last executing test programs:

10.711032752s ago: executing program 3 (id=1570):
socket$inet(0x2, 0x2, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x1)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x560, 0x0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x490, 0xffffffff, 0xffffffff, 0x490, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@mcast2, 'vxcan1\x00', {0x8}}}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xfd}}, [], [0x0, 0xffffffff], 'pim6reg\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x3a0, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_virt_wifi\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x5}}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@mcast2, 'bridge_slave_0\x00', {0x53}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x5c0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, 0x0, 0x0)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$kcm(0xa, 0x922000000003, 0x11)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$vsock_stream(0x28, 0x1, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
syz_open_dev$tty1(0xc, 0x4, 0x1)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(&(0x7f0000000580)='\x98\xa8\x00\x00\x00\xa5', 0x6e93ebbbcc0884f2, 0x40, &(0x7f0000000480)={0x0, 0x6, 0x7})
mq_timedreceive(r2, &(0x7f0000000700)=""/200, 0xc8, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x38}}, 0x10)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x80005, 0x483, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_bp={0x0, 0x8}, 0x2, 0x0, 0x1000, 0x2, 0x2, 0x80000011, 0x1, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xdfffffffffffbfff, 0xffffffffffffffff, 0x9)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xff2e)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000c3707bf4000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000002100)=0xc)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mremap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x3000, 0x3, &(0x7f0000585000/0x3000)=nil)
socket$packet(0x11, 0x2, 0x300)
syz_open_procfs$namespace(0x0, &(0x7f0000001380)='ns/user\x00')

10.616142278s ago: executing program 1 (id=1571):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x800, 0xfffffff7)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
syz_io_uring_setup(0x360, &(0x7f00000004c0)={0x0, 0x77d0, 0x1, 0x1, 0x2b6, 0x0, r2}, &(0x7f0000000080), &(0x7f0000000180), &(0x7f0000000000))
r3 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
getpeername$packet(r5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000ec0)=@bpf_ext={0x1c, 0x1e, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000018310000000000000000010018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000181a0000", @ANYRES32=r2, @ANYBLOB="000000000000000018240000", @ANYRES32=r2, @ANYBLOB="000000000700000018f94307c0991100006cdd57bfe344a5e0ef7d0856ba29387891441589b7defe2f5f43a5c77ede5b19ff7b8b2ee5b8b0e081c7049b26c7f3d2f9f33c2e0a2366552cd63a3972295bc3bd7d5baf14d3a36c6b271728f1460da86527d2f92d75c60706588a4570a86ac93042567c434596ab753b0e0b0957dd928617726b6d23b10d8137e0499ddcc4f2c104cd7edd7ef151283e817ad0704b81d093c048496c416bd607e061b0b000fe7431668243d926d9dc2000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000800000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000085100000ffffffff8500000088000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000cc0)='GPL\x00', 0x0, 0x8, &(0x7f0000000d00)=""/8, 0x1e00, 0x26, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f0000000d40)={0x3, 0x3}, 0xffffff80, 0x10, &(0x7f0000000d80)={0x2, 0x9, 0x2, 0x10000000}, 0x10, 0x25a3a, 0xffffffffffffffff, 0x1, &(0x7f0000000e40)=[r2, 0xffffffffffffffff, r2, r2], &(0x7f0000000e80)=[{0x5, 0x5, 0xc, 0x4}], 0x10, 0x8}, 0x94)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="8000000010001000fcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="1111020000010000580012800800010067f265004c00028008000600ac1414bb08001500ae1e0d000500166868e27b000400120008001400e900000004001200050008000800000105000800000000088014000600000008000500", @ANYRES32=0x0, @ANYBLOB], 0x80}, 0x1, 0x0, 0x0, 0x48890}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r1)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file0\x00', 0x800090, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x6, 0x2d1, &(0x7f0000000740)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9fea01001800000000000000180000001800000006000000040000000100000508000000010000000300000001000080002e7e612e00"], 0x0, 0x36, 0x0, 0x1, 0xd96b}, 0x28)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x1000)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000480), 0x84, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX])
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000003, 0xc3072, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x20000406, &(0x7f0000000680)={[{@dioread_lock}, {@noblock_validity}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x4}}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@data_err_ignore}, {@grpjquota, 0x2e}, {@dax}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@lazytime}, {@grpid}], [], 0x2c}, 0x84, 0x4f8, &(0x7f0000001340)="$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")
quotactl_fd$Q_SYNC(0xffffffffffffffff, 0xffffffff80000102, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
pread64(r7, &(0x7f0000001240)=""/102400, 0x19000, 0x1000000300)
ioctl$TCSBRKP(r6, 0x5425, 0x8)
r8 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)
writev(r8, &(0x7f0000000080)=[{&(0x7f0000000040)="aefdda9d242003005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
r9 = open(&(0x7f0000000080)='./file0\x00', 0x400002, 0x2)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)={<r10=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r9, 0x40082102, &(0x7f0000000180)=r10)

10.012906979s ago: executing program 4 (id=1576):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x47, 0x1, 0x0, 0xfe, 0x0, 0x3, 0x40052, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x528, 0x1, @perf_config_ext={0x2, 0x3}, 0x419, 0x40000000, 0x0, 0x8, 0x103fb, 0x1fb, 0x1ff, 0x0, 0x10000000, 0x0, 0x400000000000007}, 0x0, 0x1, 0xffffffffffffffff, 0xb)
munlock(&(0x7f0000ffd000/0x1000)=nil, 0x1000)

9.978800465s ago: executing program 4 (id=1578):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = socket(0x2, 0x80805, 0x0)
r3 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000000)={<r6=>0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000100)={r6}, 0x8)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340)=<r7=>0xffffffffffffffff, 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r4, r4], 0x2, {r3}}, 0x58)
ioctl$XFS_IOC_FSGROWFSRT(r7, 0x40105870, &(0x7f0000000740)={0x9})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@max_batch_time={'max_batch_time', 0x3d, 0x101}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r8, &(0x7f0000004200)='t', 0x1)
sendfile(r8, 0xffffffffffffffff, 0x0, 0x3ffff)
sendfile(r8, 0xffffffffffffffff, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

9.857181156s ago: executing program 3 (id=1579):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket(0x2, 0x80805, 0x0)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000000)={0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340)=<r4=>0xffffffffffffffff, 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r3, r3], 0x2, {r2}}, 0x58)
ioctl$XFS_IOC_FSGROWFSRT(r4, 0x40105870, &(0x7f0000000740)={0x9})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@max_batch_time={'max_batch_time', 0x3d, 0x101}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$eJzs3c9vFFUcAPDv7LalpWALMSoepIkxkCgtLWCI8QBXYxr8ES9erLQgoUDT1mjRhJLgxcR4McbEkwfxv1AiV0960YMXT4aEqOFo4prZ7vTnbH8s7Q4wn0+y7My8ebw3LN++t6/vzQRQWgPpH5WIAxExlUT0JfOLaR3RSBxYOO/ePx+fTV9J1Gpv/JVE0jiWnZ803nsbmbsj4ucfk9hfXVvuzNzVi2OTkxPTjf2h2UtTQzNzV49cuDR2fuL8xOWRF0dOnjh+4uTw0Zau69raQ2l1Puj7dPTtb7/+Nxn+7vfRJE7FK40Tl1/HdhmIgfq/SbI2qffkdhdWkGrj/8nyjzjpKLBCbEn2+XVGxJPRF9VY+vD64pPXCq0csKNqSUQNKKlE/ENJZf2A7Lv96u/BlUJ6JUA73D29MACwNv47FsYGo7s+NrD7XhLLh3WSiGhtZG6lPRHx0+3RG+duj96Y3rsz43BAvvnrEfHUsvjvylKSevz3R3f01+O/siL+037BmcZ7evz1FstfPVQs/qF9FuK/O6f9X4r/aBL/7yyL/3dbLH9gafO9nhXx39PqJQEAAAAAAEBp3TodES/kzf+pLM7/iZz5P70RcWobyh9Ytb/29/+VO9tQDJDj7umIl3Pn/1aiujD7t7/a+D3/3vp8gM7k3IXJiaMR8VhEHI7OXen+8DplHPls/1fN0gYa8/+yV1p++r50RuVOx66VecbHZsfu97qBiLvXI57Onf+bLLb/SU77n/48mNpkGfufu3mmWdrG8Q/slNo3EYdy2/+lu1Yk69+fY6jeHxjKegVrPfPR5983K7/V+HeLCbh/afu/e/3470+W369nZutlHJvrqDVLa7X/35W8Wb/lTLZc4cOx2dnp4Yie5NVqenTF8ZGt1xkeRVk8ZPGSxv/hZ9cf/8vr//dExPyqvzv5e+Wa4swT//X+0aw++v9QnDT+x7fU/jfdSOYjcpNGbvb/0Kz8zbX/x+tt/eHGEeN/sODLLEy7Vh7PCdCOvKR21xcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgWViNgTSWVwcbtSGRyM6I2Ix2N3ZfLKzOzz5668f3k8Tas//7+SPem3b2E/yZ7/379sf2TV/rGI2BcRX1R76vuDZ69Mjhd98QAAAAAAAAAAAAAAAAAAAPCA6G2y/j/1Z7Xo2gE7rqPoCgCFyYn/X4qoB9B+2n8oL/EP5SX+obzEP5SX+IfyEv9QXuIfykv8AwAAAADAI2XfwVu/JREx/1JP/ZXqaqR1FlozYKdViq4AUBi3+IHyMvUHyst3fCDZIL27aaaNcjbLnJo6u3FmAAAAAAAAAAAAACBz6ID1/1BW1v9DeVn/D+WVrf8/WHA9gPZr+Tt+0zW9wMNovZX8zcN9E+v/AQAAAAAAAAAAAIBtMTN39eLY5OTEdPs2fm089Cv3nJ6IaHN9so23iii02I1arXat/lE8IPV5yDeyqfCbz9WdHwU7s5Gt9dtcroJ+IAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGv8HwAA//+xpBxA")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r6, &(0x7f0000004200)='t', 0x1)
sendfile(r6, r5, 0x0, 0x3ffff)
sendfile(r6, r5, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

8.947078298s ago: executing program 1 (id=1580):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$vcsn(&(0x7f0000000040), 0x1, 0x228a00)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000080)={0xa}, 0x1)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xfdef, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

8.924210672s ago: executing program 1 (id=1581):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = socket(0x2, 0x80805, 0x0)
r3 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000000)={<r6=>0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000100)={r6}, 0x8)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340), 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r4, r4], 0x2, {r3}}, 0x58)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@max_batch_time={'max_batch_time', 0x3d, 0x101}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r8, &(0x7f0000004200)='t', 0x1)
sendfile(r8, r7, 0x0, 0x3ffff)
sendfile(r8, r7, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

8.592917568s ago: executing program 0 (id=1584):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0xf241f1a146326c4, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x200008, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x4580, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x3, 0xffffffffffffffff, 0x1)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f00000005c0)=ANY=[@ANYBLOB='utf8,uid=', @ANYRESHEX=0x0, @ANYBLOB=',\x00\x00\x00\x00\x00\x00\x00\x00al,nocompress,showassoc,map=acorn,map=normal,block=0x0000000000000800,utf8,map=off,dmode=0x0000000000009fbc,iocharset=default,fowner<', @ANYRESDEC=0x0, @ANYRES32], 0x2, 0xa2f, &(0x7f0000000ec0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xfffffdff, 0x0, 0x0, 0x41100, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x43201, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x1, 0xd}, 0x640, 0x5, 0x0, 0x8, 0x2, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r3)
kexec_load(0xfffffffffffffffc, 0x1, &(0x7f0000000900)=[{0x0, 0x0, 0x200400000}], 0x0)

8.254907624s ago: executing program 2 (id=1585):
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x4, 0x20da, 0x5, 0xa, 0x8, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe468}, 0x94)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
ioctl$int_in(r2, 0x5452, &(0x7f0000000000)=0x97b7)
ppoll(&(0x7f0000001940)=[{r2, 0xf5}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1, 0x0, 0x10000000, 0x0, 0x4}}, @TCA_ACT_BPF_FD={0x8, 0x5, r1}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0xa25bb844b084a7a1}, 0x3000000)

8.069176656s ago: executing program 2 (id=1586):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x5, 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x40f00, 0x29, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bind$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e20}, 0x15)
connect$unix(r1, &(0x7f0000000580)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, 0x0, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, 0x0, 0x4)
socket$packet(0x11, 0x3, 0x300)
r4 = socket$unix(0x1, 0x1, 0x0)
accept4$unix(r4, 0x0, 0x0, 0x80800)
syz_clone3(&(0x7f00000011c0)={0x80000, &(0x7f0000000000), &(0x7f0000000300)=<r5=>0x0, &(0x7f0000000480), {0x4}, &(0x7f00000006c0)=""/186, 0xba, &(0x7f00000010c0)=""/191, &(0x7f0000001180)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0xa}, 0x58)
ptrace$getregset(0x4204, r5, 0x201, &(0x7f0000001340)={&(0x7f0000001240)=""/222, 0xde})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000680)='./file0\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nobarrier}, {@jqfmt_vfsv0}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
symlink(&(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000580)='./file0/file0/..\x00')
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r6, 0x2e0, 0x12c, 0x60000004, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x0, 0x25, &(0x7f0000000040)="ded6e0966ec1cf6ba4b897a54e4e062b311453dcbb62932a01105d0a8066ca8e5e1f2f575d0d6e996b57fd408d420abb7337934e59815d75b4eb3e7206afce", &(0x7f0000000380)="af5fa441b438b5156d8a9fcc090f586e979858f64170cde36889dcc8539ffcca62621a4c3ea3f7acee366e6fb0b94314f90931dec60fed6c9fee64af416c29f65e47110b81f6b4da06db5e1aad1f627acb", 0x0, 0x3}, 0x2c)

7.787828013s ago: executing program 4 (id=1587):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
mount$9p_fd(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x2000090, 0x0)
r1 = creat(&(0x7f0000000000)='./file2\x00', 0x149)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file2\x00', &(0x7f00000000c0), &(0x7f0000000080)=ANY=[], 0xfe37, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000080)='./file1\x00', &(0x7f0000000140), 0x0, 0x0, 0x2)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000180))
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)

7.636560108s ago: executing program 3 (id=1588):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@enum64={0x13, 0x0, 0x0, 0x13, 0x1, 0x1}]}, {0x0, [0x61, 0x5f, 0x5f, 0x2e]}}, 0x0, 0x2a, 0x0, 0x9}, 0x28)

7.44526923s ago: executing program 2 (id=1589):
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000800)="21ae1baf930b4569b9ddef9797ffd935c7d80e6466b3e4e62dc9603583f5d4b61fbc65b6ac744d7319535e75bf552062e4cfde1ba7ce29263322e18ea9740aa82ca692f123993e57cda00d2b1f4e799bd41e3f76258180fa91a42aaa8b1ebc4e0ea8fb12f2c71e6e5bc57a8e91f254005514721d93c13c5606ae1fea7f31f558d562bd5a8dfb0b9fed873efa221fccffa847cd374c92e6cbb03e6a9de890ce323f000000abcc6c01326d", 0xaa}, {&(0x7f0000000bc0)="ab29d92826349952eb8f7a2a74f535bc9739c1df57144c51a3391625b8b5354134b06ef1355506aeae96e3f097503998f375a054cf3d7de4fe53ea51518955349cdbadca60e1c65cc18dbe99369be03e492fb55fc9067bb6f7f7c3ee1720000000054a63ac58225ed0502f5ac8999e0c74a5dbb320bd54ec813e8bee6bfa5cbfb0726ac1b6ad97d802d5fae186f0769421fb965c7396854e2a3ac844a3769f8449901ba5e2b2da1ff6119aeb26ac204cfc6b54be73b6f195491ae2c0cb26b0cba61dae7a17740e8112ff188919c6e2e31a2a074863edba4a0e58b61faec4a42c29d7f9e48a", 0xe5}, {&(0x7f00000005c0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7", 0x26}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, 0x0)

7.444993541s ago: executing program 3 (id=1590):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0xf241f1a146326c4, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x200008, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x4580, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x3, 0xffffffffffffffff, 0x1)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f00000005c0)=ANY=[@ANYBLOB='utf8,uid=', @ANYRESHEX=0x0, @ANYBLOB=',\x00\x00\x00\x00\x00\x00\x00\x00al,nocompress,showassoc,map=acorn,map=normal,block=0x0000000000000800,utf8,map=off,dmode=0x0000000000009fbc,iocharset=default,fowner<', @ANYRESDEC=0x0, @ANYRES32], 0x2, 0xa2f, &(0x7f0000000ec0)="$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")
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x43201, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x1, 0xd}, 0x640, 0x5, 0x0, 0x8, 0x2, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r3)
kexec_load(0xfffffffffffffffc, 0x1, &(0x7f0000000900)=[{0x0, 0x0, 0x200400000}], 0x0)

6.569384668s ago: executing program 0 (id=1591):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f0000000280), 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000d00)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}, {&(0x7f0000000400)="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", 0x10c}, {0x0}], 0x4, 0x0, 0x0, 0x10}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000680)=0x1, 0x4)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x40)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000034c0)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x7}], 0x2, 0x20000020, 0x0)

