last executing test programs:

29.192129874s ago: executing program 0 (id=54):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x5, 0x6, 0x8, 0xae, 0x0, 0x1, 0x20727ff}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4006, 0x5, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000}, 0x50)

29.094317792s ago: executing program 0 (id=60):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=@newtaction={0xf8, 0x30, 0xffff, 0xfffffffe, 0x0, {}, [{0xe4, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x2, 0x5, 0x0, 0x3, 0x1000, {0x0, 0x2, 0x0, 0x0, 0x5}, {0x2, 0x0, 0xff, 0x0, 0x2}}}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0xfffffff7}}]}, {0x4}, {0xc}, {0xc}}}, @m_bpf={0x2c, 0x3, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xf8}}, 0x0)

29.054730845s ago: executing program 0 (id=62):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
uname(&(0x7f0000000180)=""/224)

29.020105008s ago: executing program 0 (id=64):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
creat(&(0x7f0000000300)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x3, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c6e150d448000000000000be335263bdbcef549ba197fce47ddfdd753abd950e00002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2200020, 0x0)

28.792830766s ago: executing program 0 (id=71):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='kmem_cache_free\x00', r1}, 0x18)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f00000006c0)='%-010d \x00'}, 0x20)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000417000/0x2000)=nil, 0x2000, 0x0, 0x0)

27.511322839s ago: executing program 0 (id=98):
r0 = fsopen(&(0x7f00000001c0)='proc\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0xf)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000240)='ro\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

27.503120319s ago: executing program 32 (id=98):
r0 = fsopen(&(0x7f00000001c0)='proc\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0xf)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000240)='ro\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

2.25990649s ago: executing program 4 (id=1005):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0x8, 0x10001, 0x9, 0x1}, 0x50)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r1}, 0x10)

2.216175854s ago: executing program 4 (id=1006):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004900)='./file0\x00', 0x434002, 0xf8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
sendmmsg(r1, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000000b40)="97a797c5", 0xa797}], 0x1}}], 0x1, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)

2.078345845s ago: executing program 3 (id=1026):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x4, 0x20005, 0x400, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, 0x0, 0x0)
fspick(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x48, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xd, 0x3, 'list:set\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0x0)

2.01115417s ago: executing program 3 (id=1017):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000001ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

1.984795243s ago: executing program 3 (id=1018):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000180)='./file0\x00', 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r0, &(0x7f0000000400)="2ec8425d4ce2ef", 0x7)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000240)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x2000000000000116}}, 0x40)

1.950999555s ago: executing program 4 (id=1019):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x1, 0x0)

1.867181012s ago: executing program 3 (id=1030):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0xb}})
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

1.780104479s ago: executing program 3 (id=1031):
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5}, 0x38)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
syz_usb_connect(0x2, 0x64, 0x0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x5, 0x2, 0x0, 0x70bd2d, 0x25dfdbfe}, 0x10}}, 0x4)

1.028941509s ago: executing program 4 (id=1045):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000280)={0x0, 0x3, &(0x7f0000000240)={&(0x7f0000000100)={0x14, 0x1, 0xa, 0x201, 0x0, 0x0, {0x2}}, 0x14}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01010000000000000000020000000900010073797a3100000000080002400000000120000000000a03000000000000000000070000000900010073a27a310000000028000000000a030000000000000000000200000008000240000000000900010073797a310000000014000000110001"], 0x98}}, 0x0)
recvmmsg(r0, &(0x7f00000058c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

1.00117579s ago: executing program 4 (id=1046):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0xffab, 0x1, &(0x7f0000000200)={0xa, 0x4e23, 0x10003, @loopback, 0x7}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x200002, 0x30}, 0xc)
sendto$inet6(r0, &(0x7f0000000040)='\v', 0x1, 0x20008081, 0x0, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

720.878473ms ago: executing program 2 (id=1047):
r0 = openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fchdir(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r1, 0x1276, 0x0)

655.203229ms ago: executing program 2 (id=1049):
r0 = io_uring_setup(0x1694, &(0x7f0000000000)={0x0, 0x0, 0x80, 0x1, 0x17b})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000200)={[{@noload}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@jqfmt_vfsold}, {@journal_dev={'journal_dev', 0x3d, 0x800}}, {@nobh}, {@inlinecrypt}, {@grpquota}, {@init_itable}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

507.17363ms ago: executing program 2 (id=1052):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r2, 0x58, &(0x7f00000011c0)}, 0x10)

466.282564ms ago: executing program 2 (id=1053):
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000004018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x100006, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x5, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

440.900076ms ago: executing program 1 (id=1054):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file1\x00', 0x800, &(0x7f0000000940)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRESOCT=0x0, @ANYRESOCT], 0x3, 0x36e, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x40)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600)
read$eventfd(r0, &(0x7f0000000040), 0x8)

440.678326ms ago: executing program 2 (id=1055):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={0x0, &(0x7f0000000000)=""/57, 0x43, 0x39, 0x0, 0xfffffff0}, 0x28)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)

421.280297ms ago: executing program 1 (id=1056):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000070018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r1}, 0x10)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000140))

420.973667ms ago: executing program 2 (id=1057):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844)

371.589211ms ago: executing program 1 (id=1059):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
setregid(0x0, 0x0)

370.903501ms ago: executing program 1 (id=1060):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x101000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r2}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue0\x00', 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000400)={0x0, 0x0, {0x1, 0x1, 0x0, 0x0, 0xa}})

285.327688ms ago: executing program 1 (id=1061):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_FWMARK={0x8, 0x12, 0x2ab2}]}}]}, 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x8000010}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600007842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

204.301614ms ago: executing program 1 (id=1065):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x400, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)

143.557609ms ago: executing program 5 (id=1066):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r0}, 0x10)
r1 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x0)
ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x6a1e)

143.325749ms ago: executing program 5 (id=1067):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r0}, 0x18)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)

128.015131ms ago: executing program 5 (id=1068):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'ipvlan0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@delqdisc={0x24, 0x26, 0x1, 0x60bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xf, 0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x4081}, 0x2400c800)

92.548163ms ago: executing program 5 (id=1069):
r0 = memfd_create(&(0x7f0000001ac0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\a\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0Fd\x81\xbe\xbf\by\x7f\xd8X?\n\xf8P&!\x9d0F\x8dp\xf9:?1\xe8T\x13\xfb\x89\xac\\\xd4\xa9\xa3\xac\x80\xddd\xed\xb1I\xfcz\x9aQ\x03\xcdO\xdfn^\xb4\x97\xd1\x8a\x17\x8d\xce\xafg\xa2W|v\xc2\x99\x97X\xd7\x8b\x82Z\xa7\xac\xa4\xb1P\x8c\xfd^\xb8=\xd6Q\x8a\xe2\xed\xaaR\xd9\x1a\xd8\x92\xc8\x1b\xe6f\xd6\xb7rp\x8e\xd7I\xd0lN\xbd\x89\xac&)<\x9d\x8b\xcb\x93p\x90a\xef\xd0?\x02\x93\x83\xb9\xe4b\xfc1@\xde\xd8&\xd0\x8f\xa6G\xe0\xc9\xe9Z\xb4PG\xcf\xed\xf5\x94\x89\x9a\x02\xac\x9d\x1b\x9am\x82L\a,;\xcd\x11,\xf9\xe6\xe1\fa\xfe\xdc\xc0A\xc3\xda\x8f$\x87<\xef\xe2\xc2xP\xfc\xd4\xefX\x8doK\x8aa\x98.\x82!\xf9\rS\x04\xd2\xb4I\x1d=\xf9<\xb0?l\xa5\t\xd1j\"\x1e\xe5\xe0\xad\x14\x97\xde\xa3\x97\x9a\x9bp\'\xd4\xbc', 0x0)
write$binfmt_misc(r0, &(0x7f0000000180)="e502", 0x2)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

47.536837ms ago: executing program 4 (id=1070):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f00000006c0)={0x0, 'bridge0\x00', {0x101}, 0x2})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)=ANY=[@ANYBLOB="300000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000900006440000008001b00000000000500100004"], 0x30}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newqdisc={0x54, 0x10, 0x1, 0x70bd25, 0xfffffffb, {0x6, 0x0, 0x8100, 0x0, {0x1, 0x10}, {0x12}, {0xe, 0x10}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x400c800}, 0x0)

47.172847ms ago: executing program 5 (id=1071):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000002100)=@newtaction={0x894, 0x30, 0x12f, 0x0, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x80000000, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xb, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff35, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x3, 0x0, 0x1]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x7, 0x6, 0xffffffff, 0x7f, 0x401, 0x2, 0x0, 0x2, 0x80000000, 0x4, 0x5, 0x8, 0x0, 0x7fff, 0x75ba, 0x7fffffff, 0x5, 0xffffffff, 0x7ff, 0x2, 0x9, 0x2, 0x0, 0x1000, 0x1, 0x3, 0x6, 0x0, 0xfa, 0x4, 0x0, 0xf, 0x80000001, 0x7, 0xfffffffb, 0x1, 0x20, 0x5, 0x8, 0x1, 0x2f2, 0x7fff, 0x0, 0x81, 0x206, 0x1ff, 0x7, 0x3, 0x5, 0x3, 0x9, 0x1000, 0x401, 0x1, 0x6, 0x7, 0x2, 0x4, 0x7f, 0x5, 0xfffffffb, 0x1, 0x4, 0x5, 0x8, 0x2000009, 0x9, 0x10, 0x9, 0x7, 0xffffff00, 0x97, 0x0, 0x4, 0x8, 0x8, 0x1, 0x958, 0x1fe, 0x4, 0x6, 0x7, 0x80, 0x5, 0xe53, 0x0, 0xfffffffe, 0x4, 0x8, 0x9, 0x7fff, 0x30, 0x8, 0xfffffff7, 0x4, 0x9, 0x1, 0x4, 0x7, 0x9, 0x5, 0x7, 0x6, 0x0, 0x5, 0x2, 0x7, 0x3, 0xcdd, 0x2, 0xd67, 0x7, 0x4, 0x25, 0x9dc5, 0x7, 0xfffffff7, 0x2, 0x400, 0x8, 0x0, 0x7, 0x5, 0x9, 0xa, 0xa, 0x9, 0x5, 0xdb5, 0x101, 0x4, 0x74e4, 0x7fff, 0x7, 0x7ff, 0x1, 0xd70, 0x1, 0x8, 0xa, 0x800007, 0x1, 0x82, 0x52e, 0x7, 0x1, 0x5, 0x26, 0x1, 0x1b2a, 0x81, 0x9, 0x1c, 0x767, 0x7, 0x9, 0x10, 0xc2a, 0xff, 0x7, 0x6, 0x7, 0x3, 0xfffffff4, 0x8, 0x3, 0xfff, 0x8, 0x2, 0x5, 0x6, 0x3, 0xd7c3, 0x2, 0x10000, 0x7fff, 0x5, 0x5, 0x0, 0xfffffff7, 0x4, 0x2, 0x0, 0x6ee1847d, 0x10001, 0x7ff, 0x1, 0xf0, 0x7, 0x2, 0x7, 0x4, 0x6, 0x4, 0x7, 0x2, 0x0, 0x1, 0x4, 0x3, 0xfff, 0x80000001, 0x7, 0x676, 0x3, 0x9, 0x2, 0x4, 0x7fff, 0x4a5, 0x23, 0x4, 0x9, 0x8, 0x4000000, 0x8000, 0xa, 0x9, 0xca000000, 0x2, 0xfffffffa, 0x3, 0x7, 0x9, 0x7, 0x65fe, 0x9, 0x6, 0x4, 0x80000000, 0x5, 0x801, 0xb848, 0x6, 0x6, 0x800, 0x7, 0x1, 0xb, 0x80, 0x2, 0x3, 0x6, 0x9, 0x4, 0x4, 0xc, 0x80000001, 0x5, 0x5, 0x10000002, 0xb, 0x7, 0x5, 0x2, 0x4]}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x9}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x1, 0x7, 0x4, 0x1, {0x7, 0x0, 0x3, 0x7, 0x7, 0x80000001}, {0x4, 0x2, 0x1, 0xa, 0x1ff, 0x1c0000}, 0x9, 0xbc, 0xdf72c67}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x894}}, 0x0)

