last executing test programs:

9m21.83627021s ago: executing program 32 (id=858):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000008c0)={[{@norecovery}, {@lazytime}, {@bh}, {@nogrpid}, {@debug}, {@auto_da_alloc}]}, 0x6, 0x5fc, &(0x7f0000000c00)="$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")
r0 = socket$caif_stream(0x25, 0x1, 0x0)
sendmmsg$inet(r0, &(0x7f0000000940)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000780)="92", 0x1}], 0x1}}], 0x2, 0x2600c054)

8m13.990865444s ago: executing program 33 (id=2891):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0xa1, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x3c, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x3c}}, 0x0)

5m12.867987234s ago: executing program 34 (id=9870):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r0, 0x0, 0x4080)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'veth0_to_bridge\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)

5m8.684715202s ago: executing program 35 (id=9929):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSACTIVE(r0, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x4, 0x0, 0x0)
write$ppp(r0, &(0x7f0000000200)="bc72", 0x2)

4m58.281127513s ago: executing program 36 (id=10195):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

4m43.330346582s ago: executing program 37 (id=10535):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10)
sendmmsg$inet(r2, &(0x7f0000001480)=[{{&(0x7f0000000100)={0x2, 0x6e20, @multicast1}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r2, 0x0, 0x0, 0x12000000, 0x0, 0x0)

4m8.595506785s ago: executing program 38 (id=11539):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x101002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
umount2(0x0, 0x4)
umount2(0x0, 0x4)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

3m46.954153615s ago: executing program 39 (id=12202):
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x89402, 0x0)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x18)
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r3)

3m15.999858577s ago: executing program 40 (id=13078):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000006c0)='kmem_cache_free\x00', r1, 0x0, 0x2000}, 0x18)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000380)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, &(0x7f0000000000)="008000000000", 0x6, 0x0, 0x0, 0x2}])

3m8.194365857s ago: executing program 41 (id=13251):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r0, 0x10ada85e65c25359, 0xfffffffd, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x9}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8441}, 0x4000000)

2m17.475740897s ago: executing program 4 (id=14865):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xda, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@mcast1, 0x0, 0x3c}, 0x2, @in=@local, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup(r3)
getsockname$packet(r4, &(0x7f00000000c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0xdd860600, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0xec, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0xb}, [@IFLA_AF_SPEC={0xcc, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET={0xb0, 0x2, 0x0, 0x1, {0x9, 0x1, 0x0, 0x1, [{0xc}, {0x8}, {0x1b}, {0x8}, {0x8}]}}, @AF_INET={0x18, 0x2, 0x0, 0x1, {0x14}}, @AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}]}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x0, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x0, 0x7, @rand_addr=' \x01\x00'}, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}, @IFLA_INET6_TOKEN={0x0, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @rand_addr=' \x01\x00'}, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}, @IFLA_INET6_ADDR_GEN_MODE={0x48}, @IFLA_INET6_ADDR_GEN_MODE]}, @AF_MPLS={0x4}]}]}, 0xec}}, 0x0)

2m17.380596995s ago: executing program 4 (id=14866):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0xb76e}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200a}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000280), &(0x7f0000000300)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r3, 0xc0105500, &(0x7f0000000140)={0x80, 0x6, 0x303, 0xfff, 0x0, 0x0, 0x0})

2m17.281900893s ago: executing program 4 (id=14873):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x18)
sendmsg$rds(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$sndseq(r3, &(0x7f0000000040)=[{0x4, 0x7, 0x0, 0x0, @tick=0xf64b, {0x0, 0xb8}, {0x4, 0x6}, @control={0x2, 0x7f, 0x2}}, {0x0, 0x3, 0x0, 0x4, @time={0x83, 0xa77f}, {0x2, 0x4}, {0x0, 0x2}, @control={0x8, 0x4, 0x4c8}}], 0x38)

2m17.032970923s ago: executing program 4 (id=14877):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000c00)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0], 0x20, 0x11e2, &(0x7f0000002480)="$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")
chdir(&(0x7f00000000c0)='./file0\x00')
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000200), 0x3, 0x570, &(0x7f0000000680)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000240)='./bus\x00', 0x1c7102, 0x1)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

2m16.934572171s ago: executing program 4 (id=14881):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r3, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fedbdf25080000001800028014000380100001800400030008000100050000000c00018008000100", @ANYRES32=r2], 0x38}, 0x1, 0x0, 0x0, 0x4000804}, 0x0)

2m16.678913612s ago: executing program 4 (id=14891):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00')

2m16.644951024s ago: executing program 42 (id=14891):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00')

1m41.348402977s ago: executing program 6 (id=15743):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r3}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x48)

1m40.877452885s ago: executing program 6 (id=15746):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='setgroups\x00')
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000000), 0x13f}}, 0x20)
close_range(r2, 0xffffffffffffffff, 0x0)

1m40.616246476s ago: executing program 6 (id=15755):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r2}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

1m40.561078041s ago: executing program 6 (id=15758):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101017, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

1m40.514514354s ago: executing program 6 (id=15762):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000400)={0xa, 0x2, 0x13, @loopback, 0x9}, 0x1c)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000900)="580000001400192340834b80040d8c560a066e0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000007000200060c10000000010000000000", 0x58}], 0x1)

1m39.642030845s ago: executing program 2 (id=15781):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x280809a, &(0x7f0000000f40)=ANY=[], 0xd, 0x2c0, &(0x7f0000001a80)="$eJzs3U+LG2UYAPBnstnsrD1kES+K4IAePC1dr142ygrFnJQI6kGDbUGSUOhCoCuY7qmfwO/iR/DixW9Q8Cp4aw8rIzOTyZ8yqVGzivb3Oz08b573fWfe3SSXPPPl65PR7XtJXD55HGmaROs0TuNpEkfRitrDaAcA8P/xNM/j17wMk7yyZWW7da0bAwCuTfX5/6c++AGA/7iPP/3sw16/f/ZRlqXxavfRdJBExOTRdFCN9+7G1zGOO3EzunEVkS9U8Qe3+mfRzgpH8dZkNh0UlZMvfpzP3/sloqw/2evGUXP9SVZZqZ9NB/vxUmTRu7tfb7UbrzTXv9NQH4NOvP3myv6Poxs/fRX3Yhy3o6hd1n97kmXv5989+ebzYpmiPmnF4KB8XSn3BQkAAAAAAAAAAAAAAAAAAAAAgN06zrKkat9T9u8pUvP+O3tX5fhxVjta789T1Sf1RFV/oLzuljNL5/lb/bObWZblSZSDy/p2vNb2YAEAAAAAAAAAAAAAAAAAAAAonD94fGM4Ht+5f/7gYvS3g7obQP2z/r86z+lK5o24GA33Nk948OxQPIxonnm120Cx1+duI9rt2NFtaQ4uF5nDYj87X+IgFplPogqqgznc7XW9/F51Ry9Gw6w+grnRMPmjtdL64L5fHepsOMHtg7z8k7jK1880XWx1vaqzo7vRubHMHC6HfsvzfLt53v25OqN5JilbbGy3+v48aLzAIkiLs0gX//jF0A+bJ9z4lrG3g7cdAAAAAAAAAAAAAAAAAACgwfJHvw2Dl88tbV3bpgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgH7Z8/n8dpBGxnimC1mpmNi9+5jVNQSfun//LlwgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAL4PcAAAD//28ZVAA=")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x80881, 0x82)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)

1m38.628967287s ago: executing program 2 (id=15793):
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xad, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r3}, 0x10)
close(r0)

1m38.598808919s ago: executing program 2 (id=15794):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
sendto$inet6(r0, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x2, @dev={0xfe, 0x80, '\x00', 0x13}, 0x7}, 0x1c)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0)

1m38.507280427s ago: executing program 2 (id=15797):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101017, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

1m38.481613229s ago: executing program 2 (id=15798):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000540)='\x00', &(0x7f0000001c80)='n', 0x1)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000100)='[,\x00', &(0x7f0000000140)=',-\x10*\x00', 0x0)
close(r0)

1m38.383953177s ago: executing program 2 (id=15803):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x8000001f)
r3 = open(&(0x7f0000000280)='.\x00', 0x101000, 0x116)
fcntl$notify(r3, 0x402, 0x8000003d)
close_range(r2, r3, 0x0)

1m38.383787497s ago: executing program 43 (id=15803):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x8000001f)
r3 = open(&(0x7f0000000280)='.\x00', 0x101000, 0x116)
fcntl$notify(r3, 0x402, 0x8000003d)
close_range(r2, r3, 0x0)

1m38.076416192s ago: executing program 6 (id=15812):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xdec7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x80000}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

1m38.074365142s ago: executing program 44 (id=15812):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xdec7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x80000}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

38.96366718s ago: executing program 7 (id=17353):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0x4, 0xa, 0x40}, 0x50)
close(0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='9p_protocol_dump\x00', r0}, 0x10)
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u}]}})

38.683343292s ago: executing program 7 (id=17358):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000340)='leases_conflict\x00', r2}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000340)='leases_conflict\x00', r3}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)

38.615676128s ago: executing program 7 (id=17363):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='kfree\x00', r0, 0x0, 0x400000000000000}, 0x18)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @broadcast}}, 0x5, 0x12, 0x0, 0x3}, 0x9c)
r1 = syz_io_uring_setup(0x466d, &(0x7f0000000380)={0x0, 0x0, 0x10100, 0x3, 0x377}, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000400)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RENAMEAT={0x23, 0x30, 0x0, r4, 0x0, 0x0, r4})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

38.58247893s ago: executing program 7 (id=17365):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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")
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
getdents(r0, 0x0, 0x0)

38.371818458s ago: executing program 7 (id=17376):
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r0, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000000400)={0x84, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_ADDR={0x44, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x14}}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x2}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0xfffffff8}]}, 0x84}, 0x1, 0x0, 0x0, 0x4880}, 0x4000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[], 0x1cc}, 0x1, 0x0, 0x0, 0x8010}, 0x4008800)
unshare(0x22020600)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25047c0000100036800c0002000700"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
ioctl$SG_GET_VERSION_NUM(r1, 0x2284, &(0x7f0000000080))

38.169172054s ago: executing program 7 (id=17383):
r0 = gettid()
r1 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r1, &(0x7f0000003c40)=[{{0x0, 0x0, 0x0}, 0x80000000}], 0x1, 0x60010002, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000300))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)

38.129624417s ago: executing program 45 (id=17383):
r0 = gettid()
r1 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r1, &(0x7f0000003c40)=[{{0x0, 0x0, 0x0}, 0x80000000}], 0x1, 0x60010002, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000300))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)

20.583352925s ago: executing program 5 (id=17737):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000680)=0x1, 0x4)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x40)
recvmmsg(r0, &(0x7f00000040c0)=[{{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, 0x0}, 0x6}], 0x2, 0x100, 0x0)

20.53276533s ago: executing program 5 (id=17739):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r3}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

20.452490196s ago: executing program 5 (id=17742):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r3 = dup2(r2, r2)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
ioctl$BLKTRACETEARDOWN(r3, 0x1276, 0x0)

20.427495328s ago: executing program 5 (id=17745):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$eJzs3c9rXNUeAPDvnfxq0r6XPHjwXl0FBA2UTkyNrYKLigsRLBR0bRsm01AzyZTMpDQh0BYR3AgqLgTddO2PunPrj63+Fy6kpWparLiQkTuZSSbNTJq0mZlgPh+4uefcc2/O+c65P87MvcwEcGCNpn8yEUcj4v0kYri2PImIvmqqN+L02nr3V1dy6ZREpfL6r0l1nXurK7lo2CZ1uJb5f0R8907EsczWektLy7NThUJ+oZYfL89dGi8tLR+/ODc1k5/Jz5+cmJw8ceq5Uyf3Ltbff1w+cvuDV57+8vSfb//v5nvfJ3E6jtTKGuPYK6MxWntN+tKXcJOX97qyLku63QAeSXpo9qwd5XE0hqOnmmphsJMtAwDa5WpEVACAAyZx/QeAA6b+OcC91ZVcferuJxKddeeliDi0Fn/9/uZaSW/tnt2h6n3QoXvJpjsjSUSM7EH9oxHx6ddvfp5O0ab7kADNXLseEedHRree/5Mtzyzs1jPbFVYGqrPRBxY7/0HnfJOOf55vNv7LrI9/osn4Z6DJsfsoHn78Z27tQTUtpeO/FxuebbvfEH/NSE8t96/qmK8vuXCxkE/Pbf+OiLHoG0jzE9VVmz8FNXb3r7ut6m8c//324VufpfWn8401Mrd6BzZvMz1VnnrcuOvuXI94ordZ/Ml6/yctxr9nd1jHqy+8+0mrsjT+NN76tDX+9qrciHiqaf9v9GWy7fOJ49XdYby+UzTx1U8fD7Wqf6P/B6rztP76e4FOSPt/aPv4R5LG5zVLu6/jhxvD37Yqa9z/m8fffP/vT96opvtry65MlcsLExH9yWtbl5/Y2Laer6+fxj/2ZPPjv9X+n6k9G3t+Pbe93tu/fFH7V03jr7rWKv72SuOf3lX/b5Oo1LZ5oOjm/dmeVvXvrP8nq6mx2pKdnP8e0tLH2JsBAAAAAAAAAAAAAAAAAAAAAAAAYPcyEXEkkkx2PZ3JZLNrv+H93xjKFIql8rELxcX56aj+VvZI9GXqX3U53PB9qBO178Ov5088kH82Iv4TER8NDFbz2VyxMN3t4AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg5vDm3/+/ms6y2bWynwe63ToAoG0OdbsBAEDHuf4DwMGzu+v/YNvaAQB0zq7f/1eS9jQEAOiYHV//z7e3HQBA57j/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQJudPXMmnSp/rK7k0vz05aXF2eLl49P50mx2bjGXzRUXLmVnisWZQj6bK861/EfX1maFYvHSZMwvXhkv50vl8dLS8rm54uJ8+dzFuamZ/Ll8X8ciAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICdKy0tz04VCvkFiW0Tg/ujGfsm0Rv7ohn/+ER/12pvPEsMdu8EBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDP/R0AAP//aHclQg==")
creat(&(0x7f0000000000)='./bus\x00', 0xd931d3864d39ddd8)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
creat(0x0, 0x44)
mount(0x0, 0x0, 0x0, 0x301400, 0x0)
ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000080)=0x3f)
copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0xae8, 0x863, 0x0)

