last executing test programs:

4m51.017782948s ago: executing program 32 (id=116):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

3m59.885812991s ago: executing program 33 (id=2161):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

3m9.239029441s ago: executing program 34 (id=4016):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000240), &(0x7f0000000280)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002080)=@newtaction={0xe80, 0x30, 0x25, 0x0, 0x0, {}, [{0xe6c, 0x1, [@m_pedit={0xe68, 0x1, 0x0, 0x0, {{0xa}, {0xe3c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe38, 0x2, {{{0x9, 0xb, 0x4, 0xdf2f, 0xb651}, 0x7, 0x8, [{0x8, 0x4e62, 0x1fb, 0xfffffffb, 0x0, 0x1ff}]}, [{0xfffffffd, 0x0, 0x8, 0xda2, 0x401, 0x2}, {0x1, 0x4, 0x1ff, 0x0, 0x15, 0x6}, {0x8, 0x91962e17, 0x6, 0x10, 0x5, 0x6}, {0x800, 0x5e, 0xc0000, 0xe, 0x9, 0x7}, {0xfffffffb, 0x134, 0x724, 0x6, 0x0, 0x40}, {0x2, 0x3, 0x9, 0x3, 0x8e9, 0x200}, {0x6e0, 0xb, 0x9, 0x6, 0x8, 0x2}, {0x2, 0x0, 0x401, 0x1, 0x8}, {0x1, 0x0, 0x9, 0x9, 0x7fffffff, 0x911}, {0x401, 0x0, 0x3, 0x0, 0x6, 0x80}, {0x3, 0x8f, 0x3, 0x5, 0x5e7, 0x80000000}, {0x1, 0x6, 0x39, 0x10, 0x32fe51c2, 0x4}, {0xa4c, 0x9, 0x81, 0xfffffffd, 0x3ff, 0x200}, {0x7, 0x8, 0x0, 0x0, 0x8, 0x2}, {0x6, 0x92a, 0x5, 0x4, 0x4, 0xe}, {0xbdd, 0x5, 0x6, 0x0, 0x9, 0x4}, {0x5, 0x0, 0xd, 0x7fffffff, 0x3, 0x417}, {0x1, 0xfffffff7, 0x8, 0x54, 0x4, 0x1}, {0x7fffffff, 0x6d93, 0x9, 0x6, 0xff, 0x3dc1171a}, {0x1, 0x2, 0x25dd, 0xfffffff7, 0x1ff, 0x59}, {0x8, 0x8, 0x2, 0x1, 0x500000}, {0xaeea, 0x9, 0x943, 0xfffffffa, 0x9, 0x1}, {0x2dd9, 0xfffffff4, 0x7f, 0x80000001, 0x7, 0x3ba}, {0x8, 0x9, 0x10001, 0x0, 0xfffffff7, 0x80}, {0x7fff, 0x81, 0x9, 0xfffffffe, 0xffffffff, 0xff}, {0xe4fe, 0x1, 0x2, 0xf, 0x10, 0x6}, {0xfffffffd, 0x7f, 0x0, 0x43, 0x7ff, 0x9}, {0x1ba, 0x2, 0xffffffff, 0x1, 0xc5e7, 0x6}, {0x7, 0x8b, 0x9, 0x7, 0x3}, {0xe, 0x6, 0x3ff, 0x5, 0x8, 0xb}, {0xffffffff, 0x5, 0x0, 0xb6f2, 0xfffffffd, 0x80000000}, {0x9a635267, 0x5, 0x3fe0000, 0x15c, 0x4, 0x1}, {0x3, 0xe7a3, 0x2, 0x1, 0x6, 0x9}, {0x5, 0x9, 0x5, 0x4, 0x6, 0x8}, {0x7, 0x1, 0xfffff904, 0x0, 0x6, 0x6}, {0x5, 0x40, 0x4, 0x200, 0xfff, 0x3cde}, {0x8000, 0x2, 0x8, 0x8, 0xf0, 0x8}, {0xfffffffc, 0x2, 0x4, 0x5, 0x1781, 0xc59}, {0x0, 0xff, 0x2, 0x7, 0x4, 0x100}, {0x6, 0x4, 0x4, 0x0, 0x38b9, 0x5}, {0x6aaf, 0xffffff00, 0x1, 0x0, 0x8, 0xb}, {0x6a18, 0x3, 0x6, 0xfffffffd, 0x7a, 0xb6c}, {0x22d8, 0x1, 0x7638, 0x5, 0x4, 0x7}, {0x8, 0x5, 0x6, 0x6, 0x2, 0x7}, {0x5, 0x8, 0x8, 0x8, 0x4, 0x200}, {0x200, 0x3e, 0x800, 0x1, 0x4, 0x100}, {0x6, 0x800, 0x100, 0x1, 0x5, 0x10}, {0x400, 0xf, 0x7, 0x3ff, 0x7}, {0x1, 0x5dc, 0x7f, 0x400, 0x10001}, {0x8, 0x7, 0xa, 0x7, 0x7, 0x7}, {0x81, 0x6, 0x0, 0x80000001, 0x8, 0xac9b}, {0x7, 0x2, 0x0, 0x5, 0xc, 0x7}, {0x0, 0x1, 0x7543e718, 0x1, 0x3, 0x3}, {0x6, 0xfffff801, 0x120b, 0x3, 0x1, 0x4}, {0x5, 0x10, 0x7, 0x7fffffff, 0x0, 0x8000}, {0x8, 0x0, 0x1cd, 0xfffffffa, 0x200, 0x1}, {0x1, 0x2, 0x1c0000, 0x200, 0x800, 0x3}, {0x1be, 0x5, 0x4, 0x4, 0xd1, 0x6}, {0xb, 0x1, 0x200, 0xc1, 0x393, 0x6}, {0x9, 0x1, 0x33, 0x2, 0x80000001, 0xdeaa}, {0x65800000, 0x8, 0x12, 0x4, 0xb917, 0x9}, {0x3, 0x4, 0x84, 0x7, 0x1, 0x4}, {0x9f, 0x80, 0x6, 0x1, 0x3, 0x7f}, {0x3, 0x7f, 0x14f0, 0x5, 0xc, 0xd}, {0x200, 0x4, 0x400, 0x9, 0x10000, 0x89}, {0xffffffff, 0x6e7, 0x200, 0x2, 0x9c, 0x6}, {0x7, 0x101, 0x7, 0x3, 0x0, 0x8}, {0x40, 0x100, 0x1, 0x1, 0x15, 0x8}, {0x40, 0x80000001, 0x3ff, 0x6, 0x4a74, 0x6}, {0x6, 0xf90, 0x5, 0x1, 0x8, 0x9}, {0x101, 0x593, 0x6, 0x2, 0x4, 0xffff}, {0x2, 0x8, 0x401, 0x7f, 0x8, 0x6}, {0xfffffffc, 0x0, 0x5, 0x800, 0x9}, {0xfffffffa, 0x7fffffff, 0x9, 0x0, 0x0, 0x1}, {0xd, 0xf9c, 0xffffffff, 0x3333, 0x1, 0x5}, {0x9, 0x100, 0x9, 0x5f4, 0x306, 0xb7}, {0x5, 0x10001, 0x1, 0x7f, 0x1, 0xfff}, {0x7ff, 0x3, 0xffff3955, 0xb24, 0xfffffffd, 0x5}, {0x2, 0x5, 0x6, 0x1ff, 0x2, 0x5}, {0x1ff, 0x1, 0xfffffff8, 0x0, 0xf424, 0x1e9}, {0x1, 0x9, 0x400, 0x0, 0x8, 0xc}, {0x0, 0x9, 0x10, 0x400, 0x742c, 0x85}, {0x101, 0x2, 0x11, 0x8, 0x6, 0xd794}, {0x1, 0xb5d2, 0x6, 0x0, 0x6}, {0x8f, 0x5, 0x8, 0x9, 0x7, 0x2}, {0x0, 0x2, 0x9, 0x9d3e, 0x6, 0x6}, {0x47b9, 0x81, 0x5, 0xffffffff, 0x5, 0x9}, {0xa78, 0x9, 0x0, 0x6, 0x2, 0x4}, {0x45, 0x1, 0x9, 0x10001, 0x0, 0x7f}, {0x8, 0x8, 0x3, 0x1, 0x9000000, 0xa}, {0x7, 0x4, 0x200, 0x8, 0x1ff, 0x9}, {0xc, 0x16, 0x4, 0x43, 0x245, 0x1}, {0x45, 0x8, 0xffffffff, 0x4, 0x4, 0x80000000}, {0x7, 0x1, 0x8000, 0x6374ac70, 0x4, 0x10}, {0x7, 0x800, 0x6, 0x82, 0x7, 0xc8e}, {0x8, 0xffff, 0x0, 0x7, 0x28f0, 0x10}, {0x8d2e, 0x6, 0x2, 0x0, 0x2, 0x4}, {0xa806, 0x10, 0x7, 0x1, 0x3ff, 0x8ffa}, {0x3, 0xfff, 0x5, 0x800, 0xa, 0xf7a}, {0x3, 0x8, 0x2a, 0x7, 0x1, 0x7}, {0x9, 0x2, 0x3, 0xbd, 0x7ff, 0x8}, {0xc, 0xd, 0x6, 0x2, 0x0, 0x100}, {0x1, 0x8001, 0x5, 0x7, 0x8000, 0x1}, {0x1, 0x8, 0x0, 0x5, 0x7f, 0x7ff}, {0xa0, 0x0, 0x8, 0x999d, 0x5857, 0x7fff}, {0x6d, 0x6, 0x81, 0x40a, 0x2, 0xe}, {0x5c84020b, 0x7fff, 0x8, 0x7fffffff, 0x7ff, 0x40}, {0x35d, 0x8, 0x1, 0x6, 0x4, 0x1}, {0x4, 0x1, 0x3ff, 0x25d, 0x22, 0x1}, {0x2, 0x3, 0x3, 0x1ff, 0x0, 0xe72a}, {0x3, 0x100, 0xe927, 0xdf, 0x0, 0x8}, {0x4767, 0x80000000, 0x5, 0x8, 0x3, 0x6}, {0x4, 0x6, 0xc, 0x8, 0x1, 0x80}, {0xd, 0xfffffff1, 0xfffffff8, 0x5, 0x852, 0x80000001}, {0xf, 0x101, 0x7, 0x2a, 0x2, 0x7fff}, {0x0, 0x9, 0x702c6ae0, 0x10001, 0x2, 0x2}, {0x1, 0x10, 0x9, 0x7, 0x10001, 0x1}, {0x3, 0x0, 0xba58, 0x4, 0x1, 0xf}, {0x0, 0x1000, 0x7, 0x0, 0xe5e, 0x7}, {0x6, 0x1, 0x6, 0x6, 0x2, 0x2}, {0x400, 0x2, 0x2, 0x6, 0x6, 0x3}, {0xfff, 0x1, 0x0, 0x3, 0x8, 0xb54}, {0x4, 0x7, 0x2, 0x8, 0x1, 0x76fe}, {0x7fff, 0x2, 0x8, 0x76, 0x1, 0xa}, {0x3, 0x5, 0x17, 0x70, 0x40, 0x9}, {0x32, 0x800, 0x0, 0x7, 0x9, 0x86}, {0xf2, 0x0, 0x0, 0x6, 0x60, 0x800}, {0x8, 0x89, 0x2, 0xe, 0x811, 0x7}], [{}, {0x2, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x74da411c989fe199, 0x1}, {0x3}, {0x2, 0x1}, {0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x4}, {0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x5}, {0x3}, {}, {0x1}, {}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x5, 0x1}, {}, {0x4}, {0x1}, {0xbf156330ad1a2b02, 0x1}, {0x1, 0x1}, {0x5}, {0x3}, {0x1, 0x1}, {}, {0x4}, {0x1}, {0x1}, {0x1, 0x1}, {0x4, 0x7b1c6bcde52d0700}, {0x4, 0x1}, {0x3, 0x1}, {0x2}, {0x2, 0x1}, {0x3}, {0x5, 0x1}, {0x3}, {0x5}, {0x2, 0x1}, {0x5}, {0xd, 0x1}, {0x5}, {0x3}, {0x4}, {0x2}, {0x2, 0x2}, {0x6, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x2, 0x23f82aa145049d92}, {0x4, 0x1}, {}, {}, {0x2f275eda4bd558a9}, {0x2, 0x1}, {0x4}, {}, {0x2}, {0x3, 0x1}, {0x4, 0xdb28de0ef1f4d93e}, {0x0, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x2}, {0x5}, {0x4}, {0x3}, {0x5}, {0x1}, {0x0, 0x1}, {0x1}, {0x0, 0x1}, {0x3}, {0x4, 0x2}, {0x5, 0x1}, {0x5}, {0x5, 0x1}, {0x5}, {0x3}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x1}, {0x2}, {0x4, 0x1}, {0x5}, {0x5}, {0x3}, {0x5}, {0x1, 0x1}, {0x5}, {}, {0x0, 0x1}, {0x3, 0x1}, {0x5}, {0x1, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x5}, {0x5}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe80}}, 0x0)

2m40.813081338s ago: executing program 35 (id=5012):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x80002, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000046c0)=[{{0x0, 0x0, 0x0}, 0x40}], 0x1, 0x40000000, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)

2m40.645949321s ago: executing program 36 (id=5014):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1807000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

2m40.249147957s ago: executing program 37 (id=5015):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = inotify_init()
inotify_add_watch(r2, &(0x7f0000000000)='.\x00', 0x400017e)
close_range(r0, 0xffffffffffffffff, 0x0)

2m39.990385241s ago: executing program 38 (id=5017):
r0 = syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0x200cc75, 0x800, 0x200003, 0x26e}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_setup(0x5f03, &(0x7f00000003c0)={0x0, 0xef71, 0x800, 0x2, 0x2f1}, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000440))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f00000002c0)=@IORING_OP_UNLINKAT={0x24, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x200, 0x0, {0x0, r4}})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

1m55.345627633s ago: executing program 39 (id=6487):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000040)={[{@errors_remount}, {@discard}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

1m36.384815277s ago: executing program 8 (id=7067):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x18}}, 0x4000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2000)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})

1m36.319203847s ago: executing program 8 (id=7069):
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r2}, 0x10)
pwrite64(r0, &(0x7f0000000080)='3', 0x1, 0x0)

1m36.303473808s ago: executing program 8 (id=7070):
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2d, 0x0, 0x0, 0x6}]}, 0xfffffffffffffeea)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47bc, 0xfac7, 0x0, 0x0, 0x0)

1m32.27002451s ago: executing program 8 (id=7111):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_FREE_STREAMS(r2, 0x8008551d, &(0x7f0000000140)=ANY=[@ANYBLOB="7851160007"])

1m31.440943433s ago: executing program 8 (id=7115):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x103f81af530ab711, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x1}, 0x18)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8041, 0x0)
ioctl$TIOCGPTPEER(r2, 0x5441, 0x401)

1m31.085694438s ago: executing program 8 (id=7118):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x4000, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r3, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)

1m17.015659037s ago: executing program 40 (id=7116):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000b000000010000000200000000000000", @ANYRES32, @ANYBLOB="0007000000e9baed4cd3b1cf7d2d6e48b817b376", @ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000002"], 0x50)

1m16.925174668s ago: executing program 41 (id=7118):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x4000, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r3, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)

1m14.087583262s ago: executing program 3 (id=7173):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000f000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x18)
r1 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000500)={'team0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r2, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x400], [0x0, 0x8, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x7]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_TXTIME_DELAY={0x8, 0xb, 0x5}]}}]}, 0xa4}}, 0x0)

