last executing test programs:

1m35.657816825s ago: executing program 32 (id=222):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0x4, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x11)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x14, r2, 0x28543634fae43ad, 0x70bd2b, 0x0, {0xd}}, 0x14}}, 0x0)

1m31.787622866s ago: executing program 2 (id=352):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
kexec_load(0x4, 0xa, 0x0, 0x0)

1m31.73553164s ago: executing program 2 (id=355):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0009}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
setitimer(0x2, 0x0, 0x0)

1m31.682082184s ago: executing program 2 (id=359):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000080)={0x18, 0x0, {0xfdfe, @local, 'vcan0\x00'}}, 0x1e)
close(r2)

1m31.643654228s ago: executing program 2 (id=361):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
write$selinux_context(0xffffffffffffffff, &(0x7f0000000040)='system_u:object_r:cgroup_t:s0\x00', 0x1e)
syz_clone(0x2100, 0x0, 0x0, 0x0, 0x0, 0x0)

1m31.564129734s ago: executing program 2 (id=364):
unshare(0x6a040000)
unshare(0x60000000)
openat(0xffffffffffffff9c, 0x0, 0x40042, 0x84)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x7}, 0x1c)

1m31.35701716s ago: executing program 2 (id=367):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

1m31.346731231s ago: executing program 33 (id=367):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

1m30.900662477s ago: executing program 4 (id=372):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x80}, 0x18)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
epoll_create(0x7)
sendmsg$tipc(r1, &(0x7f00000005c0)={&(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1}, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x20040000}, 0x0)

1m30.86048669s ago: executing program 4 (id=374):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xe}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1807000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r2, 0x1276, 0x0)

1m30.580290963s ago: executing program 4 (id=380):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$iso9660(&(0x7f0000000b00), &(0x7f0000000040)='./file0\x00', 0x4002, &(0x7f0000000140)=ANY=[@ANYBLOB='map=off,cruft,iocharset=ascii,block=0x0000000000000200,unhide,session=0x0000000000000011,uid=', @ANYRESDEC=0x0, @ANYBLOB="2c004238994fceef7f633ea81416b1324d35327f7ace27c590b7f9fb133af0ffd6dfc4d893195864142b1450fbace6795f6e181993255fbbca2cb54fcf79cc53b3a6c3704aed82da89741aad5205bb43ded29cfd65509ff9c85cbdb7337ef48b9412ff439da96bb3f5ac11273d94d3d75d"], 0x1, 0xa2f, &(0x7f0000005740)="$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")

1m30.519740627s ago: executing program 4 (id=382):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)

1m30.445693703s ago: executing program 4 (id=387):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
open_tree(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x80000)

1m29.778662287s ago: executing program 4 (id=403):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[], 0xe4}, 0x1, 0x0, 0x0, 0xc800}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000040)=0x8, 0x4)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, 0x0, &(0x7f0000000140))

1m29.764220118s ago: executing program 34 (id=403):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[], 0xe4}, 0x1, 0x0, 0x0, 0xc800}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000040)=0x8, 0x4)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, 0x0, &(0x7f0000000140))

1m21.048038487s ago: executing program 5 (id=674):
socket$packet(0x11, 0x2, 0x300)
r0 = socket(0x200000000000011, 0x2, 0xd)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x86, &(0x7f0000000540)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x2, 0x10, 0x11, 0x0, @empty, @empty}, {0x4e22, 0x4e23, 0x64, 0x0, @wg=@response={0x2, 0x3, 0x1, "61073caac96d676600389f267609d60087ab9089ade57f0a33ba3c285fa2aceb", "a28ad1cc755f7011b0459a92a6add69b", {"9920c6d50aeb7a1c8432450f8ac01ef7", "226068e49d87dca9f6c847c43a3601a4"}}}}}}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000300)=ANY=[@ANYBLOB="e90c630faca20180c20000000800450000240000e0000011"], 0x0)

1m20.976910563s ago: executing program 5 (id=686):
syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f00000000c0)={[{@user_xattr}, {@nodioread_nolock}]}, 0x1, 0x576, &(0x7f0000000140)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x183042, 0x15)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
ftruncate(r1, 0x7)

1m20.796005198s ago: executing program 5 (id=677):
unshare(0x6a040000)
unshare(0x60000000)
openat(0xffffffffffffff9c, 0x0, 0x40042, 0x84)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x7}, 0x1c)

1m20.675541448s ago: executing program 5 (id=682):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
write$selinux_context(0xffffffffffffffff, &(0x7f0000000040)='system_u:object_r:cgroup_t:s0\x00', 0x1e)
syz_clone(0x2100, 0x0, 0x0, 0x0, 0x0, 0x0)

1m20.578379015s ago: executing program 5 (id=683):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0x5, &(0x7f0000000240)={@local, @empty, 0xfffb, "66c5aff8a7eb3af1f6cec2e7420000008c84aea31700", 0x96bd, 0x1000000, 0x7e, 0x6b}, 0x3c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4)

1m20.307108737s ago: executing program 5 (id=690):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@quota}, {@debug}]}, 0x1, 0x25a, &(0x7f0000000e00)="$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")
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0xa)

1m20.26735188s ago: executing program 35 (id=690):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@quota}, {@debug}]}, 0x1, 0x25a, &(0x7f0000000e00)="$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")
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0xa)

1m19.282057349s ago: executing program 7 (id=723):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xfffffffffffff001}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
umount2(&(0x7f0000000580)='./file0\x00', 0x3)