20.200664716s ago: executing program 5 (id=17748):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e0000000800000000001800038014000380"], 0x44}}, 0x20008000)

19.598646435s ago: executing program 5 (id=17757):
inotify_add_watch(0xffffffffffffffff, 0x0, 0x82000714)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
socket$packet(0x11, 0xa, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r2=>0x0})
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r1, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_emit_ethernet(0x52, &(0x7f0000001480)=ANY=[], 0x0)

19.5406941s ago: executing program 46 (id=17757):
inotify_add_watch(0xffffffffffffffff, 0x0, 0x82000714)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
socket$packet(0x11, 0xa, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r2=>0x0})
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r1, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_emit_ethernet(0x52, &(0x7f0000001480)=ANY=[], 0x0)

1.904471045s ago: executing program 9 (id=18224):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
flock(r0, 0x5)
r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x440, 0x0)
flock(r3, 0x1)
flock(r3, 0x2)
dup3(r3, r0, 0x0)

1.816740243s ago: executing program 9 (id=18226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}, 0x1, 0x0, 0x0, 0x4800}, 0x20000000)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x14, r3, 0x1, 0x70bd2c, 0x25dbdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x54)

1.815238153s ago: executing program 8 (id=18227):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x14d9, &(0x7f0000000480)={0x0, 0x5121, 0x0, 0x0, 0x2cf}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000600)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file1\x00'})
io_uring_enter(r2, 0x47ba, 0x0, 0x0, 0x0, 0x0)

1.660785155s ago: executing program 9 (id=18233):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xe}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r2, &(0x7f0000001300)="92", 0x1, 0x10, &(0x7f0000000240)={0xa, 0x4e1c, 0xfffffffc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x4}, 0x8)
prlimit64(0x0, 0xe, 0x0, 0x0)

1.434735194s ago: executing program 8 (id=18236):
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, 0x0, 0x20040800)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x3}, 0x18)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
setxattr$security_evm(0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")

1.334480002s ago: executing program 8 (id=18240):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x1d6}, 0x18)
r2 = io_uring_setup(0x1694, &(0x7f0000000080)={0x0, 0x0, 0x40})
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

1.291605155s ago: executing program 3 (id=18242):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x700000, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000380), 0x0, 0x20000000, &(0x7f0000000200)={0xa, 0x4e22, 0x6, @dev={0xfe, 0x80, '\x00', 0x27}, 0xfff}, 0x1c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r2, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

1.273928036s ago: executing program 0 (id=18243):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

1.239718649s ago: executing program 8 (id=18244):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000040000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000840)=@newqdisc={0x34, 0x24, 0xf0b, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x12, r3, {0x0, 0x11}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}}, 0x0)

1.215523781s ago: executing program 8 (id=18246):
socket$phonet_pipe(0x23, 0x5, 0x2)
r0 = mq_open(&(0x7f0000000480)='!sel\x00\x00\x00\x10\x00\x00\x00\x00\xd7\\P\xc1\xde.O\xcb]0y\x00\x00\x00\x00\x00\x00\x00\x00', 0x6e93ebbbcc0884f2, 0x196, &(0x7f0000000000)={0x2000000000002000, 0x1, 0x53, 0x5})
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
pipe(&(0x7f0000000300))
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x3, 0x0, 0x9e1, 0x0, 0x802}, 0x0, &(0x7f00000002c0)={0x3ff, 0x1000000000002, 0x2, 0x0, 0x5, 0x4, 0x80000001, 0x7fffffffffffffff}, 0x0, 0x0)
mq_timedreceive(r0, &(0x7f0000000880)=""/202, 0x8f, 0x200000000004, 0x0)

1.186923354s ago: executing program 3 (id=18247):
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x3, 0x0, &(0x7f0000000000)="5cdd30", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7737, 0x80, 0x0, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

1.009334318s ago: executing program 3 (id=18249):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

891.769947ms ago: executing program 3 (id=18250):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{0x6, 0x2, 0x0, 0x2}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffffd}}, @TCA_NETEM_RATE={0x14, 0x6, {0x1, 0x80, 0x7, 0x7a7}}]}}}]}, 0x6c}}, 0x20000000)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)

847.187151ms ago: executing program 9 (id=18251):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xd, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x61d}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x2, 0x0, 0x0, 0x1f00, 0x3, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x6}, 0x4)
close_range(r2, 0xffffffffffffffff, 0x0)

806.567354ms ago: executing program 9 (id=18253):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

756.894028ms ago: executing program 9 (id=18255):
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x3})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040), 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)

627.348909ms ago: executing program 1 (id=18256):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000010)

581.668023ms ago: executing program 1 (id=18257):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setlease(r0, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

551.413195ms ago: executing program 1 (id=18258):
r0 = socket(0x10, 0x803, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000a80)='kfree\x00', r2, 0x0, 0x2}, 0x18)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9c010000100013070000000000000000ac1e0101000000000000000000000000fe8000000000000000000000010000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb000004d332000000ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000048000200636263286165732900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000064001400636d616328"], 0x19c}}, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0xffffffff, 0x0, 0x0, 0x4, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000080)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0xff, 0x0, 0x0, 0x0, 0x3}})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x100})

464.864372ms ago: executing program 1 (id=18259):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r4}, 0x10)
r5 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x10, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[], [], 0x6b}})

446.949203ms ago: executing program 1 (id=18260):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, "c8444943470da91b", "42f3ac0e0b8a32be8fe91c368e60693800000000d6e5394b00", "e7198360", "f7a5c1777af05eaa"}, 0x38)
sendto$inet6(r0, &(0x7f0000000340)="d1", 0x1, 0x8000, 0x0, 0x0)
write$binfmt_aout(r0, 0x0, 0xfdef)
sendto$inet6(r0, &(0x7f0000000240)="c62ee5d6a89f2387cb4093532f7c0a22ce", 0x11, 0x8040, 0x0, 0x0)
write$binfmt_elf64(r0, 0x0, 0x78)

437.042414ms ago: executing program 0 (id=18261):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@noblock_validity}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@debug}, {@inlinecrypt}]}, 0x6, 0x5fc, &(0x7f0000000c00)="$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")
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x41, &(0x7f0000000880)={[{@nouser_xattr}, {@nodiscard}, {@usrjquota}, {@grpjquota}, {@grpjquota}, {@minixdf}, {@quota}, {@noload}, {@block_validity}]}, 0x64, 0x51c, &(0x7f0000001740)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

389.009438ms ago: executing program 1 (id=18262):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = socket(0x2a, 0x2, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r2, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

385.823158ms ago: executing program 8 (id=18263):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
fremovexattr(0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

304.726085ms ago: executing program 0 (id=18264):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="120000000d0000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x6}, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f0000000400)=r0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000002c0)={r3, &(0x7f0000000000), 0x0}, 0x20)

284.940117ms ago: executing program 0 (id=18265):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000d40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r0}, &(0x7f00000003c0), &(0x7f0000000400)=r1}, 0x20)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e21, 0x7, @mcast1, 0x4}, 0x1c)
connect$pppl2tp(r2, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x8, 0x0, 0x4, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

265.358028ms ago: executing program 0 (id=18266):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

241.68384ms ago: executing program 0 (id=18267):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)=ANY=[], 0x48)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f0000000140)={[{@acl}, {@barrier_val={'barrier', 0x3d, 0x1003}}, {@errors_remount}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x1, 0x4e4, &(0x7f0000002d40)="$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")
r0 = syz_io_uring_setup(0x83f, &(0x7f00000000c0)={0x0, 0xa9ee, 0x0, 0x3, 0x8002ae}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x109880})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000780)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

38.677226ms ago: executing program 3 (id=18268):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

0s ago: executing program 3 (id=18269):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x21404e, &(0x7f0000000440)={[{@nombcache}, {@noblock_validity}, {@noquota}, {@errors_remount}, {@dioread_nolock}]}, 0x1, 0x524, &(0x7f00000004c0)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f00000003c0), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000180)='kfree\x00', r3}, 0x18)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0902000000000000000001000000050002000a00000014000700ff00000000000000000000000000000108000b00"], 0x38}}, 0x0)

kernel console output (not intermixed with test programs):

