0: entered promiscuous mode
[  170.206217][   T28] audit: type=1400 audit(425.826:1571): avc:  denied  { bind } for  pid=10971 comm="syz.7.2862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  170.220673][T10962] bond_slave_0: entered promiscuous mode
[  170.250890][T10962] bond_slave_1: entered promiscuous mode
[  170.265180][T10962] bond0: entered allmulticast mode
[  170.270844][T10962] bond_slave_0: entered allmulticast mode
[  170.311442][T10962] bond_slave_1: entered allmulticast mode
[  170.330119][T10962] team0: entered promiscuous mode
[  170.341847][T10962] team_slave_0: entered promiscuous mode
[  170.347967][T10962] team_slave_1: entered promiscuous mode
[  170.364538][T10962] team0: entered allmulticast mode
[  170.385218][T10962] team_slave_0: entered allmulticast mode
[  170.395257][T10962] team_slave_1: entered allmulticast mode
[  170.411815][T10962] dummy0: entered promiscuous mode
[  170.420879][T10962] dummy0: entered allmulticast mode
[  170.428940][T10962] nlmon0: entered promiscuous mode
[  170.434786][T10962] nlmon0: entered allmulticast mode
[  170.468297][T10962] caif0: entered promiscuous mode
[  170.477881][T10962] caif0: entered allmulticast mode
[  170.483838][T10962] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  170.526406][T10983] geneve3: entered promiscuous mode
[  170.635138][T11010] set_capacity_and_notify: 5 callbacks suppressed
[  170.635164][T11010] loop3: detected capacity change from 0 to 256
[  170.717038][T11002] loop0: detected capacity change from 0 to 8192
[  170.734173][T11015] netlink: 130020 bytes leftover after parsing attributes in process `syz.6.2877'.
[  170.745128][T11002] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  170.770734][T11015] netlink: del zone limit has 4 unknown bytes
[  170.856047][T11010] FAT-fs (loop3): codepage cp852 not found
[  171.008539][T11039] loop1: detected capacity change from 0 to 1024
[  171.067680][T11043] loop0: detected capacity change from 0 to 512
[  171.102281][T11039] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.145973][T11043] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2885: invalid indirect mapped block 256 (level 2)
[  171.181916][T11043] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  171.182438][T11043] EXT4-fs (loop0): 2 truncates cleaned up
[  171.191692][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  171.191713][    C0] EXT4-fs (loop0): initial error at time 427: ext4_free_branches:1023: inode 11
[  171.191752][    C0] EXT4-fs (loop0): last error at time 427: ext4_free_branches:1023: inode 11
[  171.451915][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.516267][T11043] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.611227][T10516] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.796342][T11092] loop0: detected capacity change from 0 to 1024
[  171.826233][T11092] EXT4-fs: Ignoring removed bh option
[  171.831782][T11092] EXT4-fs: Ignoring removed nobh option
[  171.840106][T11088] loop6: detected capacity change from 0 to 8192
[  171.880443][T11092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.018735][T10516] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.146060][   T35] IPVS: starting estimator thread 0...
[  172.238427][T11123] loop3: detected capacity change from 0 to 1024
[  172.244965][T11113] IPVS: using max 2208 ests per chain, 110400 per kthread
[  172.264348][T11123] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  172.302744][T11123] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  172.341109][T11123] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  172.370231][T11123] EXT4-fs error (device loop3): ext4_get_journal_inode:5863: inode #5: comm syz.3.2906: unexpected bad inode w/o EXT4_IGET_BAD
[  172.384127][T11123] loop3: lost file I/O error report for ino 5 type 5 pos 0x0 len 0x0 error -117
[  172.384264][T11123] EXT4-fs (loop3): no journal found
[  172.393330][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  172.393354][    C0] EXT4-fs (loop3): initial error at time 428: ext4_get_journal_inode:5863: inode 5
[  172.393409][    C0] EXT4-fs (loop3): last error at time 428: ext4_get_journal_inode:5863: inode 5
[  172.424608][T11123] EXT4-fs (loop3): can't get journal size
[  172.436702][T11123] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  172.484670][T11143] loop0: detected capacity change from 0 to 512
[  172.505429][T11143] EXT4-fs (loop0): 1 truncate cleaned up
[  172.512478][T11143] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.525309][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.634412][T10516] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.652860][T11160] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2924'.
