last executing test programs:

1.793866564s ago: executing program 4 (id=10164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8080)
syz_usb_disconnect(r2)

1.393978871s ago: executing program 1 (id=10197):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x31)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
fstat(r0, &(0x7f00000002c0))

1.393485241s ago: executing program 1 (id=10199):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200408c4, &(0x7f0000000200)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000001780)='%U', 0x2, 0x24000015, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000180)="9e", 0x1, 0x0, 0x0, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000001c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f00000000c0)=""/120, 0x78, 0x0, 0x0}, &(0x7f0000000080)=0x40)

1.350915495s ago: executing program 1 (id=10201):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000a50000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000081, &(0x7f0000000080)=ANY=[@ANYRES8=0x0, @ANYRES8, @ANYRES64, @ANYRES64=0x0], 0x0, 0x23e, &(0x7f0000000bc0)="$eJzs3c9qE1EUB+AzSdqmukgWrkRwQBeuStsnSJEKYldKFupCi21BklCwEGgVQ1c+gU/ic7jxDXwAoTtdFEYmSZsWUm0wf0r9vk0uzP3NOTe5Iau5eX2n1dja3ds5/PA9yuUkCrWoJUcR1ShEbiEAgOvmV5bFUdYzWrJUmFRPAMBkXfL3f3GKLQEAE/bs+Ysnaxsb60/TtBzR+tSuJ9F77V1f24m30YztWI5KHEdkp3rjR4831qOU5qpxv9Vp1/Nk69XX/v3XfkR08ytRierw/Eracybfadfn4ka/fi3Pr0Ylbg3Prw7JR30+Htw70/9SVOLbm9iNZmxFnh3kP66k6cPs88/3L/OO83zSadcXuvMGsuLUPxwAAAAAAAAAAAAAAAAAAAAAAK6tpTRN0yz7kmVZ1jl3/k7xuHt9KT1RPX8+Ty9/0flAnTPn6yznJZLe/EG+FLdLUZrl2gEAAAAAAAAAAAAAAAAAAOCq2Ns/aGw2m9vvxjo4eax//Hf+10EU+601k4gr0E93sJj3M51ad2PEWrURS0Rh/6Bxsrsam0n8JVWe0CbJhmy/4oWp+TFVn7853lUkETF3+mb+aXIh5sb8TQEAAAAAAAAAAAAAAAAAAKZs8NDvkIuHM2gIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGZg8P//Iww6/fAlUzNeIgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP+B3wEAAP//bkR7Lg==")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

1.316183598s ago: executing program 1 (id=10204):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x18, &(0x7f0000000540), 0x1, 0x4a3, &(0x7f0000000580)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
lsetxattr$system_posix_acl(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='system.posix_acl_default\x00', &(0x7f0000000400), 0x24, 0x0)
listxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)

1.30246694s ago: executing program 1 (id=10205):
syz_usb_connect(0x6, 0x2d, &(0x7f0000000600)=ANY=[], 0x0)
syz_open_procfs(0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0x3)

1.166858082s ago: executing program 0 (id=10212):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000200)=@ccm_128={{0x304}, "76131e58a256d4af", "4448076cc60af592e807e038c4797041", "8076e30e", "f79d7fbbf3985dbb"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x4, &(0x7f0000000100)=@gcm_256={{}, "2474794233890da1", "d830005894bf527ae179a7173985202bbfb61b36f3678de8ea2d0d6616076243", "5615d9f5", "7c5cec21291a43fe"}, 0x38)

1.160447112s ago: executing program 0 (id=10213):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@minixdf}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0xfe, 0x56a, &(0x7f00000015c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000006000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
llistxattr(&(0x7f00000004c0)='./file1\x00', 0x0, 0x0)

1.145347404s ago: executing program 0 (id=10214):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000000000000, 0x80000001}, 0x180, 0x0, 0x0, 0x6, 0x2, 0x0, 0x80, 0x0, 0x0, 0x0, 0x400000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x3)
r2 = io_uring_setup(0x1694, &(0x7f00000002c0))
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000002700)={0x119f, 0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000480)=""/264, 0xf9}, {&(0x7f00000015c0)=""/4096, 0x400400}, {&(0x7f0000002a00)=""/88, 0x8}], 0x0}, 0x20)

1.071064911s ago: executing program 0 (id=10215):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x19, 0x4, 0x8, 0x7fff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
setrlimit(0x9, &(0x7f0000000000))
io_setup(0x2004, &(0x7f0000000680))

1.070781521s ago: executing program 4 (id=10216):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
syz_usb_connect(0x6, 0x24, &(0x7f00000004c0)=ANY=[], 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1.070639641s ago: executing program 0 (id=10217):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
close(r0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

774.565348ms ago: executing program 1 (id=10222):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ppoll(&(0x7f0000000180)=[{}, {r1}], 0x2, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)

690.557056ms ago: executing program 2 (id=10238):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x88}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@usrquota}, {@data_err_abort}, {@user_xattr}]}, 0x1, 0x5d8, &(0x7f0000001200)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9d})
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchown(r0, 0x0, 0xee01)

246.776347ms ago: executing program 0 (id=10229):
memfd_create(&(0x7f0000000000)='prodM\xb0\xea\a\x06\xbe\xaen/\xce4\xb7\xc1\xef\xba!\x9d\rSt\xa24\t\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1dz\xd05\xe2e,\xb1\x84\xea\x91^%A\xe5\x9e\x13TdT\xc6^p\xb0#R\x04\x06\xae\xebA;Y\xeb\x8f\xec\xb4\xf9\x17\xb7\x04\xc2\xc0\xc6\xb4\v\xff\xfc\x88\x90\xabC\x02\x00\xf04\x03\x88\xae9\'>R^P{Vr!\xe2W\xc72\xea\xb7Wp\xc36\x96\xffZ\\A@\x00\x00\x00\xc9\xf3Y\xb8\x89#\xa1\xb1)Dk\xeb\xa1\t\x00{u[\xbd\x9d\xf4\xbf\\\xce\x02P\xf2MY\x05^\xffj\x9c\x14\xb7\xb6v\x1d*1>\x00 \x00\x00\x00\x00\x14C?]\x8c\xb4Y\xcf\x80\x85\xd6\x036\xc8~\xa8\f\x00\x00\xb5M\x9a\x9dc\xaaAU\xec\xe06\xed\xe4\xfb\xdf\a\xd0lg\x13\xf9\x8b:s>\xd7s\xef\xb3\x9f#\x15)\xf9\xe10\xc7\xb262<k\xa8\x88\x01\x00fhD\xe7\xb6\x17\x80\x95\xa8\x1e\t\xb01KB\xcb\x00\x1e\x7fE\x7f\x02\x00\x00\x00y<nGR\x94\x99\xb8\x89\x9b\x8f\xd5\xe6\x02\xb5C\xad\"u\xf4>\x00\x00\x00\x00\x00\x00\x00\x00Nz\x0eu\x8f\x01\x00\x00\x00\x00\x00\x00\xdd\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc3\xa7/\x0f\x9b`\xa5\x98\x81a\xeev\x00\x00\x00\x00\a\x10\x00m2\xf2\xd8,\x17\xf8\x8e\xae\xc8\xad\xed<\"\x8e\n\x9d\xb13\x8d\xef\x96\xd2I\"8=tg\xdfU\xd0q\x95/f\xec\xdc\xa3\xe1[\xc0\xaa\xefz\xc9\xf4[\x00\x00\x00Q\xff}5\x94\x88\xa1\xdc\xa1g\xe0q\xc5:\xe4\xdf\x80\xb3,\xb9\xb2\xdc\x81\x9f6\x0f\x84WY\xbfSY`\xb8\a\x19\xb1\x058\xa4\xc3\xbb\xf8aB:\x84\x02?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf3o-GU\xb0\x00F\xb3o(aI[\xd6\x9fG\xaeI\x83\x93\x8cC\xc0#\xe0q\xd0Ex|\xdb\xa8\x16\xfe>:\t0\xfd\x8a\xc7\x84\xb5\xc7M-0A\xf0\x94\xf3\xcc\x8d\xbb3\\\"\x882\xb3\xa84\xac\x00\xdd}Ft\xc6\xcc\f}1X#\xe4\xe1\x94i\xce\xa1\xff\x95\x80\xb4T\x9c\x01\xf3\x1cLB\x94m(m\f\xbc\xebY\xa0\xf7\xf0\x9d\x10\xbd\x86\x1by\xe6\xdf\xc0\xc5\xb9\xb9\xbf\xdf~9\nC\xe9\xc5\x0e\xda\x9c(\x9b\"\xc7\x97\xfc\b\xd9\xc2T\xa7*}]\xc8\xb3 .\x9b\x89\x0f\xf8$\xdd>lU\x13EG\xbb1] \xda\x19\xc5\x9b\x15\x95\xc4\xfcw\xbb\x92\x91\xc4\xa6\x907XK\xfc\x17]\xfa\xff\'\xef\x92\x1c\xb8\x1fK\xb2o \xd1\xbd\xb2\x11+\xa3R\xefQ\xc2\xbdW\x05\xec\xb3=@\x03\xc6^\xa2\x15%\xb0\'D#\xb6Q\x8f\x82?S>\x0fP\x9cE\x92{d\xe6\x9cj1\x87\xb3\x01\xde\xe8\x89\xc4s\xb7\x14~}\xaa\x8c\xc3\x95BAE\xf2.\x8f#;a\x94\"\xd1U\xff\xe8v\xd3\x84d\xf4\x134\xa6XI\xe5h\xaa\x15\x9a\xf7Z\xe3%\x88p\x90\xbb\x9dt\xa3\xe1\r\x8d\x94\"\x19\x8b\x17)\xea\xd5\x17\xeb\xe4\x1b\x0fBZ1\xbe\xee\xfa\x1c\xf9\xa6\x11\x94\x06\\P:\xaf\xcex\xc2\x82\x9a\x16\xfc\xa1\xf9q\x12\xe3\x1a\xdc\xb7\x12\xbba\b\xbb\xed\xb2\xd1W\xe2\x8b\x8d8}\x10W\xbd\xa60A\xc3\x03\xfa\x890\x86#\bQ\xcb)\x00]\x9e\x14\xd2\xea\x82\xa8\xb7ZG\x15r\xf1\t\x00\x00\x00 \xc1\xaf\x19?\x00\\\x91\x13\x1b8\xe1\xc3\xa4\v\x94\xbfJ\xb5\xde\x95\x82\x00]B|\xe2[%\xe3\xf0\x04\xba\xed\xdb\xf5\x7f\x9d\xfe>\xf6m$M&\x7fq]\xe4\xf6\x82\xc3\x00\xb1zg}\x99E\xa4\x19\xe9\x1a4a\xd75D-k\x84\xa6\x12+\xebk\xa1\xfek\x89\xef\x18\xc1)6\xa65\xe2D\xbe\xe1\xdfq\xdd68\xf37g\xab9m\xe7\xddO\v?\xe0\xbe}\xa9U\xc7{\xd3\x16W\xbb\xe5\xd2\x93\xfe\xa4\x9d\r$\xe91c8`\x86\xbc)\xe29\xc3}\xb9P\xd5F\xc6\x12\x8c_x\xa8\xfa\xb5K\x03\x85\x93k\xe1\x8e\x1f)\".\xcc\'\v\xa6\x1bj\\\n\xe98yA\xd8T\x85\x80A\xcbo\x99\x99\xeb)r\x1a\xce\x18(\x185LL\xbcOeO\'\xe2\x86&\xe4\xe2\xe7~\x92\xa2\xb2\x1b\xc3\x00\x85\xce\xad7\x87\xa0\xfcc\xf5\xf8\xaf\v,q\xd4\x18\xbdM\x1a\xde\xba*L\x05m6\xecH\xd0T\xb8m\xdb\b\xa6\x02\xfb\x13\xac\x91\x8a\x8d\x94\x93\x8d=\xb1\x84\x9c\x9b\xe5\xc7\xa6\xc9Q\xc1eUc\xcc\x180^\x00\x00\x00\x00\x00\x00\x00\x00\xe7]6+\\\x00\x00\x00\x00?#C.\x1dj\xd9\xc3\xdd&\x80g:N\xec\x06[\x8f\x92\xe2\xb01\xb0\xef\x10,\xde\xf3\x86D\x8b\xf7\xf1>AH\xef\\\xf9\x8b\a\xe0\xb2\xcb\xf0\x97\b\r\xd5`\xb9\xd6\xa4\x1e\xbe\x12-}\xc5\x84\xde@\x18\x87\f\x01O\xedS\x8f\x9en,\xbce\xb2\xe4\x82v\x1c\xed\x84-s\xab\x06b\x9c\xba\xec\xa5\xc9A\x84\xd0\xe0 S\xc8\xa2\xaf\x85\v\xad\xa5\x88\xcf\xb6}`\x14\'\xea\xbfN\xac)\xa1\xe8\xb2\x9f\x112TJ\x16\x8c9\xe9\xf5\x18\x15Dd\x8a%>\x91\x93\x88\xe9\x18\x82]\x9e&\xfa\xaa\xfa8Z2\x00'/1301, 0x3)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a01020000000000000000020000000900010073797a3000000000aa000300"], 0x1e4}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x7fff, 0x0)

246.526687ms ago: executing program 2 (id=10230):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000080)="010000000037a788a11d180000009282d9c66923c63a4541062101a59ea9cb0b36929302", 0x24, r2)

246.079017ms ago: executing program 4 (id=10232):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000140)={0x1e6, @time})