=1024) cancelled because transaction is not started
[  565.396806][T14598] EXT4-fs (loop5): Remounting filesystem read-only
[  565.403801][T14598] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  565.437739][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  565.451258][T14598] EXT4-fs warning (device loop5): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  565.462958][T14598] EXT4-fs warning (device loop5): dx_probe:849: Enable large directory feature to access it
[  565.473200][T14598] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.16760: Corrupt directory, running e2fsck is recommended
[  565.487423][T14598] EXT4-fs warning (device loop5): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  565.498951][T14598] EXT4-fs warning (device loop5): dx_probe:849: Enable large directory feature to access it
[  565.509153][T14598] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.16760: Corrupt directory, running e2fsck is recommended
[  565.524897][T14598] EXT4-fs warning (device loop5): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  565.537075][T14598] EXT4-fs warning (device loop5): dx_probe:849: Enable large directory feature to access it
[  565.547443][T14598] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.16760: Corrupt directory, running e2fsck is recommended
[  565.561439][T14598] EXT4-fs warning (device loop5): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  565.588020][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  565.867566][T14641] syzkaller0: entered allmulticast mode
[  565.877756][T14641] syzkaller0: entered promiscuous mode
[  565.893763][T14641] syzkaller0 (unregistering): left allmulticast mode
[  565.900688][T14641] syzkaller0 (unregistering): left promiscuous mode
[  566.036611][T14660] netlink: 'syz.0.16787': attribute type 4 has an invalid length.
[  566.073428][T14664] loop3: detected capacity change from 0 to 1024
[  566.102564][T14664] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  566.160954][T14673] netlink: 96 bytes leftover after parsing attributes in process `syz.8.16792'.
[  566.227524][T14680] 9pnet: p9_errstr2errno: server reported unknown error 
[  566.431507][T14692] loop7: detected capacity change from 0 to 1024
[  566.452714][T14692] EXT4-fs: Ignoring removed nomblk_io_submit option
[  566.480260][T14664] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 18: block 305:freeing already freed block (bit 19); block bitmap corrupt.
[  566.502117][T14695] bridge0: port 2(macvtap1) entered blocking state
[  566.508728][T14695] bridge0: port 2(macvtap1) entered disabled state
[  566.518374][T14692] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  566.548463][T14695] macvtap1: entered allmulticast mode
[  566.554047][T14695] bridge0: entered allmulticast mode
[  566.560238][T14695] macvtap1: left allmulticast mode
[  566.565397][T14695] bridge0: left allmulticast mode
[  566.592889][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  566.644133][T14719] loop5: detected capacity change from 0 to 128
[  566.656060][T14717] netlink: 'syz.0.16806': attribute type 13 has an invalid length.
[  566.681167][T14717] 0ªî{X¹¦: refused to change device tx_queue_len
[  566.685072][T14719] bio_check_eod: 102 callbacks suppressed
[  566.685095][T14719] syz.5.16796: attempt to access beyond end of device
[  566.685095][T14719] loop5: rw=0, sector=121, nr_sectors = 920 limit=128
[  566.690078][T14717] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  566.727415][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  567.042194][T14752] loop5: detected capacity change from 0 to 128
[  567.094291][T14759] syzkaller0: entered allmulticast mode
[  567.108390][T14759] syzkaller0: entered promiscuous mode
[  567.129519][T14759] syzkaller0 (unregistering): left allmulticast mode
[  567.136392][T14759] syzkaller0 (unregistering): left promiscuous mode
[  567.150028][T14760] SELinux: failed to load policy
[  567.210443][T14770] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16810'.
[  567.266849][T14772] loop7: detected capacity change from 0 to 2048
[  567.288881][T14772] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  567.301449][T14772] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  567.334735][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  567.370940][T14790] loop3: detected capacity change from 0 to 512
[  567.399549][T14790] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  567.411165][T14790] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  567.421488][T14790] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.16817: Corrupt directory, running e2fsck is recommended
[  567.458887][T14790] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  567.486576][T14790] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.16817: corrupted in-inode xattr: invalid ea_ino
[  567.492186][T14806] loop5: detected capacity change from 0 to 1024
[  567.516543][T14790] EXT4-fs (loop3): Remounting filesystem read-only
[  567.523553][T14790] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  567.536550][T14823] netlink: 1276 bytes leftover after parsing attributes in process `syz.7.16818'.
[  567.558672][T14790] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  567.570318][T14790] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  567.580646][T14790] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.16817: Corrupt directory, running e2fsck is recommended
[  567.626136][T14790] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  567.637825][T14790] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  567.648002][T14790] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.16817: Corrupt directory, running e2fsck is recommended
[  567.673689][T14790] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  567.685399][T14790] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it
[  567.695833][T14790] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.16817: Corrupt directory, running e2fsck is recommended
[  567.709802][T14790] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  567.737896][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  567.756292][T14844] netlink: 'syz.3.16825': attribute type 10 has an invalid length.
[  567.766016][T14844] bridge0: port 2(bridge_slave_1) entered disabled state
[  567.774175][T14844] bridge_slave_1: left allmulticast mode
[  567.779949][T14844] bridge_slave_1: left promiscuous mode
[  567.785853][T14844] bridge0: port 2(bridge_slave_1) entered disabled state
[  567.796087][T14844] bridge_slave_1: entered promiscuous mode
[  567.802403][T14844] $Hÿ: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  567.898729][T14852] netlink: 12 bytes leftover after parsing attributes in process `syz.0.16829'.
[  568.432059][T14870] tipc: Enabled bearer <udp:syz2>, priority 10
[  568.545888][T14879] netlink: 92 bytes leftover after parsing attributes in process `syz.5.16838'.
[  569.119904][   T29] kauditd_printk_skb: 178 callbacks suppressed
[  569.119922][   T29] audit: type=1326 audit(2000000059.082:32474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14972 comm="syz.8.16854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f41421febe9 code=0x7ffc0000
[  569.150053][   T29] audit: type=1326 audit(2000000059.082:32475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14943 comm="syz.8.16854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41421febe9 code=0x7ffc0000
[  569.173848][   T29] audit: type=1326 audit(2000000059.082:32476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14943 comm="syz.8.16854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41421febe9 code=0x7ffc0000
[  569.384873][   T29] audit: type=1400 audit(2000000059.355:32477): avc:  denied  { create } for  pid=15015 comm="syz.3.16868" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  569.405138][   T29] audit: type=1400 audit(2000000059.355:32478): avc:  denied  { bind } for  pid=15015 comm="syz.3.16868" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  569.424725][   T29] audit: type=1400 audit(2000000059.355:32479): avc:  denied  { listen } for  pid=15015 comm="syz.3.16868" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  569.470936][T15021] openvswitch: netlink: Message has 6 unknown bytes.
[  569.491463][   T23] tipc: Node number set to 2689767559
[  569.703575][T15029] bridge_slave_0: left allmulticast mode
[  569.709328][T15029] bridge_slave_0: left promiscuous mode
[  569.715225][T15029] bridge0: port 1(bridge_slave_0) entered disabled state
[  569.777452][T15029] $Hÿ: (slave bridge_slave_1): Releasing backup interface
[  569.799574][T15029] bridge_slave_1: left promiscuous mode
[  569.930352][T15029] $Hÿ: (slave bond_slave_0): Releasing backup interface
[  569.954504][T15029] bond_slave_0: left promiscuous mode
[  569.962259][T15029] $Hÿ: (slave bond_slave_1): Releasing backup interface
[  569.989238][T15029] bond_slave_1: left promiscuous mode
[  570.020880][T15029] team0: Port device team_slave_0 removed
[  570.039519][T15029] team0: Port device team_slave_1 removed
[  570.052300][T15029] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  570.059907][T15029] batman_adv: batadv0: Removing interface: batadv_slave_0
[  570.075743][T15029] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  570.083238][T15029] batman_adv: batadv0: Removing interface: batadv_slave_1
[  570.175988][T15046] loop7: detected capacity change from 0 to 128
[  570.238304][T15051] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  570.250875][T15052] syz.7.16878: attempt to access beyond end of device
[  570.250875][T15052] loop7: rw=2049, sector=145, nr_sectors = 8 limit=128
[  570.288229][T15052] syz.7.16878: attempt to access beyond end of device
[  570.288229][T15052] loop7: rw=2049, sector=161, nr_sectors = 8 limit=128
[  570.315792][T15052] syz.7.16878: attempt to access beyond end of device
[  570.315792][T15052] loop7: rw=2049, sector=177, nr_sectors = 8 limit=128
[  570.329910][T15052] syz.7.16878: attempt to access beyond end of device
[  570.329910][T15052] loop7: rw=2049, sector=193, nr_sectors = 8 limit=128
[  570.343821][T15052] syz.7.16878: attempt to access beyond end of device
[  570.343821][T15052] loop7: rw=2049, sector=209, nr_sectors = 8 limit=128
[  570.358400][T15052] syz.7.16878: attempt to access beyond end of device
[  570.358400][T15052] loop7: rw=2049, sector=225, nr_sectors = 8 limit=128
[  570.373295][T15052] syz.7.16878: attempt to access beyond end of device
[  570.373295][T15052] loop7: rw=2049, sector=241, nr_sectors = 8 limit=128
[  570.399468][T15052] syz.7.16878: attempt to access beyond end of device
[  570.399468][T15052] loop7: rw=2049, sector=257, nr_sectors = 8 limit=128
[  570.414652][T15052] syz.7.16878: attempt to access beyond end of device
[  570.414652][T15052] loop7: rw=2049, sector=273, nr_sectors = 8 limit=128
[  570.435635][T15065] netlink: 24 bytes leftover after parsing attributes in process `syz.0.16885'.
[  570.709829][ T3732] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  570.726475][ T3732] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  570.738031][ T3732] bond0 (unregistering): Released all slaves
[  570.771861][ T3732] bond1 (unregistering): Released all slaves
[  570.942522][T15096] wg2: left promiscuous mode
[  570.947336][T15096] wg2: left allmulticast mode
[  570.956009][ T3732] tipc: Left network mode
[  570.985280][T15096] wg2: entered promiscuous mode
[  570.991008][T15096] wg2: entered allmulticast mode
[  571.069001][ T3732] hsr_slave_0: left promiscuous mode
[  571.076587][ T3732] hsr_slave_1: left promiscuous mode
[  571.082475][ T3732] batman_adv: batadv0: Removing interface: batadv_slave_0
[  571.088091][T15110] loop7: detected capacity change from 0 to 512
[  571.118233][T15115] netlink: 'syz.5.16892': attribute type 10 has an invalid length.
[  571.137700][T15110] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  571.162389][T15110] ext4 filesystem being mounted at /154/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  571.261102][T15130] netlink: 'syz.8.16896': attribute type 13 has an invalid length.
[  571.270444][T15134] loop3: detected capacity change from 0 to 512
[  571.281218][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.292979][T15134] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  571.309741][T15134] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  571.358848][   T29] audit: type=1326 audit(2000000061.434:32480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15148 comm="syz.7.16899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdd6ebe9 code=0x7ffc0000
[  571.359455][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.382879][   T29] audit: type=1326 audit(2000000061.434:32481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15148 comm="syz.7.16899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdd6ebe9 code=0x7ffc0000
[  571.415717][   T29] audit: type=1326 audit(2000000061.434:32482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15148 comm="syz.7.16899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f63fdd6ebe9 code=0x7ffc0000
[  571.439848][   T29] audit: type=1326 audit(2000000061.476:32483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15148 comm="syz.7.16899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdd6ebe9 code=0x7ffc0000
[  571.586537][T15177] hugetlbfs: syz.0.16908 (15177): Using mlock ulimits for SHM_HUGETLB is obsolete
[  571.618577][T15179] loop7: detected capacity change from 0 to 512
[  571.647675][T15179] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  571.659047][T15179] EXT4-fs (loop7): orphan cleanup on readonly fs
[  571.674677][T15179] EXT4-fs warning (device loop7): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  571.691261][T15179] EXT4-fs (loop7): Cannot turn on quotas: error -117
[  571.699282][T15179] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.16907: bg 0: block 40: padding at end of block bitmap is not set
[  571.714459][T15179] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  571.724445][T15179] EXT4-fs (loop7): 1 truncate cleaned up
[  571.730567][T15179] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  571.770517][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.849086][T15207] netlink: 'syz.0.16919': attribute type 10 has an invalid length.
[  571.857285][T15207] netlink: 55 bytes leftover after parsing attributes in process `syz.0.16919'.
[  572.339512][T15246] netlink: 24 bytes leftover after parsing attributes in process `syz.5.16934'.
[  572.598514][T15293] netlink: 'syz.5.16940': attribute type 13 has an invalid length.
[  572.668925][T15296] netlink: 'syz.3.16941': attribute type 21 has an invalid length.
[  572.693741][T15296] netlink: 156 bytes leftover after parsing attributes in process `syz.3.16941'.
[  572.773170][T15304] netlink: 96 bytes leftover after parsing attributes in process `syz.7.16945'.
[  572.822371][T15308] netlink: 'syz.3.16946': attribute type 13 has an invalid length.
[  572.989143][ T3638] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  573.000423][ T3638] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  573.009112][ T3638] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  573.021721][ T3638] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  573.041771][T15319] team0: left allmulticast mode
[  573.046796][T15319] team0: left promiscuous mode
[  573.051930][T15319] bridge0: port 1(team0) entered disabled state
[  573.138403][T15332] netlink: 'syz.3.16955': attribute type 13 has an invalid length.
[  573.168053][T15335] loop7: detected capacity change from 0 to 1024
[  573.177234][T15335] EXT4-fs: Ignoring removed bh option
[  573.191524][T15335] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  573.208163][T15335] SELinux: failed to load policy
[  573.254820][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  573.296489][T15347] syzkaller0: entered promiscuous mode
[  573.302097][T15347] syzkaller0: entered allmulticast mode
[  573.313678][T15351] serio: Serial port ptm0
[  573.498288][T15377] loop3: detected capacity change from 0 to 512
[  573.516190][T15377] EXT4-fs: Ignoring removed oldalloc option
[  573.524140][T15377] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  573.545032][T15377] EXT4-fs (loop3): 1 truncate cleaned up
[  573.551596][T15378] netlink: 'syz.7.16966': attribute type 13 has an invalid length.
[  573.562150][T15377] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  573.786493][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  573.839561][T15401] loop5: detected capacity change from 0 to 256
[  573.873081][T15401] loop5: detected capacity change from 0 to 1024
[  573.903580][T15411] netlink: 14 bytes leftover after parsing attributes in process `syz.7.16977'.
[  573.917726][T15411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  573.929508][T15411] bond_slave_0: left promiscuous mode
[  573.935168][T15411] bond_slave_0: left allmulticast mode
[  573.943743][T15411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  573.944471][T15401] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  573.978731][T15411] bond_slave_1: left promiscuous mode
[  573.984229][T15411] bond_slave_1: left allmulticast mode
[  573.990446][T15411] bond0 (unregistering): Released all slaves
[  574.025316][T15418] tipc: Started in network mode
[  574.030316][T15418] tipc: Node identity a2a0072339df, cluster identity 4711
[  574.037642][T15418] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  574.049008][T15418] tipc: Disabling bearer <eth:syzkaller0>
[  574.106492][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.237778][   T29] kauditd_printk_skb: 55 callbacks suppressed
[  574.237797][   T29] audit: type=1326 audit(2000000064.457:32538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15475 comm="syz.8.16986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41421febe9 code=0x7ffc0000