41.256008ms ago: executing program 5 (id=1072):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x1000000000}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')

0s ago: executing program 3 (id=1073):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000200)='asymmetric\x00', &(0x7f00000002c0)=@chain)
add_key$user(&(0x7f0000000080), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000200)="5fbf45", 0x3, r2)

kernel console output (not intermixed with test programs):



syzkaller
syzkaller login: [   14.610963][   T29] kauditd_printk_skb: 30 callbacks suppressed
[   14.610977][   T29] audit: type=1400 audit(1756049551.076:57): avc:  denied  { transition } for  pid=3177 comm="sshd-session" path="/bin/sh" dev="sda1" ino=90 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   14.614988][   T29] audit: type=1400 audit(1756049551.076:58): avc:  denied  { noatsecure } for  pid=3177 comm="sshd-session" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   14.618025][   T29] audit: type=1400 audit(1756049551.086:59): avc:  denied  { write } for  pid=3177 comm="sh" path="pipe:[2391]" dev="pipefs" ino=2391 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   14.621189][   T29] audit: type=1400 audit(1756049551.086:60): avc:  denied  { rlimitinh } for  pid=3177 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   14.623732][   T29] audit: type=1400 audit(1756049551.086:61): avc:  denied  { siginh } for  pid=3177 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.0.91' (ED25519) to the list of known hosts.
[   21.821213][   T29] audit: type=1400 audit(1756049558.286:62): avc:  denied  { mounton } for  pid=3287 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   21.822080][ T3287] cgroup: Unknown subsys name 'net'
[   21.844833][   T29] audit: type=1400 audit(1756049558.286:63): avc:  denied  { mount } for  pid=3287 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   21.871231][   T29] audit: type=1400 audit(1756049558.326:64): avc:  denied  { unmount } for  pid=3287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   22.021966][ T3287] cgroup: Unknown subsys name 'cpuset'
[   22.028018][ T3287] cgroup: Unknown subsys name 'rlimit'
[   22.177393][   T29] audit: type=1400 audit(1756049558.646:65): avc:  denied  { setattr } for  pid=3287 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   22.200690][   T29] audit: type=1400 audit(1756049558.646:66): avc:  denied  { create } for  pid=3287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   22.221162][   T29] audit: type=1400 audit(1756049558.646:67): avc:  denied  { write } for  pid=3287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   22.241643][   T29] audit: type=1400 audit(1756049558.646:68): avc:  denied  { read } for  pid=3287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   22.248522][ T3294] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   22.261916][   T29] audit: type=1400 audit(1756049558.646:69): avc:  denied  { mounton } for  pid=3287 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   22.295198][   T29] audit: type=1400 audit(1756049558.646:70): avc:  denied  { mount } for  pid=3287 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   22.318455][   T29] audit: type=1400 audit(1756049558.736:71): avc:  denied  { relabelto } for  pid=3294 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.351484][ T3287] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   23.395544][ T3301] chnl_net:caif_netlink_parms(): no params data found
[   23.416459][ T3300] chnl_net:caif_netlink_parms(): no params data found
[   23.449002][ T3306] chnl_net:caif_netlink_parms(): no params data found
[   23.514255][ T3306] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.521372][ T3306] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.528527][ T3306] bridge_slave_0: entered allmulticast mode
[   23.534925][ T3306] bridge_slave_0: entered promiscuous mode
[   23.547384][ T3307] chnl_net:caif_netlink_parms(): no params data found
[   23.556164][ T3301] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.563230][ T3301] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.570322][ T3301] bridge_slave_0: entered allmulticast mode
[   23.576788][ T3301] bridge_slave_0: entered promiscuous mode
[   23.587844][ T3306] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.594975][ T3306] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.602152][ T3306] bridge_slave_1: entered allmulticast mode
[   23.608419][ T3306] bridge_slave_1: entered promiscuous mode
[   23.621477][ T3301] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.628546][ T3301] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.635805][ T3301] bridge_slave_1: entered allmulticast mode
[   23.642126][ T3301] bridge_slave_1: entered promiscuous mode
[   23.663448][ T3300] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.670486][ T3300] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.677750][ T3300] bridge_slave_0: entered allmulticast mode
[   23.684153][ T3300] bridge_slave_0: entered promiscuous mode
[   23.707158][ T3301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   23.723401][ T3300] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.730442][ T3300] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.737723][ T3300] bridge_slave_1: entered allmulticast mode
[   23.744078][ T3300] bridge_slave_1: entered promiscuous mode
[   23.755718][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   23.765678][ T3301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   23.784948][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   23.802371][ T3308] chnl_net:caif_netlink_parms(): no params data found
[   23.820259][ T3300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   23.836829][ T3306] team0: Port device team_slave_0 added
[   23.843219][ T3301] team0: Port device team_slave_0 added
[   23.853644][ T3300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   23.874574][ T3306] team0: Port device team_slave_1 added
[   23.880773][ T3301] team0: Port device team_slave_1 added
[   23.890648][ T3307] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.897764][ T3307] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.904947][ T3307] bridge_slave_0: entered allmulticast mode
[   23.911087][ T3307] bridge_slave_0: entered promiscuous mode
[   23.921998][ T3300] team0: Port device team_slave_0 added
[   23.936750][ T3307] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.943836][ T3307] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.950917][ T3307] bridge_slave_1: entered allmulticast mode
[   23.957227][ T3307] bridge_slave_1: entered promiscuous mode
[   23.965730][ T3300] team0: Port device team_slave_1 added
[   23.976072][ T3301] batman_adv: batadv0: Adding interface: batadv_slave_0
[   23.983032][ T3301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.009053][ T3301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.032606][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.039541][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.065440][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.077181][ T3301] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.084126][ T3301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.109980][ T3301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.131241][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.138191][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.164063][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.178901][ T3307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.192994][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.199927][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.225876][ T3300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.237138][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.244084][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.270039][ T3300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.284644][ T3307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.317186][ T3308] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.324345][ T3308] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.331623][ T3308] bridge_slave_0: entered allmulticast mode
[   24.338035][ T3308] bridge_slave_0: entered promiscuous mode
[   24.348252][ T3301] hsr_slave_0: entered promiscuous mode
[   24.354210][ T3301] hsr_slave_1: entered promiscuous mode
[   24.367007][ T3306] hsr_slave_0: entered promiscuous mode
[   24.372888][ T3306] hsr_slave_1: entered promiscuous mode
[   24.378717][ T3306] debugfs: 'hsr0' already exists in 'hsr'
[   24.384475][ T3306] Cannot create hsr debugfs directory
[   24.394334][ T3308] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.401392][ T3308] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.408597][ T3308] bridge_slave_1: entered allmulticast mode
[   24.415157][ T3308] bridge_slave_1: entered promiscuous mode
[   24.441998][ T3307] team0: Port device team_slave_0 added
[   24.455006][ T3300] hsr_slave_0: entered promiscuous mode
[   24.460865][ T3300] hsr_slave_1: entered promiscuous mode
[   24.466827][ T3300] debugfs: 'hsr0' already exists in 'hsr'
[   24.472602][ T3300] Cannot create hsr debugfs directory
[   24.483670][ T3307] team0: Port device team_slave_1 added
[   24.498412][ T3308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   24.518986][ T3308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   24.558297][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.565303][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.591346][ T3307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.615487][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.622492][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.648376][ T3307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.661938][ T3308] team0: Port device team_slave_0 added
[   24.685211][ T3308] team0: Port device team_slave_1 added
[   24.726647][ T3308] batman_adv: batadv0: Adding interface: batadv_slave_0
[   24.733623][ T3308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.759499][ T3308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   24.774858][ T3307] hsr_slave_0: entered promiscuous mode
[   24.780742][ T3307] hsr_slave_1: entered promiscuous mode
[   24.786627][ T3307] debugfs: 'hsr0' already exists in 'hsr'
[   24.792360][ T3307] Cannot create hsr debugfs directory
[   24.799845][ T3308] batman_adv: batadv0: Adding interface: batadv_slave_1
[   24.806802][ T3308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   24.832688][ T3308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   24.883307][ T3301] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   24.891637][ T3301] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   24.907024][ T3308] hsr_slave_0: entered promiscuous mode
[   24.912924][ T3308] hsr_slave_1: entered promiscuous mode
[   24.918800][ T3308] debugfs: 'hsr0' already exists in 'hsr'
[   24.924554][ T3308] Cannot create hsr debugfs directory
[   24.934960][ T3301] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   24.949624][ T3301] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   24.994705][ T3306] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   25.004006][ T3306] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   25.013605][ T3306] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   25.032239][ T3306] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   25.082772][ T3300] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   25.101392][ T3300] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   25.110053][ T3300] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   25.118807][ T3300] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   25.142151][ T3307] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   25.150496][ T3307] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   25.158880][ T3307] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   25.168437][ T3307] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   25.207052][ T3301] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.223223][ T3308] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   25.237529][ T3308] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   25.246528][ T3308] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   25.255636][ T3308] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   25.266742][ T3301] 8021q: adding VLAN 0 to HW filter on device team0
[   25.287959][  T142] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.295072][  T142] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.303834][  T142] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.310871][  T142] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.336732][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.346130][ T3301] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.356520][ T3301] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.384629][ T3300] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.401864][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   25.419049][ T3307] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.428471][ T3300] 8021q: adding VLAN 0 to HW filter on device team0
