last executing test programs:

1m28.152412454s ago: executing program 3 (id=177):
r0 = socket(0x1e, 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x70, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100cb3a, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r3 = dup3(r2, r0, 0x0)
recvmmsg(r3, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

1m28.033762105s ago: executing program 3 (id=184):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r1, 0x0, 0x8}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x14)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001840)=@newtaction={0xe6c, 0x30, 0x25, 0x0, 0x0, {}, [{0xe58, 0x1, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x3}, [{}, {0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xffffffff}, {0x0, 0x3}, {}, {0x0, 0x40, 0x0, 0x0, 0x3}, {}, {0x0, 0x9, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x400000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xdc79}, {0x0, 0x0, 0x1ff}, {}, {}, {}, {}, {0x6}, {}, {}, {}, {}, {}, {0xfffffffd}, {}, {}, {}, {}, {0x0, 0x6}, {}, {0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x7, 0x4}, {0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x8}, {0x3}, {0x3}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x8, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x10000000}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x800000}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x200}, {}, {}, {}, {0x0, 0xfffffffe, 0x0, 0x0, 0x2}, {}, {}, {}, {0x2}, {0x0, 0x6}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x5}, {0x80, 0x0, 0x0, 0x951b000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0xffffffff, 0x80000000}], [{0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}]}}, @TCA_PEDIT_KEYS_EX={0x4}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe6c}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)

1m27.394920304s ago: executing program 3 (id=194):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)

1m27.142913737s ago: executing program 3 (id=202):
prctl$PR_SET_NAME(0xf, 0x0)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[@ANYRES32=0x0], 0xfe, 0x1222, &(0x7f00000024c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f00000007c0)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x2000, {0x2a00, 0x80010000, 0x0, 0xe01, 0x0, 0x0, 0x0, 0x0, 0x1c, "001ea89d9bb7fb0000e60080b8785d96000100000000000000000000000000000000000000000000000000000000de000000000a00", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x0, 0x10000]}})

1m26.753596793s ago: executing program 3 (id=209):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)

1m26.284586279s ago: executing program 3 (id=218):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
dup3(r0, r0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x8b2d, &(0x7f0000000000))
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340), 0x0, 0x0, 0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000180), 0x280002, 0x0)
futimesat(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="4800000010004b0400000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800800080088a800000a000100aa"], 0x48}, 0x1, 0x0, 0x0, 0x24000080}, 0x4)

1m26.28436457s ago: executing program 32 (id=218):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
dup3(r0, r0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x8b2d, &(0x7f0000000000))
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340), 0x0, 0x0, 0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000180), 0x280002, 0x0)
futimesat(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="4800000010004b0400000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062726964676500000c0002800800080088a800000a000100aa"], 0x48}, 0x1, 0x0, 0x0, 0x24000080}, 0x4)

1m14.158044857s ago: executing program 0 (id=445):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r3, 0x0)
ftruncate(r3, 0xc17a)
io_setup(0x200, &(0x7f0000000140))

1m13.999455089s ago: executing program 0 (id=447):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x6a)
write$binfmt_elf32(r2, &(0x7f0000000040)=ANY=[], 0x69)
close(r2)
inotify_init()
inotify_add_watch(r2, &(0x7f0000000280)='./file0\x00', 0x41)
execve(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

1m13.93655038s ago: executing program 0 (id=450):
r0 = getuid()
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000b0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYRES64=r0, @ANYRESDEC, @ANYRESHEX=r0], 0x1, 0x539, &(0x7f00000023c0)="$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")

1m13.838138481s ago: executing program 0 (id=454):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x2, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
setns(r1, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x9100, &(0x7f0000000200)={0x0, 0x0, 0x100000}, 0x20)

1m13.776267032s ago: executing program 0 (id=458):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r3)
getsockname$packet(r3, &(0x7f0000000380)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=@newqdisc={0x2c, 0x24, 0xf1d, 0x1, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x2}, {0xffff, 0xffff}, {0xc, 0x4}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x0)

1m13.347753338s ago: executing program 0 (id=472):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000004c0)='kmem_cache_free\x00', r0}, 0x18)
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_page_alloc\x00'}, 0x10)
r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x400)
write$selinux_attr(r1, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
syz_clone(0xa0002280, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\x03\x00l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\xea\xe8\x015\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz\xc213\x9b\x87\xd5\x99\r\xa2P\x03\x1cl\x0f\xcb)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af', 0x0)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

1m13.293958069s ago: executing program 33 (id=472):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000004c0)='kmem_cache_free\x00', r0}, 0x18)
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_page_alloc\x00'}, 0x10)
r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x400)
write$selinux_attr(r1, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
syz_clone(0xa0002280, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\x03\x00l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\xea\xe8\x015\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz\xc213\x9b\x87\xd5\x99\r\xa2P\x03\x1cl\x0f\xcb)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af', 0x0)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

3.853280457s ago: executing program 5 (id=2001):
r0 = syz_usb_connect(0x2, 0x24, &(0x7f00000003c0)={{0x12, 0x1, 0x0, 0x5a, 0xe4, 0xc4, 0x10, 0x596, 0x1, 0x5f5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xd6, 0x0, 0x0, 0xb5, 0xe1, 0x45}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000000)={0x84, &(0x7f0000000500)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$evdev(&(0x7f0000001900), 0x0, 0x0)
ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f0000000d80))
r2 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x2556, 0x1000, 0x2, 0x24d}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x100847c0, 0x0, 0x1, 0x0, 0x0)
r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
write$char_usb(r5, &(0x7f0000000040)="e2", 0x1068)

3.196989546s ago: executing program 5 (id=1999):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000010a850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000003c0)='kmem_cache_free\x00', r2}, 0x18)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

2.544753915s ago: executing program 5 (id=2015):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000080000000a"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000500000000000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f00000002c0), &(0x7f0000000300)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffa}, [@call={0x85, 0x0, 0x0, 0x2c}]}, &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.316344918s ago: executing program 5 (id=2017):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, 0x0, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000002c0)={[{@journal_dev={'journal_dev', 0x3d, 0xffff}}, {@init_itable}, {@nojournal_checksum}, {@jqfmt_vfsv0}, {@nojournal_checksum}, {@noload}, {@inlinecrypt}]}, 0x2, 0x500, &(0x7f0000000500)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x1000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0xc0)
pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1f, 0x7800, 0x0, 0x3)

1.594571428s ago: executing program 5 (id=2025):
r0 = socket$tipc(0x1e, 0x5, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f00000002c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='kmem_cache_free\x00', r2, 0x0, 0xffffffffffffffff}, 0x9)
bind$tipc(r0, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x41}, 0x3}}, 0x10)
listen(r0, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0}, 0x0)
close(r3)
accept4(r0, 0x0, 0x0, 0x80000)

1.553789948s ago: executing program 5 (id=2027):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xfffffffffffffe76)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

1.259181182s ago: executing program 2 (id=2033):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000008", @ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = semget$private(0x0, 0x207, 0x0)
semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000003c0))

1.252008502s ago: executing program 2 (id=2035):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000008c0)={{r0}, &(0x7f0000000280), &(0x7f0000000580)='%ps    \x00'}, 0x20)
unshare(0x2040400)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x65, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000180)={0x3, 'netpci0\x00', {0x1}, 0x4})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01032757c38d085641a7260000000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x20040005}, 0x0)

1.217455703s ago: executing program 2 (id=2037):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r2, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
accept4(r2, 0x0, 0x0, 0x400000000000000)

1.119354845s ago: executing program 2 (id=2039):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = eventfd(0x800a6)
r1 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x3)
write$eventfd(r0, &(0x7f0000000000)=0xfffffffffffffffb, 0x8)

915.210417ms ago: executing program 6 (id=2045):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000f9ffffff0000000000000000850000002c00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r0, 0x0, 0x25, 0x0, @val=@iter={0x0}}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2, 0x0, 0x178}, 0x18)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)

906.921887ms ago: executing program 1 (id=2046):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000008", @ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = semget$private(0x0, 0x207, 0x0)
semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000003c0))

900.311117ms ago: executing program 6 (id=2047):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000bc0)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r5, {0x0, 0xc}, {}, {0xa}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}}, 0x0)

814.747009ms ago: executing program 6 (id=2051):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
connect$inet(r2, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10)
sendmmsg$inet(r2, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x7e1f, 0x0}, 0xee0000b0}, {{0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000001100)="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", 0xc3}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="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", 0x9fd}], 0x3}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001700)="a6", 0x1}], 0x300}}], 0x3, 0x0)

767.367099ms ago: executing program 1 (id=2052):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mremap(&(0x7f0000156000/0x4000)=nil, 0x4000, 0x2000, 0x0, &(0x7f00004b9000/0x2000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)

619.538161ms ago: executing program 6 (id=2053):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, 0x0, 0x0)
bind$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x1, r1, 0x1, 0x0, 0x6, @random="0b0f9cdf76dc"}, 0x14)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xd, 0x2}, 0x8012, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500003c00028008000500010000001400070000000000"], 0x74}}, 0x0)

538.520782ms ago: executing program 6 (id=2056):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdir(&(0x7f0000000280)='./control\x00', 0xd)
r0 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x40)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
mkdirat(r0, &(0x7f0000000100)='./control\x00', 0x0)
unlinkat(r0, &(0x7f0000000140)='./control\x00', 0x200)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

453.387134ms ago: executing program 6 (id=2057):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
splice(r3, 0x0, r2, 0x0, 0x1, 0x0)
fcntl$setpipe(r2, 0x408, 0x7)

423.583214ms ago: executing program 4 (id=2059):
r0 = syz_open_dev$usbfs(0x0, 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r1}, &(0x7f0000000400), &(0x7f00000004c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r3, 0x0, 0x3}, 0x18)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})

384.971504ms ago: executing program 4 (id=2060):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
r2 = timerfd_create(0x5, 0x180000)
fchdir(r2)
timerfd_settime(r2, 0x3, 0x0, 0x0)

384.443995ms ago: executing program 4 (id=2061):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r2, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
accept4(r2, 0x0, 0x0, 0x400000000000000)

363.087335ms ago: executing program 4 (id=2062):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000003fffffe218110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x6, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r2}, 0x10)
setitimer(0x1, 0x0, 0x0)

295.325756ms ago: executing program 4 (id=2063):
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1000000}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

254.120066ms ago: executing program 2 (id=2064):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6312, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x200000000200}, 0x18)
sendto$inet6(r0, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x2}, 0x7}, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x0)

153.268398ms ago: executing program 2 (id=2065):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='tlb_flush\x00', r0}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
getpid()

132.658338ms ago: executing program 1 (id=2066):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)="1b", 0x1}], 0x1}}], 0x1, 0x240000d4)
r3 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvfrom$unix(r3, &(0x7f0000000140)=""/263, 0x40000, 0x0, 0x0, 0x0)

67.466749ms ago: executing program 1 (id=2067):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x68f}, 0x18)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000780)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "000400", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0xc2, 0x2000, 0x0, 0x7}}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000240)={@local, @link_local, @val={@void, {0x8100, 0x0, 0x0, 0x4}}, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0xfffc, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0x6}}}}}}, 0x0)

62.360069ms ago: executing program 1 (id=2068):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000001c0)=0x20000, 0x4)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000100)={&(0x7f0000000000)=""/5, 0x204000, 0x1000}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000040)=0x4000, 0x4)
bind$xdp(r0, &(0x7f00000002c0)={0x2c, 0x4, r2}, 0x10)

24.449779ms ago: executing program 4 (id=2069):
socket$key(0xf, 0x3, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000003800000000000001000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5df6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x1, 0x800001, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

