last executing test programs:

2m9.137845001s ago: executing program 0 (id=150):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
socket(0xa, 0x3, 0x3a)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(0xffffffffffffffff, &(0x7f00000002c0)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x5}}, 0x10)

2m8.606659314s ago: executing program 0 (id=163):
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = syz_io_uring_setup(0x74d, &(0x7f0000000100)={0x0, 0x59c4, 0x8, 0x1000, 0x5cc}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000240)=[{&(0x7f00000003c0)=""/219, 0xdb}], 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x4, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1})
io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)

2m8.547437098s ago: executing program 0 (id=164):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x2)

2m8.52233373s ago: executing program 0 (id=166):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@resuid}, {@nobh}]}, 0x1, 0x519, &(0x7f00000009c0)="$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")

2m7.880040291s ago: executing program 0 (id=184):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x10000000000ac6}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000006000000080000000b"], 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000380)={r3, 0x0, 0x0}, 0x20)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001740)='cpuset.effective_mems\x00', 0x275a, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003280)=ANY=[@ANYBLOB="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"], 0xb98}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

2m4.76399126s ago: executing program 0 (id=277):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x28}, 0x1c)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)

2m4.76383896s ago: executing program 32 (id=277):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x28}, 0x1c)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)

2.162403008s ago: executing program 2 (id=3012):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x82, &(0x7f0000000000), 0x8)
sendmsg$inet(r0, &(0x7f00000011c0)={&(0x7f0000000040)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000001100)=[{&(0x7f0000000080)='x', 0x1}], 0x1}, 0xfc)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r1, &(0x7f0000002700)={&(0x7f0000000080)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000580)}, 0x8040)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x6}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x5, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x40000)

2.078985614s ago: executing program 2 (id=3017):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
waitid(0x0, r2, 0x0, 0x8, 0x0)
waitid(0x1000000000000000, 0x0, 0x0, 0x4, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)

1.951787174s ago: executing program 3 (id=3019):
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x5b0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x7, 0x4, 0x20000008, 0x8}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000005e002200850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
ioctl$SIOCPNENABLEPIPE(0xffffffffffffffff, 0x89ed, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x2844, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r3, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)

1.951281855s ago: executing program 3 (id=3020):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000440)={0x2, 0xfffffffc, 0x6}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x12, 0xa01, 0x0, 0x0, {0x80}}, 0x26}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r0)
r1 = gettid()
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x800)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0x55, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x9000000, 0x0)

1.274303098s ago: executing program 5 (id=3021):
socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='io_uring_file_get\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0x917, &(0x7f0000000300)={0x0, 0x400, 0x80, 0x1000000}, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)

1.070594005s ago: executing program 5 (id=3022):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r0}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)=r1}, 0x20)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x787, &(0x7f0000001000)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_int(r3, &(0x7f0000000000), 0xfffffd26)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x401c5820, &(0x7f00000001c0)=0x8)

1.070031915s ago: executing program 2 (id=3024):
r0 = socket$kcm(0x29, 0x2, 0x0)
write$cgroup_pressure(r0, &(0x7f0000000140)={'full'}, 0xfffffdef)
syz_io_uring_setup(0x10a, &(0x7f00000000c0)={0x0, 0x5883, 0x8, 0x0, 0xfffffdfc}, &(0x7f0000000040), &(0x7f0000000280))
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
r1 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
readv(r2, &(0x7f00000003c0)=[{&(0x7f0000000000)=""/33, 0x21}], 0x1)

1.069900835s ago: executing program 3 (id=3025):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, 0x0, 0x44c)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x24d}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4003, 0x1}, 0x48)
bind$inet(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x18, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)

964.090793ms ago: executing program 1 (id=3026):
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r1}, 0x18)
mlock(&(0x7f0000656000/0x3000)=nil, 0x3000)
mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4003, &(0x7f0000000c00)=0xc, 0x6, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x38, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
mlockall(0x7)

957.862863ms ago: executing program 3 (id=3027):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fremovexattr(r0, &(0x7f0000000140)=@known='com.apple.system.Security\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000100)={'tunl0\x00', &(0x7f0000000240)={'gretap0\x00', 0x0, 0xf113, 0x7fa0, 0x7, 0x8, {{0x13, 0x4, 0x2, 0x5, 0x4c, 0x64, 0x0, 0x9, 0x2f, 0x0, @multicast1, @multicast1, {[@generic={0x89, 0x2}, @noop, @ssrr={0x89, 0x3, 0xb9}, @rr={0x7, 0x17, 0xd1, [@dev={0xac, 0x14, 0x14, 0x38}, @broadcast, @remote, @multicast1, @private=0xa010100]}, @timestamp={0x44, 0x14, 0xfe, 0x0, 0x4, [0x8, 0x9, 0xe182, 0x182]}, @ssrr={0x89, 0x7, 0x6, [@broadcast]}]}}}}})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, 0x0, 0xf28, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'dh\x00', 0x15, 0x9, 0x64}, 0x2c)

920.424607ms ago: executing program 1 (id=3028):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)=""/75, 0x4b}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

832.391524ms ago: executing program 3 (id=3029):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a90500040000746400009e150451160200000064c6", 0x15}, {&(0x7f00000002c0)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}, {{&(0x7f00000004c0)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000340)="5825be57aff9352b356be67ca2746357d1787935", 0x14}], 0x1}}], 0x2, 0x4004040)
sendmsg$nl_generic(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000019c0)={0x130c, 0x38, 0x200, 0x70bd2d, 0x25dfdbfe, {0x12}, [@nested={0x166, 0x7c, 0x0, 0x1, [@generic="6c055f6db4bdcb771ab8e9da1bfa11e71820d43f5c34b31b89b95595995e0cf6ee594f05b8c10c32fb3b0c6e19b886fb30ecd9c6296d912d7ba936012675a7a8569fa38eaeaf41ecad29b650d73cd56ad78bf2644bb2f42016ffc4ba44dced090c4d6959488009f58c5eada8ac95d88de188beeaf800478a5bfceebdcfcdd47a4fb62815b10d68a3fa19671fd206008b3d4408a155ca3324ebb7cab2d54848d99e67d22e2153174ef2023a78ac7627d330c07f97675a8d2fd2cace02b8022f8a72d5c56341fecb057d415275df8d34fa8e39efc512294d449de87c85a62d3f4491965f6257ae3487f8c22a2ba60ffb952f76ab20ff8e319f3da2", @typed={0x8, 0x67, 0x0, 0x0, @u32=0x7}, @nested={0x4, 0xf3}, @nested={0x4, 0xd6}, @nested={0x4, 0x64}, @typed={0x52, 0x89, 0x0, 0x0, @binary="d746f4339a820e2a752dfc98e531b05a5131dfef89f970a94e36e12548130c4592f38f694d6cf0d276c097d05d2b0b81aea44bcd083b4e15420f84db7df623845f71575629c83e3af16c069dba3f"}]}, @nested={0x143, 0xe8, 0x0, 0x1, [@typed={0x4, 0x142}, @generic="3adee76caefb54be046711a7fa9c7475177ab65a7cae0de3533f272aec12e19d288d2bfbf001649d0451c64cb0fe860ff40ae12d16a63131bf9fffdd0579529cd5c855491cf273598c91da462206d629bb6ac986bc554fc0d477e230e48d1fba7b3863a81d1264d038fe978212587b0a4e9ab9be23623013a3754e04290a6357df4311f781a07b7e08dd733aaf87eb94e610", @nested={0x4, 0xed}, @generic="2b0a1b21654c624244f221c90ebac213b2a25eaae84c9de44ef6ad2d74c651990f232f0757790bb03d8dc92585924a5126f2c56a8ea492a41d0df41022740bbfe8eb0fdb0a5aa2432ff0f2accb1ee7b0d3bc6538f0af31cf29fa30253702834854bf260020456ff6e13f1ec96dc18ef9dd4c7ebad475bb48be174ce81a9c87fa221ec4108fe75e37cbce4b406eb4470ed05af75bff753fb88db3b55f2fefab17ed2ec611e1"]}, @typed={0x9, 0x150, 0x0, 0x0, @str='gre0\x00'}, @generic="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", @typed={0x29, 0x10c, 0x0, 0x0, @binary="bf4ca5fd196a770a86e43c184d6f3484ee4451d3526fdb3ec5ba87d4c3d07ed769d4a22828"}, @typed={0x8, 0x6a, 0x0, 0x0, @ipv4=@multicast2}, @typed={0xc, 0xe9, 0x0, 0x0, @u64=0x2}]}, 0x130c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
socket$inet(0x2, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x11}, @NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x5}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}]}], {0x14}}, 0xdc}}, 0x0)
syz_emit_ethernet(0x2f, &(0x7f0000001940)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x21, 0x0, 0x2, 0x2, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0xd, 0x0, @opaque="03d5932a3e"}}}}}, 0x0)

814.014995ms ago: executing program 3 (id=3030):
r0 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3)
pause()
fcntl$setsig(r1, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r2}], 0x2c, 0xffffffffffbffff8)
dup2(r1, r2)
fcntl$setown(r1, 0x8, r0)
tkill(r0, 0x13)

675.754426ms ago: executing program 1 (id=3031):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = gettid()
sendmsg$unix(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='>', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r5, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r3, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

625.95094ms ago: executing program 1 (id=3032):
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x0, &(0x7f0000000040)}, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r2 = socket(0x11, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'gre0\x00', <r4=>0x0})
bind$packet(r2, &(0x7f0000000180)={0x11, 0x0, r4}, 0x14)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r2, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="02017d29012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0aba61f6304a80500ffffca88faca"], 0xdd12}], 0x1}, 0x0)

576.963164ms ago: executing program 1 (id=3033):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0x200, 0x0, 0x4)
io_uring_enter(r3, 0x66a8, 0x4000, 0xc, 0x0, 0x0)

473.738732ms ago: executing program 1 (id=3034):
openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x8100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$can_bcm(0x1d, 0x2, 0x2)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
unshare(0x2c020400)
socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r0, 0xda90)
accept4(r0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)

471.294552ms ago: executing program 5 (id=3035):
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x4, 0x7fff, 0xfffffffffffff1b8, 0x10002})
ftruncate(0xffffffffffffffff, 0x3ff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(0xffffffffffffffff, 0x114, 0xa, &(0x7f0000000600)=ANY=[], 0x2)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f0000000140), 0x1, 0x4e4, &(0x7f0000001880)="$eJzs3c9PXFsdAPDvHZgCLc/hqYvnS3w2+gxttDNQbEtcVEyMrppY68YVIgyEMDCEGdpCGkPjH2Bi/BVduXJj4tqYmP4JxqSJ7o0xmkbbunChjrnDHYu8AYaUYSjz+SSn95z763tO4R7m3HMzN4C+dTkiZiJiICKuRkQhW5/LUuzspnS/F88fzacpicbQvb8lkWTrWudKsuWl7LDhiPjaVyK+lXwwbm1re2WuUilvZOVSfXW9VNvavra8OrdUXiqvzUxN3py+NX1jeuLE2nr7S3/+4Xd//uXbv/nsgz/O/vXKt9NqjWbb9rajEzsd7rfb9Hzz/6JlMCI2jhPsDBvI2pPvdUUAAOhI+hn/wxHxyYh4+ZNe1wYAAADohsYXRuNfSUQDAAAAOLdyzWdgk1wxexZgNHK5YnH3Gd6PxsVcpVqrf2axurm2sPus7Fjkc4vLlfJE9qzwWOSTtDzZzL8qX99XnoqItyPi+4WRZrk4X60s9PrmBwAAAPSJS/vG//8o7I7/AQAAgHNmrNcVAAAAALrO+B8AAADOvwPH/8ng6VYEAAAA6Iav3rmTpkbr/dcL97c2V6r3ry2UayvF1c354nx1Y724VK0uNb+zb/Wo81Wq1fXPxdrmw1K9XKuXalvbs6vVzbX6bPO93rPlRuFUmgUAAADs8fYnnvwhiYidz480U+pCti1/9OEz3a0d0E254+2edKsewOkb6HUFgJ7xgC/0rw7G+MA5d8TA/gf7yse8bQAAAJwF4x97rfl/84HwBjOQh/5l/h/6l/l/6F/m/6HPDR29y/BBG357wnUBAAC6ZrSZklwxmwscjVyuWIx4q/lagHyyuFwpT0TEhyLi94X8UFqe7HWlAQAAAAAAAAAAAAAAAAAAAAAAAOAN02gk0QAAAADOtYjcX5LsRf7jhfdH998fuJD8s9BcRsSDn9770cO5en1jMl3/9/+tr/84W3+9tSb1jVO+kwEAAAC0tMbprXE8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJykF88fzbfSacZ99sWIGGsXfzCGm8vhXxUi4uLLJAb3HJdExMAJxN95HBHvtIufpNWKsawW++PnImKkx/EvnUB86GdP0v5nJr3+8vuuv1xcbi7bX3+DWXpdzy4f1P/lWv1fs59r1/+9dfiph1uZd5/+snRg/McR7w62739a8ZN28S903sZvfn17+6BtjZ9FjB/x9yeNX6qvrpdqW9vXllfnlspL5bWpqcmb07emb0xPlBaXK+Xs37YxvvfxX//nsPZfbBt/t/89sP0R8X6H7f/304fPP3JI/Cufav/zf+eQ+OnvxKezvwPp9vFWfmc3v9d7v/jde4e1f+GA9h/684+IKx22/+rd7/ypw10BgFNQ29pematUyhtdyYx07cwyaaa6diaqIXN2M3ezC/3Yh/e4YwIAAE7cqw/9+7ccY4IHAAAAAAAAAAAAAAAAAAAAeC1d/xKyof//ZoHh3jUVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBQ/w0AAP//5w/Stg==")
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=ANY=[], 0x0, 0x8, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x14}, 0x94)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)