[   25.438164][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.445196][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.459737][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.466785][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.484574][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.491642][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.502770][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.509797][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.523254][ T3301] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.542991][ T3308] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.554803][ T3307] 8021q: adding VLAN 0 to HW filter on device team0
[   25.567192][ T1717] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.574318][ T1717] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.594689][ T3300] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   25.605114][ T3300] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   25.620015][ T1717] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.627127][ T1717] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.650968][ T3308] 8021q: adding VLAN 0 to HW filter on device team0
[   25.663555][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.670602][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.680890][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.687964][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.727177][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.780360][ T3301] veth0_vlan: entered promiscuous mode
[   25.804615][ T3301] veth1_vlan: entered promiscuous mode
[   25.812842][ T3300] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.840447][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.867929][ T3301] veth0_macvtap: entered promiscuous mode
[   25.876056][ T3308] 8021q: adding VLAN 0 to HW filter on device batadv0
[   25.886831][ T3301] veth1_macvtap: entered promiscuous mode
[   25.923488][ T3301] batman_adv: batadv0: Interface activated: batadv_slave_0
[   25.942675][ T3301] batman_adv: batadv0: Interface activated: batadv_slave_1
[   25.967614][   T51] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   25.998796][ T3300] veth0_vlan: entered promiscuous mode
[   26.008566][   T51] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.023444][   T51] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.037482][ T3306] veth0_vlan: entered promiscuous mode
[   26.053785][   T51] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.064961][ T3306] veth1_vlan: entered promiscuous mode
[   26.076329][ T3301] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   26.079187][ T3308] veth0_vlan: entered promiscuous mode
[   26.102594][ T3307] veth0_vlan: entered promiscuous mode
[   26.108337][ T3308] veth1_vlan: entered promiscuous mode
[   26.121941][ T3300] veth1_vlan: entered promiscuous mode
[   26.137558][ T3307] veth1_vlan: entered promiscuous mode
[   26.161082][ T3300] veth0_macvtap: entered promiscuous mode
[   26.172871][ T3308] veth0_macvtap: entered promiscuous mode
[   26.175323][ T3472] loop1: detected capacity change from 0 to 1024
[   26.180610][ T3300] veth1_macvtap: entered promiscuous mode
[   26.191167][ T3472] =======================================================
[   26.191167][ T3472] WARNING: The mand mount option has been deprecated and
[   26.191167][ T3472]          and is ignored by this kernel. Remove the mand
[   26.191167][ T3472]          option from the mount to silence this warning.
[   26.191167][ T3472] =======================================================
[   26.234161][ T3308] veth1_macvtap: entered promiscuous mode
[   26.246466][ T3306] veth0_macvtap: entered promiscuous mode
[   26.250951][ T3472] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   26.255970][ T3306] veth1_macvtap: entered promiscuous mode
[   26.273813][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.285281][ T3307] veth0_macvtap: entered promiscuous mode
[   26.292824][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.305145][ T3307] veth1_macvtap: entered promiscuous mode
[   26.315981][   T51] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.326087][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.336226][   T51] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.345747][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   26.347917][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.362433][   T51] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.372459][   T51] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.388608][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   26.396967][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.415787][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.429445][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   26.445939][   T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.480146][   T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.490673][   T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.517932][   T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.544180][ T3485] netlink: 'syz.3.4': attribute type 21 has an invalid length.
[   26.551767][ T3485] netlink: 156 bytes leftover after parsing attributes in process `syz.3.4'.
[   26.561530][   T41] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.579795][   T31] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.597161][   T31] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.607977][   T31] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.617177][   T31] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   26.639881][   T31] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   26.665528][   T31] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   26.702864][ T1717] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   26.737213][ T3503] loop0: detected capacity change from 0 to 736
[   26.761139][ T3396] kernel write not supported for file bpf-prog (pid: 3396 comm: kworker/0:5)
[   26.822006][   T29] kauditd_printk_skb: 69 callbacks suppressed
[   26.822019][   T29] audit: type=1326 audit(1756049563.296:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3513 comm="syz.1.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   26.852148][   T29] audit: type=1400 audit(1756049563.296:142): avc:  denied  { ioctl } for  pid=3515 comm="syz.2.19" path="socket:[4743]" dev="sockfs" ino=4743 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   26.877484][   T29] audit: type=1400 audit(1756049563.296:143): avc:  denied  { bind } for  pid=3515 comm="syz.2.19" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   26.896779][   T29] audit: type=1400 audit(1756049563.296:144): avc:  denied  { write } for  pid=3515 comm="syz.2.19" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   26.916102][   T29] audit: type=1400 audit(1756049563.296:145): avc:  denied  { unmount } for  pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   26.936211][   T29] audit: type=1326 audit(1756049563.326:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3513 comm="syz.1.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   26.959499][   T29] audit: type=1326 audit(1756049563.326:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3513 comm="syz.1.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   26.982690][   T29] audit: type=1326 audit(1756049563.326:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3513 comm="syz.1.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   27.079064][   T29] audit: type=1400 audit(1756049563.526:149): avc:  denied  { mounton } for  pid=3519 comm="syz.2.21" path="/4/file0" dev="tmpfs" ino=40 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[   27.163705][ T3534] netlink: 'syz.4.25': attribute type 1 has an invalid length.
[   27.171266][ T3534] netlink: 199820 bytes leftover after parsing attributes in process `syz.4.25'.
[   27.201025][   T29] audit: type=1400 audit(1756049563.626:150): avc:  denied  { ioctl } for  pid=3526 comm="syz.2.24" path="socket:[4767]" dev="sockfs" ino=4767 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   27.230413][ T3541] netlink: 'syz.1.26': attribute type 1 has an invalid length.
[   27.348076][ T3539] loop2: detected capacity change from 0 to 8192
[   27.367763][ T3539] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   27.411735][ T3539] process 'syz.2.27' launched '/dev/fd/6' with NULL argv: empty string added
[   27.621241][ T3574] loop2: detected capacity change from 0 to 512
[   27.651893][ T3574] EXT4-fs: Ignoring removed nomblk_io_submit option
[   27.659047][ T3574] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   27.672174][ T3574] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   27.717142][ T3574] EXT4-fs (loop2): 1 truncate cleaned up
[   27.724334][ T3574] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   27.771003][ T3574] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   27.806011][ T3592] Driver unsupported XDP return value 0 on prog  (id 39) dev N/A, expect packet loss!
[   27.999510][ T3621] loop0: detected capacity change from 0 to 1024
[   28.010178][ T3621] EXT4-fs: Ignoring removed orlov option
[   28.015905][ T3621] EXT4-fs: Ignoring removed nomblk_io_submit option
[   28.051230][ T3621] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   28.072761][ T3631] netlink: 'syz.3.67': attribute type 3 has an invalid length.
[   28.111568][ T3621] loop0: detected capacity change from 1024 to 2
[   28.121302][ T3621] syz.0.64: attempt to access beyond end of device
[   28.121302][ T3621] loop0: rw=145409, sector=2, nr_sectors = 2 limit=2
[   28.134479][ T3621] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   28.155335][ T3633] mmap: syz.3.68 (3633) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   28.161507][ T3621] EXT4-fs (loop0): I/O error while writing superblock
[   28.216104][ T3306] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Out of memory
[   28.236343][ T3306] syz-executor: attempt to access beyond end of device
[   28.236343][ T3306] loop0: rw=145409, sector=2, nr_sectors = 2 limit=2
[   28.249797][ T3306] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   28.260755][ T3306] EXT4-fs (loop0): I/O error while writing superblock
[   28.267561][ T3306] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz-executor: mark_inode_dirty error
[   28.279358][ T3306] syz-executor: attempt to access beyond end of device
[   28.279358][ T3306] loop0: rw=145409, sector=2, nr_sectors = 2 limit=2
[   28.292769][ T3306] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   28.301148][ T3306] EXT4-fs (loop0): I/O error while writing superblock
[   28.322419][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   28.332794][ T3635] loop4: detected capacity change from 0 to 32768
[   28.334339][ T3306] syz-executor: attempt to access beyond end of device
[   28.334339][ T3306] loop0: rw=145409, sector=2, nr_sectors = 2 limit=2
[   28.352621][ T3306] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   28.362408][ T3306] EXT4-fs (loop0): I/O error while writing superblock
[   28.369358][ T3628] kmmpd-loop0: attempt to access beyond end of device
[   28.369358][ T3628] loop0: rw=14337, sector=128, nr_sectors = 2 limit=2
[   28.382949][ T3628] Buffer I/O error on dev loop0, logical block 64, lost sync page write
[   28.401865][ T3289]  loop4: p1 p3 < >
[   28.408397][ T3635]  loop4: p1 p3 < >
[   28.493307][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   28.496930][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   28.540394][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   28.541182][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   28.563902][ T3656] netdevsim netdevsim1: Direct firmware load for 0.€ failed with error -2
[   28.621566][ T3662] syz.1.82 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   28.672304][ T3667] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[   28.698453][ T3669] syz.1.85 uses obsolete (PF_INET,SOCK_PACKET)
[   28.707931][ T3669] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 1
[   29.252352][ T3679] netlink: 256 bytes leftover after parsing attributes in process `'.
[   29.283474][ T3683] netlink: 'syz.1.91': attribute type 3 has an invalid length.
[   29.292812][ T3683] netlink: 'syz.1.91': attribute type 3 has an invalid length.
[   29.389315][ T3691] hub 9-0:1.0: USB hub found
[   29.402738][ T3691] hub 9-0:1.0: 8 ports detected
[   29.442148][ T3306] syz-executor (3306) used greatest stack depth: 10776 bytes left
[   29.929535][   T41] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   29.962477][ T3713] loop3: detected capacity change from 0 to 512
[   29.993999][   T41] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   30.018143][ T3713] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   30.030921][ T3713] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   30.073824][   T41] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   30.166105][   T41] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   30.208092][ T3726] SELinux: ebitmap start bit (402653440) is beyond the end of the bitmap (1472)
[   30.217930][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.219363][ T3703] chnl_net:caif_netlink_parms(): no params data found