6.568980387s ago: executing program 1 (id=1592):
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x903d01)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1f, 0x87010, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6f, 0x4, @perf_bp={0x0, 0xe}, 0x10c0e8, 0x0, 0x0, 0x3, 0x6, 0x7, 0x7fff, 0x0, 0xfffffffe, 0x0, 0x200000000}, 0x0, 0xff67bfffffffffff, 0xffffffffffffffff, 0x1)
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x10000, 0xffffffffffffffff, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='tmpfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2a402b, &(0x7f00000000c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x32]}}, {@size={'size', 0x3d, [0x33]}}]})
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000540)='.log\x00', 0x1c10c1, 0x9c37611dc13d0db7)
fchown(r5, 0x0, 0xee01)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_bp={0x0, 0x8}, 0x2, 0x0, 0x10ffe, 0x0, 0x2, 0x80000011, 0x6, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0xb)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, 0x0, &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x12, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, @in=@remote, 0x0, 0x400, 0x1000, 0x0, 0x2, 0x20, 0x10, 0x84}, {}, {0x0, 0x4000000000000}}}, 0xb8}}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x47ba, 0x3e82, 0x60, 0x0, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0x1, 0x1, 0x107fff, 0x10, 0x4, 0x9, 0xa4, 0xffb, 0x7, 0xb6b, 0x800c1, 0x4, 0x1, 0x3, 0x9, 0xff, 0x1000, 0xc, 0x3, 0x3, 0x80000001, 0xfffffffa, 0x0, 0x1, 0x9, 0x4, 0x7, 0x5, 0x100000, 0x762, 0x3, 0x63c, 0xe, 0x4, 0x100, 0x6, 0x1bfe, 0xb, 0x9, 0x40bed4, 0x8, 0x8000100, 0x3, 0x0, 0x11000, 0x8, 0x5, 0x79b, 0x5, 0x5, 0x7f, 0x4, 0xa, 0x7, 0xf, 0x101, 0xa, 0x1fa0860b, 0x7, 0xc, 0x81, 0x2, 0x180000, 0x4003, 0x8b, 0x5, 0x2af, 0x6, 0x5, 0x2, 0x1, 0x9, 0x4, 0x7, 0x4009, 0x0, 0x2, 0x100002, 0x8, 0x752, 0x0, 0x3, 0x0, 0x10000, 0x3f6, 0xffffffff, 0x6, 0x6, 0x9, 0x80000000, 0xfdffffff, 0x2, 0xfffffffe, 0x84, 0x100, 0x5, 0x252, 0x81, 0xb, 0x4, 0x20006, 0xc50, 0x2, 0xb, 0x2, 0xd9a, 0xc8, 0x6, 0xfffffffd, 0x3, 0x2, 0x5, 0x8, 0x0, 0x4, 0x2, 0x40, 0x8, 0x4, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x5, 0x1fc, 0x1ff, 0xffffffff]}})
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="640008001000030528bd70040000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000700000000440012800b0001006272696467650000340002800c00230006000000000000000c002100030000000000000005002500010000000500170001000000080024"], 0x64}}, 0x4000040)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000340)="2e00000010008188e6b6ffffff7fcc9f0ba1f848390000005e7b034c635600000e000a00100000000280000094", 0x69}], 0x1}, 0x24048800)

6.568705898s ago: executing program 2 (id=1593):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0xf241f1a146326c4, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x200008, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x4580, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x3, 0xffffffffffffffff, 0x1)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f00000005c0)=ANY=[@ANYBLOB='utf8,uid=', @ANYRESHEX=0x0, @ANYBLOB=',\x00\x00\x00\x00\x00\x00\x00\x00al,nocompress,showassoc,map=acorn,map=normal,block=0x0000000000000800,utf8,map=off,dmode=0x0000000000009fbc,iocharset=default,fowner<', @ANYRESDEC=0x0, @ANYRES32], 0x2, 0xa2f, &(0x7f0000000ec0)="$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")
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xfffffdff, 0x0, 0x0, 0x41100, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r3)
accept(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
kexec_load(0xfffffffffffffffc, 0x1, &(0x7f0000000900)=[{0x0, 0x0, 0x200400000}], 0x0)

6.159153676s ago: executing program 0 (id=1594):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="240000001800010900000000ff9bdf2502180000ff0000080000000208000100ac1414"], 0x24}}, 0x0)

5.168208923s ago: executing program 0 (id=1595):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0xf241f1a146326c4, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x200008, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x4580, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x3, 0xffffffffffffffff, 0x1)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f00000005c0)=ANY=[@ANYBLOB='utf8,uid=', @ANYRESHEX=0x0, @ANYBLOB=',\x00\x00\x00\x00\x00\x00\x00\x00al,nocompress,showassoc,map=acorn,map=normal,block=0x0000000000000800,utf8,map=off,dmode=0x0000000000009fbc,iocharset=default,fowner<', @ANYRESDEC=0x0, @ANYRES32], 0x2, 0xa2f, &(0x7f0000000ec0)="$eJzs3c9vHGf5APBn1nbiuFWStvn2W6K2nqQkdVvjrG2aYPUAjnftbLG9yHakRBya0jgoiqHQgtRWSKQS4oCoQAJx4VZx4lSpF3pBvcENLnBAQv0XKk7hZDSzu/bau+u1Xcd208/H2t358cz7PvNj581OducNPl9WT2wYW13NH7scv/rHfciYQ+xy6ZP3P3gve7x7N45ET7yY/CmiPyLSiN6IeCKib6q0UJ3rUtCdiBsR8XFEEhFHo/a6LTci+VU8vD7+cSS/z+rt6Mh2S6abVb7QDvr4AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAwyiZKhWLo8mRqMxfvZbWRKQtpkoL1SRWV1vnNJap+Sjv9Tv56BcPdak3Iske0d/f6Or7iVPrsx+PiPRsPFkbezLvkDz6452HHj/50mO9hcbynbL5TI52KLYnWjbMm2+/c+fVlZXlN3ZYRf9ucztkZsrzlcVqZW5yppxWFqvpxMWLxQtXphfT6cpsefH64lJ5Lp1aKE8uVRfSoann0tGJifG0PHK9enV+pjQyW25MvPSVsWLxYvryyLfKkwuL1fkLL48sTl2pzM5W5mfymGx2FnMpOxC/WVlKl8qTc2l66/bK8vimnFp2UxY02m1NsqCxbkFjxbGx0dGxsdF3671nr024+OLEi5eKxd7iJtEScZ8OWg6XY5138/04jcOuFGrtf8RsVGI+rsa1SNv+TUUpFqIacx3m1zXa/3MXylvW29z+11v53qbZp7Ons/F0fbS/Q/vfIZf9+3sz3o534k68GiuxEsvxxoFn1PqX7ZEO84591rJnohzzUYnFqEYl5mIyn5LWp6QxERfjYhTjlbgSg7EYaUxHJWajHItxPRZjKcr5ETUVC1GOyViKaixEGkMxFc9FGqMxERMxHmmUYySuRzWuxnzMRCkm81Juxe18u49vkeNa0Oh2gsa2CGppzHfc/pdb/w3JF8zen8Rhl1br7f+R7qFDU/uREAAAALDnvvTXOH7q0b/8OyKJp/Lr8tOV2XLxoNMCAAAA9lASScST2VNfNvpUJD7/AwAAwIMmyX9jl0TEQAzWhhq/hHIRAAAAAB4Q+e16no5kcH2Cz/8AAADwgFm7x37tSsDaPXav9TSmdr0LfzLcuP1verP2erMeUS9iYLoyWx6Zqs6+NBrn87sM5L80aCmtJyLpy39+8HycqUWdGYi72evAeolZnf1Z1OjIS6PxfJytr8jQM9nLM0NtIsdqkc/WIp9tjuyJDZHjWSQAPOjObtEe1+6x3739fz6GaxHDp/Mmv/d0mza4qGUFgMNirY+d/9a7NGvT/tcjnu7U/n91i8//WcSjcWuw9pWCkXgtXo+VuBnDUf/GwWC7Uhu9EdS+hjDcdDUgt+lqwED9Kwt/v1SI4ZbrAf1r69ocuxxjMVy/InCsPr9+7SBZi00aOYzXAnruww4AgANwdst2eHvt/3CXz/8DvlIIAIfKWg/22x3IFtp2cG3goNcRANhIKw0AAAAAAAAAAAAAAAAAAAAAAAAAAAB7b1s38P/b+YiVleWInXYWsIOBk5un9O8kw60HCnF/cm4z0Hv/q9hqoGfnvTNsc+AfXWO+HjsuOdvHB7OhDHQbOOATEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPsiiehpN71wNH8pRsSF/c7pfrp70AnslXR3iyX34l68Fcf3Oh0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAgC+6+v3/C1F7fag2KXoLEeci4kZEfPugc9xL9w46gQPzvfy56f7/hYi+WE2it7bbI+mbKi1U57LdnxzN5n/y/gfvZY/uZbf2qpB3H1HY1LlEvYamKX0bl3okX2qgtPzmnR+9/oO0dDk/MC8vTc+W5mYWvrEe+HjyYa0LhOZuEBr5/uTcn3/dNPlIvfIPszVtb3O903m9pdZ6/7/d0h3q3YbbK8tjWU1L5WtLP/7+7beaZj0aZyKeGYoY2ljTd7NHh5rObN6eGyWfJj9Pjsfv4ka+/7Otkawm2S46ka//sVu3V5ZHXnt95eZaTj/dkNPJGIyImxH9289pMD+ftJUfdYW+rNZiHpQ9nepS3paaShztsF0fyQ+ZgR2tQ9p5HXL5du94cDUyGm+b0W9++Fic3/GePr/1nm4v+TT5V3Il/hk/a+r/o5Dt/3PR9t3Zpog8sulIaZ63YQsUapH5mo81z3hlc5lbbDj23C/jO/G1tf1faDr/1/fV/pyPmmps/76I2Pn74g8nWlqUdXmLdGpTi1Q/+7RdoH8tz1O1qA55/l+8ENF7ekdnlBe6nFH2/v1fr+/uUPwn7ur/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOPySiJ520wsR5yLiZEScyMbTiNXNMXd3UV9hINlNmntmNzkfZklv26lNK7pxjZN7cS/eiuP7kBoAAAAAAAAA++By6ZP3P3gve+T/H98TXy7U56QRvRFxMvlt31RpoTrXpaC+iBuN/9Lv31kON7Knh9fHP87Gnuiy0MF+fQAAPtf+FwAA//822GxX")
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xfffffdff, 0x0, 0x0, 0x41100, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r3)
accept(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
kexec_load(0xfffffffffffffffc, 0x1, &(0x7f0000000900)=[{0x0, 0x0, 0x200400000}], 0x0)

4.009163437s ago: executing program 4 (id=1596):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="170000000000000000000000070000004408fc5cad8c00001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac141412ac1e000100000000"], 0x38}, 0x4000004)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee01}}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001240)='/proc/keys\x00', 0x0, 0x0)
getsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000016c0), &(0x7f0000001740)=0x14)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc0049364, 0x0)
r3 = perf_event_open$cgroup(&(0x7f0000000400)={0x2f26dc29e83cb238, 0x80, 0x4, 0xb, 0x3, 0x3, 0x0, 0x10000, 0x100, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_bp={0x0, 0x8}, 0x2, 0x8, 0xe2da, 0x6, 0x7, 0x8, 0xba, 0x0, 0x9, 0x0, 0x8000000000000000}, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0x6)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x89480, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x9, 0x3}, 0x0, 0xa88, 0x8406, 0x9, 0x0, 0x3c, 0xffff, 0x0, 0x0, 0x0, 0x46}, 0x0, 0xffbfffffffffffff, r3, 0x9)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x1}, 0x5020, 0x0, 0x8, 0x2, 0x2, 0x3f, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x1, 0x2c9, &(0x7f00000005c0)="$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")
r4 = socket$inet6(0xa, 0x3, 0x6)
sendto$inet6(r4, 0x0, 0x0, 0x8000, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x1c3)
socket$nl_netfilter(0x10, 0x3, 0xc)
unshare(0x6020400)
socket(0x22, 0x3, 0x3)
ioctl$SG_SET_KEEP_ORPHAN(0xffffffffffffffff, 0x2287, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
read$hiddev(r1, &(0x7f00000000c0)=""/4092, 0xffc)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

3.853264333s ago: executing program 3 (id=1597):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket(0x2, 0x80805, 0x0)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = getpid()
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000000)={0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340)=<r4=>0xffffffffffffffff, 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r3, r3], 0x2, {r2}}, 0x58)
ioctl$XFS_IOC_FSGROWFSRT(r4, 0x40105870, &(0x7f0000000740)={0x9})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@max_batch_time={'max_batch_time', 0x3d, 0x101}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r6, &(0x7f0000004200)='t', 0x1)
sendfile(r6, r5, 0x0, 0x3ffff)
sendfile(r6, r5, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

2.476040895s ago: executing program 2 (id=1598):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket(0x2, 0x80805, 0x0)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000000)={0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340)=<r4=>0xffffffffffffffff, 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r3, r3], 0x2, {r2}}, 0x58)
ioctl$XFS_IOC_FSGROWFSRT(r4, 0x40105870, &(0x7f0000000740)={0x9})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@max_batch_time={'max_batch_time', 0x3d, 0x101}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r6, &(0x7f0000004200)='t', 0x1)
sendfile(r6, r5, 0x0, 0x3ffff)
sendfile(r6, r5, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

2.407428416s ago: executing program 1 (id=1599):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket(0x2, 0x80805, 0x0)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000000)={0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340)=<r4=>0xffffffffffffffff, 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r3, r3], 0x2, {r2}}, 0x58)
ioctl$XFS_IOC_FSGROWFSRT(r4, 0x40105870, &(0x7f0000000740)={0x9})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@max_batch_time={'max_batch_time', 0x3d, 0x101}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r6, &(0x7f0000004200)='t', 0x1)
sendfile(r6, r5, 0x0, 0x3ffff)
sendfile(r6, r5, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.491758s ago: executing program 0 (id=1600):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x2010, 0xffffffffffffffff, 0xb3c13000)
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x1403, 0xfe, 0x70bd2a, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="2e00000011008b88040f80ee59acbc04130800480f0000005e2900421803001825800000000000000280000c0012", 0x2e}], 0x1}, 0x0)
syz_read_part_table(0x104b, &(0x7f0000001080)="$eJzsz7ENwjAUBNBLSEAwCzUzsEDmiViHwShp6fjIUeiogeK9wtJZd5YcfuqYbbLL/p3n5DDksqZHVVXfjx+G3a2d5yFJLZI+yZhs2oOLdlH305RubbVdqvKseSlM12/8EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+3SsAAP//iicZfA==")
close(r1)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendto$packet(r0, &(0x7f00000002c0)="05031600d3fc141200004788031c09", 0xf, 0x4, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

1.37420328s ago: executing program 4 (id=1601):
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000800)="21ae1baf930b4569b9ddef9797ffd935c7d80e6466b3e4e62dc9603583f5d4b61fbc65b6ac744d7319535e75bf552062e4cfde1ba7ce29263322e18ea9740aa82ca692f123993e57cda00d2b1f4e799bd41e3f76258180fa91a42aaa8b1ebc4e0ea8fb12f2c71e6e5bc57a8e91f254005514721d93c13c5606ae1fea7f31f558", 0x80}], 0x1, 0x0, 0x0, 0x900}}], 0x1, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x179}, {&(0x7f0000000280)=""/85, 0x14c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x188}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1.335503116s ago: executing program 4 (id=1602):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = socket(0x2, 0x80805, 0x0)
r3 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000000)={<r6=>0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000100)={r6}, 0x8)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340), 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r4, r4], 0x2, {r3}}, 0x58)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@max_batch_time={'max_batch_time', 0x3d, 0x101}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r8, &(0x7f0000004200)='t', 0x1)
sendfile(r8, r7, 0x0, 0x3ffff)
sendfile(r8, r7, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

1.19294565s ago: executing program 0 (id=1603):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000500)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0xf241f1a146326c4, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x200008, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x4580, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x3, 0xffffffffffffffff, 0x1)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xfffffdff, 0x0, 0x0, 0x41100, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x43201, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x1, 0xd}, 0x640, 0x5, 0x0, 0x8, 0x2, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r3)
kexec_load(0xfffffffffffffffc, 0x1, &(0x7f0000000900)=[{0x0, 0x0, 0x200400000}], 0x0)