419.838947ms ago: executing program 4 (id=3036):
r0 = socket$inet6(0xa, 0x3, 0x7)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r1, &(0x7f0000000940), 0x10)
close(0x3)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
shutdown(r2, 0x1)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c)

313.049935ms ago: executing program 4 (id=3037):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0x3, 0x2)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DIRECTION={0x5, 0x3, 0x1}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x11}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r2, &(0x7f0000002240)={@val={0x8, 0x800}, @val={0x4, 0x0, 0x2, 0x0, 0x14, 0x5}, @ipv4=@tcp={{0x5, 0x4, 0x0, 0x28, 0x28, 0x68, 0x0, 0x3, 0x6, 0x0, @private=0xa010100, @rand_addr=0x64010102}, {{0x4e20, 0x4e28, 0x41424344, 0x41424344, 0x1, 0x0, 0x5, 0x10, 0x1, 0x0, 0x8}}}}, 0x36)

191.701115ms ago: executing program 5 (id=3038):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, 0x0, &(0x7f00000001c0)}, 0x20)
r1 = syz_io_uring_setup(0x121d, &(0x7f0000000500)={0x0, 0x7d10, 0x80, 0x3, 0x1000034e}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000580)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r4 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r4, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x23457})
io_uring_enter(r1, 0x46bc, 0x3, 0x20, 0x0, 0x0)

191.474045ms ago: executing program 2 (id=3039):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000380)='kmem_cache_free\x00', r1}, 0x18)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x5)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r3, 0x402, 0x8000001f)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r4, 0x402, 0x8000003d)
close_range(r3, r4, 0x0)

191.076205ms ago: executing program 2 (id=3040):
syz_emit_ethernet(0x7a, &(0x7f0000001180)={@link_local, @dev, @void, {@ipv6={0x86dd, @gre_packet={0x4, 0x6, "0de71a", 0x44, 0x2f, 0x1, @mcast2, @local, {[], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x1, {{0x8, 0x1, 0x6, 0x3, 0x1, 0x2, 0x6, 0xb}, 0x1, {0x4}}}, {0x8, 0x22eb, 0x1, {{0x0, 0x2, 0x10, 0x1, 0x0, 0x0, 0x7, 0xd}, 0x2, {0x4, 0x81, 0x0, 0x4, 0x0, 0x1, 0x3, 0x1}}}}}}}}}, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')
socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
cachestat(r0, &(0x7f00000001c0)={0xb0, 0xf5}, 0xffffffffffffffff, 0x0)
sched_rr_get_interval(0x0, 0x0)
kexec_load(0x3e00, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000200)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@errors_continue}]}, 0x2, 0x44b, &(0x7f0000000400)="$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")

172.052396ms ago: executing program 4 (id=3041):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

114.997461ms ago: executing program 4 (id=3042):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000040000000400000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r3, @ANYBLOB="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"], 0x1c8}}, 0x0)

114.803301ms ago: executing program 2 (id=3043):
timerfd_create(0x0, 0x800)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
sync()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
io_setup(0x2, &(0x7f0000002400))

114.332441ms ago: executing program 4 (id=3044):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xe7fd}, 0x100002, 0x3, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x2704, &(0x7f00000003c0)={0x0, 0x19, 0x2c84, 0x0, 0x136}, &(0x7f0000ff0000), 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)

70.454394ms ago: executing program 5 (id=3045):
syz_io_uring_setup(0x59b1, &(0x7f0000000180)={0x0, 0xcd8a, 0x1, 0x2, 0x33f}, &(0x7f0000000100), &(0x7f0000000200))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff0000001100a200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000300)="b9ff030768f1258c989e14f05c71", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

70.048034ms ago: executing program 4 (id=3046):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket(0x1d, 0x80003, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
sendmsg$inet(r1, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r1, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700)