1m14.055494172s ago: executing program 3 (id=7174):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
socket$inet_tcp(0x2, 0x1, 0x0)
alarm(0x3)

1m14.029822603s ago: executing program 3 (id=7175):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000100b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x4b)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x5, 0x41, 0x6, 0x2, 0x41, 0x1}, 0x48)

1m13.993052894s ago: executing program 3 (id=7176):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x80, 0x7a5, &(0x7f0000000f80)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
syz_clone(0x3000, 0x0, 0x0, &(0x7f0000000800), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

1m13.635166129s ago: executing program 3 (id=7177):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000f8dbdf2503"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x40000)

1m12.779000002s ago: executing program 3 (id=7187):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/mem_sleep', 0x80000, 0x0)
fsetxattr$security_selinux(r2, &(0x7f0000000200), &(0x7f0000000280)='system_u:object_r:gpg_exec_t:s0\x00', 0x20, 0x1)

1m12.762463472s ago: executing program 42 (id=7187):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/mem_sleep', 0x80000, 0x0)
fsetxattr$security_selinux(r2, &(0x7f0000000200), &(0x7f0000000280)='system_u:object_r:gpg_exec_t:s0\x00', 0x20, 0x1)

49.489016603s ago: executing program 0 (id=8027):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x408, 0xcd, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)

49.390229444s ago: executing program 0 (id=8032):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f00000001c0)={0x8000042, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000140)={0x10000042, 0x0, 0x2}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r2, &(0x7f0000000500)={&(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x1, 0x2}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x8d4)

49.339155735s ago: executing program 0 (id=8034):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r2}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fcntl$setlease(r0, 0x400, 0x1)

49.338677355s ago: executing program 0 (id=8036):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)

49.330894925s ago: executing program 0 (id=8037):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
socket$netlink(0x10, 0x3, 0x14)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x94, 0x1)
syz_genetlink_get_family_id$smc(0x0, r0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x14, r1, 0x6a98047402e98331}, 0x14}, 0x1, 0x0, 0x0, 0x8040}, 0x4886)

49.139629458s ago: executing program 0 (id=8044):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0xfffffffd, 0x25dfdbff, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x8090}, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x2a, &(0x7f00000002c0)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x22}}, @address_request={0x11, 0x0, 0x0, 0x1}}}}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)

49.075748949s ago: executing program 43 (id=8044):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0xfffffffd, 0x25dfdbff, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x8090}, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x2a, &(0x7f00000002c0)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x22}}, @address_request={0x11, 0x0, 0x0, 0x1}}}}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)

17.466546289s ago: executing program 4 (id=9235):
r0 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x114db, 0x1000, 0x2, 0x89}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x3516, 0xaddf, 0x2, 0x0, 0x1517f)
r2 = io_uring_setup(0x71b9, &(0x7f00000000c0)={0x0, 0xc63b})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x60}, 0x1, 0x0, 0x0, 0x4040041}, 0x44000)
io_uring_enter(r2, 0x0, 0x2, 0xf, &(0x7f0000000000), 0x18)

17.358249741s ago: executing program 4 (id=9237):
r0 = epoll_create1(0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x5, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000080)={0xa0028000})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r2, &(0x7f0000000000))

17.304832072s ago: executing program 4 (id=9239):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cf84ded40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c86e00f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec231fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895012f1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c3405000000000000003871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d37261774cc5a3bf6b466cb72812da518ff602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d50a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a31b16ac5fb73fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953f88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a5fe1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9d66ebbc8bab4ea81232fbef665f6212f875b2a00000000000000aceb111b66a500ca52fd8f848088c67ee65dfdcc4c580e9bc18c1699dca07d019bf1bf9dd3da480d6c155d7e60674ce88ab5ae07a9d16e22792d99986b531ab4e592ab5925da779e700cf20309a2137877690dc5c07956fc82d7b3bb46d3138041af18508938c9be4e5d0a98073463a5cff6c146d020743da474cb81677a6f389f0e00c33b70b7f8bab95435c27167f365a29fb09cbf35bf192f6a65616fa2ad9a6c7ca3a3ecd96aaecd993e8badb40e7eb8a22b0015e70c885cd519e28448168c6d914265998bff74ea1b0e651a6cae9419096248a0e41573827ad60fafce6e6540734c1f23f75337d836c31497e8112969a039d65aa297e2b046b5f4d11116a89f9f65693d4dc3e70fbfe0b2044fdb3f87e887d1daae8e38a0c19f668f776e19a02bb2449ee4384f6536879c85d7e41bc0276ee2b125d41ff358323311703ec01d64a573bdeb75bdcc87d01de38365ab9222713d2d1640a742d62fefb5403b2ed9969c32a0841e8c36b0107bb888eb14ac62e6d4bdfaeb9ee7436b97bf3825a19d6c8997ce285edf1d277ed703f560460417bfe702af833e83c5b987befb6d1fcf765ab7ea537d9dafb622a1ba8686cb9b1c63b84470364942e90d1cf856cead864f5e38c83b9ed86cc5725a20299ce512b165"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0xa)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
creat(&(0x7f0000000080)='./file0\x00', 0x140)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17.084671665s ago: executing program 4 (id=9242):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

17.026605016s ago: executing program 4 (id=9244):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r2)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000300)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000340)=0xc)
setregid(r2, r3)

16.843179069s ago: executing program 4 (id=9251):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x0)

16.826862139s ago: executing program 44 (id=9251):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x0)

8.706807015s ago: executing program 1 (id=9414):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a500850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

8.507919228s ago: executing program 1 (id=9421):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r2, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r3, 0xfffffffd, 0x0, 0x30, 0x0, @in6={0x1b, 0x0, 0x40000007, @loopback}, @ib={0x1b, 0x0, 0x0, {"7d0300"}, 0x0, 0x0, 0x2}}}, 0x118)

8.337841781s ago: executing program 1 (id=9436):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000200000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
mq_notify(0xffffffffffffffff, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)

8.248158832s ago: executing program 1 (id=9429):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000001c0)='./file0/../file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)

8.135738564s ago: executing program 1 (id=9433):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
set_mempolicy_home_node(&(0x7f000083c000/0x4000)=nil, 0x4000, 0x1, 0x0)

8.110251024s ago: executing program 1 (id=9435):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0xffffffff}, 0xc)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

8.048681935s ago: executing program 45 (id=9435):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0xffffffff}, 0xc)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

2.283283825s ago: executing program 6 (id=9516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
unshare(0x24060400)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0x2a, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000b50000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8a00fe00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.230751965s ago: executing program 6 (id=9517):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
statfs(0x0, 0x0)

2.134393466s ago: executing program 6 (id=9519):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e20, @dev}, 0x10)

1.530601836s ago: executing program 7 (id=9532):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00', r2}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.375948249s ago: executing program 7 (id=9537):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

1.324968329s ago: executing program 5 (id=9526):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x0, 0x18, &(0x7f0000000080)=0x5, 0x4)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)

1.27170472s ago: executing program 6 (id=9528):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='signal_deliver\x00', r0}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70200001400e300b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='signal_deliver\x00', r2}, 0x10)

1.27073173s ago: executing program 7 (id=9529):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='tlb_flush\x00', r0}, 0x10)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

1.116450292s ago: executing program 5 (id=9533):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000440)={[{@usrquota}, {@noquota}, {@grpid}]}, 0x1, 0x4c4, &(0x7f0000000a40)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
inotify_init()

787.852977ms ago: executing program 5 (id=9536):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001400add427323b470c45b45602067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)

720.326079ms ago: executing program 9 (id=9538):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00', r2}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

713.704099ms ago: executing program 5 (id=9539):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000007000000020000000400000005"], 0x87)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000004440)={&(0x7f0000000ec0)=@id={0x1e, 0x3, 0x2, {0x4e24}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x94}, 0x0)

664.5269ms ago: executing program 5 (id=9541):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372000000001400010076657468315f766c616e"], 0xfc}}, 0x20000004)

601.934711ms ago: executing program 5 (id=9542):
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000600)='./file0\x00', 0x2000000, &(0x7f0000000700)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRESHEX=0x0, @ANYBLOB="308af218c507fba195043000030fac571f882167129e3ce9ffb2d4b5e03563b8b8032777302a9b251d128f8ecf8d76d5490ef766de9b3e0ea02211fb", @ANYRES64=0x0, @ANYRES32], 0x1, 0x30e, &(0x7f0000000f00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

601.369531ms ago: executing program 9 (id=9552):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'team_slave_0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), r0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)={0x60, r4, 0x1, 0x50bd29, 0x0, {0x1, 0x6c00000000000000}, [{{0x8, 0x1, r3}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x700}}, {0x8, 0x6, r1}}}]}}]}, 0x60}, 0x1, 0xf000, 0x0, 0x4008000}, 0x810)

529.649302ms ago: executing program 7 (id=9543):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000fe"], 0x48)

529.530652ms ago: executing program 2 (id=9544):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r1 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0xfffd, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x1, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@broadcast, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0)

518.368462ms ago: executing program 9 (id=9545):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
listxattr(0x0, 0x0, 0x0)

460.662483ms ago: executing program 9 (id=9546):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0xc201})
unlinkat(0xffffffffffffff9c, &(0x7f00000003c0)='./file2\x00', 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001"], 0xfdef)

450.942883ms ago: executing program 7 (id=9547):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20040051}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020000000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e00000000000000000014000000110001"], 0x80}}, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
syz_emit_ethernet(0x4a6, &(0x7f00000012c0)=ANY=[@ANYBLOB="aaaaaaaaaa3aaaaaaaaaaa3688a809008864"], 0x0)
utimes(0x0, 0x0)

449.923983ms ago: executing program 2 (id=9548):
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000200)={'tunl0\x00', &(0x7f0000000180)={'sit0\x00', 0x0, 0x7800, 0x8000, 0x80000001, 0x5, {{0x5, 0x4, 0x3, 0x0, 0x14, 0x64, 0x0, 0x4, 0x29, 0x0, @empty, @loopback}}}})
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0xa, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b036812e0ff64000200475400f6a13bb10000000800894f4820", 0x1fffe, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

372.110844ms ago: executing program 7 (id=9549):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x573, &(0x7f0000000ec0)="$eJzs3T1sG+UbAPDnzvG/X/mTIoEEqEMFSEWq6iT9gMLUrohKlTogsUDkuFEVJ47iBJooQ7pXiA4IUJeywcAIYmBALIysLCBmpIpGIDUdwMhfaZo4wSl1XHK/n3T2vfee/bzvnZ/XvtOdHEBmHa0/pBHPRsTFJGJoXd1AtCqPNtdbXVkq3ltZKiZRq136LYkkIu6uLBXb6yet50MRsRwRz0TEd/mI4+nmuNWFxcmxcrk02yoPz03NDFcXFk9cmRqbKE2Upk+98uqZs6fPjJ4cXf+ye7X1pfzO+nr95xvvX//h9Vs3Pv/iyHLxw7EkzsVgq259Px6l5jbJx7kNy0/3IlgfJf1uAA8l18rzeio9HUORa2V9J7WhXW0a0GO1fRE1IKMS+Q8Z1f4dUD/+bU+7+fvj9vnmAUg97mpratYMNM9NxP7GscnB35MHjkzqx5uHd7Oh7EnL1yJiZGBg8+c/aX3+Ht7Io2ggPfXt+eaO2rz/07XxJzqMP4Ptc6f/Unv8W900/t2Pn9ti/LvYZYw/3/rlky3jX4t4rmP8ZC1+0iF+GhHvdBn/5ptfn92qrvZpxLHoHL8t2f788PDlK+XSSPOxY4xvjh15bbv+H9wifvOc7f7G10yn7T/TZf+/+v7L55e3if/SC9vv/07b/0BEfNBl/CfvfvbGVnW3ryV36r8Cdrr/68tudRn/5XNHf+pyVQAAAAAAAAAAYAfSxrVsSVpYm0/TQqF5D+9TcTAtV6pzxy9X5qfHm9e8HY582r7SaqhZTurl0db1uO3yyQ3lU7lWwNyBRrlQrJTH+9x3AAAAAAAAAAAAAAAAAAAAeFwc2nD//x+5xv3/G/+uGtirtv7Lb2Cvk/+QXQ/mf9K3dgC7z/c/ZFZN/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv8AAAAAAAAAAAAAAAAAAAAAAAAAANATFy9cqE+1eytLxXp5fGBhfrLy7onxUnWyMDVfLBQrszOFiUplolwqFCtT//R+SaUyMxLT81eH50rVueHqwuLbU5X56fZ/ipbyPe8RAAAAAAAAAAAAAAAAAAAA/PcMNqYkLURE2phP00Ih4v8RcTjyyeUr5dJIRDwRET/m8vvq5dF+NxoAAAAAAAAAAAAAAAAAAAD2mOrC4uRYuVyazcjMwE5WjojlR9uM+jvu+FX51r56XLahmSzM9HlgAgAAAAAAAAAAAAAAAACADLp/02+3r/irtw0CAAAAAAAAAAAAAAAAAACATEp/TSKiPh0benFwY+3/ktVc4zki3rt56aOrY3Nzs6P15XfWls993Fp+sh/tB7rVztN2HgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3VRcWJ8fK5dJsD2f63UcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh/F3AAAA///pCdd8")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x1c2)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181042, 0x0)
pwrite64(r1, &(0x7f0000000600)='6', 0x1, 0xfecc)
truncate(&(0x7f0000000000)='./file1\x00', 0x1)

371.377684ms ago: executing program 2 (id=9550):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @host}, 0x10)
connect$vsock_stream(r2, &(0x7f00000001c0)={0x28, 0x0, 0x2710}, 0x10)

344.602845ms ago: executing program 6 (id=9551):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x0, 0x18, &(0x7f0000000080)=0x5, 0x4)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)

289.623526ms ago: executing program 9 (id=9554):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000040)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="82", 0x1}, {&(0x7f0000000140)="84", 0x1}], 0x2}}], 0x1, 0x4400c800)
sendto$inet6(r0, &(0x7f0000000300), 0x16, 0x3b00, 0x0, 0xfffffffffffffdfd)

280.959815ms ago: executing program 6 (id=9555):
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x1268, &(0x7f0000002500)="$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")
syz_mount_image$vfat(&(0x7f00000006c0), &(0x7f0000000280)='./bus\x00', 0x444, 0x0, 0x1, 0x0, &(0x7f0000000080))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
chdir(&(0x7f0000001180)='./bus\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40, 0x0)

279.520855ms ago: executing program 2 (id=9556):
r0 = epoll_create1(0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x5, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000080)={0xa0028000})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r2, &(0x7f0000000000))

231.429236ms ago: executing program 9 (id=9557):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000100000022bf"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000740), &(0x7f0000000840), 0xffffd6c0, r1}, 0x38)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)

127.008448ms ago: executing program 2 (id=9558):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={0x20, r3, 0xc4fc9e906872338b, 0x20, 0x200, {{0x15}, {@void, @val={0xc, 0x99, {0x40, 0x52}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

0s ago: executing program 2 (id=9559):
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000000)=@chain)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, r0)

kernel console output (not intermixed with test programs):