1m19.212834325s ago: executing program 7 (id=726):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r1)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x14, r2, 0x10ada85e65c25359, 0xfffffff9, 0x25dfdbfd, {{0x6b}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)

1m19.119081562s ago: executing program 7 (id=731):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f0000000280), 0xff, 0x531, &(0x7f0000000640)="$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")

1m18.880327681s ago: executing program 7 (id=740):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
write$selinux_context(0xffffffffffffffff, &(0x7f0000000040)='system_u:object_r:cgroup_t:s0\x00', 0x1e)
syz_clone(0x2100, 0x0, 0x0, 0x0, 0x0, 0x0)

1m18.77634294s ago: executing program 7 (id=742):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)={0x2c, r2, 0x301, 0x0, 0x0, {0x1c}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040005}, 0x40040)

1m18.52393764s ago: executing program 7 (id=755):
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000440), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)

1m18.493411643s ago: executing program 36 (id=755):
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000440), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)

1m18.235168073s ago: executing program 6 (id=764):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r2, 0xc0f85403, 0x0)

1m18.214704545s ago: executing program 6 (id=765):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x18)
setpriority(0x1, 0x0, 0x1)

1m18.186935937s ago: executing program 6 (id=766):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12}, 0x50)
rseq(&(0x7f0000000580)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
sync()

1m18.044030719s ago: executing program 6 (id=767):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
write$selinux_context(0xffffffffffffffff, &(0x7f0000000040)='system_u:object_r:cgroup_t:s0\x00', 0x1e)
syz_clone(0x2100, 0x0, 0x0, 0x0, 0x0, 0x0)

1m17.961023395s ago: executing program 6 (id=778):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r2, &(0x7f000000a300)=[{{&(0x7f0000000200)={0x2, 0x4e20, @private=0xa010100}, 0x10, &(0x7f0000000a80)=[{&(0x7f0000008c40)="0df077129c8242b3957eaa07ef3e801613db5066", 0x14}], 0x1}}], 0x1, 0x4004040)

1m17.684072358s ago: executing program 6 (id=780):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000300)={'batadv_slave_1\x00', <r2=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x1, 0x0, @multicast}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000140)={r2, 0x1, 0x5, @broadcast}, 0x10)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f00000000c0)={r2, 0x1, 0x6, @broadcast}, 0x10)

1m17.627779802s ago: executing program 37 (id=780):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000300)={'batadv_slave_1\x00', <r2=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x1, 0x0, @multicast}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000140)={r2, 0x1, 0x5, @broadcast}, 0x10)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f00000000c0)={r2, 0x1, 0x6, @broadcast}, 0x10)

1.728044752s ago: executing program 3 (id=3690):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f00000000c0)=0x7, 0x4)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000100)=0xf, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000080)=[@in={0x2, 0x4e21, @private=0xa010102}], 0x10)
setsockopt(r0, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000300)=""/250, 0xfa}], 0x1)

1.136144149s ago: executing program 1 (id=3722):
openat$tun(0xffffff9c, &(0x7f0000000000), 0x401, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000740)=ANY=[], 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$EVIOCRMFF(r0, 0x40085503, &(0x7f0000000000)=0x200001)

1.077029604s ago: executing program 8 (id=3725):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000000000}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000001240)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4000000, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x1, 0x0, 0x1fc, 0x0, 0xfffffc80, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3f, 0x0, 0x0, 0x2, 0xffffffff, 0x2, 0xc00, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x1000, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0xbab, 0x0, 0x272, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x0, 0xb97, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5e, 0xfffffffc, 0x8, 0x0, 0x0, 0x400000, 0x7, 0x4, 0xc, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xb3c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0xd79, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x100, 0x0, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0x0, 0x0, 0x0, 0xfffc, 0x6}, {0xff}, 0x0, 0x7f}}]}}]}, 0x45c}}, 0x0)

1.053298156s ago: executing program 8 (id=3726):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b208850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r2}}, 0x10)
close(r1)

1.030466988s ago: executing program 8 (id=3727):
r0 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
close(r0)
r1 = eventfd2(0x4, 0x0)
r2 = timerfd_create(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
readv(r1, &(0x7f00000005c0)=[{&(0x7f0000000280)=""/207, 0xcf}], 0x1)

821.708824ms ago: executing program 3 (id=3732):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x60, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

761.51648ms ago: executing program 3 (id=3733):
syz_pidfd_open(0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
wait4(0x0, 0x0, 0x1000000, 0x0)

761.28309ms ago: executing program 3 (id=3734):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000340), &(0x7f0000000300)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
syz_emit_ethernet(0x4e, &(0x7f0000000780)=ANY=[], 0x0)

699.370554ms ago: executing program 3 (id=3736):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x3, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_CREATE2(r2, 0x0, 0x8)

637.421869ms ago: executing program 3 (id=3738):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
capset(&(0x7f00000001c0)={0x19980330}, &(0x7f0000000200)={0x1, 0x7, 0x4, 0x1, 0xce5, 0xbc7})
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000005000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000003000/0x1000)=nil)
r0 = socket(0xa, 0x5, 0x0)
sendto$inet6(r0, &(0x7f0000000040)="00d8", 0x20a00, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c)

354.000882ms ago: executing program 9 (id=3747):
creat(&(0x7f00000000c0)='./file0\x00', 0x148)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
mount$9p_tcp(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x801, &(0x7f0000000740)=ANY=[])