0s ago: executing program 5 (id=3047):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
capset(&(0x7f0000000c00)={0x20080522}, 0x0)
syz_io_uring_setup(0x3c0c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000500000001811"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x24fe, &(0x7f0000000300)={0x0, 0xf36e, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<'], 0x38}}, 0x80)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x10, 0x0, @fd_index=0x8, 0xfff, 0x0, 0x6, 0x0, 0x1})
io_uring_enter(r0, 0x2d3e, 0x2936, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 T7913]  bpf_check+0x942b/0xd9e0
[  100.807124][ T7913]  ? __rcu_read_unlock+0x4f/0x70
[  100.812296][ T7913]  ? __alloc_frozen_pages_noprof+0x188/0x360
[  100.818558][ T7913]  ? alloc_pages_bulk_noprof+0x4b8/0x540
[  100.818848][ T7923] loop3: detected capacity change from 0 to 512
[  100.824419][ T7913]  ? __vmap_pages_range_noflush+0xbb3/0xbd0
[  100.824473][ T7913]  ? try_charge_memcg+0x200/0x9e0
[  100.824494][ T7913]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  100.824514][ T7913]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  100.840265][ T7923] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  100.841727][ T7913]  ? css_rstat_updated+0xb7/0x240
[  100.841761][ T7913]  ? __rcu_read_unlock+0x4f/0x70
[  100.849225][ T7923] EXT4-fs (loop3): orphan cleanup on readonly fs
[  100.854090][ T7913]  ? pcpu_memcg_post_alloc_hook+0xf1/0x150
[  100.865159][ T7923] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #3: comm syz.3.1712: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  100.868338][ T7913]  ? should_fail_ex+0x30/0x280
[  100.874094][ T7923] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.1712: Bad quota inode: 3, type: 0
[  100.880224][ T7913]  ? selinux_bpf_prog_load+0x36/0xf0
[  100.888027][ T7923] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  100.903638][ T7913]  ? should_failslab+0x8c/0xb0
[  100.908406][ T7923] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  100.910721][ T7923] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  100.919323][ T7913]  ? __kmalloc_cache_noprof+0x189/0x320
[  100.919354][ T7913]  ? selinux_bpf_prog_load+0xbf/0xf0
[  100.951374][ T7919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.951959][ T7913]  ? security_bpf_prog_load+0x2c/0xa0
[  100.984611][ T7919] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.1721: Allocating blocks 449-513 which overlap fs metadata
[  100.987476][ T7913]  bpf_prog_load+0xedd/0x1070
[  100.987519][ T7913]  ? security_bpf+0x2b/0x90
[  100.987545][ T7913]  __sys_bpf+0x462/0x7b0
[  101.009034][ T7918] EXT4-fs (loop4): pa ffff888107243380: logic 48, phys. 177, len 21
[  101.011816][ T7913]  __x64_sys_bpf+0x41/0x50
[  101.011852][ T7913]  x64_sys_call+0x2aea/0x2ff0
[  101.011869][ T7913]  do_syscall_64+0xd2/0x200
[  101.016494][ T7918] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, 
[  101.020685][ T7913]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  101.028766][ T7918] free 0, pa_free 4
[  101.052141][   T29] kauditd_printk_skb: 514 callbacks suppressed
[  101.052206][   T29] audit: type=1326 audit(1754384967.580:5326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feff2815b27 code=0x7ffc0000
[  101.057232][ T7913]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  101.057258][ T7913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.061499][   T29] audit: type=1326 audit(1754384967.590:5327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feff27bad69 code=0x7ffc0000
[  101.067220][ T7913] RIP: 0033:0x7f73b376eb69
[  101.067238][ T7913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.067255][ T7913] RSP: 002b:00007f73b1dcf038 EFLAGS: 00000246
[  101.092434][   T29] audit: type=1326 audit(1754384967.620:5328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feff2815b27 code=0x7ffc0000
[  101.096642][ T7913]  ORIG_RAX: 0000000000000141
[  101.096652][ T7913] RAX: ffffffffffffffda RBX: 00007f73b3995fa0 RCX: 00007f73b376eb69
[  101.102576][   T29] audit: type=1326 audit(1754384967.620:5329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feff27bad69 code=0x7ffc0000
[  101.125948][ T7913] RDX: 000000000000002d RSI: 00002000002a0fb8 RDI: 0000000000000005
[  101.130433][   T29] audit: type=1326 audit(1754384967.620:5330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feff2815b27 code=0x7ffc0000
[  101.150102][ T7913] RBP: 00007f73b37f1df1 R08: 0000000000000000 R09: 0000000000000000
[  101.156238][   T29] audit: type=1326 audit(1754384967.620:5331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feff27bad69 code=0x7ffc0000
[  101.179652][ T7913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  101.179669][ T7913] R13: 0000000000000000 R14: 00007f73b3995fa0 R15: 00007ffec72e91a8
[  101.184355][   T29] audit: type=1326 audit(1754384967.620:5332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  101.192387][ T7913]  </TASK>
[  101.192395][ T7913] ---[ end trace 0000000000000000 ]---
[  101.345858][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.366908][ T7929] loop5: detected capacity change from 0 to 1024
[  101.381632][   T29] audit: type=1326 audit(1754384967.819:5333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feff2815b27 code=0x7ffc0000
[  101.405607][   T29] audit: type=1326 audit(1754384967.819:5334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feff27bad69 code=0x7ffc0000
[  101.429428][   T29] audit: type=1326 audit(1754384967.819:5335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7892 comm="syz.2.1700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  101.455991][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.476821][ T7929] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.514583][ T7929] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1713: Allocating blocks 385-513 which overlap fs metadata
[  101.530757][ T7937] loop4: detected capacity change from 0 to 512
[  101.537433][ T7937] EXT4-fs: Ignoring removed bh option
[  101.585352][ T7929] EXT4-fs (loop5): pa ffff888107216b60: logic 16, phys. 129, len 24
[  101.588237][ T7937] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  101.593636][ T7929] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  101.617350][ T7937] EXT4-fs (loop4): 1 truncate cleaned up
[  101.633376][ T7937] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.713765][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.741285][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.805538][ T7958] loop4: detected capacity change from 0 to 512
[  101.825499][ T7958] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.259964][ T7981] dummy0: entered promiscuous mode
[  102.269252][ T7981] bond0: entered promiscuous mode
[  102.288926][ T7983] loop5: detected capacity change from 0 to 2048
[  102.296091][ T7981] hsr1: Slave A (dummy0) is not up; please bring it up to get a fully working HSR network
[  102.306362][ T7981] hsr1: Slave B (bond0) is not up; please bring it up to get a fully working HSR network
[  102.316315][ T7981] hsr1: entered allmulticast mode
[  102.321502][ T7981] dummy0: entered allmulticast mode
[  102.326801][ T7981] bond0: entered allmulticast mode
[  102.359922][ T7983] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.391772][ T7995] netlink: 'syz.3.1741': attribute type 4 has an invalid length.
[  102.658348][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.705533][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.826686][ T8025] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1751'.
[  102.984759][ T8045] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1758'.
[  102.996592][ T8039] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  103.020180][ T8037] tipc: Resetting bearer <eth:syzkaller0>
[  103.043169][ T8037] tipc: Disabling bearer <eth:syzkaller0>
[  103.068658][ T8047] unsupported nla_type 52263
[  103.288038][ T8074] dummy0: entered promiscuous mode
[  103.295107][ T8074] bond0: entered promiscuous mode
[  103.302276][ T8074] debugfs: 'hsr1' already exists in 'hsr'
[  103.308121][ T8074] Cannot create hsr debugfs directory
[  103.318140][ T8074] hsr1: Slave A (dummy0) is not up; please bring it up to get a fully working HSR network
[  103.328546][ T8074] hsr1: Slave B (bond0) is not up; please bring it up to get a fully working HSR network
[  103.341212][ T8074] hsr1: entered allmulticast mode
[  103.346454][ T8074] dummy0: entered allmulticast mode
[  103.351835][ T8074] bond0: entered allmulticast mode
[  103.424015][ T8084] lo speed is unknown, defaulting to 1000
[  103.441987][ T8084] lo speed is unknown, defaulting to 1000
[  103.461495][ T8084] lo speed is unknown, defaulting to 1000
[  103.492457][ T8084] infiniband s
z1: set down
[  103.497086][ T8084] infiniband s
z1: added lo
[  103.501827][   T23] lo speed is unknown, defaulting to 1000
[  103.524823][ T8084] RDS/IB: s
z1: added
[  103.534574][ T8084] smc: adding ib device s
z1 with port count 1
[  103.555035][ T8084] smc:    ib device s
z1 port 1 has pnetid 
[  103.565159][   T10] lo speed is unknown, defaulting to 1000
[  103.572474][ T8084] lo speed is unknown, defaulting to 1000
[  103.610809][ T8084] lo speed is unknown, defaulting to 1000
[  103.630583][ T8096] lo speed is unknown, defaulting to 1000
[  103.660376][ T8084] lo speed is unknown, defaulting to 1000
[  103.748269][ T8084] lo speed is unknown, defaulting to 1000
[  103.765294][ T8105] netlink: 'syz.3.1781': attribute type 1 has an invalid length.
[  103.799932][ T8105] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1781'.
[  103.822998][ T8105] 8021q: adding VLAN 0 to HW filter on device batadv2
[  103.832684][ T8105] bond3: (slave batadv2): Enslaving as a backup interface with an up link
[  103.844794][ T8084] lo speed is unknown, defaulting to 1000
[  103.855615][ T8105] bond3 (unregistering): (slave batadv2): Releasing backup interface
[  103.857499][ T8111] loop4: detected capacity change from 0 to 1024
[  103.878578][ T8105] bond3 (unregistering): Released all slaves
[  103.887689][ T8111] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.903706][ T8111] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.1784: Allocating blocks 385-513 which overlap fs metadata
[  103.904295][ T8084] lo speed is unknown, defaulting to 1000
[  103.982829][ T8116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1785'.
[  104.084870][ T8120] loop3: detected capacity change from 0 to 2048
[  104.110394][ T8111] EXT4-fs (loop4): pa ffff888107243460: logic 16, phys. 129, len 24
[  104.118886][ T8111] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  104.121060][ T8127] netlink: 'syz.5.1790': attribute type 1 has an invalid length.
[  104.140609][ T8120] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.146012][ T8127] 8021q: adding VLAN 0 to HW filter on device bond3
[  104.170204][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.318219][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.349088][ T8147] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1807'.
[  104.647929][ T8172] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1806'.
[  104.657588][ T8161] netlink: 29 bytes leftover after parsing attributes in process `syz.3.1802'.
[  104.677824][ T8170] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  104.725760][ T8177] loop4: detected capacity change from 0 to 2048
[  104.746465][ T8177] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.831497][ T8185] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1811'.
[  104.930578][ T8193] lo speed is unknown, defaulting to 1000
[  104.963936][ T8196] loop5: detected capacity change from 0 to 512
[  104.992725][ T8196] EXT4-fs: Ignoring removed bh option
[  105.004540][ T8193] lo speed is unknown, defaulting to 1000
[  105.017207][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.023018][ T8196] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  105.074781][ T8196] EXT4-fs (loop5): 1 truncate cleaned up
[  105.082936][ T8196] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.153132][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.172024][ T8199] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  105.187831][ T8198] tipc: Resetting bearer <eth:syzkaller0>
[  105.210590][ T8198] tipc: Disabling bearer <eth:syzkaller0>
[  105.342344][ T8209] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  105.375079][ T8221] netlink: 'syz.1.1824': attribute type 1 has an invalid length.
[  105.394975][ T8208] tipc: Resetting bearer <eth:syzkaller0>
[  105.419604][ T8208] tipc: Disabling bearer <eth:syzkaller0>
[  105.433814][ T8221] 8021q: adding VLAN 0 to HW filter on device bond4
[  105.455318][ T8225] bond4: (slave ip6erspan0): making interface the new active one
[  105.466460][ T8225] bond4: (slave ip6erspan0): Enslaving as an active interface with an up link
[  105.476221][ T8227] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1826'.
[  105.530521][ T8235] netlink: 'syz.3.1840': attribute type 1 has an invalid length.
[  105.545367][ T8233] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1828'.
[  105.560359][ T8235] 8021q: adding VLAN 0 to HW filter on device bond3
[  105.673812][ T8252] loop3: detected capacity change from 0 to 512
[  105.765460][ T8252] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  105.782525][ T8252] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.1846: invalid indirect mapped block 2683928664 (level 1)
[  105.797656][ T8252] EXT4-fs (loop3): 1 truncate cleaned up
[  105.805781][ T8252] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.839238][ T8252] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.3.1846: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  105.863893][ T8268] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  105.874066][ T8266] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  105.911691][ T4876] IPVS: starting estimator thread 0...
[  105.932096][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.995554][ T8287] bridge: RTM_NEWNEIGH with invalid ether address
[  106.000177][ T8275] IPVS: using max 2544 ests per chain, 127200 per kthread
[  106.182439][   T29] kauditd_printk_skb: 199 callbacks suppressed
[  106.182454][   T29] audit: type=1400 audit(1754384972.685:5535): avc:  denied  { mount } for  pid=8296 comm="syz.1.1856" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  106.211830][   T29] audit: type=1400 audit(1754384972.715:5536): avc:  denied  { unmount } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  106.237019][   T29] audit: type=1326 audit(1754384972.735:5537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.2.1855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  106.261165][   T29] audit: type=1326 audit(1754384972.735:5538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.2.1855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  106.289645][   T29] audit: type=1326 audit(1754384972.764:5539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.2.1855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  106.314660][   T29] audit: type=1326 audit(1754384972.764:5540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.2.1855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  106.338877][   T29] audit: type=1326 audit(1754384972.804:5541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.2.1855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  106.362612][   T29] audit: type=1326 audit(1754384972.804:5542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.2.1855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  106.386866][   T29] audit: type=1326 audit(1754384972.804:5543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.2.1855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  106.410895][   T29] audit: type=1326 audit(1754384972.804:5544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8298 comm="syz.2.1855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  106.624464][ T8320] loop4: detected capacity change from 0 to 128
[  106.648334][ T8320] bio_check_eod: 2 callbacks suppressed
[  106.648347][ T8320] syz.4.1863: attempt to access beyond end of device
[  106.648347][ T8320] loop4: rw=0, sector=121, nr_sectors = 8 limit=128
[  107.057191][ T8338] netlink: 'syz.4.1872': attribute type 1 has an invalid length.
[  107.084823][ T8338] 8021q: adding VLAN 0 to HW filter on device batadv1
[  107.094184][ T8338] bond1: (slave batadv1): Enslaving as a backup interface with an up link
[  107.110065][ T8338] bond1 (unregistering): (slave batadv1): Releasing backup interface
[  107.119591][ T8338] bond1 (unregistering): Released all slaves
[  107.525962][ T8356] loop8: detected capacity change from 0 to 16384
[  107.697694][ T8364] loop5: detected capacity change from 0 to 2048
[  107.704295][ T8359] loop8: detected capacity change from 16384 to 16383
[  107.729268][ T8364] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  107.928618][ T8370] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  107.963334][ T8370] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  107.976090][ T8370] EXT4-fs (loop5): This should not happen!! Data will be lost
[  107.976090][ T8370] 
[  107.986209][ T8370] EXT4-fs (loop5): Total free blocks count 0
[  107.992215][ T8370] EXT4-fs (loop5): Free/Dirty block details
[  107.998105][ T8370] EXT4-fs (loop5): free_blocks=2415919104
[  108.004399][ T8370] EXT4-fs (loop5): dirty_blocks=2128
[  108.009875][ T8370] EXT4-fs (loop5): Block reservation details
[  108.015905][ T8370] EXT4-fs (loop5): i_reserved_data_blocks=133
[  108.063768][ T8377] __nla_validate_parse: 3 callbacks suppressed
[  108.063841][ T8377] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1887'.
[  108.320744][ T3517] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  108.354116][ T8389] lo speed is unknown, defaulting to 1000