0s ago: executing program 1 (id=2070):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000340)='./file5\x00', 0x20c006, &(0x7f0000000580)={[{@dioread_nolock}, {@grpjquota}, {@quota}, {@errors_remount}, {@nobh}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}]}, 0x1, 0x43d, &(0x7f0000000900)="$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")
chdir(0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000580), 0x4)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
connect$inet6(r1, &(0x7f00000003c0)={0xa, 0xfffe, 0x3000004, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r1, &(0x7f00000000c0)="8f2a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x5ac)

kernel console output (not intermixed with test programs):

 rev 1 because of new feature flag, running e2fsck is recommended
[   64.066869][ T5561] netlink: 'syz.1.590': attribute type 1 has an invalid length.
[   64.078653][ T5548] EXT4-fs (loop5): 1 truncate cleaned up
[   64.090055][ T5553] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   64.105937][ T5548] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.132910][ T5553] EXT4-fs error (device loop2): __ext4_new_inode:1279: comm syz.2.591: failed to insert inode 16: doubly allocated?
[   64.167785][ T5548] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.588: corrupted xattr block 19: bad e_name length
[   64.177589][ T5565] loop1: detected capacity change from 0 to 512
[   64.182648][ T5548] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[   64.224282][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.224500][ T5565] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.247568][ T5548] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.588: corrupted xattr block 19: bad e_name length
[   64.268633][ T5565] ext4 filesystem being mounted at /99/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.268764][ T5548] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[   64.288679][ T5548] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.588: Failed to acquire dquot type 0
[   64.334483][ T5571] netlink: 'syz.2.595': attribute type 1 has an invalid length.
[   64.343536][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.355736][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.371468][ T5571] 8021q: adding VLAN 0 to HW filter on device bond1
[   64.382092][ T5571] netlink: 4 bytes leftover after parsing attributes in process `syz.2.595'.
[   64.403380][ T5571] bond1 (unregistering): Released all slaves
[   64.481706][ T3459] tipc: Node number set to 1721565976
[   64.556639][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[   64.564529][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[   64.583334][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.591103][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.598904][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.606641][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.614388][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.622123][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.629860][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.637573][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.645264][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.652970][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.660642][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.668446][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.676194][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.683919][ T3389] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   64.695783][ T3389] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   64.799467][ T5612] rdma_rxe: rxe_newlink: failed to add ipvlan1
[   64.869339][ T5620] loop6: detected capacity change from 0 to 2048
[   64.879310][ T5619] ref_ctr_offset mismatch. inode: 0x2fd offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x6
[   64.929781][ T5620] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.054385][ T5627] random: crng reseeded on system resumption
[   65.060727][ T5625] EXT4-fs (loop6): shut down requested (0)
[   65.069945][ T5629] netlink: 5 bytes leftover after parsing attributes in process `syz.1.618'.
[   65.079070][ T5629] 0ªX¹¦D: renamed from gretap0
[   65.085919][ T5629] 0ªX¹¦D: entered allmulticast mode
[   65.093670][ T5629] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[   65.193248][   T29] kauditd_printk_skb: 86 callbacks suppressed
[   65.193320][   T29] audit: type=1326 audit(1746852279.142:1485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5626 comm="syz.2.617" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x0
[   65.276810][ T4991] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.351249][ T5641] unsupported nla_type 52263
[   65.389218][   T29] audit: type=1400 audit(1746852279.332:1486): avc:  denied  { shutdown } for  pid=5645 comm="syz.2.625" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   65.459449][   T29] audit: type=1400 audit(1746852279.402:1487): avc:  denied  { create } for  pid=5649 comm="syz.6.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   65.505273][ T5650] netlink: 52 bytes leftover after parsing attributes in process `syz.6.627'.
[   65.679196][ T5657] netlink: 8 bytes leftover after parsing attributes in process `syz.5.629'.
[   65.689274][ T5657] IPVS: Error joining to the multicast group
[   66.030016][ T5660] netlink: 36 bytes leftover after parsing attributes in process `syz.5.632'.
[   66.039388][ T5660] netlink: 36 bytes leftover after parsing attributes in process `syz.5.632'.
[   66.049815][ T5660] netlink: 36 bytes leftover after parsing attributes in process `syz.5.632'.
[   66.082221][   T29] audit: type=1326 audit(1746852280.032:1488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.5.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[   66.108576][ T5660] netlink: 36 bytes leftover after parsing attributes in process `syz.5.632'.
[   66.117727][ T5660] netlink: 36 bytes leftover after parsing attributes in process `syz.5.632'.
[   66.145479][   T29] audit: type=1326 audit(1746852280.062:1489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.5.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[   66.168938][   T29] audit: type=1326 audit(1746852280.062:1490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.5.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f19e3111225 code=0x7ffc0000
[   66.192379][   T29] audit: type=1326 audit(1746852280.082:1491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.5.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[   66.215738][   T29] audit: type=1326 audit(1746852280.082:1492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.5.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[   66.311177][   T29] audit: type=1326 audit(1746852280.192:1493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.5.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[   66.334710][   T29] audit: type=1326 audit(1746852280.192:1494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.5.632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[   66.385307][ T5676] loop6: detected capacity change from 0 to 1024
[   66.392291][ T5676] EXT4-fs: Ignoring removed orlov option
[   66.410174][ T5676] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.047253][ T5710] loop4: detected capacity change from 0 to 512
[   67.065339][ T5708] loop2: detected capacity change from 0 to 1024
[   67.101331][ T5708] EXT4-fs: Ignoring removed nobh option
[   67.107003][ T5708] EXT4-fs: Ignoring removed nobh option
[   67.130350][ T5710] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.151589][ T5710] ext4 filesystem being mounted at /125/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.283432][ T5708] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   67.315893][ T5708] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: comm syz.2.644: inode #4294967295: comm syz.2.644: iget: illegal inode #
[   67.392094][ T4991] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.423024][ T5708] EXT4-fs (loop2): no journal found
[   67.428331][ T5708] EXT4-fs (loop2): can't get journal size
[   67.443077][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.504835][ T5708] EXT4-fs (loop2): failed to initialize system zone (-22)
[   67.643490][ T5708] EXT4-fs (loop2): mount failed
[   68.470324][ T5760] loop1: detected capacity change from 0 to 1024
[   68.483688][ T5760] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.030679][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.124901][ T5701] syz.2.644 (5701) used greatest stack depth: 6208 bytes left
[   69.161471][ T5784] loop2: detected capacity change from 0 to 512
[   69.202435][ T5784] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.222158][ T5784] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.258434][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.303636][ T5794] loop2: detected capacity change from 0 to 2048
[   69.346893][ T5794] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.492514][ T5803] EXT4-fs (loop2): shut down requested (0)
[   69.595284][ T5801] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   69.603070][ T5800] tipc: Resetting bearer <eth:syzkaller0>
[   69.630353][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.647939][ T5800] tipc: Disabling bearer <eth:syzkaller0>
[   69.850573][ T5826] netlink: 'syz.4.685': attribute type 7 has an invalid length.
[   69.858411][ T5826] __nla_validate_parse: 5 callbacks suppressed
[   69.858426][ T5826] netlink: 8 bytes leftover after parsing attributes in process `syz.4.685'.
[   70.026443][ T5832] netlink: 'syz.6.687': attribute type 16 has an invalid length.
[   70.034344][ T5832] netlink: 'syz.6.687': attribute type 17 has an invalid length.
[   70.131771][ T5832] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   70.248691][   T29] kauditd_printk_skb: 32 callbacks suppressed
[   70.248705][   T29] audit: type=1400 audit(1746852284.192:1527): avc:  denied  { ioctl } for  pid=5844 comm="syz.1.693" path="socket:[12366]" dev="sockfs" ino=12366 ioctlcmd=0x48c8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   70.299604][ T5848] loop1: detected capacity change from 0 to 512
[   70.306825][ T5848] ext4: Unknown parameter 'uid>00000000000000060928'
[   70.326328][   T29] audit: type=1400 audit(1746852284.272:1528): avc:  denied  { remount } for  pid=5847 comm="syz.1.694" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   70.329888][ T5854] netlink: 'syz.6.697': attribute type 21 has an invalid length.
[   70.354107][ T5854] netlink: 152 bytes leftover after parsing attributes in process `syz.6.697'.
[   70.452844][ T5863] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: 0, delta: -1
[   70.461274][ T5863] ref_ctr decrement failed for inode: 0x1f6 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff8881094dc780
[   70.476234][ T5863] uprobe: syz.5.701:5863 failed to unregister, leaking uprobe
[   70.507953][ T5869] netlink: 8 bytes leftover after parsing attributes in process `syz.4.703'.
[   70.516883][ T5869] netlink: 8 bytes leftover after parsing attributes in process `syz.4.703'.
[   70.525906][ T5869] netlink: 8 bytes leftover after parsing attributes in process `syz.4.703'.
[   70.535570][ T5871] hub 9-0:1.0: USB hub found
[   70.540238][ T5871] hub 9-0:1.0: 8 ports detected
[   70.588214][ T5879] IPv4: Oversized IP packet from 127.202.26.0
[   70.588791][ T5877] loop1: detected capacity change from 0 to 164
[   70.635369][ T5877] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   70.644193][ T5883] netlink: 36 bytes leftover after parsing attributes in process `syz.2.711'.
[   70.653299][   T29] audit: type=1400 audit(1746852284.612:1529): avc:  denied  { mount } for  pid=5875 comm="syz.1.707" name="/" dev="loop1" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   70.653332][ T5883] netlink: 36 bytes leftover after parsing attributes in process `syz.2.711'.
[   70.681979][ T5877] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   70.694432][ T5883] netlink: 36 bytes leftover after parsing attributes in process `syz.2.711'.
[   70.750893][ T5877] Symlink component flag not implemented
[   70.756671][ T5877] Symlink component flag not implemented
[   70.772930][ T5877] Symlink component flag not implemented (7)
[   70.779156][ T5877] Symlink component flag not implemented (116)
[   70.787693][   T29] audit: type=1326 audit(1746852284.722:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.2.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   70.811181][   T29] audit: type=1326 audit(1746852284.722:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.2.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   70.879299][ T5883] netlink: 36 bytes leftover after parsing attributes in process `syz.2.711'.
[   70.888347][ T5883] netlink: 36 bytes leftover after parsing attributes in process `syz.2.711'.
[   70.897490][   T29] audit: type=1326 audit(1746852284.772:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.2.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   70.921006][   T29] audit: type=1326 audit(1746852284.772:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.2.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   70.944340][   T29] audit: type=1326 audit(1746852284.772:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5894 comm="syz.2.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7efe94f31225 code=0x7ffc0000
[   70.967676][   T29] audit: type=1400 audit(1746852284.782:1535): avc:  denied  { setcurrent } for  pid=5888 comm="syz.4.713" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   70.987157][   T29] audit: type=1401 audit(1746852284.782:1536): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[   71.034660][ T5905] tipc: Started in network mode
[   71.039591][ T5905] tipc: Node identity ac14140f, cluster identity 4711
[   71.048169][ T5905] tipc: New replicast peer: 10.1.1.2
[   71.053619][ T5905] tipc: Enabled bearer <udp:syz0>, priority 10
[   71.207973][ T5911] loop4: detected capacity change from 0 to 8192
[   71.214676][ T5911] vfat: Unknown parameter '01777777777777777777777ÿÿÿÿÿÿÿÿÿ'
[   71.643994][ T5931] loop4: detected capacity change from 0 to 2048
[   71.737454][ T5931] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.818674][ T5947] EXT4-fs (loop4): shut down requested (0)
[   71.921391][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.109238][ T5970] loop5: detected capacity change from 0 to 1024
[   72.147527][ T5970] EXT4-fs: Ignoring removed nobh option
[   72.153410][ T5970] EXT4-fs: Ignoring removed nobh option
[   72.172360][ T2968] tipc: Node number set to 2886997007
[   72.203638][ T5970] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   72.218700][ T5978] tipc: Started in network mode
[   72.223788][ T5978] tipc: Node identity c232747fe231, cluster identity 4711
[   72.230977][ T5978] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   72.244807][ T3844] tipc: Resetting bearer <eth:syzkaller0>
[   72.269036][ T5970] EXT4-fs error (device loop5): ext4_get_journal_inode:5798: comm syz.5.731: inode #4294967295: comm syz.5.731: iget: illegal inode #