336.660663ms ago: executing program 1 (id=3749):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000001c0)={'xfrm0\x00', &(0x7f0000000140)=@ethtool_gstrings={0x1b, 0x4}})

289.698077ms ago: executing program 0 (id=3750):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r2, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000)

289.430607ms ago: executing program 9 (id=3751):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x3, &(0x7f0000000400)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x28, 0x0, 0x0, 0xffffd024}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[], 0x0)

289.197947ms ago: executing program 1 (id=3752):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='\x00\x00\x00\x00\x00')
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_NON_HH_WEIGHT={0x8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80884}, 0x20000000)

285.436068ms ago: executing program 0 (id=3753):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x18)
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)

284.657278ms ago: executing program 9 (id=3754):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x50)
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000240)=ANY=[@ANYBLOB="e0000002ac1414aa0100000002"], 0x18)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2}}}}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty=0xe0, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x10001}}}}}, 0x0)

269.541338ms ago: executing program 1 (id=3755):
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r0, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x8, @loopback}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x3d10, 0x4)
sendto$inet6(r0, &(0x7f0000000000)="8d", 0x1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000007c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=""/78, 0x4e}, 0x6}], 0x1, 0x2001, 0x0)

254.85788ms ago: executing program 9 (id=3756):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x80000}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000160a0500000000000000000002000000300003802c00038004000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a30"], 0x84}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)

254.59856ms ago: executing program 0 (id=3757):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xd, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_open_dev$evdev(&(0x7f0000000280), 0x3, 0x10d900)

211.557643ms ago: executing program 1 (id=3758):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
r1 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xa83b, 0x10, 0x2}, &(0x7f0000000340)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r0, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

210.734354ms ago: executing program 1 (id=3759):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r1, &(0x7f00000009c0)="3bf58d7d45d32c", 0x7)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7fffeffd)

210.525753ms ago: executing program 0 (id=3760):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x22, &(0x7f0000000000)=0x1, 0x4)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000800)}}], 0x2, 0x2400c042)

210.293583ms ago: executing program 9 (id=3761):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000005c0)='mm_page_free_batched\x00', r1, 0x0, 0x400003}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000a00)={[{@journal_dev={'journal_dev', 0x3d, 0x3}}, {@mblk_io_submit}, {@resgid}, {@barrier}, {@bsdgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}]}, 0x1, 0x783, &(0x7f0000001340)="$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")

125.67277ms ago: executing program 0 (id=3762):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x60800, 0x0)
sendfile(r2, r3, 0x0, 0x1000000000004)

125.3543ms ago: executing program 0 (id=3763):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$sock(r0, &(0x7f0000003640), 0x0, 0x20040059)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={<r1=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x14)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x3}, 0x90)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000840)={r1, @in6={{0xa, 0x4e20, 0x3ae, @empty, 0x129}}, 0x2, 0x2, 0x614, 0x1, 0xd, 0x7, 0x4}, 0x9c)

108.090772ms ago: executing program 8 (id=3764):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000060000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
mincore(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0)

74.804584ms ago: executing program 9 (id=3765):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x80, 0x5, 0x7fff0003}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000400))
sendmsg$TIPC_CMD_GET_NODES(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)={0x1c, 0x0, 0x1, 0x70bd27, 0x0, {{}, {0x0, 0x6}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)

29.581528ms ago: executing program 8 (id=3766):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x0, 0x0)
poll(&(0x7f00000003c0)=[{r0, 0x20}], 0x1, 0x1)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

0s ago: executing program 8 (id=3767):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r2)
sendmsg$IEEE802154_LIST_PHY(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r3, 0x30b, 0x0, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x20000004)

kernel console output (not intermixed with test programs):