1.171930224s ago: executing program 3 (id=1604):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x2}, {}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@rand_addr=' \x01\x00', 0x2, 0x32}, 0xa, @in6=@private1, 0x0, 0x4}]}]}, 0xfc}}, 0x0)
connect$inet(r2, &(0x7f0000000280)={0x2, 0xfffd, @multicast1}, 0x10)
sendmmsg$inet(r2, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r5=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xd}, {0xffff, 0xffff}, {0xb, 0x8}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0xf, 0x5, 0xfffffff9}}}}]}, 0x44}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000880)={0x20, r7, 0x1, 0x4, 0x0, {0x10}, [@ETHTOOL_A_COALESCE_HEADER={0x4}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_LOW={0x8, 0xf, 0x80000001}]}, 0x20}}, 0x0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x14, r7, 0x200, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x8891)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r8)
name_to_handle_at(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18400, &(0x7f0000000000)=ANY=[], 0x8, 0x2ef, &(0x7f00000007c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='io.stat\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00800, &(0x7f0000000100)={[{@nobarrier}]}, 0x11, 0xbac, &(0x7f0000000c00)="$eJzs3M1rXOUaAPDnnEy+c5v0crn3tggGpCqK07QpFbpqXYsKunDZmExKyPTDJIIJXaR1ry5EXBSkf4Lg3m5cCS7qQutfUMQiRTdtFyNnPtKxk5nGdGaOSX8/eHPe97wn8zxPTmfOe2BOA3hqTWc/0ohDEXE2iZis708jYqjaG4nYrB13/+7l+awlUam8/VsSSUTcu3t5vvFaSX07Xh+MRMTN15L490etcVfXN5bnyuXSSn18dO38paOr6xuvLJ2fO1c6V7pwYvbVE7MnZ2e7WOvtS+998cwPbzx/9frHM29+fuC7JE7HRH2uuY5umY7prb9Js0JEzHU7WE4G6vU015kUckwIAICO0qY13H9jMgbi4eJtMr79MdfkAAAAgK6oDERUAAAAgH0ucf8PAAAA+1zjewD37l6eb7R8v5HQX3fORMRUrf7G8821mUJsVrcjMRgRY78n0fxYa1L7tSc2nUX6+vtS1qJHzyF3snklIv6/3flPqvVPVZ/ibq0/jYiZLsSffmS8l+o/3YX4edcPwNPpxpnahaz1+pdurX9im+tfYZtr127kff1rrP/ut6z/HtY/0Gb999YOYxx+8NLNdnPN6793P/l5IYufbZ+oqL/hzpWIw4Xt6k+26k/a1H92hzHG529fazeX1Z/V22j9rr9yPeJIdTXXWn9D0un/Jzq6uFQuzdR+bvP66yc7x28+/1nL4jfuBfohO/9jsbvzf2mHMab+9+uhdnOPrz/9ZSh5p9obqu/5cG5tbeVYxFDyeuv+451zaRzTeI2s/hef6/z+367+7DNhs/53yP71XKlvs/HVR2KOHzn+1e7r762s/oVdnv9Pdxjjy2+uvd9uLu/6AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANgb0oiYiCQtbvXTtFiMGI+I/8RYWr64uvby4sUPLixkcxFTMZguLpVLMxExWRsn2fhYtf9wfPyR8WxEHIyIzyZHq+Pi/MXyQt7FAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsGU8IiYiSYsRkUbEH5NpWizmnRUAAADQdVN5JwAAAAD0nPt/AAAA2P9a7v8LfxmN9DMXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9qWDz964lUTE5qnRassM1ecGc80M6LV0Z4eN9ToPoP8G8k4AyE2hqV+pVCo5pgL0mXt8IHnM/EjbmeGu5wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAP9cLh27cSiJi89RotWWG6nODuWYG9FqadwJAbgY6TSaP3QHsYYW8EwBy4x4fqK3sH1RqWudH2v7m8BNHBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDvmKi2JC1GRFrtp2mxGPGviJiKwWRxqVyaiYgDEfHT5OBwNj6Wd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB03er6xvJcuVxa0dHR6WJnNPoWa7T+Zm5zzHD7qQ6dnD+YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADIxer6xvJcuVxaWc07EwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACBvq+sby3Plcmmlh528awQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID9/BgAA///GyAmy")
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

46.292883ms ago: executing program 1 (id=1605):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = socket(0x2, 0x80805, 0x0)
r3 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000000)={<r6=>0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000100)={r6}, 0x8)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340)=<r7=>0xffffffffffffffff, 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r4, r4], 0x2, {r3}}, 0x58)
ioctl$XFS_IOC_FSGROWFSRT(r7, 0x40105870, &(0x7f0000000740)={0x9})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x3ffff)
sendfile(r9, r8, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

0s ago: executing program 2 (id=1606):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040), 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = socket(0x2, 0x80805, 0x0)
r3 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000000)={<r6=>0x0, 0x3e, "2b990d3f27f0e7a183c201353c3b5922dbf6642224950ed948a0aaeec9456e8cfba465b62ef69527b010f23314ee7a2270817b667d5b450fed345a794cae"}, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000100)={r6}, 0x8)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_clone3(&(0x7f00000006c0)={0x81000000, &(0x7f0000000340), 0x0, &(0x7f00000003c0), {0x41}, &(0x7f0000000400)=""/1, 0x1, &(0x7f00000004c0)=""/230, &(0x7f0000000680)=[r4, r4], 0x2, {r3}}, 0x58)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000000)={[{@max_batch_time={'max_batch_time', 0x3d, 0x101}}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x7}}]}, 0x1, 0x5fd, &(0x7f00000006c0)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r8, &(0x7f0000004200)='t', 0x1)
sendfile(r8, r7, 0x0, 0x3ffff)
sendfile(r8, r7, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

kernel console output (not intermixed with test programs):

