last executing test programs:

3m34.055259091s ago: executing program 3 (id=539):
mkdir(&(0x7f0000000000)='./file0\x00', 0x4)
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = epoll_create(0x5)
clock_gettime(0x0, &(0x7f00000001c0))
ppoll(&(0x7f0000000180)=[{r0, 0xf80}], 0x1, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
write$P9_RVERSION(r1, &(0x7f0000000140)={0x13, 0x65, 0xffff, 0x0, 0x6, '9P2000'}, 0x13)

3m33.151545808s ago: executing program 3 (id=575):
symlink(&(0x7f0000000dc0)='./file1\x00', &(0x7f0000000cc0)='./file1\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000380)={0x0, 'wg2\x00', {0x3}, 0x1})

3m33.109001668s ago: executing program 3 (id=578):
r0 = socket(0x1e, 0x805, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@id={0x1e, 0x3, 0x1}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
close(r0)

3m33.025808078s ago: executing program 3 (id=584):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
umount2(&(0x7f00000000c0)='./file0/file0\x00', 0x8)

3m32.976269518s ago: executing program 3 (id=586):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040)=0x7, 0x4)
recvmmsg(r0, &(0x7f0000006600)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)=""/45, 0x2d}, 0x8}], 0x1, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

3m32.741606137s ago: executing program 3 (id=599):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000a80), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0103000000000000000001000000080002800400018018000180140002006d61637365633000"], 0x34}}, 0x4004810)

3m32.741394077s ago: executing program 32 (id=599):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000a80), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0103000000000000000001000000080002800400018018000180140002006d61637365633000"], 0x34}}, 0x4004810)

2m11.381647913s ago: executing program 5 (id=3410):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r2, @ANYBLOB="080003"], 0x44}}, 0x0)

2m11.312037633s ago: executing program 5 (id=3414):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)

2m11.311250012s ago: executing program 5 (id=3416):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vxcan1\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x1d, r2}, 0x10, &(0x7f0000000140)={&(0x7f0000001c40)=ANY=[@ANYBLOB="01000000370300"/16, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="0000000001"], 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000240)="c4", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty, 0x4000001}, 0x1c)

2m11.266030353s ago: executing program 5 (id=3419):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x300001a, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"/1023, @ANYRES16, @ANYRESOCT, @ANYBLOB="bb959014fe42bd878edddb9788f4cec96dd69d130caf3587695510e2e5987ce4e8cbaff59efc3d3c58c0c3439984819fc27464bed0d18293eda9357efd79ab67bf796f5164692cf674a118050b7e8ff6eb204c5edb96fbd5ceda7b64ad7d0fea8dc14cc2c51d75c9d7f9da697eb093587e71b198fa9138a6df88de934750de851b955b1bdc4ab72d5ef6bd1f12dee6476705b678d54b3a090958e506f98abb503521dd4c874d61017a6ec5a772fa084b992fc638e44ebe8261b74243d71c88146ffffeb84b108e736f"], 0xd, 0x2a0, &(0x7f0000000840)="$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")
creat(&(0x7f0000000080)='./bus\x00', 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x2, 0x0, 0x0, 0x1c, 0x15, "ef359f413bb90152f7d6d1ceed29c3ee5e0200000000000000c2aac63a01000000000000004faa2ad9c084a003ea000000000000b60000000000000000007e00", "036c475263bdbcef549ba197fce4000000000000000400002a00ffffffff89ffffff00000000e8f20000000200", "b900000000fffffffff2060000000000000200"})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x201, 0xb1)

2m10.989451422s ago: executing program 5 (id=3433):
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./bus\x00', 0x2000000, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000007c0)='./file0\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)

2m10.60791661s ago: executing program 5 (id=3445):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x1114, &(0x7f0000000200)={0x0, 0x8b1b, 0x0, 0x0, 0x21e}, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r2, 0x47fa, 0x0, 0x0, 0x0, 0x0)

2m10.60748839s ago: executing program 33 (id=3445):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x1114, &(0x7f0000000200)={0x0, 0x8b1b, 0x0, 0x0, 0x21e}, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r2, 0x47fa, 0x0, 0x0, 0x0, 0x0)

1m31.673967419s ago: executing program 2 (id=4862):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$rds(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x7}, {0x0}, &(0x7f00000011c0)=[{&(0x7f0000001140)=""/101, 0x65}], 0x1, 0x60, 0xffffffff00000003}}], 0x48, 0x8004}, 0x0)

1m31.655175509s ago: executing program 2 (id=4864):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/69, 0x3b}, 0x4}, {{&(0x7f0000000e40)=@rc={0x1f, @none}, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000540)=""/181}, {&(0x7f0000000700)=""/157}, {&(0x7f00000008c0)=""/203}, {&(0x7f00000010c0)=""/167}, {&(0x7f0000000bc0)=""/165}, {&(0x7f0000000c80)=""/249}, {&(0x7f0000000d80)=""/182}, {&(0x7f0000000600)=""/33}], 0x0, &(0x7f0000001000)=""/176}, 0x8}], 0x35, 0x2b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1m31.532770389s ago: executing program 2 (id=4870):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0xc, 0x141341)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

1m31.485057108s ago: executing program 2 (id=4873):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f0000000080)='./file0\x00')

1m31.464412659s ago: executing program 2 (id=4874):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x63f8, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000080)=0x40003ff, 0x4)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r0, &(0x7f0000007240)=[{{0x0, 0x0, 0x0}, 0xfffffffe}], 0x1, 0x45833af92e4b390e, 0x0)

1m31.216160077s ago: executing program 2 (id=4878):
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000540)={&(0x7f0000000380), 0x0, 0x0, 0x0, 0x3, 0xffffffffffffffff, 0x4}, 0x38)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r1, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x2, 0x0, @rand_addr=0x64010101}, 0x10)

1m31.208155667s ago: executing program 34 (id=4878):
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000540)={&(0x7f0000000380), 0x0, 0x0, 0x0, 0x3, 0xffffffffffffffff, 0x4}, 0x38)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r1, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x2, 0x0, @rand_addr=0x64010101}, 0x10)

1m23.837245362s ago: executing program 7 (id=5104):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0)
sendmsg$tipc(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@name={0x1e, 0x2, 0x2, {{0x1, 0x3}, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x20000080)

1m23.768603952s ago: executing program 7 (id=5107):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = syz_io_uring_setup(0x3b, &(0x7f0000000080)={0x0, 0x9bfd, 0x10100, 0x0, 0xfffffffd}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r2, r3, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1, 0x0, 0x26}, 0x0, 0x80002101})
io_uring_enter(r1, 0xd81, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r4)
close_range(r0, 0xffffffffffffffff, 0x0)

1m23.647884202s ago: executing program 7 (id=5111):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4c, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})

1m23.492202712s ago: executing program 7 (id=5121):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x21adc51, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)

1m23.491812751s ago: executing program 7 (id=5122):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)={{0x1}, 0x0, 0x0, 0x800000000000000, 0x7, 0x2, 0x0, 0x3, 0xe8, 0x0, 0x0, 0x0, 0xffffffffffffffff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

1m23.260072371s ago: executing program 7 (id=5129):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x4c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='H\x00\x00\x00\n'], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

1m23.249943001s ago: executing program 35 (id=5129):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x4c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='H\x00\x00\x00\n'], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

1.537799165s ago: executing program 4 (id=7986):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r2, 0x0)
ftruncate(r2, 0xc17a)
io_setup(0x200, &(0x7f0000000140))

1.488317195s ago: executing program 6 (id=7989):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2}, &(0x7f0000000300), &(0x7f0000000340)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x30, r0, 0x701, 0x2, 0x0, {{}, {@void, @void, @val={0xc, 0x99, {0x6d, 0x11}}}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x80000000}, @NL80211_ATTR_VENDOR_SUBCMD={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x10004}, 0x0)

1.465956575s ago: executing program 6 (id=7990):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20f42, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'nr0\x00', 0x6132})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000003"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe3a)

1.382938244s ago: executing program 6 (id=7993):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000000)={[{@jqfmt_vfsv0}, {@errors_remount}]}, 0x1, 0x784, &(0x7f00000007c0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r1 = dup(r0)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
ftruncate(r2, 0xee72)
sendfile(r1, r2, 0x0, 0x8000fffffffe)
write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f0000000380)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @ib={0x1b, 0xd, 0x9, {"db913e569d8f8279bea73bff1ce752cb"}, 0x8, 0x3, 0x7}}}, 0x90)

1.382704194s ago: executing program 4 (id=7994):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = getpid()
setreuid(0xee00, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r2], 0x1}, 0x58)

1.375724535s ago: executing program 8 (id=7995):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x26c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x23c, 0x4, 0x0, 0x1, [{0x238, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x228, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x214, 0x3, "d67a8527f76ec1d39e537c4c3060c6a405106c72848aa8bcb429b3a20d532452032d5f166334739d1719a5778bd4f724ee4ca57f2527aeeb0c75755d68fc6fa55f4825682ee95e581039823e5963beedcf65b8b005623d90772b8b6ebd2498b0aff725a3eabb6c99cb2edfe10b9c33be8a971e08401bc0807e75a2ff376b7934473bc1f02bb512b77414daf260c9c7d4e1f0758b56ec5823892af310e6252fcfb1d9dbaddefdaa26f43f12f831fd221926d6536eeff641db46920ae0e48f3ff5de599714ba6510ce479d4116a519792281736f39c9fc0e10ef557392c43389271cebcf36543fcf6f83bf74b93ee4eb5e8c82e35bb4784cc1ed0ad291b16e8368487589f7590bf5896f340a36555a1cf69736da230a809176dbdfba3d47efb9a6932e5503d277532b7d4e6f7c7373a298e5843a9f74d5fd07fbc6ad22bc644ba9b3c94ec3c8f0b9321b16e5826b1f058f781760a5d4b6a8880202b41689139c37cd51f65a92d883f8901add03b650c9ec182fb565a4d657ebba9d6a5eb426b22d5933b72362e6ec327fb679aa8034b8b3b6680ad138be47652a3e77981187d2921cebfc1639aa280e3d38dba9b1af49ceded79c78a2d656b3a3e946e17e6257def6679f70f11aa01a2d906aecf4dbc7d1a332a8932ed719ce7eecb5450f494f944b3f6b637502ddba609c6e45dcfad1db7c7dda3e2c755ddcf27132985442e9b8df16f96c82e72e3e2491856d07756b9f"}, @NFTA_MATCH_NAME={0x8, 0x1, 'bpf\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x4}]}], {0x14}}, 0x294}}, 0x4048010)

1.270880204s ago: executing program 8 (id=7996):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x526, &(0x7f0000001b40)="$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")
unshare(0x2040400)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kmem_cache_free\x00', r0}, 0x10)
setxattr$trusted_overlay_upper(0x0, 0x0, &(0x7f0000001400)=ANY=[], 0x835, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000580)={@random="e90c610faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x1, 0x1, 0x2, 0xc, 0x100, @void}, "21c2087d"}}}}}}, 0x0)
syz_emit_ethernet(0xbe, &(0x7f00000001c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x4, "9e188a80c32aa9b86ed6ce56992732d9f7fc6cda762c07530a038941764a92bb", "074336477e9205df5f47f7da965c25c746ba7f8ca07841d3da17308a6df3f54855ecedd6d8664fa125e3972a48e81039", "a562ff321beb3f036b9fd27aeff89c8e79a57a3873e0b4e6553e2c44", {"4cf02a016458a5f67aa497153eddc6a1", "9a3f9661ac468177dc130be49bdd8eb5"}}}}}}}, 0x0)

1.233501504s ago: executing program 4 (id=7997):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x17, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000680)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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")
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, 0x0, 0x0}, 0x20)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x1200, 0x0, 0x3)

1.042976593s ago: executing program 8 (id=8000):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xa, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000009e602206d0414c3400000000001090224"], 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x2, 0x4, 0x388, 0xffffffff, 0x1e8, 0x0, 0x1e8, 0xfeffffff, 0xffffffff, 0x2b8, 0x2b8, 0x2b8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@remote, @mcast1, [], [0xff000000], 'macsec0\x00', 'bond_slave_0\x00', {}, {}, 0x0, 0x0, 0x2}, 0x2f2, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@uncond, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f6531877000001e770b667f10900000000000000e3121114449fd20ba2be6e45cae72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e8)

908.029863ms ago: executing program 4 (id=8005):
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x3, &(0x7f0000000000), 0xfc, 0x55d, &(0x7f0000000700)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = fspick(r0, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)

695.894562ms ago: executing program 0 (id=8012):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2, 0x0, 0x8001}, 0x18)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r0, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
close_range(r0, r0, 0x0)

630.902782ms ago: executing program 0 (id=8014):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = getpid()
setreuid(0xee00, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r2], 0x1}, 0x58)