'.
[   85.623657][ T7817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1575'.
[   85.662245][ T7821] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1577'.
[   85.687413][ T7821] vlan2: entered promiscuous mode
[   85.692664][ T7821] gretap0: entered promiscuous mode
[   85.745891][ T7837] loop9: detected capacity change from 0 to 1024
[   85.762118][ T7837] EXT4-fs (loop9): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   85.796112][ T7837] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.290063][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.862276][ T8007] validate_nla: 1 callbacks suppressed
[   86.862293][ T8007] netlink: 'syz.0.1606': attribute type 29 has an invalid length.
[   86.878730][ T8007] netlink: 'syz.0.1606': attribute type 29 has an invalid length.
[   86.886818][ T8002] tipc: Started in network mode
[   86.887613][ T8007] netlink: 500 bytes leftover after parsing attributes in process `syz.0.1606'.
[   86.891686][ T8002] tipc: Node identity 4, cluster identity 4711
[   86.907029][ T8002] tipc: Node number set to 4
[   86.911715][ T8009] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(3)
[   86.918250][ T8009] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   86.925758][ T8009] vhci_hcd vhci_hcd.0: Device attached
[   86.936119][ T8012] vhci_hcd vhci_hcd.0: pdev(8) rhport(1) sockfd(6)
[   86.942656][ T8012] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   86.950258][ T8012] vhci_hcd vhci_hcd.0: Device attached
[   86.957835][ T8009] vhci_hcd vhci_hcd.0: pdev(8) rhport(2) sockfd(5)
[   86.964343][ T8009] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   86.972016][ T8009] vhci_hcd vhci_hcd.0: Device attached
[   86.978314][ T8009] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   86.987546][ T8009] vhci_hcd vhci_hcd.0: pdev(8) rhport(4) sockfd(11)
[   86.994151][ T8009] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   87.001850][ T8009] vhci_hcd vhci_hcd.0: Device attached
[   87.008434][ T8009] vhci_hcd vhci_hcd.0: pdev(8) rhport(5) sockfd(13)
[   87.015042][ T8009] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   87.022620][ T8009] vhci_hcd vhci_hcd.0: Device attached
[   87.028960][ T8010] vhci_hcd: connection closed
[   87.029137][ T8015] vhci_hcd: connection closed
[   87.029427][ T8017] vhci_hcd: connection closed
[   87.033921][  T290] vhci_hcd: stop threads
[   87.033933][  T290] vhci_hcd: release socket
[   87.033940][  T290] vhci_hcd: disconnect device
[   87.034792][  T290] vhci_hcd: stop threads
[   87.038817][ T8013] vhci_hcd: connection closed
[   87.043377][  T290] vhci_hcd: release socket
[   87.048348][ T8019] vhci_hcd: connection closed
[   87.052060][  T290] vhci_hcd: disconnect device
[   87.062183][  T290] vhci_hcd: stop threads
[   87.084030][  T290] vhci_hcd: release socket
[   87.088446][  T290] vhci_hcd: disconnect device
[   87.093303][  T290] vhci_hcd: stop threads
[   87.097551][  T290] vhci_hcd: release socket
[   87.102045][  T290] vhci_hcd: disconnect device
[   87.107031][  T290] vhci_hcd: stop threads
[   87.111374][  T290] vhci_hcd: release socket
[   87.115788][  T290] vhci_hcd: disconnect device
[   87.236123][ T8025] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   87.296676][ T8033] program syz.3.1614 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   87.632450][ T8055] loop3: detected capacity change from 0 to 512
[   87.649092][ T8055] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.662332][ T8055] ext4 filesystem being mounted at /186/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   87.699788][ T8055] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.1625: corrupted inode contents
[   87.723560][ T8055] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.1625: mark_inode_dirty error
[   87.738180][ T8055] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.1625: corrupted inode contents
[   87.750391][ T8055] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.1625: mark_inode_dirty error
[   87.780055][ T8055] EXT4-fs warning (device loop3): ext4_empty_dir:3093: inode #18: comm syz.3.1625: directory missing '.'
[   87.836248][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.881272][ T8088] openvswitch: netlink: Message has 6 unknown bytes.
[   87.950507][ T8100] sg_write: data in/out 696/8 bytes for SCSI command 0x7f-- guessing data in;
[   87.950507][ T8100]    program syz.8.1646 not setting count and/or reply_len properly
[   88.018670][ T8108] netlink: 'syz.8.1650': attribute type 1 has an invalid length.
[   88.055325][ T8110] loop9: detected capacity change from 0 to 2048
[   88.116007][ T8110]  loop9: p1 < > p4
[   88.139108][ T8110] loop9: p4 size 8388608 extends beyond EOD, truncated
[   88.230630][ T8124] sg_write: data in/out 696/8 bytes for SCSI command 0x7f-- guessing data in;
[   88.230630][ T8124]    program syz.1.1658 not setting count and/or reply_len properly
[   88.251053][ T8127] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[   88.257581][ T8127] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   88.265232][ T8127] vhci_hcd vhci_hcd.0: Device attached
[   88.271311][ T8128] vhci_hcd: connection closed
[   88.271410][ T2635] vhci_hcd: stop threads
[   88.280409][ T2635] vhci_hcd: release socket
[   88.284921][ T2635] vhci_hcd: disconnect device
[   88.354067][ T8139] ref_ctr_offset mismatch. inode: 0x1a1 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[   88.373512][ T8141] netlink: 'syz.1.1664': attribute type 6 has an invalid length.
[   88.578376][   T29] kauditd_printk_skb: 65 callbacks suppressed
[   88.578389][   T29] audit: type=1326 audit(2000000012.057:2218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8165 comm="syz.1.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.607932][   T29] audit: type=1326 audit(2000000012.057:2219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8165 comm="syz.1.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.634068][   T29] audit: type=1326 audit(2000000012.057:2220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8165 comm="syz.1.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.657571][   T29] audit: type=1326 audit(2000000012.057:2221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8165 comm="syz.1.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.681067][   T29] audit: type=1326 audit(2000000012.057:2222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8165 comm="syz.1.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.757887][   T29] audit: type=1326 audit(2000000012.225:2223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8179 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.781437][   T29] audit: type=1326 audit(2000000012.225:2224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8179 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.818955][   T29] audit: type=1326 audit(2000000012.225:2225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8179 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.842540][   T29] audit: type=1326 audit(2000000012.225:2226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8179 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.865974][   T29] audit: type=1326 audit(2000000012.225:2227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8179 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[   88.897493][ T8182] SELinux: failed to load policy