212.58334ms ago: executing program 4 (id=10233):
r0 = memfd_create(&(0x7f0000000300)='\x00\xac=W[[\x87\x12\x04\xd5\xbc\x80K\x06\xcd]4(\xa2\xee2A7:n\x8c\xa7P\x1a\x87\xd9c\xecR\xd6\xe8\xf3Y\x12\"p^\xc1\x0f\x00\x00\x00\x00\x00\x00\x00t\x00\x00\x00\x00\x00\x00\x00\x05\x00\x00\x00\x19M\xc2N%\x93t[\xf3\xee\xa4\xb4\xfbf\x8dz7\\\x8e\xac\x18\x00\xfd\x89\xe1d\xfa\xcfb\xf3\xdc\xd4CY\x9a\xef\xa3\\\xa7\xa9^\xafL:[\x8e\x83U\xff\xfd\xff\xfa\xdaL\xa99\x9b\xcfA\xe4n\xa0^\n\x1c\x84\x04\xc5a\xdf\xe5\xd4Hyn\xba:/\xa5\xf4\xaa\xfa\xcd\xc7T\x83\xf5N^\xf2n\xd0=\xb9\t\xdd-F\xacb\xac \xd3\xccj\x13\xa2\x9fLu\'\xed\x91\x867\xaa\xf5\xa0]\xb6\xaa\xea\xfd\xde\xa6\xec\b\x16\x86l:;\xf9\xdb\xcf\x88\"\xca\xe0E\xdb\xec\xf9\xb3\xed\a\x00\x00\x00\x00\x00\x00\x00\xd6.\xf7\x92\xc42\xdf\xefE\xce}\x1b\xda\xdd?\n6\xe1\xb1\xd8Y\x960\xd1\x00\x00\x00\x00\x00\x00MW\x8f\xc6\x82\xe4\x15\xf7\xe9\xd8\xc5b\x0e\x91\xc5\xc76$\x18\xa4\xbe\xe8V\x8d-\xe3\x8fC\xd5\xf5\xd6L\xe3\xce\xa1\x8dz\xce\xa7\xa5\xc8\xcbhM\x1b\xf8\x98\xc4\xfbD6\x88\xfd\xe5i\x8a\xd8\xcfm\x81Z\x19\xf0\xef\xc15\xe8\xcb\xf5\t\t\x00\x17\xfa\x1fqb\xe7\"\xcb4\xb8\xe5/\xd52\x17\x12\x1d\xd8\x87\xb9|\x8d\x83\xea\xcc\x94\xebZ\xae\xaf\x19\xa4\xb2\xc6\xe1\x926B\xb6\x89Z\xa9\xb5/\xbb\x9d&\xeeO\xb3\xb3\xd4\bB\xa9f\x84\xad\t\x1a\xc2\xd5\x88\xbfo\x80V\x93\x9fl\xd7\xff\x03\xb7J\xed\x183\xe3\x7f\xfaq,\xca\x06\xb0\xc9\x92\x93\xa5I\x89\xb7\x85\x90\xb7\x1b0\xce\xd7!\x8fD\x96\xe1 ^>\x9f\x04\x89<\xb7S\x7f\x1a\x88\xab$\xd3y\xc2\xe1\x99\xbch\xd3\x83\xcd\x7f\xc5n\xb1\xc1X \x90\xbb\x1f\x01\x90\xb1O\x8d\x7f\xa8\xd4\xdbO\xef\x99\xf3\xd3M\x0f\t\x7f\n,\x84\x1f\xfa\xe2\xc8\x99\x97Oq\xae\x9b\x86h\xfa3\xb9\xfd\xbb\xd4^\xc0t\xa7]Y\xe9\x7f[\x11\xb1\xf3m\x17F\x9d\x18\xe2\xe1\x01\xb6f=-?\xbcI\xf2\xd9\xc4>-\xc0E\x9a\x82\xcc7S\xd4\xb6\'\xd2DY\xa5\x83,\xd1\xbc\xc7\xf6\xe0\x1f o\x06\xc2t\x14\xc2\xe0\x92\xc1\x8a\x85>@\xc9\xb0% \xc7\x13l\x8bJ\xe5\xec\x1dE\xf5\xc5\xe2\xe3\x10G7r#\xbc\x95&\x14\x1e\x97\xce\x83>Q@\xfb\xeb=\x1e\xb3\xd5H\x02\x86\xc6\xf3\xe1i\\\x1d\xf4\xc1\xacJC+\xc8}\x1b{\x86\x17\x00\n\"\xec\xa5x\xe6\xb1i\xeb\xb3\xb7I\x90\x9eai\xde\x01\xdc\xfeA\x05Sn\xe6\xe8^\xdf\x8c`\x17\xca\xbd\\QG\xb15\x82*=\xbd\xe9\xaf\x12<\xd7\xe1$\xa4\xdaU\xfb^\xd8!\xacxy\xd5X\xef\x03\xa7\x10\xa1C#S~\x0f\x17\t>X\\mv0\x9eZ\x89\xf4\xae\a\xc8\x16\xd2o\x16\xf3X%Q\xbd\xe9\x86V\xf2\x99^0\xe8xI(\xde-\x04s\x15\x06#2\xef\xef@\xa3t0d^^\xad\xf6\xad\xe0\x16\xf6\xa8\x99!\x0e\x9d+;D&\xebN\x94\x12\x04\x95o\xd6\x9fl\xcb\x16gc\xf5(\xaa_\xec\x9aiE\f\xd4\xc6\xf2\xae\x85n\x995\xcd\xa7\xbb\xf0pz\xff\x0f\x00\x00\x00\x00\x00\x00Li\r\x95Z\x89\"_\xe4\xba\xd4\x93\xab\xe1\xb9\xd8E[\xbb\xc9.M+\xbe\x81<z\xf2\xe8\xf4\x93\xe6h\x97\x7f\xaf\xc5\x06g\fI\xa5\xed\x05\x12\x0f\x0eu\xe5 \xfe\xcdMX\xb5X\x838\xf5\x18x\xc9\xb9\x03\t\x06\x96g\x8a5\xb0\xc8\x86\x14\xe2\x01\x1f\x80\xe7Ol\xba\x93\xaa\x15\x87I7W\x87\xc4;p\xc5\x1e\"K5r\xec6\xac\xf0\x1f\xf8 \xad\xc9\xf0\x16\xce\x17\xa1%f\x12\x80\x03N[qz\xf0q\xbd\xb8s\xe5>N\xd2\xae\xf4\x18\xd0\xe7\x98\x90,\xce\ft\xc4\xc7\x02\xaa\xc7\xeb1;\x86b)\x12{k#c\x1d@\xc31\x00\xd2}f\x8cX\xce\xed\xa4\xe4\xca\x00\x00\x00\x00\x00\x03\xfcWZ!<\x16a5ZL.\xe6\x15]\xebY\xaa\xbea\x8e\xdc\xc52r\"\xea\x9e\x03\x11&\xc3JU\xa7\xd6\x8a\xf8\xae>S\xde', 0x0)
write(r0, &(0x7f0000000140)='/', 0x1)
sendfile(r0, r0, &(0x7f0000001000), 0xfec)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000c, 0x11, r0, 0x0)
setxattr$security_ima(0x0, &(0x7f0000000140), 0x0, 0x700, 0x0)
openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000002fc0)={0x0, 0x0, 0x3}, 0x18)

167.058964ms ago: executing program 3 (id=10234):
socket$key(0xf, 0x3, 0x2)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000ffff0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000001040)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in6=@private0, @in6=@remote}, {@in6=@remote, 0x0, 0x32}, @in6=@mcast1, {}, {}, {}, 0x0, 0x0, 0xa, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0xe}, 0x0)

166.689964ms ago: executing program 2 (id=10235):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x32, &(0x7f0000000000)={@link_local, @random="1d5da714014a", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @empty=0xeaffffff}, {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

166.392554ms ago: executing program 3 (id=10236):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
ustat(0x2, &(0x7f0000000000))

166.129274ms ago: executing program 2 (id=10237):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x3ec0)
close_range(r0, 0xffffffffffffffff, 0x0)

139.364586ms ago: executing program 3 (id=10240):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000a40)=ANY=[], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1a000, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

133.383747ms ago: executing program 4 (id=10241):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f0000000140)={0x14, 0x88, 0xfa00, {r1, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {}, 0x5, 0x5}}}, 0x90)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f0000000140)={0x14, 0x88, 0xfa00, {r3, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {}, 0x5, 0x5}}}, 0x90)

66.928593ms ago: executing program 3 (id=10242):
fchown(0xffffffffffffffff, 0x0, 0x0)
io_uring_setup(0x96b, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
close(r0)

66.564983ms ago: executing program 4 (id=10243):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000001e00)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000f00)="316f825a3d29f96a2093a917017b4cd300000000bee70035ed313e19d6dd1fb41a20baf7f73430670040cdd4b16742e94b62f4eb1c5d9daab7f3028100ae8180db94b9de7456ae62b0e6fe7766a0842912179154a96fa88e161d4a9f77a486e10d1d50e44155790748b7226fa4bb5d77e85729336ba6369a4c33ac53b45d46a92db9fda99af4429dc23db6a1706328df4e75eb173a81bd", 0x97}], 0x1}}], 0x1, 0x24008000)

66.312913ms ago: executing program 3 (id=10244):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000480), 0xffffffffffffffff)
r2 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)={0x24, r1, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_LINK={0x8, 0x1, r3}]}, 0x24}}, 0x0)

66.063303ms ago: executing program 3 (id=10245):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000480)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x10, 0x4e26, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x1}}}}}}, 0x0)

20.874547ms ago: executing program 2 (id=10246):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000ffff0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
syz_emit_ethernet(0x9e, &(0x7f0000003680)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @loopback={0x600, 0x1ff0000aa}, @private1}}}}}}, 0x0)

0s ago: executing program 2 (id=10247):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r2, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000580)=[{0x0, 0x0, 0x3ff, 0x8}], 0x3e0000)

kernel console output (not intermixed with test programs):