root:sysadm_r:sysadm_t pid=7428 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  272.724309][   T28] audit: type=1326 audit(1776087156.708:4539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  272.772668][ T7421] EXT4-fs warning (device loop3): ext4_multi_mount_protect:394: Unable to create kmmpd thread for loop3.
[  272.863699][   T28] audit: type=1326 audit(1776087156.708:4540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  272.888981][   T28] audit: type=1326 audit(1776087156.708:4541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  272.914183][   T28] audit: type=1326 audit(1776087156.708:4542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.2.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  272.946264][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  273.255458][ T7439] loop1: detected capacity change from 0 to 256
[  273.353633][ T1696] Bluetooth: hci0: Frame reassembly failed (-84)
[  273.431783][ T7447] loop0: detected capacity change from 0 to 2048
[  273.500406][ T7447] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.519171][ T7451] loop3: detected capacity change from 0 to 1024
[  273.589453][ T7451] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  273.597944][ T7451] System zones: 0-1, 3-36
[  273.602990][ T7451] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.1178: bad orphan inode 134217728
[  273.614111][ T7451] loop3: lost filesystem error report for type 5 error -117
[  273.667520][ T7451] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  273.682464][ T7447] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.872253][ T7461] loop1: detected capacity change from 0 to 256
[  273.908543][ T7455] loop2: detected capacity change from 0 to 128
[  273.954725][ T7455] vfat: Unknown parameter ''
[  274.290449][ T7469] 9p: Bad value for 'rfdno'
[  274.299276][ T7469] loop1: detected capacity change from 0 to 512
[  274.331029][ T7469] EXT4-fs: quotafile must be on filesystem root
[  274.452042][ T7471] loop0: detected capacity change from 0 to 1764
[  275.369921][ T3529] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  275.370468][ T7328] Bluetooth: hci0: command 0x1003 tx timeout
[  275.458164][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.567045][ T7481] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  275.588011][ T7483] set_capacity_and_notify: 2 callbacks suppressed
[  275.588028][ T7483] loop4: detected capacity change from 0 to 256
[  275.643498][ T7481] ext4 filesystem being mounted at /224/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  275.938302][ T1696] Bluetooth: hci0: Frame reassembly failed (-84)
[  275.967878][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  275.988921][ T7493] loop1: detected capacity change from 0 to 1024
[  276.000527][ T7493] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  276.008701][ T7493] System zones: 0-1, 3-36
[  276.016149][ T7493] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1190: bad orphan inode 134217728
[  276.027630][ T7493] loop1: lost filesystem error report for type 5 error -117
[  276.029898][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  276.038701][ T7495] netlink: 'syz.4.1193': attribute type 29 has an invalid length.
[  276.043881][    C1] EXT4-fs (loop1): initial error at time 1776087160: ext4_orphan_get:1423
[  276.043911][    C1] EXT4-fs (loop1): last error at time 1776087160: ext4_orphan_get:1423
[  276.064425][ T7495] netlink: 'syz.4.1193': attribute type 29 has an invalid length.
[  276.070491][ T7493] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.145125][ T7495] netlink: 'syz.4.1193': attribute type 32 has an invalid length.
[  276.174981][ T7497] loop3: detected capacity change from 0 to 2048
[  276.183242][ T7495] netlink: 500 bytes leftover after parsing attributes in process `syz.4.1193'.
[  276.218785][ T7497] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  276.287090][ T7497] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.637746][ T7507] loop4: detected capacity change from 0 to 128
[  277.076495][ T7514] loop2: detected capacity change from 0 to 256
[  277.101304][   T28] kauditd_printk_skb: 374 callbacks suppressed
[  277.101380][   T28] audit: type=1326 audit(1776087161.718:4917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.139817][   T28] audit: type=1326 audit(1776087161.718:4918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.165274][   T28] audit: type=1326 audit(1776087161.718:4919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.189361][   T28] audit: type=1326 audit(1776087161.718:4920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.312444][   T28] audit: type=1326 audit(1776087161.718:4921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.348094][   T28] audit: type=1326 audit(1776087161.718:4922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.390750][   T28] audit: type=1326 audit(1776087161.718:4923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.452034][   T28] audit: type=1326 audit(1776087161.718:4924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.498897][ T7518] loop0: detected capacity change from 0 to 1764
[  277.555560][   T28] audit: type=1326 audit(1776087161.718:4925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.709071][   T28] audit: type=1326 audit(1776087161.728:4926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7513 comm="syz.2.1198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  277.883667][ T7328] Bluetooth: hci0: command 0x1003 tx timeout
[  277.891226][ T3529] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  278.400193][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.091566][ T7530] loop1: detected capacity change from 0 to 1764
[  280.068443][ T7536] loop0: detected capacity change from 0 to 1764
[  281.411437][ T7522] loop2: detected capacity change from 0 to 128
[  281.418042][ T7522] vfat: Unknown parameter '184467440737095516150177777777777777777777718446744073709551615ÿÿœù­%‰c˜ÙÞišuõ׶ê¼Hý‰+MÃsu ½[Ú2&„«™¨H¿wûjW%÷•»±òßß(N‚öfŽÎúj…§ÌCKÓN‘
M«ò0›á¿i™Øõ�Õgìù¨|hÔg¦‚Ë&.M�µr7ãÍøL…ßGI¤ïjgÜeV¶ÿJèõo†^@uï¢P *gH…lùu"å#'
[  281.444291][ T7522] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  281.497929][ T7545] netlink: 348 bytes leftover after parsing attributes in process `syz.3.1209'.
[  281.629591][ T7547] loop3: detected capacity change from 0 to 256
[  281.828269][ T7548] loop3: detected capacity change from 0 to 512
[  281.835890][ T7548] EXT4-fs: quotafile must be on filesystem root
[  282.004818][ T7522] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  282.161625][ T7551] loop0: detected capacity change from 0 to 128
[  282.304227][   T28] kauditd_printk_skb: 115 callbacks suppressed
[  282.304244][   T28] audit: type=1400 audit(1776087166.928:5042): avc:  denied  { bind } for  pid=7560 comm="syz.4.1216" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  282.344397][   T28] audit: type=1400 audit(1776087166.928:5043): avc:  denied  { name_bind } for  pid=7560 comm="syz.4.1216" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  282.366490][   T28] audit: type=1400 audit(1776087166.928:5044): avc:  denied  { node_bind } for  pid=7560 comm="syz.4.1216" saddr=224.0.0.2 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  282.392006][ T7564] loop4: detected capacity change from 0 to 256
[  282.403517][ T7564] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  282.485582][ T7568] loop3: detected capacity change from 0 to 2048
[  282.533230][ T7568] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  282.539710][ T7572] netlink: 348 bytes leftover after parsing attributes in process `syz.1.1220'.
[  282.571460][ T7568] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.708093][ T7575] xt_hashlimit: size too large, truncated to 1048576
[  282.738115][   T28] audit: type=1400 audit(1776087167.328:5045): avc:  denied  { setopt } for  pid=7574 comm="syz.1.1221" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  282.833992][   T28] audit: type=1400 audit(1776087167.458:5046): avc:  denied  { read } for  pid=7576 comm="syz.3.1223" lport=17 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  282.892125][ T7581] xt_CT: You must specify a L4 protocol and not use inversions on it
[  282.936180][   T28] audit: type=1400 audit(1776087167.548:5047): avc:  denied  { read } for  pid=7576 comm="syz.3.1223" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  282.963806][   T28] audit: type=1400 audit(1776087167.548:5048): avc:  denied  { open } for  pid=7576 comm="syz.3.1223" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  283.031577][   T28] audit: type=1400 audit(1776087167.588:5049): avc:  denied  { ioctl } for  pid=7576 comm="syz.3.1223" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  283.414884][ T7590] loop1: detected capacity change from 0 to 128
[  283.452689][ T7590] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  283.465228][   T28] audit: type=1400 audit(1776087168.088:5050): avc:  denied  { read } for  pid=7591 comm="syz.3.1226" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  283.608614][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.608614][ T7590] loop1: rw=2049, sector=140, nr_sectors = 8 limit=128
[  283.623507][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.623507][ T7590] loop1: rw=2049, sector=156, nr_sectors = 8 limit=128
[  283.637554][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.637554][ T7590] loop1: rw=2049, sector=172, nr_sectors = 8 limit=128
[  283.651986][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.651986][ T7590] loop1: rw=2049, sector=188, nr_sectors = 8 limit=128
[  283.665871][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.665871][ T7590] loop1: rw=2049, sector=204, nr_sectors = 8 limit=128
[  283.680074][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.680074][ T7590] loop1: rw=2049, sector=220, nr_sectors = 8 limit=128
[  283.694225][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.694225][ T7590] loop1: rw=2049, sector=236, nr_sectors = 8 limit=128
[  283.709437][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.709437][ T7590] loop1: rw=2049, sector=252, nr_sectors = 8 limit=128
[  283.749957][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.749957][ T7590] loop1: rw=2049, sector=268, nr_sectors = 8 limit=128
[  283.792540][ T7590] syz.1.1225: attempt to access beyond end of device
[  283.792540][ T7590] loop1: rw=2049, sector=284, nr_sectors = 8 limit=128
[  283.904570][   T28] audit: type=1400 audit(1776087168.528:5051): avc:  denied  { create } for  pid=7602 comm="syz.1.1228" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1
[  284.206906][ T6727] Bluetooth: hci0: Frame reassembly failed (-84)
[  284.237178][ T1696] Bluetooth: hci1: Frame reassembly failed (-84)
[  284.257378][ T7610] loop2: detected capacity change from 0 to 1024
[  284.270424][ T7610] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  284.278619][ T7610] System zones: 0-1, 3-36
[  284.283595][ T7610] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.1231: bad orphan inode 134217728
[  284.294349][ T7610] loop2: lost filesystem error report for type 5 error -117
[  284.299893][    C0] EXT4-fs (loop2): error count since last fsck: 1
[  284.313901][    C0] EXT4-fs (loop2): initial error at time 1776087168: ext4_orphan_get:1423
[  284.322587][    C0] EXT4-fs (loop2): last error at time 1776087168: ext4_orphan_get:1423
[  284.331773][ T7610] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  284.572311][ T7618] loop4: detected capacity change from 0 to 1024
[  284.621232][ T7618] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  284.629492][ T7618] System zones: 0-1, 3-36
[  284.635202][ T7618] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1232: bad orphan inode 134217728
[  284.645942][ T7618] loop4: lost filesystem error report for type 5 error -117
[  284.646576][ T7618] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.065537][ T7627] loop1: detected capacity change from 0 to 1024
[  285.176860][ T7627] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  285.202118][ T7627] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.391731][ T7627] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1234: bg 0: block 112: padding at end of block bitmap is not set
[  285.652246][ T7627] syz.1.1234 (7627) used greatest stack depth: 8888 bytes left
[  285.721957][ T7633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  285.734975][ T7633] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.169927][ T3529] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  286.228391][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.250827][   T43] Bluetooth: hci1: command 0x1003 tx timeout
[  286.256943][ T7328] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  286.494954][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  286.495038][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.614267][ T7643] set_capacity_and_notify: 1 callbacks suppressed
[  286.614298][ T7643] loop3: detected capacity change from 0 to 1764
[  287.137549][ T3434] Bluetooth: hci0: Frame reassembly failed (-84)
[  287.166684][ T7649] loop4: detected capacity change from 0 to 1024
[  287.382404][ T7649] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  287.390652][ T7649] System zones: 0-1, 3-36
[  287.395677][ T7649] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1237: bad orphan inode 134217728
[  287.406411][ T7649] loop4: lost filesystem error report for type 5 error -117
[  287.407028][ T7649] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.519328][ T7653] loop0: detected capacity change from 0 to 1024
[  287.530600][ T7653] EXT4-fs: Ignoring removed orlov option
[  287.571612][ T7653] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  288.160183][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.201271][ T1696] Bluetooth: hci1: Frame reassembly failed (-84)
[  288.396963][ T7667] loop0: detected capacity change from 0 to 1024
[  288.405232][ T7667] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  288.414123][ T7667] System zones: 0-1, 3-36
[  288.419058][ T7667] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz.0.1243: bad orphan inode 134217728
[  288.429921][ T7667] loop0: lost filesystem error report for type 5 error -117
[  288.430561][ T7667] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.517867][ T7675] loop2: detected capacity change from 0 to 512
[  288.652168][ T7675] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  288.678644][ T7675] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.1245: invalid block
[  288.715082][ T7675] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  288.715813][ T7675] EXT4-fs (loop2): Remounting filesystem read-only
[  288.725292][    C1] EXT4-fs (loop2): error count since last fsck: 1
[  288.725313][    C1] EXT4-fs (loop2): initial error at time 1776087173: ext4_get_branch:178: inode 11: block 4294967295
[  288.725379][    C1] EXT4-fs (loop2): last error at time 1776087173: ext4_get_branch:178: inode 11: block 4294967295
[  288.732948][ T7673] loop3: detected capacity change from 0 to 1024
[  288.773391][ T7675] EXT4-fs (loop2): 2 truncates cleaned up
[  288.800873][ T7675] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.830974][ T7673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  288.848383][ T7673] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  288.876159][ T7673] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1244: bg 0: block 112: padding at end of block bitmap is not set
[  288.912111][ T7673] EXT4-fs error (device loop3): ext4_map_blocks:828: inode #15: comm syz.3.1244: lblock 0 mapped to illegal pblock 0 (length 1)
[  289.104136][ T7666] EXT4-fs error (device loop3): ext4_map_blocks:786: inode #15: comm syz.3.1244: lblock 0 mapped to illegal pblock 0 (length 1)
[  289.120446][ T7666] EXT4-fs error (device loop3): ext4_map_blocks:786: inode #15: comm syz.3.1244: lblock 0 mapped to illegal pblock 0 (length 1)
[  289.134421][ T7673] EXT4-fs error (device loop3): ext4_map_blocks:786: inode #15: comm syz.3.1244: lblock 0 mapped to illegal pblock 0 (length 1)
[  289.149304][ T3529] Bluetooth: hci0: command 0x1003 tx timeout
[  289.153758][ T7328] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  289.161910][ T7682] EXT4-fs error (device loop3): ext4_map_blocks:786: inode #15: comm syz.3.1244: lblock 0 mapped to illegal pblock 0 (length 1)
[  289.162444][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.180049][ T7682] EXT4-fs error (device loop3): ext4_map_blocks:786: inode #15: comm syz.3.1244: lblock 0 mapped to illegal pblock 0 (length 1)
[  289.198278][ T7682] EXT4-fs error (device loop3): ext4_map_blocks:786: inode #15: comm syz.3.1244: lblock 0 mapped to illegal pblock 0 (length 1)
[  289.213087][ T7673] EXT4-fs error (device loop3): ext4_map_blocks:786: inode #15: comm syz.3.1244: lblock 0 mapped to illegal pblock 0 (length 1)
[  289.496067][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.516658][ T6727] Bluetooth: hci0: Frame reassembly failed (-84)
[  289.880359][ T7689] loop2: detected capacity change from 0 to 1024
[  290.012141][ T7689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  290.053306][ T7689] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  290.098601][ T7692] loop1: detected capacity change from 0 to 1024
[  290.113369][ T7689] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1247: bg 0: block 112: padding at end of block bitmap is not set
[  290.154839][ T7689] EXT4-fs error (device loop2): ext4_map_blocks:828: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.259981][   T43] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  290.301069][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  290.314643][ T7689] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.330445][ T7692] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  290.338698][ T7692] System zones: 0-1, 3-36
[  290.350206][ T7692] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1248: bad orphan inode 134217728
[  290.360919][ T7692] loop1: lost filesystem error report for type 5 error -117
[  290.361504][ T7692] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.383722][ T7684] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.404955][ T7684] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.420946][ T7689] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.441406][ T7689] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.457878][ T7688] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.471774][ T7688] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.485933][ T7688] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1247: lblock 0 mapped to illegal pblock 0 (length 1)
[  290.540450][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.685892][ T7702] loop3: detected capacity change from 0 to 2048
[  290.710245][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  290.763276][ T7702] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.924772][ T7702] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  291.038197][ T7710] loop2: detected capacity change from 0 to 1764
[  291.201473][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.279297][ T7700] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  291.349514][ T7705] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  291.453471][ T7712] netlink: 280 bytes leftover after parsing attributes in process `syz.3.1253'.
[  291.550619][   T43] Bluetooth: hci0: command 0x1003 tx timeout
[  291.556984][ T7328] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  291.846653][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.699845][ T7728] hub 8-0:1.0: USB hub found
[  292.704847][ T7728] hub 8-0:1.0: 8 ports detected
[  292.717790][ T7728] netlink: 'syz.4.1258': attribute type 10 has an invalid length.
[  293.001470][ T7722] set_capacity_and_notify: 2 callbacks suppressed
[  293.001525][ T7722] loop1: detected capacity change from 0 to 256
[  293.099750][ T7736] FAULT_INJECTION: forcing a failure.
[  293.099750][ T7736] name failslab, interval 1, probability 0, space 0, times 0
[  293.133201][ T7736] CPU: 0 UID: 0 PID: 7736 Comm: syz.4.1263 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  293.133294][ T7736] Tainted: [W]=WARN
[  293.133302][ T7736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  293.133316][ T7736] Call Trace:
[  293.133324][ T7736]  <TASK>
[  293.133332][ T7736]  __dump_stack+0x1d/0x30
[  293.133398][ T7736]  dump_stack_lvl+0x95/0xd0
[  293.133430][ T7736]  dump_stack+0x15/0x1b
[  293.133488][ T7736]  should_fail_ex+0x263/0x280
[  293.133563][ T7736]  should_failslab+0x8c/0xb0
[  293.133590][ T7736]  kmem_cache_alloc_lru_noprof+0x6c/0x410
[  293.133679][ T7736]  ? __d_alloc+0x37/0x340
[  293.133755][ T7736]  __d_alloc+0x37/0x340
[  293.133797][ T7736]  d_alloc_pseudo+0x1e/0x80
[  293.133835][ T7736]  alloc_file_pseudo+0x91/0x190
[  293.133936][ T7736]  ? security_inode_alloc+0x69/0x100
[  293.134144][ T7736]  sock_alloc_file+0x9c/0x1e0
[  293.134171][ T7736]  do_accept+0x1e3/0x390
[  293.134269][ T7736]  __sys_accept4+0xbe/0x170
[  293.134302][ T7736]  __x64_sys_accept+0x42/0x50
[  293.134333][ T7736]  x64_sys_call+0x2344/0x3020
[  293.134375][ T7736]  do_syscall_64+0x12c/0x370
[  293.134407][ T7736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.134440][ T7736] RIP: 0033:0x7fd1623fc819
[  293.134459][ T7736] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  293.134519][ T7736] RSP: 002b:00007fd160e4f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  293.134544][ T7736] RAX: ffffffffffffffda RBX: 00007fd162675fa0 RCX: 00007fd1623fc819
[  293.134564][ T7736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  293.134577][ T7736] RBP: 00007fd160e4f090 R08: 0000000000000000 R09: 0000000000000000
[  293.134592][ T7736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.134624][ T7736] R13: 00007fd162676038 R14: 00007fd162675fa0 R15: 00007ffcc53e0678
[  293.134647][ T7736]  </TASK>
[  293.515106][ T6078] Bluetooth: hci0: Frame reassembly failed (-84)
[  293.555525][ T7742] loop4: detected capacity change from 0 to 1024
[  293.599017][ T7743] loop3: detected capacity change from 0 to 1764
[  293.646660][ T7742] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  293.655657][ T7742] System zones: 0-1, 3-36
[  293.662321][ T7742] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1265: bad orphan inode 134217728
[  293.673143][ T7742] loop4: lost filesystem error report for type 5 error -117
[  293.674418][ T7742] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.440573][ T7747] 9p: Bad value for 'rfdno'
[  294.445530][   T28] audit: type=1400 audit(1776087179.048:5052): avc:  denied  { accept } for  pid=7748 comm="syz.2.1266" lport=45522 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  294.594533][ T7747] loop1: detected capacity change from 0 to 512