[  172.662050][T11163] netlink: 'syz.7.2925': attribute type 16 has an invalid length.
[  172.671396][T11163] netlink: 'syz.7.2925': attribute type 17 has an invalid length.
[  172.770129][T11163] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.784845][T11163] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.097198][T11206] loop0: detected capacity change from 0 to 512
[  173.104569][T11206] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  173.221311][T11219] netlink: 'syz.6.2942': attribute type 16 has an invalid length.
[  173.232623][T11219] netlink: 'syz.6.2942': attribute type 17 has an invalid length.
[  173.348638][T11230] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2945'.
[  173.511937][T11242] loop6: detected capacity change from 0 to 512
[  173.519030][T11242] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  173.823931][    T9] IPVS: starting estimator thread 0...
[  173.829679][T11267] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  173.915894][T11276] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.923477][T11274] IPVS: using max 2256 ests per chain, 112800 per kthread
[  174.064043][T11289] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.092867][T11289] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  174.123463][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.182192][T11291] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #18: comm syz.0.2965: corrupted inode contents
[  174.197418][T11291] loop0: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117
[  174.198103][T11291] EXT4-fs error (device loop0): ext4_dirty_inode:6450: inode #18: comm syz.0.2965: mark_inode_dirty error
[  174.264199][T11291] loop0: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117
[  174.273196][T11291] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #18: comm syz.0.2965: corrupted inode contents
[  174.298812][T11291] loop0: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117
[  174.299824][T11291] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2999: inode #18: comm syz.0.2965: mark_inode_dirty error
[  174.322689][T11291] loop0: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117
[  174.323116][T11291] EXT4-fs error (device loop0): ext4_xattr_delete_inode:3002: inode #18: comm syz.0.2965: mark inode dirty (error -117)
[  174.346169][T11291] loop0: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117
[  174.348285][T11291] EXT4-fs warning (device loop0): ext4_evict_inode:275: xattr delete (err -117)
[  174.510466][T10516] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.534504][   T30] kworker/u8:1: attempt to access beyond end of device
[  174.534504][   T30] loop3: rw=1, sector=256, nr_sectors = 288 limit=256
[  174.548964][   T30] kworker/u8:1: attempt to access beyond end of device
[  174.548964][   T30] loop3: rw=1, sector=608, nr_sectors = 416 limit=256
[  174.565929][   T30] kworker/u8:1: attempt to access beyond end of device
[  174.565929][   T30] loop3: rw=1, sector=1056, nr_sectors = 2064 limit=256
[  174.585554][   T30] kworker/u8:1: attempt to access beyond end of device
[  174.585554][   T30] loop3: rw=1, sector=3120, nr_sectors = 2072 limit=256
[  174.602965][   T30] kworker/u8:1: attempt to access beyond end of device
[  174.602965][   T30] loop3: rw=1, sector=5192, nr_sectors = 2048 limit=256
[  174.620320][   T30] kworker/u8:1: attempt to access beyond end of device
[  174.620320][   T30] loop3: rw=1, sector=7240, nr_sectors = 2048 limit=256
[  174.661706][   T30] kworker/u8:1: attempt to access beyond end of device
[  174.661706][   T30] loop3: rw=1, sector=9288, nr_sectors = 23544 limit=256
[  174.965933][   T28] kauditd_printk_skb: 13 callbacks suppressed
[  174.965953][   T28] audit: type=1326 audit(430.936:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11317 comm="syz.6.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x7ffc0000
[  175.022891][   T28] audit: type=1326 audit(430.966:1586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11317 comm="syz.6.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x7ffc0000
[  175.029413][T11322] rtc_cmos 00:00: Alarms can be up to one day in the future
[  175.046348][   T28] audit: type=1326 audit(430.966:1587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11317 comm="syz.6.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f227d2ac629 code=0x7ffc0000
[  175.120432][   T28] audit: type=1326 audit(430.966:1588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11317 comm="syz.6.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x7ffc0000
[  175.168599][   T28] audit: type=1326 audit(430.966:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11317 comm="syz.6.2982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x7ffc0000
[  175.338549][   T28] audit: type=1326 audit(431.306:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11340 comm="syz.6.2993" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f227d2ac629 code=0x0