 T5563] vhci_hcd vhci_hcd.0: Device attached
[  308.229299][ T5568] vhci_hcd: connection closed
[  308.229596][T10490] vhci_hcd: stop threads
[  308.238579][T10490] vhci_hcd: release socket
[  308.243077][T10490] vhci_hcd: disconnect device
[  308.299075][ T5582] SELinux: failed to load policy
[  308.335249][ T5587] hub 9-0:1.0: USB hub found
[  308.340450][ T5587] hub 9-0:1.0: 8 ports detected
[  308.340941][ T5580] loop4: detected capacity change from 0 to 8192
[  308.409318][ T5597] loop2: detected capacity change from 0 to 2048
[  308.454813][ T5597] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  308.547832][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.646162][ T5629] sd 0:0:1:0: device reset
[  308.687570][ T5633] SELinux: failed to load policy
[  308.689445][ T5635] loop3: detected capacity change from 0 to 512
[  308.705915][ T5635] EXT4-fs: Ignoring removed i_version option
[  308.712066][ T5635] EXT4-fs: Ignoring removed mblk_io_submit option
[  308.719036][ T5635] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  308.729892][ T5635] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b056e118, mo2=0002]
[  308.738762][ T5635] System zones: 1-12
[  308.752843][ T5635] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.7859: corrupted in-inode xattr: e_value size too large
[  308.783720][ T5635] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.7859: couldn't read orphan inode 15 (err -117)
[  308.821272][ T5635] EXT4-fs (loop3): mounted filesystem 00000000-00c8-1300-0000-000000000000 r/w without journal. Quota mode: writeback.
[  308.861550][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-00c8-1300-0000-000000000000.
[  308.962243][ T5669] loop4: detected capacity change from 0 to 512
[  308.976268][ T5673] tmpfs: Bad value for 'mpol'
[  309.000834][ T5669] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  309.032396][ T3529] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  309.042780][ T5683] hub 9-0:1.0: USB hub found
[  309.047855][ T5683] hub 9-0:1.0: 8 ports detected
[  309.351749][ T5757] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7901'.
[  309.373667][ T5757] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.421090][ T5772] loop3: detected capacity change from 0 to 512
[  309.440054][ T5772] EXT4-fs: Ignoring removed oldalloc option
[  309.451466][ T5757] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.464889][ T5784] tmpfs: Bad value for 'mpol'
[  309.483092][ T5772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  309.505664][ T5757] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.521909][ T5796] @: renamed from bond0 (while UP)
[  309.559493][ T5757] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.576760][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.661664][ T5824] IPVS: Error joining to the multicast group
[  309.675453][ T5757] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  309.691405][ T5841] loop2: detected capacity change from 0 to 512
[  309.701586][ T5757] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  309.715194][ T5841] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  309.730004][ T5757] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  309.757500][ T3535] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  309.759964][ T5757] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  309.824399][ T5861] @: renamed from bond0 (while UP)
[  309.855646][ T5866] loop4: detected capacity change from 0 to 512
[  309.877841][ T5873] loop3: detected capacity change from 0 to 1024
[  309.884536][ T5873] EXT4-fs: Ignoring removed oldalloc option
[  309.894144][ T5866] EXT4-fs: Ignoring removed oldalloc option
[  309.902575][ T5866] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.7933: Parent and EA inode have the same ino 15
[  309.920503][ T5866] EXT4-fs (loop4): Remounting filesystem read-only
[  309.927081][ T5866] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  309.938101][ T5866] EXT4-fs (loop4): 1 orphan inode deleted
[  309.938749][ T5873] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.944141][ T5866] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.968744][ T5866] SELinux: (dev loop4, type ext4) getxattr errno 5
[  309.976207][ T5866] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.979178][ T5888] block device autoloading is deprecated and will be removed.
[  309.993032][ T5888] bio_check_eod: 1 callbacks suppressed
[  309.993043][ T5888] syz.1.7940: attempt to access beyond end of device
[  309.993043][ T5888] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  310.015750][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.040913][ T5896] netlink: 'syz.1.7943': attribute type 1 has an invalid length.
[  310.104515][ T5896] bond0: (slave ipip0): The slave device specified does not support setting the MAC address
[  310.114821][ T5896] bond0: (slave ipip0): Setting fail_over_mac to active for active-backup mode
[  310.126603][ T5896] bond0: (slave ipip0): making interface the new active one
[  310.135172][ T5896] bond0: (slave ipip0): Enslaving as an active interface with an up link
[  310.173310][ T5946] loop3: detected capacity change from 0 to 8192
[  310.226682][ T5962] loop2: detected capacity change from 0 to 512
[  310.233540][ T5962] EXT4-fs: Ignoring removed oldalloc option
[  310.248725][ T5962] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.306359][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.409234][ T5986] netlink: 'syz.2.7963': attribute type 1 has an invalid length.
[  310.443877][ T5986] bond1: (slave ipip0): The slave device specified does not support setting the MAC address
[  310.454044][ T5986] bond1: (slave ipip0): Setting fail_over_mac to active for active-backup mode
[  310.466182][ T5986] bond1: (slave ipip0): making interface the new active one
[  310.476842][ T5986] bond1: (slave ipip0): Enslaving as an active interface with an up link
[  310.564847][ T6038] IPVS: Error joining to the multicast group
[  310.919045][ T6079] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7988'.
[  310.971310][ T6116] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7993'.
[  311.000618][ T6116] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7993'.
[  311.013093][ T6119] SELinux:  Context :yz1 is not valid (left unmapped).
[  311.091234][ T6129] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8008'.
[  311.117612][ T6129] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8008'.
[  311.213617][ T6142] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8002'.
[  311.428192][ T6167] 9pnet_fd: Insufficient options for proto=fd
[  311.455649][ T6174] loop2: detected capacity change from 0 to 256
[  311.463168][ T6174] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  311.476492][ T6168] loop3: detected capacity change from 0 to 512
[  311.483154][ T6168] journal_path: Lookup failure for './bus'
[  311.489146][ T6168] EXT4-fs: error: could not find journal device path
[  311.545290][ T6189] syz.4.8024[6189] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.545331][ T6189] syz.4.8024[6189] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.557140][ T6189] syz.4.8024[6189] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.660016][ T6231] 9pnet_fd: Insufficient options for proto=fd
[  311.700708][ T6233] netlink: 'syz.2.8032': attribute type 3 has an invalid length.
[  311.830414][ T6245] loop4: detected capacity change from 0 to 512
[  311.837271][ T6245] EXT4-fs: Ignoring removed oldalloc option
[  311.848525][ T6245] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  311.871795][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.378658][   T29] kauditd_printk_skb: 113 callbacks suppressed
[  312.378673][   T29] audit: type=1400 audit(312.370:64611): avc:  denied  { setopt } for  pid=6270 comm="syz.0.8044" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  312.428597][ T6279] xt_CT: You must specify a L4 protocol and not use inversions on it
[  312.439978][ T6281] netlink: 'syz.1.8052': attribute type 29 has an invalid length.
[  312.464302][ T6281] netlink: 'syz.1.8052': attribute type 29 has an invalid length.
[  312.473614][ T6281] netlink: 500 bytes leftover after parsing attributes in process `syz.1.8052'.
[  312.486641][ T6285] SELinux:  Context system_u:object_r:dhcpd_unit_file_t:s0 is not valid (left unmapped).
[  312.496921][   T29] audit: type=1400 audit(312.480:64612): avc:  denied  { relabelto } for  pid=6283 comm="syz.4.8054" name="file0" dev="tmpfs" ino=408 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:dhcpd_unit_file_t:s0"
[  312.523511][   T29] audit: type=1400 audit(312.480:64613): avc:  denied  { associate } for  pid=6283 comm="syz.4.8054" name="file0" dev="tmpfs" ino=408 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:dhcpd_unit_file_t:s0"
[  312.630184][   T29] audit: type=1326 audit(312.620:64614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6301 comm="syz.4.8062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7138cadef9 code=0x7ffc0000
[  312.653135][   T29] audit: type=1326 audit(312.620:64615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6301 comm="syz.4.8062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7138cadef9 code=0x7ffc0000
[  312.680049][   T29] audit: type=1326 audit(312.660:64616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6301 comm="syz.4.8062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7138cadef9 code=0x7ffc0000
[  312.703104][   T29] audit: type=1326 audit(312.660:64617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6301 comm="syz.4.8062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7138cadef9 code=0x7ffc0000
[  312.726234][   T29] audit: type=1326 audit(312.660:64618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6301 comm="syz.4.8062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7138cadef9 code=0x7ffc0000
[  312.750161][   T29] audit: type=1326 audit(312.740:64619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6301 comm="syz.4.8062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7138cadef9 code=0x7ffc0000
[  312.773385][   T29] audit: type=1326 audit(312.740:64620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6301 comm="syz.4.8062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7138cadef9 code=0x7ffc0000
[  312.873079][ T6319] loop4: detected capacity change from 0 to 256
[  312.929038][ T6331] syz_tun: entered promiscuous mode
[  312.945199][ T6331] batadv_slave_0: entered promiscuous mode
[  312.953625][ T6335] syz.2.8076[6335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  312.953718][ T6335] syz.2.8076[6335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  312.965277][ T6335] syz.2.8076[6335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  312.965516][ T6331] hsr1: entered allmulticast mode
[  312.993606][ T6331] syz_tun: entered allmulticast mode
[  312.999018][ T6331] batadv_slave_0: entered allmulticast mode
[  313.125283][ T6364] syz_tun: entered promiscuous mode
[  313.132492][ T6364] batadv_slave_1: entered promiscuous mode
[  313.139315][ T6364] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  313.148115][ T6364] Cannot create hsr debugfs directory
[  313.173996][ T6375] syz.3.8090[6375] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  313.174094][ T6375] syz.3.8090[6375] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  313.185772][ T6375] syz.3.8090[6375] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  313.333054][ T6400] loop4: detected capacity change from 0 to 512
[  313.369014][ T6400] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.380951][ T6399] loop3: detected capacity change from 0 to 8192
[  313.424003][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.677185][ T6454] syz.2.8127[6454] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  313.688118][ T6456] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  313.714969][ T6456] batadv_slave_0: entered promiscuous mode
[  314.789224][ T6510] syz_tun: entered promiscuous mode
[  314.803724][ T6510] batadv_slave_1: entered promiscuous mode
[  314.823626][ T6510] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  314.844582][ T6510] Cannot create hsr debugfs directory
[  314.962493][ T6541] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8163'.
[  315.145563][ T6574] netlink: 32 bytes leftover after parsing attributes in process `syz.4.8180'.
[  315.174384][ T6579] loop4: detected capacity change from 0 to 128
[  315.194201][ T6579] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  315.210159][ T6582] loop3: detected capacity change from 0 to 164
[  315.232833][ T3529] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  315.265104][ T6592] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8187'.
[  315.463979][ T6619] ebtables: ebtables: counters copy to user failed while replacing table
[  316.104699][ T6676] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8217'.
[  316.113915][ T6676] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  316.139123][ T6676] batman_adv: batadv0: Removing interface: batadv_slave_1
[  316.220007][ T6701] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ–Ümý¼§°'ßtÿT
[  316.327432][ T6718] coredump: 254(syz.1.8230): coredump has not been created, error -2
[  316.357524][ T6722] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8232'.
[  316.472312][ T6736] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8239'.
[  316.772303][ T6773] syzkaller1: entered promiscuous mode
[  316.777859][ T6773] syzkaller1: entered allmulticast mode
[  316.830293][ T6785] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8258'.
[  316.847306][ T6785] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.911965][ T6785] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.971697][ T6785] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.030941][ T6785] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.084264][ T6825] loop3: detected capacity change from 0 to 1024
[  317.099107][ T6825] EXT4-fs (loop3): can't mount with journal_async_commit, fs mounted w/o journal
[  317.113080][ T6785] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  317.125555][ T6785] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  317.137020][ T6785] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  317.148398][ T6785] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  317.220289][ T6845] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8276'.
[  317.229327][ T6845] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  317.236787][ T6845] batman_adv: batadv0: Removing interface: batadv_slave_0
[  317.259584][ T6845] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  317.267109][ T6845] batman_adv: batadv0: Removing interface: batadv_slave_1
[  317.284287][ T6849] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  317.397396][   T29] kauditd_printk_skb: 216 callbacks suppressed
[  317.397405][   T29] audit: type=1326 audit(317.390:64837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6862 comm="syz.1.8282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  317.427170][   T29] audit: type=1326 audit(317.390:64838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6862 comm="syz.1.8282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  317.451389][   T29] audit: type=1326 audit(317.420:64839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6862 comm="syz.1.8282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  317.474393][   T29] audit: type=1326 audit(317.420:64840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6862 comm="syz.1.8282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  317.497375][   T29] audit: type=1326 audit(317.420:64841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6862 comm="syz.1.8282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  317.512355][ T6871] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8286'.
[  317.673382][ T6889] loop2: detected capacity change from 0 to 1024
[  317.674568][   T29] audit: type=1400 audit(317.660:64842): avc:  denied  { getopt } for  pid=6886 comm="syz.1.8293" lport=36000 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  317.733063][ T6889] EXT4-fs (loop2): can't mount with journal_async_commit, fs mounted w/o journal
[  317.953852][ T6929] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  318.000243][ T6938] loop2: detected capacity change from 0 to 512
[  318.025204][ T6938] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  318.053445][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.182030][ T6976] netlink: 16 bytes leftover after parsing attributes in process `syz.2.8336'.
[  318.219848][ T6980] loop3: detected capacity change from 0 to 512
[  318.229701][ T6980] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  318.237675][ T6985] coredump: 264(syz.2.8339): coredump has not been created, error -2
[  318.267784][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.329688][ T6995] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8332'.
[  318.544814][ T7022] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ–Ümý¼§°'ßtÿT
[  318.590521][ T7032] bpf_get_probe_write_proto: 5 callbacks suppressed
[  318.590536][ T7032] syz.3.8352[7032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  318.604576][ T7032] syz.3.8352[7032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  318.630747][ T7032] syz.3.8352[7032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  318.648312][ T7038] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8352'.
[  318.702818][ T7038] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  318.716806][ T7038] batman_adv: batadv0: Removing interface: batadv_slave_1
[  318.729673][ T7045] netlink: 32 bytes leftover after parsing attributes in process `syz.1.8366'.