[  108.437516][ T8389] lo speed is unknown, defaulting to 1000
[  108.456453][ T8400] netlink: 'syz.1.1896': attribute type 12 has an invalid length.
[  108.464805][ T8400] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1896'.
[  108.547529][ T8406] 9pnet: p9_errstr2errno: server reported unknown error 
[  108.562539][ T8400] netlink: 'syz.1.1896': attribute type 12 has an invalid length.
[  108.562543][ T3510] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  108.562575][ T3510] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  108.570624][ T8400] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1896'.
[  108.609800][ T3510] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  108.628542][ T3510] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  108.646755][ T8410] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1900'.
[  108.762745][ T8421] wg2: left promiscuous mode
[  108.767554][ T8421] wg2: left allmulticast mode
[  108.774928][ T8421] veth3: left promiscuous mode
[  108.779817][ T8421] veth5: left promiscuous mode
[  108.784745][ T8421] bond1: left promiscuous mode
[  108.789525][ T8421] bond1: left allmulticast mode
[  108.883297][ T8435] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  108.945098][ T8435] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  108.964501][ T8439] lo speed is unknown, defaulting to 1000
[  108.985620][ T8435] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  109.018809][ T8445] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1916'.
[  109.028203][ T8445] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1916'.
[  109.037381][ T8445] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1916'.
[  109.041105][ T8439] lo speed is unknown, defaulting to 1000
[  109.055424][ T8435] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  109.118985][ T3510] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  109.143919][ T3510] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  109.170049][ T3510] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  109.181534][ T3510] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  109.256266][ T8460] netlink: 'syz.5.1922': attribute type 83 has an invalid length.
[  109.294974][ T8466] loop4: detected capacity change from 0 to 128
[  109.303941][ T8466] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  109.304639][ T8462] sch_fq: defrate 4294967295 ignored.
[  109.317668][ T8466] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  109.340486][ T8468] netlink: 'syz.5.1922': attribute type 83 has an invalid length.
[  109.402439][ T3517] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  109.413304][ T8475] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1928'.
[  109.814988][ T8511] loop4: detected capacity change from 0 to 2048
[  109.830871][ T8511] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  109.933150][ T8517] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1946'.
[  110.172563][ T8515] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  110.192917][ T8525] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1949'.
[  110.209803][ T8515] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 28
[  110.222416][ T8515] EXT4-fs (loop4): This should not happen!! Data will be lost
[  110.222416][ T8515] 
[  110.232153][ T8515] EXT4-fs (loop4): Total free blocks count 0
[  110.238320][ T8515] EXT4-fs (loop4): Free/Dirty block details
[  110.244322][ T8515] EXT4-fs (loop4): free_blocks=2415919104
[  110.250539][ T8515] EXT4-fs (loop4): dirty_blocks=8208
[  110.255909][ T8515] EXT4-fs (loop4): Block reservation details
[  110.261996][ T8515] EXT4-fs (loop4): i_reserved_data_blocks=513
[  110.284811][ T8511] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 32 with max blocks 2048 with error 28
[  110.318027][ T8528] syzkaller0: entered promiscuous mode
[  110.323869][ T8528] syzkaller0: entered allmulticast mode
[  110.538693][ T8534] netlink: 'syz.2.1955': attribute type 10 has an invalid length.
[  110.555711][ T8540] loop4: detected capacity change from 0 to 2048
[  110.591618][ T8546] netlink: 'syz.2.1955': attribute type 10 has an invalid length.
[  110.608610][ T8534] 
: (slave dummy0): Releasing backup interface
[  110.618067][ T8534] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  110.628992][ T8534] team0: Failed to send options change via netlink (err -105)
[  110.636534][ T8534] team0: Port device dummy0 added
[  110.646236][ T8540]  loop4: p1 < > p3
[  110.681295][ T8548] netlink: 'syz.5.1959': attribute type 4 has an invalid length.
[  110.700058][ T8548] netlink: 'syz.5.1959': attribute type 4 has an invalid length.
[  110.709756][   T10] lo speed is unknown, defaulting to 1000
[  110.715779][   T10] s
z1: Port: 1 Link ACTIVE
[  110.730918][ T8540] loop4: p3 size 134217728 extends beyond EOD, truncated
[  110.743632][   T10] lo speed is unknown, defaulting to 1000
[  110.863795][ T8563] team1: entered promiscuous mode
[  110.868944][ T8563] team1: entered allmulticast mode
[  110.917711][ T8569] uprobe: syz.3.1965:8569 failed to unregister, leaking uprobe
[  111.165855][ T8587] macvlan1: entered promiscuous mode
[  111.175567][ T8587] ipvlan0: entered promiscuous mode
[  111.181724][ T8587] ipvlan0: left promiscuous mode
[  111.189639][ T8587] macvlan1: left promiscuous mode
[  111.212424][ T8591] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8591 comm=syz.4.1978
[  111.259695][ T8595] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8595 comm=syz.5.1980
[  111.309341][   T29] kauditd_printk_skb: 156 callbacks suppressed
[  111.309356][   T29] audit: type=1400 audit(1754384977.781:5701): avc:  denied  { getopt } for  pid=8600 comm="syz.5.1983" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  111.339323][   T29] audit: type=1400 audit(1754384977.821:5702): avc:  denied  { write } for  pid=8600 comm="syz.5.1983" lport=60525 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  111.381903][   T29] audit: type=1400 audit(1754384977.841:5703): avc:  denied  { setopt } for  pid=8600 comm="syz.5.1983" lport=60525 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  111.407408][   T29] audit: type=1400 audit(1754384977.861:5704): avc:  denied  { name_bind } for  pid=8606 comm="syz.5.1986" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  111.441289][   T29] audit: type=1400 audit(1754384977.921:5705): avc:  denied  { read } for  pid=8612 comm="syz.1.1988" name="ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  111.464696][   T29] audit: type=1400 audit(1754384977.921:5706): avc:  denied  { open } for  pid=8612 comm="syz.1.1988" path="/dev/ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  111.558750][   T29] audit: type=1326 audit(1754384978.040:5707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8621 comm="syz.1.1992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  111.582644][   T29] audit: type=1326 audit(1754384978.040:5708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8621 comm="syz.1.1992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  111.607169][   T29] audit: type=1326 audit(1754384978.040:5709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8621 comm="syz.1.1992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  111.630990][   T29] audit: type=1326 audit(1754384978.040:5710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8621 comm="syz.1.1992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  111.674501][ T8625] infiniband syz1: set down
[  111.679102][ T8625] infiniband syz1: added bond0
[  111.688951][ T8625] RDS/IB: syz1: added
[  111.693212][ T8625] smc: adding ib device syz1 with port count 1
[  111.700593][ T8625] smc:    ib device syz1 port 1 has pnetid 
[  112.080525][ T8644] netlink: 'syz.4.2000': attribute type 4 has an invalid length.
[  112.302340][ T8653] sch_tbf: burst 32855 is lower than device lo mtu (11337746) !
[  112.354179][ T8657] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  112.385337][ T8659] bridge: RTM_NEWNEIGH with invalid ether address
[  112.628838][ T8671] lo speed is unknown, defaulting to 1000
[  112.784349][ T8671] lo speed is unknown, defaulting to 1000
[  113.050378][ T8697] netem: incorrect gi model size
[  113.055386][ T8697] netem: change failed
[  113.211547][ T8707] lo speed is unknown, defaulting to 1000
[  113.274532][ T8707] lo speed is unknown, defaulting to 1000
[  113.304416][ T8712] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  113.325176][ T8713] __nla_validate_parse: 5 callbacks suppressed
[  113.325190][ T8713] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2030'.
[  113.593723][ T8737] bond0: (slave dummy0): Releasing backup interface
[  113.602222][ T8737] batman_adv: batadv0: Adding interface: dummy0
[  113.608523][ T8737] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.634058][ T8737] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  113.676207][ T8746] $Hÿ: renamed from bond0
[  113.682606][ T8746] $Hÿ: entered promiscuous mode
[  113.688633][ T8747] loop4: detected capacity change from 0 to 512
[  113.741039][ T8747] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  113.763044][ T8747] EXT4-fs (loop4): mount failed
[  113.839839][ T8766] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2053'.
[  113.987583][ T8783] loop4: detected capacity change from 0 to 1024
[  113.994686][ T8783] EXT4-fs: Invalid want_extra_isize 1914
[  114.031751][ T8787] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2060'.
[  114.204074][ T8797] loop5: detected capacity change from 0 to 1024
[  114.211077][ T8797] EXT4-fs: Ignoring removed orlov option
[  114.227459][ T8797] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.252762][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.808029][ T8817] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8817 comm=syz.2.2071
[  114.821100][ T8817] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8817 comm=syz.2.2071
[  114.921525][ T8831] loop4: detected capacity change from 0 to 2048
[  114.967801][ T8831]  loop4: p1 < > p4
[  114.977708][ T8831] loop4: p4 size 8388608 extends beyond EOD, truncated
[  115.092282][ T8852] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2086'.
[  115.110093][ T8852] netlink: 256 bytes leftover after parsing attributes in process `syz.4.2086'.
[  115.179742][ T8858] loop5: detected capacity change from 0 to 1024
[  115.223813][ T8858] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.306069][ T8858] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.2088: Allocating blocks 449-513 which overlap fs metadata
[  115.365290][ T8857] EXT4-fs (loop5): pa ffff888107216bd0: logic 48, phys. 177, len 21
[  115.373560][ T8857] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  115.417032][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.525367][ T8889] loop5: detected capacity change from 0 to 2048
[  115.568386][ T8891] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2101'.
[  115.607300][ T8891] bridge0: port 3(macvlan2) entered blocking state
[  115.613977][ T8891] bridge0: port 3(macvlan2) entered disabled state
[  115.621216][ T8889]  loop5: p1 < > p4
[  115.626320][ T8891] macvlan2: entered allmulticast mode
[  115.631785][ T8891] bridge0: entered allmulticast mode
[  115.637376][ T8889] loop5: p4 size 8388608 extends beyond EOD, truncated
[  115.647566][ T8891] macvlan2: left allmulticast mode
[  115.652815][ T8891] bridge0: left allmulticast mode
[  115.674319][ T8870] lo speed is unknown, defaulting to 1000
[  115.726897][ T8870] lo speed is unknown, defaulting to 1000
[  115.950133][ T8906] loop4: detected capacity change from 0 to 128
[  115.988045][ T8906] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  116.342696][   T29] kauditd_printk_skb: 118 callbacks suppressed
[  116.342710][   T29] audit: type=1326 audit(116.093:5828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.343499][   T29] audit: type=1326 audit(116.093:5829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.343722][   T29] audit: type=1326 audit(116.093:5830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.343866][   T29] audit: type=1326 audit(116.093:5831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.344207][   T29] audit: type=1326 audit(116.093:5832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.344359][   T29] audit: type=1326 audit(116.093:5833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.344523][   T29] audit: type=1326 audit(116.093:5834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.344731][   T29] audit: type=1326 audit(116.093:5835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.344825][   T29] audit: type=1326 audit(116.093:5836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.344989][   T29] audit: type=1326 audit(116.093:5837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8914 comm="syz.2.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7feff281eb69 code=0x7ffc0000
[  116.485481][ T8927] loop5: detected capacity change from 0 to 2048
[  116.512319][ T8929] netlink: 'syz.3.2116': attribute type 1 has an invalid length.
[  116.612614][ T8927] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.638204][ T8929] 8021q: adding VLAN 0 to HW filter on device bond0
[  116.825454][ T6216] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  116.859719][ T8948] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2125'.
[  116.938599][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.074830][ T8962] loop4: detected capacity change from 0 to 512
[  117.083993][ T8962] ext4: Unknown parameter 'mask'
[  117.281649][ T8972] loop4: detected capacity change from 0 to 2048
[  117.294279][ T8972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.325483][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.362864][ T8976] lo speed is unknown, defaulting to 1000
[  117.407387][ T8976] lo speed is unknown, defaulting to 1000
[  117.781153][ T8997] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  117.792256][ T8996] tipc: Resetting bearer <eth:syzkaller0>
[  117.803330][ T8996] tipc: Disabling bearer <eth:syzkaller0>
[  118.575210][ T9019] loop4: detected capacity change from 0 to 2048
[  118.610918][ T9019] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.818365][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.053234][ T9035] loop5: detected capacity change from 0 to 512
[  119.073724][ T9035] EXT4-fs (loop5): orphan cleanup on readonly fs
[  119.080215][ T9035] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13
[  119.101010][ T9035] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  119.117461][ T9035] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.2160: attempt to clear invalid blocks 2 len 1
[  119.118659][ T9061] loop3: detected capacity change from 0 to 512
[  119.142819][ T9035] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.2160: invalid indirect mapped block 1819239214 (level 0)
[  119.158412][ T9035] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.2160: invalid indirect mapped block 1819239214 (level 1)
[  119.173314][ T9061] ext4: Unknown parameter 'mask'
[  119.178851][ T9035] EXT4-fs (loop5): 1 truncate cleaned up
[  119.185185][ T9035] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  119.206057][ T9035] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  119.223885][ T9035] EXT4-fs error (device loop5): __ext4_remount:6736: comm syz.5.2160: Abort forced by user
[  119.238209][ T9035] EXT4-fs (loop5): Remounting filesystem read-only
[  119.244933][ T9035] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  119.248195][ T9069] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2169'.
[  119.284977][ T9069] bridge0: port 1(macvlan2) entered blocking state
[  119.291668][ T9069] bridge0: port 1(macvlan2) entered disabled state
[  119.311217][ T9069] macvlan2: entered allmulticast mode
[  119.316940][ T9069] bridge0: entered allmulticast mode
[  119.336187][ T9069] macvlan2: left allmulticast mode
[  119.341630][ T9069] bridge0: left allmulticast mode
[  119.368136][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.417781][ T9084] netlink: 'syz.3.2172': attribute type 10 has an invalid length.
[  119.429174][ T9084] team0: Port device dummy0 added
[  119.464720][ T9084] netlink: 'syz.3.2172': attribute type 10 has an invalid length.
[  119.526515][ T9084] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  119.575609][ T9084] team0: Failed to send options change via netlink (err -105)
[  119.583850][ T9084] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  119.609667][ T9084] team0: Port device dummy0 removed
[  119.625210][ T9084] dummy0: entered promiscuous mode
[  119.640179][ T9084] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[  119.816649][ T9118] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2187'.
[  119.840268][ T9118] bridge0: port 1(macvlan2) entered blocking state
[  119.847176][ T9118] bridge0: port 1(macvlan2) entered disabled state
[  119.858758][ T9118] macvlan2: entered allmulticast mode
[  119.864234][ T9118] bridge0: entered allmulticast mode
[  119.870787][ T9118] macvlan2: left allmulticast mode
[  119.876080][ T9118] bridge0: left allmulticast mode
[  120.107371][ T9159] loop5: detected capacity change from 0 to 1024
[  120.115217][ T9159] EXT4-fs: Ignoring removed orlov option
[  120.138425][ T9159] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.191651][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.215531][ T9173] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2202'.
[  120.227039][ T9173] netem: change failed
[  120.327354][ T9183] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2207'.
[  120.339618][ T9183] bridge0: port 1(macvlan2) entered blocking state