[   72.285372][ T5980] loop1: detected capacity change from 0 to 2048
[   72.301857][ T5980] EXT4-fs: Ignoring removed bh option
[   72.311536][ T5976] tipc: Resetting bearer <eth:syzkaller0>
[   72.357278][ T5970] EXT4-fs (loop5): no journal found
[   72.362582][ T5970] EXT4-fs (loop5): can't get journal size
[   72.369292][ T5976] tipc: Disabling bearer <eth:syzkaller0>
[   72.377565][ T5980] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.447881][ T5970] EXT4-fs (loop5): failed to initialize system zone (-22)
[   72.468820][ T5980] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   72.512272][ T5980] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[   72.524681][ T5980] EXT4-fs (loop1): This should not happen!! Data will be lost
[   72.524681][ T5980] 
[   72.534504][ T5980] EXT4-fs (loop1): Total free blocks count 0
[   72.540675][ T5980] EXT4-fs (loop1): Free/Dirty block details
[   72.546707][ T5980] EXT4-fs (loop1): free_blocks=2415919104
[   72.552528][ T5980] EXT4-fs (loop1): dirty_blocks=48
[   72.557801][ T5980] EXT4-fs (loop1): Block reservation details
[   72.563981][ T5980] EXT4-fs (loop1): i_reserved_data_blocks=3
[   72.571689][ T5970] EXT4-fs (loop5): mount failed
[   72.613507][ T3838] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[   72.796785][ T6000] loop1: detected capacity change from 0 to 2048
[   72.962668][ T6000] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.063017][ T6027] EXT4-fs (loop1): shut down requested (0)
[   73.103121][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.437113][ T6073] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[   73.692613][ T6108] bridge: RTM_NEWNEIGH with invalid ether address
[   73.845634][ T6133] xt_hashlimit: size too large, truncated to 1048576
[   74.062975][ T6132] mmap: syz.1.773 (6132) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   74.428845][ T6168] loop4: detected capacity change from 0 to 512
[   74.456108][ T6168] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   74.503256][ T6168] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.522542][ T6168] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.566391][ T6168] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.616184][ T6168] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   74.638109][ T6168] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.638245][ T6181] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.682627][ T6168] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.708870][ T6168] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   74.725273][ T6181] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   74.744389][ T6168] EXT4-fs error (device loop4): ext4_get_inode_usage:884: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.777882][ T6181] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.809175][ T6183] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.841393][ T6181] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   74.843668][ T6184] syzkaller0: entered promiscuous mode
[   74.856067][ T6184] syzkaller0: entered allmulticast mode
[   74.884889][ T6183] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   74.903571][ T6168] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.927570][ T6183] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   74.963616][ T6168] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   74.977918][ T6168] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.786: corrupted xattr block 19: overlapping e_value 
[   75.021054][ T6181] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   75.034021][ T6168] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   75.084253][ T6181] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   75.206295][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.260794][ T6213] __nla_validate_parse: 22 callbacks suppressed
[   75.260813][ T6213] netlink: 96 bytes leftover after parsing attributes in process `syz.4.797'.
[   75.287764][ T6213] netlink: 'syz.4.797': attribute type 5 has an invalid length.
[   75.295544][ T6213] netlink: 44 bytes leftover after parsing attributes in process `syz.4.797'.
[   75.347280][ T6215] netlink: 16 bytes leftover after parsing attributes in process `syz.6.803'.
[   75.366841][   T29] kauditd_printk_skb: 54 callbacks suppressed
[   75.366859][   T29] audit: type=1400 audit(1746852289.312:1591): avc:  denied  { map } for  pid=6217 comm="syz.5.802" path="socket:[12798]" dev="sockfs" ino=12798 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[   75.417689][ T6221] syzkaller0: entered allmulticast mode
[   75.439975][ T6221] syzkaller0: entered promiscuous mode
[   75.464421][ T6221] syzkaller0 (unregistering): left promiscuous mode
[   75.471085][ T6221] syzkaller0 (unregistering): left allmulticast mode
[   75.514266][ T6227] tipc: New replicast peer: 255.255.255.83
[   75.520220][ T6227] tipc: Enabled bearer <udp:£ >, priority 10
[   75.649610][ T6246] veth1_macvtap: left promiscuous mode
[   75.656077][ T6246] macsec0: entered promiscuous mode
[   75.746898][ T6253] bond1: entered promiscuous mode
[   75.751496][ T6256] loop1: detected capacity change from 0 to 256
[   75.752095][ T6253] bond1: entered allmulticast mode
[   75.763542][   T29] audit: type=1326 audit(1746852289.682:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   75.786944][   T29] audit: type=1326 audit(1746852289.682:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   75.810590][   T29] audit: type=1326 audit(1746852289.682:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   75.834236][   T29] audit: type=1326 audit(1746852289.682:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   75.839587][ T6256] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   75.857865][   T29] audit: type=1326 audit(1746852289.682:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   75.857902][   T29] audit: type=1326 audit(1746852289.682:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   75.868661][ T6253] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.891364][   T29] audit: type=1326 audit(1746852289.682:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   75.944939][   T29] audit: type=1326 audit(1746852289.682:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   75.960625][ T6256] netlink: 4 bytes leftover after parsing attributes in process `syz.1.819'.
[   75.968625][   T29] audit: type=1326 audit(1746852289.682:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6251 comm="syz.2.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe94efe969 code=0x7ffc0000
[   76.045053][ T6253] bond1 (unregistering): Released all slaves
[   76.107519][ T6256] batman_adv: batadv0: Removing interface: batadv_slave_0
[   76.135187][ T6256] batman_adv: batadv0: Removing interface: batadv_slave_1
[   76.484238][ T6301] netlink: 'syz.5.839': attribute type 7 has an invalid length.
[   76.491985][ T6301] netlink: 8 bytes leftover after parsing attributes in process `syz.5.839'.
[   76.562976][ T6307] SELinux:  policydb version 0 does not match my version range 15-34
[   76.591797][ T6307] SELinux: failed to load policy
[   76.618652][ T6311] loop1: detected capacity change from 0 to 1024
[   76.627294][ T6311] EXT4-fs: Ignoring removed nobh option
[   76.633109][ T6311] EXT4-fs: Ignoring removed nobh option
[   76.641619][ T3459] tipc: Node number set to 537097343
[   76.649937][ T6311] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   76.666594][ T6311] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: comm syz.1.834: inode #4294967295: comm syz.1.834: iget: illegal inode #
[   76.699149][ T6311] EXT4-fs (loop1): no journal found
[   76.704462][ T6311] EXT4-fs (loop1): can't get journal size
[   76.704595][ T6316] loop5: detected capacity change from 0 to 2048
[   76.727967][ T6321] pim6reg1: entered promiscuous mode
[   76.733413][ T6321] pim6reg1: entered allmulticast mode
[   76.781952][ T6316] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.816775][ T6311] EXT4-fs (loop1): failed to initialize system zone (-22)
[   76.828674][ T6316] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.851593][ T6311] EXT4-fs (loop1): mount failed
[   76.896453][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.322704][ T6349] netlink: 8 bytes leftover after parsing attributes in process `syz.4.857'.
[   77.332046][ T6349] IPVS: Error joining to the multicast group
[   77.357608][ T6352] netlink: 8 bytes leftover after parsing attributes in process `syz.4.858'.
[   77.417792][ T6356] loop4: detected capacity change from 0 to 1024
[   77.462994][ T6356] EXT4-fs: Ignoring removed orlov option
[   77.492965][ T6356] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   77.550784][ T6356] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.577007][ T6368] netlink: 'syz.2.864': attribute type 4 has an invalid length.
[   77.648071][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.121044][ T6385] loop4: detected capacity change from 0 to 512
[   78.142574][ T6385] EXT4-fs warning (device loop4): dx_probe:863: inode #2: comm syz.4.872: dx entry: limit 1024 != root limit 124
[   78.154600][ T6385] EXT4-fs warning (device loop4): dx_probe:936: inode #2: comm syz.4.872: Corrupt directory, running e2fsck is recommended
[   78.175062][ T6385] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[   78.202708][ T6385] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.872: corrupted in-inode xattr: invalid ea_ino
[   78.227987][ T6385] EXT4-fs (loop4): Remounting filesystem read-only
[   78.235171][ T6385] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.239016][ T6390] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'.
[   78.270692][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.279977][ T6390] team0 (unregistering): Port device team_slave_0 removed
[   78.288345][ T6390] team0 (unregistering): Port device team_slave_1 removed
[   78.324426][ T6398] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.343166][ T6398] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.354699][ T6400] all: renamed from lo
[   78.380498][ T6397] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[   78.547635][ T6412] netlink: 100 bytes leftover after parsing attributes in process `syz.6.883'.
[   78.611129][ T6421] sch_fq: defrate 0 ignored.
[   78.700045][ T6436] netlink: 24 bytes leftover after parsing attributes in process `syz.6.892'.
[   78.751700][ T6441] bond_slave_1: mtu less than device minimum
[   78.881922][ T6456] netlink: 'syz.2.902': attribute type 1 has an invalid length.
[   78.912414][ T6456] 8021q: adding VLAN 0 to HW filter on device bond1
[   78.947360][ T6456] bond1: (slave veth3): Enslaving as an active interface with a down link
[   78.969351][ T6456] bond1: (slave ip6gretap1): making interface the new active one
[   78.978680][ T6456] ip6gretap1: entered promiscuous mode
[   78.984391][ T6456] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[   79.019884][ T6442] loop4: detected capacity change from 0 to 256
[   79.061386][ T6442] FAT-fs (loop4): codepage cp874 not found
[   79.764468][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.771942][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.779434][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.787058][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.795725][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.803262][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.810741][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.818274][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.825891][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.833454][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.840855][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.848296][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.855790][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.863214][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.870648][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.878430][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.885871][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.893332][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.900756][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.908169][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.915770][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.923184][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.930592][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.938025][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.945498][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.952941][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.960343][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.967877][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.975365][   T36] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   79.985088][   T36] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   80.007634][ T6514] ip6gre1: entered allmulticast mode
[   80.089638][ T6520] netlink: 'syz.1.930': attribute type 1 has an invalid length.
[   80.320269][ T6541] loop2: detected capacity change from 0 to 2048
[   80.359301][ T6541] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.569407][ T6554] __nla_validate_parse: 2 callbacks suppressed
[   80.569424][ T6554] netlink: 12 bytes leftover after parsing attributes in process `syz.1.942'.
[   80.623425][ T6557] hub 9-0:1.0: USB hub found
[   80.628319][ T6557] hub 9-0:1.0: 8 ports detected
[   80.634918][ T6547] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   80.686903][ T6547] EXT4-fs (loop2): Remounting filesystem read-only
[   80.738428][ T6567] netlink: 12 bytes leftover after parsing attributes in process `syz.5.948'.
[   80.770285][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.000191][ T6593] ip6gre1: entered allmulticast mode
[   81.058738][ T6597] netlink: 12 bytes leftover after parsing attributes in process `syz.4.954'.
[   81.445483][   T29] kauditd_printk_skb: 77 callbacks suppressed
[   81.445501][   T29] audit: type=1326 audit(1746852295.392:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.468351][ T6627] netlink: 12 bytes leftover after parsing attributes in process `syz.2.967'.
[   81.504145][   T29] audit: type=1326 audit(1746852295.392:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.527578][   T29] audit: type=1326 audit(1746852295.442:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.551018][   T29] audit: type=1326 audit(1746852295.442:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.574385][   T29] audit: type=1326 audit(1746852295.442:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.597892][   T29] audit: type=1326 audit(1746852295.442:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.621289][   T29] audit: type=1326 audit(1746852295.442:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.644811][   T29] audit: type=1326 audit(1746852295.442:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.668181][   T29] audit: type=1326 audit(1746852295.442:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.691632][   T29] audit: type=1326 audit(1746852295.442:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6628 comm="syz.1.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   81.795917][ T6634] loop4: detected capacity change from 0 to 1024