[   30.225726][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.225806][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.234454][ T3726] SELinux: failed to load policy
[   30.240328][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.260678][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.268444][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.276203][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.284035][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.291788][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.299523][ T3742] ICMPv6: RA: ndisc_router_discovery failed to add default route
[   30.370261][ T3703] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.377373][ T3703] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.392884][ T3703] bridge_slave_0: entered allmulticast mode
[   30.399857][ T3703] bridge_slave_0: entered promiscuous mode
[   30.415475][ T3703] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.422769][ T3703] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.434594][ T3703] bridge_slave_1: entered allmulticast mode
[   30.441143][ T3703] bridge_slave_1: entered promiscuous mode
[   30.479506][   T41] bridge_slave_1: left allmulticast mode
[   30.485193][   T41] bridge_slave_1: left promiscuous mode
[   30.490806][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.512272][   T41] bridge_slave_0: left allmulticast mode
[   30.517912][   T41] bridge_slave_0: left promiscuous mode
[   30.523735][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.673017][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   30.682816][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   30.693594][   T41] bond0 (unregistering): Released all slaves
[   30.721667][ T3703] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.733469][ T3703] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.747399][   T41] hsr_slave_0: left promiscuous mode
[   30.756170][   T41] hsr_slave_1: left promiscuous mode
[   30.762143][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   30.769572][   T41] batman_adv: batadv0: Removing interface: batadv_slave_0
[   30.778550][ T3787] rdma_op ffff888103944980 conn xmit_rdma 0000000000000000
[   30.786648][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   30.794129][   T41] batman_adv: batadv0: Removing interface: batadv_slave_1
[   30.811340][   T41] veth1_macvtap: left promiscuous mode
[   30.823082][   T41] veth0_macvtap: left promiscuous mode
[   30.835286][   T41] veth1_vlan: left promiscuous mode
[   30.840779][   T41] veth0_vlan: left promiscuous mode
[   30.847657][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   30.963742][ T3811] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   30.996598][   T41] team0 (unregistering): Port device team_slave_1 removed
[   31.006432][ T3814] netlink: 32 bytes leftover after parsing attributes in process `+}[@'.
[   31.023419][ T3816] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   31.034699][   T41] team0 (unregistering): Port device team_slave_0 removed
[   31.074896][ T3820] ALSA: seq fatal error: cannot create timer (-22)
[   31.141047][ T3703] team0: Port device team_slave_0 added
[   31.163739][ T3830] netlink: 'syz.3.138': attribute type 3 has an invalid length.
[   31.172442][ T3703] team0: Port device team_slave_1 added
[   31.209259][ T3703] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.216357][ T3703] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.242590][ T3703] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.322950][ T3703] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.329944][ T3703] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.356199][ T3703] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.430929][ T3703] hsr_slave_0: entered promiscuous mode
[   31.441774][ T3703] hsr_slave_1: entered promiscuous mode
[   31.448295][ T3703] debugfs: 'hsr0' already exists in 'hsr'
[   31.454055][ T3703] Cannot create hsr debugfs directory
[   31.583456][ T3884] netlink: 48 bytes leftover after parsing attributes in process `syz.4.150'.
[   31.694591][ T3703] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   31.725424][ T3703] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   31.755791][ T3703] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   31.799212][ T3703] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   31.801996][ T3892] loop4: detected capacity change from 0 to 164
[   31.849667][ T3892] syz.4.152: attempt to access beyond end of device
[   31.849667][ T3892] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   31.869015][ T3892] syz.4.152: attempt to access beyond end of device
[   31.869015][ T3892] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   31.890399][ T3904] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   31.913937][   T29] kauditd_printk_skb: 201 callbacks suppressed
[   31.913951][   T29] audit: type=1326 audit(1756049568.386:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   31.961579][ T3703] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.988646][ T3703] 8021q: adding VLAN 0 to HW filter on device team0
[   32.006566][   T29] audit: type=1326 audit(1756049568.416:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   32.029800][   T29] audit: type=1326 audit(1756049568.416:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   32.053031][   T29] audit: type=1326 audit(1756049568.416:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   32.076287][   T29] audit: type=1326 audit(1756049568.426:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   32.099602][   T29] audit: type=1326 audit(1756049568.426:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   32.122904][   T29] audit: type=1326 audit(1756049568.426:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   32.146149][   T29] audit: type=1326 audit(1756049568.426:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   32.169480][   T29] audit: type=1326 audit(1756049568.426:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3905 comm="syz.1.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c9462ebe9 code=0x7ffc0000
[   32.192686][   T29] audit: type=1400 audit(1756049568.426:361): avc:  denied  { create } for  pid=3907 comm="syz.2.157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   32.216364][ T3924] bond0: entered promiscuous mode
[   32.221545][ T3924] bond_slave_0: entered promiscuous mode
[   32.227280][ T3924] bond_slave_1: entered promiscuous mode
[   32.253372][ T3703] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   32.263780][ T3703] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   32.279236][ T2085] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.286465][ T2085] bridge0: port 1(bridge_slave_0) entered forwarding state
[   32.295936][ T2085] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.303093][ T2085] bridge0: port 2(bridge_slave_1) entered forwarding state
[   32.372550][ T3933] netlink: 4 bytes leftover after parsing attributes in process `syz.3.163'.
[   32.380348][ T3942] loop1: detected capacity change from 0 to 128
[   32.409746][ T3942] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   32.414574][ T3703] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.433131][ T3942] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   32.559817][ T3966] serio: Serial port ptm0
[   32.573175][ T3301] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   32.619727][ T3975] netdevsim netdevsim2: Direct firmware load for ./file0/file1 failed with error -2
[   32.634607][ T3703] veth0_vlan: entered promiscuous mode
[   32.642886][ T3703] veth1_vlan: entered promiscuous mode
[   32.650355][ T3979] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   32.684330][ T3703] veth0_macvtap: entered promiscuous mode
[   32.691342][ T3979] SELinux: failed to load policy
[   32.698601][ T3703] veth1_macvtap: entered promiscuous mode
[   32.719758][ T3703] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.750506][ T3703] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.774662][ T3990] netlink: 32 bytes leftover after parsing attributes in process `syz.3.181'.
[   32.780799][   T41] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.804065][   T41] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.835444][ T3996] macvtap0: refused to change device tx_queue_len
[   32.843765][   T41] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.891951][ T1717] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   33.037919][ T4027] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   33.197174][ T4056] IPv6: Can't replace route, no match found
[   33.210376][ T4058] netlink: 28 bytes leftover after parsing attributes in process `syz.3.212'.
[   33.230823][ T4058] netem: change failed
[   33.277806][ T4069] netlink: 200 bytes leftover after parsing attributes in process `syz.2.217'.
[   33.329405][ T4073] 9pnet_fd: Insufficient options for proto=fd
[   33.373183][ T4077] SELinux:  unknown common socke
[   33.378698][ T4077] SELinux: failed to load policy
[   33.413641][ T4083] pimreg: entered allmulticast mode
[   33.421994][ T4083] pimreg: left allmulticast mode
[   33.494974][ T4093] netlink: 8 bytes leftover after parsing attributes in process `syz.2.227'.
[   33.503917][ T4093] netlink: 'syz.2.227': attribute type 19 has an invalid length.
[   33.511666][ T4093] netlink: 12 bytes leftover after parsing attributes in process `syz.2.227'.
[   33.545358][ T4093] Zero length message leads to an empty skb
[   33.545356][  T142] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   33.561113][  T142] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   33.593818][  T142] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   33.603632][  T142] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   33.619453][ T4101] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   33.866040][ T4130] ALSA: seq fatal error: cannot create timer (-22)
[   34.058320][ T4161] loop3: detected capacity change from 0 to 512
[   34.083922][ T4161] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   34.111210][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.113193][ T4161] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.118815][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.138535][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.146084][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.153535][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.160936][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.168423][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.169584][ T4161] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   34.175837][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.193554][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.200931][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   34.211524][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[   34.276433][ T4171] fido_id[4171]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   34.319567][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.336476][ T4176] loop4: detected capacity change from 0 to 1024
[   34.379670][ T4176] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   34.406620][ T4176] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   34.459718][  T142] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm kworker/u8:4: lblock 0 mapped to illegal pblock 0 (length 1)
[   34.485534][  T142] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[   34.497827][  T142] EXT4-fs (loop4): This should not happen!! Data will be lost
[   34.497827][  T142] 
[   34.522213][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   34.556825][ T4188] netlink: 8 bytes leftover after parsing attributes in process `syz.3.269'.
[   34.827374][ T4214] loop2: detected capacity change from 0 to 2048
[   34.883553][ T3289] Alternate GPT is invalid, using primary GPT.
[   34.889904][ T3289]  loop2: p2 p3 p7
[   34.925447][ T4214] Alternate GPT is invalid, using primary GPT.
[   34.931808][ T4214]  loop2: p2 p3 p7
[   35.037995][ T3585] udevd[3585]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   35.038008][ T3510] udevd[3510]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   35.039322][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   35.176750][ T4247] loop5: detected capacity change from 0 to 128
[   35.202744][ T3412] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[   35.256456][ T4250] fido_id[4250]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   35.275056][ T4247] syz.5.294: attempt to access beyond end of device
[   35.275056][ T4247] loop5: rw=0, sector=121, nr_sectors = 920 limit=128
[   35.591662][ T4292] vlan2: entered allmulticast mode
[   35.692663][ T4301] SELinux:  policydb version 0 does not match my version range 15-35
[   35.701159][ T4298] netlink: 100 bytes leftover after parsing attributes in process `syz.4.318'.
[   35.721193][ T4301] SELinux: failed to load policy
[   35.752003][ T4289] netlink: 8 bytes leftover after parsing attributes in process `syz.2.314'.
[   35.920843][ T4330] loop3: detected capacity change from 0 to 512
[   35.932810][ T4336] SELinux:  policydb magic number 0x4c5047 does not match expected magic number 0xf97cff8c
[   35.953424][ T4336] SELinux: failed to load policy