  277.433541][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.441244][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.448758][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.456253][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.463753][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.471297][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.478837][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.486311][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.493805][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.501280][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.508711][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.516167][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.523602][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.531151][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.538586][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.546131][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.553667][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.561122][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.568665][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.576147][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.583744][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.591216][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.598795][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.606279][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.613766][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.621263][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.628784][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.636342][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.643813][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.651290][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.658741][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.666345][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.673818][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.681284][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.688737][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.696220][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.703622][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.711136][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.718638][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.726718][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.734848][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.742420][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.749965][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.757393][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.764824][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.772316][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.779734][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.787395][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.794839][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.802412][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.809860][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.817284][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.824804][ T3398] hid-generic 0008:0006:0007.000E: unknown main item tag 0x0
[  277.835754][ T3398] hid-generic 0008:0006:0007.000E: hidraw0: <UNKNOWN> HID v0.0b Device [syz1] on syz1
[  277.934017][T26170] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7807'.
[  277.978220][T26175] pim6reg: entered allmulticast mode
[  277.990587][T26175] pim6reg: left allmulticast mode
[  278.036439][T26183] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��
[  278.168963][T26205] loop4: detected capacity change from 0 to 256
[  278.186603][T26205] FAT-fs (loop4): Directory bread(block 64) failed
[  278.194231][T26205] FAT-fs (loop4): Directory bread(block 65) failed
[  278.202985][T26205] FAT-fs (loop4): Directory bread(block 66) failed
[  278.210086][T26205] FAT-fs (loop4): Directory bread(block 67) failed
[  278.218612][T26205] FAT-fs (loop4): Directory bread(block 68) failed
[  278.227217][T26211] netlink: 156 bytes leftover after parsing attributes in process `syz.5.7827'.
[  278.240017][T26205] FAT-fs (loop4): Directory bread(block 69) failed
[  278.252795][T26205] FAT-fs (loop4): Directory bread(block 70) failed
[  278.264795][T26205] FAT-fs (loop4): Directory bread(block 71) failed
[  278.274320][T26205] FAT-fs (loop4): Directory bread(block 72) failed
[  278.281946][T26205] FAT-fs (loop4): Directory bread(block 73) failed
[  278.327270][T26205] syz.4.7823: attempt to access beyond end of device
[  278.327270][T26205] loop4: rw=2051, sector=1224, nr_sectors = 608 limit=256
[  278.399303][T26225] loop4: detected capacity change from 0 to 2048
[  278.471406][T26225]  loop4: p1 < > p4
[  278.477273][T26225] loop4: p4 size 8388608 extends beyond EOD, truncated
[  278.502936][T26225] ������: renamed from vlan1 (while UP)
[  278.570341][   T29] kauditd_printk_skb: 31 callbacks suppressed
[  278.570358][   T29] audit: type=1326 audit(1750994932.497:8248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.614830][   T29] audit: type=1326 audit(1750994932.540:8249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.638780][   T29] audit: type=1326 audit(1750994932.540:8250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.662639][   T29] audit: type=1326 audit(1750994932.540:8251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.686257][   T29] audit: type=1326 audit(1750994932.540:8252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.709866][   T29] audit: type=1326 audit(1750994932.540:8253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.733525][   T29] audit: type=1326 audit(1750994932.540:8254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.757234][   T29] audit: type=1326 audit(1750994932.540:8255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.780864][   T29] audit: type=1326 audit(1750994932.540:8256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.804493][   T29] audit: type=1326 audit(1750994932.540:8257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26247 comm="syz.5.7844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  278.825591][T26262] loop2: detected capacity change from 0 to 164
[  278.878980][T26266] netlink: 'syz.0.7849': attribute type 1 has an invalid length.
[  278.907655][T26268] netlink: 'syz.0.7850': attribute type 6 has an invalid length.
[  278.915614][T26268] netlink: 100 bytes leftover after parsing attributes in process `syz.0.7850'.
[  278.978744][T26262] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  279.021205][T26271] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�
[  279.107474][T26277] netlink: 165 bytes leftover after parsing attributes in process `syz.0.7855'.
[  279.142098][T26277] netlink: 277 bytes leftover after parsing attributes in process `syz.0.7855'.
[  279.463727][T26316] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7873'.
[  279.480154][T26316] IPVS: Error joining to the multicast group
[  279.579344][T26327] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=26327 comm=syz.1.7878
[  279.781505][T26351] futex_wake_op: syz.0.7889 tries to shift op by -1; fix this program
[  279.833457][T26360] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[  279.841345][   T23] IPVS: starting estimator thread 0...
[  279.935617][T26361] IPVS: using max 2112 ests per chain, 105600 per kthread
[  279.964351][T26376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7900'.
[  280.003003][T26384] netlink: 132 bytes leftover after parsing attributes in process `syz.1.7905'.
[  280.300113][T26407] binfmt_misc: register: failed to install interpreter file ./file2
[  280.406551][T26415] netlink: 'syz.4.7920': attribute type 3 has an invalid length.
[  281.065485][T26469] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  281.072083][T26469] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  281.079838][T26469] vhci_hcd vhci_hcd.0: Device attached
[  281.124838][T26473] vhci_hcd: connection closed
[  281.134326][ T9007] vhci_hcd: stop threads
[  281.143383][ T9007] vhci_hcd: release socket
[  281.148124][ T9007] vhci_hcd: disconnect device
[  281.270176][T26490] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  281.270176][T26490]    program syz.0.7954 not setting count and/or reply_len properly
[  281.595224][T26540] loop5: detected capacity change from 0 to 128
[  281.612809][T26540] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  281.660729][T26540] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.799062][T25504] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  281.941117][ T4471] nci: nci_extract_activation_params_nfc_dep: unsupported activation_rf_tech_and_mode 0x6
[  282.318549][T26629] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  282.410563][T26640] sd 0:0:1:0: device reset
[  282.490302][T26654] netlink: 'syz.1.8029': attribute type 3 has an invalid length.
[  282.713746][T26676] loop2: detected capacity change from 0 to 764
[  282.723634][T26676] Symlink component flag not implemented
[  282.729554][T26676] Symlink component flag not implemented (7)
[  282.758688][T26682] __nla_validate_parse: 3 callbacks suppressed
[  282.758708][T26682] netlink: 48 bytes leftover after parsing attributes in process `syz.2.8043'.
[  282.776595][T26682] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8043'.
[  282.801169][ T4471] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.861395][ T4471] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.928834][ T4471] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.966939][T26696] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  282.998930][ T4471] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.034046][T26708] loop4: detected capacity change from 0 to 1024
[  283.041339][T26708] EXT4-fs: Ignoring removed oldalloc option
[  283.047363][T26708] EXT4-fs: Ignoring removed bh option
[  283.077178][T26708] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  283.097327][ T4471] bridge_slave_1: left allmulticast mode
[  283.103199][ T4471] bridge_slave_1: left promiscuous mode
[  283.109083][ T4471] bridge0: port 2(bridge_slave_1) entered disabled state
[  283.120591][ T4471] bridge_slave_0: left allmulticast mode
[  283.126413][ T4471] bridge_slave_0: left promiscuous mode
[  283.132203][ T4471] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.159575][T15252] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.232149][   T29] kauditd_printk_skb: 213 callbacks suppressed
[  283.232168][   T29] audit: type=1400 audit(1750994937.509:8471): avc:  denied  { create } for  pid=26729 comm="syz.5.8063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  283.265424][T26732] loop4: detected capacity change from 0 to 256
[  283.267923][   T29] audit: type=1400 audit(1750994937.541:8472): avc:  denied  { create } for  pid=26729 comm="syz.5.8063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  283.291953][   T29] audit: type=1400 audit(1750994937.541:8473): avc:  denied  { ioctl } for  pid=26729 comm="syz.5.8063" path="socket:[73545]" dev="sockfs" ino=73545 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  283.316897][   T29] audit: type=1400 audit(1750994937.552:8474): avc:  denied  { bind } for  pid=26729 comm="syz.5.8063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  283.336475][T26730] vcan0: tx drop: invalid sa for name 0x0000000000000001
[  283.344196][   T29] audit: type=1400 audit(1750994937.552:8475): avc:  denied  { setopt } for  pid=26729 comm="syz.5.8063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  283.347053][T26732] FAT-fs (loop4): bogus number of FAT sectors
[  283.363869][   T29] audit: type=1400 audit(1750994937.552:8476): avc:  denied  { mounton } for  pid=26731 comm="syz.4.8059" path="/619/file0" dev="tmpfs" ino=3208 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  283.369915][T26732] FAT-fs (loop4): Can't find a valid FAT filesystem
[  283.392652][   T29] audit: type=1400 audit(1750994937.627:8477): avc:  denied  { write } for  pid=26729 comm="syz.5.8063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  283.425210][   T29] audit: type=1326 audit(1750994937.627:8478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26733 comm="syz.2.8064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fccddece929 code=0x7ffc0000
[  283.448889][   T29] audit: type=1326 audit(1750994937.627:8479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26733 comm="syz.2.8064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fccddece929 code=0x7ffc0000
[  283.472446][   T29] audit: type=1326 audit(1750994937.627:8480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26733 comm="syz.2.8064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fccddece929 code=0x7ffc0000
[  283.491971][T26737] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8065'.
[  283.507188][ T4471] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  283.526578][ T4471] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  283.564171][ T4471] bond0 (unregistering): Released all slaves
[  283.629114][ T4471] hsr_slave_0: left promiscuous mode
[  283.646786][ T4471] hsr_slave_1: left promiscuous mode
[  283.659733][ T4471] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  283.667377][ T4471] batman_adv: batadv0: Removing interface: batadv_slave_0
[  283.681850][ T4471] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  283.689625][ T4471] batman_adv: batadv0: Removing interface: batadv_slave_1
[  283.691198][T26760] netlink: 268 bytes leftover after parsing attributes in process `syz.4.8076'.
[  283.740635][ T4471] veth1_macvtap: left promiscuous mode
[  283.746189][ T4471] veth0_macvtap: left promiscuous mode
[  283.754384][ T4471] veth1_vlan: left promiscuous mode
[  283.760905][ T4471] veth0_vlan: left promiscuous mode
[  283.839708][ T4471] team0 (unregistering): Port device team_slave_1 removed
[  283.861412][ T4471] team0 (unregistering): Port device team_slave_0 removed
[  283.915340][T26761] syz_tun: entered allmulticast mode
[  283.927565][T26755] syz_tun: left allmulticast mode
[  284.044366][T26694] chnl_net:caif_netlink_parms(): no params data found
[  284.111173][T26783] loop5: detected capacity change from 0 to 2048
[  284.117956][T26783] EXT4-fs: Ignoring removed mblk_io_submit option
[  284.143873][T26783] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  284.188528][T26694] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.195765][T26694] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.205341][T26694] bridge_slave_0: entered allmulticast mode
[  284.212033][T26694] bridge_slave_0: entered promiscuous mode
[  284.219067][T26694] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.226278][T26694] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.234098][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.235702][T26694] bridge_slave_1: entered allmulticast mode
[  284.250140][T26694] bridge_slave_1: entered promiscuous mode
[  284.283152][T26694] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  284.301417][T26694] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  284.328054][T26694] team0: Port device team_slave_0 added
[  284.335420][T26694] team0: Port device team_slave_1 added
[  284.353970][T26694] batman_adv: batadv0: Adding interface: batadv_slave_0
[  284.361136][T26694] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.387883][T26694] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  284.401397][T26694] batman_adv: batadv0: Adding interface: batadv_slave_1
[  284.408620][T26694] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.437138][T26694] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  284.479593][T26694] hsr_slave_0: entered promiscuous mode
[  284.486696][T26694] hsr_slave_1: entered promiscuous mode
[  284.494874][T26694] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  284.503765][T26694] Cannot create hsr debugfs directory
[  284.675946][T26841] netlink: 'syz.5.8106': attribute type 1 has an invalid length.
[  284.706972][T26846] 9pnet: p9_errstr2errno: server reported unknown error 1844674
[  284.776501][T26856] netlink: 'syz.1.8114': attribute type 10 has an invalid length.
[  284.784486][T26856] netlink: 'syz.1.8114': attribute type 19 has an invalid length.
[  284.792462][T26856] netlink: 156 bytes leftover after parsing attributes in process `syz.1.8114'.
[  284.793960][T26858] netlink: 'syz.5.8115': attribute type 21 has an invalid length.
[  284.810126][T26858] netlink: 132 bytes leftover after parsing attributes in process `syz.5.8115'.
[  284.819333][T26858] netlink: 'syz.5.8115': attribute type 1 has an invalid length.
[  284.860724][T26694] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  284.877797][T26694] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  284.888227][T26694] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  284.902634][T26694] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  284.976845][T26694] 8021q: adding VLAN 0 to HW filter on device bond0
[  284.988614][T26694] 8021q: adding VLAN 0 to HW filter on device team0
[  285.006834][ T4471] bridge0: port 1(bridge_slave_0) entered blocking state
[  285.013966][ T4471] bridge0: port 1(bridge_slave_0) entered forwarding state
[  285.022297][T26886] xt_hashlimit: max too large, truncated to 1048576
[  285.047739][T23484] bridge0: port 2(bridge_slave_1) entered blocking state
[  285.054951][T23484] bridge0: port 2(bridge_slave_1) entered forwarding state
[  285.093872][T26694] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  285.104386][T26694] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  285.266591][T26694] 8021q: adding VLAN 0 to HW filter on device batadv0
[  285.336650][T26920] netlink: 'syz.2.8139': attribute type 1 has an invalid length.
[  285.346228][T26923] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8141'.
[  285.398555][T26930] loop5: detected capacity change from 0 to 256
[  285.546312][T26945] rdma_op ffff8881583bfd80 conn xmit_rdma 0000000000000000
[  285.555890][T26938] SELinux: failed to load policy
[  285.610742][T26694] veth0_vlan: entered promiscuous mode
[  285.628629][T26694] veth1_vlan: entered promiscuous mode
[  285.672279][T26956] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8151'.
[  285.676105][T26694] veth0_macvtap: entered promiscuous mode
[  285.709718][T26694] veth1_macvtap: entered promiscuous mode
[  285.734700][T26956] syz_tun (unregistering): left promiscuous mode
[  285.752005][T26961] loop2: detected capacity change from 0 to 1024