[   88.938382][ T8190] loop8: detected capacity change from 0 to 2048
[   88.950527][ T8190] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.964741][ T8190] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   88.989065][ T8190] EXT4-fs (loop8): Remounting filesystem read-only
[   89.015237][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.060323][ T8201] netlink: 'syz.8.1689': attribute type 6 has an invalid length.
[   89.133650][ T8207] loop8: detected capacity change from 0 to 512
[   89.158107][ T8207] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.171176][ T8207] ext4 filesystem being mounted at /89/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.192937][ T8207] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #2: comm syz.8.1693: corrupted inode contents
[   89.226819][ T8207] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #2: comm syz.8.1693: mark_inode_dirty error
[   89.266336][ T8207] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #2: comm syz.8.1693: corrupted inode contents
[   89.279063][ T8219] loop1: detected capacity change from 0 to 128
[   89.291366][ T8207] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #2: comm syz.8.1693: mark_inode_dirty error
[   89.310697][ T8219] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   89.322906][ T8219] ext4 filesystem being mounted at /345/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   89.355198][ T8207] EXT4-fs warning (device loop8): ext4_empty_dir:3093: inode #18: comm syz.8.1693: directory missing '.'
[   89.373268][ T8219] EXT4-fs (loop1): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   89.393090][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.402170][ T8228] netlink: 'syz.9.1703': attribute type 1 has an invalid length.
[   89.411592][ T8219] EXT4-fs (loop1): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   89.453753][ T3302] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   89.516115][ T8242] loop8: detected capacity change from 0 to 1024
[   89.522994][ T8242] EXT4-fs: Ignoring removed bh option
[   89.542372][ T8242] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.597075][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.143790][ T8275] sctp: [Deprecated]: syz.3.1720 (pid 8275) Use of struct sctp_assoc_value in delayed_ack socket option.
[   90.143790][ T8275] Use struct sctp_sack_info instead
[   90.196183][ T8279] SELinux: failed to load policy
[   90.620862][ T8301] SELinux: failed to load policy
[   90.649956][ T8303] SELinux: failed to load policy
[   90.674533][ T2955] IPVS: starting estimator thread 0...
[   90.692677][ T8310] __nla_validate_parse: 2 callbacks suppressed
[   90.692689][ T8310] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1739'.
[   90.769238][ T8308] IPVS: using max 2880 ests per chain, 144000 per kthread
[   90.953017][ T8337] netlink: 'syz.1.1752': attribute type 1 has an invalid length.
[   90.998161][ T8339] loop9: detected capacity change from 0 to 1024
[   91.016294][ T8339] EXT4-fs: Ignoring removed bh option
[   91.038472][ T8339] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.083935][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.138169][ T8353] loop8: detected capacity change from 0 to 2048
[   91.177553][ T8353]  loop8: p1 < > p4
[   91.182916][ T8353] loop8: p4 size 8388608 extends beyond EOD, truncated
[   91.278694][ T8370] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1766'.
[   91.292557][ T8372] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[   91.299081][ T8372] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   91.306631][ T8372] vhci_hcd vhci_hcd.0: Device attached
[   91.322341][ T8372] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(5)
[   91.329035][ T8372] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   91.336557][ T8372] vhci_hcd vhci_hcd.0: Device attached
[   91.345842][ T8372] vhci_hcd vhci_hcd.0: pdev(0) rhport(2) sockfd(7)
[   91.352453][ T8372] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   91.357976][ T8384] loop3: detected capacity change from 0 to 1024
[   91.360082][ T8372] vhci_hcd vhci_hcd.0: Device attached
[   91.367806][ T8384] EXT4-fs: Ignoring removed bh option
[   91.376147][ T8372] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   91.387824][ T8372] vhci_hcd vhci_hcd.0: pdev(0) rhport(4) sockfd(11)
[   91.394481][ T8372] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   91.402083][ T8372] vhci_hcd vhci_hcd.0: Device attached
[   91.409371][ T8384] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.423339][ T8372] vhci_hcd vhci_hcd.0: pdev(0) rhport(5) sockfd(13)
[   91.429982][ T8372] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   91.437648][ T8372] vhci_hcd vhci_hcd.0: Device attached
[   91.457188][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.464229][ T8389] vhci_hcd: connection closed
[   91.467473][ T2635] vhci_hcd: stop threads
[   91.476667][ T2635] vhci_hcd: release socket
[   91.481226][ T2635] vhci_hcd: disconnect device
[   91.486292][ T8373] vhci_hcd: connection closed
[   91.486406][ T8378] vhci_hcd: connection closed
[   91.491270][ T8375] vhci_hcd: connection closed
[   91.496236][ T8385] vhci_hcd: connection closed
[   91.512438][ T2635] vhci_hcd: stop threads
[   91.521738][ T2635] vhci_hcd: release socket
[   91.526283][ T2635] vhci_hcd: disconnect device
[   91.539442][ T2635] vhci_hcd: stop threads
[   91.543738][ T2635] vhci_hcd: release socket
[   91.548221][ T2635] vhci_hcd: disconnect device
[   91.575481][ T2635] vhci_hcd: stop threads
[   91.579829][ T2635] vhci_hcd: release socket
[   91.584326][ T2635] vhci_hcd: disconnect device
[   91.589416][ T4624] usb 1-1: new low-speed USB device number 2 using vhci_hcd
[   91.598299][ T4624] usb 1-1: enqueue for inactive port 0
[   91.604219][ T2635] vhci_hcd: stop threads