[  120.346331][ T9183] bridge0: port 1(macvlan2) entered disabled state
[  120.353040][ T9183] macvlan2: entered allmulticast mode
[  120.358626][ T9183] bridge0: entered allmulticast mode
[  120.364437][ T9183] macvlan2: left allmulticast mode
[  120.369592][ T9183] bridge0: left allmulticast mode
[  120.717378][ T9190] loop5: detected capacity change from 0 to 128
[  120.728194][ T9190] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  120.742241][ T9190] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  120.783308][ T3478] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  120.992949][ T9225] loop3: detected capacity change from 0 to 1024
[  121.025223][ T9225] EXT4-fs: Ignoring removed orlov option
[  121.052677][ T9225] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.210199][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.245598][ T9245] netlink: 'syz.3.2221': attribute type 12 has an invalid length.
[  121.253820][ T9245] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2221'.
[  121.270514][ T3478] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  121.270531][ T9245] netlink: 'syz.3.2221': attribute type 12 has an invalid length.
[  121.270545][ T9245] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2221'.
[  121.296291][ T3519] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  121.304757][ T3519] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  121.314729][ T3519] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  121.370865][ T9248] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2235'.
[  121.469357][ T9253] 9pnet: p9_errstr2errno: server reported unknown error 
[  121.501252][ T9256] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2226'.
[  122.139599][ T9262] loop4: detected capacity change from 0 to 2048
[  122.157534][ T9262] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  122.228801][   T29] kauditd_printk_skb: 223 callbacks suppressed
[  122.228814][   T29] audit: type=1326 audit(121.983:6061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  122.317466][   T29] audit: type=1326 audit(122.013:6062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  122.340407][   T29] audit: type=1326 audit(122.013:6063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  122.363312][   T29] audit: type=1326 audit(122.013:6064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5acf97d4d0 code=0x7ffc0000
[  122.385900][   T29] audit: type=1326 audit(122.013:6065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f5acf980397 code=0x7ffc0000
[  122.408639][   T29] audit: type=1326 audit(122.013:6066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  122.431095][   T29] audit: type=1326 audit(122.013:6067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f5acf980397 code=0x7ffc0000
[  122.453504][   T29] audit: type=1326 audit(122.013:6068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5acf97d7ca code=0x7ffc0000
[  122.475886][   T29] audit: type=1326 audit(122.013:6069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  122.498767][   T29] audit: type=1326 audit(122.013:6070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9273 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  122.522963][ T9277] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  122.538109][ T9277] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 706 with error 28
[  122.550820][ T9277] EXT4-fs (loop4): This should not happen!! Data will be lost
[  122.550820][ T9277] 
[  122.560710][ T9277] EXT4-fs (loop4): Total free blocks count 0
[  122.566968][ T9277] EXT4-fs (loop4): Free/Dirty block details
[  122.572961][ T9277] EXT4-fs (loop4): free_blocks=2415919104
[  122.578799][ T9277] EXT4-fs (loop4): dirty_blocks=720
[  122.584125][ T9277] EXT4-fs (loop4): Block reservation details
[  122.590531][ T9277] EXT4-fs (loop4): i_reserved_data_blocks=45
[  122.699171][ T3476] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  122.765042][ T9315] netlink: 'syz.4.2242': attribute type 10 has an invalid length.
[  122.773264][ T9315] batman_adv: batadv0: Removing interface: dummy0
[  122.785188][ T9315] team0: Port device dummy0 added
[  122.793577][ T9315] netlink: 'syz.4.2242': attribute type 10 has an invalid length.
[  122.802097][ T9315] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  122.811880][ T9315] team0: Failed to send options change via netlink (err -105)
[  122.819759][ T9315] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  122.829361][ T9315] team0: Port device dummy0 removed
[  122.837112][ T9315] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  122.884915][ T9323] loop4: detected capacity change from 0 to 128
[  122.993287][ T9323] syz.4.2244: attempt to access beyond end of device
[  122.993287][ T9323] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[  123.086767][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.086767][ T9323] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[  123.114862][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.114862][ T9323] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[  123.128933][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.128933][ T9323] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[  123.143174][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.143174][ T9323] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[  123.156998][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.156998][ T9323] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[  123.171408][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.171408][ T9323] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[  123.185311][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.185311][ T9323] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[  123.199133][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.199133][ T9323] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[  123.214507][ T9323] syz.4.2244: attempt to access beyond end of device
[  123.214507][ T9323] loop4: rw=2049, sector=297, nr_sectors = 8 limit=128
[  123.378257][ T9340] loop5: detected capacity change from 0 to 512
[  123.388266][ T9340] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  123.396885][ T9340] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.2253: invalid indirect mapped block 2683928664 (level 1)
[  123.429824][ T9340] EXT4-fs (loop5): 1 truncate cleaned up
[  123.446801][ T9338] team1: left promiscuous mode
[  123.451955][ T9338] team1: left allmulticast mode
[  123.461258][ T9340] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.488779][ T9340] EXT4-fs error (device loop5): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.5.2253: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  123.538082][ T9348] lo speed is unknown, defaulting to 1000
[  123.547956][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.574639][ T9348] lo speed is unknown, defaulting to 1000
[  123.711777][ T9361] netlink: 'syz.5.2260': attribute type 10 has an invalid length.
[  123.729333][ T9361] team0: Device dummy0 failed to register rx_handler
[  123.754443][ T9361] netlink: 'syz.5.2260': attribute type 10 has an invalid length.
[  123.831778][ T9363] sch_fq: defrate 4294967295 ignored.
[  124.264809][ T9386] loop4: detected capacity change from 0 to 512
[  124.313615][ T9386] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  124.325040][ T9386] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2268: invalid indirect mapped block 2683928664 (level 1)
[  124.339718][ T9386] EXT4-fs (loop4): 1 truncate cleaned up
[  124.347578][ T9386] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.366359][ T9386] EXT4-fs error (device loop4): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.4.2268: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  124.402641][ T9369] lo speed is unknown, defaulting to 1000
[  124.420758][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.686856][ T9369] lo speed is unknown, defaulting to 1000
[  124.816137][ T9440] netlink: 'syz.1.2274': attribute type 10 has an invalid length.
[  124.845690][ T9440] team0: Device dummy0 failed to register rx_handler
[  124.867877][ T9445] netlink: 'syz.1.2274': attribute type 10 has an invalid length.
[  124.899210][ T9443] lo speed is unknown, defaulting to 1000
[  124.954149][ T9443] lo speed is unknown, defaulting to 1000
[  125.680428][ T9456] loop3: detected capacity change from 0 to 512
[  125.689185][ T9456] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  125.699457][ T9456] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2282: invalid indirect mapped block 2683928664 (level 1)
[  125.714472][ T9456] EXT4-fs (loop3): 1 truncate cleaned up
[  125.730508][ T9456] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.3.2282: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  126.068458][ T9512] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  126.929050][ T9538] netlink: 'syz.2.2314': attribute type 4 has an invalid length.
[  126.939166][ T9538] netlink: 'syz.2.2314': attribute type 4 has an invalid length.
[  126.948322][   T10] lo speed is unknown, defaulting to 1000
[  126.954161][   T10] syz2: Port: 1 Link ACTIVE
[  127.082095][ T9550] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2319'.
[  127.091107][ T9550] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2319'.
[  127.183278][ T9563] bond5: entered promiscuous mode
[  127.188619][ T9563] bond5: entered allmulticast mode
[  127.194252][ T9563] 8021q: adding VLAN 0 to HW filter on device bond5
[  127.203541][ T9563] bond5 (unregistering): Released all slaves
[  127.348219][   T29] kauditd_printk_skb: 24 callbacks suppressed
[  127.348247][   T29] audit: type=1326 audit(127.103:6095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.377578][   T29] audit: type=1326 audit(127.103:6096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.401376][   T29] audit: type=1326 audit(127.103:6097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.425020][   T29] audit: type=1326 audit(127.103:6098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.447855][   T29] audit: type=1326 audit(127.103:6099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.470837][   T29] audit: type=1326 audit(127.103:6100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.472231][ T9581] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2331'.
[  127.494090][   T29] audit: type=1326 audit(127.103:6101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.494121][   T29] audit: type=1326 audit(127.103:6102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.503112][ T9581] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2331'.
[  127.526066][   T29] audit: type=1326 audit(127.103:6103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.526176][   T29] audit: type=1326 audit(127.103:6104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9577 comm="syz.1.2330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  127.626952][ T9583] lo speed is unknown, defaulting to 1000
[  127.660443][ T9583] lo speed is unknown, defaulting to 1000
[  127.777117][ T9590] bridge: RTM_NEWNEIGH with invalid ether address
[  127.789466][ T9592] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2336'.
[  128.041267][ T9613] 9pnet: p9_errstr2errno: server reported unknown error 
[  128.598409][ T9649] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2348'.
[  128.607436][ T9649] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2348'.
[  128.611809][ T9648] lo speed is unknown, defaulting to 1000
[  128.643073][ T9651] lo speed is unknown, defaulting to 1000
[  128.666877][ T9648] lo speed is unknown, defaulting to 1000
[  128.693121][ T9661] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2354'.
[  128.711741][ T9661] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2354'.
[  128.761101][ T9651] lo speed is unknown, defaulting to 1000
[  129.104153][ T9698] loop5: detected capacity change from 0 to 128
[  129.141303][ T9699] bridge_slave_1: left allmulticast mode
[  129.147426][ T9699] bridge_slave_1: left promiscuous mode
[  129.150901][ T9698] EXT4-fs mount: 2 callbacks suppressed
[  129.150915][ T9698] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  129.153226][ T9699] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.181176][ T9699] bridge_slave_0: left allmulticast mode
[  129.186923][ T9699] bridge_slave_0: left promiscuous mode
[  129.192685][ T9699] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.289632][ T9702] lo speed is unknown, defaulting to 1000
[  129.319628][ T9702] lo speed is unknown, defaulting to 1000
[  130.090204][ T5076] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  130.132524][ T9728] loop5: detected capacity change from 0 to 128
[  130.170338][ T9732] pim6reg1: entered promiscuous mode
[  130.175881][ T9732] pim6reg1: entered allmulticast mode
[  130.265220][ T9728] bio_check_eod: 92 callbacks suppressed
[  130.265237][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.265237][ T9728] loop5: rw=2049, sector=145, nr_sectors = 16 limit=128
[  130.291683][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.291683][ T9728] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  130.308893][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.308893][ T9728] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  130.326351][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.326351][ T9728] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  130.340796][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.340796][ T9728] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  130.354575][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.354575][ T9728] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  130.368472][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.368472][ T9728] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  130.382557][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.382557][ T9728] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  130.398472][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.398472][ T9728] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  130.412376][ T9728] syz.5.2381: attempt to access beyond end of device
[  130.412376][ T9728] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  130.593313][ T9757] bond1: entered promiscuous mode
[  130.598718][ T9757] bond1: entered allmulticast mode
[  130.631370][ T9757] 8021q: adding VLAN 0 to HW filter on device bond1
[  130.657297][ T9757] bond1 (unregistering): Released all slaves
[  131.136053][ T9784] __nla_validate_parse: 2 callbacks suppressed
[  131.136073][ T9784] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2405'.
[  131.145917][ T9786] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  131.164098][ T9784] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2405'.
[  131.318687][ T9802] loop4: detected capacity change from 0 to 512
[  131.329301][ T9802] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  131.361204][ T6216] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  131.387777][ T9810] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2415'.
[  131.419529][ T9816] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2417'.
[  131.429348][ T9816] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2417'.
[  131.490729][ T9823] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2422'.
[  131.519457][ T9823] team2: entered promiscuous mode
[  131.524647][ T9823] team2: entered allmulticast mode
[  131.590186][ T9833] lo speed is unknown, defaulting to 1000
[  131.616862][ T9833] lo speed is unknown, defaulting to 1000
[  131.752972][ T9841] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2428'.
[  131.762767][ T9841] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2428'.
[  131.862695][ T9851] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2431'.
[  131.895281][ T9853] loop3: detected capacity change from 0 to 128
[  131.926636][ T9855] loop3: detected capacity change from 0 to 1024
[  131.933542][ T9855] EXT4-fs: Ignoring removed orlov option
[  131.948469][ T9855] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.165943][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.186637][ T9863] loop3: detected capacity change from 0 to 512
[  132.193756][ T9863] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  132.209876][ T9863] EXT4-fs (loop3): 1 orphan inode deleted
[  132.215782][ T9863] EXT4-fs (loop3): 1 truncate cleaned up
[  132.221962][ T9863] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.258148][ T9863] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  132.284157][ T9872] vlan0: entered allmulticast mode
[  132.292529][ T9863] EXT4-fs (loop3): Remounting filesystem read-only
[  132.299419][ T9863] EXT4-fs (loop3): error restoring inline_data for inode -- potential data loss! (inode 12, error -30)
[  132.367532][   T29] kauditd_printk_skb: 70 callbacks suppressed
[  132.367546][   T29] audit: type=1326 audit(132.123:6175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.401195][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.413060][   T29] audit: type=1326 audit(132.123:6176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.437533][   T29] audit: type=1326 audit(132.123:6177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.460749][   T29] audit: type=1326 audit(132.123:6178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.483822][   T29] audit: type=1326 audit(132.123:6179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.507937][   T29] audit: type=1326 audit(132.123:6180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.531397][   T29] audit: type=1326 audit(132.123:6181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.555017][   T29] audit: type=1326 audit(132.123:6182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.579605][   T29] audit: type=1326 audit(132.123:6183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.603538][   T29] audit: type=1326 audit(132.123:6184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.5.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b376eb69 code=0x7ffc0000