[  319.086050][ T7097] syz.2.8372[7097] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  319.086116][ T7097] syz.2.8372[7097] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  319.097871][ T7097] syz.2.8372[7097] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  319.113634][ T7097] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  319.148420][ T7097] batman_adv: batadv0: Removing interface: batadv_slave_1
[  319.163611][ T7097] batadv_slave_1 (unregistering): left promiscuous mode
[  319.183500][   T29] audit: type=1326 audit(319.170:64843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.0.8375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  319.207405][   T29] audit: type=1326 audit(319.170:64844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.0.8375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  319.230544][   T29] audit: type=1326 audit(319.170:64845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.0.8375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  319.254890][   T29] audit: type=1326 audit(319.170:64846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7107 comm="syz.0.8375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  319.364445][ T7135] batman_adv: batadv0: Removing interface: batadv_slave_0
[  319.412057][ T7148] netlink: 'syz.0.8401': attribute type 1 has an invalid length.
[  319.419912][ T7148] netlink: 'syz.0.8401': attribute type 2 has an invalid length.
[  319.437832][ T7148] netlink: 'syz.0.8401': attribute type 1 has an invalid length.
[  320.457736][ T7181] netlink: 'syz.3.8407': attribute type 1 has an invalid length.
[  320.458958][ T7183] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  320.465492][ T7181] netlink: 'syz.3.8407': attribute type 2 has an invalid length.
[  320.472335][ T7181] netlink: 'syz.3.8407': attribute type 1 has an invalid length.
[  320.472998][ T7183] batman_adv: batadv0: Removing interface: batadv_slave_0
[  320.497062][ T7183] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  320.504817][ T7183] batman_adv: batadv0: Removing interface: batadv_slave_1
[  320.539524][ T7197] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7197 comm=syz.3.8409
[  320.653151][ T7240] loop3: detected capacity change from 0 to 512
[  320.660845][ T7240] EXT4-fs (loop3): failed to initialize system zone (-117)
[  320.669409][ T7240] EXT4-fs (loop3): mount failed
[  320.697986][ T7248] SELinux:  policydb version -544360880 does not match my version range 15-33
[  320.707482][ T7248] SELinux: failed to load policy
[  320.768427][ T7258] atomic_op ffff88810f26dd28 conn xmit_atomic 0000000000000000
[  320.800917][ T7262] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  320.864918][    C1] ------------[ cut here ]------------
[  320.870459][    C1] refcount_t: underflow; use-after-free.
[  320.876386][    C1] WARNING: CPU: 1 PID: 7279 at lib/refcount.c:28 refcount_warn_saturate+0x1c6/0x230
[  320.886119][    C1] Modules linked in:
[  320.890045][    C1] CPU: 1 UID: 0 PID: 7279 Comm: syz.1.8431 Not tainted 6.11.0-syzkaller-09959-gabf2050f51fd #0
[  320.901022][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  320.911240][    C1] RIP: 0010:refcount_warn_saturate+0x1c6/0x230
[  320.917519][    C1] Code: 72 ff ff ff e8 eb 7f 71 ff 48 c7 c7 ee e6 b2 86 e8 5f 6b 8a ff c6 05 36 2c f4 04 01 90 48 c7 c7 79 79 1b 86 e8 2b 3b 53 ff 90 <0f> 0b 90 90 e9 43 ff ff ff e8 bc 7f 71 ff 48 c7 c7 eb e6 b2 86 e8
[  320.937399][    C1] RSP: 0018:ffffc900000e4b60 EFLAGS: 00010246
[  320.943498][    C1] RAX: 9a0d124eee0d1600 RBX: ffff888134d1f3e4 RCX: ffff88810c513180
[  320.951701][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  320.959710][    C1] RBP: 0000000000000003 R08: ffffffff8111f757 R09: 0000000000000000
[  320.967849][    C1] R10: 0001ffffffffffff R11: ffff88810c513180 R12: ffff88810c48a268
[  320.975836][    C1] R13: ffff88811ad5a000 R14: ffff888134d1f3e4 R15: 0000000000000000
[  320.983849][    C1] FS:  00007f368d9776c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
[  320.992782][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  320.999467][    C1] CR2: 0000000020002680 CR3: 000000011a118000 CR4: 00000000003506f0
[  321.007665][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  321.015818][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  321.023940][    C1] Call Trace:
[  321.027237][    C1]  <IRQ>
[  321.030090][    C1]  ? __warn+0x141/0x350
[  321.034283][    C1]  ? report_bug+0x315/0x420
[  321.038858][    C1]  ? refcount_warn_saturate+0x1c6/0x230
[  321.044450][    C1]  ? handle_bug+0x60/0x90
[  321.048812][    C1]  ? exc_invalid_op+0x1a/0x50
[  321.053498][    C1]  ? asm_exc_invalid_op+0x1a/0x20
[  321.058630][    C1]  ? __warn_printk+0x167/0x1b0
[  321.063501][    C1]  ? refcount_warn_saturate+0x1c6/0x230
[  321.069160][    C1]  sk_skb_reason_drop+0xe9/0x290
[  321.074088][    C1]  j1939_session_put+0x157/0x2a0
[  321.079047][    C1]  j1939_xtp_rx_eoma+0x1f0/0x260
[  321.084281][    C1]  j1939_tp_recv+0x651/0xa80
[  321.088938][    C1]  j1939_can_recv+0x45f/0x550
[  321.093618][    C1]  ? __pfx_j1939_can_recv+0x10/0x10
[  321.099234][    C1]  can_rcv_filter+0x225/0x4c0
[  321.103923][    C1]  can_receive+0x182/0x1f0
[  321.108542][    C1]  ? __pfx_ip_rcv+0x10/0x10
[  321.113380][    C1]  can_rcv+0xe7/0x180
[  321.117409][    C1]  ? __pfx_can_rcv+0x10/0x10
[  321.122007][    C1]  __netif_receive_skb+0x123/0x280
[  321.127134][    C1]  process_backlog+0x22e/0x440
[  321.131975][    C1]  __napi_poll+0x63/0x3c0
[  321.136438][    C1]  ? net_rx_action+0x376/0x7f0
[  321.141452][    C1]  net_rx_action+0x3a1/0x7f0
[  321.146222][    C1]  handle_softirqs+0xbf/0x280
[  321.150953][    C1]  irq_exit_rcu+0x3e/0x90
[  321.155374][    C1]  sysvec_apic_timer_interrupt+0x73/0x80
[  321.161061][    C1]  </IRQ>
[  321.164008][    C1]  <TASK>
[  321.167039][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  321.173045][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x3d/0x60
[  321.179475][    C1] Code: 86 e8 77 31 18 fc 48 83 3d e7 47 33 01 00 74 2b 48 89 df e8 05 07 00 00 90 41 f7 c6 00 02 00 00 74 01 fb 65 ff 0d 0b e2 d1 7a <74> 08 5b 41 5e c3 cc cc cc cc 0f 1f 44 00 00 eb f1 90 0f 0b 66 2e
[  321.199281][    C1] RSP: 0018:ffffc900019b3af0 EFLAGS: 00000286
[  321.205485][    C1] RAX: 0000000000000001 RBX: ffff888237d1ff80 RCX: ffffffff85310119
[  321.213525][    C1] RDX: 000000000000011a RSI: 0000000000000000 RDI: ffff888237d1ff80
[  321.221602][    C1] RBP: ffff888237d1ff80 R08: 0001ffff8664490f R09: 0000000000000000
[  321.229687][    C1] R10: 0001ffffffffffff R11: ffffffff810c1250 R12: ffff88810c48bee8
[  321.237672][    C1] R13: 0000000000000246 R14: 0000000000000246 R15: ffff88810c48beb8
[  321.245837][    C1]  ? __pfx_lapic_next_event+0x10/0x10
[  321.251339][    C1]  ? _raw_spin_unlock_irqrestore+0x19/0x60
[  321.257247][    C1]  hrtimer_start_range_ns+0x53d/0x580
[  321.262712][    C1]  j1939_tp_schedule_txtimer+0x67/0xa0
[  321.268323][    C1]  j1939_sk_sendmsg+0x954/0xc00
[  321.273313][    C1]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[  321.278723][    C1]  __sock_sendmsg+0x140/0x180
[  321.283422][    C1]  ____sys_sendmsg+0x312/0x410
[  321.288234][    C1]  __sys_sendmsg+0x1d9/0x270
[  321.292853][    C1]  ? futex_wait+0x18e/0x1c0
[  321.297428][    C1]  __x64_sys_sendmsg+0x46/0x50
[  321.302220][    C1]  x64_sys_call+0x2689/0x2d60
[  321.306984][    C1]  do_syscall_64+0xc9/0x1c0
[  321.311519][    C1]  ? clear_bhb_loop+0x55/0xb0
[  321.316233][    C1]  ? clear_bhb_loop+0x55/0xb0
[  321.320949][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.321184][ T7292] loop2: detected capacity change from 0 to 512
[  321.326891][    C1] RIP: 0033:0x7f368ecfdef9
[  321.326912][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.326930][    C1] RSP: 002b:00007f368d977038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  321.326950][    C1] RAX: ffffffffffffffda RBX: 00007f368eeb5f80 RCX: 00007f368ecfdef9
[  321.326962][    C1] RDX: 0000000000000000 RSI: 0000000020002680 RDI: 0000000000000003
[  321.326986][    C1] RBP: 00007f368ed70b76 R08: 0000000000000000 R09: 0000000000000000
[  321.326997][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  321.345821][ T7292] EXT4-fs (loop2): failed to initialize system zone (-117)
[  321.357534][    C1] R13: 0000000000000000 R14: 00007f368eeb5f80 R15: 00007ffc8866eb98
[  321.357582][    C1]  </TASK>
[  321.357591][    C1] ---[ end trace 0000000000000000 ]---
[  321.367343][ T7292] EXT4-fs (loop2): mount failed
[  321.450025][ T7299] SELinux:  policydb version -544360880 does not match my version range 15-33
[  321.459128][ T7299] SELinux: failed to load policy
[  321.507085][ T7328] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  321.579227][ T7331] atomic_op ffff88811489b928 conn xmit_atomic 0000000000000000
[  322.839767][   T29] kauditd_printk_skb: 37 callbacks suppressed
[  322.839780][   T29] audit: type=1400 audit(322.830:64884): avc:  denied  { read } for  pid=2946 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  322.966897][   T29] audit: type=1400 audit(322.830:64885): avc:  denied  { search } for  pid=2946 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  322.988183][   T29] audit: type=1400 audit(322.830:64886): avc:  denied  { append } for  pid=2946 comm="syslogd" name="messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  323.010048][   T29] audit: type=1400 audit(322.830:64887): avc:  denied  { open } for  pid=2946 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  323.032306][   T29] audit: type=1400 audit(322.830:64888): avc:  denied  { getattr } for  pid=2946 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  323.819615][ T7393] syz.4.8456[7393] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  323.819676][ T7393] syz.4.8456[7393] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  323.831107][ T7393] syz.4.8456[7393] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  323.851929][ T7393] __nla_validate_parse: 9 callbacks suppressed
[  323.851945][ T7393] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8456'.
[  323.897139][ T7393] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8456'.
[  323.991408][ T7419] loop4: detected capacity change from 0 to 512
[  324.008094][ T7425] SELinux:  Context Ü is not valid (left unmapped).
[  324.018536][ T7419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.032407][   T29] audit: type=1400 audit(324.020:64889): avc:  denied  { read } for  pid=7432 comm="syz.2.8473" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  324.067529][ T7419] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  324.068185][ T7435] netlink: 'syz.0.8475': attribute type 10 has an invalid length.
[  324.078282][ T7419] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  324.095628][ T7419] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.8470: Failed to acquire dquot type 0
[  324.112613][ T7435] team0: Port device geneve0 added
[  324.163416][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.174959][ T7449] infiniband Syz1: RDMA CMA: cma_listen_on_dev, error -98
[  324.176080][   T29] audit: type=1400 audit(324.170:64890): avc:  denied  { write } for  pid=7446 comm="syz.0.8478" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  324.218332][   T29] audit: type=1400 audit(324.210:64891): avc:  denied  { bind } for  pid=7447 comm="syz.3.8480" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  324.245970][ T7465] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  324.317434][ T7478] random: crng reseeded on system resumption
[  324.317866][ T7480] netlink: 'syz.3.8489': attribute type 5 has an invalid length.
[  324.362986][ T7484] 9pnet: Could not find request transport: f
[  324.648709][ T7558] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  324.710735][ T7572] loop2: detected capacity change from 0 to 1024
[  324.719098][ T7572] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  324.759425][ T7572] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  324.820492][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.925434][ T7609] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8539'.
[  324.935167][ T7609] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  324.944194][ T7609] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (1)
[  324.957648][ T7617] sch_tbf: peakrate 6 is lower than or equals to rate 705765376 !
[  324.979551][ T7615] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8542'.
[  324.989970][ T7613] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  324.998226][ T7613] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  325.019453][ T7625] vcan0: entered allmulticast mode
[  325.033516][ T7630] IPv6: sit1: Disabled Multicast RS
[  325.039891][ T7630] sit1: entered allmulticast mode
[  325.050321][ T7625] vcan0: left allmulticast mode
[  325.060591][ T7634] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8549'.
[  325.103490][ T7644] x_tables: eb_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 0
[  325.108726][ T7650] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  325.231110][ T7673] netlink: 60 bytes leftover after parsing attributes in process `syz.0.8564'.
[  325.253955][ T7686] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  325.370686][ T7725] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  325.388195][ T7723] netlink: 272 bytes leftover after parsing attributes in process `syz.0.8578'.
[  325.440475][ T7739] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  325.448762][ T7739] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  325.456963][ T7739] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  325.465298][ T7739] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  325.473857][ T7739] vxlan0: entered promiscuous mode
[  325.479009][ T7739] vxlan0: entered allmulticast mode
[  325.486571][ T7739] netdevsim netdevsim1 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  325.491935][ T7737] loop2: detected capacity change from 0 to 512
[  325.494997][ T7739] netdevsim netdevsim1 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  325.502769][ T7737] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  325.509642][ T7739] netdevsim netdevsim1 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  325.509676][ T7739] netdevsim netdevsim1 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  325.531575][ T7737] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  325.552240][ T7737] EXT4-fs (loop2): 1 truncate cleaned up
[  325.558575][ T7737] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.593013][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.658719][ T7757] No such timeout policy "syz0"
[  326.417572][    C1] vxcan1: j1939_tp_rxtimer: 0xffff88812ce91000: rx timeout, send abort
[  326.425951][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff88812ce91000: 0x0ff00: (3) A timeout occurred and this is the connection abort to close the session.
[  326.500258][ T7772] loop3: detected capacity change from 0 to 512
[  326.508459][ T7787] netlink: 'syz.2.8597': attribute type 21 has an invalid length.
[  326.516520][ T7788] netlink: 'syz.0.8595': attribute type 2 has an invalid length.
[  326.524419][ T7788] netlink: 'syz.0.8595': attribute type 3 has an invalid length.
[  326.532302][ T7788] netlink: 11346 bytes leftover after parsing attributes in process `syz.0.8595'.
[  326.553044][ T7772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.569790][ T7802] loop2: detected capacity change from 0 to 256
[  326.602811][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.684164][ T7828] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8609'.
[  326.741667][ T7842] loop3: detected capacity change from 0 to 1024
[  326.764871][ T7842] EXT4-fs: Ignoring removed nomblk_io_submit option
[  326.775697][ T7842] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  326.795906][ T7842] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c09c, mo2=0003]
[  326.808732][ T7842] System zones: 0-1, 3-36
[  326.815562][ T7842] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.873558][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.942888][ T7887] loop3: detected capacity change from 0 to 512
[  326.951447][ T7887] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  326.965059][ T7887] EXT4-fs (loop3): 1 truncate cleaned up
[  326.975364][ T7893] loop4: detected capacity change from 0 to 512
[  326.983031][ T7887] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.998842][ T7893] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  327.010071][ T7893] EXT4-fs (loop4): orphan cleanup on readonly fs
[  327.021918][ T7893] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #3: comm syz.4.8635: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  327.039884][ T7893] EXT4-fs error (device loop4): ext4_quota_enable:7056: comm syz.4.8635: Bad quota inode: 3, type: 0
[  327.064594][ T7893] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  327.079497][ T7893] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  327.098709][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.102283][ T7893] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  327.133558][ T7893] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  327.143583][ T7893] EXT4-fs warning (device loop4): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[  327.171599][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.181401][ T7922] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  327.188898][ T7922] vhci_hcd: invalid port number 38
[  327.220549][ T7928] loop3: detected capacity change from 0 to 1024
[  327.230012][ T7928] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  327.249086][ T7928] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  327.301726][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.579410][ T7979] loop4: detected capacity change from 0 to 512
[  327.587704][ T7979] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  327.595812][ T7979] System zones: 0-2, 18-18, 34-34