[  285.788494][T26961] EXT4-fs: Ignoring removed nobh option
[  285.795918][T26694] batman_adv: batadv0: Interface activated: batadv_slave_0
[  285.818202][T26694] batman_adv: batadv0: Interface activated: batadv_slave_1
[  285.827897][T26961] EXT4-fs: Ignoring removed bh option
[  285.840862][T26694] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  285.849747][T26694] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  285.858484][T26694] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  285.867292][T26694] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  285.892677][T26961] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  285.979049][T26961] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[  286.039455][T26961] EXT4-fs (loop2): Remounting filesystem read-only
[  286.086019][T25282] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.168521][T26995] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8166'.
[  286.233361][T27004] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8171'.
[  286.560883][T27044] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[  286.655865][ T3386] Process accounting resumed
[  286.714774][T27056] netlink: 'syz.1.8195': attribute type 1 has an invalid length.
[  286.794528][T27064] netlink: 'syz.6.8199': attribute type 1 has an invalid length.
[  287.041065][T27091] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  287.160297][T27108] SELinux: failed to load policy
[  287.178128][ T4471] nci: nci_ntf_packet: unknown ntf opcode 0x101
[  287.314798][T27136] sd 0:0:1:0: device reset
[  287.354082][T27140] netlink: 'syz.5.8232': attribute type 4 has an invalid length.
[  287.976841][T27179] netlink: 'syz.1.8247': attribute type 1 has an invalid length.
[  288.068978][   T29] kauditd_printk_skb: 301 callbacks suppressed
[  288.068995][   T29] audit: type=1400 audit(1750994942.714:8782): avc:  denied  { audit_write } for  pid=27192 comm="syz.2.8254" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  288.107735][   T29] audit: type=1107 audit(1750994942.714:8783): pid=27192 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  288.210337][   T29] audit: type=1400 audit(1750994942.864:8784): avc:  denied  { read } for  pid=27201 comm="syz.4.8257" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  288.233900][   T29] audit: type=1400 audit(1750994942.864:8785): avc:  denied  { open } for  pid=27201 comm="syz.4.8257" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  288.289517][   T29] audit: type=1400 audit(1750994942.918:8786): avc:  denied  { ioctl } for  pid=27201 comm="syz.4.8257" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  288.349941][ T3422] hid-generic 0000:0004:0000.000F: unknown main item tag 0x0
[  288.357642][ T3422] hid-generic 0000:0004:0000.000F: unknown main item tag 0x0
[  288.365212][ T3422] hid-generic 0000:0004:0000.000F: unknown main item tag 0x0
[  288.373489][ T3422] hid-generic 0000:0004:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  288.386852][T27213] IPv6: Can't replace route, no match found
[  288.439977][   T29] audit: type=1400 audit(1750994943.112:8787): avc:  denied  { create } for  pid=27227 comm="syz.5.8269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  288.443575][T27229] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  288.459585][   T29] audit: type=1326 audit(1750994943.112:8788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27225 comm="syz.6.8268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  288.494067][T27228] IPVS: stopping master sync thread 27229 ...
[  288.494039][   T29] audit: type=1326 audit(1750994943.112:8789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27225 comm="syz.6.8268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  288.523821][   T29] audit: type=1326 audit(1750994943.112:8790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27225 comm="syz.6.8268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  288.547401][   T29] audit: type=1326 audit(1750994943.112:8791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27225 comm="syz.6.8268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  288.670415][T27243] __nla_validate_parse: 4 callbacks suppressed
[  288.670458][T27243] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.8275'.
[  288.707745][T27243] netlink: zone id is out of range
[  288.739410][T27243] netlink: zone id is out of range
[  288.758148][T27243] netlink: del zone limit has 8 unknown bytes
[  288.775325][T27250] loop6: detected capacity change from 0 to 2048
[  288.941626][T27282] IPv6: sit1: Disabled Multicast RS
[  288.948405][T27282] sit1: entered allmulticast mode
[  289.069185][T27296] SELinux: failed to load policy
[  289.190013][T27315] loop4: detected capacity change from 0 to 1024
[  289.199841][T27315] EXT4-fs: Ignoring removed mblk_io_submit option
[  289.206519][T27315] EXT4-fs: Ignoring removed nobh option
[  289.213000][T27315] EXT4-fs: test_dummy_encryption option not supported
[  289.718954][T27371] netlink: 44 bytes leftover after parsing attributes in process `syz.4.8335'.
[  289.753982][T27373] loop4: detected capacity change from 0 to 512
[  289.762393][T27373] EXT4-fs: Ignoring removed mblk_io_submit option
[  289.772476][T27373] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  289.834664][T27370] SELinux: failed to load policy
[  289.853232][T27373] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.872017][T27382] netlink: 404 bytes leftover after parsing attributes in process `syz.1.8340'.
[  289.892485][T27373] ext4 filesystem being mounted at /668/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  289.935829][T27388] loop6: detected capacity change from 0 to 256
[  289.953416][T27388] msdos: Unknown parameter '18446744073709551615'
[  289.970748][T15252] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.465071][T27435] rdma_op ffff88812d66ad80 conn xmit_rdma 0000000000000000
[  290.494447][T27421] SELinux:  policydb version 1574574793 does not match my version range 15-34
[  290.504420][T27421] SELinux: failed to load policy
[  290.817465][T27467] SELinux:  Context @ is not valid (left unmapped).
[  291.033364][T27479] loop6: detected capacity change from 0 to 128
[  291.275732][T27507] loop4: detected capacity change from 0 to 128
[  291.285218][T27507] FAT-fs (loop4): Directory bread(block 162) failed
[  291.305104][T27507] FAT-fs (loop4): Directory bread(block 163) failed
[  291.318223][T27510] netlink: 132 bytes leftover after parsing attributes in process `syz.5.8398'.
[  291.329179][T27507] FAT-fs (loop4): Directory bread(block 164) failed
[  291.335853][T27507] FAT-fs (loop4): Directory bread(block 165) failed
[  291.359815][T27507] FAT-fs (loop4): Directory bread(block 166) failed
[  291.386866][T27507] FAT-fs (loop4): Directory bread(block 167) failed
[  291.422503][T27507] FAT-fs (loop4): Directory bread(block 168) failed
[  291.469397][T27507] FAT-fs (loop4): Directory bread(block 169) failed
[  291.504668][T27507] FAT-fs (loop4): Directory bread(block 162) failed
[  291.511380][T27507] FAT-fs (loop4): Directory bread(block 163) failed
[  291.518673][T27507] syz.4.8397: attempt to access beyond end of device
[  291.518673][T27507] loop4: rw=3, sector=226, nr_sectors = 6 limit=128
[  291.552169][T27507] syz.4.8397: attempt to access beyond end of device
[  291.552169][T27507] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128
[  291.622014][T27543] loop2: detected capacity change from 0 to 2048
[  291.653471][T27543]  loop2: p1 < > p4
[  291.658382][T27543] loop2: p4 size 8388608 extends beyond EOD, truncated
[  291.669037][T27543] ������: renamed from vlan1 (while UP)
[  291.814329][T27559] loop6: detected capacity change from 0 to 164
[  291.821910][T27559] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  291.840929][T27561] validate_nla: 1 callbacks suppressed
[  291.841004][T27561] netlink: 'syz.2.8420': attribute type 1 has an invalid length.
[  291.877929][T27566] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k�
[  291.878117][T27568] netlink: 165 bytes leftover after parsing attributes in process `syz.1.8424'.
[  291.901750][T27568] netlink: 277 bytes leftover after parsing attributes in process `syz.1.8424'.
[  292.029598][T27588] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8434'.
[  292.038944][T27588] IPVS: Error joining to the multicast group
[  292.075124][T27595] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=27595 comm=syz.6.8437
[  292.258126][T27621] futex_wake_op: syz.2.8449 tries to shift op by -1; fix this program
[  292.267182][   T23] IPVS: starting estimator thread 0...
[  292.274015][T27623] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[  292.359094][T27625] IPVS: using max 2208 ests per chain, 110400 per kthread
[  292.550558][T27649] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8461'.
[  292.570702][T27655] netlink: 132 bytes leftover after parsing attributes in process `syz.4.8463'.
[  292.709557][T27675] binfmt_misc: register: failed to install interpreter file ./file2
[  292.740522][T27679] loop5: detected capacity change from 0 to 1024
[  292.751763][T27679] EXT4-fs: Ignoring removed nobh option
[  292.778304][T27679] EXT4-fs: Ignoring removed bh option
[  292.793836][T27685] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8480'.
[  292.820118][T27679] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  292.889271][   T29] kauditd_printk_skb: 169 callbacks suppressed
[  292.889339][   T29] audit: type=1400 audit(1750994947.896:8961): avc:  denied  { bind } for  pid=27694 comm="syz.6.8483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  292.918148][T27693] netlink: 'syz.1.8482': attribute type 3 has an invalid length.
[  292.929338][T27692] loop4: detected capacity change from 0 to 512
[  292.936089][T27692] EXT4-fs: inline encryption not supported
[  292.967804][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.002114][   T29] audit: type=1326 audit(1750994947.993:8962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.025794][   T29] audit: type=1326 audit(1750994947.993:8963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.049467][   T29] audit: type=1326 audit(1750994947.993:8964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.073169][   T29] audit: type=1326 audit(1750994947.993:8965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.075514][T27692] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  293.097050][   T29] audit: type=1326 audit(1750994947.993:8966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.129468][   T29] audit: type=1326 audit(1750994947.993:8967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.153081][   T29] audit: type=1326 audit(1750994947.993:8968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.176765][   T29] audit: type=1326 audit(1750994947.993:8969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.200320][   T29] audit: type=1326 audit(1750994947.993:8970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27696 comm="syz.6.8485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  293.671327][T27742] sd 0:0:1:0: device reset
[  293.677968][T27745] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  293.930098][T27774] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  293.930098][T27774]    program syz.4.8520 not setting count and/or reply_len properly
[  293.954101][T27780] __nla_validate_parse: 1 callbacks suppressed
[  293.954121][T27780] netlink: 1347 bytes leftover after parsing attributes in process `syz.2.8522'.
[  294.237801][T27809] loop2: detected capacity change from 0 to 256
[  294.439774][T24879] hid-generic 0000:0004:0000.0010: unknown main item tag 0x0
[  294.447424][T24879] hid-generic 0000:0004:0000.0010: unknown main item tag 0x0
[  294.454934][T24879] hid-generic 0000:0004:0000.0010: unknown main item tag 0x0
[  294.475820][T24879] hid-generic 0000:0004:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  294.545111][T27838] loop2: detected capacity change from 0 to 512
[  294.562055][T27835] netlink: 'syz.5.8547': attribute type 1 has an invalid length.
[  294.595035][T27838] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.626386][T27838] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  294.675588][T25282] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.754136][T24879] hid-generic 0000:0004:0000.0011: unknown main item tag 0x0
[  294.761799][T24879] hid-generic 0000:0004:0000.0011: unknown main item tag 0x0
[  294.769284][T24879] hid-generic 0000:0004:0000.0011: unknown main item tag 0x0
[  294.785617][T24879] hid-generic 0000:0004:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  294.859742][T27881] loop6: detected capacity change from 0 to 512
[  294.868396][T27885] loop5: detected capacity change from 0 to 512
[  294.877415][T27886] netlink: 'syz.1.8570': attribute type 21 has an invalid length.
[  294.887026][T27885] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  294.895715][T27886] netlink: 132 bytes leftover after parsing attributes in process `syz.1.8570'.
[  294.910479][T27881] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.926845][T27885] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.953535][T27881] ext4 filesystem being mounted at /94/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  294.964873][T27885] ext4 filesystem being mounted at /210/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  294.992000][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.005960][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.070643][T27915] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  295.136892][   T23] hid-generic 0000:0004:0000.0012: unknown main item tag 0x0
[  295.144698][   T23] hid-generic 0000:0004:0000.0012: unknown main item tag 0x0
[  295.152208][   T23] hid-generic 0000:0004:0000.0012: unknown main item tag 0x0
[  295.167599][   T23] hid-generic 0000:0004:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  295.256861][T27940] loop4: detected capacity change from 0 to 1024
[  295.311027][T27940] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  295.342330][T27940] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #14: comm syz.4.8592: attempt to clear invalid blocks 1886221359 len 1
[  295.393610][T15252] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.450609][T27969] netlink: 'syz.4.8610': attribute type 11 has an invalid length.
[  295.519989][ T3386] hid-generic 0000:0004:0000.0013: unknown main item tag 0x0
[  295.527642][ T3386] hid-generic 0000:0004:0000.0013: unknown main item tag 0x0
[  295.535229][ T3386] hid-generic 0000:0004:0000.0013: unknown main item tag 0x0
[  295.559652][ T3386] hid-generic 0000:0004:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  295.576203][T27983] random: crng reseeded on system resumption
[  295.592047][T27987] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8606'.
[  296.020038][T28047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8621'.
[  296.162697][   T23] hid-generic 0000:0004:0000.0014: unknown main item tag 0x0
[  296.170360][   T23] hid-generic 0000:0004:0000.0014: unknown main item tag 0x0
[  296.178072][   T23] hid-generic 0000:0004:0000.0014: unknown main item tag 0x0
[  296.188917][   T23] hid-generic 0000:0004:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  296.288530][T28073] loop5: detected capacity change from 0 to 512
[  296.317805][T28073] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.331977][T28073] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  296.385253][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.423627][T28095] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8637'.
[  296.583472][T28116] loop2: detected capacity change from 0 to 256
[  296.607622][T28116] msdos: Unknown parameter '18446744073709551615'
[  296.643553][T28119] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8640'.
[  296.694684][ T3422] hid-generic 0000:0004:0000.0015: unknown main item tag 0x0
[  296.702280][ T3422] hid-generic 0000:0004:0000.0015: unknown main item tag 0x0
[  296.709801][ T3422] hid-generic 0000:0004:0000.0015: unknown main item tag 0x0
[  296.742742][ T3422] hid-generic 0000:0004:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  296.774643][T28135] loop5: detected capacity change from 0 to 2048
[  297.044824][T28174] loop5: detected capacity change from 0 to 1024
[  297.058523][T28174] EXT4-fs: Ignoring removed mblk_io_submit option
[  297.065119][T28174] EXT4-fs: Ignoring removed nobh option
[  297.091082][T28174] EXT4-fs: test_dummy_encryption option not supported
[  297.202399][T28200] netlink: 404 bytes leftover after parsing attributes in process `syz.6.8663'.
[  297.296238][T28211] netlink: 52 bytes leftover after parsing attributes in process `syz.6.8668'.
[  297.328167][T28215] loop5: detected capacity change from 0 to 512
[  297.342733][T28215] EXT4-fs: Ignoring removed mblk_io_submit option
[  297.356974][T28215] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  297.410723][T28215] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  297.426624][T28215] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.491154][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.670551][   T29] kauditd_printk_skb: 263 callbacks suppressed
[  297.670569][   T29] audit: type=1400 audit(1750994953.035:9234): avc:  denied  { create } for  pid=28248 comm="syz.5.8686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  297.697392][   T29] audit: type=1400 audit(1750994953.035:9235): avc:  denied  { ioctl } for  pid=28248 comm="syz.5.8686" path="socket:[79207]" dev="sockfs" ino=79207 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  297.762521][   T29] audit: type=1400 audit(1750994953.132:9236): avc:  denied  { mount } for  pid=28250 comm="syz.5.8687" name="/" dev="configfs" ino=301 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  297.785433][   T29] audit: type=1400 audit(1750994953.132:9237): avc:  denied  { search } for  pid=28250 comm="syz.5.8687" name="/" dev="configfs" ino=301 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  297.807801][   T29] audit: type=1400 audit(1750994953.132:9238): avc:  denied  { search } for  pid=28250 comm="syz.5.8687" name="/" dev="configfs" ino=301 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  297.830190][   T29] audit: type=1400 audit(1750994953.132:9239): avc:  denied  { read open } for  pid=28250 comm="syz.5.8687" path="/" dev="configfs" ino=301 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  297.985559][   T29] audit: type=1326 audit(1750994953.368:9240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28252 comm="syz.5.8698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  298.009349][   T29] audit: type=1326 audit(1750994953.368:9241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28252 comm="syz.5.8698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  298.055743][   T29] audit: type=1326 audit(1750994953.422:9242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28252 comm="syz.5.8698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  298.079817][   T29] audit: type=1326 audit(1750994953.433:9243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28252 comm="syz.5.8698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  298.285919][T28281] SELinux: failed to load policy