[  294.609318][ T7747] EXT4-fs: quotafile must be on filesystem root
[  294.794952][ T7726] loop0: detected capacity change from 0 to 65536
[  294.802006][ T7726] vfat: Bad value for 'time_offset'
[  294.865342][ T7752] netlink: 280 bytes leftover after parsing attributes in process `syz.0.1267'.
[  295.298503][ T7758] loop1: detected capacity change from 0 to 1764
[  295.531923][   T43] Bluetooth: hci0: command 0x1003 tx timeout
[  295.560049][ T7328] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  295.679348][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.995654][ T7756] loop0: detected capacity change from 0 to 4096
[  296.028133][ T7756] EXT4-fs: Ignoring removed bh option
[  296.049847][ T7756] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.978972][ T7756] netlink: 'syz.0.1269': attribute type 1 has an invalid length.
[  297.006933][ T7773] netlink: 'syz.3.1274': attribute type 10 has an invalid length.
[  297.249436][ T7785] netlink: 248 bytes leftover after parsing attributes in process `syz.3.1279'.
[  297.337201][   T28] audit: type=1400 audit(1776087181.948:5053): avc:  denied  { nlmsg_tty_audit } for  pid=7755 comm="syz.0.1269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  297.425702][ T7788] loop1: detected capacity change from 0 to 128
[  297.482916][ T7792] loop2: detected capacity change from 0 to 1764
[  297.548513][   T28] audit: type=1400 audit(1776087182.118:5054): avc:  denied  { accept } for  pid=7789 comm="syz.3.1280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  297.602264][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.654918][ T7788] vfat: Unknown parameter ''
[  297.662752][   T28] audit: type=1400 audit(1776087182.118:5055): avc:  denied  { ioctl } for  pid=7789 comm="syz.3.1280" path="socket:[17966]" dev="sockfs" ino=17966 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  298.493893][ T7800] hub 8-0:1.0: USB hub found
[  298.498771][ T7800] hub 8-0:1.0: 8 ports detected
[  298.506411][ T7800] netlink: 'syz.3.1283': attribute type 10 has an invalid length.
[  299.000420][ T7806] loop0: detected capacity change from 0 to 1024
[  299.266407][ T7808] loop4: detected capacity change from 0 to 1024
[  299.299793][   T30] Bluetooth: hci0: Frame reassembly failed (-84)
[  299.576187][ T7806] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  299.584697][ T7806] System zones: 0-1, 3-36
[  300.851659][ T7816] loop2: detected capacity change from 0 to 1024
[  301.040089][ T3529] Bluetooth: hci0: command 0x1003 tx timeout
[  301.430230][ T7328] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  302.180835][ T7808] EXT4-fs (loop4): insufficient memory
[  302.188767][ T7808] EXT4-fs (loop4): mount failed
[  302.550401][ T7806] EXT4-fs: error -4 creating inode table initialization thread
[  302.558075][ T7806] EXT4-fs (loop0): mount failed
[  302.853027][ T7822] hub 8-0:1.0: USB hub found
[  302.857788][ T7822] hub 8-0:1.0: 8 ports detected
[  302.866201][ T7822] netlink: 'syz.3.1288': attribute type 10 has an invalid length.
[  302.928561][ T7826] netlink: 248 bytes leftover after parsing attributes in process `syz.4.1290'.
[  303.130737][ T7833] netlink: 'syz.1.1291': attribute type 36 has an invalid length.
[  303.147951][ T7833] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  303.158298][ T7833] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  303.197188][ T7833] loop1: detected capacity change from 0 to 2048
[  303.204848][ T7833] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  303.738074][ T7857] xt_hashlimit: size too large, truncated to 1048576
[  303.791890][   T28] audit: type=1400 audit(1776087188.418:5056): avc:  denied  { ioctl } for  pid=7850 comm="syz.4.1299" path="socket:[18056]" dev="sockfs" ino=18056 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  303.886070][ T7847] loop3: detected capacity change from 0 to 256
[  303.925736][ T7859] loop2: detected capacity change from 0 to 128
[  303.933680][ T7858] netlink: 'syz.4.1299': attribute type 39 has an invalid length.
[  304.079334][ T7859] vfat: Unknown parameter ''
[  304.110257][   T28] audit: type=1400 audit(1776087188.728:5057): avc:  denied  { connect } for  pid=7853 comm="syz.0.1301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  304.131721][ T1696] Bluetooth: hci0: Frame reassembly failed (-84)
[  304.278580][ T7867] loop3: detected capacity change from 0 to 512
[  304.292094][ T7867] EXT4-fs: quotafile must be on filesystem root
[  304.299103][ T7866] loop1: detected capacity change from 0 to 1024
[  304.317091][ T7866] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  304.325482][ T7866] System zones: 0-1, 3-36
[  304.331680][ T7866] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1303: bad orphan inode 134217728
[  304.342615][ T7866] loop1: lost filesystem error report for type 5 error -117
[  304.343690][ T7866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  304.516956][ T7873] 9p: Bad value for 'wfdno'
[  304.653001][ T7878] hub 8-0:1.0: USB hub found
[  304.657752][ T7878] hub 8-0:1.0: 8 ports detected
[  304.666556][ T7878] netlink: 'syz.3.1305': attribute type 10 has an invalid length.
[  304.852174][ T7882] loop4: detected capacity change from 0 to 1764
[  305.247547][   T28] audit: type=1400 audit(1776087189.868:5058): avc:  denied  { ioctl } for  pid=7885 comm="syz.0.1309" path="socket:[19093]" dev="sockfs" ino=19093 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  305.310076][   T28] audit: type=1400 audit(1776087189.868:5059): avc:  denied  { ioctl } for  pid=7885 comm="syz.0.1309" path="socket:[19096]" dev="sockfs" ino=19096 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  305.401282][   T28] audit: type=1400 audit(1776087189.868:5060): avc:  denied  { wake_alarm } for  pid=7885 comm="syz.0.1309" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  305.883610][ T7889] loop3: detected capacity change from 0 to 512
[  306.261894][ T3529] Bluetooth: hci0: command 0x1003 tx timeout
[  306.268075][ T7328] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  306.485463][ T7899] loop3: detected capacity change from 0 to 1764
[  306.626564][ T7901] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1316'.
[  306.806301][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  307.397224][ T7902] loop0: detected capacity change from 0 to 1024
[  307.433304][ T7903] macvlan1: left allmulticast mode
[  307.563999][ T7903] team0: Port device macvlan1 removed
[  307.588470][ T7902] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  307.619070][ T7902] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  307.637775][ T7902] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1314: bg 0: block 112: padding at end of block bitmap is not set
[  307.688301][ T7902] EXT4-fs error (device loop0): ext4_map_blocks:828: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.037112][ T7902] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.058839][ T7902] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.104011][ T7902] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.135097][ T7902] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.171536][ T7902] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.192531][ T7902] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.209651][ T7896] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.224424][ T7896] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1314: lblock 0 mapped to illegal pblock 0 (length 1)
[  308.232515][ T7901] 8021q: adding VLAN 0 to HW filter on device bond1
[  308.355817][ T7916] xt_hashlimit: size too large, truncated to 1048576
[  308.389933][   T28] audit: type=1400 audit(1776087192.968:5061): avc:  denied  { mount } for  pid=7909 comm="syz.1.1317" name="/" dev="configfs" ino=2090 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  308.425525][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  308.439619][ T7908] bond1 (unregistering): Released all slaves
[  308.472225][   T28] audit: type=1400 audit(1776087192.978:5062): avc:  denied  { search } for  pid=7909 comm="syz.1.1317" name="/" dev="configfs" ino=2090 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  308.552188][   T28] audit: type=1400 audit(1776087192.978:5063): avc:  denied  { search } for  pid=7909 comm="syz.1.1317" name="/" dev="configfs" ino=2090 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  308.575013][   T28] audit: type=1400 audit(1776087192.978:5064): avc:  denied  { watch watch_reads } for  pid=7909 comm="syz.1.1317" path="/" dev="configfs" ino=2090 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  308.707940][ T7928] loop0: detected capacity change from 0 to 256
[  308.737829][ T7928] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  308.751642][ T7927] hub 8-0:1.0: USB hub found
[  308.756445][ T7927] hub 8-0:1.0: 8 ports detected
[  308.765393][ T7927] netlink: 'syz.4.1320': attribute type 10 has an invalid length.
[  308.773393][ T7927] macvlan1: entered allmulticast mode
[  308.779059][ T7927] veth1_vlan: entered allmulticast mode
[  308.786782][ T7927] team0: Port device macvlan1 added
[  309.037611][ T7930] loop3: detected capacity change from 0 to 256
[  309.312201][ T7934] loop2: detected capacity change from 0 to 1024
[  309.364003][ T7930] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  309.455965][ T7934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  309.473029][ T7934] ext4 filesystem being mounted at /270/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  309.504584][ T7934] EXT4-fs error (device loop2): ext4_map_blocks:828: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.524760][ T7934] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  309.539152][ T7934] EXT4-fs (loop2): This should not happen!! Data will be lost
[  309.539152][ T7934] 
[  309.561804][ T7938] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.567397][ T7937] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  309.580274][ T7938] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.604768][ T7938] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.621953][ T7931] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.651299][ T7931] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.664995][ T7938] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.679124][ T7931] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.681113][  T316] Bluetooth: hci0: Frame reassembly failed (-84)
[  309.709405][ T7933] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1323: lblock 0 mapped to illegal pblock 0 (length 1)
[  309.829622][ T7942] loop0: detected capacity change from 0 to 2048
[  309.897713][ T7944] loop1: detected capacity change from 0 to 1024
[  309.953924][ T1696] Bluetooth: hci1: Frame reassembly failed (-84)
[  309.978250][ T7944] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  309.986584][ T7944] System zones: 0-1, 3-36
[  309.992504][ T3318] EXT4-fs warning (device loop2): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[  309.992796][ T7944] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1325: bad orphan inode 134217728
[  310.009523][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  310.014676][ T7944] loop1: lost filesystem error report for type 5 error -117
[  310.027886][ T7942] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  310.035397][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  310.035416][    C1] EXT4-fs (loop1): initial error at time 1776087194: ext4_orphan_get:1423
[  310.035437][    C1] EXT4-fs (loop1): last error at time 1776087194: ext4_orphan_get:1423
[  310.035572][ T7948] loop4: detected capacity change from 0 to 1024
[  310.054808][ T7944] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.071278][ T7942] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.101489][ T7948] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  310.109639][ T7948] System zones: 0-1, 3-36
[  310.115582][ T7948] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1326: bad orphan inode 134217728
[  310.126278][ T7948] loop4: lost filesystem error report for type 5 error -117
[  310.127352][ T7948] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.430489][ T3381] IPVS: starting estimator thread 0...
[  310.467028][ T7965] loop3: detected capacity change from 0 to 256
[  310.846033][ T7968] loop0: detected capacity change from 0 to 1764
[  311.280706][ T7963] IPVS: using max 2784 ests per chain, 139200 per kthread
[  311.317461][   T28] audit: type=1400 audit(1776087195.938:5065): avc:  denied  { bind } for  pid=7970 comm="syz.3.1332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  311.340241][ T7971] tipc: Failed to remove unknown binding: 66,1,1/0:2284902174/2284902176
[  311.700098][   T43] Bluetooth: hci0: command 0x1003 tx timeout
[  311.718562][ T7969] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1330'.
[  311.810058][ T7328] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  312.141397][ T3529] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  312.258463][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.269377][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.289400][ T7971] tipc: Failed to remove unknown binding: 66,1,1/0:2284902174/2284902176
[  312.406181][ T7983] loop4: detected capacity change from 0 to 256
[  312.437274][ T7982] loop2: detected capacity change from 0 to 256
[  312.451487][   T56] Bluetooth: hci0: Frame reassembly failed (-84)
[  312.582761][ T7983] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  312.613186][ T7987] loop3: detected capacity change from 0 to 1024
[  312.635195][ T7982] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  312.667777][ T7987] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  312.676007][ T7987] System zones: 0-1, 3-36
[  312.681357][ T7987] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.1337: bad orphan inode 134217728
[  312.692416][ T7987] loop3: lost filesystem error report for type 5 error -117
[  312.692945][ T7987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.848429][ T7986] loop1: detected capacity change from 0 to 128
[  313.003992][ T7986] vfat: Unknown parameter ''
[  313.395425][ T7992] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.525252][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.664949][ T8000] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  313.926573][ T8013] iso9660: Corrupted directory entry in block 2 of inode 1792
[  314.083452][   T56] Bluetooth: hci1: Frame reassembly failed (-84)
[  314.208257][ T8019] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  314.216513][ T8019] System zones: 0-1, 3-36
[  314.221565][ T8019] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz.0.1346: bad orphan inode 134217728
[  314.233172][ T8019] loop0: lost filesystem error report for type 5 error -117
[  314.233866][ T8019] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  314.500385][ T7328] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  314.511013][ T8024] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1347'.
[  314.629791][ T8024] set_capacity_and_notify: 5 callbacks suppressed
[  314.636349][ T8024] loop4: detected capacity change from 0 to 512
[  314.643239][ T8024] EXT4-fs: Ignoring removed oldalloc option
[  314.649776][ T8024] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  314.663851][ T8024] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.1347: iget: bad i_size value: 38620345925642
[  314.676724][ T8024] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  314.679950][    C0] EXT4-fs (loop4): error count since last fsck: 1
[  314.695648][    C0] EXT4-fs (loop4): initial error at time 1776087199: ext4_orphan_get:1397: inode 15
[  314.705101][    C0] EXT4-fs (loop4): last error at time 1776087199: ext4_orphan_get:1397: inode 15
[  314.714445][ T8024] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1347: couldn't read orphan inode 15 (err -117)
[  314.726368][ T8024] loop4: lost filesystem error report for type 5 error -117
[  314.729104][ T8024] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  314.730861][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.823368][ T7986] loop1: detected capacity change from 0 to 4096
[  314.909932][   T28] audit: type=1400 audit(1776087199.448:5066): avc:  denied  { write } for  pid=8023 comm="syz.4.1347" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  314.969665][   T28] audit: type=1400 audit(1776087199.448:5067): avc:  denied  { open } for  pid=8023 comm="syz.4.1347" path="/dev/ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  315.017098][   T28] audit: type=1400 audit(1776087199.448:5068): avc:  denied  { setopt } for  pid=8023 comm="syz.4.1347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  315.046789][ T7986] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.063852][  T117] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm kworker/u8:5: bg 0: block 5: invalid block bitmap
[  315.080096][  T117] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  315.102842][  T117] EXT4-fs (loop4): This should not happen!! Data will be lost
[  315.102842][  T117] 
[  315.122658][  T117] EXT4-fs (loop4): Total free blocks count 0
[  315.135577][  T117] EXT4-fs (loop4): Free/Dirty block details
[  315.148880][  T117] EXT4-fs (loop4): free_blocks=0
[  315.184636][  T117] EXT4-fs (loop4): dirty_blocks=16000
[  315.202093][  T117] EXT4-fs (loop4): Block reservation details
[  315.218352][  T117] EXT4-fs (loop4): i_reserved_data_blocks=16000
[  315.295637][  T117] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  315.337201][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.362751][ T3313] EXT4-fs warning (device loop4): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[  315.508005][ T8030] loop2: detected capacity change from 0 to 256
[  315.539067][ T8030] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  315.576925][ T8036] loop4: detected capacity change from 0 to 2048
[  315.711915][ T8036] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  315.726563][ T8036] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.864268][ T8034] loop1: detected capacity change from 0 to 512
[  316.099996][   T43] Bluetooth: hci1: command 0x1003 tx timeout
[  316.159991][ T3529] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  316.223593][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.303617][ T8046] FAULT_INJECTION: forcing a failure.
[  316.303617][ T8046] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.319638][ T8046] CPU: 1 UID: 0 PID: 8046 Comm: syz.0.1352 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  316.319706][ T8046] Tainted: [W]=WARN
[  316.319713][ T8046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  316.319724][ T8046] Call Trace:
[  316.319731][ T8046]  <TASK>
[  316.319739][ T8046]  __dump_stack+0x1d/0x30
[  316.319841][ T8046]  dump_stack_lvl+0x95/0xd0
[  316.319886][ T8046]  dump_stack+0x15/0x1b
[  316.319910][ T8046]  should_fail_ex+0x263/0x280
[  316.319944][ T8046]  should_fail+0xb/0x20
[  316.319995][ T8046]  should_fail_usercopy+0x1a/0x20
[  316.320106][ T8046]  _copy_from_user+0x1c/0xb0
[  316.320141][ T8046]  ____sys_sendmsg+0x1e2/0x5b0
[  316.320161][ T8046]  ___sys_sendmsg+0x195/0x1e0
[  316.320239][ T8046]  __x64_sys_sendmsg+0xd4/0x160
[  316.320260][ T8046]  x64_sys_call+0x194c/0x3020
[  316.320284][ T8046]  do_syscall_64+0x12c/0x370
[  316.320410][ T8046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.320430][ T8046] RIP: 0033:0x7f184a26c819
[  316.320446][ T8046] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  316.320463][ T8046] RSP: 002b:00007f1848cc7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  316.320528][ T8046] RAX: ffffffffffffffda RBX: 00007f184a4e5fa0 RCX: 00007f184a26c819
[  316.320550][ T8046] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000003
[  316.320562][ T8046] RBP: 00007f1848cc7090 R08: 0000000000000000 R09: 0000000000000000
[  316.320642][ T8046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.320653][ T8046] R13: 00007f184a4e6038 R14: 00007f184a4e5fa0 R15: 00007fffcdac0e98
[  316.320670][ T8046]  </TASK>
[  316.727578][   T56] Bluetooth: hci0: Frame reassembly failed (-84)
[  316.735788][ T8042] loop1: detected capacity change from 0 to 256
[  316.767337][ T8042] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  316.841457][ T8064] loop2: detected capacity change from 0 to 1024
[  316.857714][ T8064] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  316.865916][ T8064] System zones: 0-1, 3-36
[  316.871080][ T8064] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.1362: bad orphan inode 134217728
[  316.882791][ T8064] loop2: lost filesystem error report for type 5 error -117
[  316.883258][ T8064] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.183391][ T8073] netlink: 212 bytes leftover after parsing attributes in process `syz.3.1359'.
[  317.328852][ T8076] loop3: detected capacity change from 0 to 256
[  317.565861][ T8076] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  317.760085][ T8077] loop1: detected capacity change from 0 to 512
[  317.775375][ T8083] xt_hashlimit: size too large, truncated to 1048576
[  318.057203][ T8085] loop0: detected capacity change from 0 to 1764
[  318.737650][   T43] Bluetooth: hci0: command 0x1003 tx timeout
[  318.744292][ T3529] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  318.811928][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.669148][ T8109] netlink: 212 bytes leftover after parsing attributes in process `syz.0.1375'.
[  319.728506][ T8107] set_capacity_and_notify: 1 callbacks suppressed
[  319.728586][ T8107] loop3: detected capacity change from 0 to 256
[  319.738404][ T8111] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  319.761827][ T8089] loop1: detected capacity change from 0 to 512
[  319.806491][ T8089] EXT4-fs: quotafile must be on filesystem root
[  319.815263][ T8105] loop2: detected capacity change from 0 to 256
[  320.049483][ T8107] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  320.277577][ T8116] program syz.1.1377 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  320.426466][   T28] audit: type=1400 audit(1776087205.048:5069): avc:  denied  { create } for  pid=8115 comm="syz.1.1377" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  320.453698][   T28] audit: type=1400 audit(1776087205.048:5070): avc:  denied  { write } for  pid=8115 comm="syz.1.1377" name="file0" dev="tmpfs" ino=1516 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  320.477490][   T28] audit: type=1400 audit(1776087205.048:5071): avc:  denied  { open } for  pid=8115 comm="syz.1.1377" path="/270/file0" dev="tmpfs" ino=1516 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  320.901206][ T8123] loop4: detected capacity change from 0 to 1024