572.769602ms ago: executing program 4 (id=8016):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x80000000000}, 0x18)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000400)={<r3=>0xffffffffffffffff}, 0x2, 0xc}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000640)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x7ff, @empty, 0x9}, {0xa, 0x4e21, 0x1ff, @mcast2, 0x800009}, r3, 0x10001f}}, 0x48)
write$RDMA_USER_CM_CMD_DESTROY_ID(r2, &(0x7f0000000380)={0x1, 0x10, 0xfa00, {&(0x7f0000000300), r3}}, 0x18)

528.524182ms ago: executing program 6 (id=8017):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @multicast2}, 0x2}}, 0x2e)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
connect$pppl2tp(r0, &(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x4e04, 0x0, 0x0, 0x0, {0xa, 0x4e20, 0xa, @private2={0xfc, 0x2, '\x00', 0x1}, 0x77f}}}, 0x32)

525.578562ms ago: executing program 0 (id=8018):
r0 = socket(0xa, 0x40000000002, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000780)={[{@errors_remount}, {@noquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@resgid}, {@block_validity}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0)

457.491391ms ago: executing program 4 (id=8019):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r2, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00008, 0x0, 0x50032, 0xffffffffffffffff, 0x0)

448.839551ms ago: executing program 0 (id=8020):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r2)
sendmsg$NFC_CMD_DEP_LINK_UP(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)

425.369291ms ago: executing program 0 (id=8021):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="a1ab000000000000000032"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x20004004)

390.314291ms ago: executing program 6 (id=8022):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$tipc(r1, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)

378.966301ms ago: executing program 0 (id=8023):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4, 0x1e3}, &(0x7f00000004c0)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_enter(r1, 0x47f9, 0x0, 0x0, 0x0, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000100)={0x77359400}, 0x0)

362.759941ms ago: executing program 6 (id=8024):
r0 = creat(&(0x7f0000000200)='./file1\x00', 0x12e)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x24, 0x2, 0x1, 0x3, 0x0, 0x0, {}, [@CTA_STATUS_MASK={0x8}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2404}]}, 0x24}}, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000003000)=@file={0x1}, 0xc)
listen(r2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000001200), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

305.318041ms ago: executing program 8 (id=8026):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
openat(0xffffffffffffff9c, 0x0, 0x107842, 0x42)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
semget$private(0x0, 0x4, 0x0)

304.842551ms ago: executing program 8 (id=8027):
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000140)={0x0, 0x7079, 0x0, 0x4, 0x28b}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f00000001c0), 0x4)
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

240.957391ms ago: executing program 8 (id=8030):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x8404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x3200, 0x10001, 0x3, 0x0, 0x0, 0x1fffffff, 0x0, 0x0, 0x5}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

222.320681ms ago: executing program 1 (id=8031):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r0}, 0x10)
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0)

202.704641ms ago: executing program 1 (id=8032):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_local\x00', r0}, 0x10)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[], 0x10b8}, 0x0)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
socket$inet_udp(0x2, 0x2, 0x0)
connect$rxrpc(r2, &(0x7f0000000240)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x3}}, 0x24)
sendmmsg(r2, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000100100000100"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)

169.044001ms ago: executing program 1 (id=8033):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x40200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000b40)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000702000000feffff7a0af0ff9100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001010404000009000000b7030000010000006a0a00fe000000008500000032000000b700000001000000950000000000000075cdc4b57b0c65752a3ad50000007ddd005d41ce4e7bb3626d6e0d3e6600cb4500639100002000000000000000ff7f0000b52f17cee19d0001000000000000000000cb04fcbb059bafe3c6431351a58a885ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e84cef4a2ab938f65aac33c4d620de2c9b7dc10d7d313f9f57606b83b994fb484510bef2e4872f5c2fe6faaf75e5cc4071ade12f41de4f6df6a936b4ec3827c739bb39a01000000fe369258673b5df11cc2afb53611cc32a790bc0b80e80eae8f5e64be2c9d2d29db3d36eb005c7bd3f15aa6aadbeab2a01685108e61aa000000000000000000000000008b798b4f7458d1863cc67c4c6a06e828e5216f601b19db1af1b5d356d001000080000000004ba3f0151fdbbd4e97d62ecc645e143a60f10800000000000000826151e2b42bf0ed0c8cef3ba2a730a00c87fa550cf960e63fda48a29682881eb8c9cfa72b08eecc952a1a2982492a210e00d2bfea3b8d357d61abe37bafd7c310a5d8f922afe7d32a2e183722537395019f02ec4b85f6aad7faca088de9b26797a8446b16c28d856a25992dbdd5bb01ba51508951c7a7d6ca0916c3a12912715649c2b1c7192a4251b59d378d0616a48c7957e122665c8b7e89eddfc3783f6c9129a7c5f8ee5f50579e2f638f7e472f63be72a3d817b324d6e417b1c2cbfdcada0a16e31790e26cf19588a7e0496ee278226f24cf30f810da86cf1a3204f4c9404f5d7321a4fefc4d1c9139ca4b65b99909950000006b4268d99704d9a90cf27e281c1b05077ca60fdecb2717e21f8f197b1866108b6e8c71e26032176066439783568628f0309c3afa716d3706e1fa89917e131fff0000003e99c3568fd04201b37cd92ca6ebf94a2d8310f7032775cfd75652f87b039d5430b3c6643e91a2d2478ce30000000000000000000032ccd19aaa33464267e240b44efe147aa6514ff3fd62efaafb6295f2973c5f90cf33b04a8305536cb5d859d4e274d95f4d024e8fa9d5062c6087e4c999d1bf835a50b42d4e0b36bbada6ef48af5627e279ab229e90fdcc1b254b9c53b79b8016edd205a3aea1373ff2d5b7e1fa51282dfe1ff2f8a615252d0a800022fcc3750d76d3fa4c55c4aeb19e8a25b73bd2294a1d443f20245d6c27924be7204558d988b58e2958cf1f4364e3083247dd5f6659630ad2d834151a474c8616f2a3ab1cca175795aacba246a05a1e965275265c1057487c0f5cc1b47933fc02010090f07469ab5620b151b4d57716c0f402101cdd6193d99ecf67838cf8c2ad356997268446ffce30ead1912bbbad3fe80cf6cc144f8578e9b9cd8737a376bfe0f9f197621489b6b46993a432c5875ea5e3126d4e45ad787f43b1abd550aab300c199708c921a97b4d2a2f82df25470cca25e118a4096adddf947c964a4d15e10cdb403b45c4cb2d97d6fc69f30888a188b5924a9446988f9532ea3a0a2638300d55c8c769185"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x14)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x1f2f, 0x14c, 0x3ce, &(0x7f00000007c0)="9f44948721919580684010a40800", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23)

59.82543ms ago: executing program 1 (id=8034):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000400000000000000a40000000160a07010000000000000000020000000900020073797a300000000014000380080002400000000008000140000000000900010073797a300000000014000000110001"], 0x68}}, 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="20000000170a0103"], 0x20}}, 0x0)
recvmmsg(r0, &(0x7f0000000d00)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x0, 0x0)

24.42221ms ago: executing program 1 (id=8035):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000100)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff8}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x8c000003, 0x0, {[0x3]}}, 0x0, 0x8, &(0x7f0000000440))
r3 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x18)
fallocate(r3, 0x0, 0x400000000000000, 0x7)

0s ago: executing program 1 (id=8036):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b00)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0xf}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="640000000206050000000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a30000000000500040000400000050005000a000000050001000600000014000780080006400000000008001340"], 0x64}}, 0x24002800)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000030601020000000000000000000000000500010007"], 0x1c}}, 0x0)

kernel console output (not intermixed with test programs):