[  300.936368][T28538] loop2: detected capacity change from 0 to 1024
[  300.950333][T28538] EXT4-fs: Ignoring removed nobh option
[  300.963050][T28538] EXT4-fs: Ignoring removed bh option
[  300.993401][T28538] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  301.025562][T25282] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.081670][T28550] sd 0:0:1:0: device reset
[  301.094797][T28552] loop6: detected capacity change from 0 to 256
[  301.103891][T28552] FAT-fs (loop6): bogus number of FAT sectors
[  301.110015][T28552] FAT-fs (loop6): Can't find a valid FAT filesystem
[  301.233039][T28559] loop6: detected capacity change from 0 to 512
[  301.242610][T28559] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  301.255324][T28559] EXT4-fs (loop6): 1 truncate cleaned up
[  301.261532][T28559] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  301.314599][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.379418][T28564] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8760'.
[  301.396430][T28566] netlink: 165 bytes leftover after parsing attributes in process `syz.2.8770'.
[  301.419959][T28566] netlink: 277 bytes leftover after parsing attributes in process `syz.2.8770'.
[  301.654380][T28582] loop4: detected capacity change from 0 to 1024
[  301.662882][T28582] EXT4-fs: Ignoring removed nobh option
[  301.669328][T28582] EXT4-fs: Ignoring removed bh option
[  301.698083][T28582] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  301.728494][T28591] loop2: detected capacity change from 0 to 256
[  301.732131][T15252] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.747434][T28591] FAT-fs (loop2): bogus number of FAT sectors
[  301.753565][T28591] FAT-fs (loop2): Can't find a valid FAT filesystem
[  301.794004][T28596] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8772'.
[  301.794755][T28598] netlink: 165 bytes leftover after parsing attributes in process `syz.5.8773'.
[  301.816355][T28598] netlink: 277 bytes leftover after parsing attributes in process `syz.5.8773'.
[  301.884487][T28604] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  302.329823][   T29] kauditd_printk_skb: 83 callbacks suppressed
[  302.329840][   T29] audit: type=1326 audit(1750994958.044:9327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.359903][   T29] audit: type=1326 audit(1750994958.044:9328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.372328][T28648] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8791'.
[  302.453632][   T29] audit: type=1326 audit(1750994958.119:9329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.477413][   T29] audit: type=1326 audit(1750994958.119:9330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.501230][   T29] audit: type=1326 audit(1750994958.119:9331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.524841][   T29] audit: type=1326 audit(1750994958.151:9332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.548433][   T29] audit: type=1326 audit(1750994958.151:9333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.572194][   T29] audit: type=1326 audit(1750994958.151:9334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.595773][   T29] audit: type=1326 audit(1750994958.162:9335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.619733][   T29] audit: type=1326 audit(1750994958.162:9336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28642 comm="syz.6.8780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  302.720716][T28651] SELinux: failed to load policy
[  302.869449][T28673] 9pnet: p9_errstr2errno: server reported unknown error �L��	O�!��L
[  302.883882][T28667] sd 0:0:1:0: device reset
[  303.157154][T28713] veth5: entered promiscuous mode
[  303.162347][T28713] veth5: entered allmulticast mode
[  303.192777][T28720] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8811'.
[  303.539563][T28765] batadv_slave_1: entered promiscuous mode
[  303.566132][T28764] batadv_slave_1: left promiscuous mode
[  303.575511][T28761] loop6: detected capacity change from 0 to 512
[  303.620366][T28761] EXT4-fs (loop6): orphan cleanup on readonly fs
[  303.637466][T28761] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.8832: bg 0: block 248: padding at end of block bitmap is not set
[  303.668863][T28761] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.8832: Failed to acquire dquot type 1
[  303.700353][T28761] EXT4-fs (loop6): 1 truncate cleaned up
[  303.726367][T28761] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  303.842159][T28787] netlink: 'syz.1.8844': attribute type 1 has an invalid length.
[  303.853649][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.042961][T28803] loop5: detected capacity change from 0 to 1024
[  304.105598][T28803] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.132581][T28803] ext4 filesystem being mounted at /264/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  304.166548][T28803] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  304.202544][T28803] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  304.214954][T28803] EXT4-fs (loop5): This should not happen!! Data will be lost
[  304.214954][T28803] 
[  304.224676][T28803] EXT4-fs (loop5): Total free blocks count 0
[  304.230767][T28803] EXT4-fs (loop5): Free/Dirty block details
[  304.236686][T28803] EXT4-fs (loop5): free_blocks=4293918720
[  304.242520][T28803] EXT4-fs (loop5): dirty_blocks=16
[  304.247703][T28803] EXT4-fs (loop5): Block reservation details
[  304.253751][T28803] EXT4-fs (loop5): i_reserved_data_blocks=1
[  304.297711][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.345440][T28827] loop2: detected capacity change from 0 to 164
[  304.357541][T28827] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  304.430667][T28835] netlink: 36 bytes leftover after parsing attributes in process `syz.5.8864'.
[  304.490061][T28842] futex_wake_op: syz.6.8868 tries to shift op by -1; fix this program
[  304.658365][T28855] loop2: detected capacity change from 0 to 512
[  304.689847][T28851] loop5: detected capacity change from 0 to 8192
[  304.699183][T28855] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #3: comm syz.2.8874: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  304.705038][T28853] SELinux: failed to load policy
[  304.819088][T28855] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.8874: Bad quota inode: 3, type: 0
[  304.850952][T28855] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  304.916177][T28855] EXT4-fs (loop2): mount failed
[  305.200852][T28895] loop5: detected capacity change from 0 to 8192
[  305.236740][T28895] FAT-fs (loop5): error, clusters badly computed (2 != 1)
[  305.244001][T28895] FAT-fs (loop5): Filesystem has been set read-only
[  305.369935][T28925] loop4: detected capacity change from 0 to 128
[  305.408418][T28925] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  305.467676][T28925] ext4 filesystem being mounted at /765/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  305.635784][T15252] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  305.780479][T28968] rdma_op ffff88812d660980 conn xmit_rdma 0000000000000000
[  305.815317][T28974] loop6: detected capacity change from 0 to 1024
[  305.827968][T28974] EXT4-fs: Ignoring removed nobh option
[  305.833877][T28974] EXT4-fs: Ignoring removed bh option
[  305.851552][T28974] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  305.881675][T28974] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[  305.899520][T28974] EXT4-fs (loop6): Remounting filesystem read-only
[  305.955724][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.975284][T28997] Invalid ELF header magic: != ELF
[  306.164187][T29022] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8949'.
[  306.175794][T29023] netlink: 'syz.5.8950': attribute type 1 has an invalid length.
[  306.176173][T29022] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8949'.
[  306.325028][T29038] netlink: 'syz.5.8958': attribute type 6 has an invalid length.
[  306.381274][T29049] loop4: detected capacity change from 0 to 2048
[  306.400366][T29049] EXT4-fs: Ignoring removed mblk_io_submit option
[  306.422337][T29054] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8964'.
[  306.449145][T29049] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  306.603205][T29077] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.8962: bg 0: block 234: padding at end of block bitmap is not set
[  306.624811][T29083] EXT4-fs: Ignoring removed orlov option
[  306.631091][T29077] EXT4-fs (loop4): Remounting filesystem read-only
[  306.662509][T29088] blktrace: Concurrent blktraces are not allowed on loop10
[  306.678423][T29083] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  306.792569][T29101] loop5: detected capacity change from 0 to 512
[  306.805583][T29103] raw_sendmsg: syz.1.8986 forgot to set AF_INET. Fix it!
[  306.823975][T29101] EXT4-fs (loop5): too many log groups per flexible block group
[  306.831884][T29101] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  306.857680][T29101] EXT4-fs (loop5): mount failed
[  306.892736][T15252] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.919483][T29116] netlink: 'syz.5.8993': attribute type 2 has an invalid length.
[  306.927411][T29116] netlink: 'syz.5.8993': attribute type 1 has an invalid length.
[  306.935220][T29116] netlink: 199820 bytes leftover after parsing attributes in process `syz.5.8993'.
[  307.111107][T29124] loop2: detected capacity change from 0 to 8192
[  307.318214][   T29] kauditd_printk_skb: 351 callbacks suppressed
[  307.318231][   T29] audit: type=1326 audit(1750994963.407:9686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.348075][   T29] audit: type=1326 audit(1750994963.407:9687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.371650][   T29] audit: type=1326 audit(1750994963.407:9688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.395376][   T29] audit: type=1326 audit(1750994963.407:9689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.419075][   T29] audit: type=1326 audit(1750994963.407:9690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.442641][   T29] audit: type=1326 audit(1750994963.407:9691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.466302][   T29] audit: type=1326 audit(1750994963.407:9692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.489893][   T29] audit: type=1326 audit(1750994963.407:9693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.513574][   T29] audit: type=1326 audit(1750994963.407:9694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.537108][   T29] audit: type=1326 audit(1750994963.407:9695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29144 comm="syz.5.9006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  307.656615][T29149] loop4: detected capacity change from 0 to 512
[  307.703939][T29149] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  307.723480][T29104] Set syz1 is full, maxelem 65536 reached
[  307.752422][T29149] EXT4-fs (loop4): 1 truncate cleaned up
[  307.760816][T29149] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  307.853162][T15252] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  307.967975][T29177] loop2: detected capacity change from 0 to 1024
[  307.989784][T29177] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  308.006043][T29177] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  308.028269][T29177] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: inode #32: comm syz.2.9020: iget: special inode unallocated
[  308.042949][T29177] EXT4-fs (loop2): no journal found
[  308.048271][T29177] EXT4-fs (loop2): can't get journal size
[  308.058865][T29177] EXT4-fs error (device loop2): ext4_protect_reserved_inode:160: inode #32: comm syz.2.9020: iget: special inode unallocated
[  308.076894][T29177] EXT4-fs (loop2): failed to initialize system zone (-117)
[  308.084444][T29177] EXT4-fs (loop2): mount failed
[  308.126457][ T9007] nci: nci_extract_activation_params_nfc_dep: unsupported activation_rf_tech_and_mode 0x6
[  308.144817][T29193] syzkaller1: entered promiscuous mode
[  308.150557][T29193] syzkaller1: entered allmulticast mode
[  308.238281][T29203] netlink: 'syz.6.9029': attribute type 13 has an invalid length.
[  308.250427][T29207] loop5: detected capacity change from 0 to 128
[  308.258833][T29206] loop2: detected capacity change from 0 to 128
[  308.270675][T29207] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  308.280608][T29203] gretap0: refused to change device tx_queue_len
[  308.285925][T29207] ext4 filesystem being mounted at /305/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  308.289126][T29203] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  308.322187][T29206] FAT-fs (loop2): Directory bread(block 162) failed
[  308.330156][T29213] netlink: 'syz.4.9033': attribute type 1 has an invalid length.
[  308.337971][T29213] netlink: 224 bytes leftover after parsing attributes in process `syz.4.9033'.
[  308.347571][T29206] FAT-fs (loop2): Directory bread(block 163) failed
[  308.354436][T29206] FAT-fs (loop2): Directory bread(block 164) failed
[  308.361074][T29206] FAT-fs (loop2): Directory bread(block 165) failed
[  308.370923][T29206] FAT-fs (loop2): Directory bread(block 166) failed
[  308.383739][T29206] FAT-fs (loop2): Directory bread(block 167) failed
[  308.386828][T25504] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  308.390717][T29206] FAT-fs (loop2): Directory bread(block 168) failed
[  308.406364][T29206] FAT-fs (loop2): Directory bread(block 169) failed
[  308.425560][T29206] FAT-fs (loop2): Directory bread(block 162) failed
[  308.432417][T29206] FAT-fs (loop2): Directory bread(block 163) failed
[  308.439837][T29206] syz.2.9031: attempt to access beyond end of device
[  308.439837][T29206] loop2: rw=3, sector=226, nr_sectors = 6 limit=128
[  308.454577][T29206] syz.2.9031: attempt to access beyond end of device
[  308.454577][T29206] loop2: rw=2051, sector=232, nr_sectors = 2 limit=128
[  308.666462][T29238] SELinux: failed to load policy
[  309.068505][T29262] syzkaller1: entered promiscuous mode
[  309.074089][T29262] syzkaller1: entered allmulticast mode
[  309.100795][T29269] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9056'.
[  309.312103][T29294] vhci_hcd: invalid port number 236
[  309.492842][T29307] netlink: 76 bytes leftover after parsing attributes in process `syz.5.9074'.
[  309.502584][T29305] netem: change failed
[  309.634454][T29327] loop4: detected capacity change from 0 to 128
[  309.689053][T29336] loop5: detected capacity change from 0 to 1024
[  309.697886][T29336] EXT4-fs: Ignoring removed orlov option
[  309.731014][T29336] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.760305][T29351] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9088'.
[  309.787893][T29351] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  309.796916][T29351] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  309.805702][T29351] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  309.809400][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.814502][T29351] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  309.882218][T29351] vxlan0: entered promiscuous mode
[  309.893725][T29354] geneve0: entered allmulticast mode
[  310.102259][T29372] loop6: detected capacity change from 0 to 512
[  310.133259][T29372] EXT4-fs (loop6): 1 orphan inode deleted
[  310.157562][T23503] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:270: Failed to release dquot type 1
[  310.206875][T29372] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.229664][T29385] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9105'.
[  310.239059][T29372] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  310.282561][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.566995][T29418] bridge: RTM_NEWNEIGH with invalid ether address
[  310.588029][T29420] loop9: detected capacity change from 0 to 7
[  310.594461][T29420] Buffer I/O error on dev loop9, logical block 0, async page read
[  310.603724][T29420] Buffer I/O error on dev loop9, logical block 0, async page read
[  310.611861][T29420]  loop9: unable to read partition table
[  310.628079][T29420] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  310.628079][T29420] 
) failed (rc=-5)
[  310.659113][T29428] netlink: 268 bytes leftover after parsing attributes in process `syz.2.9126'.
[  310.722237][T29437] loop2: detected capacity change from 0 to 256
[  310.730458][T29437] FAT-fs (loop2): bogus number of FAT sectors
[  310.736707][T29437] FAT-fs (loop2): Can't find a valid FAT filesystem
[  310.773851][T29442] netlink: 'syz.4.9130': attribute type 15 has an invalid length.
[  310.781773][T29442] netlink: 'syz.4.9130': attribute type 18 has an invalid length.
[  310.792533][T29442] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  310.800953][T29442] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  310.809268][T29442] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  310.817542][T29442] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  310.826283][T29442] vxlan0: entered promiscuous mode
[  311.002236][T29461] loop2: detected capacity change from 0 to 256
[  311.010187][T29461] FAT-fs (loop2): bogus number of FAT sectors
[  311.016520][T29461] FAT-fs (loop2): Can't find a valid FAT filesystem
[  311.087613][T29466] loop2: detected capacity change from 0 to 256
[  311.094845][T29466] FAT-fs (loop2): Directory bread(block 1285) failed
[  311.103256][T29466] FAT-fs (loop2): Directory bread(block 1285) failed
[  311.110145][T29466] FAT-fs (loop2): Directory bread(block 1285) failed
[  311.125844][T29466] FAT-fs (loop2): Directory bread(block 1285) failed
[  311.136997][T29466] FAT-fs (loop2): Directory bread(block 1285) failed
[  311.146538][T29466] FAT-fs (loop2): Directory bread(block 1285) failed
[  311.153522][T29466] FAT-fs (loop2): FAT read failed (blocknr 1281)
[  311.160497][T29466] FAT-fs (loop2): Directory bread(block 1285) failed