[  175.363677][   T28] audit: type=1400 audit(431.336:1591): avc:  denied  { ioctl } for  pid=11329 comm="syz.0.2988" path="socket:[33275]" dev="sockfs" ino=33275 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  175.439124][   T28] audit: type=1400 audit(431.386:1592): avc:  denied  { bind } for  pid=11343 comm="syz.3.2994" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  175.480550][T11349] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  175.511801][T11349] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  175.573856][T11352]  loop0: p1 p2
[  175.590400][   T28] audit: type=1400 audit(431.556:1593): avc:  denied  { read } for  pid=11351 comm="syz.0.2997" name="loop0p2" dev="devtmpfs" ino=1329 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  175.616952][T11354] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.648249][   T28] audit: type=1400 audit(431.556:1594): avc:  denied  { open } for  pid=11351 comm="syz.0.2997" path="/dev/loop0p2" dev="devtmpfs" ino=1329 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  175.673733][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.738756][T11360] set_capacity_and_notify: 8 callbacks suppressed
[  175.738781][T11360] loop3: detected capacity change from 0 to 512
[  175.765920][T11360] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  175.910451][T11372] netlink: 'syz.3.3005': attribute type 6 has an invalid length.
[  176.085208][T11387] netlink: 'syz.0.3013': attribute type 64 has an invalid length.
[  176.093414][T11387] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3013'.
[  176.107491][T11387] netlink: 'syz.0.3013': attribute type 64 has an invalid length.
[  176.115604][T11387] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3013'.
[  176.230548][T11393] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3016'.
[  176.250914][T11395] loop0: detected capacity change from 0 to 512
[  176.283535][T11395] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  176.305807][T11395] EXT4-fs (loop0): orphan cleanup on readonly fs
[  176.318908][T11395] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.3017: Block bitmap for bg 0 marked uninitialized
[  176.352517][T11395] loop0: lost filesystem error report for type 5 error -117
[  176.352730][T11395] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  176.360268][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  176.360286][    C1] EXT4-fs (loop0): initial error at time 432: ext4_read_block_bitmap_nowait:517
[  176.360314][    C1] EXT4-fs (loop0): last error at time 432: ext4_read_block_bitmap_nowait:517
[  176.394047][T11395] loop0: lost filesystem error report for type 5 error -117
[  176.395424][T11395] EXT4-fs (loop0): 1 orphan inode deleted
[  176.422265][T11395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  176.463441][T11395] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  176.520052][T11395] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  176.544548][T11395] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.3017: Block bitmap for bg 0 marked uninitialized
[  176.577512][T11395] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.3017: Block bitmap for bg 0 marked uninitialized
[  176.591137][T11395] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.3017: Block bitmap for bg 0 marked uninitialized
[  176.623304][T10516] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.651012][T11401] loop6: detected capacity change from 0 to 512
[  176.688387][T11401] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.726379][T11401] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3019: bg 0: block 217: padding at end of block bitmap is not set
[  176.814727][ T9726] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.113646][T11426] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  177.163251][T11426] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  177.366614][T11431] loop3: detected capacity change from 0 to 4096
[  177.401329][T11431] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.459177][T11448] loop0: detected capacity change from 0 to 512
[  177.527862][T11448] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.555590][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.614686][T10516] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.812594][T11463] loop6: detected capacity change from 0 to 8192
[  177.857321][T11463] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 2068)
[  177.886396][T11463] FAT-fs (loop6): Filesystem has been set read-only
[  178.028899][T11493] tipc: Started in network mode
[  178.052522][T11493] tipc: Node identity 408f72566153c97e2e, cluster identity 4711
[  178.160858][T11506] 9p: Invalid uid '0x00000000ffffffff'
[  178.347441][T11526] loop7: detected capacity change from 0 to 4096
[  178.369773][T11526] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.464955][T10158] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.806887][T11570] loop1: detected capacity change from 0 to 512
[  178.892788][T11582] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3097'.