415919104
[  200.414149][T17898] EXT4-fs (loop6): dirty_blocks=8192
[  200.419498][T17898] EXT4-fs (loop6): Block reservation details
[  200.425519][T17898] EXT4-fs (loop6): i_reserved_data_blocks=512
[  200.447257][T17883] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  200.606674][T17917] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5990'.
[  200.613645][T17919] loop4: detected capacity change from 0 to 128
[  200.623581][T17919] FAT-fs (loop4): bogus number of FAT sectors
[  200.629962][T17919] FAT-fs (loop4): Can't find a valid FAT filesystem
[  200.694782][T17928] bridge0: port 3(vlan2) entered blocking state
[  200.701152][T17928] bridge0: port 3(vlan2) entered disabled state
[  200.710146][T17928] vlan2: entered allmulticast mode
[  200.715822][T17928] vlan2: left allmulticast mode
[  200.720595][T17926] loop6: detected capacity change from 0 to 8192
[  200.796983][T17932] sd 0:0:1:0: device reset
[  200.855637][ T3378] kernel write not supported for file /834/attr/exec (pid: 3378 comm: kworker/1:4)
[  200.928247][T17951] loop6: detected capacity change from 0 to 512
[  200.936737][T17951] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.949435][T17951] ext4 filesystem being mounted at /464/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.982185][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.007605][T17959] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6008'.
[  201.016695][T17959] netlink: 104 bytes leftover after parsing attributes in process `syz.6.6008'.
[  201.025870][T17959] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6008'.
[  201.090051][T17969] tipc: Bearer <udp:s>: already 2 bearers with priority 10
[  201.097289][T17969] tipc: Bearer <udp:s>: trying with adjusted priority
[  201.104453][T17969] tipc: Enabled bearer <udp:s>, priority 9
[  201.153066][T17975] loop6: detected capacity change from 0 to 1024
[  201.180292][T17979] 9pnet_fd: Insufficient options for proto=fd
[  201.205731][T17975] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.306626][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.328672][T17987] SELinux: security_context_str_to_sid () failed with errno=-22
[  201.431895][T17996] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6022'.
[  201.441951][T17996] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6022'.
[  201.471358][T18000] netlink: 24 bytes leftover after parsing attributes in process `syz.8.6025'.
[  201.618990][T18011] syzkaller0: entered allmulticast mode
[  201.629086][T18011] syzkaller0 (unregistering): left allmulticast mode
[  201.741728][T18030] loop6: detected capacity change from 0 to 512
[  201.748115][T18031] Process accounting resumed
[  201.764489][T18030] EXT4-fs warning (device loop6): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  201.788458][T18030] EXT4-fs (loop6): mount failed
[  201.794324][T18039] syz.8.6040[18039] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.832997][T18045] program syz.8.6044 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  201.869377][T18045] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  201.956904][T18060] netlink: 'syz.0.6050': attribute type 62 has an invalid length.
[  202.033362][T18074] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  202.546439][T18113] loop4: detected capacity change from 0 to 512
[  202.594727][T18113] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.641836][T18113] ext4 filesystem being mounted at /392/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.771338][   T29] kauditd_printk_skb: 411 callbacks suppressed
[  202.771390][   T29] audit: type=1400 audit(2000000072.630:6987): avc:  denied  { map } for  pid=18112 comm="syz.4.6073" path="/392/file1/hugetlb.1GB.usage_in_bytes" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  202.805674][   T29] audit: type=1400 audit(2000000072.630:6988): avc:  denied  { write } for  pid=18112 comm="syz.4.6073" path="/392/file1/hugetlb.1GB.usage_in_bytes" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  202.985830][T18120] loop8: detected capacity change from 0 to 512
[  203.009638][T18122] loop6: detected capacity change from 0 to 512
[  203.032257][T18122] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  203.060382][T18122] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.6076: invalid indirect mapped block 2683928664 (level 1)
[  203.079507][T18120] Quota error (device loop8): v2_read_file_info: Free block number 1 out of range (1, 6).
[  203.111314][T18120] EXT4-fs warning (device loop8): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  203.129374][T18122] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  203.161435][T18120] EXT4-fs (loop8): mount failed
[  203.166643][T18122] EXT4-fs (loop6): 1 truncate cleaned up
[  203.193547][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.220036][T18122] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.305376][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.338324][   T29] audit: type=1326 audit(2000000073.190:6989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18136 comm="syz.4.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  203.376714][   T29] audit: type=1326 audit(2000000073.230:6990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18136 comm="syz.4.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  203.401922][   T29] audit: type=1326 audit(2000000073.230:6991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18136 comm="syz.4.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  203.426620][   T29] audit: type=1326 audit(2000000073.230:6992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18136 comm="syz.4.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  203.452293][   T29] audit: type=1326 audit(2000000073.230:6993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18136 comm="syz.4.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faed0ae4690 code=0x7ffc0000
[  203.478418][   T29] audit: type=1400 audit(2000000073.230:6994): avc:  denied  { write } for  pid=18136 comm="syz.4.6078" name="config" dev="proc" ino=4026533712 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  203.503822][   T29] audit: type=1326 audit(2000000073.230:6995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18136 comm="syz.4.6078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faed0ae4690 code=0x7ffc0000
[  204.036855][T18204] loop8: detected capacity change from 0 to 512
[  204.050806][T18204] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.065634][T18204] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.080013][T18204] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #2: comm syz.8.6111: corrupted inode contents
[  204.093626][T18204] EXT4-fs error (device loop8): ext4_dirty_inode:6041: inode #2: comm syz.8.6111: mark_inode_dirty error
[  204.106251][T18204] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #2: comm syz.8.6111: corrupted inode contents
[  204.125405][T18204] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #2: comm syz.8.6111: corrupted inode contents
[  204.142395][T18204] EXT4-fs error (device loop8): ext4_dirty_inode:6041: inode #2: comm syz.8.6111: mark_inode_dirty error
[  204.155865][T18204] EXT4-fs error (device loop8): ext4_do_update_inode:5153: inode #2: comm syz.8.6111: corrupted inode contents
[  204.215628][T15731] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.271835][T18218] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6115'.
[  204.356257][T18227] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6117'.
[  204.367682][T18222] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6117'.
[  204.398913][T18235] bpf_get_probe_write_proto: 8 callbacks suppressed
[  204.398933][T18235] syz.0.6124[18235] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.407217][T18235] syz.0.6124[18235] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.419900][T18235] syz.0.6124[18235] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.609739][T18245] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  204.814619][T18273] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  204.814619][T18273] n'º|$@OOݱµ’-®+·el'
[  204.899263][ T3377] page_pool_release_retry() stalled pool shutdown: id 104, 1 inflight 60 sec
[  204.917411][T18281] SELinux: security_context_str_to_sid () failed with errno=-22
[  205.279303][T18326] syz.1.6166[18326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  205.279384][T18326] syz.1.6166[18326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  205.291149][T18326] syz.1.6166[18326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  205.805080][T18352] netlink: 24 bytes leftover after parsing attributes in process `syz.8.6178'.
[  206.295366][T18411] xt_hashlimit: max too large, truncated to 1048576
[  206.481551][T18439] 9p: Unknown Cache mode or invalid value f
[  206.496489][T18441] __nla_validate_parse: 1 callbacks suppressed
[  206.496507][T18441] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6217'.
[  206.633979][T18455] loop8: detected capacity change from 0 to 2048
[  206.699749][T18455]  loop8: p1 < > p3 p4 < >
[  206.705365][T18455] loop8: p3 start 4284289 is beyond EOD, truncated
[  206.772815][T18473] loop8: detected capacity change from 0 to 1024
[  206.780021][T18473] EXT4-fs: Ignoring removed nobh option
[  206.787380][T18473] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  206.792627][T18475] lo speed is unknown, defaulting to 1000
[  206.801715][T18473] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.823623][T18473] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  206.839068][T18475] lo speed is unknown, defaulting to 1000
[  206.852996][T15731] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.999658][T18493] syz.0.6239[18493] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  206.999730][T18493] syz.0.6239[18493] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.011371][T18493] syz.0.6239[18493] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.247851][T18503] lo speed is unknown, defaulting to 1000
[  207.296393][T18503] lo speed is unknown, defaulting to 1000
[  207.306775][T18505] syz.6.6244[18505] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.635096][T18541] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6258'.
[  207.644611][T18543] lo speed is unknown, defaulting to 1000
[  207.677240][T18545] netlink: 'syz.4.6260': attribute type 3 has an invalid length.
[  207.690189][ T4535] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  207.695416][T18543] lo speed is unknown, defaulting to 1000
[  207.861953][   T29] kauditd_printk_skb: 903 callbacks suppressed
[  207.861971][   T29] audit: type=1400 audit(2000000077.720:7899): avc:  denied  { append } for  pid=18556 comm="syz.4.6264" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  207.907811][T18559] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6265'.
[  207.943400][T18561] loop4: detected capacity change from 0 to 1764
[  207.951334][   T29] audit: type=1400 audit(2000000077.810:7900): avc:  denied  { mount } for  pid=18560 comm="syz.4.6266" name="/" dev="loop4" ino=1920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  207.952444][T18561] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6266'.
[  208.004011][   T29] audit: type=1400 audit(2000000077.860:7901): avc:  denied  { unmount } for  pid=12683 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  208.036190][   T29] audit: type=1326 audit(2000000077.890:7902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18566 comm="syz.4.6268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  208.062896][   T29] audit: type=1326 audit(2000000077.890:7903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18566 comm="syz.4.6268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  208.091933][   T29] audit: type=1326 audit(2000000077.950:7904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18566 comm="syz.4.6268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  208.118528][   T29] audit: type=1326 audit(2000000077.950:7905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18566 comm="syz.4.6268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  208.142053][   T29] audit: type=1326 audit(2000000077.950:7906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18566 comm="syz.4.6268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  208.165623][   T29] audit: type=1326 audit(2000000077.950:7907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18566 comm="syz.4.6268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  208.189380][   T29] audit: type=1326 audit(2000000077.950:7908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18566 comm="syz.4.6268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  208.311338][T18585] loop8: detected capacity change from 0 to 512
[  208.340127][ T3377] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  208.381848][T18585] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.406167][T18593] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6280'.
[  208.426555][T18585] ext4 filesystem being mounted at /216/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.612853][T18612] loop6: detected capacity change from 0 to 128
[  208.622017][T18612] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  208.636039][T18613] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6288'.
[  208.636604][T18612] ext4 filesystem being mounted at /514/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  208.662485][T15731] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.744703][T11790] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  208.821061][ T4535] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  209.084782][T18661] loop6: detected capacity change from 0 to 2048
[  209.149784][T18661]  loop6: p1 < > p3 p4 < >
[  209.155154][T18661] loop6: p3 start 4284289 is beyond EOD, truncated
[  209.374830][T18685] netlink: 'syz.6.6320': attribute type 1 has an invalid length.
[  209.382672][T18685] netlink: 224 bytes leftover after parsing attributes in process `syz.6.6320'.
[  209.488165][T18696] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6327'.
[  209.543250][T18700] lo speed is unknown, defaulting to 1000
[  209.601069][T18700] lo speed is unknown, defaulting to 1000
[  209.673215][T18709] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6332'.
[  209.761038][T18719] bpf_get_probe_write_proto: 8 callbacks suppressed
[  209.761058][T18719] syz.0.6336[18719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.782906][T18719] syz.0.6336[18719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.823043][T18719] syz.0.6336[18719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.845346][T18719] syz.0.6336[18719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.859592][T18719] syz.0.6336[18719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.872859][T18719] syz.0.6336[18719] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.967971][T18731] bridge_slave_0: left allmulticast mode
[  209.986588][T18731] bridge_slave_0: left promiscuous mode
[  209.992736][T18731] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.006158][T18731] bridge_slave_1: left allmulticast mode
[  210.011986][T18731] bridge_slave_1: left promiscuous mode
[  210.018166][T18731] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.032936][T18731] bond0: (slave bond_slave_0): Releasing backup interface
[  210.042987][T18731] bond0: (slave bond_slave_1): Releasing backup interface
[  210.058840][T18731] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  210.066997][T18731] batman_adv: batadv0: Removing interface: batadv_slave_0
[  210.077682][T18731] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  210.086513][T18731] batman_adv: batadv0: Removing interface: batadv_slave_1
[  210.112572][T18735] lo speed is unknown, defaulting to 1000
[  210.150074][T18735] lo speed is unknown, defaulting to 1000
[  210.183801][T18739] loop4: detected capacity change from 0 to 1024
[  210.219630][T18739] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  210.258314][T18739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.292852][T18748] macvlan0: entered promiscuous mode
[  210.300206][T18748] ipvlan0: entered promiscuous mode
[  210.307532][T18748] ipvlan0: left promiscuous mode
[  210.314986][T18748] macvlan0: left promiscuous mode
[  210.326126][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.390276][T18755] syz.8.6362[18755] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  210.390330][T18755] syz.8.6362[18755] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  210.406966][T18757] loop6: detected capacity change from 0 to 512
[  210.427427][T18755] syz.8.6362[18755] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  210.428460][T18755] program syz.8.6362 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  210.473217][T18757] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.485830][T18757] ext4 filesystem being mounted at /534/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.663347][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.719717][T18775] lo speed is unknown, defaulting to 1000
[  210.761505][T18775] lo speed is unknown, defaulting to 1000
[  210.797358][T18785] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6365'.
[  211.072801][T18816] netlink: 'syz.0.6379': attribute type 10 has an invalid length.
[  211.085220][T18816] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[  211.122492][T18818] syz.0.6381[18818] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  211.156811][T18820] bond1: entered promiscuous mode