[   81.816376][ T6634] EXT4-fs: Ignoring removed nobh option
[   81.841956][ T6651] netlink: 180 bytes leftover after parsing attributes in process `syz.1.986'.
[   81.872016][ T6634] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.903270][ T6634] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.971: Allocating blocks 385-513 which overlap fs metadata
[   81.920984][ T6634] EXT4-fs (loop4): pa ffff88810719a230: logic 16, phys. 129, len 24
[   81.929153][ T6634] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[   82.002529][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.081793][ T6664] netlink: 4 bytes leftover after parsing attributes in process `syz.2.980'.
[   82.279041][ T6685] bond2: entered promiscuous mode
[   82.284194][ T6685] bond2: entered allmulticast mode
[   82.301698][ T6685] 8021q: adding VLAN 0 to HW filter on device bond2
[   82.315237][ T6687] loop4: detected capacity change from 0 to 1024
[   82.315385][ T6685] bond2 (unregistering): Released all slaves
[   82.321966][ T6687] EXT4-fs: Ignoring removed nobh option
[   82.333387][ T6687] EXT4-fs: Ignoring removed nobh option
[   82.340883][ T6687] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   82.365370][ T6687] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.977: inode #4294967295: comm syz.4.977: iget: illegal inode #
[   82.456266][ T6687] EXT4-fs (loop4): no journal found
[   82.461628][ T6687] EXT4-fs (loop4): can't get journal size
[   82.551480][ T6687] EXT4-fs (loop4): failed to initialize system zone (-22)
[   82.567560][ T6687] EXT4-fs (loop4): mount failed
[   83.038055][ T6718] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1001'.
[   83.130620][ T6723] loop2: detected capacity change from 0 to 512
[   83.148733][ T6723] EXT4-fs: Ignoring removed i_version option
[   83.172996][ T6723] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   83.200855][ T6723] EXT4-fs (loop2): 1 truncate cleaned up
[   83.208305][ T6723] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.627056][ T6742] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1011'.
[   83.683190][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.717457][ T6744] netlink: 'syz.6.1012': attribute type 13 has an invalid length.
[   83.773245][ T6744] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   84.163919][ T6769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1023'.
[   84.236112][ T6776] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1026'.
[   84.255271][ T6776] IPVS: Unknown mcast interface: vcan0
[   84.277917][ T6779] loop4: detected capacity change from 0 to 256
[   84.285676][ T6779] FAT-fs (loop4): Directory bread(block 1285) failed
[   84.312330][ T6779] FAT-fs (loop4): Directory bread(block 1285) failed
[   84.329294][ T6779] FAT-fs (loop4): Directory bread(block 1285) failed
[   84.349191][ T6779] FAT-fs (loop4): Directory bread(block 1285) failed
[   84.411008][ T6793] wg2: entered promiscuous mode
[   84.416068][ T6793] wg2: entered allmulticast mode
[   84.574560][ T6810] loop2: detected capacity change from 0 to 512
[   84.580156][ T6812] loop4: detected capacity change from 0 to 512
[   84.582796][ T6810] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   84.599577][ T6810] EXT4-fs (loop2): 1 truncate cleaned up
[   84.605877][ T6810] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.623395][ T6812] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.655678][ T6812] ext4 filesystem being mounted at /201/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.702480][ T6802] loop1: detected capacity change from 0 to 2048
[   84.724201][ T6802] EXT4-fs (loop1): failed to initialize system zone (-117)
[   84.731478][ T6802] EXT4-fs (loop1): mount failed
[   84.738872][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.751593][ T6812] loop4: detected capacity change from 512 to 64
[   84.768948][ T6812] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1042: Failed to acquire dquot type 1
[   84.808325][ T6812] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1042: Failed to acquire dquot type 1
[   84.857242][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.873591][ T6834] SELinux:  Context Ü is not valid (left unmapped).
[   84.890509][ T6836] loop2: detected capacity change from 0 to 128
[   84.912728][ T6836] syz.2.1049: attempt to access beyond end of device
[   84.912728][ T6836] loop2: rw=2049, sector=131, nr_sectors = 1 limit=128
[   84.926227][ T6836] Buffer I/O error on dev loop2, logical block 131, lost async page write
[   84.941565][ T6836] syz.2.1049: attempt to access beyond end of device
[   84.941565][ T6836] loop2: rw=2049, sector=132, nr_sectors = 1 limit=128
[   84.955144][ T6836] Buffer I/O error on dev loop2, logical block 132, lost async page write
[   84.964224][ T6836] syz.2.1049: attempt to access beyond end of device
[   84.964224][ T6836] loop2: rw=2049, sector=133, nr_sectors = 1 limit=128
[   84.977780][ T6836] Buffer I/O error on dev loop2, logical block 133, lost async page write
[   84.988404][ T6836] syz.2.1049: attempt to access beyond end of device
[   84.988404][ T6836] loop2: rw=2049, sector=134, nr_sectors = 1 limit=128
[   85.001919][ T6836] Buffer I/O error on dev loop2, logical block 134, lost async page write
[   85.011104][ T6836] syz.2.1049: attempt to access beyond end of device
[   85.011104][ T6836] loop2: rw=2049, sector=135, nr_sectors = 1 limit=128
[   85.024677][ T6836] Buffer I/O error on dev loop2, logical block 135, lost async page write
[   85.033510][ T6836] syz.2.1049: attempt to access beyond end of device
[   85.033510][ T6836] loop2: rw=2049, sector=136, nr_sectors = 1 limit=128
[   85.047110][ T6836] Buffer I/O error on dev loop2, logical block 136, lost async page write
[   85.056661][ T6836] syz.2.1049: attempt to access beyond end of device
[   85.056661][ T6836] loop2: rw=2049, sector=137, nr_sectors = 64 limit=128
[   85.070512][ T6836] syz.2.1049: attempt to access beyond end of device
[   85.070512][ T6836] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[   85.087644][ T6836] syz.2.1049: attempt to access beyond end of device
[   85.087644][ T6836] loop2: rw=2049, sector=233, nr_sectors = 9 limit=128
[   85.538690][ T6893] netlink: 'syz.4.1072': attribute type 39 has an invalid length.
[   86.134169][ T6919] syzkaller0: tun_chr_ioctl cmd 1074025677
[   86.140044][ T6919] syzkaller0: Linktype set failed because interface is up
[   86.388254][ T6942] openvswitch: netlink: Message has 6 unknown bytes.
[   86.677983][   T29] kauditd_printk_skb: 32 callbacks suppressed
[   86.678000][   T29] audit: type=1400 audit(1746852300.622:1716): avc:  denied  { module_request } for  pid=6925 comm="syz.2.1087" kmod="block-major-0-0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   86.738541][   T29] audit: type=1400 audit(1746852300.672:1717): avc:  denied  { read write } for  pid=3313 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   86.762822][   T29] audit: type=1400 audit(1746852300.672:1718): avc:  denied  { open } for  pid=3313 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   86.787073][   T29] audit: type=1400 audit(1746852300.672:1719): avc:  denied  { ioctl } for  pid=3313 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   86.860550][ T6963] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1099'.
[   86.865575][   T29] audit: type=1400 audit(1746852300.762:1720): avc:  denied  { create } for  pid=6945 comm="syz.1.1094" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   86.889263][   T29] audit: type=1400 audit(1746852300.792:1721): avc:  denied  { map_create } for  pid=6959 comm="syz.4.1097" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   86.908449][   T29] audit: type=1400 audit(1746852300.792:1722): avc:  denied  { map_read map_write } for  pid=6959 comm="syz.4.1097" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   86.928429][   T29] audit: type=1400 audit(1746852300.792:1723): avc:  denied  { prog_load } for  pid=6959 comm="syz.4.1097" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   86.947506][   T29] audit: type=1400 audit(1746852300.792:1724): avc:  denied  { bpf } for  pid=6959 comm="syz.4.1097" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   86.968125][   T29] audit: type=1400 audit(1746852300.792:1725): avc:  denied  { perfmon } for  pid=6959 comm="syz.4.1097" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   87.145796][ T6975] wg2: entered promiscuous mode
[   87.150691][ T6975] wg2: entered allmulticast mode
[   87.216753][ T6986] loop5: detected capacity change from 0 to 512
[   87.231386][ T6986] EXT4-fs: Ignoring removed bh option
[   87.236888][ T6986] EXT4-fs: Ignoring removed orlov option
[   87.243488][ T6986] EXT4-fs (loop5): blocks per group (255) and clusters per group (8192) inconsistent
[   87.285321][ T6994] Driver unsupported XDP return value 0 on prog  (id 1010) dev N/A, expect packet loss!
[   87.402341][ T7006] loop5: detected capacity change from 0 to 512
[   87.427189][ T7006] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[   87.435732][ T7006] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[   87.449388][ T7006] EXT4-fs (loop5): 1 truncate cleaned up
[   87.464441][ T7006] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.564553][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.599873][ T7019] pim6reg1: entered promiscuous mode
[   87.605253][ T7019] pim6reg1: entered allmulticast mode
[   87.878722][ T7031] syzkaller0: entered promiscuous mode
[   87.884427][ T7031] syzkaller0: entered allmulticast mode
[   88.044859][ T7050] loop1: detected capacity change from 0 to 2048
[   88.074331][ T7050] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.099910][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.149801][ T7062] netlink: 'syz.6.1138': attribute type 4 has an invalid length.
[   88.163292][ T7062] netlink: 'syz.6.1138': attribute type 4 has an invalid length.
[   88.555338][ T7094] netlink: 'syz.2.1151': attribute type 1 has an invalid length.
[   88.584025][ T7095] loop4: detected capacity change from 0 to 1024
[   88.633622][ T7095] EXT4-fs: Ignoring removed nobh option
[   88.639259][ T7095] EXT4-fs: Ignoring removed nobh option
[   88.675831][ T7095] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   88.695805][ T7095] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.1145: inode #4294967295: comm syz.4.1145: iget: illegal inode #
[   88.839379][ T7095] EXT4-fs (loop4): no journal found
[   88.844695][ T7095] EXT4-fs (loop4): can't get journal size
[   88.940997][ T7095] EXT4-fs (loop4): failed to initialize system zone (-22)
[   88.997121][ T7095] EXT4-fs (loop4): mount failed
[   89.617205][ T7131] bond_slave_1: mtu less than device minimum
[   90.337839][ T7184] netlink: 'syz.1.1188': attribute type 1 has an invalid length.
[   90.345700][ T7184] netlink: 'syz.1.1188': attribute type 2 has an invalid length.
[   90.361916][ T3844] ip6gretap1: left promiscuous mode
[   90.391696][ T7184] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1188'.
[   90.504066][ T7193] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1192'.
[   90.513043][ T7193] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1192'.
[   90.527638][ T7193] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1192'.
[   90.674848][ T7206] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1198'.
[   91.009240][ T7222] loop2: detected capacity change from 0 to 8192
[   91.024113][ T7222] vfat: Unknown parameter '01777777777777777777777ÿÿÿÿÿÿÿÿÿ'
[   91.132882][ T7234] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1206'.
[   91.141917][ T7234] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1206'.
[   91.152231][ T7234] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1206'.
[   91.156264][ T7238] bridge0: entered promiscuous mode
[   91.168129][ T7238] bridge0: port 3(macvlan2) entered blocking state
[   91.174718][ T7238] bridge0: port 3(macvlan2) entered disabled state
[   91.217821][ T7238] macvlan2: entered allmulticast mode
[   91.223500][ T7238] bridge0: entered allmulticast mode
[   91.232413][ T7238] macvlan2: left allmulticast mode
[   91.237611][ T7238] bridge0: left allmulticast mode
[   91.243361][ T7238] bridge0: left promiscuous mode
[   91.323534][ T7244] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1216'.
[   91.341613][ T7244] bridge_slave_1: left allmulticast mode
[   91.347326][ T7244] bridge_slave_1: left promiscuous mode
[   91.353199][ T7244] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.364140][ T7244] bridge_slave_0: left allmulticast mode
[   91.369921][ T7244] bridge_slave_0: left promiscuous mode
[   91.375837][ T7244] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.506619][ T7265] loop2: detected capacity change from 0 to 2048
[   91.523701][ T7265] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.536307][ T7265] ext4 filesystem being mounted at /261/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.642368][ T3803] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:9: bg 0: block 345: padding at end of block bitmap is not set
[   91.701386][ T3803] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 158 with error 117
[   91.714065][ T3803] EXT4-fs (loop2): This should not happen!! Data will be lost
[   91.714065][ T3803] 
[   91.735399][ T3417] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 174 with max blocks 2 with error 117
[   91.747965][ T3417] EXT4-fs (loop2): This should not happen!! Data will be lost
[   91.747965][ T3417] 
[   91.801958][   T29] kauditd_printk_skb: 248 callbacks suppressed
[   91.801973][   T29] audit: type=1400 audit(1746852305.752:1974): avc:  denied  { ioctl } for  pid=7274 comm="syz.6.1225" path="socket:[16610]" dev="sockfs" ino=16610 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   91.933058][   T29] audit: type=1400 audit(1746852305.882:1975): avc:  denied  { name_bind } for  pid=7278 comm="syz.5.1226" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   92.367212][ T7291] loop5: detected capacity change from 0 to 1024
[   92.403047][ T7291] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.505722][ T7299] loop4: detected capacity change from 0 to 1024
[   92.522627][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.557273][ T7299] EXT4-fs: Ignoring removed nobh option
[   92.562904][ T7299] EXT4-fs: Ignoring removed nobh option
[   92.623637][ T7299] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   92.641679][ T7299] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: comm syz.4.1229: inode #4294967295: comm syz.4.1229: iget: illegal inode #
[   92.656381][   T29] audit: type=1400 audit(1746852306.582:1976): avc:  denied  { create } for  pid=7301 comm="syz.1.1234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   92.677049][ T7299] EXT4-fs (loop4): no journal found
[   92.682386][ T7299] EXT4-fs (loop4): can't get journal size
[   92.698984][ T7299] EXT4-fs (loop4): failed to initialize system zone (-22)
[   92.715869][ T7299] EXT4-fs (loop4): mount failed