[  132.698192][ T9894] lo speed is unknown, defaulting to 1000
[  132.698525][ T9884] loop5: detected capacity change from 0 to 2048
[  132.731791][ T9894] lo speed is unknown, defaulting to 1000
[  132.764046][ T9884] Alternate GPT is invalid, using primary GPT.
[  132.770576][ T9884]  loop5: p1 p2 p3
[  132.818867][ T9901] lo speed is unknown, defaulting to 1000
[  132.874959][ T9901] lo speed is unknown, defaulting to 1000
[  133.180484][ T9920] loop5: detected capacity change from 0 to 1024
[  133.187783][ T9920] EXT4-fs: Ignoring removed orlov option
[  133.206378][ T9920] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  133.228888][ T9920] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.273197][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.293361][ T9929] lo speed is unknown, defaulting to 1000
[  133.371721][ T9929] lo speed is unknown, defaulting to 1000
[  133.600356][ T9938] loop3: detected capacity change from 0 to 512
[  133.612352][ T9938] EXT4-fs: Ignoring removed mblk_io_submit option
[  133.621594][ T9938] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  133.634475][ T9938] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  133.644560][ T9938] EXT4-fs (loop3): orphan cleanup on readonly fs
[  133.652000][ T9938] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2466: Invalid block bitmap block 0 in block_group 0
[  133.667729][ T9938] EXT4-fs (loop3): Remounting filesystem read-only
[  133.674613][ T9938] EXT4-fs (loop3): 1 orphan inode deleted
[  133.681719][ T9938] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  133.986409][ T9935] lo speed is unknown, defaulting to 1000
[  134.113551][ T9960] loop4: detected capacity change from 0 to 512
[  134.134507][ T9960] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  134.157259][ T9960] EXT4-fs (loop4): 1 orphan inode deleted
[  134.163281][ T9960] EXT4-fs (loop4): 1 truncate cleaned up
[  134.173791][ T9960] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.193098][ T9960] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  134.292076][ T9935] lo speed is unknown, defaulting to 1000
[  134.309248][ T9960] EXT4-fs (loop4): Remounting filesystem read-only
[  134.315986][ T9960] EXT4-fs (loop4): error restoring inline_data for inode -- potential data loss! (inode 12, error -30)
[  134.395621][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.224483][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.340323][ T9997] lo speed is unknown, defaulting to 1000
[  135.369465][ T9999] loop3: detected capacity change from 0 to 512
[  135.380734][ T9999] EXT4-fs: test_dummy_encryption option not supported
[  135.395298][ T9999] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  135.428660][ T9997] lo speed is unknown, defaulting to 1000
[  135.669724][T10002] lo speed is unknown, defaulting to 1000
[  135.690480][T10006] loop3: detected capacity change from 0 to 256
[  135.701117][T10004] loop5: detected capacity change from 0 to 2048
[  135.721818][T10004] EXT4-fs: Ignoring removed mblk_io_submit option
[  135.742163][T10002] lo speed is unknown, defaulting to 1000
[  135.753359][T10004] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.834450][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.681076][T10063] netlink: 'syz.4.2512': attribute type 30 has an invalid length.
[  137.412635][   T29] kauditd_printk_skb: 64 callbacks suppressed
[  137.412650][   T29] audit: type=1400 audit(137.163:6246): avc:  denied  { read } for  pid=10090 comm="syz.4.2525" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  137.442470][   T29] audit: type=1400 audit(137.163:6247): avc:  denied  { open } for  pid=10090 comm="syz.4.2525" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  137.533424][   T29] audit: type=1400 audit(137.223:6248): avc:  denied  { ioctl } for  pid=10090 comm="syz.4.2525" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  137.637541][T10100] __nla_validate_parse: 3 callbacks suppressed
[  137.637558][T10100] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2529'.
[  137.664209][T10105] loop3: detected capacity change from 0 to 1024
[  137.672902][T10102] lo: entered allmulticast mode
[  137.677793][T10107] netlink: 'syz.4.2532': attribute type 10 has an invalid length.
[  137.688472][T10105] EXT4-fs: Ignoring removed orlov option
[  137.694964][T10102] tunl0: entered allmulticast mode
[  137.701176][T10102] gre0: entered allmulticast mode
[  137.705946][T10105] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  137.739468][T10105] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.753122][T10102] gretap0: entered allmulticast mode
[  137.759606][T10102] erspan0: entered allmulticast mode
[  137.766030][T10102] ip_vti0: entered allmulticast mode
[  137.782890][T10102] ip6_vti0: entered allmulticast mode
[  137.790721][T10102] sit0: entered allmulticast mode
[  137.798438][T10102] ip6tnl0: entered allmulticast mode
[  137.818220][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.833844][T10102] ip6gre0: entered allmulticast mode
[  137.841280][T10102] syz_tun: entered allmulticast mode
[  137.847941][T10102] ip6gretap0: entered allmulticast mode
[  137.855018][T10102] vcan0: entered allmulticast mode
[  137.861431][T10102] 8021q: adding VLAN 0 to HW filter on device bond0
[  137.869950][   T29] audit: type=1400 audit(137.623:6249): avc:  denied  { shutdown } for  pid=10114 comm="syz.2.2534" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  137.875075][T10102] team0: entered allmulticast mode
[  137.898463][T10102] 8021q: adding VLAN 0 to HW filter on device team0
[  137.909542][T10102] nlmon0: entered allmulticast mode
[  137.917275][T10102] caif0: entered allmulticast mode
[  137.922478][T10102] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  137.946813][T10115] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  137.978212][T10124] loop3: detected capacity change from 0 to 1024
[  137.984699][   T29] audit: type=1400 audit(137.723:6250): avc:  denied  { ioctl } for  pid=10121 comm="syz.3.2537" path="socket:[32822]" dev="sockfs" ino=32822 ioctlcmd=0x8907 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  138.025586][T10124] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  138.036410][T10124] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  138.056040][T10124] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #32: comm syz.3.2537: iget: special inode unallocated
[  138.085941][T10124] EXT4-fs (loop3): Remounting filesystem read-only
[  138.092782][T10124] EXT4-fs (loop3): no journal found
[  138.098190][T10124] EXT4-fs (loop3): can't get journal size
[  138.115885][T10129] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2540'.
[  138.125279][T10129] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2540'.
[  138.145538][T10124] EXT4-fs (loop3): filesystem is read-only
[  138.151858][T10124] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  138.211404][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.402316][T10145] loop4: detected capacity change from 0 to 4096
[  138.646261][T10157] A link change request failed with some changes committed already. Interface bond3 may have been left with an inconsistent configuration, please check.
[  138.938223][T10166] lo speed is unknown, defaulting to 1000
[  138.951532][T10168] pimreg: entered allmulticast mode
[  138.972060][T10172] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2556'.
[  138.981566][T10172] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2556'.
[  138.990271][T10166] lo speed is unknown, defaulting to 1000
[  138.990770][T10172] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2556'.
[  139.005956][T10170] netem: change failed
[  139.006166][T10172] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2556'.
[  139.040114][T10175] loop5: detected capacity change from 0 to 512
[  139.077620][T10175] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.154874][   T29] audit: type=1326 audit(138.903:6251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10187 comm="syz.3.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69c867eb69 code=0x7ffc0000
[  139.185769][   T29] audit: type=1326 audit(138.903:6252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10187 comm="syz.3.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f69c867eb69 code=0x7ffc0000
[  139.208807][   T29] audit: type=1326 audit(138.903:6253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10187 comm="syz.3.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69c867eb69 code=0x7ffc0000
[  139.232184][   T29] audit: type=1326 audit(138.903:6254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10187 comm="syz.3.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69c867eb69 code=0x7ffc0000
[  139.259422][   T29] audit: type=1326 audit(139.013:6255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10187 comm="syz.3.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69c867eb69 code=0x7ffc0000
[  139.283080][T10145] 9pnet_fd: p9_fd_create_tcp (10145): problem connecting socket to 127.0.0.1
[  139.319565][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.403861][T10214] loop4: detected capacity change from 0 to 512
[  139.420620][T10214] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.338044][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.390537][T10270] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  140.453518][T10276] loop5: detected capacity change from 0 to 128
[  140.572756][T10281] lo: entered allmulticast mode
[  140.574014][T10276] bio_check_eod: 93 callbacks suppressed
[  140.574081][T10276] syz.5.2590: attempt to access beyond end of device
[  140.574081][T10276] loop5: rw=0, sector=121, nr_sectors = 920 limit=128
[  140.585429][T10281] tunl0: entered allmulticast mode
[  140.607721][T10281] gre0: entered allmulticast mode
[  140.614771][T10281] gretap0: entered allmulticast mode
[  140.621958][T10281] erspan0: entered allmulticast mode
[  140.629080][T10281] ip_vti0: entered allmulticast mode
[  140.636606][T10281] ip6_vti0: entered allmulticast mode
[  140.643272][T10281] sit0: entered allmulticast mode
[  140.661732][T10281] ip6tnl0: entered allmulticast mode
[  140.668302][T10281] ip6gre0: entered allmulticast mode
[  140.674666][T10281] syz_tun: entered allmulticast mode
[  140.681643][T10281] ip6gretap0: entered allmulticast mode
[  140.689466][T10281] vcan0: entered allmulticast mode
[  140.695452][T10281] bond0: entered allmulticast mode
[  140.700618][T10281] bond_slave_0: entered allmulticast mode
[  140.706422][T10281] bond_slave_1: entered allmulticast mode
[  140.712196][T10281] dummy0: entered allmulticast mode
[  140.718408][T10281] 8021q: adding VLAN 0 to HW filter on device bond0
[  140.726605][T10281] team0: entered allmulticast mode
[  140.731736][T10281] team_slave_0: entered allmulticast mode
[  140.737741][T10281] team_slave_1: entered allmulticast mode
[  140.744131][T10281] 8021q: adding VLAN 0 to HW filter on device team0
[  140.753289][T10281] nlmon0: entered allmulticast mode
[  140.759956][T10281] caif0: entered allmulticast mode
[  140.765329][T10281] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  140.790730][T10283] pimreg: entered allmulticast mode
[  140.807987][T10287] syz_tun: entered allmulticast mode
[  140.821283][T10286] syz_tun: left allmulticast mode
[  140.868605][T10297] loop5: detected capacity change from 0 to 512
[  140.896821][T10297] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.940739][T10304] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2603'.
[  141.243768][T10316] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2607'.
[  141.252826][T10316] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2607'.
[  141.277012][T10318] veth1_to_bond: entered allmulticast mode
[  141.307332][T10318] veth1_to_bond: left allmulticast mode
[  141.328595][T10320] lo: entered allmulticast mode
[  141.335394][T10320] tunl0: entered allmulticast mode
[  141.341473][T10320] gre0: entered allmulticast mode
[  141.347727][T10320] gretap0: entered allmulticast mode
[  141.353931][T10320] erspan0: entered allmulticast mode
[  141.360146][T10320] ip_vti0: entered allmulticast mode
[  141.366339][T10320] ip6_vti0: entered allmulticast mode
[  141.372651][T10320] sit0: entered allmulticast mode
[  141.499911][T10320] ip6tnl0: entered allmulticast mode
[  141.506280][T10320] ip6gre0: entered allmulticast mode
[  141.512515][T10320] syz_tun: entered allmulticast mode
[  141.518758][T10320] ip6gretap0: entered allmulticast mode
[  141.525577][T10320] vcan0: entered allmulticast mode
[  141.531289][T10320] $Hÿ: entered allmulticast mode
[  141.537059][T10320] 8021q: adding VLAN 0 to HW filter on device $Hÿ
[  141.545456][T10320] team0: entered allmulticast mode
[  141.551045][T10320] 8021q: adding VLAN 0 to HW filter on device team0
[  141.559740][T10320] nlmon0: entered allmulticast mode
[  141.565814][T10320] caif0: entered allmulticast mode
[  141.571121][T10320] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  141.738528][T10328] loop3: detected capacity change from 0 to 1024
[  141.795961][T10328] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  141.886342][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.892319][T10328] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.2611: lblock 1 mapped to illegal pblock 1 (length 1)
[  141.944874][T10328] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2611: Failed to acquire dquot type 0
[  141.996792][T10328] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2611: Freeing blocks not in datazone - block = 0, count = 4096
[  142.031580][T10328] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2611: Invalid inode bitmap blk 0 in block_group 0
[  142.045922][ T3544] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:66: lblock 1 mapped to illegal pblock 1 (length 1)
[  142.082660][T10328] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  142.082721][ T3544] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:66: Failed to release dquot type 0
[  142.117482][T10328] EXT4-fs (loop3): 1 orphan inode deleted
[  142.126480][T10328] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.179255][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.267831][T10342] loop3: detected capacity change from 0 to 1024
[  142.326348][T10342] EXT4-fs: Ignoring removed bh option
[  142.332433][T10342] EXT4-fs: inline encryption not supported
[  142.366034][T10342] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  142.389147][T10342] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.2615: lblock 2 mapped to illegal pblock 2 (length 1)
[  142.416288][T10342] __quota_error: 94 callbacks suppressed
[  142.416303][T10342] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  142.453608][T10342] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.2615: lblock 0 mapped to illegal pblock 48 (length 1)
[  142.513251][T10342] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  142.522209][T10342] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2615: Failed to acquire dquot type 0
[  142.558401][T10342] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  142.568641][T10342] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.2615: mark_inode_dirty error
[  142.582670][T10342] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  142.598011][T10342] EXT4-fs (loop3): 1 orphan inode deleted
[  142.608503][T10342] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.621594][ T3478] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:12: lblock 1 mapped to illegal pblock 1 (length 1)
[  142.645799][ T3478] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  142.654496][ T3478] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:12: Failed to release dquot type 0
[  142.735849][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.753900][ T3300] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  142.784903][ T3300] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  142.867418][ T3300] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[  143.084372][T10373] loop3: detected capacity change from 0 to 2048
[  143.169218][T10373] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.290382][T10377] loop4: detected capacity change from 0 to 1024
[  143.298141][T10377] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  143.406153][T10380] loop4: detected capacity change from 0 to 128
[  143.625793][T10378] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  143.650541][T10380] syz.4.2628: attempt to access beyond end of device
[  143.650541][T10380] loop4: rw=0, sector=121, nr_sectors = 920 limit=128
[  143.665749][T10378] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  143.678449][T10378] EXT4-fs (loop3): This should not happen!! Data will be lost
[  143.678449][T10378] 
[  143.688203][T10378] EXT4-fs (loop3): Total free blocks count 0
[  143.694314][T10378] EXT4-fs (loop3): Free/Dirty block details
[  143.700396][T10378] EXT4-fs (loop3): free_blocks=2415919104
[  143.706353][T10378] EXT4-fs (loop3): dirty_blocks=8208
[  143.711653][T10378] EXT4-fs (loop3): Block reservation details
[  143.717657][T10378] EXT4-fs (loop3): i_reserved_data_blocks=513