[   35.955994][ T4330] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.974860][ T4330] ext4 filesystem being mounted at /66/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   36.040703][ T4330] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.330: corrupted inode contents
[   36.098308][ T4330] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.330: mark_inode_dirty error
[   36.119502][ T4330] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.330: corrupted inode contents
[   36.131269][ T4355] netem: incorrect gi model size
[   36.133481][ T4358] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.330: corrupted inode contents
[   36.136268][ T4355] netem: change failed
[   36.149412][ T4358] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.330: mark_inode_dirty error
[   36.171487][ T4358] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.330: corrupted inode contents
[   36.237564][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.268925][ T4372] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   36.282653][ T4369] loop2: detected capacity change from 0 to 8192
[   36.370559][ T4391] loop4: detected capacity change from 0 to 2048
[   36.423105][ T4391] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.491627][ T4403] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[   36.662077][ T4413] loop3: detected capacity change from 0 to 512
[   36.683079][ T4413] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.695715][ T4413] ext4 filesystem being mounted at /72/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   36.696413][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.709765][ T4413] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.360: corrupted inode contents
[   36.734367][ T4413] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.360: mark_inode_dirty error
[   36.746802][ T4413] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.360: corrupted inode contents
[   36.758637][ T4413] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.360: mark_inode_dirty error
[   36.798953][ T4413] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.360: corrupted inode contents
[   36.810978][ T4413] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.360: mark_inode_dirty error
[   36.832739][ T4413] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.360: corrupted inode contents
[   36.868968][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.942852][ T4446] loop2: detected capacity change from 0 to 2048
[   36.959192][ T4446] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.971757][ T4446] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   37.018833][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.033898][   T29] kauditd_printk_skb: 247 callbacks suppressed
[   37.033911][   T29] audit: type=1326 audit(1756049573.506:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.083740][ T4458] syz_tun: entered allmulticast mode
[   37.089261][   T29] audit: type=1326 audit(1756049573.506:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.089688][ T4457] syz_tun: left allmulticast mode
[   37.112547][   T29] audit: type=1326 audit(1756049573.506:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.140709][   T29] audit: type=1326 audit(1756049573.506:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.164122][   T29] audit: type=1326 audit(1756049573.506:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.187402][   T29] audit: type=1326 audit(1756049573.506:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.210695][   T29] audit: type=1326 audit(1756049573.506:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.234063][   T29] audit: type=1326 audit(1756049573.506:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.260641][   T29] audit: type=1326 audit(1756049573.686:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.284036][   T29] audit: type=1326 audit(1756049573.686:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4453 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f852dd1ebe9 code=0x7ffc0000
[   37.386736][ T4467] capability: warning: `syz.5.381' uses deprecated v2 capabilities in a way that may be insecure
[   37.555944][ T4485] __nla_validate_parse: 3 callbacks suppressed
[   37.555959][ T4485] netlink: 92 bytes leftover after parsing attributes in process `syz.5.387'.
[   37.571139][ T4485] netlink: 24 bytes leftover after parsing attributes in process `syz.5.387'.
[   37.580006][ T4485] netlink: 24 bytes leftover after parsing attributes in process `syz.5.387'.
[   37.640510][ T4497] atomic_op ffff8881447dbd28 conn xmit_atomic 0000000000000000
[   37.664614][ T4501] netlink: 'syz.5.395': attribute type 1 has an invalid length.
[   37.669046][ T4503] ip6gre1: entered allmulticast mode
[   37.685472][ T4501] 8021q: adding VLAN 0 to HW filter on device bond1
[   37.710632][ T4501] bond1: (slave geneve2): making interface the new active one
[   37.719369][ T4501] bond1: (slave geneve2): Enslaving as an active interface with an up link
[   37.735017][ T4509] loop2: detected capacity change from 0 to 512
[   37.739099][ T4501] syz.5.395 (4501) used greatest stack depth: 10096 bytes left
[   37.741847][ T4509] EXT4-fs: Ignoring removed nobh option
[   37.772088][ T4509] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.398: corrupted inode contents
[   37.784063][ T4509] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #3: comm syz.2.398: mark_inode_dirty error
[   37.795951][ T4509] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.398: corrupted inode contents
[   37.808950][ T4509] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.398: mark_inode_dirty error
[   37.820607][ T4509] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.398: Failed to acquire dquot type 0
[   37.834146][ T4509] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.398: corrupted inode contents
[   37.847080][ T4509] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.398: mark_inode_dirty error
[   37.859533][ T4509] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.398: corrupted inode contents
[   37.874534][ T4509] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.398: mark_inode_dirty error
[   37.876466][ T4523] loop5: detected capacity change from 0 to 512
[   37.886029][ T4509] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.398: corrupted inode contents
[   37.905545][ T4509] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   37.914342][ T4509] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.398: corrupted inode contents
[   37.927360][ T4509] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.398: mark_inode_dirty error
[   37.939598][ T4509] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   37.940030][ T4523] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.402: bg 0: block 5: invalid block bitmap
[   37.955152][ T4525] netlink: 12 bytes leftover after parsing attributes in process `syz.1.403'.
[   37.961771][ T4523] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   37.973113][ T4525] vlan2: entered promiscuous mode
[   37.978702][ T4509] EXT4-fs (loop2): 1 truncate cleaned up
[   37.983583][ T4525] gretap0: entered promiscuous mode
[   37.989548][ T4509] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.000848][ T4523] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.402: invalid indirect mapped block 3 (level 2)
[   38.006817][ T4509] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.022244][ T4523] EXT4-fs (loop5): 2 truncates cleaned up
[   38.040896][ T4523] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.053957][ T4509] syz.2.398 (4509) used greatest stack depth: 9760 bytes left
[   38.074100][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.116616][ T4530] netlink: 'syz.2.404': attribute type 10 has an invalid length.
[   38.142326][ T4530] veth0_vlan: entered allmulticast mode
[   38.149461][ T3703] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.168978][ T4530] veth0_vlan: left promiscuous mode
[   38.186752][ T4530] veth0_vlan: entered promiscuous mode
[   38.195796][ T4530] team0: Device veth0_vlan failed to register rx_handler
[   38.435983][ T4577] loop4: detected capacity change from 0 to 128
[   38.512535][ T4589] loop5: detected capacity change from 0 to 128
[   38.594106][ T4595] syzkaller1: entered promiscuous mode
[   38.599611][ T4595] syzkaller1: entered allmulticast mode
[   38.644971][ T4605] loop4: detected capacity change from 0 to 1024
[   38.661408][ T4605] EXT4-fs: Ignoring removed bh option
[   38.679675][ T4605] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   38.696356][ T4605] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.741826][ T4619] loop3: detected capacity change from 0 to 512
[   38.769947][ T4619] EXT4-fs: Ignoring removed nobh option
[   38.783566][ T4621] vlan2: entered allmulticast mode
[   38.789425][ T4605] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   38.813721][ T4621] dummy0: entered allmulticast mode
[   38.827101][ T4619] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.447: iget: bad i_size value: 38620345925642
[   38.841635][ T4619] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.447: couldn't read orphan inode 15 (err -117)
[   38.859883][ T4619] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.884818][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.904038][ T4631] sd 0:0:1:0: device reset
[   39.197302][ T4653] netlink: 4 bytes leftover after parsing attributes in process `syz.1.461'.
[   39.206102][ T4653] netlink: 348 bytes leftover after parsing attributes in process `syz.1.461'.
[   39.215126][ T4653] netlink: 4 bytes leftover after parsing attributes in process `syz.1.461'.
[   39.223914][ T4653] netlink: 348 bytes leftover after parsing attributes in process `syz.1.461'.
[   39.232978][ T4653] netlink: 4 bytes leftover after parsing attributes in process `syz.1.461'.
[   39.311856][  T142] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm kworker/u8:4: bg 0: block 5: invalid block bitmap
[   39.326891][  T142] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   39.339430][  T142] EXT4-fs (loop3): This should not happen!! Data will be lost
[   39.339430][  T142] 
[   39.350412][  T142] EXT4-fs (loop3): Total free blocks count 0
[   39.357524][  T142] EXT4-fs (loop3): Free/Dirty block details
[   39.363426][  T142] EXT4-fs (loop3): free_blocks=0
[   39.368340][  T142] EXT4-fs (loop3): dirty_blocks=16028
[   39.373702][  T142] EXT4-fs (loop3): Block reservation details
[   39.379658][  T142] EXT4-fs (loop3): i_reserved_data_blocks=16028
[   39.393499][  T142] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[   39.523280][ T4677] net_ratelimit: 44 callbacks suppressed
[   39.523301][ T4677] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 2621
[   39.644830][ T4696] program syz.3.480 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   39.683214][ T4702] SELinux:  Context Ü is not valid (left unmapped).
[   39.714630][ T4706] netlink: 8 bytes leftover after parsing attributes in process `syz.1.485'.
[   39.943803][ T4726] loop2: detected capacity change from 0 to 512
[   39.950403][ T4726] EXT4-fs: Ignoring removed i_version option
[   39.956789][ T4726] EXT4-fs: Ignoring removed nobh option
[   39.962928][ T4726] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   39.973871][ T4726] EXT4-fs (loop2): 1 truncate cleaned up
[   39.979953][ T4726] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.072362][ T4732] loop5: detected capacity change from 0 to 512
[   40.088377][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.102082][ T4734] loop4: detected capacity change from 0 to 512
[   40.108719][ T4734] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   40.109844][ T4732] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.133424][ T4732] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.181889][ T3703] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.460597][ T4791] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4791 comm=syz.4.518
[   40.473123][ T4791] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4791 comm=syz.4.518
[   40.729925][ T4832] smc: net device bond0 applied user defined pnetid SYZ0
[   40.737868][ T4832] smc: net device bond0 erased user defined pnetid SYZ0
[   40.870821][ T4863] pim6reg: entered allmulticast mode
[   40.886777][ T4863] pim6reg: left allmulticast mode
[   40.887467][ T4865] SELinux: security_context_str_to_sid () failed with errno=-22
[   41.111815][ T4910] netlink: '+}[@': attribute type 10 has an invalid length.
[   41.133510][ T4910] team0: Device hsr_slave_0 failed to register rx_handler
[   41.341257][ T4945] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   41.407165][ T4961] netlink: 'syz.3.599': attribute type 21 has an invalid length.
[   41.618117][ T4982] bond0: left promiscuous mode
[   41.622902][ T4982] bond_slave_0: left promiscuous mode
[   41.628427][ T4982] bond_slave_1: left promiscuous mode
[   41.635177][ T4982] 8021q: adding VLAN 0 to HW filter on device bond0
[   41.649703][ T4982] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   41.735542][ T4991] sd 0:0:1:0: device reset
[   41.764991][ T4995] loop3: detected capacity change from 0 to 4096