[   92.754771][ T7309] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   92.801931][ T7311] loop5: detected capacity change from 0 to 1024
[   92.802529][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.820154][ T7311] EXT4-fs: Ignoring removed oldalloc option
[   92.826277][ T7311] EXT4-fs: Ignoring removed nomblk_io_submit option
[   92.912304][ T7311] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a843c018, mo2=0002]
[   92.920440][ T7311] System zones: 0-1, 3-12
[   92.925075][ T7322] loop1: detected capacity change from 0 to 2048
[   92.925613][ T7311] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.941961][ T7322] EXT4-fs: Ignoring removed bh option
[   92.987880][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.006806][   T29] audit: type=1400 audit(1746852306.902:1977): avc:  denied  { read } for  pid=7310 comm="syz.5.1238" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   93.030145][   T29] audit: type=1400 audit(1746852306.902:1978): avc:  denied  { open } for  pid=7310 comm="syz.5.1238" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   93.053909][   T29] audit: type=1400 audit(1746852306.902:1979): avc:  denied  { ioctl } for  pid=7310 comm="syz.5.1238" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   93.082924][   T29] audit: type=1400 audit(1746852307.032:1980): avc:  denied  { getopt } for  pid=7323 comm="syz.6.1242" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   93.114063][ T7322] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.191716][   T29] audit: type=1326 audit(1746852307.132:1981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7331 comm="syz.6.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42283ce969 code=0x7ffc0000
[   93.215310][   T29] audit: type=1326 audit(1746852307.132:1982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7331 comm="syz.6.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f42283ce969 code=0x7ffc0000
[   93.238766][   T29] audit: type=1326 audit(1746852307.132:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7331 comm="syz.6.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42283ce969 code=0x7ffc0000
[   93.270604][ T7336] loop2: detected capacity change from 0 to 512
[   93.282586][ T7336] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   93.322880][ T7336] EXT4-fs (loop2): 1 truncate cleaned up
[   93.328968][ T7336] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.478474][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.865177][ T7335] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   93.909871][ T7335] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[   93.922307][ T7335] EXT4-fs (loop1): This should not happen!! Data will be lost
[   93.922307][ T7335] 
[   93.932011][ T7335] EXT4-fs (loop1): Total free blocks count 0
[   93.938055][ T7335] EXT4-fs (loop1): Free/Dirty block details
[   93.944034][ T7335] EXT4-fs (loop1): free_blocks=2415919104
[   93.949763][ T7335] EXT4-fs (loop1): dirty_blocks=8224
[   93.955087][ T7335] EXT4-fs (loop1): Block reservation details
[   93.961175][ T7335] EXT4-fs (loop1): i_reserved_data_blocks=514
[   93.973965][ T7362] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1256'.
[   93.982932][ T7362] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1256'.
[   93.997162][ T7362] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1256'.
[   94.069337][ T3803] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 28
[   94.373261][ T7398] netlink: 'syz.4.1274': attribute type 27 has an invalid length.
[   94.394632][ T7402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1271'.
[   94.403685][ T7402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1271'.
[   94.415050][ T7402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1271'.
[   94.503202][ T7398] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.511699][ T7398] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.520072][ T7398] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.528489][ T7398] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.538213][ T7398] ip6erspan0: left promiscuous mode
[   94.623427][ T7413] loop4: detected capacity change from 0 to 2048
[   94.630163][ T7413] EXT4-fs: Ignoring removed bh option
[   94.642851][ T7413] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.679386][ T7413] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   94.757869][ T7413] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[   94.770395][ T7413] EXT4-fs (loop4): This should not happen!! Data will be lost
[   94.770395][ T7413] 
[   94.780173][ T7413] EXT4-fs (loop4): Total free blocks count 0
[   94.786219][ T7413] EXT4-fs (loop4): Free/Dirty block details
[   94.792197][ T7413] EXT4-fs (loop4): free_blocks=2415919104
[   94.798000][ T7413] EXT4-fs (loop4): dirty_blocks=48
[   94.803261][ T7413] EXT4-fs (loop4): Block reservation details
[   94.809352][ T7413] EXT4-fs (loop4): i_reserved_data_blocks=3
[   94.851584][ T3844] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[   95.052105][ T7441] Falling back ldisc for ttyS3.
[   95.117868][ T7448] loop2: detected capacity change from 0 to 256
[   95.154972][ T7448] FAT-fs (loop2): bogus number of FAT sectors
[   95.161130][ T7448] FAT-fs (loop2): Can't find a valid FAT filesystem
[   95.241100][ T7455] loop5: detected capacity change from 0 to 2048
[   95.251880][ T7455] EXT4-fs: Ignoring removed bh option
[   95.269693][ T7456] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1307'.
[   95.278682][ T7456] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1307'.
[   95.308222][ T7456] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1307'.
[   95.322510][ T7455] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.527645][ T7455] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   95.552307][ T7455] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[   95.564682][ T7455] EXT4-fs (loop5): This should not happen!! Data will be lost
[   95.564682][ T7455] 
[   95.574370][ T7455] EXT4-fs (loop5): Total free blocks count 0
[   95.580404][ T7455] EXT4-fs (loop5): Free/Dirty block details
[   95.586476][ T7455] EXT4-fs (loop5): free_blocks=2415919104
[   95.592256][ T7455] EXT4-fs (loop5): dirty_blocks=48
[   95.597404][ T7455] EXT4-fs (loop5): Block reservation details
[   95.603442][ T7455] EXT4-fs (loop5): i_reserved_data_blocks=3
[   95.732072][ T3803] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[   96.077940][ T7486] ref_ctr increment failed for inode: 0x404 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff888109813180
[   96.148662][ T7484] uprobe: syz.6.1317:7484 failed to unregister, leaking uprobe
[   96.320636][ T7511] x_tables: duplicate underflow at hook 2
[   96.532753][ T7531] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1328'.
[   97.010528][ T7551] loop1: detected capacity change from 0 to 4096
[   97.090855][ T7551] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.185234][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.693722][   T29] kauditd_printk_skb: 97 callbacks suppressed
[   97.693739][   T29] audit: type=1400 audit(1746852311.642:2081): avc:  denied  { connect } for  pid=7598 comm="syz.4.1355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   97.726079][   T29] audit: type=1400 audit(1746852311.662:2082): avc:  denied  { read } for  pid=7598 comm="syz.4.1355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   97.762812][ T7601] SELinux:  policydb version 0 does not match my version range 15-34
[   97.782417][ T7601] SELinux: failed to load policy
[   97.788333][   T29] audit: type=1400 audit(1746852311.712:2083): avc:  denied  { load_policy } for  pid=7599 comm="syz.1.1353" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   97.808663][   T29] audit: type=1400 audit(1746852311.722:2084): avc:  denied  { ioctl } for  pid=7598 comm="syz.4.1355" path="socket:[17047]" dev="sockfs" ino=17047 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   97.862357][   T29] audit: type=1400 audit(1746852311.782:2085): avc:  denied  { write } for  pid=7598 comm="syz.4.1355" path="socket:[17048]" dev="sockfs" ino=17048 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   97.961134][   T29] audit: type=1326 audit(1746852311.902:2086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7606 comm="syz.1.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   97.984672][   T29] audit: type=1326 audit(1746852311.902:2087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7606 comm="syz.1.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   98.008677][   T29] audit: type=1326 audit(1746852311.902:2088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7606 comm="syz.1.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   98.032133][   T29] audit: type=1400 audit(1746852311.902:2089): avc:  denied  { watch } for  pid=7606 comm="syz.1.1357" path="/261" dev="tmpfs" ino=1376 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   98.054705][   T29] audit: type=1326 audit(1746852311.902:2090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7606 comm="syz.1.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[   98.283965][ T7632] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.315906][ T7634] all: renamed from lo (while UP)
[   98.365876][ T7632] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.404901][ T7640] syzkaller0: entered promiscuous mode
[   98.410433][ T7640] syzkaller0: entered allmulticast mode
[   98.421090][ T7632] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.464805][ T7632] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.600101][ T7632] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.612845][ T7632] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.625302][ T7632] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.637157][ T7632] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.872690][ T7670] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   98.884107][ T7670] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   99.221864][ T7687] __nla_validate_parse: 6 callbacks suppressed
[   99.221880][ T7687] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1401'.
[   99.336249][ T7697] ref_ctr_offset mismatch. inode: 0x45d offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[   99.564399][ T7704] loop5: detected capacity change from 0 to 256
[   99.580058][ T7704] FAT-fs (loop5): codepage cp874 not found
[   99.642166][ T7708] pim6reg1: entered promiscuous mode
[   99.647537][ T7708] pim6reg1: entered allmulticast mode
[   99.663470][ T7712] xt_hashlimit: size too large, truncated to 1048576
[   99.670273][ T7710] wg2: entered promiscuous mode
[   99.675234][ T7710] wg2: entered allmulticast mode
[   99.814283][ T7719] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[   99.900501][ T7723] syzkaller0: entered promiscuous mode
[   99.906220][ T7723] syzkaller0: entered allmulticast mode
[   99.965782][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.973277][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.980715][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.989538][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.997032][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.004489][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.011996][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.019411][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.026843][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.034280][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.041724][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.049158][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.056751][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.064191][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.074115][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.081686][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.089108][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.096598][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.104056][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.111553][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.118984][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.126402][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.133850][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.141377][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.148874][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.156533][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.164121][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.171569][   T36] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  100.181265][   T36] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  100.316837][ T7749] tipc: Started in network mode
[  100.321933][ T7749] tipc: Node identity ac14140f, cluster identity 4711
[  100.329203][ T7749] tipc: New replicast peer: 255.255.255.83
[  100.335137][ T7749] tipc: Enabled bearer <udp:£ >, priority 10
[  101.027224][ T7778] loop2: detected capacity change from 0 to 512
[  101.056108][ T7778] EXT4-fs warning (device loop2): dx_probe:863: inode #2: comm syz.2.1429: dx entry: limit 1024 != root limit 124
[  101.068192][ T7778] EXT4-fs warning (device loop2): dx_probe:936: inode #2: comm syz.2.1429: Corrupt directory, running e2fsck is recommended
[  101.087930][ T7778] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  101.096410][ T7778] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.1429: corrupted in-inode xattr: invalid ea_ino
[  101.110462][ T7778] EXT4-fs (loop2): Remounting filesystem read-only
[  101.117371][ T7778] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.149184][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.392125][ T7790] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  101.401267][ T7790] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  101.420229][ T7794] loop2: detected capacity change from 0 to 512
[  101.427542][ T7794] EXT4-fs: inline encryption not supported
[  101.434484][ T7794] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  101.454138][ T7794] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  101.466685][   T36] tipc: Node number set to 2886997007
[  101.472624][ T7794] ext4 filesystem being mounted at /316/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.550493][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  101.933785][ T7809] syzkaller0: entered allmulticast mode
[  101.939850][ T7809] syzkaller0: entered promiscuous mode
[  101.948254][ T7809] syzkaller0 (unregistering): left promiscuous mode
[  101.955045][ T7809] syzkaller0 (unregistering): left allmulticast mode
[  102.110741][ T7813] pim6reg1: entered promiscuous mode
[  102.116153][ T7813] pim6reg1: entered allmulticast mode
[  102.267916][ T7824] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1449'.
[  102.283174][ T7826] loop4: detected capacity change from 0 to 256
[  102.304162][ T7826] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  102.349819][ T7826] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1448'.
[  102.383641][ T7832] ip6gre1: entered allmulticast mode
[  102.482592][ T7835] hub 9-0:1.0: USB hub found
[  102.487405][ T7835] hub 9-0:1.0: 8 ports detected
[  102.679987][ T7848] bond1: entered promiscuous mode