[   91.605512][ T4624] usb 1-1: enqueue for inactive port 0
[   91.608540][ T2635] vhci_hcd: release socket
[   91.618487][ T2635] vhci_hcd: disconnect device
[   91.624731][ T4624] usb 1-1: enqueue for inactive port 0
[   91.685482][ T8408] loop3: detected capacity change from 0 to 2048
[   91.728708][ T4624] vhci_hcd: vhci_device speed not set
[   91.740125][ T8408]  loop3: p1 < > p4
[   91.746745][ T8408] loop3: p4 size 8388608 extends beyond EOD, truncated
[   91.939923][ T8423] loop1: detected capacity change from 0 to 1024
[   91.946766][ T8423] EXT4-fs: Ignoring removed bh option
[   91.954837][ T8423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.978618][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.065432][ T8439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   92.081247][ T8439] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.257279][ T8450] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[   92.301822][ T8454] loop1: detected capacity change from 0 to 128
[   92.337520][ T8458] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   92.344058][ T8458] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   92.351674][ T8458] vhci_hcd vhci_hcd.0: Device attached
[   92.361371][ T8458] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(5)
[   92.367906][ T8458] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   92.375424][ T8458] vhci_hcd vhci_hcd.0: Device attached
[   92.385062][ T8458] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(7)
[   92.391710][ T8458] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   92.399356][ T8458] vhci_hcd vhci_hcd.0: Device attached
[   92.406118][ T8458] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   92.416714][ T8458] vhci_hcd vhci_hcd.0: pdev(1) rhport(4) sockfd(11)
[   92.423323][ T8458] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   92.430980][ T8458] vhci_hcd vhci_hcd.0: Device attached
[   92.437546][ T8458] vhci_hcd vhci_hcd.0: pdev(1) rhport(5) sockfd(13)
[   92.444142][ T8458] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   92.451808][ T8458] vhci_hcd vhci_hcd.0: Device attached
[   92.458154][ T8471] vhci_hcd: connection closed
[   92.458289][   T12] vhci_hcd: stop threads
[   92.458492][ T8461] vhci_hcd: connection closed
[   92.462995][   T12] vhci_hcd: release socket
[   92.470755][ T8459] vhci_hcd: connection closed
[   92.471987][   T12] vhci_hcd: disconnect device
[   92.485782][ T8464] vhci_hcd: connection closed
[   92.486337][ T8469] vhci_hcd: connection closed
[   92.491731][   T12] vhci_hcd: stop threads
[   92.500766][   T12] vhci_hcd: release socket
[   92.505254][   T12] vhci_hcd: disconnect device
[   92.510554][   T12] vhci_hcd: stop threads
[   92.514830][   T12] vhci_hcd: release socket
[   92.519258][   T12] vhci_hcd: disconnect device
[   92.524259][   T12] vhci_hcd: stop threads
[   92.528539][   T12] vhci_hcd: release socket
[   92.533008][   T12] vhci_hcd: disconnect device
[   92.537787][   T12] vhci_hcd: stop threads
[   92.542050][   T12] vhci_hcd: release socket
[   92.546467][   T12] vhci_hcd: disconnect device
[   92.562401][ T1038] vhci_hcd: vhci_device speed not set
[   92.632901][ T8486] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[   92.689590][ T8494] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1821'.
[   92.698760][ T8494] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1821'.
[   92.708222][ T8494] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1821'.
[   93.096021][ T8531] syzkaller0: entered promiscuous mode
[   93.101675][ T8531] syzkaller0: entered allmulticast mode
[   93.194419][ T8547] ref_ctr_offset mismatch. inode: 0x3fe offset: 0x0 ref_ctr_offset(old): 0xc000000 ref_ctr_offset(new): 0x0
[   93.225934][ T8551] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1839'.
[   93.239544][ T8551] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1839'.
[   93.468719][ T8580] loop3: detected capacity change from 0 to 512
[   93.496781][ T8580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.511375][ T8580] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.634423][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.754856][ T8586] loop1: detected capacity change from 0 to 32768
[   93.814883][ T8586]  loop1: p1 p3 < >
[   93.904626][ T8627] random: crng reseeded on system resumption
[   93.917657][ T8627] vhci_hcd: invalid port number 23
[   93.933649][ T8631] loop1: detected capacity change from 0 to 512
[   93.956321][ T8631] ext4 filesystem being mounted at /369/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.031165][ T8646] loop9: detected capacity change from 0 to 512
[   94.053560][ T8646] EXT4-fs: Ignoring removed nomblk_io_submit option
[   94.060278][ T8646] EXT4-fs: Ignoring removed mblk_io_submit option
[   94.072819][ T8646] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[   94.095000][ T8646] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[   94.111656][ T8646] EXT4-fs (loop9): 1 truncate cleaned up
[   94.285127][   T29] kauditd_printk_skb: 173 callbacks suppressed
[   94.285142][   T29] audit: type=1326 audit(2000000017.398:2401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.332556][   T29] audit: type=1326 audit(2000000017.426:2402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.356340][   T29] audit: type=1326 audit(2000000017.426:2403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.379785][   T29] audit: type=1326 audit(2000000017.426:2404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.403232][   T29] audit: type=1326 audit(2000000017.426:2405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.426650][   T29] audit: type=1326 audit(2000000017.426:2406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.450058][   T29] audit: type=1326 audit(2000000017.426:2407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.473522][   T29] audit: type=1326 audit(2000000017.426:2408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.496930][   T29] audit: type=1326 audit(2000000017.426:2409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.520359][   T29] audit: type=1326 audit(2000000017.426:2410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8664 comm="syz.0.1889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[   94.606640][ T8677] ref_ctr_offset mismatch. inode: 0x506 offset: 0x0 ref_ctr_offset(old): 0xc000000 ref_ctr_offset(new): 0x0
[   94.623034][ T8679] loop9: detected capacity change from 0 to 1024
[   94.745171][ T8695] loop3: detected capacity change from 0 to 1024
[   94.755677][ T8698] IPv6: Can't replace route, no match found