[   41.776509][ T4995] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.797982][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.872318][ T5009] loop3: detected capacity change from 0 to 2048
[   41.885839][ T5009] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.114519][ T5009] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.620: bg 0: block 234: padding at end of block bitmap is not set
[   42.128836][ T5009] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[   42.141459][ T5009] EXT4-fs (loop3): This should not happen!! Data will be lost
[   42.141459][ T5009] 
[   42.207224][ T2085] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   42.219959][ T2085] EXT4-fs (loop3): This should not happen!! Data will be lost
[   42.219959][ T2085] 
[   42.229596][ T2085] EXT4-fs (loop3): Total free blocks count 0
[   42.235571][ T2085] EXT4-fs (loop3): Free/Dirty block details
[   42.241455][ T2085] EXT4-fs (loop3): free_blocks=0
[   42.246391][ T2085] EXT4-fs (loop3): dirty_blocks=6144
[   42.251734][ T2085] EXT4-fs (loop3): Block reservation details
[   42.284659][   T29] kauditd_printk_skb: 238 callbacks suppressed
[   42.284705][   T29] audit: type=1326 audit(1756049578.618:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5020 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d93b9ebe9 code=0x7ffc0000
[   42.314734][   T29] audit: type=1326 audit(1756049578.618:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5020 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d93b9ebe9 code=0x7ffc0000
[   42.352064][ T5024] random: crng reseeded on system resumption
[   42.362453][ T5024] Restarting kernel threads ...
[   42.368812][ T5024] Done restarting kernel threads.
[   42.384441][   T29] audit: type=1326 audit(1756049578.618:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5020 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d93b9ebe9 code=0x7ffc0000
[   42.407706][   T29] audit: type=1326 audit(1756049578.674:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5020 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d93b9ebe9 code=0x7ffc0000
[   42.430941][   T29] audit: type=1400 audit(1756049578.674:859): avc:  denied  { append } for  pid=5023 comm="syz.4.625" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   42.454025][   T29] audit: type=1400 audit(1756049578.674:860): avc:  denied  { open } for  pid=5023 comm="syz.4.625" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   42.477229][   T29] audit: type=1400 audit(1756049578.693:861): avc:  denied  { ioctl } for  pid=5023 comm="syz.4.625" path="/dev/snapshot" dev="devtmpfs" ino=90 ioctlcmd=0x3305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   42.501992][   T29] audit: type=1326 audit(1756049578.702:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5020 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d93b9ebe9 code=0x7ffc0000
[   42.534234][   T29] audit: type=1326 audit(1756049578.852:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5020 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f0d93b9ebe9 code=0x7ffc0000
[   42.557508][   T29] audit: type=1326 audit(1756049578.852:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5020 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d93b9ebe9 code=0x7ffc0000
[   42.993586][ T5122] SELinux:  Context system_u:object_r:selinux_config_t:s0 is not valid (left unmapped).
[   43.160320][ T5150] loop5: detected capacity change from 0 to 2048
[   43.193500][ T5150] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.210552][ T5156] vhci_hcd: invalid port number 96
[   43.215662][ T5156] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   43.215978][ T5163] netlink: 'syz.4.674': attribute type 5 has an invalid length.
[   43.238909][ T5150] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.407761][ T5196] __nla_validate_parse: 6 callbacks suppressed
[   43.407777][ T5196] netlink: 12 bytes leftover after parsing attributes in process `syz.1.683'.
[   43.425487][ T3703] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.622698][ T5220] netlink: 32 bytes leftover after parsing attributes in process `syz.5.692'.
[   43.717051][ T5223] netdevsim netdevsim3: Direct firmware load for ./file0/file1 failed with error -2
[   43.965410][ T5246] loop3: detected capacity change from 0 to 512
[   43.972063][ T5246] EXT4-fs: Ignoring removed bh option
[   43.978722][ T5246] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   43.987832][ T5246] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   43.997424][ T5246] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[   44.006725][ T5246] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   44.015130][ T5246] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.028797][ T5148] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   44.040290][ T5148] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   44.077995][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.084212][ T5255] syzkaller0: entered promiscuous mode
[   44.092530][ T5255] syzkaller0: entered allmulticast mode
[   44.141227][ T5259] loop3: detected capacity change from 0 to 512
[   44.162710][ T5259] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   44.185946][ T5259] EXT4-fs (loop3): mount failed
[   44.244876][ T5276] loop2: detected capacity change from 0 to 1024
[   44.254769][ T5280] RDS: rds_bind could not find a transport for fe80::28, load rds_tcp or rds_rdma?
[   44.295277][ T5276] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.332912][ T5276] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[   44.390070][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.438497][ T5302] random: crng reseeded on system resumption
[   44.448682][ T5302] Restarting kernel threads ...
[   44.455071][ T5302] Done restarting kernel threads.
[   44.510151][ T5311] loop2: detected capacity change from 0 to 512
[   44.559674][ T5311] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   44.594920][ T5311] EXT4-fs (loop2): mount failed
[   44.632297][ T5323] loop2: detected capacity change from 0 to 1024
[   44.638889][ T5323] EXT4-fs: inline encryption not supported
[   44.645267][ T5323] EXT4-fs: Ignoring removed bh option
[   44.655142][ T5323] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.703214][ T5323] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 18: block 305:freeing already freed block (bit 19); block bitmap corrupt.
[   44.734153][ T5323] EXT4-fs (loop2): Remounting filesystem read-only
[   44.748090][ T5332] netlink: 12 bytes leftover after parsing attributes in process `syz.3.732'.
[   44.788111][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.859651][ T5342] loop5: detected capacity change from 0 to 1024
[   44.879890][ T5342] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   44.892599][ T5342] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.937117][   T12] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: comm kworker/u8:0: lblock 0 mapped to illegal pblock 0 (length 1)
[   44.960364][   T12] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[   44.972707][   T12] EXT4-fs (loop5): This should not happen!! Data will be lost
[   44.972707][   T12] 
[   44.987736][ T3703] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   45.008085][ T5357] loop5: detected capacity change from 0 to 512
[   45.014966][ T5357] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   45.041991][ T5357] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.061254][ T5357] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.138009][ T3703] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.496067][ T5381] loop5: detected capacity change from 0 to 512
[   45.526157][ T5381] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.747: corrupted inode contents
[   45.550885][ T5381] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #16: comm syz.5.747: mark_inode_dirty error
[   45.564198][ T5381] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.747: corrupted inode contents
[   45.583902][ T5381] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.747: mark_inode_dirty error
[   45.603578][ T5381] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.747: corrupted inode contents
[   45.636247][ T5381] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[   45.647154][ T5381] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.747: corrupted inode contents
[   45.668405][ T5381] EXT4-fs error (device loop5): ext4_truncate:4666: inode #16: comm syz.5.747: mark_inode_dirty error
[   45.684068][ T5381] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[   45.716179][ T5381] EXT4-fs (loop5): 1 truncate cleaned up
[   45.729134][ T5381] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.742235][ T5381] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.770692][ T2085] EXT4-fs error (device loop5): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 1
[   45.791339][ T5393] loop3: detected capacity change from 0 to 764
[   45.810141][ T5393] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   45.819777][ T5393] Symlink component flag not implemented
[   45.825665][ T5393] Symlink component flag not implemented (7)
[   45.843271][ T3703] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.995460][ T5411] loop5: detected capacity change from 0 to 512
[   46.043770][ T5411] EXT4-fs: Ignoring removed nomblk_io_submit option
[   46.077211][ T5411] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.111244][ T5411] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   46.148215][ T5411] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.759: corrupted inode contents
[   46.173551][ T5411] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #2: comm syz.5.759: mark_inode_dirty error
[   46.214866][ T5411] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.759: corrupted inode contents
[   46.228473][ T5411] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.759: mark_inode_dirty error
[   46.300900][ T3703] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.466868][ T5433] SELinux: failed to load policy
[   46.639037][ T5452] loop2: detected capacity change from 0 to 1024
[   46.675444][ T5452] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   46.687984][ T5452] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.702554][ T5463] netlink: 4 bytes leftover after parsing attributes in process `syz.5.782'.
[   46.726472][   T51] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm kworker/u8:3: lblock 0 mapped to illegal pblock 0 (length 1)
[   46.744199][   T51] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[   46.756525][   T51] EXT4-fs (loop2): This should not happen!! Data will be lost
[   46.756525][   T51] 
[   46.768113][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   46.926925][ T5490] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   46.935458][ T5490] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   47.037840][ T5497] netlink: 24 bytes leftover after parsing attributes in process `syz.1.798'.
[   47.435274][ T5523] bond0: entered promiscuous mode
[   47.440333][ T5523] bond_slave_0: entered promiscuous mode
[   47.446073][ T5523] bond_slave_1: entered promiscuous mode
[   47.590652][ T5529] loop5: detected capacity change from 0 to 512
[   47.614914][ T5529] EXT4-fs: Ignoring removed nobh option
[   47.663253][ T5529] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.812: corrupted inode contents
[   47.678092][ T5529] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #3: comm syz.5.812: mark_inode_dirty error
[   47.692033][ T5534] 9pnet_fd: Insufficient options for proto=fd
[   47.733953][ T5529] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.812: corrupted inode contents
[   47.765079][ T5529] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #3: comm syz.5.812: mark_inode_dirty error
[   47.786892][ T5529] __quota_error: 159 callbacks suppressed
[   47.786907][ T5529] Quota error (device loop5): write_blk: dquota write failed
[   47.800689][ T5529] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[   47.811194][ T5529] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.812: Failed to acquire dquot type 0
[   47.823533][ T5529] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.812: corrupted inode contents
[   47.835659][ T5529] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #16: comm syz.5.812: mark_inode_dirty error
[   47.847756][ T5529] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.812: corrupted inode contents
[   47.860916][ T5529] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.812: mark_inode_dirty error
[   47.872530][ T5529] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.812: corrupted inode contents
[   47.885515][ T5529] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[   47.894901][ T5529] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.812: corrupted inode contents
[   47.913147][ T5529] EXT4-fs error (device loop5): ext4_truncate:4666: inode #16: comm syz.5.812: mark_inode_dirty error
[   47.924988][ T5529] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[   47.934090][ T5540] loop4: detected capacity change from 0 to 1024
[   47.937322][ T5529] EXT4-fs (loop5): 1 truncate cleaned up