[  574.273417][   T29] audit: type=1326 audit(2000000064.457:32539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.297261][   T29] audit: type=1326 audit(2000000064.457:32540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.321102][   T29] audit: type=1326 audit(2000000064.457:32541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.344961][   T29] audit: type=1326 audit(2000000064.457:32542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.368670][   T29] audit: type=1326 audit(2000000064.457:32543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.392424][   T29] audit: type=1326 audit(2000000064.457:32544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.416297][   T29] audit: type=1326 audit(2000000064.457:32545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.439973][   T29] audit: type=1326 audit(2000000064.457:32546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.463948][   T29] audit: type=1326 audit(2000000064.457:32547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15474 comm="syz.3.16984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  574.518160][T15493] netlink: 8 bytes leftover after parsing attributes in process `syz.8.16990'.
[  574.645574][T15513] netlink: 8 bytes leftover after parsing attributes in process `syz.8.16995'.
[  574.674313][T15518] loop3: detected capacity change from 0 to 512
[  574.705698][T15518] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  574.727516][T15518] EXT4-fs (loop3): orphan cleanup on readonly fs
[  574.755609][T15518] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  574.772290][T15518] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  574.780920][T15518] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.16994: bg 0: block 40: padding at end of block bitmap is not set
[  574.795952][T15518] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  574.805164][T15518] EXT4-fs (loop3): 1 truncate cleaned up
[  574.811458][T15518] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  574.844730][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.006678][T15560] tipc: Started in network mode
[  575.011652][T15560] tipc: Node identity 72dbd882278b, cluster identity 4711
[  575.019109][T15560] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  575.033982][T15560] syzkaller0: MTU too low for tipc bearer
[  575.039933][T15560] tipc: Disabling bearer <eth:syzkaller0>
[  575.153133][T15579] wireguard0: entered promiscuous mode
[  575.158754][T15579] wireguard0: entered allmulticast mode
[  575.338494][T15599] bridge_slave_0: left allmulticast mode
[  575.344324][T15599] bridge_slave_0: left promiscuous mode
[  575.350144][T15599] bridge0: port 1(bridge_slave_0) entered disabled state
[  575.357984][T15599] bridge_slave_1: left allmulticast mode
[  575.363694][T15599] bridge_slave_1: left promiscuous mode
[  575.369708][T15599] bridge0: port 2(bridge_slave_1) entered disabled state
[  575.379708][T15599] team0: Port device team_slave_0 removed
[  575.386791][T15599] team0: Port device team_slave_1 removed
[  575.400852][T15605] loop5: detected capacity change from 0 to 512
[  575.409278][T15599] batman_adv: batadv0: Removing interface: batadv_slave_0
[  575.418127][T15599] batman_adv: batadv0: Removing interface: batadv_slave_1
[  575.439246][T15605] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  575.461132][T15605] EXT4-fs (loop5): orphan cleanup on readonly fs
[  575.499052][T15605] EXT4-fs warning (device loop5): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  575.524667][T15605] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  575.533018][T15605] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.17012: bg 0: block 40: padding at end of block bitmap is not set
[  575.549216][T15605] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  575.562263][T15605] EXT4-fs (loop5): 1 truncate cleaned up
[  575.568422][T15605] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  575.605602][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.631885][T15636] loop5: detected capacity change from 0 to 1024
[  575.661871][T15636] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  575.676084][T15636] ext4 filesystem being mounted at /1029/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  575.764050][ T3642] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:21: bg 0: block 393: padding at end of block bitmap is not set
[  575.782156][ T3642] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  575.794953][ T3642] EXT4-fs (loop5): This should not happen!! Data will be lost
[  575.794953][ T3642] 
[  575.860325][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.937620][T15680] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17036'.
[  575.946808][T15680] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17036'.
[  576.578214][T15740] loop3: detected capacity change from 0 to 1024
[  576.585910][T15739] netlink: 4 bytes leftover after parsing attributes in process `syz.7.17056'.
[  576.586884][T15740] ext4: Bad value for 'debug_want_extra_isize'
[  576.701443][T15747] loop7: detected capacity change from 0 to 8192
[  576.816456][T15778] netlink: 'syz.5.17062': attribute type 10 has an invalid length.
[  576.835267][T15778] team0: Port device dummy0 added
[  576.847672][T15778] netlink: 'syz.5.17062': attribute type 10 has an invalid length.
[  576.856904][T15778] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  576.883015][T15778] team0: Failed to send options change via netlink (err -105)
[  576.892739][T15778] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  576.902177][T15778] team0: Port device dummy0 removed
[  577.002013][T15784] netlink: 'syz.7.17064': attribute type 10 has an invalid length.
[  577.017458][T15784] team0: Port device dummy0 added
[  577.031917][T15784] netlink: 'syz.7.17064': attribute type 10 has an invalid length.
[  577.057249][T15784] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  577.068030][T15784] team0: Failed to send options change via netlink (err -105)
[  577.076216][T15784] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  577.087048][T15784] team0: Port device dummy0 removed
[  577.148575][T15800] syzkaller0: entered promiscuous mode
[  577.154277][T15800] syzkaller0: entered allmulticast mode
[  577.332230][T15822] wg2: left promiscuous mode
[  577.381486][T15817] loop5: detected capacity change from 0 to 8192
[  577.652236][T15839] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  577.659913][T15839] FAT-fs (loop5): Filesystem has been set read-only
[  578.053095][T15918] netlink: 'syz.8.17110': attribute type 13 has an invalid length.
[  578.087290][T15918] gretap0: refused to change device tx_queue_len
[  578.102997][T15918] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  578.225781][T15921] loop5: detected capacity change from 0 to 2048
[  578.363302][T15921]  loop5: p2 p3 p7
[  578.435948][T15947] netlink: 12 bytes leftover after parsing attributes in process `syz.3.17118'.
[  578.500593][T15954] 9pnet_fd: Insufficient options for proto=fd
[  578.518016][T15956] netlink: 4 bytes leftover after parsing attributes in process `syz.7.17121'.
[  578.834091][T15981] netlink: 44 bytes leftover after parsing attributes in process `syz.3.17130'.
[  578.891313][T15984] loop7: detected capacity change from 0 to 1024
[  578.900303][T15984] EXT4-fs: Ignoring removed bh option
[  578.907173][T15984] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  578.919976][T15984] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e118, mo2=0000]
[  578.928344][T15984] System zones: 0-1, 3-12
[  578.935295][T15984] EXT4-fs error (device loop7): ext4_map_blocks:814: inode #3: block 1: comm syz.7.17129: lblock 1 mapped to illegal pblock 1 (length 1)
[  578.949614][T15984] EXT4-fs error (device loop7): ext4_acquire_dquot:6937: comm syz.7.17129: Failed to acquire dquot type 0
[  578.965498][T15984] EXT4-fs error (device loop7): ext4_free_blocks:6696: comm syz.7.17129: Freeing blocks not in datazone - block = 0, count = 4096
[  578.979565][T15984] EXT4-fs error (device loop7): ext4_read_inode_bitmap:139: comm syz.7.17129: Invalid inode bitmap blk 0 in block_group 0
[  578.993115][ T3732] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:67: lblock 1 mapped to illegal pblock 1 (length 1)
[  579.007783][ T3732] __quota_error: 304 callbacks suppressed
[  579.007801][ T3732] Quota error (device loop7): remove_tree: Can't read quota data block 1
[  579.022074][ T3732] EXT4-fs error (device loop7): ext4_release_dquot:6973: comm kworker/u8:67: Failed to release dquot type 0
[  579.022176][T15991] loop3: detected capacity change from 0 to 512
[  579.040804][T15984] EXT4-fs error (device loop7) in ext4_free_inode:361: Corrupt filesystem
[  579.057060][T15984] EXT4-fs (loop7): 1 orphan inode deleted
[  579.063393][T15984] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.081770][T15991] EXT4-fs: Ignoring removed nobh option
[  579.091888][T15991] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  579.104239][T15991] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.17133: iget: bad i_size value: 38620345925642
[  579.119533][T15991] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.17133: couldn't read orphan inode 15 (err -117)
[  579.120256][T15994] netlink: 12 bytes leftover after parsing attributes in process `syz.0.17134'.
[  579.140622][   T29] audit: type=1400 audit(2000000069.601:32848): avc:  denied  { remount } for  pid=15978 comm="syz.7.17129" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  579.161088][T15991] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.178984][T15979] EXT4-fs: Ignoring removed bh option
[  579.187594][T15991] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.200594][T15979] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  579.236645][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.457152][T16020] loop3: detected capacity change from 0 to 512
[  579.480880][T16020] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  579.515417][T16020] EXT4-fs (loop3): 1 orphan inode deleted
[  579.521605][T16020] EXT4-fs (loop3): 1 truncate cleaned up
[  579.539390][T16031] netlink: 'syz.0.17146': attribute type 3 has an invalid length.
[  579.547725][T16020] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  579.557415][T16031] netlink: 'syz.0.17146': attribute type 3 has an invalid length.
[  579.622044][T16020] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.17143: bg 0: block 360: padding at end of block bitmap is not set
[  579.622700][   T29] audit: type=1400 audit(2000000070.116:32849): avc:  denied  { setattr } for  pid=16019 comm="syz.3.17143" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  579.660579][T16035] netlink: 4 bytes leftover after parsing attributes in process `syz.7.17148'.
[  579.683423][T16020] EXT4-fs (loop3): Remounting filesystem read-only
[  579.704544][T16035] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  579.711816][T16035] IPv6: NLM_F_CREATE should be set when creating new route
[  579.712655][T16020] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1597: inode #17: comm syz.3.17143: cleanup dec ref error -117
[  579.744453][   T29] audit: type=1326 audit(2000000070.242:32850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16040 comm="syz.0.17150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  579.752491][T16035] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  579.768266][   T29] audit: type=1326 audit(2000000070.242:32851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16040 comm="syz.0.17150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  579.775396][T16035] IPv6: NLM_F_CREATE should be set when creating new route
[  579.872372][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.937173][   T29] audit: type=1326 audit(2000000070.305:32852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16040 comm="syz.0.17150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  579.960937][   T29] audit: type=1326 audit(2000000070.305:32853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16040 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  579.984182][   T29] audit: type=1326 audit(2000000070.305:32854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16040 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  580.007275][   T29] audit: type=1326 audit(2000000070.305:32855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16040 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  580.030506][   T29] audit: type=1326 audit(2000000070.305:32856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16040 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  580.078102][T16048] netlink: 'syz.3.17152': attribute type 1 has an invalid length.
[  580.082630][T15961] loop5: detected capacity change from 0 to 1024
[  580.114692][T15961] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.157820][T15961] ext4 filesystem being mounted at /1045/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  580.161947][T16048] 8021q: adding VLAN 0 to HW filter on device bond0
[  580.187176][T16090] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17152'.
[  580.231785][T16090] bond0 (unregistering): Released all slaves
[  580.269986][T16098] bridge: RTM_NEWNEIGH with invalid ether address
[  580.382065][T16139] netlink: 24 bytes leftover after parsing attributes in process `syz.8.17161'.
[  580.419118][T28866] IPVS: starting estimator thread 0...
[  580.490827][ T3638] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  580.510112][T16146] IPVS: using max 2304 ests per chain, 115200 per kthread
[  580.517935][ T3638] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 304 with error 28
[  580.530477][ T3638] EXT4-fs (loop5): This should not happen!! Data will be lost
[  580.530477][ T3638] 
[  580.540220][ T3638] EXT4-fs (loop5): Total free blocks count 0
[  580.546320][ T3638] EXT4-fs (loop5): Free/Dirty block details
[  580.552306][ T3638] EXT4-fs (loop5): free_blocks=4293918720
[  580.558056][ T3638] EXT4-fs (loop5): dirty_blocks=304
[  580.563427][ T3638] EXT4-fs (loop5): Block reservation details
[  580.569434][ T3638] EXT4-fs (loop5): i_reserved_data_blocks=19
[  580.616840][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.810544][T16219] loop7: detected capacity change from 0 to 128
[  580.899337][T16219] bio_check_eod: 103 callbacks suppressed
[  580.899358][T16219] syz.7.17179: attempt to access beyond end of device
[  580.899358][T16219] loop7: rw=0, sector=121, nr_sectors = 920 limit=128
[  581.006312][T16228] loop5: detected capacity change from 0 to 1024
[  581.026062][T16228] EXT4-fs: Ignoring removed nobh option
[  581.041409][T16228] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  581.065073][T16228] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #11: comm syz.5.17183: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  581.091560][T16228] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.17183: couldn't read orphan inode 11 (err -117)
[  581.122701][T16228] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  581.155472][T16228] netlink: 'syz.5.17183': attribute type 1 has an invalid length.
[  581.163571][T16228] netlink: 224 bytes leftover after parsing attributes in process `syz.5.17183'.
[  581.237354][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.328581][T16277] loop3: detected capacity change from 0 to 256
[  581.386090][T16287] netlink: 'syz.7.17201': attribute type 1 has an invalid length.
[  581.420643][T16287] 8021q: adding VLAN 0 to HW filter on device bond0
[  581.439574][T16328] netlink: 4 bytes leftover after parsing attributes in process `syz.7.17201'.
[  581.456297][T16324] loop5: detected capacity change from 0 to 512
[  581.457969][T16329] netlink: 24 bytes leftover after parsing attributes in process `syz.8.17204'.
[  581.471974][T16324] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  581.485587][T16328] bond0 (unregistering): Released all slaves
[  581.517518][T16324] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  581.532672][T16332] syzkaller1: entered promiscuous mode
[  581.538185][T16332] syzkaller1: entered allmulticast mode
[  581.545771][T16324] ext4 filesystem being mounted at /1054/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  581.626212][T16385] macsec0: entered allmulticast mode
[  581.637661][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.777313][T16408] syzkaller1: entered promiscuous mode
[  581.782944][T16408] syzkaller1: entered allmulticast mode
[  581.821795][T16412] 8021q: adding VLAN 0 to HW filter on device bond4
[  581.834881][T16412] bond3: (slave bond4): Enslaving as an active interface with an up link
[  581.853571][T16412] 8021q: adding VLAN 0 to HW filter on device bond3
[  581.931486][T16504] loop7: detected capacity change from 0 to 1024
[  581.939078][T16504] EXT4-fs: Ignoring removed orlov option
[  581.954136][T16504] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  582.034654][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.144676][T16539] veth0: entered promiscuous mode
[  582.153130][T16539] veth0 (unregistering): left promiscuous mode
[  582.222927][T16546] ip6gre1: entered allmulticast mode
[  582.232185][T16548] $Hÿ: left promiscuous mode
[  582.240099][T16548] macsec0: left allmulticast mode
[  582.245494][T16548] ip6gre1: left allmulticast mode
[  582.251010][T16548] team1: left promiscuous mode
[  582.256013][T16548] team1: left allmulticast mode
[  582.260969][T16548] geneve2: left promiscuous mode
[  583.144851][T16648] netlink: zone id is out of range
[  583.150287][T16648] netlink: zone id is out of range
[  583.155650][T16648] netlink: zone id is out of range
[  583.327823][T16673] loop7: detected capacity change from 0 to 128
[  583.343933][T16673] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  583.351958][T16673] FAT-fs (loop7): Filesystem has been set read-only
[  583.359575][T16673] syz.7.17284: attempt to access beyond end of device
[  583.359575][T16673] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  583.411490][T16685] 9pnet: p9_errstr2errno: server reported unknown error 