[   94.762656][ T8695] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   94.787247][ T8695] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   94.798203][ T8695] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[   94.811203][ T8695] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   94.823037][ T8695] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #17: comm syz.3.1903: iget: bad i_size value: 4398046511204
[   94.850093][ T8695] EXT4-fs (loop3): no journal found
[   95.154776][ T8729] loop8: detected capacity change from 0 to 1024
[   95.164706][ T8729] EXT4-fs (loop8): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   95.280336][ T8724] loop9: detected capacity change from 0 to 32768
[   95.326442][ T8742] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1933'.
[   95.332410][ T8724]  loop9: p1 p3 < >
[   95.342282][ T8742] IPVS: Error joining to the multicast group
[   95.526611][ T8772] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1937'.
[   95.537931][ T8772] IPVS: Error joining to the multicast group
[   95.642152][ T8787] loop8: detected capacity change from 0 to 2048
[   95.844633][ T8820] loop1: detected capacity change from 0 to 1024
[   95.855693][ T8820] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   95.864222][ T8820] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   95.875160][ T8820] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[   95.886563][ T8820] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   95.897407][ T8820] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #17: comm syz.1.1958: iget: bad i_size value: 4398046511204
[   95.928619][ T8820] EXT4-fs (loop1): no journal found
[   95.965455][ T8838] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.973923][ T8838] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.572487][ T8867] bond2: entered promiscuous mode
[   96.577548][ T8867] bond2: entered allmulticast mode
[   96.583186][ T8867] 8021q: adding VLAN 0 to HW filter on device bond2
[   96.598048][ T8867] bond2 (unregistering): Released all slaves
[   96.877375][ T8896] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1990'.
[   96.886492][ T8896] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1990'.
[   96.942422][ T8898] loop9: detected capacity change from 0 to 2048
[   97.044256][ T8916] loop1: detected capacity change from 0 to 512
[   97.054386][ T8916] ext4 filesystem being mounted at /386/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.107854][ T8930] loop8: detected capacity change from 0 to 512
[   97.117767][ T8928] SELinux:  Context system_u:object_r:crack_db_t:s0 is not valid (left unmapped).
[   97.140014][ T8930] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   97.210353][ T8938] vhci_hcd: invalid port number 96
[   97.215646][ T8938] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   97.236083][ T8943] serio: Serial port ptm0
[   97.487775][ T8965] loop1: detected capacity change from 0 to 512
[   97.503210][ T8965] ext4 filesystem being mounted at /393/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   97.750941][ T8995] vhci_hcd: invalid port number 96
[   97.756101][ T8995] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   98.027484][ T9014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   98.036928][ T9014] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   98.066688][ T9016] loop9: detected capacity change from 0 to 2048
[   98.138606][ T9024] netlink: 'syz.3.2042': attribute type 4 has an invalid length.
[   98.164518][ T9016]  loop9: unable to read partition table
[   98.170946][ T9024] netlink: 'syz.3.2042': attribute type 4 has an invalid length.
[   98.171297][ T9016] loop9: partition table beyond EOD, truncated
[   98.184916][ T9016] loop_reread_partitions: partition scan of loop9 () failed (rc=-5)
[   98.229726][ T9029] loop9: detected capacity change from 0 to 512
[   98.234933][ T9027] vhci_hcd: invalid port number 96
[   98.241136][ T9027] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   98.259562][ T9029] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.296611][ T9039] random: crng reseeded on system resumption
[   98.308457][ T9039] vhci_hcd: invalid port number 23
[   98.321894][ T9037] SELinux: ebitmap: truncated map
[   98.328165][ T9037] SELinux: failed to load policy
[   98.397408][ T9045] bond3: entered promiscuous mode
[   98.402558][ T9045] bond3: entered allmulticast mode
[   98.414607][ T9045] 8021q: adding VLAN 0 to HW filter on device bond3
[   98.432585][ T9045] bond3 (unregistering): Released all slaves
[   98.834091][ T9128] loop1: detected capacity change from 0 to 1024
[   98.836797][ T9127] loop3: detected capacity change from 0 to 512
[   98.876237][ T9128] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.905574][ T9127] ext4 filesystem being mounted at /267/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.927192][ T9128] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #3: block 1: comm syz.1.2071: lblock 1 mapped to illegal pblock 1 (length 1)
[   98.967879][ T9128] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2071: Failed to acquire dquot type 0
[   98.990710][ T9128] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.2071: Freeing blocks not in datazone - block = 0, count = 4096
[   99.005080][ T9128] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.2071: Invalid inode bitmap blk 0 in block_group 0
[   99.021358][ T9064] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:19: lblock 1 mapped to illegal pblock 1 (length 1)
[   99.039958][ T9128] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   99.053007][ T9064] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:19: Failed to release dquot type 0
[   99.058072][    T9] hid_parser_main: 64 callbacks suppressed
[   99.058091][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x1
[   99.065033][ T9128] EXT4-fs (loop1): 1 orphan inode deleted
[   99.070560][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.091192][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.098649][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.106146][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.147672][ T9128] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   99.160731][ T9128] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (18333!=0)
[   99.169173][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.176613][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.184116][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.191583][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x2