[   47.946890][   T29] audit: type=1326 audit(1756049583.912:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.2.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   47.970227][   T29] audit: type=1326 audit(1756049583.912:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.2.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   47.996243][ T5529] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.009512][ T5529] ext4 filesystem being mounted at /132/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.011817][ T5540] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.020345][   T29] audit: type=1326 audit(1756049583.969:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.2.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   48.055386][   T29] audit: type=1326 audit(1756049583.969:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.2.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   48.078699][   T29] audit: type=1326 audit(1756049583.969:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.2.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   48.102045][   T29] audit: type=1326 audit(1756049583.969:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.2.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   48.120446][ T5540] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[   48.125578][   T29] audit: type=1326 audit(1756049584.090:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.2.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   48.163194][   T29] audit: type=1326 audit(1756049584.090:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5544 comm="syz.2.817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   48.200523][ T3703] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.258953][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.283335][ T5556] netlink: 12 bytes leftover after parsing attributes in process `syz.2.822'.
[   48.295182][ T5558] serio: Serial port ptm0
[   48.296267][ T5556] vlan2: entered promiscuous mode
[   48.304686][ T5556] gretap0: entered promiscuous mode
[   48.315165][ T5562] loop4: detected capacity change from 0 to 512
[   48.325050][ T5562] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.823: bg 0: block 5: invalid block bitmap
[   48.338030][ T5562] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   48.347150][ T5562] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.823: invalid indirect mapped block 3 (level 2)
[   48.360575][ T5562] EXT4-fs (loop4): 2 truncates cleaned up
[   48.367272][ T5562] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.399786][ T5566] netlink: 'syz.3.825': attribute type 1 has an invalid length.
[   48.410117][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.413312][ T5566] 8021q: adding VLAN 0 to HW filter on device bond1
[   48.483455][ T5566] bond1: (slave geneve2): making interface the new active one
[   48.492321][ T5566] bond1: (slave geneve2): Enslaving as an active interface with an up link
[   48.564494][ T5582] loop3: detected capacity change from 0 to 512
[   48.582084][ T5582] EXT4-fs: Ignoring removed nobh option
[   48.610003][ T5582] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.833: corrupted inode contents
[   48.634519][ T5582] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.833: mark_inode_dirty error
[   48.658266][ T5582] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.833: corrupted inode contents
[   48.684192][ T5582] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.833: mark_inode_dirty error
[   48.706376][ T5582] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.833: Failed to acquire dquot type 0
[   48.728619][ T5582] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.833: corrupted inode contents
[   48.741790][ T5582] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.833: mark_inode_dirty error
[   48.754043][ T5582] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.833: corrupted inode contents
[   48.766927][ T5582] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.833: mark_inode_dirty error
[   48.778734][ T5582] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.833: corrupted inode contents
[   48.792180][ T5582] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   48.801028][ T5582] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.833: corrupted inode contents
[   48.813958][ T5582] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.833: mark_inode_dirty error
[   48.825299][ T5582] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   48.835449][ T5582] EXT4-fs (loop3): 1 truncate cleaned up
[   48.841582][ T5582] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.855516][ T5582] ext4 filesystem being mounted at /169/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.884046][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.909820][ T5590] loop3: detected capacity change from 0 to 1024
[   48.930401][ T5590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.953344][ T5590] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[   48.996223][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.114067][ T5596] loop3: detected capacity change from 0 to 1024
[   49.145223][ T5596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   49.157795][ T5596] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.181910][ T2085] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: comm kworker/u8:6: lblock 0 mapped to illegal pblock 0 (length 1)
[   49.196624][ T2085] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[   49.208945][ T2085] EXT4-fs (loop3): This should not happen!! Data will be lost
[   49.208945][ T2085] 
[   49.223017][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   49.235432][ T5600] netlink: 12 bytes leftover after parsing attributes in process `syz.5.840'.
[   49.244480][ T5602] loop3: detected capacity change from 0 to 1024
[   49.246848][ T5600] vlan2: entered promiscuous mode
[   49.255894][ T5600] gretap0: entered promiscuous mode
[   49.259695][ T5602] EXT4-fs: Ignoring removed bh option
[   49.266912][ T5602] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   49.283103][ T5602] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.308876][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.324324][ T5606] netlink: 'syz.3.842': attribute type 10 has an invalid length.
[   49.332326][ T5606] veth0_vlan: entered allmulticast mode
[   49.351472][ T5606] veth0_vlan: left promiscuous mode
[   49.357835][ T5606] veth0_vlan: entered promiscuous mode
[   49.365536][ T5606] team0: Device veth0_vlan failed to register rx_handler
[   49.426925][ T5616] loop3: detected capacity change from 0 to 512
[   49.430323][ T5615] serio: Serial port ptm0
[   49.433741][ T5616] EXT4-fs: Ignoring removed nobh option
[   49.456015][ T5616] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.847: corrupted inode contents
[   49.468095][ T5616] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.847: mark_inode_dirty error
[   49.479989][ T5616] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.847: corrupted inode contents
[   49.491930][ T5616] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.847: mark_inode_dirty error
[   49.503585][ T5616] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.847: Failed to acquire dquot type 0
[   49.515934][ T5616] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.847: corrupted inode contents
[   49.528996][ T5616] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.847: mark_inode_dirty error
[   49.540632][ T5616] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.847: corrupted inode contents
[   49.560166][ T5616] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.847: mark_inode_dirty error
[   49.571596][ T5616] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.847: corrupted inode contents
[   49.578505][ T5624] loop4: detected capacity change from 0 to 8192
[   49.587042][ T5616] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   49.598529][ T5616] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.847: corrupted inode contents
[   49.610711][ T5616] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.847: mark_inode_dirty error
[   49.622914][ T5616] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   49.632639][ T5616] EXT4-fs (loop3): 1 truncate cleaned up
[   49.640682][ T5629] loop5: detected capacity change from 0 to 512
[   49.647413][ T5629] EXT4-fs: Ignoring removed nobh option
[   49.653830][ T5616] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.666902][ T5616] ext4 filesystem being mounted at /176/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.678957][ T5629] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.851: iget: bad i_size value: 38620345925642
[   49.704248][ T5629] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.851: couldn't read orphan inode 15 (err -117)
[   49.716775][ T5629] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.766247][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.005792][ T5642] netlink: 12 bytes leftover after parsing attributes in process `syz.4.855'.
[   50.035100][ T5642] vlan2: entered promiscuous mode
[   50.040233][ T5642] gretap0: entered promiscuous mode
[   50.077778][ T5645] netlink: 268 bytes leftover after parsing attributes in process `syz.1.864'.
[   50.086799][ T5645] unsupported nla_type 65024
[   50.099255][   T12] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm kworker/u8:0: bg 0: block 5: invalid block bitmap
[   50.147775][   T12] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   50.160220][   T12] EXT4-fs (loop5): This should not happen!! Data will be lost
[   50.160220][   T12] 
[   50.169889][   T12] EXT4-fs (loop5): Total free blocks count 0
[   50.175865][   T12] EXT4-fs (loop5): Free/Dirty block details
[   50.181774][   T12] EXT4-fs (loop5): free_blocks=0
[   50.186715][   T12] EXT4-fs (loop5): dirty_blocks=16000
[   50.192123][   T12] EXT4-fs (loop5): Block reservation details
[   50.198128][   T12] EXT4-fs (loop5): i_reserved_data_blocks=16000
[   50.224746][ T5651] loop3: detected capacity change from 0 to 512
[   50.242053][ T5651] EXT4-fs: Ignoring removed i_version option
[   50.248091][ T5651] EXT4-fs: Ignoring removed nobh option
[   50.275525][ T5651] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   50.294587][ T5654] loop4: detected capacity change from 0 to 128
[   50.313578][ T5651] EXT4-fs (loop3): 1 truncate cleaned up
[   50.319527][ T5651] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.348735][   T12] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[   50.578564][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.820914][ T5668] serio: Serial port ptm0
[   51.119077][ T5680] SELinux: ebitmap start bit (402653440) is beyond the end of the bitmap (1472)
[   51.134487][ T5702] loop3: detected capacity change from 0 to 164
[   51.141844][ T5680] SELinux: failed to load policy
[   51.149580][ T5702] syz.3.878: attempt to access beyond end of device
[   51.149580][ T5702] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   51.207987][ T5702] syz.3.878: attempt to access beyond end of device
[   51.207987][ T5702] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.347895][ T5719] loop3: detected capacity change from 0 to 8192
[   51.681734][ T5787] serio: Serial port ptm0
[   51.835245][ T5814] loop5: detected capacity change from 0 to 164
[   51.854664][ T5814] syz.5.891: attempt to access beyond end of device
[   51.854664][ T5814] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   51.868899][ T5814] syz.5.891: attempt to access beyond end of device
[   51.868899][ T5814] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.979147][ T5836] loop2: detected capacity change from 0 to 256
[   51.996372][ T5836] vfat: Deprecated parameter 'posix'
[   52.001764][ T5836] FAT-fs: "posix" option is obsolete, not supported now
[   52.008007][ T5825] loop5: detected capacity change from 0 to 8192
[   52.594856][ T5890] netlink: 'syz.3.909': attribute type 21 has an invalid length.
[   52.604003][ T5890] netlink: 132 bytes leftover after parsing attributes in process `syz.3.909'.
[   52.613014][ T5890] netlink: 'syz.3.909': attribute type 1 has an invalid length.
[   52.614593][ T5888] loop2: detected capacity change from 0 to 2048
[   52.640614][ T5888] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.657723][ T5902] loop3: detected capacity change from 0 to 1024
[   52.664574][ T5902] EXT4-fs: Ignoring removed orlov option
[   52.672546][ T5902] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.781544][ T5910] netlink: 24 bytes leftover after parsing attributes in process `syz.2.918'.
[   52.796056][ T5908] loop4: detected capacity change from 0 to 4096
[   52.818121][ T5908] EXT4-fs error (device loop4): ext4_get_first_dir_block:3549: inode #12: block 80: comm syz.4.917: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[   52.843599][ T5908] EXT4-fs (loop4): Remounting filesystem read-only
[   52.912514][ T5929] atomic_op ffff8881035a5928 conn xmit_atomic 0000000000000000
[   52.958845][ T5931] loop2: detected capacity change from 0 to 8192
[   53.031142][ T5949] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[   53.031142][ T5949]    program syz.3.936 not setting count and/or reply_len properly
[   53.199554][ T5958] atomic_op ffff8881035a5928 conn xmit_atomic 0000000000000000