[  321.078100][ T8123] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  321.092506][ T8123] ext4 filesystem being mounted at /276/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.126816][ T8123] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1378: bg 0: block 112: padding at end of block bitmap is not set
[  321.183800][ T8123] EXT4-fs error (device loop4): ext4_map_blocks:828: inode #15: comm syz.4.1378: lblock 0 mapped to illegal pblock 0 (length 1)
[  321.452423][   T28] audit: type=1400 audit(1776087206.068:5072): avc:  denied  { unlink } for  pid=3310 comm="syz-executor" name="file0" dev="tmpfs" ino=1516 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  322.525623][ T8140] loop0: detected capacity change from 0 to 1024
[  322.562131][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  322.629057][ T8140] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  322.644655][ T8140] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  322.682127][ T8140] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1379: bg 0: block 112: padding at end of block bitmap is not set
[  322.717310][ T8140] EXT4-fs error (device loop0): ext4_map_blocks:828: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.116749][ T8147] loop2: detected capacity change from 0 to 256
[  323.243120][ T8131] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.257509][ T8131] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.272037][ T8140] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.298685][ T8139] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.314345][ T8139] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.329343][ T8139] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.342999][ T8139] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.356879][ T8131] EXT4-fs error (device loop0): ext4_map_blocks:786: inode #15: comm syz.0.1379: lblock 0 mapped to illegal pblock 0 (length 1)
[  323.611688][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  323.768338][   T56] Bluetooth: hci0: Frame reassembly failed (-84)
[  323.775193][ T8156] loop2: detected capacity change from 0 to 1024
[  323.820445][ T8162] loop1: detected capacity change from 0 to 1024
[  323.831132][ T8162] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  323.839382][ T8162] System zones: 0-1, 3-36
[  323.845110][ T8162] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1389: bad orphan inode 134217728
[  323.856035][ T8162] loop1: lost filesystem error report for type 5 error -117
[  323.856950][ T8162] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.929561][ T8156] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  323.963053][ T8156] ext4 filesystem being mounted at /284/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  323.991816][   T28] audit: type=1400 audit(1776087208.618:5073): avc:  denied  { create } for  pid=8169 comm="syz.4.1391" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  324.014709][ T8127] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  324.064686][ T8156] EXT4-fs error (device loop2): ext4_map_blocks:828: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.311184][   T28] audit: type=1400 audit(1776087208.938:5074): avc:  denied  { connect } for  pid=8172 comm="syz.4.1393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  324.356868][   T28] audit: type=1400 audit(1776087208.958:5075): avc:  denied  { write } for  pid=8172 comm="syz.4.1393" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  324.441955][ T8155] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.456375][ T8155] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.470713][ T8156] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.499636][ T8157] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.513212][ T8157] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.526805][ T8157] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.540234][ T8157] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.554665][ T8156] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1388: lblock 0 mapped to illegal pblock 0 (length 1)
[  324.574786][ T8186] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1395'.
[  324.591567][ T8184] FAULT_INJECTION: forcing a failure.
[  324.591567][ T8184] name failslab, interval 1, probability 0, space 0, times 0
[  324.605249][   T28] audit: type=1326 audit(1776087209.208:5076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8182 comm="syz.3.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5496c8c819 code=0x7ffc0000
[  324.629087][ T8184] CPU: 0 UID: 0 PID: 8184 Comm: syz.3.1396 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  324.629184][ T8184] Tainted: [W]=WARN
[  324.629193][ T8184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  324.629207][ T8184] Call Trace:
[  324.629215][ T8184]  <TASK>
[  324.629223][ T8184]  __dump_stack+0x1d/0x30
[  324.629255][ T8184]  dump_stack_lvl+0x95/0xd0
[  324.629283][ T8184]  dump_stack+0x15/0x1b
[  324.629316][ T8184]  should_fail_ex+0x263/0x280
[  324.629348][ T8184]  should_failslab+0x8c/0xb0
[  324.629373][ T8184]  kmem_cache_alloc_node_noprof+0x6d/0x460
[  324.629427][ T8184]  ? __alloc_skb+0x2d6/0x690
[  324.629462][ T8184]  __alloc_skb+0x2d6/0x690
[  324.629490][ T8184]  ? kmem_cache_alloc_noprof+0x18c/0x400
[  324.629526][ T8184]  ? __alloc_skb+0x200/0x690
[  324.629565][ T8184]  audit_log_start+0x3aa/0x730
[  324.629631][ T8184]  ? kstrtouint_from_user+0xa8/0xf0
[  324.629663][ T8184]  audit_seccomp+0x47/0x100
[  324.629696][ T8184]  ? __seccomp_filter+0x8db/0x1350
[  324.629743][ T8184]  __seccomp_filter+0x8ec/0x1350
[  324.629777][ T8184]  ? lapic_next_event+0x11/0x20
[  324.629805][ T8184]  ? tick_program_event+0x79/0xc0
[  324.629835][ T8184]  ? hrtimer_interrupt+0x708/0x810
[  324.629861][ T8184]  __secure_computing+0x81/0x150
[  324.629924][ T8184]  do_syscall_64+0xd3/0x370
[  324.629965][ T8184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.629988][ T8184] RIP: 0033:0x7f5496c8c819
[  324.630008][ T8184] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  324.630055][ T8184] RSP: 002b:00007f54956df028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f5
[  324.630121][ T8184] RAX: ffffffffffffffda RBX: 00007f5496f05fa0 RCX: 00007f5496c8c819
[  324.630139][ T8184] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  324.630160][ T8184] RBP: 00007f54956df090 R08: 0000000000000000 R09: 0000000000000000
[  324.630174][ T8184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.630187][ T8184] R13: 00007f5496f06038 R14: 00007f5496f05fa0 R15: 00007ffd4e291788
[  324.630263][ T8184]  </TASK>
[  324.887511][   T28] audit: type=1326 audit(1776087209.208:5077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8182 comm="syz.3.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5496c8c819 code=0x7ffc0000
[  324.888958][ T8184] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[  324.930924][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  324.976206][ T8181] loop4: detected capacity change from 0 to 256
[  325.007066][ T8191] loop2: detected capacity change from 0 to 256
[  325.061854][ T8195] loop0: detected capacity change from 0 to 764
[  325.078200][ T8195] iso9660: Unknown parameter '&0'
[  325.501579][ T8200] loop0: detected capacity change from 0 to 256
[  325.561123][ T8200] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  325.609954][ T3529] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  325.683091][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.733122][ T8205] loop1: detected capacity change from 0 to 512
[  325.794080][ T8181] loop4: detected capacity change from 0 to 512
[  325.801149][ T8205] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.801226][ T8205] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.831877][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.842152][ T8181] EXT4-fs: quotafile must be on filesystem root
[  325.998340][ T8217] FAULT_INJECTION: forcing a failure.
[  325.998340][ T8217] name failslab, interval 1, probability 0, space 0, times 0
[  326.042029][ T8217] CPU: 0 UID: 0 PID: 8217 Comm: syz.3.1409 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  326.042063][ T8217] Tainted: [W]=WARN
[  326.042070][ T8217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  326.042082][ T8217] Call Trace:
[  326.042088][ T8217]  <TASK>
[  326.042097][ T8217]  __dump_stack+0x1d/0x30
[  326.042178][ T8217]  dump_stack_lvl+0x95/0xd0
[  326.042202][ T8217]  dump_stack+0x15/0x1b
[  326.042238][ T8217]  should_fail_ex+0x263/0x280
[  326.042289][ T8217]  should_failslab+0x8c/0xb0
[  326.042340][ T8217]  __kmalloc_cache_node_noprof+0x6b/0x480
[  326.042365][ T8217]  ? __get_vm_area_node+0x106/0x1d0
[  326.042413][ T8217]  __get_vm_area_node+0x106/0x1d0
[  326.042437][ T8217]  __vmalloc_node_range_noprof+0x291/0x12b0
[  326.042467][ T8217]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  326.042492][ T8217]  ? selinux_file_open+0x2e6/0x330
[  326.042584][ T8217]  ? __rcu_read_unlock+0x4e/0x70
[  326.042611][ T8217]  ? avc_has_perm_noaudit+0xab/0x130
[  326.042724][ T8217]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  326.042744][ T8217]  __vmalloc_noprof+0xa4/0xf0
[  326.042771][ T8217]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  326.042795][ T8217]  bpf_prog_alloc_no_stats+0x47/0x390
[  326.042868][ T8217]  ? bpf_prog_alloc+0x2a/0x150
[  326.042891][ T8217]  bpf_prog_alloc+0x3c/0x150
[  326.042921][ T8217]  bpf_prog_load+0x506/0x1140
[  326.043016][ T8217]  ? security_bpf+0x2b/0x90
[  326.043038][ T8217]  __sys_bpf+0x505/0x7e0
[  326.043179][ T8217]  __x64_sys_bpf+0x41/0x50
[  326.043197][ T8217]  x64_sys_call+0x10cb/0x3020
[  326.043233][ T8217]  do_syscall_64+0x12c/0x370
[  326.043295][ T8217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.043327][ T8217] RIP: 0033:0x7f5496c8c819
[  326.043347][ T8217] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  326.043417][ T8217] RSP: 002b:00007f54956df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  326.043443][ T8217] RAX: ffffffffffffffda RBX: 00007f5496f05fa0 RCX: 00007f5496c8c819
[  326.043457][ T8217] RDX: 0000000000000090 RSI: 0000200000000040 RDI: 0000000000000005
[  326.043527][ T8217] RBP: 00007f54956df090 R08: 0000000000000000 R09: 0000000000000000
[  326.043571][ T8217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.043586][ T8217] R13: 00007f5496f06038 R14: 00007f5496f05fa0 R15: 00007ffd4e291788
[  326.043608][ T8217]  </TASK>
[  326.043647][ T8217] syz.3.1409: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  326.287047][ T8225] loop1: detected capacity change from 0 to 256
[  326.307472][ T8217] ,cpuset=/,mems_allowed=0
[  326.312050][ T8217] CPU: 0 UID: 0 PID: 8217 Comm: syz.3.1409 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  326.312086][ T8217] Tainted: [W]=WARN
[  326.312094][ T8217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  326.312184][ T8217] Call Trace:
[  326.312192][ T8217]  <TASK>
[  326.312202][ T8217]  __dump_stack+0x1d/0x30
[  326.312236][ T8217]  dump_stack_lvl+0x95/0xd0
[  326.312259][ T8217]  dump_stack+0x15/0x1b
[  326.312285][ T8217]  warn_alloc+0x145/0x1c0
[  326.312347][ T8217]  __vmalloc_node_range_noprof+0x2b6/0x12b0
[  326.312386][ T8217]  ? selinux_file_open+0x2e6/0x330
[  326.312420][ T8217]  ? __rcu_read_unlock+0x4e/0x70
[  326.312475][ T8217]  ? avc_has_perm_noaudit+0xab/0x130
[  326.312508][ T8217]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  326.312534][ T8217]  __vmalloc_noprof+0xa4/0xf0
[  326.312565][ T8217]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  326.312623][ T8217]  bpf_prog_alloc_no_stats+0x47/0x390
[  326.312645][ T8217]  ? bpf_prog_alloc+0x2a/0x150
[  326.312668][ T8217]  bpf_prog_alloc+0x3c/0x150
[  326.312690][ T8217]  bpf_prog_load+0x506/0x1140
[  326.312723][ T8217]  ? security_bpf+0x2b/0x90
[  326.312823][ T8217]  __sys_bpf+0x505/0x7e0
[  326.312849][ T8217]  __x64_sys_bpf+0x41/0x50
[  326.312899][ T8217]  x64_sys_call+0x10cb/0x3020
[  326.312923][ T8217]  do_syscall_64+0x12c/0x370
[  326.313004][ T8217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.313025][ T8217] RIP: 0033:0x7f5496c8c819
[  326.313042][ T8217] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  326.313063][ T8217] RSP: 002b:00007f54956df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  326.313086][ T8217] RAX: ffffffffffffffda RBX: 00007f5496f05fa0 RCX: 00007f5496c8c819
[  326.313130][ T8217] RDX: 0000000000000090 RSI: 0000200000000040 RDI: 0000000000000005
[  326.313146][ T8217] RBP: 00007f54956df090 R08: 0000000000000000 R09: 0000000000000000
[  326.313160][ T8217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.313175][ T8217] R13: 00007f5496f06038 R14: 00007f5496f05fa0 R15: 00007ffd4e291788
[  326.313199][ T8217]  </TASK>
[  326.313280][ T8217] Mem-Info:
[  326.528569][ T8217] active_anon:11196 inactive_anon:0 isolated_anon:0
[  326.528569][ T8217]  active_file:20756 inactive_file:2487 isolated_file:0
[  326.528569][ T8217]  unevictable:0 dirty:247 writeback:0
[  326.528569][ T8217]  slab_reclaimable:3392 slab_unreclaimable:16105
[  326.528569][ T8217]  mapped:32656 shmem:3058 pagetables:3361
[  326.528569][ T8217]  sec_pagetables:0 bounce:0
[  326.528569][ T8217]  kernel_misc_reclaimable:0
[  326.528569][ T8217]  free:1886834 free_pcp:2016 free_cma:0
[  326.576810][ T8217] Node 0 active_anon:44668kB inactive_anon:0kB active_file:83024kB inactive_file:9948kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:130624kB dirty:988kB writeback:0kB shmem:12232kB kernel_stack:3648kB pagetables:13444kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  326.658481][ T8231] hub 8-0:1.0: USB hub found
[  326.663883][ T8231] hub 8-0:1.0: 8 ports detected
[  326.678280][ T8231] netlink: 'syz.2.1412': attribute type 10 has an invalid length.
[  326.914821][ T8217] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  326.996093][ T8217] lowmem_reserve[]: 0 2879 7857 7857
[  327.003486][ T8217] Node 0 DMA32 free:2944488kB boost:0kB min:4128kB low:7052kB high:9976kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2948116kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:104kB free_cma:0kB
[  327.239301][ T8235] loop1: detected capacity change from 0 to 1024
[  327.563788][ T8235] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  327.618122][ T8235] ext4 filesystem being mounted at /278/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  327.675574][ T8235] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1414: bg 0: block 112: padding at end of block bitmap is not set
[  327.713427][ T8235] EXT4-fs error (device loop1): ext4_map_blocks:828: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.740444][ T8217] lowmem_reserve[]: 0 0 4978 4978
[  327.747636][ T8217] Node 0 Normal free:4570160kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:55376kB inactive_anon:0kB active_file:83024kB inactive_file:9884kB unevictable:0kB writepending:1004kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:11564kB local_pcp:5600kB free_cma:0kB
[  327.785374][ T8235] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.845963][ T8232] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.859935][ T8232] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.873872][ T8232] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.887939][ T8235] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.905457][ T8234] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.919786][ T8234] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.930557][ T8217] lowmem_reserve[]: 0
[  327.933675][ T8234] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1414: lblock 0 mapped to illegal pblock 0 (length 1)
[  327.958450][ T8217]  0 0 0
[  327.984403][ T8217] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  328.018974][ T8217] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 3*16kB (M) 3*32kB (M) 3*64kB (M) 1*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 716*4096kB (M) = 2944488kB
[  328.036989][ T8217] Node 0 Normal: 346*4kB (UME) 182*8kB (UME) 194*16kB (UME) 79*32kB (UE) 244*64kB (UME) 142*128kB (UME) 57*256kB (UME) 43*512kB (UME) 45*1024kB (UME) 14*2048kB (UM) 1079*4096kB (UM) = 4573208kB
[  328.066020][ T8217] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  328.075859][ T8217] 26404 total pagecache pages
[  328.080749][ T8217] 0 pages in swap cache
[  328.085258][ T8217] Free swap  = 124996kB
[  328.091050][ T8217] Total swap = 124996kB
[  328.103034][   T28] kauditd_printk_skb: 187 callbacks suppressed
[  328.103052][   T28] audit: type=1400 audit(1776087212.728:5264): avc:  denied  { getopt } for  pid=8245 comm="syz.4.1418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  328.146831][   T28] audit: type=1400 audit(1776087212.758:5265): avc:  denied  { getopt } for  pid=8245 comm="syz.4.1418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  328.168512][ T8217] 2097051 pages RAM
[  328.172642][ T8217] 0 pages HighMem/MovableOnly
[  328.177444][ T8217] 81622 pages reserved
[  328.220663][ T8249] loop4: detected capacity change from 0 to 512
[  328.229021][ T8249] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.1419: inode has both inline data and extents flags
[  328.250039][ T8249] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  328.251363][   T28] audit: type=1400 audit(1776087212.838:5266): avc:  denied  { ioctl } for  pid=8247 comm="syz.4.1419" path="socket:[19756]" dev="sockfs" ino=19756 ioctlcmd=0x8917 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  328.260841][    C0] EXT4-fs (loop4): error count since last fsck: 1
[  328.260864][    C0] EXT4-fs (loop4): initial error at time 1776087212: ext4_orphan_get:1397: inode 15
[  328.260895][    C0] EXT4-fs (loop4): last error at time 1776087212: ext4_orphan_get:1397: inode 15
[  328.318216][ T8249] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1419: couldn't read orphan inode 15 (err -117)
[  328.347315][ T8252] loop0: detected capacity change from 0 to 128
[  328.368162][ T8249] loop4: lost filesystem error report for type 5 error -117
[  328.368734][ T8249] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.395055][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  328.446926][ T8260] netlink: 'syz.2.1422': attribute type 21 has an invalid length.
[  328.454919][ T8260] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1422'.
[  328.464632][   T28] audit: type=1400 audit(1776087213.068:5267): avc:  denied  { shutdown } for  pid=8259 comm="syz.2.1422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  328.501288][ T8252] vfat: Unknown parameter ''
[  328.511853][ T8260] netlink: 'syz.2.1422': attribute type 5 has an invalid length.
[  328.534032][ T8260] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1422'.
[  328.535638][ T8265] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1422'.
[  328.573555][   T28] audit: type=1400 audit(1776087213.198:5268): avc:  denied  { map } for  pid=8247 comm="syz.4.1419" path="/283/bus/file2" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  328.637647][ T3420] IPVS: starting estimator thread 0...
[  328.759962][ T8267] IPVS: using max 2688 ests per chain, 134400 per kthread
[  329.962474][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.407649][ T8284] set_capacity_and_notify: 2 callbacks suppressed
[  330.407667][ T8284] loop3: detected capacity change from 0 to 1764
[  332.463960][ T8288] hub 8-0:1.0: USB hub found
[  332.468859][ T8288] hub 8-0:1.0: 8 ports detected
[  332.476854][ T8288] netlink: 'syz.4.1426': attribute type 10 has an invalid length.
[  332.484818][ T8288] veth1_vlan: left allmulticast mode
[  332.957089][ T8292] loop2: detected capacity change from 0 to 1764
[  334.839917][ T8299] hub 8-0:1.0: USB hub found
[  334.844746][ T8299] hub 8-0:1.0: 8 ports detected
[  334.857580][ T8299] netlink: 'syz.3.1431': attribute type 10 has an invalid length.
[  334.936685][ T8303] loop2: detected capacity change from 0 to 512
[  334.947520][   T28] audit: type=1400 audit(1776087219.568:5269): avc:  denied  { create } for  pid=8300 comm="syz.1.1433" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  335.024403][ T8307] loop1: detected capacity change from 0 to 512
[  335.162353][ T8310] xt_hashlimit: size too large, truncated to 1048576
[  335.170396][ T8308] FAULT_INJECTION: forcing a failure.
[  335.170396][ T8308] name failslab, interval 1, probability 0, space 0, times 0
[  335.199663][ T8308] CPU: 0 UID: 0 PID: 8308 Comm: syz.2.1434 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  335.199697][ T8308] Tainted: [W]=WARN
[  335.199706][ T8308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  335.199721][ T8308] Call Trace:
[  335.199730][ T8308]  <TASK>
[  335.199739][ T8308]  __dump_stack+0x1d/0x30
[  335.199771][ T8308]  dump_stack_lvl+0x95/0xd0
[  335.199882][ T8308]  dump_stack+0x15/0x1b
[  335.199912][ T8308]  should_fail_ex+0x263/0x280
[  335.199944][ T8308]  should_failslab+0x8c/0xb0
[  335.200155][ T8308]  kmem_cache_alloc_noprof+0x66/0x400
[  335.200181][ T8308]  ? do_getname+0x2e/0x1c0
[  335.200208][ T8308]  do_getname+0x2e/0x1c0
[  335.200235][ T8308]  getname_uflags+0x23/0x30
[  335.200293][ T8308]  __x64_sys_execveat+0x5d/0xa0
[  335.200325][ T8308]  x64_sys_call+0x2a33/0x3020
[  335.200356][ T8308]  do_syscall_64+0x12c/0x370
[  335.200409][ T8308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.200509][ T8308] RIP: 0033:0x7fd3834ec819
[  335.200530][ T8308] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  335.200549][ T8308] RSP: 002b:00007fd381f1e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  335.200574][ T8308] RAX: ffffffffffffffda RBX: 00007fd383766090 RCX: 00007fd3834ec819
[  335.200590][ T8308] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  335.200605][ T8308] RBP: 00007fd381f1e090 R08: 0000000000001000 R09: 0000000000000000
[  335.200685][ T8308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.200700][ T8308] R13: 00007fd383766128 R14: 00007fd383766090 R15: 00007ffc6c240b18
[  335.200723][ T8308]  </TASK>
[  335.391383][ T8316] process 'syz.1.1435' launched '/dev/fd/4' with NULL argv: empty string added
[  335.410111][   T28] audit: type=1400 audit(1776087220.018:5270): avc:  denied  { execute } for  pid=8306 comm="syz.1.1435" dev="tmpfs" ino=1416 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  335.452090][   T28] audit: type=1400 audit(1776087220.058:5271): avc:  denied  { execute_no_trans } for  pid=8306 comm="syz.1.1435" path=2F6D656D66643A5B0BDB58AE5B1AADD16D64C8854858A9250C1A2CE29CB4D7BCF1B386E22F4F70D0A2821E623B28B5E16AC80CE58917EE7C4A903D35EDCFD3AED20711A9A55EFFF595D271258ADA05202864656C6574656429 dev="tmpfs" ino=1416 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  335.568264][ T8323] netlink: 120 bytes leftover after parsing attributes in process `syz.0.1437'.
[  335.577556][ T8323] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1437'.
[  335.626494][ T8325] netlink: 212 bytes leftover after parsing attributes in process `syz.0.1440'.
[  336.142163][ T8333] loop0: detected capacity change from 0 to 1024