[  584.469047][T16733] loop7: detected capacity change from 0 to 1024
[  584.476185][T16733] EXT4-fs: Ignoring removed orlov option
[  584.484016][T16733] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  584.496624][T16736] __nla_validate_parse: 5 callbacks suppressed
[  584.496646][T16736] netlink: 2036 bytes leftover after parsing attributes in process `syz.8.17299'.
[  584.512569][T16736] netlink: 24 bytes leftover after parsing attributes in process `syz.8.17299'.
[  584.537129][T10663] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  584.592125][T16743] loop7: detected capacity change from 0 to 512
[  584.628625][T16743] __quota_error: 449 callbacks suppressed
[  584.628646][T16743] Quota error (device loop7): v2_read_file_info: Free block number 1 out of range (1, 6).
[  584.645442][T16743] EXT4-fs warning (device loop7): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  584.661930][T16743] EXT4-fs (loop7): mount failed
[  585.101432][T16774] pim6reg1: entered promiscuous mode
[  585.106919][T16774] pim6reg1: entered allmulticast mode
[  585.280919][   T29] audit: type=1326 audit(2000000076.047:33306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16793 comm="syz.0.17315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x50000
[  585.325622][   T29] audit: type=1326 audit(2000000076.079:33307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16793 comm="syz.0.17315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fd5f499ebe9 code=0x50000
[  585.349166][   T29] audit: type=1326 audit(2000000076.079:33308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16793 comm="syz.0.17315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd5f49d14a5 code=0x50000
[  585.372789][   T29] audit: type=1326 audit(2000000076.079:33309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16793 comm="syz.0.17315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fd5f499ebe9 code=0x50000
[  585.403278][T16797] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16797 comm=syz.3.17316
[  585.444492][T16802] loop3: detected capacity change from 0 to 512
[  585.457449][T16802] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  585.472444][T16802] EXT4-fs (loop3): 1 truncate cleaned up
[  585.478589][T16802] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  585.496624][   T29] audit: type=1326 audit(2000000076.183:33310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16793 comm="syz.0.17315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x50000
[  585.520494][   T29] audit: type=1326 audit(2000000076.183:33311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16793 comm="syz.0.17315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fd5f499ebe9 code=0x50000
[  585.543839][   T29] audit: type=1326 audit(2000000076.225:33312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16801 comm="syz.3.17318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  585.567612][   T29] audit: type=1326 audit(2000000076.225:33313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16801 comm="syz.3.17318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  585.591377][   T29] audit: type=1326 audit(2000000076.225:33314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16801 comm="syz.3.17318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f6953ccebe9 code=0x7ffc0000
[  585.765742][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  585.929339][T16833] loop5: detected capacity change from 0 to 512
[  585.943511][T16833] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.17328: corrupted in-inode xattr: invalid ea_ino
[  585.968146][T16833] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.17328: couldn't read orphan inode 15 (err -117)
[  585.991066][T16840] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  586.021253][T16839] netlink: 'syz.7.17330': attribute type 10 has an invalid length.
[  586.031771][T16833] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  586.057748][T16839] team0: Port device dummy0 added
[  586.074156][T16844] netlink: 'syz.7.17330': attribute type 10 has an invalid length.
[  586.084901][T16847] netlink: 87 bytes leftover after parsing attributes in process `syz.3.17332'.
[  586.097444][T16844] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  586.124167][T16844] team0: Failed to send options change via netlink (err -105)
[  586.143455][T16844] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  586.154858][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  586.164831][T16844] team0: Port device dummy0 removed
[  586.250051][T16871] netlink: 24 bytes leftover after parsing attributes in process `syz.8.17333'.
[  586.272224][T16873] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17343'.
[  586.298677][T16878] netlink: 44 bytes leftover after parsing attributes in process `syz.7.17342'.
[  586.329638][T16878] netlink: 8 bytes leftover after parsing attributes in process `syz.7.17342'.
[  586.338685][T16878] netlink: 32 bytes leftover after parsing attributes in process `syz.7.17342'.
[  586.341798][T16882] loop5: detected capacity change from 0 to 128
[  586.449134][T16891] syz.5.17345: attempt to access beyond end of device
[  586.449134][T16891] loop5: rw=2049, sector=145, nr_sectors = 16 limit=128
[  586.462678][T16893] netlink: 12 bytes leftover after parsing attributes in process `syz.8.17347'.
[  586.486727][T16893] netlink: 'syz.8.17347': attribute type 1 has an invalid length.
[  586.496968][T16891] syz.5.17345: attempt to access beyond end of device
[  586.496968][T16891] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  586.530452][T16891] syz.5.17345: attempt to access beyond end of device
[  586.530452][T16891] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  586.628513][T16891] syz.5.17345: attempt to access beyond end of device
[  586.628513][T16891] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  586.749704][T16891] syz.5.17345: attempt to access beyond end of device
[  586.749704][T16891] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  586.774350][T16891] syz.5.17345: attempt to access beyond end of device
[  586.774350][T16891] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  586.798838][T16891] syz.5.17345: attempt to access beyond end of device
[  586.798838][T16891] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  586.845722][T16891] syz.5.17345: attempt to access beyond end of device
[  586.845722][T16891] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  586.932950][T16891] syz.5.17345: attempt to access beyond end of device
[  586.932950][T16891] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  586.957112][T16891] syz.5.17345: attempt to access beyond end of device
[  586.957112][T16891] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  587.106470][T16961] loop7: detected capacity change from 0 to 512
[  587.141963][T16961] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  587.162643][T16961] ext4 filesystem being mounted at /284/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  587.199175][T16973] veth0: entered promiscuous mode
[  587.204987][T16973] netlink: 4 bytes leftover after parsing attributes in process `syz.5.17368'.
[  587.217049][T16973] veth0 (unregistering): left promiscuous mode
[  587.275830][T16961] loop7: detected capacity change from 512 to 64
[  587.310380][T10663] EXT4-fs error (device loop7) in ext4_reserve_inode_write:6334: Out of memory
[  587.346962][T10663] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #2: comm syz-executor: mark_inode_dirty error
[  587.411597][T17002] netlink: 'syz.5.17380': attribute type 10 has an invalid length.
[  587.425970][T15828] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  587.440208][T17002] team0: Port device dummy0 added
[  587.455161][T17002] netlink: 'syz.5.17380': attribute type 10 has an invalid length.
[  587.476405][T17002] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  587.516788][T17002] team0: Failed to send options change via netlink (err -105)
[  587.542877][T17002] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  587.555097][T17002] team0: Port device dummy0 removed
[  587.749812][T17039] veth0: entered promiscuous mode
[  587.758142][T17039] veth0 (unregistering): left promiscuous mode
[  587.779446][T17036] SELinux: failed to load policy
[  588.131768][T17099] netlink: 'syz.0.17398': attribute type 13 has an invalid length.
[  588.151147][ T3642] tipc: Left network mode
[  588.276001][T17099] 0ªî{X¹¦: refused to change device tx_queue_len
[  588.293419][T17099] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  588.337700][T17024] chnl_net:caif_netlink_parms(): no params data found
[  588.374085][ T3642] hsr_slave_0: left promiscuous mode
[  588.380284][ T3642] hsr_slave_1: left promiscuous mode
[  588.667048][T17024] bridge0: port 1(bridge_slave_0) entered blocking state
[  588.674164][T17024] bridge0: port 1(bridge_slave_0) entered disabled state
[  588.690090][T17024] bridge_slave_0: entered allmulticast mode
[  588.705640][T17024] bridge_slave_0: entered promiscuous mode
[  588.712504][T17024] bridge0: port 2(bridge_slave_1) entered blocking state
[  588.719639][T17024] bridge0: port 2(bridge_slave_1) entered disabled state
[  588.733541][T17024] bridge_slave_1: entered allmulticast mode
[  588.740254][T17024] bridge_slave_1: entered promiscuous mode
[  588.772314][T17024] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  588.785903][T17024] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  588.835591][T17024] team0: Port device team_slave_0 added
[  588.854310][T17024] team0: Port device team_slave_1 added
[  588.907921][T17024] batman_adv: batadv0: Adding interface: batadv_slave_0
[  588.914965][T17024] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  588.941041][T17024] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  588.954274][T17024] batman_adv: batadv0: Adding interface: batadv_slave_1
[  588.961251][T17024] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  588.987880][T17024] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  589.034506][T17024] hsr_slave_0: entered promiscuous mode
[  589.060441][T17024] hsr_slave_1: entered promiscuous mode
[  589.076082][T17024] debugfs: 'hsr0' already exists in 'hsr'
[  589.081979][T17024] Cannot create hsr debugfs directory
[  589.301401][T17468] SELinux: failed to load policy
[  589.435949][   T29] kauditd_printk_skb: 66 callbacks suppressed
[  589.435967][   T29] audit: type=1326 audit(2000000080.414:33381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.466068][   T29] audit: type=1326 audit(2000000080.414:33382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.489822][   T29] audit: type=1326 audit(2000000080.414:33383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.513551][   T29] audit: type=1326 audit(2000000080.414:33384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.537235][   T29] audit: type=1326 audit(2000000080.414:33385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.561219][   T29] audit: type=1326 audit(2000000080.414:33386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.584941][   T29] audit: type=1326 audit(2000000080.414:33387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.608748][   T29] audit: type=1326 audit(2000000080.414:33388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.632423][   T29] audit: type=1326 audit(2000000080.425:33389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.656859][   T29] audit: type=1326 audit(2000000080.425:33390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17490 comm="syz.0.17424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  589.799159][T17024] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  589.810707][T17024] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  589.824673][T17521] loop3: detected capacity change from 0 to 1024
[  589.834816][T17024] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  589.836883][T17521] EXT4-fs: Ignoring removed bh option
[  589.847757][T17521] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  589.862884][T17521] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e118, mo2=0000]
[  589.864709][T17024] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  589.871162][T17521] System zones: 0-1, 3-12
[  589.889412][T17521] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.17427: lblock 1 mapped to illegal pblock 1 (length 1)
[  589.903959][T17521] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.17427: Failed to acquire dquot type 0
[  589.925316][T17521] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.17427: Freeing blocks not in datazone - block = 0, count = 4096
[  589.943358][T17521] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.17427: Invalid inode bitmap blk 0 in block_group 0
[  589.957790][T17521] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  589.967030][ T3642] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:21: lblock 1 mapped to illegal pblock 1 (length 1)
[  589.967691][T17521] EXT4-fs (loop3): 1 orphan inode deleted
[  589.987586][T17521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  590.015296][ T3642] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:21: Failed to release dquot type 0
[  590.032966][T17024] 8021q: adding VLAN 0 to HW filter on device bond0
[  590.037489][T17505] EXT4-fs: Ignoring removed bh option
[  590.054662][T17505] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  590.072563][T17024] 8021q: adding VLAN 0 to HW filter on device team0
[  590.097077][ T3638] bridge0: port 1(bridge_slave_0) entered blocking state
[  590.104301][ T3638] bridge0: port 1(bridge_slave_0) entered forwarding state
[  590.114740][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.125747][ T3638] bridge0: port 2(bridge_slave_1) entered blocking state
[  590.132879][ T3638] bridge0: port 2(bridge_slave_1) entered forwarding state
[  590.150951][T17024] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  590.161615][T17024] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  590.264107][T17024] 8021q: adding VLAN 0 to HW filter on device batadv0
[  590.366745][T17577] __nla_validate_parse: 6 callbacks suppressed
[  590.366761][T17577] netlink: 24 bytes leftover after parsing attributes in process `syz.5.17443'.
[  590.391936][ T3390] IPVS: starting estimator thread 0...
[  590.476480][T17580] IPVS: using max 2304 ests per chain, 115200 per kthread
[  590.478616][T17024] veth0_vlan: entered promiscuous mode
[  590.505086][T17024] veth1_vlan: entered promiscuous mode
[  590.543400][T17024] veth0_macvtap: entered promiscuous mode
[  590.558103][T17024] veth1_macvtap: entered promiscuous mode
[  590.585244][T17024] batman_adv: batadv0: Interface activated: batadv_slave_0
[  590.597903][T17024] batman_adv: batadv0: Interface activated: batadv_slave_1
[  590.610259][ T3654] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  590.628411][ T3654] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  590.643675][ T3654] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  590.656221][ T3654] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  591.066217][T17639] loop3: detected capacity change from 0 to 1024
[  591.101773][T17639] EXT4-fs: Ignoring removed orlov option
[  591.121563][T17639] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  591.252605][T17675] netlink: 'syz.5.17459': attribute type 1 has an invalid length.
[  591.287533][T17675] 8021q: adding VLAN 0 to HW filter on device bond3
[  591.475162][T17675] netlink: 4 bytes leftover after parsing attributes in process `syz.5.17459'.
[  591.509034][T17675] bond3 (unregistering): Released all slaves
[  591.623270][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.653850][T17823] netlink: 256 bytes leftover after parsing attributes in process `syz.9.17483'.
[  592.777953][T17840] netlink: 24 bytes leftover after parsing attributes in process `syz.9.17485'.
[  592.855264][T17846] bridge0: port 3(macsec1) entered blocking state
[  592.861807][T17846] bridge0: port 3(macsec1) entered disabled state
[  592.868749][T17846] macsec1: entered allmulticast mode
[  592.874137][T17846] bridge0: entered allmulticast mode
[  592.885419][T17846] macsec1: left allmulticast mode
[  592.890697][T17846] bridge0: left allmulticast mode
[  593.164319][T17887] netlink: 'syz.9.17490': attribute type 1 has an invalid length.
[  593.172890][T17887] netlink: 4 bytes leftover after parsing attributes in process `syz.9.17490'.
[  593.202969][T17887] team0: Port device team_slave_0 removed
[  593.932048][T17944] bridge0: entered promiscuous mode
[  593.940013][T17944] bridge0: port 1(macsec0) entered blocking state
[  593.946565][T17944] bridge0: port 1(macsec0) entered disabled state
[  593.953579][T17944] macsec0: entered allmulticast mode
[  593.958984][T17944] bridge0: entered allmulticast mode
[  593.965288][T17944] macsec0: left allmulticast mode
[  593.970358][T17944] bridge0: left allmulticast mode
[  593.992143][T17944] bridge0: left promiscuous mode
[  594.119661][T17962] loop9: detected capacity change from 0 to 256
[  594.157886][T17962] loop9: detected capacity change from 0 to 1024
[  594.175291][T17962] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  594.317985][T17024] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  594.399096][T17989] loop9: detected capacity change from 0 to 512
[  594.417488][   T29] kauditd_printk_skb: 65 callbacks suppressed
[  594.417503][   T29] audit: type=1400 audit(2000000341.642:33453): avc:  denied  { write } for  pid=17990 comm="syz.5.17518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  594.443648][T17991] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  594.451751][T17991] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  594.462660][T17989] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  594.481028][T17989] EXT4-fs (loop9): orphan cleanup on readonly fs