[   53.370891][ T5979] netlink: 'syz.1.949': attribute type 21 has an invalid length.
[   53.378912][ T5979] netlink: 132 bytes leftover after parsing attributes in process `syz.1.949'.
[   53.388035][ T5979] netlink: 'syz.1.949': attribute type 1 has an invalid length.
[   53.417329][ T5978] loop3: detected capacity change from 0 to 4096
[   53.431126][ T5978] EXT4-fs error (device loop3): ext4_get_first_dir_block:3549: inode #12: block 80: comm syz.3.950: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[   53.452047][ T5978] EXT4-fs (loop3): Remounting filesystem read-only
[   53.521389][ T5987] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.537747][ T5987] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.573169][   T29] kauditd_printk_skb: 74 callbacks suppressed
[   53.573182][   T29] audit: type=1400 audit(1756049589.179:1099): avc:  denied  { mounton } for  pid=5995 comm="syz.1.955" path="/221/file0" dev="tmpfs" ino=1147 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   53.573207][ T5996] 9pnet_fd: Insufficient options for proto=fd
[   53.745375][ T6010] loop5: detected capacity change from 0 to 1024
[   53.752214][ T6010] EXT4-fs: Ignoring removed nobh option
[   53.757782][ T6010] EXT4-fs: inline encryption not supported
[   53.821470][   T29] audit: type=1400 audit(1756049589.413:1100): avc:  denied  { setcheckreqprot } for  pid=6020 comm="syz.5.966" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   53.889447][   T29] audit: type=1326 audit(1756049589.469:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6026 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   53.912943][   T29] audit: type=1326 audit(1756049589.469:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6026 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   53.936255][   T29] audit: type=1326 audit(1756049589.469:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6026 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   53.959582][   T29] audit: type=1326 audit(1756049589.469:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6026 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   53.991464][   T29] audit: type=1326 audit(1756049589.478:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6026 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   54.014910][   T29] audit: type=1326 audit(1756049589.478:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6026 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   54.038210][   T29] audit: type=1326 audit(1756049589.497:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6026 comm="syz.2.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad0829ebe9 code=0x7ffc0000
[   54.063056][ T6029] netlink: 96 bytes leftover after parsing attributes in process `syz.5.970'.
[   54.080638][ T6031] 9pnet_fd: Insufficient options for proto=fd
[   54.118422][ T6038] loop3: detected capacity change from 0 to 1024
[   54.127748][ T6040] loop2: detected capacity change from 0 to 128
[   54.139672][   T29] audit: type=1400 audit(1756049589.712:1108): avc:  denied  { read } for  pid=6037 comm="syz.3.974" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[   54.169096][ T6044] loop5: detected capacity change from 0 to 1024
[   54.173555][ T6040] syz.2.975: attempt to access beyond end of device
[   54.173555][ T6040] loop2: rw=2049, sector=129, nr_sectors = 8 limit=128
[   54.188845][ T6040] syz.2.975: attempt to access beyond end of device
[   54.188845][ T6040] loop2: rw=2049, sector=145, nr_sectors = 8 limit=128
[   54.202320][ T6040] syz.2.975: attempt to access beyond end of device
[   54.202320][ T6040] loop2: rw=2049, sector=161, nr_sectors = 8 limit=128
[   54.215746][ T6040] syz.2.975: attempt to access beyond end of device
[   54.215746][ T6040] loop2: rw=2049, sector=177, nr_sectors = 8 limit=128
[   54.229209][ T6040] syz.2.975: attempt to access beyond end of device
[   54.229209][ T6040] loop2: rw=2049, sector=193, nr_sectors = 8 limit=128
[   54.242713][ T6040] syz.2.975: attempt to access beyond end of device
[   54.242713][ T6040] loop2: rw=2049, sector=209, nr_sectors = 8 limit=128
[   54.263250][ T6044] netlink: 'syz.5.976': attribute type 10 has an invalid length.
[   54.271437][ T6044] ipvlan0: entered allmulticast mode
[   54.276847][ T6044] veth0_vlan: entered allmulticast mode
[   54.291286][ T6044] team0: Device ipvlan0 failed to register rx_handler
[   54.306300][ T6051] loop3: detected capacity change from 0 to 512
[   54.321645][ T6051] ext4 filesystem being mounted at /208/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.370746][ T6061] loop2: detected capacity change from 0 to 1024
[   54.377669][ T6061] EXT4-fs: Ignoring removed orlov option
[   54.405157][ T6067] 9pnet_fd: Insufficient options for proto=fd
[   54.471094][ T6073] netlink: 'syz.4.987': attribute type 10 has an invalid length.
[   54.484083][ T6073] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.494824][ T6073] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   54.522067][ T6073] syz.4.987 (6073) used greatest stack depth: 9328 bytes left
[   54.534996][ T6083] loop4: detected capacity change from 0 to 1024
[   54.557685][ T6081] rdma_op ffff88811b914980 conn xmit_rdma 0000000000000000
[   54.573418][ T6085] atomic_op ffff88811b914928 conn xmit_atomic 0000000000000000
[   54.587558][ T6083] netlink: 'syz.4.991': attribute type 10 has an invalid length.
[   54.595476][ T6083] ipvlan0: entered allmulticast mode
[   54.600771][ T6083] veth0_vlan: entered allmulticast mode
[   54.610047][ T6083] team0: Device ipvlan0 failed to register rx_handler
[   54.621872][ T6089] netlink: 92 bytes leftover after parsing attributes in process `syz.3.994'.
[   54.630844][ T6089] netem: unknown loss type 0
[   54.635440][ T6089] netem: change failed
[   54.683598][ T6101] loop2: detected capacity change from 0 to 256
[   54.706984][ T6105] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in;
[   54.706984][ T6105]    program syz.5.1003 not setting count and/or reply_len properly
[   54.781921][ T6113] loop4: detected capacity change from 0 to 1024
[   54.791840][ T6113] EXT4-fs: Ignoring removed orlov option
[   54.901721][ T6131] sd 0:0:1:0: device reset
[   54.901908][ T6130] loop2: detected capacity change from 0 to 1024
[   54.957486][ T6136] loop5: detected capacity change from 0 to 4096
[   54.957845][ T6130] netlink: 'syz.2.1012': attribute type 10 has an invalid length.
[   54.978040][ T6130] ipvlan0: entered allmulticast mode
[   54.987596][ T6130] team0: Device ipvlan0 failed to register rx_handler
[   54.997665][ T6141] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   55.012158][ T6141] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.030391][ T6136] EXT4-fs error (device loop5): ext4_get_first_dir_block:3549: inode #12: block 80: comm syz.5.1014: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[   55.052405][ T6136] EXT4-fs (loop5): Remounting filesystem read-only
[   55.153499][ T6167] netlink: 'syz.3.1030': attribute type 10 has an invalid length.
[   55.158719][ T6169] loop2: detected capacity change from 0 to 512
[   55.164971][ T6167] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.178473][ T6167] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   55.195480][ T6169] ext4 filesystem being mounted at /195/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.216947][ T6167] syz.3.1030 (6167) used greatest stack depth: 9280 bytes left
[   55.293738][ T6184] loop2: detected capacity change from 0 to 4096
[   55.306046][ T6184] EXT4-fs error (device loop2): ext4_get_first_dir_block:3549: inode #12: block 80: comm syz.2.1033: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[   55.326509][ T6184] EXT4-fs (loop2): Remounting filesystem read-only
[   55.360862][ T6199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1035'.
[   55.369811][ T6199] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1035'.
[   55.378813][ T6199] netlink: 'syz.2.1035': attribute type 18 has an invalid length.
[   55.388154][ T6199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1035'.
[   55.397082][ T6199] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1035'.
[   55.406110][ T6199] netlink: 'syz.2.1035': attribute type 18 has an invalid length.
[   55.478354][ T6223] sctp: [Deprecated]: syz.5.1037 (pid 6223) Use of struct sctp_assoc_value in delayed_ack socket option.
[   55.478354][ T6223] Use struct sctp_sack_info instead
[   55.519752][ T6231] loop2: detected capacity change from 0 to 1024
[   55.526959][ T6231] EXT4-fs: Ignoring removed orlov option
[   55.822437][ T6254] loop2: detected capacity change from 0 to 4096
[   56.203571][ T6254] EXT4-fs error (device loop2): ext4_get_first_dir_block:3549: inode #12: block 80: comm syz.2.1044: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[   56.246813][ T6254] EXT4-fs (loop2): Remounting filesystem read-only
[   56.342852][ T6333] loop5: detected capacity change from 0 to 1024
[   56.363512][ T6337] loop2: detected capacity change from 0 to 1024
[   56.389128][ T6337] EXT4-fs: Ignoring removed nobh option
[   56.395428][ T6337] EXT4-fs: inline encryption not supported
[   56.510179][ T6351] netlink: 'syz.5.1062': attribute type 4 has an invalid length.
[   56.603620][ T6367] loop5: detected capacity change from 0 to 512
[   56.629944][ T6363] infiniband syz!: set active
[   56.634746][ T6363] infiniband syz!: added team_slave_0
[   56.643671][ T6367] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.649373][ T6372] ALSA: seq fatal error: cannot create timer (-19)
[   56.665608][ T6363] RDS/IB: syz!: added
[   56.669729][ T6363] smc: adding ib device syz! with port count 1
[   56.675904][ T6363] smc:    ib device syz! port 1 has pnetid 
[   56.677415][ T6378] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1061'.
[   56.690689][ T6378] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1061'.
[   56.699630][ T6378] netlink: 'syz.1.1061': attribute type 18 has an invalid length.
[   56.711488][ T6378] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1061'.
[   56.711704][   T12] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   56.720469][ T6378] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1061'.
[   56.737044][   T12] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   56.738275][ T6378] netlink: 'syz.1.1061': attribute type 18 has an invalid length.
[   56.755468][   T12] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   56.764291][   T12] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   56.976403][ T6397] loop5: detected capacity change from 0 to 1024
[   56.983568][ T6397] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   56.994483][ T6397] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   57.010124][ T6397] JBD2: no valid journal superblock found
[   57.015943][ T6397] EXT4-fs (loop5): Could not load journal inode
[   57.023943][ T6397] ==================================================================
[   57.032022][ T6397] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru
[   57.039562][ T6397] 
[   57.041867][ T6397] read-write to 0xffff888237c25ea8 of 1 bytes by task 6398 on cpu 0:
[   57.049910][ T6397]  folio_add_lru+0xa5/0x1f0
[   57.054410][ T6397]  folio_add_lru_vma+0x49/0x70
[   57.059182][ T6397]  handle_mm_fault+0x281f/0x2c20
[   57.064105][ T6397]  do_user_addr_fault+0x636/0x1090
[   57.069207][ T6397]  exc_page_fault+0x62/0xa0
[   57.073697][ T6397]  asm_exc_page_fault+0x26/0x30
[   57.078623][ T6397] 
[   57.080927][ T6397] read to 0xffff888237c25ea8 of 1 bytes by task 6397 on cpu 1:
[   57.088453][ T6397]  __lru_add_drain_all+0x12b/0x3f0
[   57.093549][ T6397]  lru_add_drain_all+0x10/0x20
[   57.098301][ T6397]  invalidate_bdev+0x47/0x70
[   57.102876][ T6397]  ext4_fill_super+0x2b5d/0x35d0
[   57.107804][ T6397]  get_tree_bdev_flags+0x291/0x300
[   57.112987][ T6397]  get_tree_bdev+0x1f/0x30
[   57.117387][ T6397]  ext4_get_tree+0x1c/0x30
[   57.121793][ T6397]  vfs_get_tree+0x54/0x1d0
[   57.126194][ T6397]  do_new_mount+0x207/0x5e0
[   57.130682][ T6397]  path_mount+0x4a4/0xb20
[   57.134993][ T6397]  __se_sys_mount+0x28f/0x2e0
[   57.139655][ T6397]  __x64_sys_mount+0x67/0x80
[   57.144238][ T6397]  x64_sys_call+0x2b4d/0x2ff0
[   57.148898][ T6397]  do_syscall_64+0xd2/0x200
[   57.153392][ T6397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.159354][ T6397] 
[   57.161656][ T6397] value changed: 0x02 -> 0x04
[   57.166308][ T6397] 
[   57.168618][ T6397] Reported by Kernel Concurrency Sanitizer on:
[   57.174756][ T6397] CPU: 1 UID: 0 PID: 6397 Comm: syz.5.1072 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.184456][ T6397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   57.194496][ T6397] ==================================================================
[   57.243809][ T6395] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.253653][ T6395] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.280150][ T6397] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[   57.324321][ T6400] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.331450][ T6400] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.341103][ T6400] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.348225][ T6400] bridge0: port 2(bridge_slave_1) entered forwarding state