[  143.789247][ T3544] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  143.856973][   T29] audit: type=1326 audit(143.613:6347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10382 comm="syz.4.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  143.881222][   T29] audit: type=1326 audit(143.613:6348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10382 comm="syz.4.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  143.929916][   T29] audit: type=1326 audit(143.613:6349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10382 comm="syz.4.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  143.953100][   T29] audit: type=1326 audit(143.613:6350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10382 comm="syz.4.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  143.976294][   T29] audit: type=1326 audit(143.613:6351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10382 comm="syz.4.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  143.999745][   T29] audit: type=1326 audit(143.663:6352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10382 comm="syz.4.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  144.023051][   T29] audit: type=1326 audit(143.663:6353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10382 comm="syz.4.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  144.107588][T10387] ip6gre1: entered allmulticast mode
[  144.188787][T10396] __nla_validate_parse: 1 callbacks suppressed
[  144.188802][T10396] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2635'.
[  144.479153][T10417] netlink: 14 bytes leftover after parsing attributes in process `syz.3.2644'.
[  144.527568][T10417] $Hÿ (unregistering): (slave dummy0): Releasing backup interface
[  144.548027][T10423] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10423 comm=syz.2.2647
[  144.561368][T10417] dummy0: left promiscuous mode
[  144.583604][T10417] $Hÿ (unregistering): Released all slaves
[  145.062097][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.069635][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.077250][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.084749][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.092772][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.100343][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.107893][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.115429][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.123003][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.130503][ T3383] hid-generic 0000:0000:0008.0001: unknown main item tag 0x0
[  145.152799][ T3383] hid-generic 0000:0000:0008.0001: hidraw0: <UNKNOWN> HID vc.87 Device [syz0] on syz1
[  145.264889][T10461] loop5: detected capacity change from 0 to 1024
[  145.273949][T10461] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  145.288401][T10461] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #3: block 1: comm syz.5.2658: lblock 1 mapped to illegal pblock 1 (length 1)
[  145.314850][T10461] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.2658: Failed to acquire dquot type 0
[  145.512844][T10461] EXT4-fs error (device loop5): ext4_free_blocks:6696: comm syz.5.2658: Freeing blocks not in datazone - block = 0, count = 4096
[  145.573153][T10461] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.2658: Invalid inode bitmap blk 0 in block_group 0
[  145.595071][ T3476] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:10: lblock 1 mapped to illegal pblock 1 (length 1)
[  145.611310][T10461] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  145.624504][ T3476] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:10: Failed to release dquot type 0
[  145.654072][T10461] EXT4-fs (loop5): 1 orphan inode deleted
[  145.678606][T10461] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.751256][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.996502][T10476] loop5: detected capacity change from 0 to 1024
[  146.003230][T10476] EXT4-fs: Ignoring removed nobh option
[  146.008982][T10476] EXT4-fs: Ignoring removed bh option
[  146.069499][T10478] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2667'.
[  146.110183][T10476] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.223267][T10490] loop4: detected capacity change from 0 to 512
[  146.264260][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.283065][T10490] EXT4-fs: Ignoring removed oldalloc option
[  146.304049][T10490] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.2671: Parent and EA inode have the same ino 15
[  146.333077][T10490] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.2671: Parent and EA inode have the same ino 15
[  146.346070][T10490] EXT4-fs (loop4): 1 orphan inode deleted
[  146.366170][T10490] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.383318][T10495] ip6gre1: left allmulticast mode
[  146.412725][ T4876] lo speed is unknown, defaulting to 1000
[  146.418702][ T4876] syz2: Port: 1 Link DOWN
[  146.507731][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.675906][T10506] loop3: detected capacity change from 0 to 4096
[  146.683824][T10508] loop4: detected capacity change from 0 to 8192
[  146.705903][T10506] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.721141][T10508] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  146.774945][T10508] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  146.782838][T10508] FAT-fs (loop4): Filesystem has been set read-only
[  146.868327][ T6216] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  146.958277][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.024803][T10545] loop4: detected capacity change from 0 to 1024
[  147.052618][T10545] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  147.072357][T10545] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #3: block 1: comm syz.4.2687: lblock 1 mapped to illegal pblock 1 (length 1)
[  147.114579][T10545] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2687: Failed to acquire dquot type 0
[  147.149410][T10545] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2687: Freeing blocks not in datazone - block = 0, count = 4096
[  147.175505][T10545] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2687: Invalid inode bitmap blk 0 in block_group 0
[  147.195851][ T3478] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:12: lblock 1 mapped to illegal pblock 1 (length 1)
[  147.222619][T10545] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  147.237722][ T3478] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:12: Failed to release dquot type 0
[  147.251906][T10545] EXT4-fs (loop4): 1 orphan inode deleted
[  147.262479][T10545] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.317879][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.471306][   T29] kauditd_printk_skb: 168 callbacks suppressed
[  147.471319][   T29] audit: type=1326 audit(147.223:6516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10559 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.510733][   T29] audit: type=1326 audit(147.223:6517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10559 comm="syz.1.2694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.579605][T10573] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2700'.
[  147.627278][   T29] audit: type=1326 audit(147.323:6518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10574 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.650593][   T29] audit: type=1326 audit(147.323:6519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10574 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.673978][   T29] audit: type=1326 audit(147.323:6520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10574 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.696897][   T29] audit: type=1326 audit(147.323:6521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10574 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.710726][T10573] bridge0: port 1(batadv0) entered blocking state
[  147.720569][   T29] audit: type=1326 audit(147.323:6522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10574 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.727209][T10573] bridge0: port 1(batadv0) entered disabled state
[  147.751155][   T29] audit: type=1326 audit(147.323:6523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10574 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.781003][   T29] audit: type=1326 audit(147.323:6524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10574 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.804311][T10573] batadv0: entered allmulticast mode
[  147.804320][   T29] audit: type=1326 audit(147.323:6525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10574 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5acf97eb69 code=0x7ffc0000
[  147.838824][T10573] batadv0: entered promiscuous mode
[  148.215178][ T3484] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  148.224559][ T3484] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  148.413044][T10623] netlink: 'syz.4.2720': attribute type 1 has an invalid length.
[  148.434787][T10623] 8021q: adding VLAN 0 to HW filter on device bond1
[  148.499827][T10623] 8021q: adding VLAN 0 to HW filter on device batadv2
[  148.525455][T10623] bond1: (slave batadv2): making interface the new active one
[  148.553096][T10623] bond1: (slave batadv2): Enslaving as an active interface with an up link
[  148.882280][T10654] loop4: detected capacity change from 0 to 164
[  148.899089][T10654] syz.4.2735: attempt to access beyond end of device
[  148.899089][T10654] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  148.913179][T10654] syz.4.2735: attempt to access beyond end of device
[  148.913179][T10654] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  148.984330][T10664] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  148.993295][T10663] tipc: Resetting bearer <eth:syzkaller0>
[  149.033805][T10663] tipc: Disabling bearer <eth:syzkaller0>
[  149.044116][T10668] team0 (unregistering): Port device dummy0 removed
[  149.141025][T10680] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2748'.
[  149.260896][T10699] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2756'.
[  149.278329][T10697] netlink: zone id is out of range
[  149.289613][T10697] netlink: zone id is out of range
[  149.296969][T10697] netlink: zone id is out of range
[  149.302286][T10697] netlink: zone id is out of range
[  149.309561][T10697] netlink: zone id is out of range
[  149.335832][T10697] netlink: zone id is out of range
[  149.348690][T10697] netlink: zone id is out of range
[  149.354100][T10697] netlink: zone id is out of range
[  149.360264][T10701] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  149.385716][T10697] netlink: zone id is out of range
[  149.391345][T10697] netlink: zone id is out of range
[  149.612752][T10722] loop3: detected capacity change from 0 to 2048
[  149.640416][T10725] loop5: detected capacity change from 0 to 2048
[  149.712049][T10722] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.752364][T10725] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.767826][T10735] lo speed is unknown, defaulting to 1000
[  149.806958][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.839684][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.882525][T10735] lo speed is unknown, defaulting to 1000
[  150.232015][T10778] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2787'.
[  150.359043][T10789] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2793'.
[  150.370834][T10792] netlink: 'syz.5.2792': attribute type 13 has an invalid length.
[  150.457047][T10797] loop4: detected capacity change from 0 to 128
[  150.480175][T10797] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2797'.
[  150.714297][T10826] loop3: detected capacity change from 0 to 512
[  150.725505][T10829] loop5: detected capacity change from 0 to 1024
[  150.732519][T10826] journal_path: Non-blockdev passed as './bus'
[  150.738770][T10826] EXT4-fs: error: could not find journal device path
[  150.750961][T10829] EXT4-fs: Ignoring removed orlov option
[  150.761732][T10829] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.088739][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.280438][T10857] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.289757][T10857] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  151.444044][T10860] netlink: 3 bytes leftover after parsing attributes in process `syz.4.2823'.
[  151.458564][T10860] 0ªX¹¦À: renamed from caif0
[  151.491977][T10864] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2825'.
[  151.501579][T10864] hsr_slave_0: left promiscuous mode
[  151.507276][T10864] hsr_slave_1: left promiscuous mode
[  151.745089][T10892] netlink: 'syz.4.2838': attribute type 4 has an invalid length.
[  151.755024][T10892] netlink: 'syz.4.2838': attribute type 4 has an invalid length.
[  151.925154][T10904] SELinux: failed to load policy
[  152.139806][T10937] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.208547][T10937] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.276745][T10937] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.317446][T10937] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.397982][ T3500] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  152.418314][ T3500] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  152.437662][ T3500] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  152.457302][ T3500] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  152.532114][   T29] kauditd_printk_skb: 531 callbacks suppressed
[  152.532126][   T29] audit: type=1400 audit(152.283:7057): avc:  denied  { connect } for  pid=10950 comm="syz.3.2862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  152.600528][   T29] audit: type=1400 audit(152.313:7058): avc:  denied  { read } for  pid=10950 comm="syz.3.2862" path="socket:[36086]" dev="sockfs" ino=36086 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  152.624348][   T29] audit: type=1400 audit(152.343:7059): avc:  denied  { create } for  pid=10953 comm="syz.1.2863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  152.682229][   T29] audit: type=1400 audit(152.423:7060): avc:  denied  { write } for  pid=10956 comm="syz.4.2864" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  152.792386][   T29] audit: type=1326 audit(152.543:7061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10966 comm="syz.4.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1287065b27 code=0x7ffc0000
[  152.901188][T10971] loop4: detected capacity change from 0 to 2048
[  152.960357][   T29] audit: type=1326 audit(152.543:7062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10966 comm="syz.4.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f128700ad69 code=0x7ffc0000
[  152.960693][T10971] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.983935][   T29] audit: type=1326 audit(152.543:7063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10966 comm="syz.4.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1287065b27 code=0x7ffc0000
[  153.019892][   T29] audit: type=1326 audit(152.543:7064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10966 comm="syz.4.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f128700ad69 code=0x7ffc0000
[  153.043598][   T29] audit: type=1326 audit(152.543:7065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10966 comm="syz.4.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  153.067219][   T29] audit: type=1326 audit(152.543:7066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10966 comm="syz.4.2869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  153.291751][ T6216] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.339151][T10994] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=962 sclass=netlink_route_socket pid=10994 comm=syz.5.2881
[  153.659922][T11008] batadv_slave_0: entered promiscuous mode
[  153.682693][T11008] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  153.708360][T11008] batadv_slave_0 (unregistering): left promiscuous mode
[  153.806915][T11015] loop3: detected capacity change from 0 to 512
[  153.814506][T11015] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  153.826496][T11015] EXT4-fs (loop3): Can't support bigalloc feature without extents feature
[  153.826496][T11015] 
[  153.837357][T11015] EXT4-fs (loop3): Skipping orphan cleanup due to unknown ROCOMPAT features
[  153.847039][T11015] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  153.913215][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.992133][T11026] syzkaller0: entered allmulticast mode
[  154.006954][T11026] syzkaller0: entered promiscuous mode
[  154.021025][T11026] syzkaller0 (unregistering): left allmulticast mode
[  154.027931][T11026] syzkaller0 (unregistering): left promiscuous mode
[  154.375043][T11042] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11042 comm=syz.3.2897
[  154.445373][T11047] loop4: detected capacity change from 0 to 256
[  154.454829][T11047] FAT-fs (loop4): bogus number of FAT sectors
[  154.461039][T11047] FAT-fs (loop4): Can't find a valid FAT filesystem
[  154.655548][T11061] netlink: 'syz.4.2909': attribute type 29 has an invalid length.
[  154.672785][T11061] netlink: 'syz.4.2909': attribute type 29 has an invalid length.
[  154.688386][T11061] netlink: 500 bytes leftover after parsing attributes in process `syz.4.2909'.
[  154.774590][T11067] vlan2: entered allmulticast mode
[  154.790526][T11071] netlink: 'syz.3.2911': attribute type 9 has an invalid length.
[  154.798641][T11071] netlink: 'syz.3.2911': attribute type 9 has an invalid length.
[  154.851914][T11075] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2914'.
[  154.916851][T11081] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2917'.
[  155.095686][T11083] syzkaller0: entered promiscuous mode
[  155.101516][T11083] syzkaller0: entered allmulticast mode
[  155.204588][T11099] loop3: detected capacity change from 0 to 512