[  594.497202][T17989] Quota error (device loop9): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  594.508125][T17989] EXT4-fs warning (device loop9): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  594.524230][T17989] EXT4-fs (loop9): Cannot turn on quotas: error -117
[  594.533037][T17989] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.17515: bg 0: block 40: padding at end of block bitmap is not set
[  594.567563][T17989] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  594.594410][T17989] EXT4-fs (loop9): 1 truncate cleaned up
[  594.612192][T17989] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  594.634575][T18022] netlink: 96 bytes leftover after parsing attributes in process `syz.5.17522'.
[  594.687398][T17024] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  594.720901][T18027] loop3: detected capacity change from 0 to 256
[  594.758317][T18027] loop3: detected capacity change from 0 to 1024
[  594.776759][T18027] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  594.929887][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  594.983814][T18045] netlink: 'syz.8.17527': attribute type 1 has an invalid length.
[  594.985776][T18047] loop9: detected capacity change from 0 to 512
[  595.001499][T18045] 8021q: adding VLAN 0 to HW filter on device bond5
[  595.007159][T18047] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  595.017235][T18045] netlink: 4 bytes leftover after parsing attributes in process `syz.8.17527'.
[  595.019355][T18047] EXT4-fs (loop9): 1 truncate cleaned up
[  595.034007][T18047] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  595.034599][T18045] bond5 (unregistering): Released all slaves
[  595.052995][   T29] audit: type=1400 audit(2000000342.314:33454): avc:  denied  { relabelto } for  pid=18043 comm="syz.9.17529" name="file0" dev="loop9" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  595.090978][T17024] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  595.430370][T18148] netlink: 24 bytes leftover after parsing attributes in process `syz.0.17540'.
[  595.466929][T18159] loop9: detected capacity change from 0 to 256
[  595.526143][T18168] netlink: 2 bytes leftover after parsing attributes in process `syz.5.17543'.
[  595.556098][T18168] wg2: left promiscuous mode
[  595.560744][T18168] wg2: left allmulticast mode
[  595.569456][T18168] ip6gre1: left allmulticast mode
[  595.605701][T18175] netlink: 'syz.0.17546': attribute type 1 has an invalid length.
[  595.656492][T18175] 8021q: adding VLAN 0 to HW filter on device bond8
[  595.668563][T18222] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17546'.
[  595.678656][T18221] loop9: detected capacity change from 0 to 512
[  595.699243][T18222] bond8 (unregistering): Released all slaves
[  595.711306][T18221] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  595.726570][T18221] EXT4-fs (loop9): orphan cleanup on readonly fs
[  595.734750][T18221] Quota error (device loop9): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  595.745608][T18221] EXT4-fs warning (device loop9): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  595.760621][T18221] EXT4-fs (loop9): Cannot turn on quotas: error -117
[  595.768088][T18221] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.17548: bg 0: block 40: padding at end of block bitmap is not set
[  595.783203][T18221] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  595.793178][T18221] EXT4-fs (loop9): 1 truncate cleaned up
[  595.799940][T18221] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  595.833572][T17024] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  595.851722][   T29] audit: type=1326 audit(2000000343.154:33455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18270 comm="syz.9.17553" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x0
[  595.894146][   T29] audit: type=1326 audit(2000000343.186:33456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18275 comm="syz.5.17555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7120bbebe9 code=0x7ffc0000
[  595.896881][T18276] I/O error, dev loop11, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  595.928769][   T29] audit: type=1326 audit(2000000343.186:33457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18275 comm="syz.5.17555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7120bbebe9 code=0x7ffc0000
[  595.952773][   T29] audit: type=1326 audit(2000000343.186:33458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18275 comm="syz.5.17555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7120bbebe9 code=0x7ffc0000
[  595.957014][T18276] FAT-fs (loop11): unable to read boot sector
[  595.976680][   T29] audit: type=1326 audit(2000000343.186:33459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18275 comm="syz.5.17555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7120bbebe9 code=0x7ffc0000
[  596.006869][   T29] audit: type=1326 audit(2000000343.186:33460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18275 comm="syz.5.17555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7120bbebe9 code=0x7ffc0000
[  596.032956][T18277] loop5: detected capacity change from 0 to 164
[  596.142122][T18301] loop3: detected capacity change from 0 to 128
[  596.175916][T18320] netlink: 'syz.5.17562': attribute type 1 has an invalid length.
[  596.188691][T18301] FAT-fs (loop3): Directory bread(block 32) failed
[  596.200589][T18320] 8021q: adding VLAN 0 to HW filter on device bond3
[  596.216420][T18320] netlink: 4 bytes leftover after parsing attributes in process `syz.5.17562'.
[  596.229857][T18301] FAT-fs (loop3): Directory bread(block 33) failed
[  596.237975][T18320] bond3 (unregistering): Released all slaves
[  596.253802][T18301] FAT-fs (loop3): Directory bread(block 34) failed
[  596.280544][T18301] FAT-fs (loop3): Directory bread(block 35) failed
[  596.300218][T18301] FAT-fs (loop3): Directory bread(block 36) failed
[  596.306952][T18301] FAT-fs (loop3): Directory bread(block 37) failed
[  596.313566][T18301] FAT-fs (loop3): Directory bread(block 38) failed
[  596.320431][T18301] FAT-fs (loop3): Directory bread(block 39) failed
[  596.330331][T18301] FAT-fs (loop3): Directory bread(block 40) failed
[  596.350555][T18301] FAT-fs (loop3): Directory bread(block 41) failed
[  596.396433][T18394] loop5: detected capacity change from 0 to 128
[  596.428279][T18289] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF
[  596.436950][T18289] FAT-fs (loop3): Filesystem has been set read-only
[  596.451452][T18289] bio_check_eod: 101 callbacks suppressed
[  596.451467][T18289] syz.3.17559: attempt to access beyond end of device
[  596.451467][T18289] loop3: rw=2049, sector=4184, nr_sectors = 8 limit=128
[  596.471226][T18289] syz.3.17559: attempt to access beyond end of device
[  596.471226][T18289] loop3: rw=2049, sector=4200, nr_sectors = 4 limit=128
[  596.485040][T18289] Buffer I/O error on dev loop3, logical block 1050, lost async page write
[  596.493806][T18289] syz.3.17559: attempt to access beyond end of device
[  596.493806][T18289] loop3: rw=2049, sector=4208, nr_sectors = 4 limit=128
[  596.507563][T18289] Buffer I/O error on dev loop3, logical block 1052, lost async page write
[  596.535105][T18289] syz.3.17559: attempt to access beyond end of device
[  596.535105][T18289] loop3: rw=2049, sector=4220, nr_sectors = 4 limit=128
[  596.548850][T18289] Buffer I/O error on dev loop3, logical block 1055, lost async page write
[  596.572818][T18289] syz.3.17559: attempt to access beyond end of device
[  596.572818][T18289] loop3: rw=2049, sector=4228, nr_sectors = 4 limit=128
[  596.586765][T18289] Buffer I/O error on dev loop3, logical block 1057, lost async page write
[  596.595710][T18289] syz.3.17559: attempt to access beyond end of device
[  596.595710][T18289] loop3: rw=2049, sector=4240, nr_sectors = 4 limit=128
[  596.609542][T18289] Buffer I/O error on dev loop3, logical block 1060, lost async page write
[  596.618696][T18289] syz.3.17559: attempt to access beyond end of device
[  596.618696][T18289] loop3: rw=2049, sector=4248, nr_sectors = 4 limit=128
[  596.632358][T18289] Buffer I/O error on dev loop3, logical block 1062, lost async page write
[  596.666922][T18289] syz.3.17559: attempt to access beyond end of device
[  596.666922][T18289] loop3: rw=2049, sector=4252, nr_sectors = 4 limit=128
[  596.690412][T18409] loop5: detected capacity change from 0 to 1024
[  596.709635][T18409] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  596.747066][T18409] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.17569: Allocating blocks 449-513 which overlap fs metadata
[  596.841823][T18408] EXT4-fs (loop5): pa ffff88810056de00: logic 48, phys. 177, len 21
[  596.849993][T18408] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  596.942661][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  596.990017][T18433] netlink: 'syz.5.17574': attribute type 1 has an invalid length.
[  597.024957][T18433] 8021q: adding VLAN 0 to HW filter on device bond3
[  597.048904][T18433] netlink: 4 bytes leftover after parsing attributes in process `syz.5.17574'.
[  597.062326][T18435] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.089183][T18433] bond3 (unregistering): Released all slaves
[  597.133717][T18435] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.154600][T18506] loop3: detected capacity change from 0 to 512
[  597.173313][T18506] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  597.192019][T18435] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.192073][T18506] ext4 filesystem being mounted at /307/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  597.265827][T18435] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.390351][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.412902][ T3688] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  597.438737][ T3688] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  597.604002][ T3688] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  598.141810][T18561] loop3: detected capacity change from 0 to 512
[  598.156426][T18561] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  598.166122][T18561] EXT4-fs (loop3): orphan cleanup on readonly fs
[  598.182631][T18561] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  598.224598][T18561] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  598.241662][T18561] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.17582: bg 0: block 40: padding at end of block bitmap is not set
[  598.285532][T18561] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  598.298362][T18561] EXT4-fs (loop3): 1 truncate cleaned up
[  598.304345][T18561] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  598.364927][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.384393][T18576] SELinux: failed to load policy
[  599.060525][T18469] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.107813][T18469] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.155818][T18469] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.230438][T18604] bridge0: port 1(macsec1) entered blocking state
[  599.233792][   T29] kauditd_printk_skb: 191 callbacks suppressed
[  599.233812][   T29] audit: type=1326 audit(2000000346.702:33651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.237108][T18604] bridge0: port 1(macsec1) entered disabled state
[  599.243515][   T29] audit: type=1326 audit(2000000346.713:33652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.267402][T18604] macsec1: entered allmulticast mode
[  599.302568][T18604] bridge0: entered allmulticast mode
[  599.324167][   T29] audit: type=1326 audit(2000000346.755:33653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.347769][   T29] audit: type=1326 audit(2000000346.765:33654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.371894][   T29] audit: type=1326 audit(2000000346.765:33655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.395808][   T29] audit: type=1326 audit(2000000346.776:33656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.419557][   T29] audit: type=1326 audit(2000000346.776:33657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.443463][   T29] audit: type=1326 audit(2000000346.776:33658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.467245][   T29] audit: type=1326 audit(2000000346.776:33659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.491278][   T29] audit: type=1326 audit(2000000346.776:33660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18605 comm="syz.0.17609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5f499ebe9 code=0x7ffc0000
[  599.515859][T18604] macsec1: left allmulticast mode
[  599.521075][T18604] bridge0: left allmulticast mode
[  600.025585][T18674] loop5: detected capacity change from 0 to 1024
[  600.034630][T18674] ext4: Bad value for 'debug_want_extra_isize'
[  600.367324][T18681] loop3: detected capacity change from 0 to 512
[  600.376950][T18681] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.17618: corrupted in-inode xattr: invalid ea_ino
[  600.391087][T18681] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.17618: couldn't read orphan inode 15 (err -117)
[  600.404112][T18681] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  600.436570][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.458108][T18690] netlink: 'syz.3.17620': attribute type 10 has an invalid length.
[  600.468182][T18690] team0: Port device dummy0 added
[  600.475784][T18690] netlink: 'syz.3.17620': attribute type 10 has an invalid length.
[  600.484722][T18690] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  600.494590][T18690] team0: Failed to send options change via netlink (err -105)
[  600.502274][T18690] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  600.511238][T18690] team0: Port device dummy0 removed
[  600.518328][T18690] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[  600.552246][T18694] bridge0: port 1(macsec1) entered blocking state
[  600.558848][T18694] bridge0: port 1(macsec1) entered disabled state
[  600.567617][T18694] macsec1: entered allmulticast mode
[  600.572955][T18694] bridge0: entered allmulticast mode
[  600.579177][T18694] macsec1: left allmulticast mode
[  600.584323][T18694] bridge0: left allmulticast mode
[  601.081727][T18737] netlink: 96 bytes leftover after parsing attributes in process `syz.8.17636'.
[  601.109933][T18741] loop3: detected capacity change from 0 to 512
[  601.160593][ T3675] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  601.172062][ T3638] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  601.174257][T18741] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  601.196297][T18741] EXT4-fs (loop3): mount failed
[  601.201619][ T3638] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  601.233444][ T3638] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  601.295028][T18779] tipc: Enabling of bearer <eth:syzkaller0> rejected, max 3 bearers permitted
[  602.101215][T18811] bridge0: entered promiscuous mode
[  602.114305][T18811] bridge0: port 3(macsec1) entered blocking state
[  602.120920][T18811] bridge0: port 3(macsec1) entered disabled state
[  602.140061][T18811] macsec1: entered allmulticast mode
[  602.145604][T18811] bridge0: entered allmulticast mode
[  602.152746][T18811] macsec1: left allmulticast mode
[  602.157893][T18811] bridge0: left allmulticast mode
[  602.175209][T18811] bridge0: left promiscuous mode
[  602.524093][T18865] loop3: detected capacity change from 0 to 128
[  602.530959][T18865] EXT4-fs: test_dummy_encryption option not supported
[  602.541510][T18865] loop3: detected capacity change from 0 to 128
[  602.635463][T18891] dvmrp8: entered allmulticast mode
[  602.747482][T18905] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  602.799617][T18918] bridge0: entered promiscuous mode
[  602.813133][T18918] bridge0: port 1(macsec0) entered blocking state
[  602.819721][T18918] bridge0: port 1(macsec0) entered disabled state
[  602.833808][T18918] macsec0: entered allmulticast mode
[  602.839185][T18918] bridge0: entered allmulticast mode
[  602.846815][T18918] macsec0: left allmulticast mode
[  602.852033][T18918] bridge0: left allmulticast mode
[  602.858000][T18918] bridge0: left promiscuous mode
[  602.912781][T18932] netlink: 12 bytes leftover after parsing attributes in process `syz.8.17685'.
[  603.109305][T18955] loop9: detected capacity change from 0 to 2048
[  603.144992][T18955] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  603.162012][T18963] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17692'.
[  603.280788][T18973] netlink: 12 bytes leftover after parsing attributes in process `syz.8.17695'.
[  603.456682][T17024] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.472549][T18988] netlink: 'syz.3.17700': attribute type 1 has an invalid length.
[  603.516256][T18988] 8021q: adding VLAN 0 to HW filter on device bond0
[  603.541845][T19030] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17700'.
[  603.571339][T19030] bond0 (unregistering): Released all slaves
[  603.695358][T19078] loop3: detected capacity change from 0 to 1024
[  603.707490][T19078] EXT4-fs: Ignoring removed orlov option
[  603.715725][T19078] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  603.956600][T19115] bridge0: port 3(macsec1) entered blocking state
[  603.963117][T19115] bridge0: port 3(macsec1) entered disabled state
[  603.989493][T19115] macsec1: entered allmulticast mode
[  603.995252][T19115] bridge0: entered allmulticast mode
[  604.011034][T19115] macsec1: left allmulticast mode
[  604.016203][T19115] bridge0: left allmulticast mode
[  604.128982][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  604.237079][T19132] netlink: 96 bytes leftover after parsing attributes in process `syz.3.17721'.
[  604.339481][T19143] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  604.348827][T19142] tipc: Disabling bearer <eth:syzkaller0>
[  604.391545][T19154] loop9: detected capacity change from 0 to 1024
[  604.403803][T19154] EXT4-fs: Ignoring removed nomblk_io_submit option
[  604.411071][T19156] wireguard0: entered promiscuous mode