[  211.182946][T18820] 8021q: adding VLAN 0 to HW filter on device bond2
[  211.190962][T18820] bond2: entered promiscuous mode
[  211.196262][T18820] bond1: (slave bond2): Enslaving as an active interface with an up link
[  211.213345][T18820] bond1 (unregistering): (slave bond2): Releasing backup interface
[  211.222107][T18820] bond2: left promiscuous mode
[  211.228700][T18820] bond1 (unregistering): Released all slaves
[  211.575350][T18830] __nla_validate_parse: 2 callbacks suppressed
[  211.575370][T18830] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6384'.
[  211.829951][T18871] netlink: 'syz.6.6401': attribute type 4 has an invalid length.
[  212.588546][T18883] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6404'.
[  212.722793][T18896] loop4: detected capacity change from 0 to 512
[  212.743322][T18896] EXT4-fs: Ignoring removed i_version option
[  212.759483][T18896] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  212.804438][T18902] netlink: 96 bytes leftover after parsing attributes in process `syz.6.6413'.
[  212.946959][T18912] bridge0: port 1(vlan2) entered blocking state
[  212.953816][T18912] bridge0: port 1(vlan2) entered disabled state
[  212.983469][T18912] vlan2: entered allmulticast mode
[  212.995479][T18912] vlan2: left allmulticast mode
[  213.021416][T18896] EXT4-fs (loop4): 1 truncate cleaned up
[  213.027670][T18896] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.084785][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.121098][T18918] netlink: 3 bytes leftover after parsing attributes in process `syz.8.6420'.
[  213.138348][T18918] 0ªX¹¦À: renamed from caif0
[  213.151553][T18918] 0ªX¹¦À: entered allmulticast mode
[  213.156787][T18918] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  213.160274][   T29] kauditd_printk_skb: 154 callbacks suppressed
[  213.160290][   T29] audit: type=1326 audit(2000000083.020:8063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.218604][   T29] audit: type=1326 audit(2000000083.030:8064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.244794][   T29] audit: type=1326 audit(2000000083.030:8065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.258735][T18929] SELinux: security_context_str_to_sid (@) failed with errno=-22
[  213.268528][   T29] audit: type=1326 audit(2000000083.030:8066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.302482][   T29] audit: type=1326 audit(2000000083.030:8067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.328869][   T29] audit: type=1326 audit(2000000083.060:8068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.352565][   T29] audit: type=1326 audit(2000000083.070:8069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.376308][   T29] audit: type=1326 audit(2000000083.070:8070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.400190][   T29] audit: type=1326 audit(2000000083.070:8071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.400952][T18927] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.423714][   T29] audit: type=1326 audit(2000000083.070:8072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.1.6423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  213.424958][T18934] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18934 comm=syz.8.6425
[  213.459935][ T4551] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  213.470180][T18934] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6425'.
[  213.489146][T18934] netlink: 'syz.8.6425': attribute type 30 has an invalid length.
[  213.540471][T18927] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.590461][T18927] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.650258][T18927] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.715965][T18927] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.728268][T18927] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.741046][T18927] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.753055][T18927] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  213.771989][T18939] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6427'.
[  213.867961][T18955] loop6: detected capacity change from 0 to 1024
[  213.875120][T18955] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  213.903263][T18955] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.970831][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.089831][ T4593] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  214.143671][T18983] netlink: 'syz.1.6446': attribute type 10 has an invalid length.
[  214.155359][T18983] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  214.159629][T18985] loop6: detected capacity change from 0 to 1024
[  214.164339][T18983] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  214.170984][T18985] EXT4-fs: Ignoring removed orlov option
[  214.179480][T18983] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  214.185215][T18985] EXT4-fs: Ignoring removed nomblk_io_submit option
[  214.194045][T18983] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  214.210444][T18983] geneve1: entered promiscuous mode
[  214.245995][T18987] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6448'.
[  214.285056][T18983] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  214.293921][T18983] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  214.302773][T18983] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  214.311566][T18983] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.332541][T18983] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  214.366269][T18985] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8843c118, mo2=0082]
[  214.383644][T18985] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.396838][T18987] bond1: entered promiscuous mode
[  214.431253][T18993] 8021q: adding VLAN 0 to HW filter on device bond2
[  214.448642][T18993] bond2: entered promiscuous mode
[  214.456821][T18993] bond1: (slave bond2): Enslaving as an active interface with an up link
[  214.491637][T18996] bond1 (unregistering): (slave bond2): Releasing backup interface
[  214.519397][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.531920][T18996] bond2: left promiscuous mode
[  214.538001][T18996] bond1 (unregistering): Released all slaves
[  214.939125][T19041] random: crng reseeded on system resumption
[  214.971702][T19050] netlink: 'syz.0.6474': attribute type 1 has an invalid length.
[  214.979602][T19050] netlink: 'syz.0.6474': attribute type 4 has an invalid length.
[  214.987556][T19050] netlink: 15363 bytes leftover after parsing attributes in process `syz.0.6474'.
[  215.236927][T19070] loop4: detected capacity change from 0 to 8192
[  215.321472][T19070]  loop4: p1 p2 p3 p4
[  215.325631][T19070] loop4: p1 start 51379968 is beyond EOD, truncated
[  215.333903][T19070] loop4: p3 size 100663552 extends beyond EOD, truncated
[  215.342385][T19070] loop4: p4 size 81920 extends beyond EOD, truncated
[  215.509680][T19107] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[  215.517215][T19108] loop4: detected capacity change from 0 to 512
[  215.529719][T19108] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  215.551623][T19108] EXT4-fs (loop4): 1 truncate cleaned up
[  215.557777][T19108] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.594331][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.608518][T19119] netlink: 76 bytes leftover after parsing attributes in process `syz.0.6504'.
[  215.689028][T19131] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6511'.
[  215.695285][T19135] syz_tun: entered allmulticast mode
[  215.706567][T19134] syz_tun: left allmulticast mode
[  215.781339][T19147] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  216.266801][T19176] serio: Serial port ttyS3
[  216.350810][T19186] bpf_get_probe_write_proto: 11 callbacks suppressed
[  216.350887][T19186] syz.1.6533[19186] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  216.357803][T19186] syz.1.6533[19186] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  216.371495][T19186] syz.1.6533[19186] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  216.798355][T19206] loop8: detected capacity change from 0 to 1024
[  216.818825][T19206] EXT4-fs (loop8): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  216.843326][T19206] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.033220][T15731] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.133037][T19235] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  217.342122][T19250] syz.8.6561[19250] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  217.342889][T19250] syz.8.6561[19250] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  217.357539][T19250] syz.8.6561[19250] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  217.428424][T19261] __nla_validate_parse: 1 callbacks suppressed
[  217.428498][T19261] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6567'.
[  217.546163][T19268] vxcan1: entered promiscuous mode
[  217.557975][T19268] vlan2: entered promiscuous mode
[  217.573375][T19268] vxcan1: left promiscuous mode
[  217.942201][T19302] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6585'.
[  217.968170][T19300] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6585'.
[  218.193725][   T29] kauditd_printk_skb: 132 callbacks suppressed
[  218.193800][   T29] audit: type=1326 audit(2000000088.050:8205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19305 comm="syz.1.6587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  218.246095][   T29] audit: type=1326 audit(2000000088.080:8206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19305 comm="syz.1.6587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  218.371793][T19309] netlink: 'syz.1.6588': attribute type 3 has an invalid length.
[  218.570691][ T3377] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  218.589816][ T4535] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  218.824498][   T29] audit: type=1400 audit(2000000088.680:8207): avc:  denied  { ioctl } for  pid=19319 comm="syz.1.6593" path="socket:[55470]" dev="sockfs" ino=55470 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  218.941505][   T29] audit: type=1326 audit(2000000088.790:8208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19326 comm="syz.8.6598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6536245d29 code=0x7ffc0000
[  218.965251][   T29] audit: type=1326 audit(2000000088.800:8209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19326 comm="syz.8.6598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6536245d29 code=0x7ffc0000
[  219.026323][T19335] loop8: detected capacity change from 0 to 128
[  219.043598][   T29] audit: type=1326 audit(2000000088.860:8210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19326 comm="syz.8.6598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6536245d29 code=0x7ffc0000
[  219.067212][   T29] audit: type=1326 audit(2000000088.860:8211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19326 comm="syz.8.6598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6536245d29 code=0x7ffc0000
[  219.069918][T19335] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  219.091056][   T29] audit: type=1326 audit(2000000088.860:8212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19326 comm="syz.8.6598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6536245d29 code=0x7ffc0000
[  219.133687][   T29] audit: type=1400 audit(2000000088.920:8213): avc:  denied  { mount } for  pid=19334 comm="syz.8.6599" name="/" dev="loop8" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  219.188934][   T29] audit: type=1400 audit(2000000089.040:8214): avc:  denied  { unmount } for  pid=15731 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  219.308503][T19356] 9pnet: p9_errstr2errno: server reported unknown error œæçæ
[  219.517972][T19370] loop8: detected capacity change from 0 to 736
[  219.580730][T19370] Symlink component flag not implemented
[  219.586733][T19370] Symlink component flag not implemented (122)
[  219.604133][T19374] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6616'.
[  219.741951][T19390] ALSA: seq fatal error: cannot create timer (-19)
[  220.112937][T19422] loop4: detected capacity change from 0 to 8192
[  220.218535][T19450] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6651'.
[  220.432245][T19487] loop6: detected capacity change from 0 to 256
[  220.439067][T19487] FAT-fs (loop6): bogus number of FAT sectors
[  220.445246][T19487] FAT-fs (loop6): Can't find a valid FAT filesystem
[  220.487413][T19490] block device autoloading is deprecated and will be removed.
[  220.501393][T19490] syz.4.6668: attempt to access beyond end of device
[  220.501393][T19490] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  220.630205][T19505] syz.6.6674[19505] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.630267][T19505] syz.6.6674[19505] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.642411][T19505] syz.6.6674[19505] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.668197][T19503] loop4: detected capacity change from 0 to 512
[  220.692577][T19503] EXT4-fs (loop4): orphan cleanup on readonly fs
[  220.704316][T19503] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6672: bg 0: block 248: padding at end of block bitmap is not set
[  220.728972][T19503] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.6672: Failed to acquire dquot type 1
[  220.752663][T19503] EXT4-fs (loop4): 1 truncate cleaned up
[  220.758990][T19503] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  220.783096][T19514] loop6: detected capacity change from 0 to 8192
[  220.808197][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.041564][T19528] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6683'.
[  221.131031][T19536] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6686'.
[  221.539793][T19576] lo speed is unknown, defaulting to 1000
[  221.648418][T19579] loop8: detected capacity change from 0 to 8192
[  221.682814][T19576] lo speed is unknown, defaulting to 1000
[  221.740865][T19573] netlink: 'syz.8.6704': attribute type 6 has an invalid length.
[  221.902285][T19599] syz.6.6712[19599] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  221.902387][T19599] syz.6.6712[19599] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  221.933810][T19599] syz.6.6712[19599] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  221.967087][T19603] xt_HMARK: spi-set and port-set can't be combined
[  222.076676][T19619] loop4: detected capacity change from 0 to 2048
[  222.090928][T19619] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.126882][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.475147][T19662] netlink: 92 bytes leftover after parsing attributes in process `syz.0.6741'.
[  222.602438][T19675] netlink: 'syz.1.6746': attribute type 4 has an invalid length.
[  222.633191][T19675] netlink: 'syz.1.6746': attribute type 4 has an invalid length.
[  222.800061][T19694] netlink: 96 bytes leftover after parsing attributes in process `syz.8.6754'.
[  222.867938][T19702] loop6: detected capacity change from 0 to 1024
[  222.893010][T19702] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  222.903972][T19702] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  222.949303][T19702] JBD2: no valid journal superblock found
[  222.955350][T19702] EXT4-fs (loop6): Could not load journal inode
[  222.975266][T19710] loop8: detected capacity change from 0 to 128
[  223.274306][T19739] netlink: 96 bytes leftover after parsing attributes in process `syz.0.6776'.
[  223.292182][T19741] loop8: detected capacity change from 0 to 1024
[  223.316347][T19741] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.341363][T15731] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.360518][T19748] lo speed is unknown, defaulting to 1000
[  223.398356][T19752] loop8: detected capacity change from 0 to 1024
[  223.419918][T19752] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  223.444027][T19755] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6783'.
[  223.454087][T19752] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  223.471423][T19748] lo speed is unknown, defaulting to 1000
[  223.486080][T19752] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  223.504728][T19752] EXT4-fs (loop8): orphan cleanup on readonly fs
[  223.520998][T19752] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  223.533635][T19752] EXT4-fs (loop8): Remounting filesystem read-only
[  223.544918][T19752] __quota_error: 79 callbacks suppressed
[  223.544933][T19752] Quota error (device loop8): write_blk: dquota write failed
[  223.558166][T19752] Quota error (device loop8): write_blk: dquota write failed
[  223.565679][T19752] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[  223.583856][T19752] Quota error (device loop8): v2_write_file_info: Can't write info structure
[  223.603175][T19752] EXT4-fs (loop8): 1 orphan inode deleted
[  223.613702][T19752] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  223.646295][T19752] SELinux: (dev loop8, type ext4) getxattr errno 5
[  223.654957][T19752] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.711704][   T29] audit: type=1400 audit(2000000093.570:8292): avc:  denied  { getopt } for  pid=19764 comm="syz.0.6786" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  223.778619][   T29] audit: type=1400 audit(2000000093.630:8293): avc:  denied  { connect } for  pid=19767 comm="syz.8.6787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  223.866350][T19785] IPVS: Error connecting to the multicast addr