[  155.225065][T11099] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  155.247877][T11099] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.308607][T11099] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[  155.379489][T11099] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  155.403018][T11112] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2930'.
[  155.446313][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.456321][T11116] bridge0: entered allmulticast mode
[  155.462290][T11116] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2932'.
[  155.539497][T11125] 9pnet: p9_errstr2errno: server reported unknown error 
[  155.569948][T11130] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2938'.
[  155.691247][T11137] netlink: 'syz.1.2940': attribute type 11 has an invalid length.
[  155.760083][T11144] loop4: detected capacity change from 0 to 164
[  155.770236][T11149] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2945'.
[  155.804126][T11149] team0: entered promiscuous mode
[  155.809907][T11149] team0: entered allmulticast mode
[  155.838185][T11152] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.861342][T11152] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.955066][T11163] bridge: RTM_NEWNEIGH with invalid ether address
[  156.535242][T11186] lo: left allmulticast mode
[  156.542772][T11186] tunl0: left allmulticast mode
[  156.548974][T11186] gre0: left allmulticast mode
[  156.561503][T11186] gretap0: left allmulticast mode
[  156.565559][ T4876] hid_parser_main: 34 callbacks suppressed
[  156.565575][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.580456][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.588252][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.595815][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.603556][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.611096][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.618764][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.626360][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.634141][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.641845][ T4876] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0
[  156.649959][T11186] erspan0: left allmulticast mode
[  156.650302][ T4876] hid-generic 0000:0000:0008.0002: hidraw0: <UNKNOWN> HID vc.87 Device [syz0] on syz1
[  156.657624][T11186] ip_vti0: left allmulticast mode
[  156.671446][T11186] ip6_vti0: left allmulticast mode
[  156.677741][T11186] sit0: left allmulticast mode
[  156.684213][T11186] ip6tnl0: left allmulticast mode
[  156.690125][T11186] ip6gre0: left allmulticast mode
[  156.696154][T11186] syz_tun: left allmulticast mode
[  156.702215][T11186] ip6gretap0: left allmulticast mode
[  156.708667][T11186] vcan0: left allmulticast mode
[  156.714903][T11186] team0: left allmulticast mode
[  156.721657][T11186] nlmon0: left allmulticast mode
[  156.728687][T11186] caif0: left allmulticast mode
[  156.739222][T11186] hsr1: left allmulticast mode
[  156.744191][T11186] bond0: left allmulticast mode
[  156.753652][   T10] lo speed is unknown, defaulting to 1000
[  156.759687][   T10] s
z1: Port: 1 Link DOWN
[  156.778511][   T10] lo speed is unknown, defaulting to 1000
[  156.862243][T11194] lo speed is unknown, defaulting to 1000
[  156.891102][T11194] lo speed is unknown, defaulting to 1000
[  157.418757][T11228] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  157.467137][T11228] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  157.530716][T11228] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  157.607269][T11228] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  157.753561][ T3476] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  157.779677][ T3476] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  157.796844][ T3476] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  157.812784][ T3476] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  157.928541][T11249] loop3: detected capacity change from 0 to 2048
[  157.950994][T11249] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.2984: bad orphan inode 61
[  157.966661][T11249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.095600][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.248958][   T29] kauditd_printk_skb: 102 callbacks suppressed
[  158.248973][   T29] audit: type=1400 audit(158.003:7169): avc:  denied  { map } for  pid=11265 comm="syz.2.2991" path="socket:[36658]" dev="sockfs" ino=36658 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  158.342495][   T29] audit: type=1326 audit(158.093:7170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11271 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  158.358407][T11237] syz.1.2979 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=0
[  158.365803][   T29] audit: type=1326 audit(158.093:7171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11271 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  158.379934][T11237] CPU: 0 UID: 0 PID: 11237 Comm: syz.1.2979 Tainted: G        W           6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(voluntary) 
[  158.379965][T11237] Tainted: [W]=WARN
[  158.379970][T11237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  158.379981][T11237] Call Trace:
[  158.379988][T11237]  <TASK>
[  158.379995][T11237]  __dump_stack+0x1d/0x30
[  158.380043][T11237]  dump_stack_lvl+0xe8/0x140
[  158.380062][T11237]  dump_stack+0x15/0x1b
[  158.380078][T11237]  dump_header+0x81/0x220
[  158.380107][T11237]  oom_kill_process+0x342/0x400
[  158.380156][T11237]  out_of_memory+0x979/0xb80
[  158.380249][T11237]  try_charge_memcg+0x5e6/0x9e0
[  158.380278][T11237]  obj_cgroup_charge_pages+0xa6/0x150
[  158.380307][T11237]  __memcg_kmem_charge_page+0x9f/0x170
[  158.380396][T11237]  __alloc_frozen_pages_noprof+0x188/0x360
[  158.380430][T11237]  alloc_pages_mpol+0xb3/0x250
[  158.380460][T11237]  alloc_pages_noprof+0x90/0x130
[  158.380531][T11237]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  158.380644][T11237]  __kvmalloc_node_noprof+0x30f/0x4e0
[  158.380670][T11237]  ? ip_set_alloc+0x1f/0x30
[  158.380694][T11237]  ? ip_set_alloc+0x1f/0x30
[  158.380778][T11237]  ? hash_netiface_create+0x21b/0x740
[  158.380872][T11237]  ? __kmalloc_cache_noprof+0x189/0x320
[  158.380899][T11237]  ip_set_alloc+0x1f/0x30
[  158.380923][T11237]  hash_netiface_create+0x282/0x740
[  158.381011][T11237]  ? __pfx_hash_netiface_create+0x10/0x10
[  158.381038][T11237]  ip_set_create+0x3cc/0x960
[  158.381075][T11237]  ? __nla_parse+0x40/0x60
[  158.381127][T11237]  nfnetlink_rcv_msg+0x4c6/0x590
[  158.381171][T11237]  netlink_rcv_skb+0x120/0x220
[  158.381198][T11237]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  158.381229][T11237]  nfnetlink_rcv+0x16b/0x1690
[  158.381266][T11237]  ? __rcu_read_lock+0x37/0x50
[  158.381298][T11237]  ? __pte_offset_map_lock+0x1d4/0x230
[  158.381384][T11237]  ? css_rstat_updated+0xb7/0x240
[  158.381412][T11237]  ? strnchr+0x1e/0x40
[  158.381491][T11237]  ? bpf_bprintf_prepare+0xc70/0xd90
[  158.381514][T11237]  ? _raw_spin_unlock+0x26/0x50
[  158.381539][T11237]  ? page_vma_mapped_walk+0x9f1/0xdb0
[  158.381590][T11237]  ? bpf_trace_vprintk+0x119/0x200
[  158.381675][T11237]  ? __rcu_read_unlock+0x4f/0x70
[  158.381694][T11237]  ? bpf_trace_run2+0x124/0x1c0
[  158.381721][T11237]  ? __list_add_valid_or_report+0x38/0xe0
[  158.381744][T11237]  ? should_fail_ex+0x30/0x280
[  158.381851][T11237]  ? selinux_nlmsg_lookup+0x99/0x890
[  158.381877][T11237]  ? __rcu_read_unlock+0x34/0x70
[  158.381897][T11237]  ? __netlink_lookup+0x266/0x2a0
[  158.381978][T11237]  netlink_unicast+0x5c0/0x690
[  158.382009][T11237]  netlink_sendmsg+0x58b/0x6b0
[  158.382114][T11237]  ? __pfx_netlink_sendmsg+0x10/0x10
[  158.382143][T11237]  __sock_sendmsg+0x145/0x180
[  158.382230][T11237]  ____sys_sendmsg+0x31e/0x4e0
[  158.382263][T11237]  ___sys_sendmsg+0x17b/0x1d0
[  158.382357][T11237]  __x64_sys_sendmsg+0xd4/0x160
[  158.382386][T11237]  x64_sys_call+0x191e/0x2ff0
[  158.382403][T11237]  do_syscall_64+0xd2/0x200
[  158.382424][T11237]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  158.382483][T11237]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  158.382502][T11237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.382523][T11237] RIP: 0033:0x7f5acf97eb69
[  158.382538][T11237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.382555][T11237] RSP: 002b:00007f5acdfe7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  158.382639][T11237] RAX: ffffffffffffffda RBX: 00007f5acfba5fa0 RCX: 00007f5acf97eb69
[  158.382651][T11237] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  158.382727][T11237] RBP: 00007f5acfa01df1 R08: 0000000000000000 R09: 0000000000000000
[  158.382739][T11237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.382751][T11237] R13: 0000000000000000 R14: 00007f5acfba5fa0 R15: 00007ffd9dd870d8
[  158.382769][T11237]  </TASK>
[  158.382776][T11237] memory: usage 307200kB, limit 307200kB, failcnt 48
[  158.403179][   T29] audit: type=1326 audit(158.093:7172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11271 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  158.403210][   T29] audit: type=1326 audit(158.093:7173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11271 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  158.403345][   T29] audit: type=1326 audit(158.093:7174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11271 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  158.417211][T11237] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  158.417224][T11237] kmem: usage 239580kB, limit 9007199254740988kB, failcnt 0
[  158.417235][T11237] Memory cgroup stats for /syz1:
[  158.892042][T11237] cache 69009408
[  158.901078][T11237] rss 151552
[  158.904346][T11237] shmem 68919296
[  158.907918][T11237] mapped_file 90112
[  158.911770][T11237] dirty 90112
[  158.915143][T11237] writeback 61440
[  158.918798][T11237] workingset_refault_anon 527
[  158.922035][   T29] audit: type=1326 audit(158.633:7175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11271 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  158.923460][T11237] workingset_refault_file 1
[  158.923468][T11237] swap 0
[  158.923474][T11237] swapcached 61440
[  158.923481][T11237] pgpgin 212763
[  158.946550][   T29] audit: type=1326 audit(158.633:7176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11271 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  158.946635][   T29] audit: type=1326 audit(158.633:7177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11271 comm="syz.4.2993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f128706eb69 code=0x7ffc0000
[  158.951447][T11237] pgpgout 195858
[  159.011180][T11237] pgfault 199807
[  159.014724][T11237] pgmajfault 74
[  159.018278][T11237] inactive_anon 43708416
[  159.022514][T11237] active_anon 25423872
[  159.026641][T11237] inactive_file 0
[  159.030262][T11237] active_file 110592
[  159.034145][T11237] unevictable 0
[  159.037734][T11237] hierarchical_memory_limit 314572800
[  159.043180][T11237] hierarchical_memsw_limit 9223372036854771712
[  159.049460][T11237] total_cache 69009408
[  159.053605][T11237] total_rss 151552
[  159.057426][T11237] total_shmem 68919296
[  159.061489][T11237] total_mapped_file 90112
[  159.065833][T11237] total_dirty 90112
[  159.069648][T11237] total_writeback 61440
[  159.073848][T11237] total_workingset_refault_anon 527
[  159.079296][T11237] total_workingset_refault_file 1
[  159.084949][T11237] total_swap 0
[  159.088657][T11237] total_swapcached 61440
[  159.092900][T11237] total_pgpgin 212763
[  159.096900][T11237] total_pgpgout 195858
[  159.101120][T11237] total_pgfault 199807
[  159.105228][T11237] total_pgmajfault 74
[  159.109326][T11237] total_inactive_anon 43708416
[  159.114118][T11237] total_active_anon 25423872
[  159.118736][T11237] total_inactive_file 0
[  159.123125][T11237] total_active_file 110592
[  159.127582][T11237] total_unevictable 0
[  159.131565][T11237] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2979,pid=11236,uid=0
[  159.146273][T11237] Memory cgroup out of memory: Killed process 11236 (syz.1.2979) total-vm:95812kB, anon-rss:948kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:0
[  159.255514][T11289] loop5: detected capacity change from 0 to 512
[  159.371455][T11289] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.384695][   T29] audit: type=1400 audit(159.123:7178): avc:  denied  { cmd } for  pid=11300 comm="syz.3.3003" path="socket:[36978]" dev="sockfs" ino=36978 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  159.420001][T11289] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.2998: corrupted inode contents
[  159.434255][T11289] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #2: comm syz.5.2998: mark_inode_dirty error
[  159.448546][T11289] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.2998: corrupted inode contents
[  159.465831][T11289] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.2998: mark_inode_dirty error
[  159.500011][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.544366][T11309] loop3: detected capacity change from 0 to 2048
[  159.560843][T11311] batadv_slave_0: entered promiscuous mode
[  159.573924][T11311] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  159.583016][T11311] batadv_slave_0 (unregistering): left promiscuous mode
[  159.632654][T11309] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.688878][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.843896][T11344] tipc: New replicast peer: 255.255.255.255
[  159.850149][T11344] tipc: Enabled bearer <udp:syz2>, priority 10
[  160.127363][T11326] lo speed is unknown, defaulting to 1000
[  160.439956][T11326] lo speed is unknown, defaulting to 1000
[  160.769599][T11419] netlink: 'syz.3.3025': attribute type 13 has an invalid length.
[  160.787741][T11422] loop5: detected capacity change from 0 to 2048
[  160.825586][T11422] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.839641][ T3498] netdevsim netdevsim3 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  160.853325][ T3498] netdevsim netdevsim3 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  160.897384][ T3498] netdevsim netdevsim3 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  160.917628][ T3498] netdevsim netdevsim3 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  160.932960][T11430] net_ratelimit: 3 callbacks suppressed
[  160.932987][T11430] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  160.945832][   T10] IPVS: starting estimator thread 0...
[  160.965755][ T4876] tipc: Node number set to 3116788532
[  161.035759][T11435] IPVS: using max 2880 ests per chain, 144000 per kthread
[  161.222100][T11434] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  161.267769][T11434] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  161.280512][T11434] EXT4-fs (loop5): This should not happen!! Data will be lost
[  161.280512][T11434] 
[  161.290277][T11434] EXT4-fs (loop5): Total free blocks count 0
[  161.296387][T11434] EXT4-fs (loop5): Free/Dirty block details
[  161.302355][T11434] EXT4-fs (loop5): free_blocks=2415919104
[  161.308299][T11434] EXT4-fs (loop5): dirty_blocks=8208
[  161.313647][T11434] EXT4-fs (loop5): Block reservation details
[  161.319671][T11434] EXT4-fs (loop5): i_reserved_data_blocks=513
[  161.363541][ T1958] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  161.482616][T11458] loop5: detected capacity change from 0 to 512
[  161.515900][T11458] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.539520][T11462] syzkaller1: entered promiscuous mode
[  161.545180][T11462] syzkaller1: entered allmulticast mode
[  161.603778][ T5076] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.783887][T11481] can: request_module (can-proto-0) failed.
[  161.806374][T11483] ==================================================================
[  161.814935][T11483] BUG: KCSAN: data-race in __mark_inode_dirty / __writeback_single_inode
[  161.824592][T11483] 
[  161.827024][T11483] read-write to 0xffff8881059328b8 of 4 bytes by task 3498 on cpu 0:
[  161.835159][T11483]  __writeback_single_inode+0x1e3/0x7c0
[  161.840802][T11483]  writeback_sb_inodes+0x48f/0xa30
[  161.845909][T11483]  __writeback_inodes_wb+0x94/0x1a0
[  161.851106][T11483]  wb_writeback+0x266/0x5c0
[  161.855600][T11483]  wb_workfn+0x4c9/0x910
[  161.859833][T11483]  process_scheduled_works+0x4ce/0x9d0
[  161.865375][T11483]  worker_thread+0x582/0x770
[  161.869958][T11483]  kthread+0x486/0x510
[  161.874014][T11483]  ret_from_fork+0xdd/0x150
[  161.878608][T11483]  ret_from_fork_asm+0x1a/0x30
[  161.883721][T11483] 
[  161.886123][T11483] read to 0xffff8881059328b8 of 4 bytes by task 11483 on cpu 1:
[  161.893783][T11483]  __mark_inode_dirty+0x18e/0x760
[  161.898888][T11483]  mark_buffer_dirty+0x133/0x210
[  161.903813][T11483]  block_page_mkwrite+0x287/0x3d0
[  161.908834][T11483]  ext4_page_mkwrite+0x859/0xb90
[  161.913863][T11483]  do_wp_page+0xdd8/0x24e0
[  161.918283][T11483]  handle_mm_fault+0x77d/0x2c20
[  161.923311][T11483]  do_user_addr_fault+0x636/0x1090
[  161.928449][T11483]  exc_page_fault+0x62/0xa0
[  161.932935][T11483]  asm_exc_page_fault+0x26/0x30
[  161.937769][T11483] 
[  161.940075][T11483] value changed: 0x0001002a -> 0x00000020
[  161.945859][T11483] 
[  161.948167][T11483] Reported by Kernel Concurrency Sanitizer on:
[  161.954307][T11483] CPU: 1 UID: 0 PID: 11483 Comm: syz.5.3047 Tainted: G        W           6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(voluntary) 
[  161.968280][T11483] Tainted: [W]=WARN
[  161.972152][T11483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  161.982199][T11483] ==================================================================