[  102.685171][ T7848] bond1: entered allmulticast mode
[  102.727464][ T7848] 8021q: adding VLAN 0 to HW filter on device bond1
[  102.752819][ T7848] bond1 (unregistering): Released all slaves
[  102.842168][ T7865] loop5: detected capacity change from 0 to 256
[  102.872978][ T7865] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  102.930607][ T7865] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1463'.
[  102.976937][ T7875] netlink: 'syz.6.1468': attribute type 1 has an invalid length.
[  102.999006][   T29] kauditd_printk_skb: 83 callbacks suppressed
[  102.999021][   T29] audit: type=1400 audit(1746852316.942:2174): avc:  denied  { watch watch_reads } for  pid=7876 comm="syz.5.1469" path="/226/file0" dev="tmpfs" ino=1204 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  103.125879][ T7888] ip6gre1: entered allmulticast mode
[  103.211889][ T7891] ip6gre1: entered allmulticast mode
[  103.424923][ T7911] bond2: entered promiscuous mode
[  103.430017][ T7911] bond2: entered allmulticast mode
[  103.457471][ T7911] 8021q: adding VLAN 0 to HW filter on device bond2
[  103.471716][ T7911] bond2 (unregistering): Released all slaves
[  103.600292][ T7925] loop2: detected capacity change from 0 to 256
[  103.607244][ T7922] netlink: 180 bytes leftover after parsing attributes in process `syz.5.1488'.
[  103.632942][ T7925] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  103.676596][ T7931] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1492'.
[  103.685975][   T29] audit: type=1400 audit(1746852317.622:2175): avc:  denied  { ioctl } for  pid=7930 comm="syz.5.1492" path="socket:[19491]" dev="sockfs" ino=19491 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  103.710868][   T29] audit: type=1400 audit(1746852317.622:2176): avc:  denied  { bind } for  pid=7930 comm="syz.5.1492" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  103.727210][ T7935] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1486'.
[  103.730229][   T29] audit: type=1400 audit(1746852317.622:2177): avc:  denied  { setopt } for  pid=7930 comm="syz.5.1492" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  103.758455][   T29] audit: type=1400 audit(1746852317.622:2178): avc:  denied  { write } for  pid=7930 comm="syz.5.1492" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  104.720035][ T7965] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1501'.
[  104.919338][ T7994] bond0: entered promiscuous mode
[  104.924513][ T7994] bond0: entered allmulticast mode
[  104.930139][ T7994] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.940348][ T7994] bond0 (unregistering): Released all slaves
[  104.962127][ T7996] ip6gre2: entered allmulticast mode
[  105.108951][   T29] audit: type=1400 audit(1746852319.052:2179): avc:  denied  { write } for  pid=8003 comm="syz.5.1520" name="ipv6_route" dev="proc" ino=4026533565 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  105.217476][ T8010] netlink: 180 bytes leftover after parsing attributes in process `syz.6.1521'.
[  105.376444][   T29] audit: type=1326 audit(1746852319.322:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8035 comm="syz.6.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42283ce969 code=0x7ffc0000
[  105.400089][   T29] audit: type=1326 audit(1746852319.322:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8035 comm="syz.6.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42283ce969 code=0x7ffc0000
[  105.448469][   T29] audit: type=1326 audit(1746852319.382:2182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8035 comm="syz.6.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f42283ce969 code=0x7ffc0000
[  105.472013][   T29] audit: type=1326 audit(1746852319.382:2183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8035 comm="syz.6.1531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42283ce969 code=0x7ffc0000
[  105.516843][ T8045] loop1: detected capacity change from 0 to 1024
[  105.523861][ T8045] EXT4-fs: Ignoring removed nobh option
[  105.543123][ T8045] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.566686][ T8045] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1542: Allocating blocks 385-513 which overlap fs metadata
[  105.587291][ T8045] EXT4-fs (loop1): pa ffff88810719a230: logic 16, phys. 129, len 24
[  105.595423][ T8045] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  105.659268][ T8057] loop4: detected capacity change from 0 to 512
[  105.669006][ T8057] EXT4-fs: Ignoring removed i_version option
[  105.669603][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.684599][ T8057] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  105.696745][ T8057] EXT4-fs (loop4): 1 truncate cleaned up
[  105.717642][ T8057] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.736393][ T8067] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1539'.
[  105.935499][ T8078] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1544'.
[  106.172569][ T8102] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1547'.
[  106.496467][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.617307][ T8137] bond2: entered promiscuous mode
[  106.622532][ T8137] bond2: entered allmulticast mode
[  106.647864][ T8137] 8021q: adding VLAN 0 to HW filter on device bond2
[  106.656701][ T8137] bond2 (unregistering): Released all slaves
[  107.186856][ T8185] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1578'.
[  107.277398][ T8192] bond2: entered promiscuous mode
[  107.282660][ T8192] bond2: entered allmulticast mode
[  107.324721][ T8197] netlink: 'syz.2.1591': attribute type 39 has an invalid length.
[  107.329674][ T8192] 8021q: adding VLAN 0 to HW filter on device bond2
[  107.357184][ T8192] bond2 (unregistering): Released all slaves
[  107.391799][ T8201] loop5: detected capacity change from 0 to 512
[  107.398738][ T8201] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  107.410317][ T8201] EXT4-fs (loop5): 1 truncate cleaned up
[  107.417830][ T8201] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.497115][ T8206] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1585'.
[  107.518376][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.575414][ T8216] loop5: detected capacity change from 0 to 512
[  107.625154][ T8217] bond1: entered promiscuous mode
[  107.630317][ T8217] bond1: entered allmulticast mode
[  107.646513][ T8217] 8021q: adding VLAN 0 to HW filter on device bond1
[  107.660040][ T8217] bond1 (unregistering): Released all slaves
[  107.671192][ T8216] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.691110][ T8216] ext4 filesystem being mounted at /254/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.709792][ T8227] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1592'.
[  107.741551][ T8216] loop5: detected capacity change from 512 to 64
[  107.748757][ T8216] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1588: Failed to acquire dquot type 1
[  107.770714][ T8216] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1588: Failed to acquire dquot type 1
[  107.830872][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.046587][ T8245] loop5: detected capacity change from 0 to 128
[  108.127597][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.127597][ T8245] loop5: rw=2049, sector=131, nr_sectors = 1 limit=128
[  108.141092][ T8245] Buffer I/O error on dev loop5, logical block 131, lost async page write
[  108.161781][ T8253] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1604'.
[  108.172268][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.172268][ T8245] loop5: rw=2049, sector=132, nr_sectors = 1 limit=128
[  108.185843][ T8245] Buffer I/O error on dev loop5, logical block 132, lost async page write
[  108.200255][ T8251] openvswitch: netlink: Message has 6 unknown bytes.
[  108.200685][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.200685][ T8245] loop5: rw=2049, sector=133, nr_sectors = 1 limit=128
[  108.200720][ T8245] Buffer I/O error on dev loop5, logical block 133, lost async page write
[  108.200757][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.200757][ T8245] loop5: rw=2049, sector=134, nr_sectors = 1 limit=128
[  108.200848][ T8245] Buffer I/O error on dev loop5, logical block 134, lost async page write
[  108.200942][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.200942][ T8245] loop5: rw=2049, sector=135, nr_sectors = 1 limit=128
[  108.200971][ T8245] Buffer I/O error on dev loop5, logical block 135, lost async page write
[  108.200995][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.200995][ T8245] loop5: rw=2049, sector=136, nr_sectors = 1 limit=128
[  108.201036][ T8245] Buffer I/O error on dev loop5, logical block 136, lost async page write
[  108.201131][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.201131][ T8245] loop5: rw=2049, sector=137, nr_sectors = 64 limit=128
[  108.201204][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.201204][ T8245] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  108.201256][ T8245] syz.5.1601: attempt to access beyond end of device
[  108.201256][ T8245] loop5: rw=2049, sector=233, nr_sectors = 9 limit=128
[  108.248512][ T8258] loop1: detected capacity change from 0 to 512
[  108.249028][ T8258] EXT4-fs: Ignoring removed i_version option
[  108.249294][ T8258] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  108.250934][ T8258] EXT4-fs (loop1): 1 truncate cleaned up
[  108.385185][ T8258] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.493156][ T8269] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1610'.
[  108.717644][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.727332][   T29] kauditd_printk_skb: 38 callbacks suppressed
[  108.727349][   T29] audit: type=1400 audit(1746852322.682:2218): avc:  denied  { read } for  pid=8281 comm="syz.5.1619" name="ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  108.756635][   T29] audit: type=1400 audit(1746852322.682:2219): avc:  denied  { open } for  pid=8281 comm="syz.5.1619" path="/dev/ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  108.831541][   T29] audit: type=1400 audit(1746852322.772:2220): avc:  denied  { ioctl } for  pid=8281 comm="syz.5.1619" path="/dev/ptp0" dev="devtmpfs" ino=245 ioctlcmd=0x3d05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  108.859958][ T8290] wg2: entered promiscuous mode
[  108.863031][ T8286] netlink: 'syz.2.1628': attribute type 13 has an invalid length.
[  108.865028][ T8290] wg2: entered allmulticast mode
[  108.914300][   T29] audit: type=1400 audit(1746852322.852:2221): avc:  denied  { read write } for  pid=3315 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  108.938634][   T29] audit: type=1400 audit(1746852322.852:2222): avc:  denied  { open } for  pid=3315 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  108.962806][   T29] audit: type=1400 audit(1746852322.852:2223): avc:  denied  { ioctl } for  pid=3315 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  108.996638][   T29] audit: type=1400 audit(1746852322.862:2224): avc:  denied  { prog_load } for  pid=8294 comm="syz.1.1635" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  109.015868][   T29] audit: type=1400 audit(1746852322.862:2225): avc:  denied  { bpf } for  pid=8294 comm="syz.1.1635" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  109.036438][   T29] audit: type=1400 audit(1746852322.862:2226): avc:  denied  { map_create } for  pid=8294 comm="syz.1.1635" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  109.055622][   T29] audit: type=1400 audit(1746852322.862:2227): avc:  denied  { map_read map_write } for  pid=8294 comm="syz.1.1635" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  109.078832][ T8286] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  109.311985][ T8330] loop4: detected capacity change from 0 to 512
[  109.319798][ T8325] loop2: detected capacity change from 0 to 256
[  109.328421][ T8330] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  109.367713][ T8325] FAT-fs (loop2): Directory bread(block 1285) failed
[  109.383659][ T8325] FAT-fs (loop2): Directory bread(block 1285) failed
[  109.392475][ T8330] EXT4-fs (loop4): 1 truncate cleaned up
[  109.398669][ T8330] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.436417][ T8325] FAT-fs (loop2): Directory bread(block 1285) failed
[  109.460705][ T8325] FAT-fs (loop2): Directory bread(block 1285) failed
[  109.597048][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.669859][ T8304] loop5: detected capacity change from 0 to 2048
[  109.802332][ T8304] EXT4-fs (loop5): failed to initialize system zone (-117)
[  109.829440][ T8304] EXT4-fs (loop5): mount failed
[  109.918851][ T8369] netlink: 'syz.4.1654': attribute type 4 has an invalid length.
[  109.952128][ T8369] netlink: 'syz.4.1654': attribute type 4 has an invalid length.
[  110.095740][ T8385] wg2: left promiscuous mode
[  110.100423][ T8385] wg2: left allmulticast mode
[  110.156688][ T8394] wg2: entered promiscuous mode
[  110.161664][ T8394] wg2: entered allmulticast mode
[  110.213738][ T8395] bond0: entered promiscuous mode
[  110.218880][ T8395] bond0: entered allmulticast mode
[  110.224412][ T8395] 8021q: adding VLAN 0 to HW filter on device bond0
[  110.237416][ T8395] bond0 (unregistering): Released all slaves
[  110.443106][ T8414] loop5: detected capacity change from 0 to 2048
[  110.493095][ T8414] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.536369][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.770944][ T8435] netlink: 'syz.5.1678': attribute type 39 has an invalid length.
[  110.815191][ T8442] loop4: detected capacity change from 0 to 128
[  110.864152][ T8442] syz.4.1682: attempt to access beyond end of device
[  110.864152][ T8442] loop4: rw=2049, sector=131, nr_sectors = 1 limit=128
[  110.871235][ T8446] bond1: entered promiscuous mode
[  110.877639][ T8442] Buffer I/O error on dev loop4, logical block 131, lost async page write
[  110.882651][ T8446] bond1: entered allmulticast mode
[  110.896759][ T8446] 8021q: adding VLAN 0 to HW filter on device bond1
[  110.905069][ T8442] Buffer I/O error on dev loop4, logical block 132, lost async page write
[  110.913833][ T8442] Buffer I/O error on dev loop4, logical block 133, lost async page write
[  110.922504][ T8442] Buffer I/O error on dev loop4, logical block 134, lost async page write
[  110.923924][ T8446] bond1 (unregistering): Released all slaves
[  111.264366][ T8469] bond_slave_1: mtu less than device minimum
[  111.372637][ T8481] netlink: 'syz.1.1697': attribute type 39 has an invalid length.
[  111.567364][ T8498] syzkaller0: tun_chr_ioctl cmd 1074025677
[  111.573257][ T8498] syzkaller0: Linktype set failed because interface is up
[  111.723364][ T8517] loop1: detected capacity change from 0 to 128
[  111.973262][ T8523] loop1: detected capacity change from 0 to 128
[  112.033428][ T8525] openvswitch: netlink: Message has 6 unknown bytes.
[  112.578619][ T8567] __nla_validate_parse: 2 callbacks suppressed
[  112.578636][ T8567] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1733'.
[  112.744493][ T8591] loop2: detected capacity change from 0 to 1024
[  112.751842][ T8591] EXT4-fs: Ignoring removed orlov option