[  604.417270][T19156] wireguard0: entered allmulticast mode
[  604.433117][T19154] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  604.484417][T17024] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  604.510741][   T29] kauditd_printk_skb: 945 callbacks suppressed
[  604.510755][   T29] audit: type=1326 audit(2000000352.245:34605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.551736][   T29] audit: type=1326 audit(2000000352.266:34606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.575661][   T29] audit: type=1326 audit(2000000352.266:34607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.599369][   T29] audit: type=1326 audit(2000000352.266:34608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.623225][   T29] audit: type=1326 audit(2000000352.266:34609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.647039][   T29] audit: type=1326 audit(2000000352.266:34610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.670727][   T29] audit: type=1326 audit(2000000352.277:34611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.694780][   T29] audit: type=1326 audit(2000000352.277:34612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.718921][   T29] audit: type=1326 audit(2000000352.277:34613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  604.742784][   T29] audit: type=1326 audit(2000000352.277:34614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19173 comm="syz.9.17728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  605.161524][T19251] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17740'.
[  605.199657][T19256] bridge4: entered allmulticast mode
[  605.277723][T19268] loop5: detected capacity change from 0 to 2048
[  605.299581][T19268] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  605.332299][T19268] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  605.362161][T19275] netlink: zone id is out of range
[  605.362489][T19268] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  605.379801][T19268] EXT4-fs (loop5): This should not happen!! Data will be lost
[  605.379801][T19268] 
[  605.380033][T19275] netlink: zone id is out of range
[  605.389588][T19268] EXT4-fs (loop5): Total free blocks count 0
[  605.389611][T19268] EXT4-fs (loop5): Free/Dirty block details
[  605.389664][T19268] EXT4-fs (loop5): free_blocks=2415919104
[  605.412688][T19268] EXT4-fs (loop5): dirty_blocks=16
[  605.417863][T19268] EXT4-fs (loop5): Block reservation details
[  605.423934][T19268] EXT4-fs (loop5): i_reserved_data_blocks=1
[  605.430154][T19275] netlink: zone id is out of range
[  605.435369][T19275] netlink: zone id is out of range
[  605.440541][T19275] netlink: zone id is out of range
[  605.445753][T19275] netlink: zone id is out of range
[  605.450953][T19275] netlink: zone id is out of range
[  605.456139][T19275] netlink: zone id is out of range
[  605.461346][T19275] netlink: zone id is out of range
[  605.466611][T19275] netlink: zone id is out of range
[  605.480261][T31218] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /1163/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.548214][T31218] EXT4-fs error (device loop5): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.568751][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.594314][T31218] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /1163/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.647201][T31218] EXT4-fs error (device loop5): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.667577][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.679986][T31218] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /1163/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.702890][T31218] EXT4-fs error (device loop5): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.723155][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.736533][T31218] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /1163/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.759637][T31218] EXT4-fs error (device loop5): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.780029][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.792202][T31218] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /1163/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=2130706434, rec_len=0, size=2048 fake=0
[  605.815006][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.827037][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.840696][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.882008][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.894633][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  605.907167][T31218] EXT4-fs warning (device loop5): ext4_empty_dir:3099: inode #11: comm syz-executor: directory missing '..'
[  606.014465][T19306] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17755'.
[  606.033493][T31218] Trying to write to read-only block-device loop5
[  606.049209][T31218] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.544574][T19379] netlink: 8 bytes leftover after parsing attributes in process `syz.9.17769'.
[  606.703854][T19336] chnl_net:caif_netlink_parms(): no params data found
[  606.842781][T19336] bridge0: port 1(bridge_slave_0) entered blocking state
[  606.850031][T19336] bridge0: port 1(bridge_slave_0) entered disabled state
[  606.874916][T19336] bridge_slave_0: entered allmulticast mode
[  606.881846][T19336] bridge_slave_0: entered promiscuous mode
[  606.887761][T19505] usb usb1: usbfs: interface 0 claimed by hub while 'syz.9.17781' sets config #0
[  606.889233][T19336] bridge0: port 2(bridge_slave_1) entered blocking state
[  606.904090][T19336] bridge0: port 2(bridge_slave_1) entered disabled state
[  606.911351][T19336] bridge_slave_1: entered allmulticast mode
[  606.918016][T19336] bridge_slave_1: entered promiscuous mode
[  606.961138][T19336] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  606.977379][T19336] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  607.064321][T19336] team0: Port device team_slave_0 added
[  607.071345][T19336] team0: Port device team_slave_1 added
[  607.098131][T19336] batman_adv: batadv0: Adding interface: batadv_slave_0
[  607.105331][T19336] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  607.131326][T19336] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  607.186997][T19336] batman_adv: batadv0: Adding interface: batadv_slave_1
[  607.194120][T19336] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  607.220088][T19336] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  607.300165][T19336] hsr_slave_0: entered promiscuous mode
[  607.306364][T19336] hsr_slave_1: entered promiscuous mode
[  607.322682][T19336] debugfs: 'hsr0' already exists in 'hsr'
[  607.328522][T19336] Cannot create hsr debugfs directory
[  607.343820][T19571] loop3: detected capacity change from 0 to 32768
[  607.754193][T19336] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  607.767898][T19336] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  607.787308][T19336] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  607.807202][T19336] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  607.890132][T19336] 8021q: adding VLAN 0 to HW filter on device bond0
[  607.923920][T19336] 8021q: adding VLAN 0 to HW filter on device team0
[  607.943287][ T3638] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.950501][ T3638] bridge0: port 1(bridge_slave_0) entered forwarding state
[  607.996841][ T3654] bridge0: port 2(bridge_slave_1) entered blocking state
[  608.004365][ T3654] bridge0: port 2(bridge_slave_1) entered forwarding state
[  608.057051][T19811] loop9: detected capacity change from 0 to 128
[  608.068692][T19813] loop3: detected capacity change from 0 to 512
[  608.078450][T19811] FAT-fs (loop9): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  608.104838][T19813] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  608.121236][T19813] ext4 filesystem being mounted at /351/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  608.140198][T19813] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #18: comm syz.3.17791: corrupted inode contents
[  608.162387][T19813] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #18: comm syz.3.17791: mark_inode_dirty error
[  608.189117][T19813] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #18: comm syz.3.17791: corrupted inode contents
[  608.207602][T19336] 8021q: adding VLAN 0 to HW filter on device batadv0
[  608.231063][T19813] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.17791: mark_inode_dirty error
[  608.285436][T19813] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.17791: mark inode dirty (error -117)
[  608.308764][T19813] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  608.365090][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  608.414644][T19336] veth0_vlan: entered promiscuous mode
[  608.432095][T19336] veth1_vlan: entered promiscuous mode
[  608.467932][T19866] netlink: 664 bytes leftover after parsing attributes in process `syz.9.17797'.
[  608.475966][T19336] veth0_macvtap: entered promiscuous mode
[  608.494143][T19336] veth1_macvtap: entered promiscuous mode
[  608.511710][T19870] netlink: 5 bytes leftover after parsing attributes in process `syz.3.17798'.
[  608.522614][T19870] 0ªî{X¹¦: renamed from gretap0
[  608.539346][T19870] 0ªî{X¹¦: entered allmulticast mode
[  608.558900][T19336] batman_adv: batadv0: Interface activated: batadv_slave_0
[  608.591717][T19336] batman_adv: batadv0: Interface activated: batadv_slave_1
[  608.607917][ T3654] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  608.618636][ T3654] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  608.641798][ T3654] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  608.651478][ T3654] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  608.710076][T19888] loop1: detected capacity change from 0 to 1024
[  608.724740][T19888] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  608.735928][T19888] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  608.748713][T19888] JBD2: no valid journal superblock found
[  608.754576][T19888] EXT4-fs (loop1): Could not load journal inode
[  609.474720][   T29] kauditd_printk_skb: 65 callbacks suppressed
[  609.474737][   T29] audit: type=1326 audit(2000000357.452:34680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19964 comm="syz.9.17813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  609.504712][   T29] audit: type=1326 audit(2000000357.452:34681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19964 comm="syz.9.17813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  609.556720][   T29] audit: type=1326 audit(2000000357.515:34682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19964 comm="syz.9.17813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  609.580621][   T29] audit: type=1326 audit(2000000357.515:34683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19964 comm="syz.9.17813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  609.604471][   T29] audit: type=1326 audit(2000000357.515:34684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19964 comm="syz.9.17813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  610.134329][   T29] audit: type=1326 audit(2000000358.145:34685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.1.17815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  610.158222][   T29] audit: type=1326 audit(2000000358.145:34686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.1.17815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  610.158400][T20015] loop1: detected capacity change from 0 to 32768
[  610.182041][   T29] audit: type=1326 audit(2000000358.145:34687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.1.17815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  610.182075][   T29] audit: type=1326 audit(2000000358.145:34688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.1.17815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  610.182109][   T29] audit: type=1326 audit(2000000358.145:34689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.1.17815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  610.766849][T20102] loop1: detected capacity change from 0 to 512
[  610.785393][T20102] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  610.810135][T20102] EXT4-fs (loop1): 1 truncate cleaned up
[  610.816360][T20102] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  610.829652][T20102] ext4: Unknown parameter 'VŸ;²üñÉÅúo&£œOº&ž‡Îå·õõúùˆ¨µ Ø~ nümis­>³°\Yvò0â¶tèÿ™¿KÃŽ8¿×‚Ñ¥ÿÃèÒÿatéÿ0ºÚôÿÍÈØxí>ÿ?BÀÆkéÿ¦ý`„´½ÿ¿ÞTK7*`cyþ£Kÿ‡‘´²9ný#ù®…â/õxø'
[  610.863948][T19336] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.008193][T20133] loop1: detected capacity change from 0 to 2048
[  611.052943][T20133] Alternate GPT is invalid, using primary GPT.
[  611.059415][T20133]  loop1: p1 p2 p3
[  611.066103][T20141] netlink: 'syz.8.17850': attribute type 1 has an invalid length.
[  611.083557][T20141] 8021q: adding VLAN 0 to HW filter on device bond5
[  611.097635][T20141] netlink: 4 bytes leftover after parsing attributes in process `syz.8.17850'.
[  611.108178][T20141] bond5 (unregistering): Released all slaves
[  611.232277][T20226] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  611.538352][T20256] netlink: 36 bytes leftover after parsing attributes in process `syz.0.17869'.
[  611.876861][T20293] loop1: detected capacity change from 0 to 164
[  611.884609][T20293] ISOFS: unable to read i-node block
[  611.889965][T20293] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  611.900333][T20293] @: renamed from vlan0 (while UP)
[  611.998441][T20315] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17878'.
[  612.018841][T20315] team2: entered promiscuous mode
[  612.024015][T20315] team2: entered allmulticast mode
[  612.194641][T20385] netlink: 44 bytes leftover after parsing attributes in process `syz.0.17885'.
[  612.203920][T20385] netem: unknown loss type 12
[  612.208770][T20385] netem: change failed
[  612.281001][T20394] loop1: detected capacity change from 0 to 2048
[  612.303213][T20394] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  612.362435][T19336] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  612.754238][T20442] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17901'.
[  612.778593][T20442] team1: entered promiscuous mode
[  612.783681][T20442] team1: entered allmulticast mode
[  613.016688][T20502] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  613.059848][T20506] netlink: 96 bytes leftover after parsing attributes in process `syz.0.17921'.
[  613.183880][T20516] loop3: detected capacity change from 0 to 128
[  613.356721][T20537] loop1: detected capacity change from 0 to 128
[  613.417399][T20537] Process accounting resumed
[  613.422087][T20537] FAT-fs (loop1): error, corrupted file size (i_pos 548, 512)
[  613.429703][T20537] FAT-fs (loop1): Filesystem has been set read-only
[  613.457556][T20546] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  613.471318][ T9153] FAT-fs (loop1): error, corrupted file size (i_pos 548, 512)
[  613.497916][T20552] loop3: detected capacity change from 0 to 1024
[  613.534583][T20552] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  613.553704][T20563] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  613.589076][T20552] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.17925: Allocating blocks 449-513 which overlap fs metadata
[  613.641723][T20551] EXT4-fs (loop3): pa ffff888100680700: logic 48, phys. 177, len 21
[  613.650032][T20551] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  613.667745][T20563] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  613.705336][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.744856][T20563] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  613.803671][T20594] loop3: detected capacity change from 0 to 2048
[  613.818317][T20563] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  613.832838][T20594] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  613.866627][T10521] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  613.883494][T10521] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  613.905442][ T3638] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  613.917486][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.953950][ T3638] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  613.969246][ T3638] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  614.003889][ T3638] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  614.074800][T20618] loop3: detected capacity change from 0 to 512
[  614.086205][T20618] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  614.104635][T20622] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17949'.
[  614.114610][T20618] EXT4-fs (loop3): 1 truncate cleaned up
[  614.128515][T20618] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  614.143624][T20618] sg_write: data in/out 11329/120 bytes for SCSI command 0x0-- guessing data in;
[  614.143624][T20618]    program syz.3.17938 not setting count and/or reply_len properly
[  614.199280][T20627] loop9: detected capacity change from 0 to 164
[  614.223343][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  614.245724][T20627] ISOFS: unable to read i-node block
[  614.251088][T20627] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  614.253787][T20632] loop1: detected capacity change from 0 to 512
[  614.267639][T20632] msdos: Bad value for 'uid'
[  614.272385][T20632] msdos: Bad value for 'uid'
[  614.278647][T20627] @: renamed from vlan0 (while UP)
[  614.436130][T20660] syzkaller0: entered promiscuous mode
[  614.441658][T20660] syzkaller0: entered allmulticast mode
[  614.548292][T20679] vhci_hcd: invalid port number 96
[  614.553476][T20679] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  614.702729][   T29] kauditd_printk_skb: 120 callbacks suppressed