[  336.281097][ T8333] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  336.294543][ T8333] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  336.338123][ T8333] EXT4-fs error (device loop0): ext4_map_blocks:828: inode #15: comm syz.0.1441: lblock 0 mapped to illegal pblock 0 (length 1)
[  336.362019][ T8333] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  336.375448][ T8333] EXT4-fs (loop0): This should not happen!! Data will be lost
[  336.375448][ T8333] 
[  336.755209][ T8340] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1444'.
[  336.848818][ T8332] loop2: detected capacity change from 0 to 256
[  337.087742][ T8352] loop3: detected capacity change from 0 to 4096
[  337.136390][ T8352] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.251036][ T8352] SELinux:  Context system_u:object_r:power_device_t:s0 is not valid (left unmapped).
[  337.270081][   T28] audit: type=1400 audit(1776087221.878:5272): avc:  denied  { mac_admin } for  pid=8351 comm="syz.3.1451" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  337.326654][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.352254][ T8341] loop4: detected capacity change from 0 to 256
[  337.396547][   T28] audit: type=1400 audit(1776087221.928:5273): avc:  denied  { relabelto } for  pid=8351 comm="syz.3.1451" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:power_device_t:s0"
[  337.604998][ T8360] loop2: detected capacity change from 0 to 512
[  337.612545][ T3312] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[  337.616792][ T8360] EXT4-fs: quotafile must be on filesystem root
[  337.665724][ T8341] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  337.701738][ T8367] loop3: detected capacity change from 0 to 1764
[  337.754440][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  338.040527][   T28] audit: type=1400 audit(1776087222.668:5274): avc:  denied  { create } for  pid=8368 comm="syz.2.1457" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  339.235447][ T8389] loop2: detected capacity change from 0 to 1024
[  339.411882][ T8389] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  339.427477][ T8389] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.454813][ T8389] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1460: bg 0: block 112: padding at end of block bitmap is not set
[  339.486698][ T8389] EXT4-fs error (device loop2): ext4_map_blocks:828: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.655042][ T8380] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.672771][ T8380] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.687519][ T8389] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.712288][ T8386] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.726635][ T8395] loop3: detected capacity change from 0 to 1024
[  339.728860][ T8386] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.747091][ T8386] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.761569][ T8386] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.774734][ T8374] loop1: detected capacity change from 0 to 1764
[  339.782366][ T8389] EXT4-fs error (device loop2): ext4_map_blocks:786: inode #15: comm syz.2.1460: lblock 0 mapped to illegal pblock 0 (length 1)
[  339.850638][ T8395] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  339.884327][ T8395] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.907521][ T8391] loop4: detected capacity change from 0 to 256
[  339.972971][ T8395] EXT4-fs error (device loop3): ext4_map_blocks:828: inode #15: comm syz.3.1463: lblock 0 mapped to illegal pblock 0 (length 1)
[  340.001026][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  340.076608][ T8395] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  340.102557][ T8395] EXT4-fs (loop3): This should not happen!! Data will be lost
[  340.102557][ T8395] 
[  340.276941][ T3311] EXT4-fs warning (device loop3): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[  340.314373][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  340.385346][  T117] Bluetooth: hci0: Frame reassembly failed (-84)
[  340.480017][ T8409] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  340.488201][ T8409] System zones: 0-1, 3-36
[  340.494116][ T8409] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.1467: bad orphan inode 134217728
[  340.504812][ T8409] loop2: lost filesystem error report for type 5 error -117
[  340.505446][ T8409] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.641351][ T8419] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  340.653732][ T8420] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1471'.
[  341.013564][ T8391] EXT4-fs: quotafile must be on filesystem root
[  341.015163][ T8424] vfat: Unknown parameter ''
[  341.089320][   T28] audit: type=1400 audit(1776087225.708:5275): avc:  denied  { ioctl } for  pid=8427 comm="syz.0.1474" path="socket:[21067]" dev="sockfs" ino=21067 ioctlcmd=0x4942 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  341.146412][ T8431] xt_hashlimit: size too large, truncated to 1048576
[  341.650255][ T8438] set_capacity_and_notify: 4 callbacks suppressed
[  341.650413][ T8438] loop4: detected capacity change from 0 to 1024
[  341.757425][ T8438] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  341.772942][ T8438] ext4 filesystem being mounted at /291/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.798221][ T8438] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1476: bg 0: block 112: padding at end of block bitmap is not set
[  341.835241][ T8438] EXT4-fs error (device loop4): ext4_map_blocks:828: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  341.952226][ T8433] EXT4-fs error (device loop4): ext4_map_blocks:786: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  341.966429][ T8433] EXT4-fs error (device loop4): ext4_map_blocks:786: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  341.991212][ T8438] EXT4-fs error (device loop4): ext4_map_blocks:786: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  342.007648][ T8436] EXT4-fs error (device loop4): ext4_map_blocks:786: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  342.022010][ T8436] EXT4-fs error (device loop4): ext4_map_blocks:786: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  342.036395][ T8436] EXT4-fs error (device loop4): ext4_map_blocks:786: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  342.052704][ T8436] EXT4-fs error (device loop4): ext4_map_blocks:786: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  342.066441][ T8433] EXT4-fs error (device loop4): ext4_map_blocks:786: inode #15: comm syz.4.1476: lblock 0 mapped to illegal pblock 0 (length 1)
[  342.246671][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  342.335172][ T3529] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  342.397491][ T8446] netlink: 'syz.4.1479': attribute type 3 has an invalid length.
[  342.407722][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.418396][ T8446] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1479'.
[  342.431190][   T28] audit: type=1400 audit(1776087227.058:5276): avc:  denied  { write } for  pid=8445 comm="syz.4.1479" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  342.569739][ T8449] loop2: detected capacity change from 0 to 512
[  342.603504][ T8449] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.630350][ T8449] ext4 filesystem being mounted at /303/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  342.656370][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.759736][ T8457] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  342.786821][ T8457] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  342.884141][   T28] audit: type=1326 audit(1776087227.508:5277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8456 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  342.910872][   T28] audit: type=1326 audit(1776087227.508:5278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8456 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  342.934912][   T28] audit: type=1326 audit(1776087227.528:5279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8456 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  342.958693][   T28] audit: type=1326 audit(1776087227.528:5280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8456 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  342.997620][   T28] audit: type=1326 audit(1776087227.528:5281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8456 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  343.038766][   T28] audit: type=1326 audit(1776087227.528:5282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8456 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  343.110032][   T28] audit: type=1326 audit(1776087227.528:5283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8456 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  343.153287][   T28] audit: type=1326 audit(1776087227.538:5284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8456 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd3834ec819 code=0x7ffc0000
[  343.680190][ T8462] loop0: detected capacity change from 0 to 1024
[  343.832943][ T8462] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  343.847581][ T8462] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.892608][ T8462] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1483: bg 0: block 112: padding at end of block bitmap is not set
[  345.333742][ T8469] loop4: detected capacity change from 0 to 1024
[  345.352031][ T8467] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  345.401132][ T8467] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  345.439434][ T8469] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  345.455052][ T8469] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.495442][ T8469] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1484: bg 0: block 112: padding at end of block bitmap is not set
[  345.885414][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  346.010298][ T8473] xt_hashlimit: size too large, truncated to 1048576
[  346.540965][ T8480] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1489'.
[  346.743963][ T8486] sg_write: data in/out 92/42 bytes for SCSI command 0x0-- guessing data in;
[  346.743963][ T8486]    program syz.2.1491 not setting count and/or reply_len properly
[  346.784204][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  346.798594][ T8488] loop1: detected capacity change from 0 to 1024
[  346.806346][  T316] Bluetooth: hci0: Frame reassembly failed (-84)
[  346.807282][ T8488] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  346.821185][ T8488] System zones: 0-1, 3-36
[  346.822121][  T316] Bluetooth: hci0: Frame reassembly failed (-84)
[  346.841511][ T8488] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1490: bad orphan inode 134217728
[  346.852667][ T8488] loop1: lost filesystem error report for type 5 error -117
[  346.857492][ T8488] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.936174][ T8495] loop4: detected capacity change from 0 to 512
[  347.020929][ T8495] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  347.057342][ T8495] EXT4-fs (loop4): 1 truncate cleaned up
[  347.138603][ T8502] loop0: detected capacity change from 0 to 1764
[  347.260485][ T8495] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  347.962434][ T8510] netlink: 212 bytes leftover after parsing attributes in process `syz.3.1496'.
[  348.975634][ T8514] loop3: detected capacity change from 0 to 1024
[  349.011256][ T3529] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  349.208143][ T8514] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  349.250952][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.285616][ T8514] ext4 filesystem being mounted at /302/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  349.323174][ T8514] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1497: bg 0: block 112: padding at end of block bitmap is not set
[  349.638169][ T8506] loop2: detected capacity change from 0 to 256
[  349.668135][ T8519] loop0: detected capacity change from 0 to 256
[  349.800581][ T8519] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  349.922606][ T8506] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  349.935931][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.277261][ T8531] xt_hashlimit: size too large, truncated to 1048576
[  350.424871][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  350.437747][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  350.437843][   T28] audit: type=1400 audit(1776087235.048:5299): avc:  denied  { create } for  pid=8535 comm="syz.4.1500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  350.481535][ T8537] netlink: 'syz.4.1500': attribute type 13 has an invalid length.
[  350.514307][   T28] audit: type=1400 audit(1776087235.138:5300): avc:  denied  { create } for  pid=8538 comm="syz.3.1505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  350.522351][ T8537] netlink: 'syz.4.1500': attribute type 17 has an invalid length.
[  350.582000][ T8536] bridge0: port 2(bridge_slave_1) entered disabled state
[  350.589428][ T8536] bridge0: port 1(bridge_slave_0) entered disabled state
[  350.637324][   T30] Bluetooth: hci0: Frame reassembly failed (-84)
[  350.657941][ T8536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  350.669351][ T8536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  350.801764][   T28] audit: type=1400 audit(1776087235.328:5301): avc:  denied  { read } for  pid=8535 comm="syz.4.1500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  350.834709][ T8549] loop3: detected capacity change from 0 to 1024
[  350.850372][ T8549] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  350.858703][ T8549] System zones: 0-1, 3-36
[  350.864058][ T8549] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.1507: bad orphan inode 134217728
[  350.874887][ T8549] loop3: lost filesystem error report for type 5 error -117
[  350.875451][ T8549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.966398][ T8552] loop0: detected capacity change from 0 to 1764
[  351.602180][ T8537] 8021q: adding VLAN 0 to HW filter on device bond0
[  351.620442][ T8537] 8021q: adding VLAN 0 to HW filter on device team0
[  351.630745][ T8537] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  351.649974][ T8542] syz_tun: entered promiscuous mode
[  351.655218][ T8542] macsec1: entered allmulticast mode
[  351.671049][ T8542] syz_tun: entered allmulticast mode
[  351.693118][ T8542] syz_tun: left allmulticast mode
[  351.698190][ T8542] syz_tun: left promiscuous mode
[  351.781348][   T36] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  351.826673][   T36] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  352.010029][   T56] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  352.029215][   T30] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  352.498036][ T8568] loop1: detected capacity change from 0 to 1764
[  352.649971][ T3529] Bluetooth: hci0: command 0x1003 tx timeout
[  352.656383][   T43] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  352.980669][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.023976][   T28] audit: type=1400 audit(1776087237.638:5302): avc:  denied  { append } for  pid=8569 comm="syz.0.1514" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  353.244932][ T8570] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1514'.
[  353.618107][ T8579] xt_hashlimit: size too large, truncated to 1048576
[  354.090611][   T28] audit: type=1326 audit(1776087238.708:5303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  354.120461][ T8586] loop4: detected capacity change from 0 to 512
[  354.358549][ T8583] loop1: detected capacity change from 0 to 1024
[  354.533474][ T8583] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  354.547625][ T8583] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  354.566201][ T8583] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1520: bg 0: block 112: padding at end of block bitmap is not set
[  354.625065][   T28] audit: type=1326 audit(1776087238.708:5304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  354.676312][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:828: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.729750][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.746334][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.762447][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.780191][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.795709][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.813445][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.830314][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.846712][ T8583] EXT4-fs error (device loop1): ext4_map_blocks:786: inode #15: comm syz.1.1520: lblock 0 mapped to illegal pblock 0 (length 1)
[  354.894046][ T8590] tipc: Started in network mode
[  355.115582][ T8590] tipc: Node identity ea15dc0fffc9, cluster identity 4711
[  355.122800][   T28] audit: type=1326 audit(1776087238.708:5305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  355.230546][ T8590] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  355.237316][ T8592] syzkaller0: entered promiscuous mode
[  355.242989][ T8592] syzkaller0: entered allmulticast mode
[  355.257498][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  355.281299][ T8590] tipc: Resetting bearer <eth:syzkaller0>
[  355.288677][ T8590] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.1515' sets config #1
[  355.311989][   T28] audit: type=1326 audit(1776087238.708:5306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  355.362788][   T28] audit: type=1326 audit(1776087238.718:5307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  355.405007][   T28] audit: type=1326 audit(1776087239.048:5308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  355.482938][ T8585] tipc: Resetting bearer <eth:syzkaller0>
[  355.507945][ T8585] tipc: Disabling bearer <eth:syzkaller0>
[  355.526123][   T28] audit: type=1326 audit(1776087239.068:5309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  355.652069][   T28] audit: type=1400 audit(1776087239.278:5310): avc:  denied  { map } for  pid=8585 comm="syz.3.1515" path="socket:[21320]" dev="sockfs" ino=21320 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  355.745231][   T28] audit: type=1400 audit(1776087239.278:5311): avc:  denied  { read write } for  pid=8585 comm="syz.3.1515" path="socket:[21320]" dev="sockfs" ino=21320 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  355.769974][   T28] audit: type=1400 audit(1776087239.278:5312): avc:  denied  { create } for  pid=8585 comm="syz.3.1515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  355.790219][   T28] audit: type=1400 audit(1776087239.278:5313): avc:  denied  { bind } for  pid=8585 comm="syz.3.1515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  355.812861][   T28] audit: type=1400 audit(1776087239.278:5314): avc:  denied  { write } for  pid=8585 comm="syz.3.1515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  355.832906][   T28] audit: type=1400 audit(1776087239.278:5315): avc:  denied  { sqpoll } for  pid=8585 comm="syz.3.1515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  355.853645][   T28] audit: type=1326 audit(1776087239.868:5316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  355.904587][   T28] audit: type=1326 audit(1776087239.868:5317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  355.939534][   T28] audit: type=1326 audit(1776087239.888:5318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8580 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f184a26c819 code=0x7ffc0000
[  355.998094][ T8613] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1524'.
[  356.089125][ T8610] loop0: detected capacity change from 0 to 2048
[  356.096617][ T8610] ext4: Unknown parameter 'smackfsroot'
[  356.233805][ T1696] Bluetooth: hci0: Frame reassembly failed (-84)
[  356.247909][ T8621] loop1: detected capacity change from 0 to 512
[  356.271339][ T8621] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  356.298983][ T8621] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002]
[  356.319500][ T8621] System zones: 1-12
[  356.327891][ T8621] EXT4-fs (loop1): 1 truncate cleaned up
[  356.334525][ T8621] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  356.364498][ T8621] EXT4-fs warning (device loop1): ext4_group_extend:1861: can't shrink FS - resize aborted
[  356.407327][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.421863][ T8629] xt_hashlimit: size too large, truncated to 1048576
[  358.315627][ T3529] Bluetooth: hci0: command 0x1003 tx timeout
[  358.317953][   T43] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  358.427517][ T8627] loop0: detected capacity change from 0 to 256
[  358.821175][ T8627] 9p: Bad value for 'wfdno'
[  358.963064][ T8670] FAULT_INJECTION: forcing a failure.
[  358.963064][ T8670] name failslab, interval 1, probability 0, space 0, times 0
[  358.977240][ T8671] loop0: detected capacity change from 0 to 512
[  358.982566][ T8670] CPU: 1 UID: 0 PID: 8670 Comm: syz.2.1547 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  358.982602][ T8670] Tainted: [W]=WARN
[  358.982609][ T8670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  358.982622][ T8670] Call Trace:
[  358.982651][ T8670]  <TASK>
[  358.982659][ T8670]  __dump_stack+0x1d/0x30
[  358.982688][ T8670]  dump_stack_lvl+0x95/0xd0
[  358.982782][ T8670]  dump_stack+0x15/0x1b
[  358.982803][ T8670]  should_fail_ex+0x263/0x280
[  358.982831][ T8670]  should_failslab+0x8c/0xb0
[  358.982894][ T8670]  kmem_cache_alloc_node_noprof+0x6d/0x460
[  358.982920][ T8670]  ? __alloc_skb+0x2d6/0x690
[  358.982950][ T8670]  __alloc_skb+0x2d6/0x690
[  358.982977][ T8670]  ? __alloc_skb+0x200/0x690
[  358.983021][ T8670]  netlink_alloc_large_skb+0xbf/0xf0
[  358.983067][ T8670]  netlink_sendmsg+0x40c/0x6f0
[  358.983089][ T8670]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.983110][ T8670]  ____sys_sendmsg+0x563/0x5b0
[  358.983132][ T8670]  ___sys_sendmsg+0x195/0x1e0
[  358.983160][ T8670]  __x64_sys_sendmsg+0xd4/0x160
[  358.983254][ T8670]  x64_sys_call+0x194c/0x3020
[  358.983281][ T8670]  do_syscall_64+0x12c/0x370
[  358.983366][ T8670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.983428][ T8670] RIP: 0033:0x7fd3834ec819
[  358.983446][ T8670] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  358.983464][ T8670] RSP: 002b:00007fd381f3f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  358.983507][ T8670] RAX: ffffffffffffffda RBX: 00007fd383765fa0 RCX: 00007fd3834ec819
[  358.983588][ T8670] RDX: 0000000020000000 RSI: 00002000000000c0 RDI: 0000000000000006
[  358.983603][ T8670] RBP: 00007fd381f3f090 R08: 0000000000000000 R09: 0000000000000000