[  178.998348][T11570] EXT4-fs (loop1): 1 orphan inode deleted
[  179.015879][T11570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.132230][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.190354][T11607] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  179.207173][T11607] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  179.426527][T11627] loop1: detected capacity change from 0 to 256
[  179.492570][T11631] loop6: detected capacity change from 0 to 128
[  179.917833][T11650] netlink: 48 bytes leftover after parsing attributes in process `syz.7.3128'.
[  180.150025][T11661] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.182317][T11661] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  180.203437][   T30] kworker/u8:1: attempt to access beyond end of device
[  180.203437][   T30] loop1: rw=1, sector=256, nr_sectors = 288 limit=256
[  180.251072][   T30] kworker/u8:1: attempt to access beyond end of device
[  180.251072][   T30] loop1: rw=1, sector=608, nr_sectors = 416 limit=256
[  180.253646][T11666] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  180.271403][   T30] kworker/u8:1: attempt to access beyond end of device
[  180.271403][   T30] loop1: rw=1, sector=1056, nr_sectors = 2184 limit=256
[  180.296473][   T30] kworker/u8:1: attempt to access beyond end of device
[  180.296473][   T30] loop1: rw=1, sector=3240, nr_sectors = 5368 limit=256
[  180.318271][T11668] EXT4-fs error (device loop0): ext4_iget_extra_inode:5025: inode #15: comm syz.0.3136: corrupted in-inode xattr: e_value out of bounds
[  180.358969][   T30] kworker/u8:1: attempt to access beyond end of device
[  180.358969][   T30] loop1: rw=1, sector=8608, nr_sectors = 22128 limit=256
[  180.393542][   T30] kworker/u8:1: attempt to access beyond end of device
[  180.393542][   T30] loop1: rw=1, sector=30736, nr_sectors = 2096 limit=256
[  180.409828][T11668] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  180.410063][T11668] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3136: couldn't read orphan inode 15 (err -117)
[  180.419260][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  180.419291][    C1] EXT4-fs (loop0): initial error at time 436: ext4_iget_extra_inode:5025: inode 15
[  180.419326][    C1] EXT4-fs (loop0): last error at time 436: ext4_iget_extra_inode:5025: inode 15
[  180.458264][T10158] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.492661][T11672] xt_hashlimit: size too large, truncated to 1048576
[  180.530866][T11668] loop0: lost filesystem error report for type 5 error -117
[  180.531721][T11668] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.654366][T10516] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.760692][T11688] set_capacity_and_notify: 3 callbacks suppressed
[  180.760859][T11688] loop1: detected capacity change from 0 to 512
[  180.851772][T11688] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  180.876791][T11688] __quota_error: 19 callbacks suppressed
[  180.876808][T11688] Quota error (device loop1): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  180.893170][   T28] audit: type=1400 audit(436.846:1614): avc:  denied  { write } for  pid=11687 comm="syz.1.3143" name="bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  180.933400][   T28] audit: type=1400 audit(436.846:1615): avc:  denied  { rename } for  pid=11687 comm="syz.1.3143" name="bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  180.953917][T11688] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  180.978494][   T28] audit: type=1400 audit(436.846:1616): avc:  denied  { reparent } for  pid=11687 comm="syz.1.3143" name="bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  181.003181][T11688] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.3143: Failed to acquire dquot type 0
[  181.048513][   T28] audit: type=1400 audit(436.846:1617): avc:  denied  { rename } for  pid=11687 comm="syz.1.3143" name="file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  181.112507][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  181.493328][T11734] loop7: detected capacity change from 0 to 8192
[  181.584109][T11742] loop1: detected capacity change from 0 to 128
[  181.614269][T11746] loop7: detected capacity change from 0 to 512
[  181.632074][T11746] EXT4-fs (loop7): 1 truncate cleaned up
[  181.643988][T11746] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.675436][T10158] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.794292][T11764] loop0: detected capacity change from 0 to 4096
[  181.805756][T11766] loop7: detected capacity change from 0 to 512
[  181.814805][T11764] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.836490][T11766] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.856118][T11764] EXT4-fs error (device loop0): ext4_get_first_dir_block:3547: inode #12: block 80: comm syz.0.3176: bad entry in directory: directory entry overrun - offset=12, inode=6, rec_len=4096, size=4096 fake=0
[  181.876433][   T28] audit: type=1400 audit(437.826:1618): avc:  denied  { remove_name } for  pid=11763 comm="syz.0.3176" name="file0" dev="loop0" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  181.908828][   T28] audit: type=1400 audit(437.826:1619): avc:  denied  { rmdir } for  pid=11763 comm="syz.0.3176" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  181.910271][T10158] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.944958][T11764] EXT4-fs error (device loop0): ext4_get_first_dir_block:3550: inode #12: comm syz.0.3176: directory missing '..'