[  311.167725][T29466] FAT-fs (loop2): FAT read failed (blocknr 1281)
[  311.174728][T29466] FAT-fs (loop2): Directory bread(block 1285) failed
[  311.376831][T29481] loop5: detected capacity change from 0 to 512
[  311.385392][T29481] EXT4-fs (loop5): orphan cleanup on readonly fs
[  311.394513][T29481] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.9149: bg 0: block 248: padding at end of block bitmap is not set
[  311.409612][T29481] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.9149: Failed to acquire dquot type 1
[  311.421462][T29484] loop6: detected capacity change from 0 to 128
[  311.424229][T29481] EXT4-fs (loop5): 1 truncate cleaned up
[  311.430072][T29484] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  311.437680][T29481] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  311.445747][T29484] ext4 filesystem being mounted at /204/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  311.482623][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.524601][T26694] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  311.583852][T29500] __nla_validate_parse: 1 callbacks suppressed
[  311.583874][T29500] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9157'.
[  311.590788][    C1] vcan0: j1939_tp_rxtimer: 0xffff888115387e00: rx timeout, send abort
[  311.599144][T29500] netlink: 'syz.4.9157': attribute type 30 has an invalid length.
[  311.636546][T29505] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  311.656054][T29500] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9157'.
[  311.665098][T29500] netlink: 'syz.4.9157': attribute type 30 has an invalid length.
[  311.828613][T29518] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.835959][T29518] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.904510][T29518] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  311.922534][T29518] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  311.960141][T29518] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  311.969205][T29518] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  311.978288][T29518] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  311.987319][T29518] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.072559][    C1] vcan0: j1939_tp_rxtimer: 0xffff888115387e00: abort rx timeout. Force session deactivation
[  312.114076][   T29] kauditd_printk_skb: 114 callbacks suppressed
[  312.114092][   T29] audit: type=1400 audit(1750994968.554:9807): avc:  denied  { read write } for  pid=20239 comm="syz-executor" name="loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  312.143838][   T29] audit: type=1400 audit(1750994968.554:9808): avc:  denied  { open } for  pid=20239 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  312.167327][   T29] audit: type=1400 audit(1750994968.554:9809): avc:  denied  { ioctl } for  pid=20239 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  312.283927][T29549] loop5: detected capacity change from 0 to 512
[  312.316498][T29549] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  312.377002][T29549] EXT4-fs (loop5): 1 truncate cleaned up
[  312.395378][T29549] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  312.555578][   T29] audit: type=1326 audit(1750994969.037:9810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29566 comm="syz.4.9179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f422c2de929 code=0x7ffc0000
[  312.620037][   T29] audit: type=1326 audit(1750994969.037:9811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29566 comm="syz.4.9179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f422c2de929 code=0x7ffc0000
[  312.643737][   T29] audit: type=1326 audit(1750994969.037:9812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29566 comm="syz.4.9179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f422c2de929 code=0x7ffc0000
[  312.667292][   T29] audit: type=1326 audit(1750994969.037:9813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29566 comm="syz.4.9179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f422c2de929 code=0x7ffc0000
[  312.691172][   T29] audit: type=1326 audit(1750994969.037:9814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29566 comm="syz.4.9179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f422c2de929 code=0x7ffc0000
[  312.714911][   T29] audit: type=1326 audit(1750994969.037:9815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29566 comm="syz.4.9179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f422c2de929 code=0x7ffc0000
[  312.738896][   T29] audit: type=1326 audit(1750994969.037:9816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29566 comm="syz.4.9179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f422c2de929 code=0x7ffc0000
[  312.834638][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.870463][T29580] loop4: detected capacity change from 0 to 512
[  312.890519][T29582] xt_hashlimit: size too large, truncated to 1048576
[  312.897298][T29582] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  312.926583][T29580] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #3: comm syz.4.9184: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  313.013927][T29580] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.9184: Bad quota inode: 3, type: 0
[  313.099058][T29580] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  313.167001][T29580] EXT4-fs (loop4): mount failed
[  313.235548][T29598] netlink: 'syz.1.9192': attribute type 4 has an invalid length.
[  313.285423][T29598] netlink: 'syz.1.9192': attribute type 4 has an invalid length.
[  313.341763][T29522] hid-generic 0003:0000:0000.0016: unknown main item tag 0x0
[  313.355147][T29522] hid-generic 0003:0000:0000.0016: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  313.521796][T29625] loop1: detected capacity change from 0 to 512
[  313.550912][T29629] Invalid ELF header magic: != ELF
[  313.557026][T29625] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  313.583854][T29625] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  313.648115][T29625] EXT4-fs (loop1): 1 truncate cleaned up
[  313.654295][T29625] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.732400][T29646] netlink: 'syz.2.9212': attribute type 1 has an invalid length.
[  313.770739][T20239] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.143561][T29668] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.9221'.
[  314.386457][T29682] infiniband syz0: set active
[  314.391215][T29682] infiniband syz0: added veth0_to_team
[  314.434393][T29682] RDS/IB: syz0: added
[  314.443472][T29682] smc: adding ib device syz0 with port count 1
[  314.457123][T29682] smc:    ib device syz0 port 1 has pnetid 
[  314.653907][T29705] loop4: detected capacity change from 0 to 1024
[  314.660843][T29705] EXT4-fs: Ignoring removed nobh option
[  314.666588][T29705] EXT4-fs: Ignoring removed bh option
[  314.720631][T29705] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  314.838676][T15252] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.021644][T29727] SELinux: ebitmap: map size 4294449787 does not match my size 64 (high bit was 0)
[  315.045636][T29727] SELinux: failed to load policy
[  315.045904][ T4471] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  315.060576][ T4471] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.128758][T29734] netlink: 'syz.2.9254': attribute type 6 has an invalid length.
[  315.159544][ T4471] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  315.169525][ T4471] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.219228][T29741] random: crng reseeded on system resumption
[  315.262194][ T4471] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  315.272051][ T4471] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.371155][ T4471] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  315.381132][ T4471] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.468575][T29758] netlink: 3 bytes leftover after parsing attributes in process `syz.2.9262'.
[  315.604874][ T4471] team0: Port device bond0 removed
[  315.624398][ T4471] bond0 (unregistering): Released all slaves
[  315.645602][ T4471] bond1 (unregistering): Released all slaves
[  315.679787][ T4471] bond2 (unregistering): Released all slaves
[  315.713757][T29758] 0�X���: renamed from caif0
[  315.728390][T29758] 0�X���: entered allmulticast mode
[  315.733772][T29758] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  315.800515][ T4471] tipc: Left network mode
[  315.895274][T29781] netlink: 36 bytes leftover after parsing attributes in process `syz.2.9272'.
[  315.929662][T29783] SELinux:  policydb version 0 does not match my version range 15-34
[  315.958657][ T4471] hsr_slave_0: left promiscuous mode
[  315.971233][ T4471] hsr_slave_1: left promiscuous mode
[  315.980880][T29783] SELinux: failed to load policy
[  315.990451][ T4471] veth1_vlan: left promiscuous mode
[  316.006441][ T4471] veth0_vlan: left promiscuous mode
[  316.094136][T29800] 9pnet: p9_errstr2errno: server reported unknown error ��p��A���
��;
KZ�44�/@�q��k
[  316.193788][T29803] loop5: detected capacity change from 0 to 512
[  316.224193][T29803] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  316.276889][T29803] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  316.319322][T29805] loop6: detected capacity change from 0 to 2048
[  316.326180][T29805] EXT4-fs: Ignoring removed mblk_io_submit option
[  316.335094][T29738] chnl_net:caif_netlink_parms(): no params data found
[  316.360423][T29805] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.362397][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.417160][T29738] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.424338][T29738] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.449648][T29738] bridge_slave_0: entered allmulticast mode
[  316.456284][T29738] bridge_slave_0: entered promiscuous mode
[  316.478655][T29738] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.485859][T29738] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.532529][T29738] bridge_slave_1: entered allmulticast mode
[  316.554371][T29738] bridge_slave_1: entered promiscuous mode
[  316.638912][T29738] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  316.669327][T29738] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  316.708620][T29738] team0: Port device team_slave_0 added
[  316.716831][T29738] team0: Port device team_slave_1 added
[  316.752744][T23016] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm kworker/u8:248: bg 0: block 234: padding at end of block bitmap is not set
[  316.773538][T29738] batman_adv: batadv0: Adding interface: batadv_slave_0
[  316.780674][T29738] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.806804][T29738] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  316.819162][T23016] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  316.831642][T23016] EXT4-fs (loop6): This should not happen!! Data will be lost
[  316.831642][T23016] 
[  316.873005][T23016] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 2048 with error 28
[  316.886119][T23016] EXT4-fs (loop6): This should not happen!! Data will be lost
[  316.886119][T23016] 
[  316.892550][T29828] loop1: detected capacity change from 0 to 2048
[  316.895812][T23016] EXT4-fs (loop6): Total free blocks count 0
[  316.895830][T23016] EXT4-fs (loop6): Free/Dirty block details
[  316.905462][T29738] batman_adv: batadv0: Adding interface: batadv_slave_1
[  316.908450][T23016] EXT4-fs (loop6): free_blocks=0
[  316.914109][T29738] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.921049][T23016] EXT4-fs (loop6): dirty_blocks=4096
[  316.921069][T23016] EXT4-fs (loop6): Block reservation details
[  316.963569][T29738] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  316.977831][T29828] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.011854][T29738] hsr_slave_0: entered promiscuous mode
[  317.021255][T29828] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  317.037375][   T29] kauditd_printk_skb: 62 callbacks suppressed
[  317.037393][   T29] audit: type=1400 audit(1750994973.851:9879): avc:  denied  { shutdown } for  pid=29829 comm="syz.5.9288" lport=57712 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  317.038131][T29738] hsr_slave_1: entered promiscuous mode
[  317.103868][T20239] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.139885][T29738] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  317.159312][   T29] audit: type=1326 audit(1750994973.979:9880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29836 comm="syz.5.9291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  317.186474][T29738] Cannot create hsr debugfs directory
[  317.208620][   T29] audit: type=1326 audit(1750994973.979:9881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29836 comm="syz.5.9291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  317.232368][   T29] audit: type=1326 audit(1750994973.979:9882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29836 comm="syz.5.9291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  317.255852][   T29] audit: type=1326 audit(1750994973.979:9883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29836 comm="syz.5.9291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  317.279424][   T29] audit: type=1326 audit(1750994973.979:9884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29836 comm="syz.5.9291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ae8f5e929 code=0x7ffc0000
[  317.373454][   T29] audit: type=1400 audit(1750994974.151:9885): avc:  denied  { create } for  pid=29838 comm="syz.6.9286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  317.393325][   T29] audit: type=1400 audit(1750994974.162:9886): avc:  denied  { connect } for  pid=29838 comm="syz.6.9286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  317.413293][   T29] audit: type=1400 audit(1750994974.162:9887): avc:  denied  { ioctl } for  pid=29838 comm="syz.6.9286" path="socket:[84405]" dev="sockfs" ino=84405 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  317.572511][   T29] audit: type=1326 audit(1750994974.420:9888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29855 comm="syz.6.9297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  317.730014][T29738] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  317.751729][T29738] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  317.761824][T29867] Falling back ldisc for ttyS3.
[  317.765165][T29738] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  317.800776][T29738] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  317.818176][T29869] netlink: 'syz.2.9303': attribute type 2 has an invalid length.
[  317.826063][T29869] netlink: 'syz.2.9303': attribute type 1 has an invalid length.
[  317.834005][T29869] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.9303'.
[  317.906290][T29881] loop5: detected capacity change from 0 to 512
[  317.935180][T29881] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  317.947631][T29886] SELinux:  Context system_u:object_r:gpg_exec_t:s0 is not valid (left unmapped).
[  317.974075][T29881] EXT4-fs (loop5): 1 truncate cleaned up
[  317.981543][T29738] 8021q: adding VLAN 0 to HW filter on device bond0
[  317.998646][T29881] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  318.023935][T29881] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.038424][T29738] 8021q: adding VLAN 0 to HW filter on device team0
[  318.103173][T23016] bridge0: port 1(bridge_slave_0) entered blocking state
[  318.110330][T23016] bridge0: port 1(bridge_slave_0) entered forwarding state
[  318.165887][T23016] bridge0: port 2(bridge_slave_1) entered blocking state
[  318.173038][T23016] bridge0: port 2(bridge_slave_1) entered forwarding state
[  318.261754][T29738] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  318.433435][T29738] 8021q: adding VLAN 0 to HW filter on device batadv0
[  318.645324][T29935] netlink: 1 bytes leftover after parsing attributes in process `syz.5.9326'.
[  318.697009][T29938] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.9327'.
[  318.724221][T29938] netlink: zone id is out of range
[  318.733234][T29938] netlink: zone id is out of range
[  318.756583][T29938] netlink: del zone limit has 8 unknown bytes
[  318.808964][T29738] veth0_vlan: entered promiscuous mode
[  318.835243][T29738] veth1_vlan: entered promiscuous mode
[  318.882103][T29738] veth0_macvtap: entered promiscuous mode
[  318.900885][T29738] veth1_macvtap: entered promiscuous mode
[  318.929492][T29738] batman_adv: batadv0: Interface activated: batadv_slave_0
[  318.945322][T29738] batman_adv: batadv0: Interface activated: batadv_slave_1
[  318.985748][T29738] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  318.994701][T29738] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  319.003551][T29738] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  319.012401][T29738] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  319.170695][T29968] loop5: detected capacity change from 0 to 2048
[  319.225868][T29968]  loop5: p1 p2 < > p3 < p5 >
[  319.230624][T29968] loop5: partition table partially beyond EOD, truncated
[  319.233473][T29975] loop6: detected capacity change from 0 to 512
[  319.254487][T29968] loop5: p1 start 4043309312 is beyond EOD, truncated
[  319.261252][T29975] EXT4-fs: Ignoring removed bh option
[  319.261391][T29968] loop5: p2 start 4278190080 is beyond EOD, truncated
[  319.282981][T29975] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  319.292165][T29975] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  319.294320][T29968] loop5: p5 start 4043309312 is beyond EOD, truncated
[  319.329209][T29975] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  319.349213][T29975] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  319.373771][T29975] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.458407][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.530828][T29983] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  319.543629][T29994] loop6: detected capacity change from 0 to 512
[  319.549555][T29983] SELinux: failed to load policy
[  319.601717][T29994] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.607485][T29997] loop2: detected capacity change from 0 to 2048
[  319.632506][T29994] ext4 filesystem being mounted at /244/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.706566][T29997] EXT4-fs: Ignoring removed mblk_io_submit option
[  319.747384][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.764596][T29997] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.778067][T30007] loop5: detected capacity change from 0 to 512