[  223.898337][   T29] audit: type=1326 audit(2000000093.750:8294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19790 comm="syz.0.6796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  223.939074][   T29] audit: type=1326 audit(2000000093.780:8295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19790 comm="syz.0.6796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  223.962733][   T29] audit: type=1326 audit(2000000093.780:8296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19790 comm="syz.0.6796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  223.986235][   T29] audit: type=1326 audit(2000000093.780:8297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19790 comm="syz.0.6796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  224.046307][T19801] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6800'.
[  224.097471][T19808] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6803'.
[  224.189691][T19816] syz.6.6806[19816] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  224.189850][T19816] syz.6.6806[19816] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  224.202135][T19816] syz.6.6806[19816] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  224.395679][T19832] syz.6.6814[19832] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  224.407434][T19832] syz.6.6814[19832] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  224.418949][T19832] syz.6.6814[19832] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  224.515121][T19840] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6818'.
[  224.537919][T19840] geneve2: entered promiscuous mode
[  224.543174][T19840] geneve2: entered allmulticast mode
[  224.675875][T19851] netlink: 'syz.4.6823': attribute type 4 has an invalid length.
[  224.685550][T19851] netlink: 'syz.4.6823': attribute type 4 has an invalid length.
[  224.693238][T19853] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6824'.
[  224.880205][T19876] syz.1.6835[19876] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  224.911730][T19882] macvlan0: entered promiscuous mode
[  224.932712][T19882] ipvlan0: entered promiscuous mode
[  224.938512][T19882] ipvlan0: left promiscuous mode
[  224.955786][T19882] macvlan0: left promiscuous mode
[  225.104412][T19906] ip6gre1: entered allmulticast mode
[  225.112137][T19904] loop8: detected capacity change from 0 to 8192
[  225.272974][T19929] syzkaller0: entered promiscuous mode
[  225.278647][T19929] syzkaller0: entered allmulticast mode
[  225.911391][T20019] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  225.933894][T20019] loop6: detected capacity change from 0 to 2048
[  226.071232][T20019] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.110993][T20017] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  226.119652][T20017] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  226.235070][T20042] macvlan2: entered promiscuous mode
[  226.240472][T20042] bridge0: entered promiscuous mode
[  226.260139][T20042] bridge0: port 1(macvlan2) entered blocking state
[  226.266734][T20042] bridge0: port 1(macvlan2) entered disabled state
[  226.273640][T20042] macvlan2: entered allmulticast mode
[  226.279124][T20042] bridge0: entered allmulticast mode
[  226.291518][T20042] macvlan2: left allmulticast mode
[  226.296673][T20042] bridge0: left allmulticast mode
[  226.306062][T20042] bridge0: left promiscuous mode
[  226.307855][T20047] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6915'.
[  226.480434][T20069] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6923'.
[  226.489802][T20069] netlink: 'syz.1.6923': attribute type 25 has an invalid length.
[  226.511611][T20069] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  226.520466][T20069] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  226.529200][T20069] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  226.537961][T20069] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  226.700515][T20077] wireguard0: entered promiscuous mode
[  226.706026][T20077] wireguard0: entered allmulticast mode
[  226.763182][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.849755][T20083] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  226.858326][T20083] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  226.970993][T20097] loop4: detected capacity change from 0 to 512
[  226.981730][T20097] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.994483][T20097] ext4 filesystem being mounted at /526/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.007051][T20097] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.6936: corrupted inode contents
[  227.019019][T20097] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.6936: mark_inode_dirty error
[  227.030785][T20097] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.6936: corrupted inode contents
[  227.042845][T20097] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.6936: mark_inode_dirty error
[  227.067273][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.294994][T20101] Set syz1 is full, maxelem 65536 reached
[  227.715845][T20151] pim6reg1: entered promiscuous mode
[  227.721248][T20151] pim6reg1: entered allmulticast mode
[  227.740996][T20153] random: crng reseeded on system resumption
[  228.094457][   T35] IPVS: starting estimator thread 0...
[  228.134597][T20179] lo speed is unknown, defaulting to 1000
[  228.189234][T20192] IPVS: using max 2400 ests per chain, 120000 per kthread
[  228.197199][T20179] lo speed is unknown, defaulting to 1000
[  228.280644][T20179] chnl_net:caif_netlink_parms(): no params data found
[  228.353965][T20179] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.361184][T20179] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.370349][T20179] bridge_slave_0: entered allmulticast mode
[  228.376904][T20179] bridge_slave_0: entered promiscuous mode
[  228.384903][T20179] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.392021][T20179] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.401475][T20179] bridge_slave_1: entered allmulticast mode
[  228.408189][T20179] bridge_slave_1: entered promiscuous mode
[  228.446687][T20179] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  228.463645][T20179] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  228.492937][T20179] team0: Port device team_slave_0 added
[  228.494570][T20215] bpf_get_probe_write_proto: 17 callbacks suppressed
[  228.494589][T20215] syz.6.6981[20215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  228.504033][T20179] team0: Port device team_slave_1 added
[  228.519069][T20215] syz.6.6981[20215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  228.526791][T20215] syz.6.6981[20215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  228.546640][T20179] batman_adv: batadv0: Adding interface: batadv_slave_0
[  228.565049][T20179] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  228.592048][T20179] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  228.603480][T20179] batman_adv: batadv0: Adding interface: batadv_slave_1
[  228.611223][T20179] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  228.639502][T20179] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  228.667162][T20179] hsr_slave_0: entered promiscuous mode
[  228.673422][T20179] hsr_slave_1: entered promiscuous mode
[  228.679416][T20179] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  228.694421][T20179] Cannot create hsr debugfs directory
[  228.703014][T20222] lo speed is unknown, defaulting to 1000
[  228.854273][T20222] lo speed is unknown, defaulting to 1000
[  228.854531][T20224] loop4: detected capacity change from 0 to 8192
[  228.950851][T20221] netlink: 'syz.4.6983': attribute type 6 has an invalid length.
[  229.039316][   T29] kauditd_printk_skb: 218 callbacks suppressed
[  229.039332][   T29] audit: type=1326 audit(2000000098.890:8516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20243 comm="syz.6.6990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  229.069455][   T29] audit: type=1326 audit(2000000098.890:8517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20243 comm="syz.6.6990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  229.092892][   T29] audit: type=1326 audit(2000000098.890:8518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20243 comm="syz.6.6990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  229.116525][   T29] audit: type=1326 audit(2000000098.890:8519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20243 comm="syz.6.6990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  229.215353][T20179] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  229.236764][T20179] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  229.245639][T20179] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  229.262596][T20179] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  229.306414][T20265] syz.4.7000[20265] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.306507][T20265] syz.4.7000[20265] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.318719][T20265] syz.4.7000[20265] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.335133][T20179] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.391709][T20179] 8021q: adding VLAN 0 to HW filter on device team0
[  229.402763][ T4577] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.409948][ T4577] bridge0: port 1(bridge_slave_0) entered forwarding state
[  229.424556][ T4616] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.431686][ T4616] bridge0: port 2(bridge_slave_1) entered forwarding state
[  229.447598][   T29] audit: type=1326 audit(2000000099.300:8520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20273 comm="syz.0.7004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  229.471284][   T29] audit: type=1326 audit(2000000099.300:8521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20273 comm="syz.0.7004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  229.495028][   T29] audit: type=1326 audit(2000000099.300:8522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20273 comm="syz.0.7004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  229.518620][   T29] audit: type=1326 audit(2000000099.300:8523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20273 comm="syz.0.7004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f123afd7c47 code=0x7ffc0000
[  229.542187][   T29] audit: type=1326 audit(2000000099.300:8524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20273 comm="syz.0.7004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f123afd7bbc code=0x7ffc0000
[  229.543853][T20278] __nla_validate_parse: 3 callbacks suppressed
[  229.543869][T20278] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7005'.
[  229.566053][   T29] audit: type=1326 audit(2000000099.300:8525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20273 comm="syz.0.7004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f123afd7af4 code=0x7ffc0000
[  229.616108][T20179] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  229.626668][T20179] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  229.701587][T20290] lo speed is unknown, defaulting to 1000
[  229.732303][T20179] 8021q: adding VLAN 0 to HW filter on device batadv0
[  229.794914][T20290] lo speed is unknown, defaulting to 1000
[  229.928154][T20283] netlink: 'syz.0.7007': attribute type 6 has an invalid length.
[  229.953399][T20179] veth0_vlan: entered promiscuous mode
[  229.967223][T20179] veth1_vlan: entered promiscuous mode
[  230.022581][T20179] veth0_macvtap: entered promiscuous mode
[  230.040262][T20179] veth1_macvtap: entered promiscuous mode
[  230.060924][T20179] batman_adv: batadv0: Interface activated: batadv_slave_0
[  230.103973][T20179] batman_adv: batadv0: Interface activated: batadv_slave_1
[  230.130553][T20179] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.139364][T20179] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.148198][T20179] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.156946][T20179] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.226215][T20340] loop6: detected capacity change from 0 to 2048
[  230.319579][T20340]  loop6: p1 < > p4
[  230.331353][T20340] loop6: p4 size 8388608 extends beyond EOD, truncated
[  230.427192][T20364] loop6: detected capacity change from 0 to 1024
[  230.462937][T20364] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  230.561851][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.681346][T20381] lo speed is unknown, defaulting to 1000
[  230.756896][T20381] lo speed is unknown, defaulting to 1000
[  230.781488][T20363] netlink: 36 bytes leftover after parsing attributes in process `+}[@'.
[  230.786446][T20388] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7043'.
[  231.094275][T20398] bond1: entered promiscuous mode
[  231.099459][T20398] bond1: entered allmulticast mode
[  231.121552][T20398] 8021q: adding VLAN 0 to HW filter on device bond1
[  231.157412][T20398] bond1 (unregistering): Released all slaves
[  231.276345][T20410] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  231.386146][T20423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7059'.
[  231.448231][T20430] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7062'.
[  231.507205][T20438] netlink: 96 bytes leftover after parsing attributes in process `syz.4.7064'.
[  231.621685][T20456] syz.1.7074[20456] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.621816][T20456] syz.1.7074[20456] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.634654][T20456] syz.1.7074[20456] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.681517][T20459] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  231.860656][T20471] netlink: 824 bytes leftover after parsing attributes in process `syz.1.7081'.
[  232.232415][T20514] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  232.353546][T20531] syz.1.7105[20531] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  232.397473][T20542] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7110'.
[  232.553151][T20555] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7116'.
[  233.111740][T20596] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20596 comm=syz.1.7144
[  233.117155][T20594] ip6tnl1: entered promiscuous mode
[  233.129713][T20594] ip6tnl1: entered allmulticast mode
[  233.344602][T20611] netlink: 100 bytes leftover after parsing attributes in process `syz.6.7140'.
[  233.548647][T20637] loop6: detected capacity change from 0 to 1024
[  233.570742][T20637] EXT4-fs: Ignoring removed i_version option
[  233.576882][T20637] EXT4-fs: Ignoring removed bh option
[  233.605799][T20637] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.715633][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.231355][T20681] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  234.298365][T20685] bond1: entered promiscuous mode
[  234.303520][T20685] bond1: entered allmulticast mode
[  234.311829][T20685] 8021q: adding VLAN 0 to HW filter on device bond1
[  234.326192][T20685] bond1 (unregistering): Released all slaves
[  234.365097][T20694] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.374847][T20694] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.425743][T20699] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  234.745726][   T29] kauditd_printk_skb: 73 callbacks suppressed
[  234.745760][   T29] audit: type=1326 audit(2000000104.600:8599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20704 comm="syz.6.7181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  234.746550][T20705] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[  234.752625][   T29] audit: type=1326 audit(2000000104.600:8600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20704 comm="syz.6.7181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  234.805328][   T29] audit: type=1326 audit(2000000104.600:8601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20704 comm="syz.6.7181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  234.829041][   T29] audit: type=1326 audit(2000000104.600:8602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20704 comm="syz.6.7181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  234.858350][   T29] audit: type=1326 audit(2000000104.710:8603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20704 comm="syz.6.7181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  234.891273][   T29] audit: type=1326 audit(2000000104.710:8604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20704 comm="syz.6.7181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49c0815d29 code=0x7ffc0000
[  234.918058][T20655] syz.1.7163 (20655) used greatest stack depth: 7032 bytes left
[  234.995566][T20715] bpf_get_probe_write_proto: 2 callbacks suppressed
[  234.995584][T20715] syz.4.7185[20715] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.002484][T20715] syz.4.7185[20715] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.016559][T20715] syz.4.7185[20715] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.046619][   T29] audit: type=1326 audit(2000000104.900:8605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20720 comm="syz.8.7189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94d28b5d29 code=0x7ffc0000
[  235.085578][   T29] audit: type=1326 audit(2000000104.900:8606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20720 comm="syz.8.7189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94d28b5d29 code=0x7ffc0000
[  235.085868][T20724] loop4: detected capacity change from 0 to 736