[  181.977849][T10516] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.120871][   T28] audit: type=1400 audit(438.086:1620): avc:  denied  { ioctl } for  pid=11783 comm="syz.0.3185" path="socket:[35062]" dev="sockfs" ino=35062 ioctlcmd=0x4591 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  182.165999][   T28] audit: type=1400 audit(438.126:1621): avc:  denied  { getopt } for  pid=11783 comm="syz.0.3185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  182.354220][T11807] netlink: 176 bytes leftover after parsing attributes in process `syz.7.3195'.
[  182.628953][ T1031] IPVS: starting estimator thread 0...
[  182.635134][T11826] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  182.687329][T11836] loop6: detected capacity change from 0 to 2048
[  182.723202][T11832] IPVS: using max 2256 ests per chain, 112800 per kthread
[  182.746772][T11836] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.790994][T11836] EXT4-fs (loop6): shut down requested (2)
[  182.855805][T11796] Set syz1 is full, maxelem 65536 reached
[  182.883671][ T9726] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.903963][ T9726] ==================================================================
[  182.912122][ T9726] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru
[  182.919722][ T9726] 
[  182.922093][ T9726] read-write to 0xffff888237d26668 of 1 bytes by task 11846 on cpu 1:
[  182.930272][ T9726]  folio_add_lru+0xa4/0x1e0
[  182.934832][ T9726]  shmem_get_folio_gfp+0x7b0/0xd60
[  182.939987][ T9726]  shmem_fallocate+0x628/0x920
[  182.944814][ T9726]  vfs_fallocate+0x3b6/0x450
[  182.949446][ T9726]  __x64_sys_fallocate+0x7a/0xd0
[  182.954412][ T9726]  x64_sys_call+0x298e/0x3020
[  182.959129][ T9726]  do_syscall_64+0x12c/0x370
[  182.963765][ T9726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.969695][ T9726] 
[  182.972152][ T9726] read to 0xffff888237d26668 of 1 bytes by task 9726 on cpu 0:
[  182.979735][ T9726]  __lru_add_drain_all+0x17e/0x450
[  182.984895][ T9726]  lru_add_drain_all+0x10/0x20
[  182.989699][ T9726]  invalidate_bdev+0x47/0x70
[  182.994337][ T9726]  ext4_put_super+0x624/0x7d0
[  182.999056][ T9726]  generic_shutdown_super+0xee/0x220
[  183.004377][ T9726]  kill_block_super+0x2a/0x70
[  183.009090][ T9726]  ext4_kill_sb+0x42/0x80
[  183.013482][ T9726]  deactivate_locked_super+0x75/0x1c0
[  183.018902][ T9726]  deactivate_super+0x97/0xa0
[  183.023629][ T9726]  cleanup_mnt+0x2bb/0x330
[  183.028185][ T9726]  __cleanup_mnt+0x19/0x20
[  183.032630][ T9726]  task_work_run+0x130/0x1a0
[  183.037260][ T9726]  exit_to_user_mode_loop+0x1f4/0x6f0
[  183.042661][ T9726]  do_syscall_64+0x249/0x370
[  183.047432][ T9726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.053361][ T9726] 
[  183.055714][ T9726] value changed: 0x03 -> 0x08
[  183.060411][ T9726] 
[  183.062764][ T9726] Reported by Kernel Concurrency Sanitizer on:
[  183.068949][ T9726] CPU: 0 UID: 0 PID: 9726 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  183.080024][ T9726] Tainted: [W]=WARN
[  183.083844][ T9726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  183.094185][ T9726] ==================================================================
[  183.633189][ T3666] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  183.635103][ T4409] Bluetooth: hci0: command 0x1003 tx timeout