[  358.983697][ T8670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.983741][ T8670] R13: 00007fd383766038 R14: 00007fd383765fa0 R15: 00007ffc6c240b18
[  358.983761][ T8670]  </TASK>
[  358.997206][ T8670] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1547'.
[  358.999813][ T8671] EXT4-fs: quotafile must be on filesystem root
[  359.069446][ T8673] loop3: detected capacity change from 0 to 1764
[  359.157022][ T8672] loop2: detected capacity change from 0 to 8192
[  359.262023][ T8670] bond0 (unregistering): Released all slaves
[  359.431540][ T3399] IPVS: starting estimator thread 0...
[  359.519900][ T8685] IPVS: using max 2784 ests per chain, 139200 per kthread
[  359.527395][ T8694] xt_hashlimit: size too large, truncated to 1048576
[  359.601765][ T8698] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1551'.
[  359.864298][ T8710] loop4: detected capacity change from 0 to 256
[  359.879676][ T8714] loop0: detected capacity change from 0 to 128
[  359.886657][ T8710] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  359.938438][ T8717] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1561'.
[  359.963442][ T8714] vfat: Unknown parameter ''
[  360.008972][ T8717] netlink: 10 bytes leftover after parsing attributes in process `syz.1.1561'.
[  360.033470][ T8719] loop3: detected capacity change from 0 to 512
[  360.040416][ T8719] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  360.076049][ T8723] netlink: 'syz.1.1563': attribute type 4 has an invalid length.
[  360.353875][ T8729] loop1: detected capacity change from 0 to 512
[  360.412618][ T8738] loop4: detected capacity change from 0 to 1764
[  360.604489][ T8729] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  360.718968][ T8729] EXT4-fs (loop1): 1 truncate cleaned up
[  360.780556][ T8729] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  360.990939][   T28] kauditd_printk_skb: 215 callbacks suppressed
[  360.990956][   T28] audit: type=1400 audit(1776087245.618:5534): avc:  denied  { create } for  pid=8728 comm="syz.1.1566" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  361.097101][   T28] audit: type=1400 audit(1776087245.678:5535): avc:  denied  { listen } for  pid=8728 comm="syz.1.1566" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  361.162770][   T28] audit: type=1400 audit(1776087245.678:5536): avc:  denied  { ioctl } for  pid=8728 comm="syz.1.1566" path="socket:[21632]" dev="sockfs" ino=21632 ioctlcmd=0x89eb scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  361.371056][ T8745] xt_hashlimit: size too large, truncated to 1048576
[  361.462152][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.559212][   T28] audit: type=1400 audit(1776087246.178:5537): avc:  denied  { create } for  pid=8749 comm="syz.2.1573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  361.619458][   T28] audit: type=1400 audit(1776087246.178:5538): avc:  denied  { write } for  pid=8749 comm="syz.2.1573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  362.126938][ T8752] loop1: detected capacity change from 0 to 256
[  362.129233][  T316] Bluetooth: hci0: Frame reassembly failed (-84)
[  362.304957][   T56] Bluetooth: hci1: Frame reassembly failed (-84)
[  362.350067][ T8776] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  362.358288][ T8776] System zones: 0-1, 3-36
[  362.364730][ T8775] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  362.366896][ T8776] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1578: bad orphan inode 134217728
[  362.373115][ T8775] System zones: 0-1, 3-36
[  362.383865][ T8776] loop4: lost filesystem error report for type 5 error -117
[  362.388421][ T8775] 
[  362.390009][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  362.397176][ T8775] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.1579: bad orphan inode 134217728
[  362.399409][    C1] EXT4-fs (loop4): initial error at time 1776087247: ext4_orphan_get:1423
[  362.406144][ T8775] loop3: lost filesystem error report for type 5 error -117
[  362.407217][ T8775] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.417744][    C1] 
[  362.452274][    C1] EXT4-fs (loop4): last error at time 1776087247: ext4_orphan_get:1423
[  362.485742][ T8776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.510246][   T28] audit: type=1400 audit(1776087247.138:5539): avc:  denied  { read open } for  pid=8774 comm="syz.3.1579" path="/319/bus/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  362.533769][   T28] audit: type=1400 audit(1776087247.158:5540): avc:  denied  { write } for  pid=8774 comm="syz.3.1579" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  362.776287][ T8752] 9p: Bad value for 'wfdno'
[  362.863376][ T8755] EXT4-fs: quotafile must be on filesystem root
[  363.096445][ T8708] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.152717][   T28] audit: type=1400 audit(1776087247.758:5541): avc:  denied  { setopt } for  pid=8783 comm="syz.1.1580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  363.276780][ T8773] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  363.300494][ T3434] Bluetooth: hci2: Frame reassembly failed (-84)
[  363.332959][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.378499][ T8787] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  363.387492][ T8787] System zones: 0-1, 3-36
[  363.393203][ T8787] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1581: bad orphan inode 134217728
[  363.403988][ T8787] loop1: lost filesystem error report for type 5 error -117
[  363.404500][ T8787] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.732497][ T8799] set_capacity_and_notify: 6 callbacks suppressed
[  363.732581][ T8799] loop0: detected capacity change from 0 to 1764
[  363.890552][   T28] audit: type=1400 audit(1776087248.518:5542): avc:  denied  { create } for  pid=8800 comm="syz.2.1585" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  363.975181][   T28] audit: type=1400 audit(1776087248.598:5543): avc:  denied  { setopt } for  pid=8802 comm="syz.2.1586" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  364.088353][ T8803] loop2: detected capacity change from 0 to 512
[  364.149080][ T8803] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  364.169898][ T8788] Bluetooth: hci0: command 0x1003 tx timeout
[  364.177902][ T8803] EXT4-fs (loop2): 1 orphan inode deleted
[  364.183863][   T43] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  364.290358][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.300257][ T8803] EXT4-fs (loop2): 1 truncate cleaned up
[  364.306897][ T8803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.323989][ T8803] EXT4-fs error (device loop2): ext4_search_dir:1474: inode #12: block 7: comm syz.2.1586: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[  364.379110][ T3529] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  364.385267][   T43] Bluetooth: hci1: command 0x1003 tx timeout
[  364.440850][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.460002][ T8803] EXT4-fs (loop2): Remounting filesystem read-only
[  364.544209][ T8807] loop4: detected capacity change from 0 to 512
[  364.600425][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.609669][ T8807] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  364.791990][ T8807] EXT4-fs (loop4): 1 truncate cleaned up
[  364.806670][ T8807] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  365.277828][ T8819] loop3: detected capacity change from 0 to 1764
[  365.368820][ T7328] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  365.375008][ T3529] Bluetooth: hci2: command 0x1003 tx timeout
[  365.508702][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.101493][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  366.101590][   T28] audit: type=1400 audit(1776087250.578:5556): avc:  denied  { mount } for  pid=8824 comm="syz.1.1592" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  366.297415][ T8828] loop2: detected capacity change from 0 to 1764
[  366.970340][   T28] audit: type=1400 audit(1776087250.578:5557): avc:  denied  { remount } for  pid=8824 comm="syz.1.1592" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  367.170082][ T8807] EXT4-fs error (device loop4): ext4_xattr_block_find:1879: inode #15: comm syz.4.1587: corrupted xattr block 33: invalid header
[  367.201983][ T8807] EXT4-fs (loop4): Remounting filesystem read-only
[  367.209196][   T28] audit: type=1400 audit(1776087251.828:5558): avc:  denied  { name_bind } for  pid=8806 comm="syz.4.1587" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  367.984130][   T28] audit: type=1400 audit(1776087252.608:5559): avc:  denied  { node_bind } for  pid=8806 comm="syz.4.1587" saddr=ff02::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  368.016694][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.563782][ T8838] loop0: detected capacity change from 0 to 1764
[  369.009949][ T3434] Bluetooth: hci0: Frame reassembly failed (-84)
[  369.029807][ T8839] loop4: detected capacity change from 0 to 256
[  369.331139][ T8840] loop3: detected capacity change from 0 to 1024
[  369.495298][ T8839] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  369.590396][ T8840] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  369.646080][   T28] audit: type=1400 audit(1776087254.228:5560): avc:  denied  { unmount } for  pid=3310 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  369.876115][ T8840] System zones: 0-1, 3-36
[  369.904636][ T8844] loop1: detected capacity change from 0 to 1024
[  369.917626][ T8844] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  369.925806][ T8844] System zones: 0-1, 3-36
[  369.946855][ T8845] loop2: detected capacity change from 0 to 1024
[  369.954128][ T8844] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1599: bad orphan inode 134217728
[  369.965456][ T8844] loop1: lost filesystem error report for type 5 error -117
[  369.965937][   T36] Bluetooth: hci1: Frame reassembly failed (-84)
[  369.973262][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  369.973283][    C1] EXT4-fs (loop1): initial error at time 1776087254: ext4_orphan_get:1423
[  369.973327][    C1] EXT4-fs (loop1): last error at time 1776087254: ext4_orphan_get:1423
[  370.004437][ T8844] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.021570][ T8840] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.1597: bad orphan inode 134217728
[  370.034245][ T3434] Bluetooth: hci2: Frame reassembly failed (-84)
[  370.042919][ T8845] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  370.051755][ T8845] System zones: 0-1, 3-36
[  370.056615][ T8845] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.1598: bad orphan inode 134217728
[  370.067295][ T8845] loop2: lost filesystem error report for type 5 error -117
[  370.067870][ T8845] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.310173][ T8840] loop3: lost filesystem error report for type 5 error -117
[  370.311776][ T8840] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.339648][ T7328] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  370.593868][ T8854] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1600'.
[  370.620105][ T8854] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  370.637223][ T8854] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  370.652479][ T8854] bond0 (unregistering): Released all slaves
[  370.695591][ T8856] loop0: detected capacity change from 0 to 8192
[  370.778410][   T30] Bluetooth: hci3: Frame reassembly failed (-84)
[  370.915062][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.940410][ T8865] loop4: detected capacity change from 0 to 1024
[  370.956781][ T8865] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  370.965725][ T8865] System zones: 0-1, 3-36
[  370.973651][ T8865] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1602: bad orphan inode 134217728
[  370.984477][ T8865] loop4: lost filesystem error report for type 5 error -117
[  370.989259][ T8865] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.232950][ T8871] loop3: detected capacity change from 0 to 128
[  371.339209][ T8871] vfat: Unknown parameter ''
[  372.010026][ T3529] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  372.031051][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.040453][ T3529] Bluetooth: hci2: command 0x1003 tx timeout
[  372.046498][   T43] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  372.066669][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.352081][  T316] Bluetooth: hci0: Frame reassembly failed (-84)
[  372.841997][ T7328] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  372.859100][ T8788] Bluetooth: hci3: command 0x1003 tx timeout
[  372.990110][ T8876] ==================================================================
[  372.998610][ T8876] BUG: KCSAN: data-race in touch_atime / touch_atime
[  373.005685][ T8876] 
[  373.008024][ T8876] write to 0xffff88811c139260 of 4 bytes by task 8877 on cpu 0:
[  373.015937][ T8876]  touch_atime+0x1d7/0x330
[  373.020490][ T8876]  shmem_file_read_iter+0x477/0x540
[  373.025719][ T8876]  copy_splice_read+0x471/0x6c0
[  373.030682][ T8876]  splice_direct_to_actor+0x28f/0x670
[  373.036096][ T8876]  do_splice_direct+0x119/0x1a0
[  373.040969][ T8876]  do_sendfile+0x382/0x650
[  373.045502][ T8876]  __x64_sys_sendfile64+0x105/0x150
[  373.050814][ T8876]  x64_sys_call+0x2dc4/0x3020
[  373.055523][ T8876]  do_syscall_64+0x12c/0x370
[  373.060155][ T8876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.066186][ T8876] 
[  373.068542][ T8876] read to 0xffff88811c139260 of 4 bytes by task 8876 on cpu 1:
[  373.076113][ T8876]  touch_atime+0x16c/0x330
[  373.080654][ T8876]  shmem_file_read_iter+0x477/0x540
[  373.086062][ T8876]  copy_splice_read+0x471/0x6c0
[  373.091020][ T8876]  splice_direct_to_actor+0x28f/0x670
[  373.096412][ T8876]  do_splice_direct+0x119/0x1a0
[  373.101354][ T8876]  do_sendfile+0x382/0x650
[  373.105904][ T8876]  __x64_sys_sendfile64+0x105/0x150
[  373.111147][ T8876]  x64_sys_call+0x2dc4/0x3020
[  373.116050][ T8876]  do_syscall_64+0x12c/0x370
[  373.120931][ T8876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.126843][ T8876] 
[  373.129178][ T8876] value changed: 0x24491d79 -> 0x24e1b3f9
[  373.134912][ T8876] 
[  373.137253][ T8876] Reported by Kernel Concurrency Sanitizer on:
[  373.143526][ T8876] CPU: 1 UID: 0 PID: 8876 Comm: syz.1.1605 Tainted: G        W           syzkaller #0 PREEMPT(full) 
[  373.154584][ T8876] Tainted: [W]=WARN
[  373.158570][ T8876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  373.169001][ T8876] ==================================================================
SYZFAIL: failed to send rpc
fd=3 want=48 sent=0 n=-1 (errno 32: Broken pipe)
[  373.307483][   T28] audit: type=1400 audit(1776087257.918:5561): avc:  denied  { write } for  pid=3295 comm="syz-executor" path="pipe:[2545]" dev="pipefs" ino=2545 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  373.352700][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.531343][  T316] Bluetooth: hci1: Frame reassembly failed (-84)
[  373.990439][   T28] audit: type=1400 audit(1776087258.608:5562): avc:  denied  { read } for  pid=3038 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  374.014196][   T28] audit: type=1400 audit(1776087258.638:5563): avc:  denied  { search } for  pid=3038 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  374.014811][   T36] bridge_slave_1: left allmulticast mode
[  374.036361][   T28] audit: type=1400 audit(1776087258.638:5564): avc:  denied  { search } for  pid=3038 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  374.044130][   T36] bridge_slave_1: left promiscuous mode
[  374.068742][   T28] audit: type=1400 audit(1776087258.638:5565): avc:  denied  { search } for  pid=3038 comm="dhcpcd" name="data" dev="tmpfs" ino=13 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  374.069697][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.091636][   T28] audit: type=1400 audit(1776087258.638:5566): avc:  denied  { read } for  pid=3038 comm="dhcpcd" name="n27" dev="tmpfs" ino=15586 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  374.120067][   T28] audit: type=1400 audit(1776087258.638:5567): avc:  denied  { open } for  pid=3038 comm="dhcpcd" path="/run/udev/data/n27" dev="tmpfs" ino=15586 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  374.143552][   T28] audit: type=1400 audit(1776087258.638:5568): avc:  denied  { getattr } for  pid=3038 comm="dhcpcd" path="/run/udev/data/n27" dev="tmpfs" ino=15586 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  374.143670][   T36] bridge_slave_0: left allmulticast mode
[  374.173713][   T36] bridge_slave_0: left promiscuous mode
[  374.179481][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.204748][   T36] bond0 (unregistering): (slave geneve1): Releasing backup interface
[  374.223006][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  374.232257][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  374.241600][   T36] bond0 (unregistering): Released all slaves
[  374.249941][ T8788] Bluetooth: hci0: command 0x1003 tx timeout
[  374.250535][   T43] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  374.298862][   T28] audit: type=1400 audit(1776087258.918:5569): avc:  denied  { read open } for  pid=8883 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=488 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  374.325758][   T28] audit: type=1400 audit(1776087258.918:5570): avc:  denied  { getattr } for  pid=8883 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=488 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  374.357265][   T36] hsr_slave_0: left promiscuous mode
[  374.363185][   T36] hsr_slave_1: left promiscuous mode
[  374.368872][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  374.377006][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  374.398888][   T36] team0 (unregistering): Port device macvlan1 removed
[  374.427865][   T36] team0 (unregistering): Port device team_slave_1 removed
[  374.438103][   T36] team0 (unregistering): Port device team_slave_0 removed
[  374.777007][   T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.813522][   T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.862912][   T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.942703][   T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.001146][   T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.035199][   T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.112751][   T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.172595][   T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.229637][   T36] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.273707][   T36] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.322971][   T36] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.352547][   T36] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.445515][   T36] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.456026][ T7328] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  375.460129][   T43] Bluetooth: hci1: command 0x1003 tx timeout
[  375.522782][   T36] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.562644][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.613524][   T36] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.678019][   T36] bridge_slave_1: left allmulticast mode
[  375.687212][   T36] bridge_slave_1: left promiscuous mode
[  375.693249][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.701279][   T36] bridge_slave_0: left allmulticast mode
[  375.706954][   T36] bridge_slave_0: left promiscuous mode
[  375.713177][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  375.722758][   T36] bridge_slave_1: left allmulticast mode
[  375.728605][   T36] bridge_slave_1: left promiscuous mode
[  375.734603][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.742248][   T36] bridge_slave_0: left allmulticast mode
[  375.747908][   T36] bridge_slave_0: left promiscuous mode
[  375.753771][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  375.931709][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  375.941572][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  375.950806][   T36] bond0 (unregistering): Released all slaves
[  376.013030][   T36] .` (unregistering): left promiscuous mode
[  376.020342][   T36] .` (unregistering): Released all slaves
[  376.027419][   T36] bond0 (unregistering): Released all slaves
[  376.276858][   T36] tipc: Left network mode
[  376.287934][   T36] hsr_slave_0: left promiscuous mode
[  376.294000][   T36] hsr_slave_1: left promiscuous mode
[  376.300321][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  376.307906][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  376.316201][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  376.326003][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  376.334469][   T36] batadv0: left promiscuous mode
[  376.341677][   T36] hsr_slave_0: left promiscuous mode
[  376.347708][   T36] hsr_slave_1: left promiscuous mode
[  376.356519][   T36] hsr_slave_0: left promiscuous mode
[  376.362504][   T36] hsr_slave_1: left promiscuous mode
[  376.369643][   T36] hsr_slave_0: left promiscuous mode
[  376.375482][   T36] hsr_slave_1: left promiscuous mode
[  376.381487][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  376.389048][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  376.396651][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  376.404200][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  376.419289][   T36] veth1_macvtap: left promiscuous mode
[  376.424914][   T36] veth0_macvtap: left promiscuous mode
[  376.430637][   T36] veth1_vlan: left promiscuous mode
[  376.435872][   T36] veth0_vlan: left promiscuous mode
[  376.442026][   T36] veth1_macvtap: left promiscuous mode
[  376.447549][   T36] veth0_macvtap: left promiscuous mode
[  376.453550][   T36] veth1_vlan: left promiscuous mode
[  376.459277][   T36] veth0_vlan: left promiscuous mode
[  376.465239][   T36] veth1_macvtap: left promiscuous mode
[  376.470831][   T36] veth0_macvtap: left promiscuous mode
[  376.476328][   T36] veth1_vlan: left promiscuous mode
[  376.482184][   T36] veth0_macvtap: left promiscuous mode
[  376.487756][   T36] veth0_vlan: left promiscuous mode
[  376.598317][   T36] team0 (unregistering): Port device macvlan1 removed
[  376.621141][   T36] team0 (unregistering): Port device team_slave_1 removed
[  376.631404][   T36] team0 (unregistering): Port device team_slave_0 removed
[  376.755105][   T36] team0 (unregistering): Port device macvlan1 removed
[  376.779475][   T36] team0 (unregistering): Port device team_slave_1 removed
[  376.789122][   T36] team0 (unregistering): Port device team_slave_0 removed
[  377.747938][   T36] IPVS: stop unused estimator thread 0...
[  377.754638][   T36] IPVS: stop unused estimator thread 0...
[  377.761755][   T36] IPVS: stop unused estimator thread 0...