[  327.601530][ T7979] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.8666: bg 0: block 248: padding at end of block bitmap is not set
[  327.616168][ T7979] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.8666: Failed to acquire dquot type 1
[  327.628410][ T7979] EXT4-fs (loop4): 1 truncate cleaned up
[  327.634530][ T7979] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.655466][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.675260][ T7985] loop4: detected capacity change from 0 to 512
[  327.699061][ T7985] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.723270][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.747869][ T8033] atomic_op ffff8881147ff128 conn xmit_atomic 0000000000000000
[  333.755747][ T8031] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8677'.
[  333.818974][   T29] kauditd_printk_skb: 166 callbacks suppressed
[  333.818986][   T29] audit: type=1326 audit(333.810:65056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  333.837473][ T3340] IPVS: starting estimator thread 0...
[  333.848225][   T29] audit: type=1326 audit(333.810:65057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  333.863379][ T8051] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  333.876546][   T29] audit: type=1326 audit(333.810:65058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  333.909925][   T29] audit: type=1326 audit(333.810:65059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  333.943407][   T29] audit: type=1326 audit(333.880:65060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  333.966322][   T29] audit: type=1326 audit(333.920:65061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  333.989207][   T29] audit: type=1326 audit(333.920:65062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  334.012090][   T29] audit: type=1326 audit(333.920:65063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  334.034963][   T29] audit: type=1326 audit(333.920:65064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  334.036545][ T8052] IPVS: using max 2736 ests per chain, 136800 per kthread
[  334.057887][   T29] audit: type=1326 audit(333.920:65065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8044 comm="syz.3.8684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f5107abdef9 code=0x7ffc0000
[  334.130970][ T8077] tmpfs: Bad value for 'mpol'
[  334.223057][ T8096] loop3: detected capacity change from 0 to 512
[  334.245124][ T8096] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.262638][ T8108] geneve2: entered promiscuous mode
[  334.268083][ T8108] geneve2: entered allmulticast mode
[  334.285462][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.325499][ T8128] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  334.370548][ T8143] SELinux:  policydb version -1682183729 does not match my version range 15-33
[  334.380742][ T8143] SELinux: failed to load policy
[  334.665169][ T8195] loop4: detected capacity change from 0 to 512
[  334.717298][ T8195] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.743714][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.948346][ T8225] devtmpfs: Unknown parameter '&'
[  334.990250][ T8234] loop4: detected capacity change from 0 to 164
[  334.997647][ T8234] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  335.059675][ T8252] ref_ctr_offset mismatch. inode: 0x4c1 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[  335.103197][T10490] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x6
[  335.234460][ T8275] netlink: 256 bytes leftover after parsing attributes in process `syz.0.8770'.
[  335.269006][ T8283] loop2: detected capacity change from 0 to 1024
[  335.285071][ T8283] EXT4-fs: Ignoring removed orlov option
[  335.290785][ T8283] EXT4-fs: Ignoring removed nomblk_io_submit option
[  335.341670][ T8295] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8776'.
[  335.352316][ T8283] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  335.431556][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.519391][ T8365] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  335.552378][ T8375] syz.4.8793[8375] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.552438][ T8375] syz.4.8793[8375] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.576493][ T8375] syz.4.8793[8375] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.616317][ T8370] ebtables: ebtables: counters copy to user failed while replacing table
[  335.703024][ T8405] loop4: detected capacity change from 0 to 2048
[  335.712452][ T8405] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  335.740812][ T8415] xt_CT: You must specify a L4 protocol and not use inversions on it
[  335.778052][ T8423] syz.1.8812[8423] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.786633][ T8423] syz.1.8812[8423] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.798572][ T8423] syz.1.8812[8423] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.919675][ T8445] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8820'.
[  335.941922][ T8445] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8820'.
[  336.045373][ T8467] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  336.120598][ T8480] loop2: detected capacity change from 0 to 8192
[  336.177185][ T8480]  loop2: p1 p2 p3 p4
[  336.181265][ T8480] loop2: p1 size 108922248 extends beyond EOD, truncated
[  336.188773][ T8480] loop2: p2 start 861536256 is beyond EOD, truncated
[  336.195476][ T8480] loop2: p3 start 851968 is beyond EOD, truncated
[  336.201910][ T8480] loop2: p4 size 65536 extends beyond EOD, truncated
[  336.373672][ T8542] syz.1.8844[8542] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  336.373797][ T8542] syz.1.8844[8542] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  336.385353][ T8542] syz.1.8844[8542] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  336.444457][ T8554] loop3: detected capacity change from 0 to 512
[  336.463580][ T8554] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  336.501904][ T8554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.547977][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.782813][ T8605] loop2: detected capacity change from 0 to 2048
[  336.790154][ T8611] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8871'.
[  336.799971][ T8611] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8871'.
[  336.814390][ T8605] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  336.845645][ T8611] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8871'.
[  336.858767][ T8605] Invalid ELF header len 4
[  336.863317][ T8611] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8871'.
[  336.879972][ T8621] loop3: detected capacity change from 0 to 2048
[  336.893190][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.903826][ T8621] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  336.927379][ T8611] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8871'.
[  336.951510][ T8635] loop2: detected capacity change from 0 to 1024
[  336.958299][ T8635] EXT4-fs: Ignoring removed bh option
[  336.965240][ T8635] EXT4-fs (loop2): stripe (58) is not aligned with cluster size (16), stripe is disabled
[  336.983069][ T8635] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.009898][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.074241][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.111735][ T8675] loop3: detected capacity change from 0 to 512
[  337.132259][ T8675] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  337.345353][ T8729] IPv6: NLM_F_REPLACE set, but no existing node found!
[  337.429292][ T8695] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  337.442302][ T8695] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  337.443936][ T8750] loop3: detected capacity change from 0 to 128
[  337.476576][ T8750] syz.3.8916: attempt to access beyond end of device
[  337.476576][ T8750] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  337.490111][ T8750] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  337.528411][ T8763] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[  337.540791][ T8766] Cannot find set identified by id 0 to match
[  337.571050][ T8770] loop3: detected capacity change from 0 to 128
[  337.577725][ T8770] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  337.590659][ T8770] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  337.669792][ T8785] loop3: detected capacity change from 0 to 512
[  337.688418][ T8785] EXT4-fs error (device loop3): ext4_orphan_get:1388: inode #15: comm syz.3.8930: iget: bad extended attribute block 1
[  337.702037][ T8785] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.8930: couldn't read orphan inode 15 (err -117)
[  337.714743][ T8785] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.743898][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.768046][ T8790] tipc: Started in network mode
[  337.772981][ T8790] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  337.782563][ T8790] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  337.790873][ T8790] tipc: Enabled bearer <udp:syz1>, priority 10
[  337.813821][ T8800] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ümý¼§6°'ßtÿT	ð#>÷‰r¹[›5´
[  337.827137][ T8799] loop4: detected capacity change from 0 to 512
[  337.837967][ T8799] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  337.846043][ T8799] System zones: 0-2, 18-18, 34-34
[  337.851746][ T8799] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.8936: bg 0: block 248: padding at end of block bitmap is not set
[  337.867337][ T8799] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.8936: Failed to acquire dquot type 1
[  337.879202][ T8799] EXT4-fs (loop4): 1 truncate cleaned up
[  337.885193][ T8799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.911383][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.945140][ T8808] ebtables: ebtables: counters copy to user failed while replacing table
[  338.059586][ T8845] netlink: 'syz.4.8955': attribute type 7 has an invalid length.
[  338.067413][ T8845] netlink: 'syz.4.8955': attribute type 8 has an invalid length.
[  338.163594][ T8853] loop2: detected capacity change from 0 to 2048
[  338.177836][ T8853] EXT4-fs (loop2): corrupt root inode, run e2fsck
[  338.184425][ T8853] EXT4-fs (loop2): mount failed
[  338.193567][ T8859] unsupported nlmsg_type 40
[  338.509826][ T8893] bridge0: port 3(vlan2) entered blocking state
[  338.516195][ T8893] bridge0: port 3(vlan2) entered disabled state
[  338.522872][ T8893] vlan2: entered allmulticast mode
[  338.528650][ T8893] vlan2: left allmulticast mode
[  338.620566][ T8901] block device autoloading is deprecated and will be removed.
[  338.791030][ T8923] SELinux:  Context system_u:object_r:useradd_exec_t:s0 is not valid (left unmapped).
[  338.827864][ T8927] bridge: RTM_DELNEIGH with unconfigured vlan 2 on bridge_slave_0
[  338.838656][   T29] kauditd_printk_skb: 258 callbacks suppressed
[  338.838676][   T29] audit: type=1326 audit(338.830:65322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  338.867853][   T29] audit: type=1326 audit(338.830:65323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  338.891195][   T29] audit: type=1326 audit(338.830:65324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  338.914239][   T29] audit: type=1326 audit(338.830:65325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  338.937195][   T29] audit: type=1326 audit(338.830:65326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  338.946915][    T9] tipc: Node number set to 1
[  338.960150][   T29] audit: type=1326 audit(338.830:65327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  338.987771][   T29] audit: type=1326 audit(338.830:65328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  339.011016][   T29] audit: type=1326 audit(338.830:65329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  339.033990][   T29] audit: type=1326 audit(338.830:65330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  339.056973][   T29] audit: type=1326 audit(338.830:65331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8928 comm="syz.1.8989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f368ecfdef9 code=0x7ffc0000
[  339.143485][ T8955] loop0: detected capacity change from 0 to 4096
[  339.155835][ T8955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.183559][ T2077] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.217821][ T8969] program syz.0.9003 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  339.260767][ T8981] loop0: detected capacity change from 0 to 1
[  339.283277][ T8987] program syz.0.9010 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  339.354655][ T9001] loop2: detected capacity change from 0 to 128
[  339.374530][ T9001] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  339.408195][ T3535] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  339.439233][ T9025] loop2: detected capacity change from 0 to 1024
[  339.446083][ T9025] EXT4-fs: Ignoring removed nomblk_io_submit option
[  339.454514][ T9025] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  339.465401][ T9029] serio: Serial port ptm0
[  339.473087][ T9025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.489585][ T9025] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  339.508752][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.514172][ T9036] netlink: 'syz.4.9029': attribute type 21 has an invalid length.
[  339.546386][ T9042] No such timeout policy "syz0"
[  339.567634][ T9047] netlink: 'syz.2.9039': attribute type 2 has an invalid length.
[  339.575392][ T9047] netlink: 'syz.2.9039': attribute type 3 has an invalid length.
[  339.583127][ T9047] __nla_validate_parse: 8 callbacks suppressed
[  339.583140][ T9047] netlink: 11346 bytes leftover after parsing attributes in process `syz.2.9039'.
[  339.907690][ T9122] loop2: detected capacity change from 0 to 512
[  339.914711][ T9122] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  339.924713][ T9122] EXT4-fs (loop2): orphan cleanup on readonly fs
[  339.931948][ T9122] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #3: comm syz.2.9053: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  339.950129][ T9122] EXT4-fs error (device loop2): ext4_quota_enable:7056: comm syz.2.9053: Bad quota inode: 3, type: 0
[  339.965809][ T9122] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  339.980678][ T9122] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  339.987749][ T9122] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  340.002810][ T9130] loop4: detected capacity change from 0 to 512
[  340.009838][ T9130] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  340.020141][ T9122] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  340.031102][ T9122] EXT4-fs warning (device loop2): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[  340.042210][ T9130] EXT4-fs (loop4): 1 truncate cleaned up
[  340.048165][ T9130] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.061417][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.112076][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.297809][ T9173] vcan0: entered allmulticast mode
[  341.303384][ T9173] vcan0: left allmulticast mode
[  341.324346][ T9177] loop2: detected capacity change from 0 to 512
[  341.334454][ T9177] EXT4-fs: Ignoring removed mblk_io_submit option
[  341.337080][ T9181] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9078'.
[  341.352456][ T9181] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  341.361299][ T9181] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (1)
[  341.369123][ T9177] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.9076: corrupted in-inode xattr: invalid ea_ino
[  341.401508][ T9177] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.9076: couldn't read orphan inode 15 (err -117)
[  341.422211][ T9177] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  341.453458][ T9177] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  341.461767][ T9177] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  341.510485][ T9208] loop0: detected capacity change from 0 to 512
[  341.517371][ T9209] random: crng reseeded on system resumption
[  341.533918][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.593571][ T9208] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.610377][ T9208] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.9097: Failed to acquire dquot type 0
[  341.629512][ T9229] netlink: 'syz.2.9095': attribute type 10 has an invalid length.
[  341.646330][ T2077] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.684872][ T9229] team0: Port device geneve0 added
[  341.700863][ T9244] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9103'.
[  341.782787][ T9266] loop3: detected capacity change from 0 to 512
[  341.798797][ T9266] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.813884][ T9266] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.9110: Failed to acquire dquot type 0
[  341.837308][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.868874][ T9286] IPv6: sit1: Disabled Multicast RS
[  341.875057][ T9286] sit1: entered allmulticast mode
[  341.890173][ T9288] netlink: 60 bytes leftover after parsing attributes in process `syz.4.9115'.
[  341.981992][ T9301] infiniband Syz1: RDMA CMA: cma_listen_on_dev, error -98
[  342.033140][ T9324] loop2: detected capacity change from 0 to 512
[  342.052262][ T9324] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.074826][ T9324] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.9125: Failed to acquire dquot type 0
[  342.094746][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.147612][ T9340] netlink: 'syz.1.9129': attribute type 21 has an invalid length.
[  342.159182][ T9342] loop4: detected capacity change from 0 to 256
[  342.273171][ T9357] netlink: 'syz.4.9139': attribute type 2 has an invalid length.
[  342.280978][ T9357] netlink: 'syz.4.9139': attribute type 3 has an invalid length.