[  235.109170][   T29] audit: type=1326 audit(2000000104.900:8607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20720 comm="syz.8.7189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94d28b5d29 code=0x7ffc0000
[  235.109205][   T29] audit: type=1326 audit(2000000104.900:8608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20720 comm="syz.8.7189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94d28b5d29 code=0x7ffc0000
[  235.117550][T20724] iso9660: Bad value for 'mode'
[  235.168238][T20726] bond1: entered promiscuous mode
[  235.173392][T20726] bond1: entered allmulticast mode
[  235.181049][T20726] 8021q: adding VLAN 0 to HW filter on device bond1
[  235.191789][T20726] bond1 (unregistering): Released all slaves
[  235.227151][T20730] vlan1: entered allmulticast mode
[  235.232491][T20730] bridge_slave_0: entered allmulticast mode
[  235.241784][T20730] bridge_slave_0: left allmulticast mode
[  235.292627][T20736] netlink: 76 bytes leftover after parsing attributes in process `syz.8.7196'.
[  235.329816][T20742] random: crng reseeded on system resumption
[  235.458924][T20761] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7216'.
[  235.495857][T20764] syz.4.7209[20764] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.496107][T20764] syz.4.7209[20764] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.501247][T20767] batadv_slave_1: entered promiscuous mode
[  235.509600][T20764] syz.4.7209[20764] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.526876][T20767] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7208'.
[  235.546913][T20768] bond2: entered promiscuous mode
[  235.552343][T20768] bond2: entered allmulticast mode
[  235.557721][T20768] 8021q: adding VLAN 0 to HW filter on device bond2
[  235.566594][T20768] bond2 (unregistering): Released all slaves
[  235.582658][T20767] batadv_slave_1 (unregistering): left promiscuous mode
[  236.023824][T20815] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7231'.
[  236.054138][T20817] atomic_op ffff88812fb07528 conn xmit_atomic 0000000000000000
[  236.150658][T20823] Falling back ldisc for ttyS3.
[  236.202388][T20827] loop8: detected capacity change from 0 to 4096
[  236.216504][T20827] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.265957][T20833] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  236.417959][T20179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.621415][T20845] netlink: 48 bytes leftover after parsing attributes in process `syz.8.7244'.
[  236.665316][T20847] loop6: detected capacity change from 0 to 256
[  237.058124][T20882] bond1: entered promiscuous mode
[  237.063296][T20882] bond1: entered allmulticast mode
[  237.068871][T20882] 8021q: adding VLAN 0 to HW filter on device bond1
[  237.088565][T20882] bond1 (unregistering): Released all slaves
[  237.236306][T20898] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7267'.
[  237.394409][T20914] loop4: detected capacity change from 0 to 512
[  237.409309][T20914] EXT4-fs: dax option not supported
[  237.425486][T20916] loop8: detected capacity change from 0 to 2048
[  237.459680][T20916]  loop8: p1 < > p4
[  237.464169][T20916] loop8: p4 size 8388608 extends beyond EOD, truncated
[  237.588413][T20938] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.7286'.
[  237.634019][T20941] SELinux: security_context_str_to_sid (J) failed with errno=-22
[  237.816739][T20955] SELinux:  Context Ì”‡× is not valid (left unmapped).
[  237.869555][T20959] lo speed is unknown, defaulting to 1000
[  237.885906][T20963] loop8: detected capacity change from 0 to 1024
[  237.911049][T20963] EXT4-fs: Ignoring removed nobh option
[  237.932216][T20959] lo speed is unknown, defaulting to 1000
[  237.939229][T20963] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.012090][T20179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.200490][T21005] loop8: detected capacity change from 0 to 512
[  238.234117][T21005] EXT4-fs (loop8): too many log groups per flexible block group
[  238.241935][T21005] EXT4-fs (loop8): failed to initialize mballoc (-12)
[  238.250244][T21005] EXT4-fs (loop8): mount failed
[  238.313260][T20993] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  238.321902][T20993] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  238.383278][T21033] 
@ÿ: renamed from vlan0 (while UP)
[  238.394897][T21038] netlink: 'syz.4.7322': attribute type 16 has an invalid length.
[  238.402776][T21038] netlink: 64138 bytes leftover after parsing attributes in process `syz.4.7322'.
[  238.999227][T21096] syz.0.7355[21096] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  238.999485][T21096] syz.0.7355[21096] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  239.011336][T21096] syz.0.7355[21096] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  239.042078][T21101] syz.0.7357[21101] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  239.295224][T21121] loop4: detected capacity change from 0 to 512
[  239.354307][T21125] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7367'.
[  239.402205][T21121] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.416247][T21121] ext4 filesystem being mounted at /619/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.642800][T21145] vlan1: entered allmulticast mode
[  239.648387][T21145] bridge_slave_0: entered allmulticast mode
[  239.657090][T21145] bridge_slave_0: left allmulticast mode
[  240.153718][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.203980][T21184] pim6reg: entered allmulticast mode
[  240.210646][T21184] pim6reg: left allmulticast mode
[  240.427546][T21190] netlink: 76 bytes leftover after parsing attributes in process `syz.0.7394'.
[  240.518388][T21196] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7397'.
[  240.619242][   T29] kauditd_printk_skb: 127 callbacks suppressed
[  240.619259][   T29] audit: type=1326 audit(2000000110.470:8736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7faed0adcce7 code=0x7ffc0000
[  240.649025][   T29] audit: type=1326 audit(2000000110.470:8737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7faed0a81f29 code=0x7ffc0000
[  240.672513][   T29] audit: type=1326 audit(2000000110.470:8738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7faed0adcce7 code=0x7ffc0000
[  240.696041][   T29] audit: type=1326 audit(2000000110.470:8739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7faed0a81f29 code=0x7ffc0000
[  240.719567][   T29] audit: type=1326 audit(2000000110.470:8740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  240.743340][   T29] audit: type=1326 audit(2000000110.470:8741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  240.767171][   T29] audit: type=1326 audit(2000000110.530:8742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  240.790734][   T29] audit: type=1326 audit(2000000110.530:8743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  240.814414][   T29] audit: type=1326 audit(2000000110.530:8744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  240.838018][   T29] audit: type=1326 audit(2000000110.530:8745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21197 comm="syz.4.7398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  240.929642][T21211] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7404'.
[  240.967777][T21216] bpf_get_probe_write_proto: 2 callbacks suppressed
[  240.967794][T21216] syz.8.7406[21216] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  240.974875][T21216] syz.8.7406[21216] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  240.993399][T21216] syz.8.7406[21216] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.369368][ T1039] page_pool_release_retry() stalled pool shutdown: id 138, 1 inflight 60 sec
[  241.476544][T21292] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7440'.
[  241.522126][T21299] syz.6.7443[21299] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.522275][T21299] syz.6.7443[21299] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.536325][T21299] syz.6.7443[21299] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.853137][T21328] syz.6.7455[21328] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.864712][T21328] syz.6.7455[21328] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.882093][T21328] syz.6.7455[21328] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.924873][T21341] smc: net device bond0 applied user defined pnetid SYZ1
[  241.960790][T21345] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pid=21345 comm=syz.8.7461
[  241.973833][T21345] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7461'.
[  241.984101][T21345] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  241.992927][T21345] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (79)
[  242.048943][T21353] netlink: 184 bytes leftover after parsing attributes in process `syz.6.7465'.
[  242.064836][T21355] batadv_slave_1: entered promiscuous mode
[  242.105817][T21355] syz_tun: entered promiscuous mode
[  242.116076][T21354] syz_tun: left promiscuous mode
[  242.121405][T21354] batadv_slave_1: left promiscuous mode
[  242.171985][T21362] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7468'.
[  242.210967][T21368] loop8: detected capacity change from 0 to 128
[  242.224415][T21368] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  242.237603][T21370] bridge0: port 3(bond0) entered blocking state
[  242.243925][T21370] bridge0: port 3(bond0) entered disabled state
[  242.255633][T21368] ext4 filesystem being mounted at /72/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  242.288095][T21370] bond0: entered allmulticast mode
[  242.293403][T21370] bond_slave_0: entered allmulticast mode
[  242.299262][T21370] bond_slave_1: entered allmulticast mode
[  242.302303][T21368] syz.8.7472[21368] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  242.305005][T21370] dummy0: entered allmulticast mode
[  242.321617][T21370] geneve1: entered allmulticast mode
[  242.328735][T21370] bond0: entered promiscuous mode
[  242.333972][T21370] bond_slave_0: entered promiscuous mode
[  242.339807][T21370] bond_slave_1: entered promiscuous mode
[  242.345530][T21370] dummy0: entered promiscuous mode
[  242.353226][T21370] bridge0: port 3(bond0) entered blocking state
[  242.359575][T21370] bridge0: port 3(bond0) entered forwarding state
[  242.416657][T20179] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  242.502745][T21398] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7482'.
[  242.527798][T21400] netlink: 'syz.1.7483': attribute type 5 has an invalid length.
[  242.641967][T21418] netlink: 'syz.8.7491': attribute type 3 has an invalid length.
[  242.649882][T21418] netlink: 132 bytes leftover after parsing attributes in process `syz.8.7491'.
[  242.732160][T21431] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7498'.
[  242.741877][T21431] tipc: Started in network mode
[  242.746955][T21431] tipc: Node identity 1, cluster identity 4711
[  242.753191][T21431] tipc: Node number set to 1
[  243.050024][T21450] lo speed is unknown, defaulting to 1000
[  243.056172][T21452] pim6reg1: entered promiscuous mode
[  243.061587][T21452] pim6reg1: entered allmulticast mode
[  243.171945][T21450] lo speed is unknown, defaulting to 1000
[  243.338469][T21475] random: crng reseeded on system resumption
[  243.579345][T21505] wireguard0: entered promiscuous mode
[  243.584942][T21505] wireguard0: entered allmulticast mode
[  243.705904][T21518] loop6: detected capacity change from 0 to 128
[  243.726216][T21518] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  243.741468][T21518] ext4 filesystem being mounted at /759/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  243.785500][T21524] netlink: 'syz.4.7537': attribute type 10 has an invalid length.
[  243.800743][T21524] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  243.816409][T11790] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  244.159408][T21542] IPVS: Error joining to the multicast group
[  244.312141][T21556] xt_hashlimit: size too large, truncated to 1048576
[  244.715361][T21575] ------------[ cut here ]------------
[  244.720871][T21575] WARNING: CPU: 1 PID: 21575 at kernel/signal.c:2050 posixtimer_send_sigqueue+0x74a/0x9e0
[  244.730889][T21575] Modules linked in:
[  244.734902][T21575] CPU: 1 UID: 0 PID: 21575 Comm: syz.6.7559 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
[  244.745679][T21575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  244.756099][T21575] RIP: 0010:posixtimer_send_sigqueue+0x74a/0x9e0
[  244.762973][T21575] Code: 00 4c 89 2b 4c 89 ff e8 14 a5 35 00 49 89 1f 41 be 01 00 00 00 e9 fd fc ff ff e8 91 2a 1c 00 e8 9c d2 0d 00 e9 2f fd ff ff 90 <0f> 0b 90 48 89 df e8 fb 8f 35 00 48 8b 2b 48 85 ed 0f 84 a0 00 00
[  244.783203][T21575] RSP: 0018:ffffc9000bda7d08 EFLAGS: 00010082
[  244.789312][T21575] RAX: ffff88811b45dcf8 RBX: ffff888119179800 RCX: ffffffff81168bde
[  244.797337][T21575] RDX: 0000000000000331 RSI: 0000000000000000 RDI: ffff888119179800
[  244.805328][T21575] RBP: 0000000000000000 R08: 0001888119179807 R09: 0000000000000000
[  244.813384][T21575] R10: 0001ffffffffffff R11: 000188811917984c R12: ffff88811b45da40
[  244.821369][T21575] R13: 0000000000000046 R14: ffff8881191797e8 R15: ffff888119179870
[  244.829479][T21575] FS:  00007f49bee876c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
[  244.838445][T21575] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  244.845038][T21575] CR2: 0000001b2c91bff8 CR3: 000000013c9e2000 CR4: 00000000003506f0
[  244.853021][T21575] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  244.861031][T21575] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
[  244.869012][T21575] Call Trace:
[  244.872296][T21575]  <TASK>
[  244.875250][T21575]  ? __warn+0x141/0x350
[  244.879715][T21575]  ? report_bug+0x315/0x420
[  244.884601][T21575]  ? posixtimer_send_sigqueue+0x74a/0x9e0
[  244.891407][T21575]  ? handle_bug+0x60/0x90
[  244.895770][T21575]  ? exc_invalid_op+0x1a/0x50
[  244.900642][T21575]  ? asm_exc_invalid_op+0x1a/0x20
[  244.906166][T21575]  ? posixtimer_send_sigqueue+0x1fe/0x9e0
[  244.912164][T21575]  ? posixtimer_send_sigqueue+0x74a/0x9e0
[  244.918407][T21575]  ? posixtimer_send_sigqueue+0x1fe/0x9e0
[  244.924242][T21575]  posix_timer_queue_signal+0x41/0x50
[  244.929682][T21575]  posix_cpu_timer_set+0x8a3/0xa20
[  244.934860][T21575]  ? xfd_validate_state+0x46/0xf0
[  244.939919][T21575]  ? should_fail_ex+0x31/0x230
[  244.944703][T21575]  do_timer_settime+0x1a2/0x2b0
[  244.949631][T21575]  __x64_sys_timer_settime+0xe8/0x160
[  244.955023][T21575]  x64_sys_call+0xd76/0x2dc0
[  244.959694][T21575]  do_syscall_64+0xc9/0x1c0
[  244.964214][T21575]  ? clear_bhb_loop+0x55/0xb0
[  244.968908][T21575]  ? clear_bhb_loop+0x55/0xb0
[  244.973622][T21575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.979576][T21575] RIP: 0033:0x7f49c0815d29
[  244.984013][T21575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.003630][T21575] RSP: 002b:00007f49bee87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000df
[  245.012170][T21575] RAX: ffffffffffffffda RBX: 00007f49c0a05fa0 RCX: 00007f49c0815d29
[  245.020286][T21575] RDX: 0000000020000080 RSI: ffffffffffffffff RDI: 0000000000000000
[  245.028271][T21575] RBP: 00007f49c0891b08 R08: 0000000000000000 R09: 0000000000000000
[  245.036247][T21575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  245.044222][T21575] R13: 0000000000000000 R14: 00007f49c0a05fa0 R15: 00007ffe4ecada98
[  245.052290][T21575]  </TASK>
[  245.055314][T21575] ---[ end trace 0000000000000000 ]---
[  245.334382][T21596] loop4: detected capacity change from 0 to 1024
[  245.341295][T21596] EXT4-fs: Ignoring removed nobh option
[  245.346911][T21596] EXT4-fs: Ignoring removed nomblk_io_submit option
[  245.364006][T21596] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  245.380904][T21596] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.405142][T21603] block device autoloading is deprecated and will be removed.
[  245.464056][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.518982][T21616] IPVS: stopping master sync thread 21619 ...
[  245.527996][T21619] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 65540, id = 0
[  245.736100][   T29] kauditd_printk_skb: 174 callbacks suppressed
[  245.736116][   T29] audit: type=1326 audit(2000000115.590:8920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21648 comm="syz.4.7592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  245.765987][   T29] audit: type=1326 audit(2000000115.620:8921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21648 comm="syz.4.7592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  245.789618][   T29] audit: type=1326 audit(2000000115.620:8922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21648 comm="syz.4.7592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  245.813136][   T29] audit: type=1326 audit(2000000115.620:8923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21648 comm="syz.4.7592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  245.836728][   T29] audit: type=1326 audit(2000000115.620:8924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21648 comm="syz.4.7592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  245.860294][   T29] audit: type=1326 audit(2000000115.620:8925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21648 comm="syz.4.7592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  245.883813][   T29] audit: type=1326 audit(2000000115.620:8926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21648 comm="syz.4.7592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  245.907457][   T29] audit: type=1326 audit(2000000115.620:8927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21648 comm="syz.4.7592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faed0ae5d29 code=0x7ffc0000