[  319.795133][T30007] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  319.819754][T30007] EXT4-fs (loop5): 1 truncate cleaned up
[  319.827355][T30007] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.930587][T29808] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  319.958444][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.004622][T30013] loop6: detected capacity change from 0 to 1024
[  320.057700][T30015] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9353'.
[  320.075551][T30013] EXT4-fs: Ignoring removed nobh option
[  320.089487][T30013] EXT4-fs: Ignoring removed bh option
[  320.096218][T23503] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  320.108577][T23503] EXT4-fs (loop2): This should not happen!! Data will be lost
[  320.108577][T23503] 
[  320.118383][T23503] EXT4-fs (loop2): Total free blocks count 0
[  320.124397][T23503] EXT4-fs (loop2): Free/Dirty block details
[  320.130373][T23503] EXT4-fs (loop2): free_blocks=0
[  320.135352][T23503] EXT4-fs (loop2): dirty_blocks=544
[  320.140688][T23503] EXT4-fs (loop2): Block reservation details
[  320.146777][T23503] EXT4-fs (loop2): i_reserved_data_blocks=34
[  320.161571][T23503] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 523 with error 28
[  320.176070][T30013] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.210013][T30013] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[  320.249829][T30013] EXT4-fs (loop6): Remounting filesystem read-only
[  320.273847][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.298730][T30025] Falling back ldisc for ttyS3.
[  320.380959][T30033] loop5: detected capacity change from 0 to 164
[  320.423794][T30033] syz.5.9362: attempt to access beyond end of device
[  320.423794][T30033] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  320.470277][T30033] syz.5.9362: attempt to access beyond end of device
[  320.470277][T30033] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  320.476731][T30038] SELinux: failed to load policy
[  320.645041][T30043] loop5: detected capacity change from 0 to 2048
[  320.649984][T30045] loop1: detected capacity change from 0 to 512
[  320.672106][T30043] EXT4-fs: Ignoring removed mblk_io_submit option
[  320.679714][T30045] EXT4-fs (loop1): too many log groups per flexible block group
[  320.687656][T30045] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  320.710696][T30043] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.713169][T30045] EXT4-fs (loop1): mount failed
[  320.822994][T30050] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.9366: bg 0: block 234: padding at end of block bitmap is not set
[  320.853757][T30052] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9367'.
[  320.877697][T30050] EXT4-fs (loop5): Remounting filesystem read-only
[  320.896625][T30053] EXT4-fs: Ignoring removed orlov option
[  320.917547][T30053] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  321.004910][T30059] loop1: detected capacity change from 0 to 512
[  321.014328][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.058469][T30059] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  321.096524][T30059] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.149185][T30059] ext4 filesystem being mounted at /467/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.176540][T30066] loop2: detected capacity change from 0 to 2048
[  321.212552][T30066] EXT4-fs: Ignoring removed mblk_io_submit option
[  321.246933][T20239] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.265358][T30066] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.325512][T30077] loop5: detected capacity change from 0 to 512
[  321.350826][T30077] EXT4-fs: Ignoring removed bh option
[  321.366485][T30083] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.9382: bg 0: block 234: padding at end of block bitmap is not set
[  321.393859][T30077] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  321.403235][T30077] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  321.429377][T30083] EXT4-fs (loop2): Remounting filesystem read-only
[  321.436123][T30084] loop1: detected capacity change from 0 to 2048
[  321.457407][T30077] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  321.491507][T30077] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  321.515014][T30084]  loop1: p1 p2 < > p3 < p5 >
[  321.519786][T30084] loop1: partition table partially beyond EOD, truncated
[  321.551435][T30077] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.563822][T30084] loop1: p1 start 4043309312 is beyond EOD, truncated
[  321.570797][T30084] loop1: p2 start 4278190080 is beyond EOD, truncated
[  321.616963][T30066] EXT4-fs: Ignoring removed orlov option
[  321.635004][T30084] loop1: p5 start 4043309312 is beyond EOD, truncated
[  321.649289][T30066] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[  321.677668][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.725965][T30092] syzkaller1: entered promiscuous mode
[  321.731577][T30092] syzkaller1: entered allmulticast mode
[  321.742181][T25282] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.757126][T30094] loop5: detected capacity change from 0 to 128
[  321.782420][T30094] FAT-fs (loop5): Directory bread(block 162) failed
[  321.801557][T30094] FAT-fs (loop5): Directory bread(block 163) failed
[  321.808328][T30094] FAT-fs (loop5): Directory bread(block 164) failed
[  321.836471][T30094] FAT-fs (loop5): Directory bread(block 165) failed
[  321.855562][T30094] FAT-fs (loop5): Directory bread(block 166) failed
[  321.877097][T30094] FAT-fs (loop5): Directory bread(block 167) failed
[  321.896525][T30103] loop7: detected capacity change from 0 to 1024
[  321.909564][T30094] FAT-fs (loop5): Directory bread(block 168) failed
[  321.916237][T30103] EXT4-fs: Ignoring removed nobh option
[  321.916307][T30103] EXT4-fs: Ignoring removed bh option
[  321.936175][T30094] FAT-fs (loop5): Directory bread(block 169) failed
[  321.937394][T30103] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.982495][T30094] FAT-fs (loop5): Directory bread(block 162) failed
[  322.000646][T30094] FAT-fs (loop5): Directory bread(block 163) failed
[  322.017637][T30094] syz.5.9378: attempt to access beyond end of device
[  322.017637][T30094] loop5: rw=3, sector=226, nr_sectors = 6 limit=128
[  322.064106][T30094] syz.5.9378: attempt to access beyond end of device
[  322.064106][T30094] loop5: rw=2051, sector=232, nr_sectors = 2 limit=128
[  322.085463][T30103] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[  322.137164][T30103] EXT4-fs (loop7): Remounting filesystem read-only
[  322.232254][T30125] loop5: detected capacity change from 0 to 512
[  322.238992][T30125] EXT4-fs: Ignoring removed nomblk_io_submit option
[  322.259814][T29738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.332169][T30125] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.365220][T30130] netlink: 8 bytes leftover after parsing attributes in process `syz.7.9393'.
[  322.403093][T30125] ext4 filesystem being mounted at /417/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  322.540030][T25504] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.624080][T30140] syzkaller1: entered promiscuous mode
[  322.629760][T30140] syzkaller1: entered allmulticast mode
[  322.780995][T30154] netlink: 209852 bytes leftover after parsing attributes in process `syz.7.9404'.
[  322.819330][T30154] netlink: zone id is out of range
[  322.823825][T30162] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9406'.
[  322.843016][T30154] netlink: zone id is out of range
[  322.844134][T30162] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  322.856312][T30164] loop2: detected capacity change from 0 to 128
[  322.863808][T30162] batman_adv: batadv0: Removing interface: batadv_slave_1
[  322.865708][T30154] netlink: del zone limit has 8 unknown bytes
[  322.901471][T30164] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  322.943572][T30164] ext4 filesystem being mounted at /364/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  322.959550][   T29] kauditd_printk_skb: 34 callbacks suppressed
[  322.959565][   T29] audit: type=1400 audit(1750994980.210:9923): avc:  denied  { create } for  pid=30163 comm="syz.2.9408" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  323.038187][T25282] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  323.075491][T30169] loop1: detected capacity change from 0 to 1024
[  323.095752][T30169] EXT4-fs: Ignoring removed orlov option
[  323.106837][T30169] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.218821][T20239] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.359237][T30195] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9419'.
[  323.405023][T30198] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9420'.
[  323.431356][T30198] batman_adv: batadv0: Removing interface: batadv_slave_1
[  323.590170][T30206] vhci_hcd: invalid port number 236
[  323.617362][T30209] loop6: detected capacity change from 0 to 1024
[  323.635805][T30209] EXT4-fs: Ignoring removed orlov option
[  323.682537][T30209] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.746864][T30223] loop7: detected capacity change from 0 to 128
[  323.788436][T26694] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.800619][ T8982] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.851781][T30228] tipc: Started in network mode
[  323.856732][T30228] tipc: Node identity ac1414aa, cluster identity 4711
[  323.874921][T30228] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  323.888414][ T8982] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.936995][T30235] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9439'.
[  323.977256][ T8982] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  324.032643][T30235] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  324.065242][T30244] vhci_hcd: invalid port number 236
[  324.103810][T30235] batman_adv: batadv0: Removing interface: batadv_slave_1
[  324.151154][ T8982] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  324.287057][ T8982] bridge_slave_1: left allmulticast mode
[  324.292809][ T8982] bridge_slave_1: left promiscuous mode
[  324.298552][ T8982] bridge0: port 2(bridge_slave_1) entered disabled state
[  324.349517][ T8982] bridge_slave_0: left allmulticast mode
[  324.355302][ T8982] bridge_slave_0: left promiscuous mode
[  324.361029][ T8982] bridge0: port 1(bridge_slave_0) entered disabled state
[  324.529026][ T8982] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  324.558797][ T8982] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  324.576621][ T8982] bond0 (unregistering): Released all slaves
[  324.666934][ T8982] batadv_slave_0: left promiscuous mode
[  324.696828][ T8982] hsr_slave_0: left promiscuous mode
[  324.706530][ T8982] hsr_slave_1: left promiscuous mode
[  324.716049][ T8982] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  324.723613][ T8982] batman_adv: batadv0: Removing interface: batadv_slave_0
[  324.751455][ T8982] veth1_macvtap: left promiscuous mode
[  324.764176][ T8982] veth0_macvtap: left promiscuous mode
[  324.770415][ T8982] veth1_vlan: left promiscuous mode
[  324.785545][ T8982] veth0_vlan: left promiscuous mode
[  324.987306][ T8982] team0 (unregistering): Port device team_slave_1 removed
[  325.019745][T30265] loop7: detected capacity change from 0 to 1024
[  325.028369][ T8982] team0 (unregistering): Port device team_slave_0 removed
[  325.037608][T30265] EXT4-fs: Ignoring removed orlov option
[  325.062459][T30265] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  325.143524][T29738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.225573][T30272] loop7: detected capacity change from 0 to 128
[  325.247663][T30272] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  325.262004][T30274] geneve0: entered allmulticast mode
[  325.263032][T30272] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.315701][T29738] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  325.347157][T30240] chnl_net:caif_netlink_parms(): no params data found
[  325.377778][   T29] audit: type=1326 audit(1750994982.810:9924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.401418][   T29] audit: type=1326 audit(1750994982.810:9925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.430311][   T29] audit: type=1326 audit(1750994982.810:9926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.454011][   T29] audit: type=1326 audit(1750994982.810:9927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.460127][T30287] loop2: detected capacity change from 0 to 128
[  325.477537][   T29] audit: type=1326 audit(1750994982.810:9928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.477581][   T29] audit: type=1326 audit(1750994982.810:9929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.477652][   T29] audit: type=1326 audit(1750994982.810:9930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.477736][   T29] audit: type=1326 audit(1750994982.810:9931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.578571][   T29] audit: type=1326 audit(1750994982.810:9932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30281 comm="syz.7.9453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e85ede929 code=0x7ffc0000
[  325.648144][T30287] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  325.674040][T30240] bridge0: port 1(bridge_slave_0) entered blocking state
[  325.681324][T30240] bridge0: port 1(bridge_slave_0) entered disabled state
[  325.716070][T30287] ext4 filesystem being mounted at /377/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.749595][T30240] bridge_slave_0: entered allmulticast mode
[  325.762770][T30240] bridge_slave_0: entered promiscuous mode
[  325.776442][T30298] loop6: detected capacity change from 0 to 128
[  325.794298][T30240] bridge0: port 2(bridge_slave_1) entered blocking state
[  325.801498][T30240] bridge0: port 2(bridge_slave_1) entered disabled state
[  325.860380][T30240] bridge_slave_1: entered allmulticast mode
[  325.869924][T30287] Invalid logical block size (4097)
[  325.872963][T30240] bridge_slave_1: entered promiscuous mode
[  325.942212][T30240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  325.954587][T25282] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  325.985559][T30240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  326.050215][T30240] team0: Port device team_slave_0 added
[  326.072665][T30240] team0: Port device team_slave_1 added
[  326.126669][T30308] loop2: detected capacity change from 0 to 1024
[  326.143091][T30240] batman_adv: batadv0: Adding interface: batadv_slave_0
[  326.150175][T30240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  326.176197][T30240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  326.189551][T30308] EXT4-fs: Ignoring removed orlov option
[  326.192205][T30309] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9471'.
[  326.196494][T30240] batman_adv: batadv0: Adding interface: batadv_slave_1
[  326.204187][T30309] netlink: 'syz.5.9471': attribute type 15 has an invalid length.
[  326.204205][T30309] netlink: 'syz.5.9471': attribute type 18 has an invalid length.
[  326.211176][T30240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  326.211284][T30240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  326.286416][T30240] hsr_slave_0: entered promiscuous mode
[  326.301712][T30308] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  326.324457][T30240] hsr_slave_1: entered promiscuous mode
[  326.398761][T30240] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  326.419686][T30240] Cannot create hsr debugfs directory
[  326.435942][T30309] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  326.445037][T30309] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  326.454318][T30309] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  326.463106][T30309] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  326.476699][T30309] vxlan0: entered promiscuous mode
[  326.483698][T25282] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.846118][T30319] loop2: detected capacity change from 0 to 1024
[  326.846211][T30322] loop6: detected capacity change from 0 to 128
[  326.850268][T30322] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  326.883492][T30322] ext4 filesystem being mounted at /268/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.899272][T30325] geneve0: entered allmulticast mode
[  326.911464][T30319] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  326.927140][T30319] ext4 filesystem being mounted at /380/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.948455][T26694] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  326.949092][T30319] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  326.974220][T30319] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  326.986727][T30319] EXT4-fs (loop2): This should not happen!! Data will be lost
[  326.986727][T30319] 
[  326.996540][T30319] EXT4-fs (loop2): Total free blocks count 0
[  327.002554][T30319] EXT4-fs (loop2): Free/Dirty block details
[  327.008508][T30319] EXT4-fs (loop2): free_blocks=4293918720
[  327.014257][T30319] EXT4-fs (loop2): dirty_blocks=16
[  327.019424][T30319] EXT4-fs (loop2): Block reservation details
[  327.025507][T30319] EXT4-fs (loop2): i_reserved_data_blocks=1
[  327.099086][T25282] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.099457][T30240] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  327.139372][T30337] netlink: 268 bytes leftover after parsing attributes in process `syz.5.9470'.
[  327.164989][T30240] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  327.207670][T30240] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  327.232828][T30341] loop7: detected capacity change from 0 to 256
[  327.242440][T30240] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  327.259350][T30341] FAT-fs (loop7): bogus number of FAT sectors
[  327.265487][T30341] FAT-fs (loop7): Can't find a valid FAT filesystem
[  327.301568][T30339] SELinux: failed to load policy
[  327.438056][T30240] 8021q: adding VLAN 0 to HW filter on device bond0
[  327.468639][T30240] 8021q: adding VLAN 0 to HW filter on device team0
[  327.526958][T23016] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.534195][T23016] bridge0: port 1(bridge_slave_0) entered forwarding state
[  327.567737][ T8982] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.574919][ T8982] bridge0: port 2(bridge_slave_1) entered forwarding state
[  327.627627][   T29] kauditd_printk_skb: 60 callbacks suppressed