[  342.288719][ T9357] netlink: 11346 bytes leftover after parsing attributes in process `syz.4.9139'.
[  342.997875][    C1] vxcan1: j1939_tp_rxtimer: 0xffff888111f5b600: rx timeout, send abort
[  343.006186][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff888111f5b600: 0x0ff00: (3) A timeout occurred and this is the connection abort to close the session.
[  343.044664][ T9380] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9146'.
[  343.085503][ T9385] No such timeout policy "syz0"
[  343.128325][ T9394] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  343.137214][ T9394] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  343.146020][ T9394] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  343.154845][ T9394] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  343.163732][ T9394] vxlan0: entered promiscuous mode
[  343.168996][ T9394] vxlan0: entered allmulticast mode
[  343.176606][ T9394] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  343.185582][ T9394] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  343.194559][ T9394] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  343.203605][ T9394] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  343.220793][ T9398] netlink: 'syz.1.9153': attribute type 2 has an invalid length.
[  343.228622][ T9398] netlink: 'syz.1.9153': attribute type 3 has an invalid length.
[  343.236512][ T9398] netlink: 11346 bytes leftover after parsing attributes in process `syz.1.9153'.
[  343.325026][ T9420] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9159'.
[  343.371336][ T9430] loop2: detected capacity change from 0 to 512
[  343.382654][ T9432] loop3: detected capacity change from 0 to 512
[  343.390550][ T9430] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  343.401445][ T9432] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  343.412131][ T9432] EXT4-fs (loop3): orphan cleanup on readonly fs
[  343.418771][ T9432] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #3: comm syz.3.9167: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  343.437960][ T9432] EXT4-fs error (device loop3): ext4_quota_enable:7056: comm syz.3.9167: Bad quota inode: 3, type: 0
[  343.450424][ T9430] EXT4-fs (loop2): 1 truncate cleaned up
[  343.456601][ T9430] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.465863][ T9445] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  343.473822][ T9432] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  343.478049][ T9445] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  343.492697][ T9432] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  343.501361][ T9445] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  343.516837][ T9445] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  343.525685][ T9445] vxlan0: entered promiscuous mode
[  343.530946][ T9445] vxlan0: entered allmulticast mode
[  343.540858][ T9432] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  343.553449][ T9445] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  343.562437][ T9445] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  343.571528][ T9445] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  343.580482][ T9445] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  343.605940][ T9432] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  343.609079][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.615596][ T9432] EXT4-fs warning (device loop3): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[  343.652332][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.671401][ T9459] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9176'.
[  345.018725][   T29] kauditd_printk_skb: 232 callbacks suppressed
[  345.018738][   T29] audit: type=1326 audit(345.010:65558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9484 comm="syz.0.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  345.047863][   T29] audit: type=1326 audit(345.010:65559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9484 comm="syz.0.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  345.071299][   T29] audit: type=1326 audit(345.010:65560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9484 comm="syz.0.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  345.094294][   T29] audit: type=1400 audit(345.040:65561): avc:  denied  { name_bind } for  pid=9486 comm="syz.3.9184" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  345.115794][   T29] audit: type=1400 audit(345.040:65562): avc:  denied  { node_bind } for  pid=9486 comm="syz.3.9184" saddr=224.0.0.1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  345.145791][   T29] audit: type=1400 audit(345.130:65563): avc:  denied  { read append } for  pid=9491 comm="syz.2.9197" name="rtc0" dev="devtmpfs" ino=220 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  345.152725][ T9495] loop3: detected capacity change from 0 to 128
[  345.168867][   T29] audit: type=1400 audit(345.130:65564): avc:  denied  { open } for  pid=9491 comm="syz.2.9197" path="/dev/rtc0" dev="devtmpfs" ino=220 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  345.198100][   T29] audit: type=1400 audit(345.130:65565): avc:  denied  { ioctl } for  pid=9491 comm="syz.2.9197" path="/dev/rtc0" dev="devtmpfs" ino=220 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  345.222687][   T29] audit: type=1326 audit(345.170:65566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9484 comm="syz.0.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  345.245628][   T29] audit: type=1326 audit(345.170:65567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9484 comm="syz.0.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  345.301558][ T9501] loop2: detected capacity change from 0 to 512
[  345.318338][ T9501] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  345.328410][ T9501] System zones: 0-2, 18-18, 34-34
[  345.335591][ T9501] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.9189: bg 0: block 248: padding at end of block bitmap is not set
[  345.357287][ T9501] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.9189: Failed to acquire dquot type 1
[  345.394855][ T9536] loop0: detected capacity change from 0 to 128
[  345.401998][ T9501] EXT4-fs (loop2): 1 truncate cleaned up
[  345.402845][ T9536] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  345.408867][ T9501] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.443685][ T9536] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:406: inode #2: comm syz.0.9194: No space for directory leaf checksum. Please run e2fsck -D.
[  345.459180][ T9536] EXT4-fs error (device loop0): __ext4_find_entry:1652: inode #2: comm syz.0.9194: checksumming directory block 0
[  345.490350][ T2077] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  345.871256][ T9548] loop4: detected capacity change from 0 to 512
[  345.883145][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.896039][ T9548] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.944650][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.961323][ T9573] loop0: detected capacity change from 0 to 512
[  345.978419][ T9573] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  346.004648][ T9573] EXT4-fs (loop0): 1 truncate cleaned up
[  346.011780][ T9573] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.014922][ T9589] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  346.077511][ T9598] SELinux:  policydb version -1682183729 does not match my version range 15-33
[  346.086621][ T9598] SELinux: failed to load policy
[  346.099319][ T2077] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.130784][ T9610] loop0: detected capacity change from 0 to 512
[  346.148366][ T9610] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  346.156423][ T9610] System zones: 0-2, 18-18, 34-34
[  346.162105][ T9610] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.9216: bg 0: block 248: padding at end of block bitmap is not set
[  346.182758][ T9610] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.9216: Failed to acquire dquot type 1
[  346.206930][ T9610] EXT4-fs (loop0): 1 truncate cleaned up
[  346.212992][ T9610] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.263675][ T2077] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.275292][ T9650] loop3: detected capacity change from 0 to 164
[  346.283655][ T9650] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  346.369173][ T9666] ref_ctr_offset mismatch. inode: 0x5e1 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[  346.376347][T11218] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x6
[  346.438380][ T9676] SELinux:  policydb version -1682183729 does not match my version range 15-33
[  346.447662][ T9676] SELinux: failed to load policy
[  346.549560][ T9695] loop3: detected capacity change from 0 to 512
[  346.568481][ T9695] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  346.577913][ T9695] System zones: 0-2, 18-18, 34-34
[  346.584920][ T9695] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.9241: bg 0: block 248: padding at end of block bitmap is not set
[  346.601711][ T9695] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.9241: Failed to acquire dquot type 1
[  346.614966][ T9695] EXT4-fs (loop3): 1 truncate cleaned up
[  346.827384][ T9739] SELinux:  policydb version -1682183729 does not match my version range 15-33
[  346.836420][ T9739] SELinux: failed to load policy
[  346.944247][ T9758] syz.3.9257[9758] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  346.944361][ T9758] syz.3.9257[9758] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  346.956004][ T9758] syz.3.9257[9758] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.011642][ T9762] bridge0: port 3(vlan2) entered blocking state
[  347.029385][ T9762] bridge0: port 3(vlan2) entered disabled state
[  347.035802][ T9762] vlan2: entered allmulticast mode
[  347.041431][ T9762] vlan2: left allmulticast mode
[  347.078026][ T9772] netlink: 132 bytes leftover after parsing attributes in process `syz.4.9262'.
[  347.275283][ T9804] syz.0.9274[9804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.275364][ T9804] syz.0.9274[9804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.291102][ T9807] netlink: 132 bytes leftover after parsing attributes in process `syz.3.9275'.
[  347.302728][ T9809] serio: Serial port ptm0
[  347.313659][ T9804] syz.0.9274[9804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.404119][ T9841] loop0: detected capacity change from 0 to 1
[  347.481598][ T9855] program syz.1.9294 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  347.485779][ T9858] loop3: detected capacity change from 0 to 128
[  347.507002][ T9858] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  347.520429][ T9858] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  347.588276][ T9877] serio: Serial port ptm0
[  347.629747][ T9891] loop0: detected capacity change from 0 to 1
[  347.700366][ T9907] loop3: detected capacity change from 0 to 1024
[  347.732346][ T9916] loop2: detected capacity change from 0 to 128
[  347.739058][ T9916] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  347.752133][ T9913] loop3: detected capacity change from 0 to 2048
[  347.758753][ T9916] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  347.778999][ T9913] EXT4-fs (loop3): corrupt root inode, run e2fsck
[  347.785460][ T9913] EXT4-fs (loop3): mount failed
[  348.575585][ T9938] serio: Serial port ptm0
[  348.581051][ T9937] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9319'.
[  348.620692][ T9950] loop4: detected capacity change from 0 to 1024
[  348.627622][ T9950] EXT4-fs: Ignoring removed nomblk_io_submit option
[  348.642494][ T9950] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  348.660813][ T9956] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9323'.
[  348.661753][ T9961] loop3: detected capacity change from 0 to 512
[  348.669816][ T9956] netlink: 'syz.2.9323': attribute type 7 has an invalid length.
[  348.683874][ T9956] netlink: 'syz.2.9323': attribute type 8 has an invalid length.
[  348.691605][ T9956] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9323'.
[  348.702273][ T9950] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  348.709696][ T9961] EXT4-fs (loop3): shut down requested (0)
[  348.735203][ T9961] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  348.744480][ T9961] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  348.769357][ T9973] loop4: detected capacity change from 0 to 512
[  348.777659][ T9973] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  348.793749][ T9973] EXT4-fs error (device loop4): __ext4_fill_super:5458: inode #2: comm syz.4.9328: iget: special inode unallocated
[  348.796298][ T9976] loop2: detected capacity change from 0 to 512
[  348.813551][ T9973] EXT4-fs (loop4): get root inode failed
[  348.819268][ T9973] EXT4-fs (loop4): mount failed
[  348.826469][ T9985] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9333'.
[  348.842688][ T9976] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.9331: corrupted inode contents
[  348.857057][ T9976] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.9331: mark_inode_dirty error
[  348.870588][ T9976] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.9331: corrupted inode contents
[  348.885354][ T9976] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.9331: mark_inode_dirty error
[  348.898837][ T9976] EXT4-fs error (device loop2): ext4_get_first_dir_block:3543: inode #18: comm syz.2.9331: directory missing '.'
[  348.932285][T10008] serio: Serial port ptm0
[  349.000451][T10019] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9340'.
[  349.009509][T10019] netlink: 'syz.0.9340': attribute type 7 has an invalid length.
[  349.017250][T10019] netlink: 'syz.0.9340': attribute type 8 has an invalid length.
[  349.024981][T10019] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9340'.
[  349.049186][T10023] bridge: RTM_DELNEIGH with unconfigured vlan 2 on bridge_slave_0
[  349.085840][T10025] ebtables: ebtables: counters copy to user failed while replacing table
[  349.174146][T10033] ebtables: ebtables: counters copy to user failed while replacing table
[  349.187257][T10044] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ümý¼§6°'ßtÿT	ð#>÷‰r¹[›5´
[  349.201366][T10046] loop0: detected capacity change from 0 to 512
[  349.218504][T10046] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  349.226637][T10046] System zones: 0-2, 18-18, 34-34
[  349.232392][T10046] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.9349: bg 0: block 248: padding at end of block bitmap is not set
[  349.241466][T10051] loop3: detected capacity change from 0 to 764
[  349.247841][T10046] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.9349: Failed to acquire dquot type 1
[  349.259616][T10051] iso9660: Unknown parameter 'ÿÿÿÿÿ'
[  349.269751][T10046] EXT4-fs (loop0): 1 truncate cleaned up
[  349.611809][T10067] bridge: RTM_DELNEIGH with unconfigured vlan 2 on bridge_slave_0
[  350.000219][T10099] loop0: detected capacity change from 0 to 128
[  350.001414][T10097] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ümý¼§6°'ßtÿT	ð#>÷‰r¹[›5´
[  350.008508][T10099] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  350.031602][T10099] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  350.046607][T10101] ebtables: ebtables: counters copy to user failed while replacing table
[  350.051654][   T29] kauditd_printk_skb: 238 callbacks suppressed
[  350.051666][   T29] audit: type=1400 audit(350.030:65798): avc:  denied  { remount } for  pid=10096 comm="syz.0.9376" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  350.100922][T10108] loop0: detected capacity change from 0 to 764
[  350.100976][T10110] loop2: detected capacity change from 0 to 512
[  350.107917][T10108] iso9660: Unknown parameter 'ÿÿÿÿÿ'
[  350.130369][T10110] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  350.155045][T10118] loop3: detected capacity change from 0 to 512
[  350.156761][T10110] System zones: 0-2, 18-18, 34-34
[  350.167688][T10118] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  350.185422][T10110] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.9367: bg 0: block 248: padding at end of block bitmap is not set
[  350.187154][T10120] Cannot find set identified by id 0 to match
[  350.216141][T10110] Quota error (device loop2): write_blk: dquota write failed
[  350.223630][T10110] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  350.227460][   T29] audit: type=1400 audit(350.220:65799): avc:  denied  { name_connect } for  pid=10124 comm="syz.4.9375" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  350.233759][T10110] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.9367: Failed to acquire dquot type 1
[  350.253428][T10118] EXT4-fs error (device loop3): __ext4_fill_super:5458: inode #2: comm syz.3.9370: iget: special inode unallocated
[  350.278780][   T29] audit: type=1400 audit(350.260:65800): avc:  denied  { listen } for  pid=10124 comm="syz.4.9375" lport=35168 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  350.301488][   T29] audit: type=1400 audit(350.260:65801): avc:  denied  { accept } for  pid=10124 comm="syz.4.9375" lport=35168 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  350.301528][   T29] audit: type=1400 audit(350.260:65802): avc:  denied  { setopt } for  pid=10124 comm="syz.4.9375" lport=35168 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  350.347892][   T29] audit: type=1400 audit(350.260:65803): avc:  denied  { write } for  pid=10124 comm="syz.4.9375" lport=35168 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  350.357729][T10129] loop4: detected capacity change from 0 to 128
[  350.373428][T10127] Cannot find set identified by id 0 to match
[  350.378046][T10118] EXT4-fs (loop3): get root inode failed
[  350.389785][T10118] EXT4-fs (loop3): mount failed
[  350.394742][T10110] EXT4-fs (loop2): 1 truncate cleaned up
[  350.423642][T10129] syz.4.9377: attempt to access beyond end of device