[  245.931020][   T29] audit: type=1326 audit(2000000115.750:8928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21647 comm="syz.8.7591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94d28b5d29 code=0x7ffc0000
[  245.954518][   T29] audit: type=1326 audit(2000000115.750:8929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21647 comm="syz.8.7591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94d28b5d29 code=0x7ffc0000
[  246.035178][T21658] loop8: detected capacity change from 0 to 1024
[  246.036368][T21656] loop4: detected capacity change from 0 to 8192
[  246.049534][T21658] EXT4-fs: inline encryption not supported
[  246.051756][T21656] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  246.067768][T21658] EXT4-fs: inline encryption not supported
[  246.088143][T21658] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.170056][T21664] netlink: 'syz.4.7597': attribute type 1 has an invalid length.
[  246.177820][T21664] __nla_validate_parse: 8 callbacks suppressed
[  246.177832][T21664] netlink: 220 bytes leftover after parsing attributes in process `syz.4.7597'.
[  246.237033][T21670] netlink: 3592 bytes leftover after parsing attributes in process `syz.4.7600'.
[  246.317397][T20179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.343907][T21676] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(6)
[  246.350574][T21676] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  246.358021][T21676] vhci_hcd vhci_hcd.0: Device attached
[  246.364389][T21678] vhci_hcd: connection closed
[  246.364628][ T4619] vhci_hcd: stop threads
[  246.373672][ T4619] vhci_hcd: release socket
[  246.378233][ T4619] vhci_hcd: disconnect device
[  246.661777][T21693] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7609'.
[  246.697074][T21697] loop4: detected capacity change from 0 to 164
[  246.730909][T21703] team0 (unregistering): Port device team_slave_0 removed
[  246.738846][T21703] team0 (unregistering): Port device team_slave_1 removed
[  246.865590][T21718] netlink: 96 bytes leftover after parsing attributes in process `syz.4.7621'.
[  247.119215][T21745] loop8: detected capacity change from 0 to 164
[  247.124842][T21748] bpf_get_probe_write_proto: 8 callbacks suppressed
[  247.124859][T21748] syz.4.7635[21748] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.132757][T21748] syz.4.7635[21748] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.144816][T21748] syz.4.7635[21748] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.146024][T21749] syz.0.7636[21749] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.171938][T21749] syz.0.7636[21749] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.184905][T21749] syz.0.7636[21749] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.208695][T21745] syz.8.7633: attempt to access beyond end of device
[  247.208695][T21745] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  247.278526][T21745] syz.8.7633: attempt to access beyond end of device
[  247.278526][T21745] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  247.580029][T21781] loop4: detected capacity change from 0 to 512
[  247.603529][T21781] EXT4-fs: inline encryption not supported
[  247.633841][T21781] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  247.648564][T21781] ext4 filesystem being mounted at /693/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.678098][T21781] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.7649: corrupted inode contents
[  247.706324][T21781] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.7649: mark_inode_dirty error
[  247.746543][T21795] loop6: detected capacity change from 0 to 1024
[  247.753498][T21795] EXT4-fs: Ignoring removed orlov option
[  247.759302][T21795] EXT4-fs: Ignoring removed nomblk_io_submit option
[  247.767514][T21781] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.7649: corrupted inode contents
[  247.780923][T21797] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.7649: corrupted inode contents
[  247.795700][T21797] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.7649: mark_inode_dirty error
[  247.807819][T21795] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8843c118, mo2=0082]
[  247.818764][T21795] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.834964][T21797] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.7649: corrupted inode contents
[  247.858474][T21797] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.7649: mark_inode_dirty error
[  247.895926][T21797] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.7649: corrupted inode contents
[  247.922404][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.937746][T21797] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.7649: mark_inode_dirty error
[  248.078567][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.100061][T21785] Set syz1 is full, maxelem 65536 reached
[  248.222514][T21833] syz.4.7671[21833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  248.222586][T21833] syz.4.7671[21833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  248.234521][T21833] syz.4.7671[21833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  248.298914][T21837] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7674'.
[  248.352060][T21841] usb usb4: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  248.388751][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x1
[  248.396530][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.404095][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.411592][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.419018][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.426978][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.434448][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x4
[  248.441962][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.449451][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x2
[  248.456844][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.464346][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.471788][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.479211][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.486632][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x4
[  248.494353][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.501891][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.509317][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x2
[  248.516774][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.524315][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.531840][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.539275][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.546762][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.554258][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.561779][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.569268][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.576683][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.584111][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.591530][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.598933][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.606391][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.613901][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.621332][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.628799][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.636205][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.643703][T14356] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  248.653241][T14356] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  248.938266][T21906] syz.8.7713[21906] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  249.081848][T21933] loop8: detected capacity change from 0 to 1024
[  249.103390][T21933] EXT4-fs: Invalid want_extra_isize 3
[  249.113014][T21933] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  249.160941][T21940] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7721'.
[  249.210316][T21946] loop6: detected capacity change from 0 to 128
[  249.237527][T21946] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  249.267703][T21946] ext4 filesystem being mounted at /791/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  249.322979][T21956] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7727'.
[  249.332990][T21956] bridge_slave_1: left allmulticast mode
[  249.338680][T21956] bridge_slave_1: left promiscuous mode
[  249.344413][T21956] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.361879][T21956] bridge_slave_0: left allmulticast mode
[  249.367544][T21956] bridge_slave_0: left promiscuous mode
[  249.373294][T21956] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.393480][T11790] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  249.798691][T21976] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  249.815038][T21979] netlink: 'syz.4.7734': attribute type 3 has an invalid length.
[  250.071353][T21977] Set syz1 is full, maxelem 65536 reached
[  250.248605][T22002] SELinux:  Context µ§^eñh¥z–èpNÌ
[  250.248605][T22002] Ö is not valid (left unmapped).
[  250.352370][T22005] loop6: detected capacity change from 0 to 512
[  250.362392][T22005] EXT4-fs (loop6): orphan cleanup on readonly fs
[  250.369130][T22005] EXT4-fs warning (device loop6): ext4_enable_quotas:7156: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  250.386640][T22005] EXT4-fs (loop6): Cannot turn on quotas: error -22
[  250.409311][T22005] EXT4-fs error (device loop6): ext4_ext_check_inode:524: inode #13: comm syz.6.7746: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  250.429129][T22005] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.7746: couldn't read orphan inode 13 (err -117)
[  250.462171][T22005] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  250.521266][T22005] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  250.564241][T22005] EXT4-fs warning (device loop6): read_mmp_block:115: Error -117 while reading MMP block 2
[  250.658243][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.708554][T22035] loop6: detected capacity change from 0 to 164
[  250.719426][T22035] syz.6.7758: attempt to access beyond end of device
[  250.719426][T22035] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  250.735812][T22035] syz.6.7758: attempt to access beyond end of device
[  250.735812][T22035] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  250.762991][T22035] syz.6.7758: attempt to access beyond end of device
[  250.762991][T22035] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  250.777482][T22035] syz.6.7758: attempt to access beyond end of device
[  250.777482][T22035] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  250.817479][T22035] syz.6.7758: attempt to access beyond end of device
[  250.817479][T22035] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  250.831067][   T29] kauditd_printk_skb: 120 callbacks suppressed
[  250.831081][   T29] audit: type=1326 audit(2000000120.660:9050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22027 comm="syz.1.7756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  250.835553][T22035] syz.6.7758: attempt to access beyond end of device
[  250.835553][T22035] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  250.874677][T22035] syz.6.7758: attempt to access beyond end of device
[  250.874677][T22035] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  250.940746][T22035] syz.6.7758: attempt to access beyond end of device
[  250.940746][T22035] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  251.003113][T22041] xt_connbytes: Forcing CT accounting to be enabled
[  251.012157][T22039] loop4: detected capacity change from 0 to 8192
[  251.027250][T22041] x_tables: ip_tables: icmp match: only valid for protocol 1
[  251.108880][   T29] audit: type=1400 audit(2000000120.960:9051): avc:  denied  { audit_write } for  pid=22042 comm="syz.0.7762" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  251.130578][   T29] audit: type=1107 audit(2000000120.960:9052): pid=22042 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  251.156606][T22039]  loop4: p1 p2 p3 p4
[  251.160963][T22039] loop4: p1 start 51379968 is beyond EOD, truncated
[  251.196069][T22023] Set syz1 is full, maxelem 65536 reached
[  251.209580][T22039] loop4: p3 size 100663552 extends beyond EOD, truncated
[  251.219173][T22044] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  251.226774][T22039] loop4: p4 size 81920 extends beyond EOD, truncated
[  251.272733][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.282271][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.291722][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.329212][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.338196][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.359536][T22054] veth0_vlan: entered allmulticast mode
[  251.364072][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.383625][T22054] veth0_vlan: left promiscuous mode
[  251.399541][T22054] veth0_vlan: entered promiscuous mode
[  251.475611][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.484737][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.496418][T22049] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7764'.
[  251.556203][T22068] xt_connbytes: Forcing CT accounting to be enabled
[  251.572568][T22068] x_tables: ip_tables: icmp match: only valid for protocol 1
[  251.688430][   T29] audit: type=1326 audit(2000000121.540:9053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22072 comm="syz.0.7774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  251.712172][   T29] audit: type=1326 audit(2000000121.540:9054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22072 comm="syz.0.7774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  251.754412][   T29] audit: type=1326 audit(2000000121.600:9055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22072 comm="syz.0.7774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  251.778176][   T29] audit: type=1326 audit(2000000121.600:9056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22072 comm="syz.0.7774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  251.801928][   T29] audit: type=1326 audit(2000000121.600:9057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22072 comm="syz.0.7774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  251.825501][   T29] audit: type=1326 audit(2000000121.600:9058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22072 comm="syz.0.7774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  251.849055][   T29] audit: type=1326 audit(2000000121.600:9059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22072 comm="syz.0.7774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  252.025365][T22096] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7785'.
[  252.570784][T22148] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  252.745192][T22160] loop8: detected capacity change from 0 to 512
[  252.788100][T22160] EXT4-fs: Ignoring removed nobh option
[  252.793846][T22160] EXT4-fs: Ignoring removed mblk_io_submit option
[  252.868485][T22160] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  253.097923][T20179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.154077][T22183] loop4: detected capacity change from 0 to 164
[  253.174364][T22183] bio_check_eod: 12468 callbacks suppressed
[  253.174382][T22183] syz.4.7821: attempt to access beyond end of device
[  253.174382][T22183] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  253.206237][T22183] syz.4.7821: attempt to access beyond end of device
[  253.206237][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.221654][T22183] syz.4.7821: attempt to access beyond end of device
[  253.221654][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.237528][T22183] syz.4.7821: attempt to access beyond end of device
[  253.237528][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.253141][T22183] syz.4.7821: attempt to access beyond end of device
[  253.253141][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.266937][T22183] syz.4.7821: attempt to access beyond end of device
[  253.266937][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.284384][T22183] syz.4.7821: attempt to access beyond end of device
[  253.284384][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.298410][T22183] syz.4.7821: attempt to access beyond end of device
[  253.298410][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.314284][T22183] syz.4.7821: attempt to access beyond end of device
[  253.314284][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.341613][T22183] syz.4.7821: attempt to access beyond end of device
[  253.341613][T22183] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  253.725765][T22200] loop8: detected capacity change from 0 to 256
[  253.752725][T22200] FAT-fs (loop8): Directory bread(block 64) failed
[  253.767034][T22200] FAT-fs (loop8): Directory bread(block 65) failed
[  253.781398][T22200] FAT-fs (loop8): Directory bread(block 66) failed
[  253.789959][T22157] syz.0.7811 (22157) used greatest stack depth: 6288 bytes left
[  253.797675][T22200] FAT-fs (loop8): Directory bread(block 67) failed
[  253.808123][T22200] FAT-fs (loop8): Directory bread(block 68) failed
[  253.815713][T22200] FAT-fs (loop8): Directory bread(block 69) failed