[  327.627644][   T29] audit: type=1326 audit(1750994985.227:9993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.657533][   T29] audit: type=1326 audit(1750994985.227:9994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.681158][   T29] audit: type=1326 audit(1750994985.227:9995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.690607][T30357] vlan1: entered promiscuous mode
[  327.709875][T30357] bond0: entered promiscuous mode
[  327.714945][T30357] bond_slave_0: entered promiscuous mode
[  327.720825][T30357] bond_slave_1: entered promiscuous mode
[  327.726844][T30357] vlan1: entered allmulticast mode
[  327.732024][T30357] bond0: entered allmulticast mode
[  327.737224][T30357] bond_slave_0: entered allmulticast mode
[  327.743026][T30357] bond_slave_1: entered allmulticast mode
[  327.751278][T30240] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  327.761721][T30240] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  327.809694][   T29] audit: type=1326 audit(1750994985.345:9996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.833681][   T29] audit: type=1326 audit(1750994985.345:9997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.857227][   T29] audit: type=1326 audit(1750994985.345:9998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.880840][   T29] audit: type=1326 audit(1750994985.345:9999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.904426][   T29] audit: type=1326 audit(1750994985.345:10000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.928196][   T29] audit: type=1326 audit(1750994985.345:10001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  327.951885][   T29] audit: type=1326 audit(1750994985.345:10002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30363 comm="syz.6.9479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f290ec8e929 code=0x7ffc0000
[  328.010154][T30375] IPv6: Can't replace route, no match found
[  328.070624][T30381] xt_CT: You must specify a L4 protocol and not use inversions on it
[  328.111224][T30240] 8021q: adding VLAN 0 to HW filter on device batadv0
[  328.158884][T30391] loop2: detected capacity change from 0 to 128
[  328.179520][T30393] loop6: detected capacity change from 0 to 128
[  328.200238][T30393] FAT-fs (loop6): Directory bread(block 162) failed
[  328.219056][T30393] FAT-fs (loop6): Directory bread(block 163) failed
[  328.236041][T30393] FAT-fs (loop6): Directory bread(block 164) failed
[  328.242723][T30393] FAT-fs (loop6): Directory bread(block 165) failed
[  328.262605][T30393] FAT-fs (loop6): Directory bread(block 166) failed
[  328.269386][T30393] FAT-fs (loop6): Directory bread(block 167) failed
[  328.276385][T30393] FAT-fs (loop6): Directory bread(block 168) failed
[  328.283323][T30393] FAT-fs (loop6): Directory bread(block 169) failed
[  328.294049][T30393] FAT-fs (loop6): Directory bread(block 162) failed
[  328.315225][T30393] FAT-fs (loop6): Directory bread(block 163) failed
[  328.356507][T30393] syz.6.9500: attempt to access beyond end of device
[  328.356507][T30393] loop6: rw=3, sector=226, nr_sectors = 6 limit=128
[  328.395357][T30393] syz.6.9500: attempt to access beyond end of device
[  328.395357][T30393] loop6: rw=2051, sector=232, nr_sectors = 2 limit=128
[  328.714451][T30418] vlan2: entered promiscuous mode
[  328.719646][T30418] bond0: entered promiscuous mode
[  328.724708][T30418] bond_slave_0: entered promiscuous mode
[  328.730539][T30418] bond_slave_1: entered promiscuous mode
[  328.736420][T30418] vlan2: entered allmulticast mode
[  328.741673][T30418] bond0: entered allmulticast mode
[  328.746846][T30418] bond_slave_0: entered allmulticast mode
[  328.752590][T30418] bond_slave_1: entered allmulticast mode
[  328.759980][T30240] veth0_vlan: entered promiscuous mode
[  328.768221][T30240] veth1_vlan: entered promiscuous mode
[  328.783705][T30240] veth0_macvtap: entered promiscuous mode
[  328.797070][T30240] veth1_macvtap: entered promiscuous mode
[  328.808646][T30240] batman_adv: batadv0: Interface activated: batadv_slave_0
[  328.822900][T30240] batman_adv: batadv0: Interface activated: batadv_slave_1
[  328.849529][T30240] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  328.858339][T30240] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  328.867230][T30240] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  328.876054][T30240] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  329.001996][T30424] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9499'.
[  329.018073][T30426] loop5: detected capacity change from 0 to 128
[  329.030563][T30426] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  329.049863][T30426] ext4 filesystem being mounted at /440/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  329.160233][T30440] loop6: detected capacity change from 0 to 128
[  329.170270][T30440] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  329.239900][T30440] ext4 filesystem being mounted at /281/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.299783][T25504] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  329.342118][T30440] Invalid logical block size (4097)
[  329.382698][T30452] loop7: detected capacity change from 0 to 256
[  329.390156][T30453] loop9: detected capacity change from 0 to 7
[  329.406747][T26694] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  329.417352][T30452] FAT-fs (loop7): Directory bread(block 1285) failed
[  329.418282][T30240] Buffer I/O error on dev loop9, logical block 0, async page read
[  329.432648][T30240] Buffer I/O error on dev loop9, logical block 0, async page read
[  329.440769][T30240]  loop9: unable to read partition table
[  329.449442][T30453] Buffer I/O error on dev loop9, logical block 0, async page read
[  329.466053][T30453] Buffer I/O error on dev loop9, logical block 0, async page read
[  329.474105][T30453]  loop9: unable to read partition table
[  329.489153][T30453] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  329.489153][T30453] 
) failed (rc=-5)
[  329.489155][T30452] FAT-fs (loop7): Directory bread(block 1285) failed
[  329.489265][T30452] FAT-fs (loop7): Directory bread(block 1285) failed
[  329.523467][T30458] loop9: detected capacity change from 0 to 128
[  329.541931][T30452] FAT-fs (loop7): Directory bread(block 1285) failed
[  329.549311][T30460] FAT-fs (loop7): Directory bread(block 1285) failed
[  329.566947][T30452] FAT-fs (loop7): Directory bread(block 1285) failed
[  329.578638][T30452] FAT-fs (loop7): FAT read failed (blocknr 1281)
[  329.586576][T30452] FAT-fs (loop7): Directory bread(block 1285) failed
[  329.595824][T30452] FAT-fs (loop7): FAT read failed (blocknr 1281)
[  329.607364][T30452] FAT-fs (loop7): Directory bread(block 1285) failed
[  329.632473][T30459] bridge0: port 2(bridge_slave_1) entered disabled state
[  329.639849][T30459] bridge0: port 1(bridge_slave_0) entered disabled state
[  329.709441][T30459] 0�X���: left allmulticast mode
[  329.838352][T30459] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  329.921723][T30459] geneve0: left allmulticast mode
[  329.957832][T30459] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  329.967015][T30459] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  329.976034][T30459] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  329.985083][T30459] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  330.044137][T30459] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  330.053182][T30459] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  330.062121][T30459] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  330.071164][T30459] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  330.107342][T30459] vxlan0: left promiscuous mode
[  330.113479][T30459] vlan1: left promiscuous mode
[  330.118382][T30459] bond0: left promiscuous mode
[  330.123255][T30459] bond_slave_0: left promiscuous mode
[  330.128827][T30459] bond_slave_1: left promiscuous mode
[  330.134575][T30459] vlan1: left allmulticast mode
[  330.139476][T30459] bond0: left allmulticast mode
[  330.144409][T30459] bond_slave_0: left allmulticast mode
[  330.149901][T30459] bond_slave_1: left allmulticast mode
[  330.171114][T29528] syz1: Port: 1 Link DOWN
[  330.175524][ T3422] syz0: Port: 1 Link DOWN
[  330.260713][T30486] Invalid ELF header magic: != ELF
[  330.840629][T30516] loop5: detected capacity change from 0 to 512
[  330.856295][T30515] loop9: detected capacity change from 0 to 1024
[  330.861978][T30516] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #3: comm syz.5.9533: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  330.900870][T30516] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.9533: Bad quota inode: 3, type: 0
[  330.916793][T30515] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  330.927062][T30516] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  330.956615][T30516] EXT4-fs (loop5): mount failed
[  330.962250][T30515] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  330.993772][T30515] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  331.031183][T30515] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  331.043611][T30515] EXT4-fs (loop9): This should not happen!! Data will be lost
[  331.043611][T30515] 
[  331.053351][T30515] EXT4-fs (loop9): Total free blocks count 0
[  331.059477][T30515] EXT4-fs (loop9): Free/Dirty block details
[  331.065562][T30515] EXT4-fs (loop9): free_blocks=4293918720
[  331.071374][T30515] EXT4-fs (loop9): dirty_blocks=16
[  331.076617][T30515] EXT4-fs (loop9): Block reservation details
[  331.082715][T30515] EXT4-fs (loop9): i_reserved_data_blocks=1
[  331.136174][T30240] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.341811][T30541] loop5: detected capacity change from 0 to 128
[  331.585054][T30558] loop7: detected capacity change from 0 to 1024
[  331.619149][T30558] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  331.649387][T30558] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  331.693130][T30558] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  331.719197][T30568] loop6: detected capacity change from 0 to 8192
[  331.726453][T30558] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  331.738918][T30558] EXT4-fs (loop7): This should not happen!! Data will be lost
[  331.738918][T30558] 
[  331.748691][T30558] EXT4-fs (loop7): Total free blocks count 0
[  331.754750][T30558] EXT4-fs (loop7): Free/Dirty block details
[  331.761112][T30558] EXT4-fs (loop7): free_blocks=4293918720
[  331.766952][T30558] EXT4-fs (loop7): dirty_blocks=16
[  331.772080][T30558] EXT4-fs (loop7): Block reservation details
[  331.778148][T30558] EXT4-fs (loop7): i_reserved_data_blocks=1
[  331.841342][T30568] FAT-fs (loop6): error, clusters badly computed (2 != 1)
[  331.848580][T30568] FAT-fs (loop6): Filesystem has been set read-only
[  331.891259][T30551] ==================================================================
[  331.899689][T30551] BUG: KCSAN: data-race in xas_find_marked / xas_set_mark
[  331.906863][T30551] 
[  331.909304][T30551] write to 0xffff888119ccb814 of 4 bytes by task 30541 on cpu 1:
[  331.917302][T30551]  xas_set_mark+0x12b/0x140
[  331.921859][T30551]  __folio_start_writeback+0x1dd/0x440
[  331.927786][T30551]  mpage_writepages+0xd18/0x1250
[  331.932742][T30551]  fat_writepages+0x24/0x30
[  331.937275][T30551]  do_writepages+0x1c6/0x310
[  331.941969][T30551]  file_write_and_wait_range+0x156/0x2c0
[  331.947633][T30551]  __generic_file_fsync+0x46/0x140
[  331.952775][T30551]  fat_file_fsync+0x49/0x100
[  331.957383][T30551]  vfs_fsync_range+0x10a/0x130
[  331.962177][T30551]  generic_file_write_iter+0x1b8/0x2f0
[  331.967658][T30551]  iter_file_splice_write+0x5ef/0x970
[  331.973057][T30551]  direct_splice_actor+0x153/0x2a0
[  331.978198][T30551]  splice_direct_to_actor+0x30f/0x680
[  331.983620][T30551]  do_splice_direct+0xda/0x150
[  331.988411][T30551]  do_sendfile+0x380/0x650
[  331.992854][T30551]  __x64_sys_sendfile64+0x105/0x150
[  331.998123][T30551]  x64_sys_call+0xb39/0x2fb0
[  332.002742][T30551]  do_syscall_64+0xd2/0x200
[  332.007264][T30551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.013198][T30551] 
[  332.015621][T30551] read to 0xffff888119ccb814 of 4 bytes by task 30551 on cpu 0:
[  332.023270][T30551]  xas_find_marked+0x5dc/0x620
[  332.028050][T30551]  find_get_entry+0x5d/0x380
[  332.032673][T30551]  filemap_get_folios_tag+0x92/0x210
[  332.038003][T30551]  filemap_fdatawait_range+0x88/0x1d0
[  332.043403][T30551]  __writeback_single_inode+0xdb/0x7c0
[  332.048889][T30551]  writeback_single_inode+0x167/0x3e0
[  332.054281][T30551]  sync_inode_metadata+0x5b/0x90
[  332.059246][T30551]  __generic_file_fsync+0xf8/0x140
[  332.064392][T30551]  fat_file_fsync+0x49/0x100
[  332.069011][T30551]  vfs_fsync_range+0x10a/0x130
[  332.073810][T30551]  generic_file_write_iter+0x1b8/0x2f0
[  332.079291][T30551]  iter_file_splice_write+0x5ef/0x970
[  332.084693][T30551]  direct_splice_actor+0x153/0x2a0
[  332.089836][T30551]  splice_direct_to_actor+0x30f/0x680
[  332.095255][T30551]  do_splice_direct+0xda/0x150
[  332.100046][T30551]  do_sendfile+0x380/0x650
[  332.104479][T30551]  __x64_sys_sendfile64+0x105/0x150
[  332.109694][T30551]  x64_sys_call+0xb39/0x2fb0
[  332.114308][T30551]  do_syscall_64+0xd2/0x200
[  332.118823][T30551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.124736][T30551] 
[  332.127068][T30551] value changed: 0x0a000021 -> 0x04000021
[  332.132809][T30551] 
[  332.135150][T30551] Reported by Kernel Concurrency Sanitizer on:
[  332.141321][T30551] CPU: 0 UID: 0 PID: 30551 Comm: syz.5.9542 Tainted: G        W           6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  332.155408][T30551] Tainted: [W]=WARN
[  332.159222][T30551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  332.169297][T30551] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  332.238021][T29738] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.534228][T23503] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.595094][T23503] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.650890][T23503] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.715747][T23503] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.777293][T23503] bridge_slave_1: left allmulticast mode
[  332.783085][T23503] bridge_slave_1: left promiscuous mode
[  332.788949][T23503] bridge0: port 2(bridge_slave_1) entered disabled state
[  332.798966][T23503] bridge_slave_0: left allmulticast mode
[  332.804645][T23503] bridge_slave_0: left promiscuous mode
[  332.810421][T23503] bridge0: port 1(bridge_slave_0) entered disabled state
[  332.893438][T23503] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  332.904870][T23503] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  332.914766][T23503] bond0 (unregistering): Released all slaves
[  332.987518][T23503] hsr_slave_0: left promiscuous mode
[  332.994699][T23503] hsr_slave_1: left promiscuous mode
[  333.000459][T23503] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  333.008114][T23503] batman_adv: batadv0: Removing interface: batadv_slave_0
[  333.018328][T23503] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  333.025852][T23503] batman_adv: batadv0: Removing interface: batadv_slave_1
[  333.040511][T23503] veth1_macvtap: left promiscuous mode
[  333.046030][T23503] veth0_macvtap: left promiscuous mode
[  333.051801][T23503] veth1_vlan: left promiscuous mode
[  333.057177][T23503] veth0_vlan: left promiscuous mode
[  333.141497][T23503] team0 (unregistering): Port device team_slave_1 removed
[  333.154153][T23503] team0 (unregistering): Port device team_slave_0 removed
[  333.444088][T23503] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.498180][T23503] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.553482][T23503] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.609491][T23503] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.679931][T23503] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  333.738194][T23503] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  333.794044][T23503] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  333.849850][T23503] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  333.921580][T23503] bridge_slave_1: left allmulticast mode
[  333.927326][T23503] bridge_slave_1: left promiscuous mode
[  333.933193][T23503] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.942652][T23503] bridge_slave_0: left allmulticast mode
[  333.948330][T23503] bridge_slave_0: left promiscuous mode
[  333.954052][T23503] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.964279][T23503] bridge_slave_1: left allmulticast mode
[  333.970056][T23503] bridge_slave_1: left promiscuous mode
[  333.975720][T23503] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.984926][T23503] bridge_slave_0: left allmulticast mode
[  333.990701][T23503] bridge_slave_0: left promiscuous mode
[  333.996518][T23503] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.094759][T23503] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  334.106099][T23503] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  334.116202][T23503] bond0 (unregistering): Released all slaves
[  334.186784][T23503] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  334.197376][T23503] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  334.206765][T23503] bond0 (unregistering): Released all slaves
[  334.261022][T23503] tipc: Left network mode
[  334.310949][T23503] hsr_slave_0: left promiscuous mode
[  334.318643][T23503] hsr_slave_1: left promiscuous mode
[  334.325518][T23503] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  334.333105][T23503] batman_adv: batadv0: Removing interface: batadv_slave_0
[  334.343852][T23503] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  334.351350][T23503] batman_adv: batadv0: Removing interface: batadv_slave_1
[  334.362904][T23503] hsr_slave_0: left promiscuous mode
[  334.368788][T23503] hsr_slave_1: left promiscuous mode
[  334.376906][T23503] batman_adv: batadv0: Removing interface: batadv_slave_0
[  334.389704][T23503] veth1_macvtap: left promiscuous mode
[  334.395245][T23503] veth0_macvtap: left promiscuous mode
[  334.401940][T23503] veth1_vlan: left promiscuous mode
[  334.407483][T23503] veth0_vlan: left promiscuous mode
[  334.490741][T23503] team0 (unregistering): Port device team_slave_1 removed
[  334.503549][T23503] team0 (unregistering): Port device team_slave_0 removed
[  334.572702][T23503] team0 (unregistering): Port device team_slave_1 removed
[  334.586247][T23503] team0 (unregistering): Port device team_slave_0 removed
[  335.008231][T23503] IPVS: stop unused estimator thread 0...