[  350.423642][T10129] loop4: rw=2049, sector=128, nr_sectors = 1 limit=128
[  350.437239][T10129] Buffer I/O error on dev loop4, logical block 128, lost async page write
[  350.456558][T10135] netlink: 152 bytes leftover after parsing attributes in process `syz.2.9378'.
[  350.463711][T10139] loop4: detected capacity change from 0 to 512
[  350.472267][T10139] ext4: Unknown parameter 'subj_type'
[  350.481393][   T29] audit: type=1400 audit(350.470:65804): avc:  denied  { create } for  pid=10138 comm="syz.4.9379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  350.501173][   T29] audit: type=1400 audit(350.470:65805): avc:  denied  { bind } for  pid=10138 comm="syz.4.9379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  350.506222][T10146] loop2: detected capacity change from 0 to 128
[  350.528370][T10146] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  350.532861][T10148] loop0: detected capacity change from 0 to 128
[  350.541189][T10146] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  350.565139][T10148] syz.0.9391: attempt to access beyond end of device
[  350.565139][T10148] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  350.578647][T10148] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  351.804835][T10184] loop0: detected capacity change from 0 to 2048
[  351.809367][T10181] loop2: detected capacity change from 0 to 512
[  351.819063][T10181] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  351.819352][T10182] loop3: detected capacity change from 0 to 512
[  351.840544][T10181] EXT4-fs (loop2): 1 orphan inode deleted
[  351.846387][T10181] EXT4-fs (loop2): 1 truncate cleaned up
[  351.855867][T10181] EXT4-fs error (device loop2): ext4_check_all_de:657: inode #12: block 7: comm syz.2.9389: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=124 fake=0
[  351.875641][T10182] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  351.876390][T10181] EXT4-fs (loop2): Remounting filesystem read-only
[  351.891568][T10182] System zones: 0-2, 18-18, 34-34
[  351.897644][T10182] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.9390: bg 0: block 248: padding at end of block bitmap is not set
[  351.912751][T10182] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.9390: Failed to acquire dquot type 1
[  351.924941][T10182] EXT4-fs (loop3): 1 truncate cleaned up
[  351.931848][T10196] IPv6: NLM_F_REPLACE set, but no existing node found!
[  351.958853][T10202] loop2: detected capacity change from 0 to 512
[  351.973311][T10202] ext4: Unknown parameter 'subj_type'
[  352.152935][T10229] netlink: 60 bytes leftover after parsing attributes in process `syz.0.9405'.
[  352.189251][T10238] loop3: detected capacity change from 0 to 512
[  352.200351][T10238] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  352.211703][T10238] EXT4-fs (loop3): 1 orphan inode deleted
[  352.217466][T10238] EXT4-fs (loop3): 1 truncate cleaned up
[  352.225990][T10238] EXT4-fs error (device loop3): ext4_check_all_de:657: inode #12: block 7: comm syz.3.9407: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=124 fake=0
[  352.245066][T10238] EXT4-fs (loop3): Remounting filesystem read-only
[  352.835562][T10251] loop0: detected capacity change from 0 to 2048
[  352.903093][T10251] Invalid ELF header len 4
[  353.037756][T10285] tmpfs: Bad value for 'mpol'
[  353.119283][T10305] geneve2: entered promiscuous mode
[  353.124570][T10305] geneve2: entered allmulticast mode
[  353.931490][T10322] tmpfs: Bad value for 'mpol'
[  353.971740][T10330] loop3: detected capacity change from 0 to 512
[  354.024273][T10344] loop2: detected capacity change from 0 to 512
[  354.032407][T10344] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  354.041120][T10342] devtmpfs: Unknown parameter '&'
[  354.116737][T10317] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  354.125538][T10317] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  354.142817][T10358] xt_CT: You must specify a L4 protocol and not use inversions on it
[  354.159526][T10363] ref_ctr_offset mismatch. inode: 0x74d offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[  354.165887][T10373] loop2: detected capacity change from 0 to 164
[  354.179446][T10473] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x6
[  354.195249][T10373] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  354.256591][T10383] ebtables: ebtables: counters copy to user failed while replacing table
[  354.283838][T10390] ref_ctr_offset mismatch. inode: 0x896 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[  354.320853][T10398] loop4: detected capacity change from 0 to 512
[  354.331111][T10398] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  354.362002][T10412] syz.1.9475[10412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.362063][T10412] syz.1.9475[10412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.373853][T10412] syz.1.9475[10412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.404201][T10408] xt_CT: You must specify a L4 protocol and not use inversions on it
[  354.511601][T11218] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x6
[  354.518730][T10440] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9486'.
[  354.529819][T10433] ebtables: ebtables: counters copy to user failed while replacing table
[  354.614088][T10531] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9500'.
[  354.615470][T10534] syz.3.9490[10534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.623463][T10534] syz.3.9490[10534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.635586][T10534] syz.3.9490[10534] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.718765][T10573] siw: device registration error -23
[  354.781052][T10588] siw: device registration error -23
[  354.841685][T11218] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x6
[  355.027928][T10633] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10633 comm=syz.0.9517
[  355.066285][T10606] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  355.075800][T10606] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  355.098276][   T29] kauditd_printk_skb: 139 callbacks suppressed
[  355.098288][   T29] audit: type=1326 audit(355.090:65943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.127850][   T29] audit: type=1326 audit(355.090:65944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.150954][   T29] audit: type=1326 audit(355.090:65945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.174021][   T29] audit: type=1326 audit(355.090:65946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.197046][   T29] audit: type=1326 audit(355.090:65947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.220093][   T29] audit: type=1326 audit(355.090:65948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.243215][   T29] audit: type=1326 audit(355.090:65949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.266204][   T29] audit: type=1326 audit(355.090:65950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.289132][   T29] audit: type=1326 audit(355.090:65951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.320103][   T29] audit: type=1326 audit(355.150:65952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10645 comm="syz.2.9522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  355.345310][T10652] syz.2.9525[10652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  355.345361][T10652] syz.2.9525[10652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  355.356976][T10652] syz.2.9525[10652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  355.497642][T10667] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10667 comm=syz.2.9530
[  355.625349][T10686] syzkaller0: renamed from bridge_slave_1 (while UP)
[  355.667338][T10692] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10692 comm=syz.1.9541
[  355.812139][T10730] syzkaller0: renamed from bridge_slave_1 (while UP)
[  355.833874][T10732] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10732 comm=syz.4.9557
[  355.978707][T10726] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  355.987406][T10726] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  356.657679][T10759] netem: change failed
[  356.692132][T10772] tipc: Enabled bearer <udp:syz2>, priority 10
[  356.698953][T10772] tipc: Disabling bearer <udp:syz2>
[  356.765131][T10782] loop3: detected capacity change from 0 to 256
[  356.811060][T10782] FAT-fs (loop3): Directory bread(block 64) failed
[  356.828370][T10782] FAT-fs (loop3): Directory bread(block 65) failed
[  356.834935][T10782] FAT-fs (loop3): Directory bread(block 66) failed
[  356.848116][T10782] FAT-fs (loop3): Directory bread(block 67) failed
[  356.860295][T10782] FAT-fs (loop3): Directory bread(block 68) failed
[  356.870626][T10782] FAT-fs (loop3): Directory bread(block 69) failed
[  356.891649][T10782] FAT-fs (loop3): Directory bread(block 70) failed
[  356.898450][T10782] FAT-fs (loop3): Directory bread(block 71) failed
[  356.904992][T10782] FAT-fs (loop3): Directory bread(block 72) failed
[  356.913142][T10782] FAT-fs (loop3): Directory bread(block 73) failed
[  356.969898][T10782] syz.3.9576: attempt to access beyond end of device
[  356.969898][T10782] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  356.984295][T10808] loop0: detected capacity change from 0 to 512
[  356.999961][T10782] syz.3.9576: attempt to access beyond end of device
[  356.999961][T10782] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[  357.017581][T10808] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.9588: corrupted in-inode xattr: invalid ea_ino
[  357.048824][T10808] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.9588: couldn't read orphan inode 15 (err -117)
[  357.076326][T10808] EXT4-fs mount: 28 callbacks suppressed
[  357.076340][T10808] EXT4-fs (loop0): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  357.108336][ T2077] EXT4-fs (loop0): unmounting filesystem 00000007-0000-0000-0000-000000000000.
[  357.251177][T10849] loop4: detected capacity change from 0 to 256
[  357.263096][T10849] FAT-fs (loop4): Directory bread(block 64) failed
[  357.269936][T10849] FAT-fs (loop4): Directory bread(block 65) failed
[  357.278831][T10849] FAT-fs (loop4): Directory bread(block 66) failed
[  357.285460][T10849] FAT-fs (loop4): Directory bread(block 67) failed
[  357.292526][T10849] FAT-fs (loop4): Directory bread(block 68) failed
[  357.313347][T10849] FAT-fs (loop4): Directory bread(block 69) failed
[  357.322473][T10849] FAT-fs (loop4): Directory bread(block 70) failed
[  357.332308][T10849] FAT-fs (loop4): Directory bread(block 71) failed
[  357.339666][T10849] FAT-fs (loop4): Directory bread(block 72) failed
[  357.346404][T10849] FAT-fs (loop4): Directory bread(block 73) failed
[  357.380985][T10849] syz.4.9605: attempt to access beyond end of device
[  357.380985][T10849] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  357.394881][T10849] syz.4.9605: attempt to access beyond end of device
[  357.394881][T10849] loop4: rw=0, sector=1736, nr_sectors = 8 limit=256
[  357.410503][T10871] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9614'.
[  357.542146][T10885] loop4: detected capacity change from 0 to 256
[  357.552999][T10885] FAT-fs (loop4): bogus number of FAT sectors
[  357.559179][T10885] FAT-fs (loop4): Can't find a valid FAT filesystem
[  357.654936][T10897] loop4: detected capacity change from 0 to 512
[  357.666079][T10897] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.9623: corrupted in-inode xattr: invalid ea_ino
[  357.680705][T10897] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.9623: couldn't read orphan inode 15 (err -117)
[  357.694965][T10897] EXT4-fs (loop4): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  357.723309][ T3529] EXT4-fs (loop4): unmounting filesystem 00000007-0000-0000-0000-000000000000.
[  357.836083][T10925] loop3: detected capacity change from 0 to 8192
[  357.843680][T10925] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  357.880737][T10935] netem: change failed
[  357.933194][T10953] sd 0:0:1:0: device reset
[  357.959601][T10957] 9pnet: Could not find request transport: f
[  358.000667][T10970] loop2: detected capacity change from 0 to 256
[  358.008107][T10970] FAT-fs (loop2): bogus number of FAT sectors
[  358.014191][T10970] FAT-fs (loop2): Can't find a valid FAT filesystem
[  359.080277][T11028] ieee802154 phy0 wpan0: encryption failed: -22
[  359.880140][T11041] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9680'.
[  359.899626][T11045] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  359.994118][T11066] syz.4.9691[11066] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  359.994172][T11066] syz.4.9691[11066] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.006753][T11066] syz.4.9691[11066] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.012557][    C0] vcan0: j1939_tp_rxtimer: 0xffff888115715000: rx timeout, send abort
[  360.037740][    C0] vcan0: j1939_tp_rxtimer: 0xffff888115795200: rx timeout, send abort
[  360.045962][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888115715000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  360.047049][    C1] hrtimer: interrupt took 27794 ns
[  360.060239][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888115795200: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  360.152360][   T29] kauditd_printk_skb: 135 callbacks suppressed
[  360.152374][   T29] audit: type=1400 audit(360.140:66088): avc:  denied  { mounton } for  pid=11074 comm="syz.1.9695" path="/466/file0" dev="tmpfs" ino=2419 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  360.192685][T11075] 9pnet: Could not find request transport: f
[  360.240573][   T29] audit: type=1326 audit(360.230:66089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.2.9699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  360.241479][T11083] sd 0:0:1:0: device reset
[  360.263807][   T29] audit: type=1326 audit(360.230:66090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.2.9699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  360.291239][   T29] audit: type=1326 audit(360.230:66091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.2.9699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  360.314885][   T29] audit: type=1400 audit(360.230:66092): avc:  denied  { create } for  pid=11082 comm="syz.3.9697" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  360.339758][   T29] audit: type=1326 audit(360.230:66093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.2.9699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  360.362855][   T29] audit: type=1326 audit(360.230:66094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.2.9699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  360.385931][   T29] audit: type=1326 audit(360.230:66095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.2.9699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9c7eeac890 code=0x7ffc0000
[  360.408892][   T29] audit: type=1326 audit(360.230:66096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.2.9699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  360.431917][   T29] audit: type=1326 audit(360.230:66097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.2.9699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  360.487431][T11094] tipc: Started in network mode
[  360.492349][T11094] tipc: Node identity ac1414aa, cluster identity 4711
[  360.500289][T11094] tipc: Enabled bearer <udp:syz2>, priority 10
[  360.507705][T11094] tipc: Disabling bearer <udp:syz2>
[  360.524430][T11100] syz.3.9706[11100] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.524555][T11100] syz.3.9706[11100] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.530278][T11102] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  360.544640][T11100] syz.3.9706[11100] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.643360][T11116] loop3: detected capacity change from 0 to 4096
[  360.663779][T11116] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.677838][T11116] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  360.693295][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.724873][T11128] tipc: Started in network mode
[  360.729810][T11128] tipc: Node identity ac1414aa, cluster identity 4711
[  360.736761][T11128] tipc: Enabled bearer <udp:syz2>, priority 10
[  360.744202][T11128] tipc: Disabling bearer <udp:syz2>
[  360.773897][T11134] syz.0.9720[11134] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.773994][T11134] syz.0.9720[11134] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.785545][T11134] syz.0.9720[11134] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  361.274333][T11154] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9727'.
[  361.303344][T11156] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  361.552345][T11185] serio: Serial port ptm0
[  361.622158][T11194] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9742'.
[  361.683917][T11204] bridge0: port 1(bridge_slave_0) entered disabled state
[  361.694105][T11204] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.701349][T11204] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.766807][T11221] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9752'.
[  361.785497][T11221] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9752'.
[  362.407746][T11248] loop2: detected capacity change from 0 to 4096
[  362.429325][T11248] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.444850][T11248] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  362.462902][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.472131][T11258] ieee802154 phy0 wpan0: encryption failed: -22
[  362.572744][T11279] netlink: 'syz.2.9774': attribute type 3 has an invalid length.
[  362.674300][T11287] loop4: detected capacity change from 0 to 4096