[  253.824676][T22200] FAT-fs (loop8): Directory bread(block 70) failed
[  253.831465][T22200] FAT-fs (loop8): Directory bread(block 71) failed
[  253.838206][T22200] FAT-fs (loop8): Directory bread(block 72) failed
[  253.847193][T22200] FAT-fs (loop8): Directory bread(block 73) failed
[  253.883655][T22204] bpf_get_probe_write_proto: 8 callbacks suppressed
[  253.883669][T22204] syz.0.7829[22204] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  253.911547][T22204] syz.0.7829[22204] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  253.929316][T22204] syz.0.7829[22204] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.107979][T22222] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  254.129947][T22222] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.217088][T22225] loop8: detected capacity change from 0 to 128
[  254.235176][T22222] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  254.245539][T22222] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.375584][T22222] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  254.386046][T22222] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.423046][T22241] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  254.483604][T22222] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  254.493988][T22222] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.563166][T22222] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  254.571493][T22222] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  254.572601][T22254] loop4: detected capacity change from 0 to 1024
[  254.586913][T22254] EXT4-fs: Ignoring removed orlov option
[  254.594349][T22222] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  254.602640][T22222] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  254.615153][T22222] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  254.623436][T22222] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  254.637607][T22222] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  254.638403][T22254] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.645844][T22222] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  254.769010][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.939903][T22274] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  254.960158][T22272] loop6: detected capacity change from 0 to 4096
[  254.968695][T22272] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.052959][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.076931][T22279] lo speed is unknown, defaulting to 1000
[  255.169622][T22288] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  255.185093][T22288] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  255.195140][T22279] lo speed is unknown, defaulting to 1000
[  255.348218][T22309] loop6: detected capacity change from 0 to 1024
[  255.355014][T22309] EXT4-fs: Ignoring removed orlov option
[  255.366777][T22309] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.448579][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.547511][T22327] loop6: detected capacity change from 0 to 512
[  255.557995][T22327] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  255.588668][T22327] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.601525][T22327] ext4 filesystem being mounted at /817/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.634345][T22327] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  255.701621][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.715069][T22340] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=22340 comm=syz.1.7887
[  255.839326][   T29] kauditd_printk_skb: 160 callbacks suppressed
[  255.839356][   T29] audit: type=1326 audit(2000000125.700:9220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22359 comm="syz.0.7895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  255.886327][T22356] loop6: detected capacity change from 0 to 8192
[  255.888484][   T29] audit: type=1326 audit(2000000125.730:9221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22359 comm="syz.0.7895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  255.916233][   T29] audit: type=1326 audit(2000000125.730:9222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22359 comm="syz.0.7895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  255.939774][   T29] audit: type=1326 audit(2000000125.730:9223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22359 comm="syz.0.7895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  255.954048][T22365] syz.1.7897[22365] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  255.963281][   T29] audit: type=1326 audit(2000000125.730:9224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22359 comm="syz.0.7895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  255.965838][T22365] syz.1.7897[22365] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  255.974878][   T29] audit: type=1326 audit(2000000125.730:9225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22359 comm="syz.0.7895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  256.005279][T22365] syz.1.7897[22365] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  256.013260][   T29] audit: type=1326 audit(2000000125.730:9226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22359 comm="syz.0.7895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f123afd5d29 code=0x7ffc0000
[  256.072061][   T29] audit: type=1400 audit(2000000125.780:9227): avc:  denied  { bind } for  pid=22361 comm="syz.0.7896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  256.091653][   T29] audit: type=1326 audit(2000000125.900:9228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22364 comm="syz.1.7897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  256.104149][T22356]  loop6: p1 p2 p3 p4
[  256.115144][   T29] audit: type=1326 audit(2000000125.900:9229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22364 comm="syz.1.7897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fe51fd45d29 code=0x7ffc0000
[  256.128020][T22356] loop6: p1 start 51379968 is beyond EOD, truncated
[  256.152313][T22356] loop6: p3 size 100663552 extends beyond EOD, truncated
[  256.160388][T22356] loop6: p4 size 81920 extends beyond EOD, truncated
[  256.350893][T22390] loop4: detected capacity change from 0 to 2048
[  256.381260][T22390] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.562539][T22432] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  256.572614][T22432] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.620918][T22432] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  256.630752][T22432] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.657379][T22446] netlink: 'syz.8.7923': attribute type 4 has an invalid length.
[  256.721001][T22432] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  256.730849][T22432] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.783910][ T4619] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  256.800394][T22432] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  256.807365][T22467] syz.8.7929[22467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  256.810218][T22432] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.814179][ T4619] EXT4-fs (loop4): Remounting filesystem read-only
[  256.821952][T22467] syz.8.7929[22467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  256.834800][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.838255][T22467] syz.8.7929[22467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  256.875848][T22469] __nla_validate_parse: 24 callbacks suppressed
[  256.875868][T22469] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7928'.
[  256.971611][T22479] loop4: detected capacity change from 0 to 512
[  256.978578][T22479] EXT4-fs: Ignoring removed i_version option
[  256.984802][T22479] EXT4-fs: Ignoring removed mblk_io_submit option
[  256.991896][T22479] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  257.004246][T22479] EXT4-fs (loop4): 1 truncate cleaned up
[  257.011608][T22479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.028437][T22479] EXT4-fs error (device loop4): ext4_read_inline_dir:1566: inode #12: block 7: comm syz.4.7934: path /744/file0/file0: bad entry in directory: inode out of bounds - offset=24, inode=16777215, rec_len=16, size=80 fake=0
[  257.069964][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.096195][T22489] loop4: detected capacity change from 0 to 512
[  257.103899][T22489] EXT4-fs: inline encryption not supported
[  257.122415][T22489] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.136047][T22489] ext4 filesystem being mounted at /745/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  257.151215][T22489] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.7937: corrupted inode contents
[  257.163265][T22489] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.7937: mark_inode_dirty error
[  257.174862][T22489] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.7937: corrupted inode contents
[  257.186838][T22489] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.7937: mark_inode_dirty error
[  257.214983][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.797788][T22516] loop6: detected capacity change from 0 to 512
[  257.805486][T22516] EXT4-fs: Ignoring removed i_version option
[  257.811620][T22516] EXT4-fs: Ignoring removed mblk_io_submit option
[  257.818508][T22516] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  257.834449][T22516] EXT4-fs (loop6): 1 truncate cleaned up
[  257.847210][T22516] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.848337][T22522] syz.0.7951[22522] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  257.903606][T22516] EXT4-fs error (device loop6): ext4_read_inline_dir:1566: inode #12: block 7: comm syz.6.7948: path /833/file0/file0: bad entry in directory: inode out of bounds - offset=24, inode=16777215, rec_len=16, size=80 fake=0
[  257.956992][T22530] loop8: detected capacity change from 0 to 1024
[  257.965018][T22530] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  257.997925][T22530] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  258.006494][T22530] EXT4-fs (loop8): orphan cleanup on readonly fs
[  258.016158][T22532] netlink: 96 bytes leftover after parsing attributes in process `syz.0.7956'.
[  258.034853][T22530] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  258.043365][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.048201][T22530] EXT4-fs (loop8): Remounting filesystem read-only
[  258.061000][T22530] EXT4-fs (loop8): 1 orphan inode deleted
[  258.067480][T22530] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  258.089357][T22530] SELinux: (dev loop8, type ext4) getxattr errno 5
[  258.107486][T22537] lo speed is unknown, defaulting to 1000
[  258.107853][T22530] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.172501][T22544] loop6: detected capacity change from 0 to 128
[  258.175776][T22542] lo speed is unknown, defaulting to 1000
[  258.183285][T22537] lo speed is unknown, defaulting to 1000
[  258.196976][T22544] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  258.217312][T22544] ext4 filesystem being mounted at /835/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  258.219407][T22542] lo speed is unknown, defaulting to 1000
[  258.267746][T11790] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  258.269657][T22549] loop8: detected capacity change from 0 to 2048
[  258.311421][T22549] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.613401][T22569] random: crng reseeded on system resumption
[  258.945239][T22601] bond_slave_1: entered promiscuous mode
[  259.010095][T22601] bond_slave_1: left promiscuous mode
[  259.026163][T22586] Set syz1 is full, maxelem 65536 reached
[  259.076772][T22614] loop6: detected capacity change from 0 to 1024
[  259.086905][T22614] EXT4-fs: Ignoring removed bh option
[  259.123535][T22614] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.142673][ T4556] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  259.160176][ T4556] EXT4-fs (loop8): Remounting filesystem read-only
[  259.168135][T20179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.202226][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.386954][T22652] loop6: detected capacity change from 0 to 2048
[  259.389441][T22651] lo speed is unknown, defaulting to 1000
[  259.428158][T22651] lo speed is unknown, defaulting to 1000
[  259.435795][T22652] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  259.493969][T22432] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  259.502357][T22432] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  259.526411][T22661] loop8: detected capacity change from 0 to 512
[  259.543355][T22663] loop4: detected capacity change from 0 to 512
[  259.560371][T22432] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  259.568717][T22432] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  259.568961][T22661] EXT4-fs (loop8): blocks per group (95) and clusters per group (32768) inconsistent
[  259.583780][T22663] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  259.607295][T22432] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  259.616737][T22432] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  259.629180][T22432] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  259.637468][T22432] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  259.715993][T22679] netlink: 'syz.1.7999': attribute type 15 has an invalid length.
[  259.740567][T22663] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.757571][T22663] ext4 filesystem being mounted at /764/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  259.799626][T22681] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  259.808305][T22681] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  259.843605][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.877121][T22697] loop4: detected capacity change from 0 to 512
[  259.897174][T22697] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  259.916765][T22697] EXT4-fs (loop4): orphan cleanup on readonly fs
[  259.946007][T22697] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.8005: bad orphan inode 15
[  259.980290][T22697] ext4_test_bit(bit=14, block=18) = 1
[  259.985957][T22697] is_bad_inode(inode)=0
[  259.990197][T22697] NEXT_ORPHAN(inode)=1023
[  259.995196][T22697] max_ino=32
[  259.998466][T22697] i_nlink=0
[  260.022225][T22697] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2977: inode #15: comm syz.4.8005: corrupted xattr block 19: e_value size too large
[  260.056115][T22697] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[  260.066826][T22697] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  260.110972][T22697] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  260.124253][T22697] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  260.179189][T12683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.230812][ T4556] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  260.247848][ T4556] EXT4-fs (loop6): Remounting filesystem read-only
[  260.257002][T11790] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.337551][T22745] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8021'.
[  260.524823][T22766] loop8: detected capacity change from 0 to 1024
[  260.531624][T22766] EXT4-fs: Ignoring removed orlov option
[  260.542236][T22766] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  260.562339][T22772] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  260.703497][T22778] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8034'.
[  260.974310][T22766] ==================================================================
[  260.982452][T22766] BUG: KCSAN: data-race in filemap_splice_read / filemap_splice_read
[  260.990556][T22766] 
[  260.992890][T22766] write to 0xffff888113cb35f0 of 8 bytes by task 22775 on cpu 0:
[  261.000622][T22766]  filemap_splice_read+0x6c4/0x910
[  261.005850][T22766]  ext4_file_splice_read+0x8f/0xb0
[  261.011166][T22766]  splice_direct_to_actor+0x269/0x670
[  261.016950][T22766]  do_splice_direct+0xd7/0x150
[  261.022050][T22766]  do_sendfile+0x398/0x660
[  261.027020][T22766]  __x64_sys_sendfile64+0x110/0x150
[  261.032881][T22766]  x64_sys_call+0xfbd/0x2dc0
[  261.037774][T22766]  do_syscall_64+0xc9/0x1c0
[  261.042393][T22766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.048989][T22766] 
[  261.051691][T22766] write to 0xffff888113cb35f0 of 8 bytes by task 22766 on cpu 1:
[  261.060043][T22766]  filemap_splice_read+0x6c4/0x910
[  261.065188][T22766]  ext4_file_splice_read+0x8f/0xb0
[  261.070364][T22766]  splice_direct_to_actor+0x269/0x670
[  261.075885][T22766]  do_splice_direct+0xd7/0x150
[  261.080706][T22766]  do_sendfile+0x398/0x660
[  261.085145][T22766]  __x64_sys_sendfile64+0x110/0x150
[  261.090406][T22766]  x64_sys_call+0xfbd/0x2dc0
[  261.095033][T22766]  do_syscall_64+0xc9/0x1c0
[  261.099552][T22766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.105506][T22766] 
[  261.107842][T22766] value changed: 0x000000000000079a -> 0x000000000000079b
[  261.116630][T22766] 
[  261.118973][T22766] Reported by Kernel Concurrency Sanitizer on:
[  261.125321][T22766] CPU: 1 UID: 0 PID: 22766 Comm: syz.8.8030 Tainted: G        W          6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
[  261.138030][T22766] Tainted: [W]=WARN
[  261.141894][T22766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  261.152056][T22766] ==================================================================
[  261.439322][T20179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.