[  614.702798][   T29] audit: type=1400 audit(2000000362.943:34810): avc:  denied  { associate } for  pid=20699 comm="syz.3.17967" name="/" dev="cgroup2" ino=1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[  614.753621][   T29] audit: type=1400 audit(2000000362.995:34811): avc:  denied  { unmount } for  pid=10521 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  614.814831][   T29] audit: type=1326 audit(2000000363.048:34812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20711 comm="syz.9.17972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  614.838897][   T29] audit: type=1326 audit(2000000363.048:34813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20711 comm="syz.9.17972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  614.862829][   T29] audit: type=1326 audit(2000000363.048:34814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20711 comm="syz.9.17972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  614.886919][   T29] audit: type=1326 audit(2000000363.048:34815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20711 comm="syz.9.17972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  614.910826][   T29] audit: type=1326 audit(2000000363.048:34816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20711 comm="syz.9.17972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  614.934596][   T29] audit: type=1326 audit(2000000363.048:34817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20711 comm="syz.9.17972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  614.958539][   T29] audit: type=1326 audit(2000000363.048:34818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20711 comm="syz.9.17972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f28d638ebe9 code=0x7ffc0000
[  614.982420][   T29] audit: type=1400 audit(2000000363.048:34819): avc:  denied  { read } for  pid=20711 comm="syz.9.17972" name="rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  615.050704][T20720] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17976'.
[  615.060070][T20720] netem: change failed
[  615.068622][T20721] netlink: 96 bytes leftover after parsing attributes in process `syz.9.17975'.
[  615.086718][T20723] netlink: 12 bytes leftover after parsing attributes in process `syz.0.17977'.
[  615.111569][T20723] 8021q: adding VLAN 0 to HW filter on device bond8
[  615.144475][T20723] bond8 (unregistering): Released all slaves
[  615.182649][T20760] loop9: detected capacity change from 0 to 4096
[  615.192496][T20760] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  615.201399][T20760] System zones: 0-5
[  615.209125][T20760] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  615.235840][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.243514][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.255422][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.262887][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.270386][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.278030][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.285488][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.292973][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.300413][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.308000][   T23] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  615.318458][   T23] hid-generic 0000:0000:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  615.349217][T17024] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  615.412709][T20836] loop9: detected capacity change from 0 to 512
[  615.429244][T20836] msdos: Bad value for 'uid'
[  615.434017][T20836] msdos: Bad value for 'uid'
[  615.627776][T20867] loop3: detected capacity change from 0 to 2048
[  615.639014][T20867] EXT4-fs: Ignoring removed mblk_io_submit option
[  615.671020][T20867] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  615.840850][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  615.928383][T20929] netlink: 'syz.3.18013': attribute type 5 has an invalid length.
[  616.055289][T20939] loop3: detected capacity change from 0 to 128
[  616.103249][T20947] __nla_validate_parse: 2 callbacks suppressed
[  616.103301][T20947] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18017'.
[  616.129920][T20939] Process accounting resumed
[  616.134642][T20939] FAT-fs (loop3): error, corrupted file size (i_pos 548, 512)
[  616.142228][T20939] FAT-fs (loop3): Filesystem has been set read-only
[  616.152089][   T23] FAT-fs (loop3): error, corrupted file size (i_pos 548, 512)
[  616.240779][T20972] netlink: 4 bytes leftover after parsing attributes in process `syz.9.18026'.
[  616.250629][T20972] netlink: 12 bytes leftover after parsing attributes in process `syz.9.18026'.
[  616.252066][T20968] netlink: 76 bytes leftover after parsing attributes in process `syz.8.18025'.
[  616.469078][T20998] netlink: 4 bytes leftover after parsing attributes in process `syz.9.18036'.
[  616.481410][T20998] netlink: 12 bytes leftover after parsing attributes in process `syz.9.18036'.
[  616.496858][T20998] netlink: 156 bytes leftover after parsing attributes in process `syz.9.18036'.
[  616.582796][T21016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18044'.
[  616.604155][T21018] loop9: detected capacity change from 0 to 2048
[  616.612071][T21016] netlink: 12 bytes leftover after parsing attributes in process `syz.1.18044'.
[  616.672843][T21018] Alternate GPT is invalid, using primary GPT.
[  616.679244][T21018]  loop9: p1 p2 p3
[  616.770403][T21042] netlink: 'syz.1.18052': attribute type 1 has an invalid length.
[  616.807101][T21042] 8021q: adding VLAN 0 to HW filter on device bond1
[  616.819339][T21079] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18052'.
[  616.873995][T21079] bond1 (unregistering): Released all slaves
[  617.020336][T21132] bridge: RTM_NEWNEIGH with invalid ether address
[  617.375947][T21169] 8021q: adding VLAN 0 to HW filter on device bond0
[  617.445692][T21208] bond0 (unregistering): Released all slaves
[  617.708148][T21269] team2: entered promiscuous mode
[  617.714045][T21269] team2: entered allmulticast mode
[  617.906395][T21314] loop3: detected capacity change from 0 to 1764
[  617.931015][T21314] netlink: 'syz.3.18091': attribute type 4 has an invalid length.
[  619.203281][T21423] loop3: detected capacity change from 0 to 164
[  619.252088][T21423] rock: directory entry would overflow storage
[  619.258325][T21423] rock: sig=0x66, size=4, remaining=3
[  619.484131][T21445] bond1: entered promiscuous mode
[  619.489263][T21445] bond1: entered allmulticast mode
[  619.527313][T21445] 8021q: adding VLAN 0 to HW filter on device bond1
[  619.561794][T21445] bond1 (unregistering): Released all slaves
[  619.662252][T21520] bridge: RTM_NEWNEIGH with invalid ether address
[  619.684294][T21522] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  619.790413][T21528] loop9: detected capacity change from 0 to 256
[  619.802953][T21532] loop3: detected capacity change from 0 to 512
[  619.811235][T21528] msdos: Bad value for 'uid'
[  619.815957][T21528] msdos: Bad value for 'uid'
[  619.834998][T21532] EXT4-fs (loop3): unsupported inode size: 0
[  619.841072][T21532] EXT4-fs (loop3): blocksize: 4096
[  621.038677][T21672] __nla_validate_parse: 9 callbacks suppressed
[  621.038700][T21672] netlink: 8 bytes leftover after parsing attributes in process `syz.1.18148'.
[  621.040230][T21676] loop3: detected capacity change from 0 to 1024
[  621.092608][T21676] EXT4-fs: Ignoring removed orlov option
[  621.111523][T21684] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21684 comm=syz.1.18150
[  621.130619][T21676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  621.441121][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  621.513454][T21725] loop3: detected capacity change from 0 to 512
[  621.532289][T21725] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  621.551535][T21725] ext4 filesystem being mounted at /431/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  621.581299][   T29] kauditd_printk_skb: 132 callbacks suppressed
[  621.581315][   T29] audit: type=1400 audit(2000000370.165:34952): avc:  denied  { read } for  pid=21723 comm="iou-wrk-21725" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  621.611570][   T29] audit: type=1400 audit(2000000370.165:34953): avc:  denied  { open } for  pid=21723 comm="syz.3.18160" path="/431/file1/file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  621.893342][T21738] sch_fq: defrate 4294967295 ignored.
[  622.185922][T21773] loop1: detected capacity change from 0 to 1024
[  622.194229][   T29] audit: type=1326 audit(2000000370.785:34954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21772 comm="syz.1.18171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  622.216514][T21773] EXT4-fs: Ignoring removed mblk_io_submit option
[  622.218200][   T29] audit: type=1326 audit(2000000370.785:34955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21772 comm="syz.1.18171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  622.224507][T21773] EXT4-fs: Ignoring removed bh option
[  622.248206][   T29] audit: type=1326 audit(2000000370.795:34956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21772 comm="syz.1.18171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  622.248251][   T29] audit: type=1326 audit(2000000370.795:34957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21772 comm="syz.1.18171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  622.248322][   T29] audit: type=1326 audit(2000000370.795:34958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21772 comm="syz.1.18171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  622.248362][   T29] audit: type=1326 audit(2000000370.795:34959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21772 comm="syz.1.18171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  622.248405][   T29] audit: type=1326 audit(2000000370.795:34960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21772 comm="syz.1.18171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  622.248442][   T29] audit: type=1326 audit(2000000370.795:34961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21772 comm="syz.1.18171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91da96ebe9 code=0x7ffc0000
[  622.422675][T21773] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  622.437285][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  622.538040][T19336] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  622.752501][T21812] batman_adv: batadv0: Adding interface: dummy0
[  622.759733][T21812] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  622.785828][T21812] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  623.111070][T21835] lo speed is unknown, defaulting to 1000
[  623.119266][T21835] lo speed is unknown, defaulting to 1000
[  623.125740][T21835] lo speed is unknown, defaulting to 1000
[  623.141012][T21835] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  623.175336][T21835] lo speed is unknown, defaulting to 1000
[  623.183592][T21835] lo speed is unknown, defaulting to 1000
[  623.190266][T21835] lo speed is unknown, defaulting to 1000
[  623.203968][T21835] lo speed is unknown, defaulting to 1000
[  623.210612][T21835] lo speed is unknown, defaulting to 1000
[  623.217104][T21835] lo speed is unknown, defaulting to 1000
[  623.224163][T21835] lo speed is unknown, defaulting to 1000
[  623.328524][T21872] netlink: 'syz.9.18201': attribute type 2 has an invalid length.
[  623.336500][T21872] netlink: 'syz.9.18201': attribute type 1 has an invalid length.
[  623.344443][T21872] netlink: 199820 bytes leftover after parsing attributes in process `syz.9.18201'.
[  623.494136][T21890] netlink: 4 bytes leftover after parsing attributes in process `syz.8.18210'.
[  623.504249][T21890] batman_adv: batadv0: Removing interface: batadv_slave_0
[  623.520179][T21894] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21894 comm=syz.9.18212
[  623.535217][T21890] batman_adv: batadv0: Removing interface: batadv_slave_1
[  623.548470][T21890] batman_adv: batadv0: Removing interface: dummy0
[  623.739092][T21916] syzkaller0: entered allmulticast mode
[  623.758843][T21916] syzkaller0 (unregistering): left allmulticast mode
[  623.791205][T21922] loop3: detected capacity change from 0 to 4096
[  623.829633][T21937] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18225'.
[  623.838734][T21937] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18225'.
[  623.888967][T21940] netlink: 36 bytes leftover after parsing attributes in process `syz.9.18226'.
[  623.898240][T21940] netlink: 16 bytes leftover after parsing attributes in process `syz.9.18226'.
[  623.907472][T21940] netlink: 36 bytes leftover after parsing attributes in process `syz.9.18226'.
[  623.946676][T21940] netlink: 36 bytes leftover after parsing attributes in process `syz.9.18226'.
[  624.062784][T21962] netlink: 'syz.0.18234': attribute type 10 has an invalid length.
[  624.088120][T21962] team0: Port device dummy0 added
[  624.128152][T21962] netlink: 'syz.0.18234': attribute type 10 has an invalid length.
[  624.147272][T21962] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  624.226661][T21962] team0: Failed to send options change via netlink (err -105)
[  624.234335][T21962] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  624.247331][T21962] team0: Port device dummy0 removed
[  624.350597][T21978] block device autoloading is deprecated and will be removed.
[  624.511331][T22002] loop1: detected capacity change from 0 to 1024
[  624.518666][T22002] EXT4-fs: Ignoring removed orlov option
[  624.528248][T22002] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  624.678261][T22009] netlink: 'syz.3.18249': attribute type 10 has an invalid length.
[  624.687904][T22009] $Hÿ: (slave dummy0): Releasing backup interface
[  624.697085][T22009] team0: Failed to send options change via netlink (err -105)
[  624.704999][T22009] team0: Port device dummy0 added
[  624.716557][T22009] netlink: 'syz.3.18249': attribute type 10 has an invalid length.
[  624.725668][T22009] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  624.735967][T22009] team0: Failed to send options change via netlink (err -105)
[  624.744040][T22009] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  624.753194][T22009] team0: Port device dummy0 removed
[  624.762268][T22009] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[  624.839989][T19336] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  625.069656][T22028] netlink: 12 bytes leftover after parsing attributes in process `syz.1.18256'.
[  625.139867][T22032] veth0_to_team: entered promiscuous mode
[  625.322357][T22045] batman_adv: batadv0: Adding interface: dummy0
[  625.328792][T22045] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  625.448368][T22045] batman_adv: batadv0: Interface activated: dummy0
[  625.459437][T22055] net_ratelimit: 2 callbacks suppressed
[  625.459456][T22055] batadv0: mtu less than device minimum
[  625.471970][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.482952][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.493930][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.504649][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.515491][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.526492][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.537265][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.547966][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.558818][T22055] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  625.707945][T22025] ==================================================================
[  625.716187][T22025] BUG: KCSAN: data-race in fifo_open / wait_for_partner
[  625.723178][T22025] 
[  625.725537][T22025] read-write to 0xffff88811669d06c of 4 bytes by task 22024 on cpu 0:
[  625.733716][T22025]  fifo_open+0x86/0x5d0
[  625.737903][T22025]  do_dentry_open+0x646/0xa20
[  625.742644][T22025]  vfs_open+0x37/0x1e0
[  625.746764][T22025]  path_openat+0x1c5e/0x2170
[  625.751376][T22025]  do_filp_open+0x109/0x230
[  625.755915][T22025]  do_sys_openat2+0xa6/0x110
[  625.760543][T22025]  __x64_sys_openat+0xf2/0x120
[  625.765345][T22025]  x64_sys_call+0x2e9c/0x2ff0
[  625.770054][T22025]  do_syscall_64+0xd2/0x200
[  625.775043][T22025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.781025][T22025] 
[  625.783375][T22025] read to 0xffff88811669d06c of 4 bytes by task 22025 on cpu 1:
[  625.791027][T22025]  wait_for_partner+0xf7/0x1c0
[  625.795915][T22025]  fifo_open+0x462/0x5d0
[  625.800201][T22025]  do_dentry_open+0x646/0xa20
[  625.804923][T22025]  vfs_open+0x37/0x1e0
[  625.809051][T22025]  path_openat+0x1c5e/0x2170
[  625.813671][T22025]  do_filp_open+0x109/0x230
[  625.818203][T22025]  do_sys_openat2+0xa6/0x110
[  625.822918][T22025]  __x64_sys_open+0xe6/0x110
[  625.827554][T22025]  x64_sys_call+0x1457/0x2ff0
[  625.832260][T22025]  do_syscall_64+0xd2/0x200
[  625.836802][T22025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.842722][T22025] 
[  625.845070][T22025] value changed: 0x00000001 -> 0x00000002
[  625.850807][T22025] 
[  625.853157][T22025] Reported by Kernel Concurrency Sanitizer on:
[  625.859334][T22025] CPU: 1 UID: 0 PID: 22025 Comm: syz.9.18255 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  625.870822][T22025] Tainted: [W]=WARN
[  625.874633][T22025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  625.884790][T22025] ==================================================================
[  625.910240][T22062] loop3: detected capacity change from 0 to 512
[  625.951655][T22062] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  625.967254][T22062] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended
[  625.979229][T22062] EXT4-fs error (device loop3): ext4_orphan_get:1392: comm syz.3.18269: inode #15: comm syz.3.18269: iget: illegal inode #
[  626.073866][T22062] EXT4-fs (loop3): Remounting filesystem read-only
[  626.080932][T22062] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  626.134894][T10521] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.