[  362.683570][T11287] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.699891][T11287] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  362.717405][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.140075][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813594e000: rx timeout, send abort
[  363.148376][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813594f600: rx timeout, send abort
[  363.157025][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88813594e000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  363.171399][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88813594f600: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  363.278685][T11332] serio: Serial port ptm0
[  363.287671][T11339] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.306748][T11339] bridge0: port 1(bridge_slave_0) entered blocking state
[  363.314025][T11339] bridge0: port 1(bridge_slave_0) entered forwarding state
[  363.387571][T11357] loop2: detected capacity change from 0 to 512
[  363.400182][T11357] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  363.442023][T11357] EXT4-fs (loop2): 1 truncate cleaned up
[  363.455608][T11357] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.481324][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.598210][T11386] netlink: 16 bytes leftover after parsing attributes in process `syz.1.9809'.
[  363.607740][T11386] netlink: 40 bytes leftover after parsing attributes in process `syz.1.9809'.
[  363.782159][T11414] ALSA: seq fatal error: cannot create timer (-19)
[  363.930949][T11460] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9837'.
[  363.940878][T11460] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9837'.
[  363.968132][T11465] netlink: 'syz.1.9839': attribute type 3 has an invalid length.
[  364.019054][T11472] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  364.068072][T11480] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9844'.
[  364.099233][T11494] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9860'.
[  364.108345][T11494] netlink: 40 bytes leftover after parsing attributes in process `syz.3.9860'.
[  364.143265][T11503] loop3: detected capacity change from 0 to 512
[  364.153270][T11503] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  364.167324][T11503] EXT4-fs (loop3): 1 truncate cleaned up
[  364.174589][T11503] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.203587][ T3886] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.284702][T11526] ALSA: seq fatal error: cannot create timer (-19)
[  364.643524][T11555] loop4: detected capacity change from 0 to 512
[  364.650782][T11555] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  364.662685][T11555] EXT4-fs (loop4): 1 truncate cleaned up
[  364.669383][T11555] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.697166][ T3529] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.717564][T11567] ALSA: seq fatal error: cannot create timer (-19)
[  364.993963][T11593] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  365.078759][T11606] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9891'.
[  365.148262][T11622] 9pnet_fd: p9_fd_create_tcp (11622): problem connecting socket to 127.0.0.1
[  365.164450][   T29] kauditd_printk_skb: 221 callbacks suppressed
[  365.164464][   T29] audit: type=1400 audit(365.150:66319): avc:  denied  { create } for  pid=11623 comm="syz.2.9897" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  365.191777][   T29] audit: type=1400 audit(365.150:66320): avc:  denied  { map } for  pid=11623 comm="syz.2.9897" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=96872 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  365.215745][   T29] audit: type=1400 audit(365.150:66321): avc:  denied  { read write } for  pid=11623 comm="syz.2.9897" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=96872 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  365.240123][   T29] audit: type=1326 audit(365.220:66322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11625 comm="syz.0.9898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  365.263277][   T29] audit: type=1326 audit(365.220:66323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11625 comm="syz.0.9898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  365.286225][   T29] audit: type=1326 audit(365.220:66324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11625 comm="syz.0.9898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  365.309237][   T29] audit: type=1326 audit(365.220:66325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11625 comm="syz.0.9898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  365.332164][   T29] audit: type=1326 audit(365.220:66326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11625 comm="syz.0.9898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  365.355176][   T29] audit: type=1326 audit(365.220:66327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11625 comm="syz.0.9898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  365.378259][   T29] audit: type=1326 audit(365.250:66328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11625 comm="syz.0.9898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e03e2def9 code=0x7ffc0000
[  365.481478][T11642] netlink: 3 bytes leftover after parsing attributes in process `syz.2.9906'.
[  365.490469][T11642] 0ªX¹¦À: renamed from caif0
[  365.496819][T11642] 0ªX¹¦À: entered allmulticast mode
[  365.502238][T11642] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  365.654112][T11678] netlink: 3 bytes leftover after parsing attributes in process `syz.0.9920'.
[  365.663535][T11678] 0ªX¹¦À: renamed from caif0
[  365.681020][T11678] 0ªX¹¦À: entered allmulticast mode
[  365.686281][T11678] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  365.820461][T11714] loop0: detected capacity change from 0 to 512
[  365.827890][T11714] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  365.852900][T11714] EXT4-fs (loop0): 1 truncate cleaned up
[  365.861839][T11725] 0ªX¹¦À: renamed from caif0
[  365.868401][T11714] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.882352][T11725] 0ªX¹¦À: entered allmulticast mode
[  365.887651][T11725] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  365.932895][ T2077] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.059526][T11768] bridge1: the hash_elasticity option has been deprecated and is always 16
[  366.157464][T11786] netem: change failed
[  366.478938][T11848] IPv6: NLM_F_CREATE should be specified when creating new route
[  366.535916][T11860] loop2: detected capacity change from 0 to 1024
[  366.548840][T11860] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.584207][ T3535] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.608710][T11870] 9pnet_fd: p9_fd_create_tcp (11870): problem connecting socket to 127.0.0.1
[  366.674962][T11883] SELinux: failed to load policy
[  367.131941][T11890] coredump: 1142(syz.1.10012): written to core: VMAs: 29, size 89030656; core: 60011182 bytes, pos 89038848
[  367.183973][T11934] 9pnet_fd: p9_fd_create_tcp (11934): problem connecting socket to 127.0.0.1
[  367.241351][T11940] Invalid ELF header magic: != ELF
[  367.332487][T11952] bridge1: the hash_elasticity option has been deprecated and is always 16
[  367.403224][T11961] bridge1: the hash_elasticity option has been deprecated and is always 16
[  367.518007][T11985] SELinux: failed to load policy
[  368.343517][T12018] SELinux: failed to load policy
[  368.619852][T12042] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  368.626391][T12042] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  368.633907][T12042] vhci_hcd vhci_hcd.0: Device attached
[  368.640114][T12044] vhci_hcd: connection closed
[  368.640276][T10456] vhci_hcd: stop threads
[  368.649312][T10456] vhci_hcd: release socket
[  368.653777][T10456] vhci_hcd: disconnect device
[  368.686014][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.693542][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.700995][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.708500][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.715998][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.723542][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.731070][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.738558][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.746035][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.753470][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.760890][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.768296][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.775701][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.783130][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.790667][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.798051][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.805456][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.812879][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.820390][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.827789][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.835622][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.843052][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.850471][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.857857][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.865274][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.872690][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.880152][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.887565][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.895036][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.902705][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.910410][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.917879][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.925329][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.932741][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.940131][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.947585][ T8260] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  368.956126][ T8260] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  369.163904][T12069] serio: Serial port ptm0
[  369.231530][T12075] syz.1.10065[12075] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  369.231656][T12075] syz.1.10065[12075] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  369.245732][T12075] syz.1.10065[12075] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  369.248611][T12077] SELinux: failed to load policy
[  369.910151][T12113] @: renamed from bond0 (while UP)
[  369.935137][T12118] SELinux: failed to load policy
[  369.991572][T12132] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  370.008041][T12131] __nla_validate_parse: 17 callbacks suppressed
[  370.008055][T12131] netlink: 132 bytes leftover after parsing attributes in process `syz.4.10085'.
[  370.026158][T12128] SELinux: failed to load policy
[  370.115393][T12154] IPv6: Can't replace route, no match found
[  370.119014][T12144] x_tables: eb_tables: snat.0 target: invalid size 16 (kernel) != (user) 0
[  370.172627][   T29] kauditd_printk_skb: 283 callbacks suppressed
[  370.172641][   T29] audit: type=1400 audit(370.160:66612): avc:  denied  { watch } for  pid=12166 comm="syz.4.10102" path="/467/file0" dev="tmpfs" ino=2446 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  370.240257][   T29] audit: type=1400 audit(370.230:66613): avc:  denied  { getopt } for  pid=12176 comm="syz.4.10107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  370.260406][   T29] audit: type=1326 audit(370.230:66614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.2.10108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  370.283943][   T29] audit: type=1326 audit(370.230:66615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.2.10108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  370.307123][   T29] audit: type=1326 audit(370.230:66616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.2.10108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  370.330150][   T29] audit: type=1326 audit(370.230:66617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.2.10108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  370.353322][   T29] audit: type=1326 audit(370.230:66618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.2.10108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  370.376364][   T29] audit: type=1326 audit(370.230:66619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.2.10108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  370.399470][   T29] audit: type=1326 audit(370.230:66620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.2.10108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  370.422611][   T29] audit: type=1326 audit(370.230:66621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12178 comm="syz.2.10108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c7eeadef9 code=0x7ffc0000
[  370.480460][T12190] wireguard0: entered promiscuous mode
[  370.485970][T12190] wireguard0: entered allmulticast mode
[  370.521301][T12205] netlink: 16 bytes leftover after parsing attributes in process `syz.4.10117'.
[  370.530414][T12205] netlink: 208 bytes leftover after parsing attributes in process `syz.4.10117'.
[  370.539888][T12205] netlink: 72 bytes leftover after parsing attributes in process `syz.4.10117'.
[  370.577433][T12211] ALSA: seq fatal error: cannot create timer (-22)
[  370.626316][T12221] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  370.848798][T12259] netlink: 'syz.2.10139': attribute type 3 has an invalid length.
[  370.983489][T12280] program syz.4.10148 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  370.995887][   T24] hid-generic 0000:3000000:0000.0016: unknown main item tag 0x4
[  371.003674][   T24] hid-generic 0000:3000000:0000.0016: unknown main item tag 0x2
[  371.011635][   T24] hid-generic 0000:3000000:0000.0016: unknown main item tag 0x3
[  371.020485][   T24] hid-generic 0000:3000000:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  372.582609][T12338] syz.2.10170[12338] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  372.582712][T12338] syz.2.10170[12338] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  372.595950][T12338] syz.2.10170[12338] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  372.684182][T12359] syz.2.10178[12359] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  372.697517][T12359] syz.2.10178[12359] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  372.709296][T12359] syz.2.10178[12359] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  372.818944][T12385] syz.0.10189[12385] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  372.858136][T12389] Cannot find add_set index 0 as target
[  373.119300][T12430] netem: incorrect ge model size
[  373.538412][T12455] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  374.339162][T12459] ==================================================================
[  374.347265][T12459] BUG: KCSAN: data-race in do_sys_poll / pollwake
[  374.353680][T12459] 
[  374.355992][T12459] write to 0xffffc90001b0fbd0 of 4 bytes by interrupt on cpu 0:
[  374.363612][T12459]  pollwake+0xbe/0x110
[  374.367674][T12459]  __wake_up+0x65/0xb0
[  374.371767][T12459]  bpf_ringbuf_notify+0x22/0x30
[  374.376618][T12459]  irq_work_run+0xdf/0x2c0
[  374.381034][T12459]  __sysvec_irq_work+0x23/0x1a0
[  374.385885][T12459]  sysvec_irq_work+0x66/0x80
[  374.390473][T12459]  asm_sysvec_irq_work+0x1a/0x20
[  374.395411][T12459]  default_send_IPI_self+0x38/0x80
[  374.400521][T12459]  arch_irq_work_raise+0x48/0x50
[  374.405457][T12459]  __irq_work_queue_local+0x82/0x1d0
[  374.410742][T12459]  irq_work_queue+0x85/0x120
[  374.415340][T12459]  bpf_ringbuf_discard+0xcd/0xf0
[  374.420361][T12459]  bpf_prog_fe0ed97373b08409+0x47/0x4b
[  374.425814][T12459]  bpf_trace_run3+0x10c/0x1d0
[  374.430487][T12459]  __traceiter_kmem_cache_free+0x33/0x50
[  374.436133][T12459]  kmem_cache_free+0x237/0x2d0
[  374.440898][T12459]  __kfree_skb+0x102/0x150
[  374.445312][T12459]  consume_skb+0x49/0x160
[  374.449631][T12459]  nft_synproxy_eval_v4+0x24e/0x2a0
[  374.454834][T12459]  nft_synproxy_do_eval+0x1cf/0x4a0
[  374.460052][T12459]  nft_synproxy_eval+0x29/0x40
[  374.464832][T12459]  nft_do_chain+0x213/0xcd0
[  374.469346][T12459]  nft_do_chain_inet+0x1da/0x200
[  374.474312][T12459]  nf_hook_slow+0x86/0x1b0
[  374.478738][T12459]  ip_local_deliver+0x185/0x1d0
[  374.483604][T12459]  ip_rcv_finish+0x193/0x1b0
[  374.488196][T12459]  ip_rcv+0x64/0x140
[  374.492108][T12459]  __netif_receive_skb+0x10a/0x280
[  374.497224][T12459]  process_backlog+0x22e/0x440
[  374.501993][T12459]  __napi_poll+0x63/0x3c0
[  374.506321][T12459]  net_rx_action+0x3a1/0x7f0
[  374.510911][T12459]  handle_softirqs+0xbf/0x280
[  374.515589][T12459]  run_ksoftirqd+0x1c/0x30
[  374.519999][T12459]  smpboot_thread_fn+0x31c/0x4c0
[  374.524933][T12459]  kthread+0x1d1/0x210
[  374.528994][T12459]  ret_from_fork+0x4b/0x60
[  374.533408][T12459]  ret_from_fork_asm+0x1a/0x30
[  374.538167][T12459] 
[  374.540480][T12459] read to 0xffffc90001b0fbd0 of 4 bytes by task 12459 on cpu 1:
[  374.548106][T12459]  do_sys_poll+0x986/0xc10
[  374.552521][T12459]  __se_sys_ppoll+0x1af/0x1f0
[  374.557187][T12459]  __x64_sys_ppoll+0x67/0x80
[  374.561774][T12459]  x64_sys_call+0xe71/0x2d60
[  374.566356][T12459]  do_syscall_64+0xc9/0x1c0
[  374.570850][T12459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.576731][T12459] 
[  374.579089][T12459] value changed: 0x00000000 -> 0x00000001
[  374.584799][T12459] 
[  374.587108][T12459] Reported by Kernel Concurrency Sanitizer on:
[  374.593268][T12459] CPU: 1 UID: 0 PID: 12459 Comm: syz.1.10222 Tainted: G        W          6.11.0-syzkaller-09959-gabf2050f51fd #0
[  374.605236][T12459] Tainted: [W]=WARN
[  374.609026][T12459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  374.619078][T12459] ==================================================================