[  112.758677][ T8591] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  112.779652][ T8591] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.812422][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.242376][ T8615] netlink: 'syz.5.1749': attribute type 1 has an invalid length.
[  113.250203][ T8615] netlink: 'syz.5.1749': attribute type 2 has an invalid length.
[  113.267298][ T8615] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1749'.
[  113.404378][ T8631] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1752'.
[  113.570614][ T8640] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1759'.
[  113.818965][ T8640] IPVS: Unknown mcast interface: vcan0
[  113.978529][ T8652] loop4: detected capacity change from 0 to 512
[  113.996146][   T29] kauditd_printk_skb: 288 callbacks suppressed
[  113.996162][   T29] audit: type=1400 audit(1746852327.942:2516): avc:  denied  { mounton } for  pid=8650 comm="syz.4.1764" path="/333/bus" dev="tmpfs" ino=1746 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  114.032486][ T8653] wg2: entered promiscuous mode
[  114.037394][ T8653] wg2: entered allmulticast mode
[  114.046664][ T8652] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.059822][ T8652] ext4 filesystem being mounted at /333/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  114.060778][   T29] audit: type=1400 audit(1746852328.002:2517): avc:  denied  { mount } for  pid=8650 comm="syz.4.1764" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  114.121094][ T8652] bridge0: port 1(macvlan2) entered blocking state
[  114.127838][ T8652] bridge0: port 1(macvlan2) entered disabled state
[  114.134810][ T8652] macvlan2: entered allmulticast mode
[  114.140236][ T8652] bridge0: entered allmulticast mode
[  114.146669][ T8652] macvlan2: left allmulticast mode
[  114.151877][ T8652] bridge0: left allmulticast mode
[  114.160108][ T8661] netlink: 'syz.1.1777': attribute type 4 has an invalid length.
[  114.183051][ T8661] netlink: 'syz.1.1777': attribute type 4 has an invalid length.
[  114.227152][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.321655][   T29] audit: type=1400 audit(1746852328.172:2518): avc:  denied  { unmount } for  pid=3313 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  114.341623][   T29] audit: type=1400 audit(1746852328.222:2519): avc:  denied  { bind } for  pid=8671 comm="syz.1.1770" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  114.360989][   T29] audit: type=1400 audit(1746852328.222:2520): avc:  denied  { listen } for  pid=8671 comm="syz.1.1770" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  114.380882][   T29] audit: type=1400 audit(1746852328.222:2521): avc:  denied  { accept } for  pid=8671 comm="syz.1.1770" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  114.403733][   T29] audit: type=1326 audit(1746852328.272:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8675 comm="syz.5.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  114.427321][   T29] audit: type=1326 audit(1746852328.272:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8675 comm="syz.5.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  114.455898][   T29] audit: type=1326 audit(1746852328.352:2524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8675 comm="syz.5.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  114.479727][   T29] audit: type=1326 audit(1746852328.352:2525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8675 comm="syz.5.1772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  114.504719][ T8677] loop5: detected capacity change from 0 to 1024
[  114.520240][ T8677] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  114.572342][ T8686] pim6reg1: entered promiscuous mode
[  114.577674][ T8686] pim6reg1: entered allmulticast mode
[  114.603407][ T8692] wg2: left promiscuous mode
[  114.608061][ T8692] wg2: left allmulticast mode
[  114.617016][ T8692] wg2: entered promiscuous mode
[  114.622029][ T8692] wg2: entered allmulticast mode
[  114.688057][ T8698] netlink: 'syz.2.1783': attribute type 4 has an invalid length.
[  114.710382][ T8698] netlink: 'syz.2.1783': attribute type 4 has an invalid length.
[  114.726473][ T8702] loop4: detected capacity change from 0 to 2048
[  114.727039][ T8701] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1781'.
[  114.755413][ T8702] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.756570][ T8701] IPVS: Error joining to the multicast group
[  115.002340][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.038030][ T8711] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  115.110150][ T8715] loop1: detected capacity change from 0 to 1024
[  115.119882][ T8715] EXT4-fs: Ignoring removed oldalloc option
[  115.125880][ T8715] EXT4-fs: Ignoring removed nomblk_io_submit option
[  115.164955][ T8715] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a843c018, mo2=0002]
[  115.178078][ T8715] System zones: 0-1, 3-12
[  115.184332][ T8715] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.216908][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.456200][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.463723][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.471171][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.478694][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.486477][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.493979][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.501384][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.508842][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.516357][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.524006][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.531415][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.539096][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.546647][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.554076][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.561454][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.569256][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.576699][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.577802][ T8731] wg2: left promiscuous mode
[  115.584302][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.588987][ T8731] wg2: left allmulticast mode
[  115.596255][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.608325][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.615826][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.623278][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.630680][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.638126][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.645582][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.653020][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.660483][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.667970][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.675463][ T3459] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  115.683814][ T8731] wg2: entered promiscuous mode
[  115.686160][ T3459] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  115.688712][ T8731] wg2: entered allmulticast mode
[  115.751641][ T8743] netlink: 'syz.5.1797': attribute type 4 has an invalid length.
[  115.791814][ T8743] netlink: 'syz.5.1797': attribute type 4 has an invalid length.
[  115.801469][ T8745] loop2: detected capacity change from 0 to 2048
[  115.829793][ T8745] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.838743][ T8749] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1800'.
[  115.877746][ T8749] IPVS: Error joining to the multicast group
[  115.884090][ T8751] bond_slave_1: mtu less than device minimum
[  115.957538][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.483629][ T8794] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1819'.
[  116.632738][ T8808] loop2: detected capacity change from 0 to 512
[  116.665454][ T8808] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.678304][ T8808] ext4 filesystem being mounted at /398/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.745972][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.167237][ T8833] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1833'.
[  117.194174][ T8833] bridge_slave_1: left allmulticast mode
[  117.199983][ T8833] bridge_slave_1: left promiscuous mode
[  117.205872][ T8833] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.242330][ T8833] bridge_slave_0: left allmulticast mode
[  117.248061][ T8833] bridge_slave_0: left promiscuous mode
[  117.253907][ T8833] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.326529][ T8848] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  117.368420][ T8852] loop5: detected capacity change from 0 to 2048
[  117.412827][ T8852] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.449804][ T8852] ext4 filesystem being mounted at /302/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.490526][ T8868] netlink: 'syz.2.1850': attribute type 27 has an invalid length.
[  117.620216][ T8868] wg2: left promiscuous mode
[  117.624904][ T8868] wg2: left allmulticast mode
[  117.676510][ T8868] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.685015][ T8868] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.693454][ T8868] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.701860][ T8868] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.714810][ T8868] ip6gre1: left allmulticast mode
[  117.912719][ T3838] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:34: bg 0: block 345: padding at end of block bitmap is not set
[  117.938956][ T3838] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 508 with error 117
[  117.951571][ T3838] EXT4-fs (loop5): This should not happen!! Data will be lost
[  117.951571][ T3838] 
[  117.972705][ T8885] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1858'.
[  118.082628][ T8895] loop2: detected capacity change from 0 to 1024
[  118.102998][ T8895] EXT4-fs: Ignoring removed oldalloc option
[  118.109104][ T8895] EXT4-fs: Ignoring removed nomblk_io_submit option
[  118.142993][ T8900] loop4: detected capacity change from 0 to 2048
[  118.160032][ T8900] EXT4-fs: Ignoring removed bh option
[  118.165633][ T8895] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a843c018, mo2=0002]
[  118.173834][ T8895] System zones: 0-1, 3-12
[  118.178708][ T8895] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.212903][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.228886][ T8900] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.672681][ T8912] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  118.697580][ T8912] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  118.710090][ T8912] EXT4-fs (loop4): This should not happen!! Data will be lost
[  118.710090][ T8912] 
[  118.719911][ T8912] EXT4-fs (loop4): Total free blocks count 0
[  118.725998][ T8912] EXT4-fs (loop4): Free/Dirty block details
[  118.732105][ T8912] EXT4-fs (loop4): free_blocks=2415919104
[  118.737845][ T8912] EXT4-fs (loop4): dirty_blocks=8224
[  118.743160][ T8912] EXT4-fs (loop4): Block reservation details
[  118.749144][ T8912] EXT4-fs (loop4): i_reserved_data_blocks=514
[  118.822234][ T3874] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 28
[  118.842125][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.873558][ T8923] ref_ctr increment failed for inode: 0x73d offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff888109816880
[  118.902363][ T8918] uprobe: syz.1.1881:8918 failed to unregister, leaking uprobe
[  119.108793][   T29] kauditd_printk_skb: 191 callbacks suppressed
[  119.108871][   T29] audit: type=1326 audit(1746852333.052:2717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.133743][ T8935] syzkaller0: entered promiscuous mode
[  119.144153][ T8935] syzkaller0: entered allmulticast mode
[  119.149781][   T29] audit: type=1326 audit(1746852333.082:2718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.173329][   T29] audit: type=1326 audit(1746852333.082:2719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.196821][   T29] audit: type=1326 audit(1746852333.082:2720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.220563][   T29] audit: type=1326 audit(1746852333.102:2721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.243948][   T29] audit: type=1326 audit(1746852333.102:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.267406][   T29] audit: type=1326 audit(1746852333.102:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.290855][   T29] audit: type=1326 audit(1746852333.102:2724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.314349][   T29] audit: type=1326 audit(1746852333.102:2725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.337947][   T29] audit: type=1326 audit(1746852333.102:2726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8936 comm="syz.4.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10e7bee969 code=0x7ffc0000
[  119.695403][ T8965] netlink: 'syz.1.1899': attribute type 27 has an invalid length.
[  119.705162][ T8965] 0ªX¹¦D: left allmulticast mode
[  119.712964][ T8965] wg2: left promiscuous mode
[  119.717603][ T8965] wg2: left allmulticast mode
[  119.728809][ T8965] ip6gre1: left allmulticast mode
[  119.735660][ T8965] ip6gre2: left allmulticast mode
[  119.905903][ T8976] loop2: detected capacity change from 0 to 2048
[  119.922133][ T8976] EXT4-fs: Ignoring removed bh option
[  119.942916][ T8976] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.342800][ T8990] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  120.379799][ T8990] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  120.392207][ T8990] EXT4-fs (loop2): This should not happen!! Data will be lost
[  120.392207][ T8990] 
[  120.401902][ T8990] EXT4-fs (loop2): Total free blocks count 0
[  120.407944][ T8990] EXT4-fs (loop2): Free/Dirty block details
[  120.414075][ T8990] EXT4-fs (loop2): free_blocks=2415919104
[  120.419848][ T8990] EXT4-fs (loop2): dirty_blocks=8224
[  120.425168][ T8990] EXT4-fs (loop2): Block reservation details
[  120.431155][ T8990] EXT4-fs (loop2): i_reserved_data_blocks=514
[  120.524738][ T3837] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 28
[  120.953671][ T8999] loop5: detected capacity change from 0 to 4096
[  120.981738][ T9016] Falling back ldisc for ttyS3.
[  121.065042][ T8999] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.150793][ T9024] loop1: detected capacity change from 0 to 512
[  121.205073][ T9024] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  121.270987][ T9024] EXT4-fs (loop1): 1 truncate cleaned up
[  121.297857][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.307986][ T9024] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.538191][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.940901][ T9036] ref_ctr increment failed for inode: 0x76a offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff888109814d00
[  121.965225][ T9038] vcan0: entered allmulticast mode
[  121.965377][ T9037] x_tables: duplicate underflow at hook 2
[  121.971266][ T9038] vcan0: left allmulticast mode
[  121.982537][ T9035] uprobe: syz.4.1917:9035 failed to unregister, leaking uprobe
[  122.773641][ T9075] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1931'.
[  122.846976][ T9078] loop1: detected capacity change from 0 to 2048
[  122.903096][ T9078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.915455][ T9078] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.920281][ T9080] SELinux: ebitmap start bit (1728054080) is beyond the end of the bitmap (1472)
[  122.941954][ T9080] SELinux: failed to load policy
[  122.983018][ T9091] ref_ctr increment failed for inode: 0x66f offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881094d9b80
[  123.004003][ T9089] sch_fq: defrate 0 ignored.
[  123.094888][ T3837] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:33: bg 0: block 345: padding at end of block bitmap is not set
[  123.120696][ T9090] uprobe: syz.5.1935:9090 failed to unregister, leaking uprobe
[  123.144162][ T3837] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 282 with error 117
[  123.156862][ T3837] EXT4-fs (loop1): This should not happen!! Data will be lost
[  123.156862][ T3837] 
[  123.224574][ T9106] bond_slave_1: mtu less than device minimum
[  123.237049][ T9109] ref_ctr_offset mismatch. inode: 0x699 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[  123.462475][ T9120] loop5: detected capacity change from 0 to 2048
[  123.469115][ T9120] EXT4-fs: Ignoring removed bh option
[  123.512507][ T3391] page_pool_release_retry() stalled pool shutdown: id 50, 2 inflight 60 sec
[  123.524754][ T9120] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.900791][ T9130] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  123.931696][ T9130] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  123.944091][ T9130] EXT4-fs (loop5): This should not happen!! Data will be lost
[  123.944091][ T9130] 
[  123.953746][ T9130] EXT4-fs (loop5): Total free blocks count 0
[  123.959815][ T9130] EXT4-fs (loop5): Free/Dirty block details
[  123.965755][ T9130] EXT4-fs (loop5): free_blocks=2415919104
[  123.971564][ T9130] EXT4-fs (loop5): dirty_blocks=8224
[  123.976869][ T9130] EXT4-fs (loop5): Block reservation details
[  123.983264][ T9130] EXT4-fs (loop5): i_reserved_data_blocks=514
[  124.049497][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.093306][ T3874] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 28
[  124.297215][   T29] kauditd_printk_skb: 93 callbacks suppressed
[  124.297233][   T29] audit: type=1326 audit(1746852338.242:2820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.368304][   T29] audit: type=1326 audit(1746852338.282:2821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.391844][   T29] audit: type=1326 audit(1746852338.282:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.415320][   T29] audit: type=1326 audit(1746852338.282:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.438820][   T29] audit: type=1326 audit(1746852338.292:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.462261][   T29] audit: type=1326 audit(1746852338.292:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.485710][   T29] audit: type=1326 audit(1746852338.292:2826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.509202][   T29] audit: type=1326 audit(1746852338.292:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.532636][   T29] audit: type=1400 audit(1746852338.292:2828): avc:  denied  { ioctl } for  pid=9140 comm="syz.4.1956" path="socket:[22358]" dev="sockfs" ino=22358 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  124.558347][   T29] audit: type=1326 audit(1746852338.302:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9148 comm="syz.5.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f19e30de969 code=0x7ffc0000
[  124.604157][ T9154] sch_fq: defrate 0 ignored.
[  124.612140][ T9153] all: renamed from lo (while UP)
[  124.684487][ T9161] ref_ctr_offset mismatch. inode: 0x8c7 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[  124.823805][ T9172] loop4: detected capacity change from 0 to 2048
[  124.843037][ T9172] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.859610][ T9172] ext4 filesystem being mounted at /378/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.972530][ T3838] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:34: bg 0: block 345: padding at end of block bitmap is not set
[  124.997917][ T3838] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 271 with error 117
[  125.010588][ T3838] EXT4-fs (loop4): This should not happen!! Data will be lost
[  125.010588][ T3838] 
[  125.156599][ T9188] pim6reg1: entered promiscuous mode
[  125.162174][ T9188] pim6reg1: entered allmulticast mode
[  125.339112][ T9199] wg2: entered promiscuous mode
[  125.344213][ T9199] wg2: entered allmulticast mode
[  125.926878][ T9206] ref_ctr_offset mismatch. inode: 0x7c5 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[  126.079221][ T9172] syz.4.1964 (9172) used greatest stack depth: 6192 bytes left
[  126.090173][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.349011][ T9224] all: renamed from lo (while UP)
[  126.464274][ T9233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  126.473060][ T9233] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  126.511393][ T9235] wg2: left promiscuous mode
[  126.516091][ T9235] wg2: left allmulticast mode
[  126.525777][ T9235] wg2: entered promiscuous mode
[  126.530691][ T9235] wg2: entered allmulticast mode
[  127.215240][ T9258] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.241319][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.248922][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.256424][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.272795][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.280280][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.287809][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.295351][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.302818][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.310224][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.317735][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.325205][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.332799][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.340209][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.347696][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.361708][ T9258] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.373291][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.380717][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.388245][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.395683][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.403238][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.410640][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.418055][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.425584][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.433090][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.440535][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.448026][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.455596][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.463047][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.470517][ T3388] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  127.483667][ T3388] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  127.506917][ T9258] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.556877][ T9258] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.623182][ T9258] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.635176][ T9258] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.665126][ T9258] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.705396][ T9258] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.719124][ T9284] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2013'.
[  127.728069][ T9284] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2013'.
[  128.056476][ T9291] loop5: detected capacity change from 0 to 512
[  128.076814][ T9291] EXT4-fs: inline encryption not supported
[  128.097904][ T9291] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  128.344169][ T9304] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  128.355611][ T9291] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  128.380771][ T9307] loop4: detected capacity change from 0 to 512
[  128.389626][ T9291] ext4 filesystem being mounted at /331/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.411301][ T9307] EXT4-fs: Ignoring removed orlov option
[  128.460602][ T9307] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.2022: corrupted in-inode xattr: invalid ea_ino
[  128.474702][ T9307] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.2022: couldn't read orphan inode 15 (err -117)
[  128.515878][ T9307] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.534144][ T9310] loop2: detected capacity change from 0 to 512
[  128.550618][ T9310] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  128.612601][ T9310] EXT4-fs (loop2): 1 truncate cleaned up
[  128.618742][ T9310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.681092][ T4190] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  128.711706][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.766607][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.842995][ T9322] pim6reg1: entered promiscuous mode
[  128.848371][ T9322] pim6reg1: entered allmulticast mode
[  128.927857][ T9327] tipc: Started in network mode
[  128.932965][ T9327] tipc: Node identity 466a14c22b59, cluster identity 4711
[  128.940181][ T9327] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  128.982598][ T9326] tipc: Resetting bearer <eth:syzkaller0>
[  129.007919][ T9326] tipc: Disabling bearer <eth:syzkaller0>
[  129.369323][ T9359] netlink: 100 bytes leftover after parsing attributes in process `syz.6.2043'.
[  129.398961][   T29] kauditd_printk_skb: 69 callbacks suppressed
[  129.398978][   T29] audit: type=1400 audit(1746852343.342:2899): avc:  denied  { kexec_image_load } for  pid=9360 comm="syz.6.2045" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  129.486989][   T29] audit: type=1326 audit(1746852343.422:2900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9365 comm="syz.1.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[  129.510685][   T29] audit: type=1326 audit(1746852343.422:2901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9365 comm="syz.1.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[  129.534294][   T29] audit: type=1326 audit(1746852343.422:2902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9365 comm="syz.1.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[  129.557889][   T29] audit: type=1326 audit(1746852343.422:2903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9365 comm="syz.1.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[  129.581542][   T29] audit: type=1326 audit(1746852343.422:2904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9365 comm="syz.1.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[  129.605261][   T29] audit: type=1326 audit(1746852343.422:2905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9365 comm="syz.1.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b286e969 code=0x7ffc0000
[  129.630801][   T29] audit: type=1400 audit(1746852343.582:2906): avc:  denied  { create } for  pid=9373 comm="syz.4.2049" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  129.660165][   T29] audit: type=1400 audit(1746852343.592:2907): avc:  denied  { bind } for  pid=9373 comm="syz.4.2049" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  129.679768][   T29] audit: type=1400 audit(1746852343.592:2908): avc:  denied  { name_bind } for  pid=9373 comm="syz.4.2049" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  129.699438][ T9380] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2053'.
[  129.709607][ T9380] netlink: 'syz.6.2053': attribute type 5 has an invalid length.
[  129.717550][ T9380] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2053'.
[  129.743408][ T9380] netdevsim netdevsim6 eth0: set [1, 1] type 2 family 0 port 256 - 0
[  129.751685][ T9380] netdevsim netdevsim6 eth1: set [1, 1] type 2 family 0 port 256 - 0
[  129.759816][ T9380] netdevsim netdevsim6 eth2: set [1, 1] type 2 family 0 port 256 - 0
[  129.767977][ T9380] netdevsim netdevsim6 eth3: set [1, 1] type 2 family 0 port 256 - 0
[  129.776538][ T9380] geneve2: entered promiscuous mode
[  129.781902][ T9380] geneve2: entered allmulticast mode
[  130.128890][ T9406] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2064'.
[  130.137832][ T9406] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2064'.
[  130.203185][ T9403] wg2: left promiscuous mode
[  130.207907][ T9403] wg2: left allmulticast mode
[  130.219297][ T9403] ip6gre1: left allmulticast mode
[  130.355946][ T9408] ==================================================================
[  130.357380][ T9419] loop1: detected capacity change from 0 to 512
[  130.364073][ T9408] BUG: KCSAN: data-race in __lru_add_drain_all / folios_put_refs
[  130.371050][ T9419] EXT4-fs: Ignoring removed nobh option
[  130.378055][ T9408] 
[  130.378063][ T9408] write to 0xffff888237d25a68 of 1 bytes by task 9419 on cpu 1:
[  130.378082][ T9408]  folios_put_refs+0x285/0x2d0
[  130.378114][ T9408]  folio_batch_move_lru+0x1fd/0x230
[  130.378138][ T9408]  folio_add_lru+0x14a/0x1f0
[  130.378161][ T9408]  shmem_get_folio_gfp+0x7ab/0xd40
[  130.384590][ T9419] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  130.386413][ T9408]  shmem_write_begin+0xa8/0x190
[  130.395667][ T9419] EXT4-fs (loop1): 1 truncate cleaned up
[  130.398903][ T9408]  generic_perform_write+0x181/0x490
[  130.404911][ T9419] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.408691][ T9408]  shmem_file_write_iter+0xc5/0xf0
[  130.408731][ T9408]  vfs_write+0x49d/0x8d0
[  130.408754][ T9408]  ksys_write+0xda/0x1a0
[  130.408778][ T9408]  __x64_sys_write+0x40/0x50
[  130.470182][ T9408]  x64_sys_call+0x2cdd/0x2fb0
[  130.475049][ T9408]  do_syscall_64+0xd0/0x1a0
[  130.479591][ T9408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.485584][ T9408] 
[  130.487917][ T9408] read to 0xffff888237d25a68 of 1 bytes by task 9408 on cpu 0:
[  130.495522][ T9408]  __lru_add_drain_all+0x12b/0x3f0
[  130.500657][ T9408]  lru_cache_disable+0x1f/0x30
[  130.505442][ T9408]  __se_sys_mbind+0x496/0xac0
[  130.510131][ T9408]  __x64_sys_mbind+0x78/0x90
[  130.514735][ T9408]  x64_sys_call+0x14af/0x2fb0
[  130.519439][ T9408]  do_syscall_64+0xd0/0x1a0
[  130.523955][ T9408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.529894][ T9408] 
[  130.532223][ T9408] value changed: 0x12 -> 0x00
[  130.536933][ T9408] 
[  130.539262][ T9408] Reported by Kernel Concurrency Sanitizer on:
[  130.545434][ T9408] CPU: 0 UID: 0 PID: 9408 Comm: syz.2.2065 Tainted: G        W           6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(voluntary) 
[  130.559427][ T9408] Tainted: [W]=WARN
[  130.563239][ T9408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  130.573306][ T9408] ==================================================================
[  130.586948][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.031558][ T3459] page_pool_release_retry() stalled pool shutdown: id 52, 1 inflight 60 sec