[   99.199011][    T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   99.279921][    T9] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   99.420003][ T9162] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2085'.
[   99.435507][ T9164] loop8: detected capacity change from 0 to 512
[   99.441829][ T9162] 0��{X��: renamed from gretap0 (while UP)
[   99.459731][ T9164] ext4 filesystem being mounted at /178/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.471874][ T9162] 0��{X��: entered allmulticast mode
[   99.481542][ T9162] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[   99.505488][ T9172] random: crng reseeded on system resumption
[   99.537729][ T9172] vhci_hcd: invalid port number 23
[   99.558311][ T9180] loop8: detected capacity change from 0 to 1024
[   99.567829][ T9180] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.597705][ T9180] EXT4-fs error (device loop8): ext4_map_blocks:814: inode #3: block 1: comm syz.8.2081: lblock 1 mapped to illegal pblock 1 (length 1)
[   99.599464][ T9183] netlink: 'syz.9.2083': attribute type 4 has an invalid length.
[   99.620891][ T9180] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.2081: Failed to acquire dquot type 0
[   99.637219][ T9183] netlink: 'syz.9.2083': attribute type 4 has an invalid length.
[   99.645238][ T9180] EXT4-fs error (device loop8): ext4_free_blocks:6696: comm syz.8.2081: Freeing blocks not in datazone - block = 0, count = 4096
[   99.670392][ T9180] EXT4-fs error (device loop8): ext4_read_inode_bitmap:139: comm syz.8.2081: Invalid inode bitmap blk 0 in block_group 0
[   99.689322][  T290] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   99.704830][  T290] __quota_error: 210 callbacks suppressed
[   99.704842][  T290] Quota error (device loop8): remove_tree: Can't read quota data block 1
[   99.704970][ T9180] EXT4-fs error (device loop8) in ext4_free_inode:361: Corrupt filesystem
[   99.710698][  T290] EXT4-fs error (device loop8): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 0
[   99.734444][ T9180] EXT4-fs (loop8): 1 orphan inode deleted
[   99.755525][ T9180] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   99.765184][ T9180] EXT4-fs (loop8): ext4_remount: Checksum for group 0 failed (18333!=0)
[   99.802415][ T9197] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   99.812402][ T9197] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   99.926873][ T9207] random: crng reseeded on system resumption
[   99.938572][ T9207] vhci_hcd: invalid port number 23
[   99.966080][ T9209] SELinux: ebitmap: truncated map
[   99.971657][ T9209] SELinux: failed to load policy
[  100.058198][   T29] audit: type=1400 audit(2000000022.795:2616): avc:  denied  { create } for  pid=9220 comm="syz.0.2103" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  100.091913][   T29] audit: type=1400 audit(2000000022.823:2617): avc:  denied  { create } for  pid=9220 comm="syz.0.2103" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  100.111523][   T29] audit: type=1400 audit(2000000022.823:2618): avc:  denied  { ioctl } for  pid=9220 comm="syz.0.2103" path="socket:[25548]" dev="sockfs" ino=25548 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  100.186150][ T9225] loop3: detected capacity change from 0 to 2048
[  100.294510][ T9225]  loop3: unable to read partition table
[  100.300276][ T9225] loop3: partition table beyond EOD, truncated
[  100.306523][ T9225] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
[  100.478016][   T29] audit: type=1326 audit(2000000023.188:2619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9246 comm="syz.8.2113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6bb47ebe9 code=0x7ffc0000
[  100.501581][   T29] audit: type=1326 audit(2000000023.188:2620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9246 comm="syz.8.2113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6bb47ebe9 code=0x7ffc0000
[  100.554878][   T29] audit: type=1326 audit(2000000023.188:2621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9246 comm="syz.8.2113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fb6bb47ebe9 code=0x7ffc0000
[  100.578313][   T29] audit: type=1326 audit(2000000023.188:2622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9246 comm="syz.8.2113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6bb47ebe9 code=0x7ffc0000
[  100.601786][   T29] audit: type=1326 audit(2000000023.188:2623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9246 comm="syz.8.2113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6bb47ebe9 code=0x7ffc0000
[  100.625323][   T29] audit: type=1326 audit(2000000023.244:2624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9248 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3e9dfebe9 code=0x7ffc0000
[  100.832096][ T9273] loop9: detected capacity change from 0 to 1024
[  100.845225][ T9273] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  100.867161][ T9273] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  100.878084][ T9273] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[  100.912031][ T9273] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  100.934990][ T9273] EXT4-fs error (device loop9): ext4_get_journal_inode:5796: inode #17: comm syz.9.2127: iget: bad i_size value: 4398046511204
[  101.006605][ T9273] EXT4-fs (loop9): no journal found
[  101.234082][ T9306] netlink: 5 bytes leftover after parsing attributes in process `syz.0.2139'.
[  101.243117][ T9306] 0��{X��: renamed from gretap0 (while UP)
[  101.250667][ T9306] 0��{X��: entered allmulticast mode
[  101.259111][ T9306] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  101.761601][ T9345] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  101.761601][ T9345]    program syz.1.2155 not setting count and/or reply_len properly
[  101.834199][ T9351] can0: slcan on ttyS3.
[  101.873839][ T9350] can0 (unregistered): slcan off ttyS3.
[  101.882493][ T9353] syz.0.2170 (9353) used greatest stack depth: 9704 bytes left
[  102.359492][ T9401] loop8: detected capacity change from 0 to 1024
[  102.386379][ T9401] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  102.402428][ T9401] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  102.413425][ T9401] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[  102.443304][ T9401] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  102.453927][ T9401] EXT4-fs error (device loop8): ext4_get_journal_inode:5796: inode #17: comm syz.8.2183: iget: bad i_size value: 4398046511204
[  102.467556][ T9401] EXT4-fs (loop8): no journal found
[  103.533413][ T9436] can0: slcan on ttyS3.
[  103.587289][ T9443] dummy0: entered allmulticast mode
[  103.595609][ T9443] dummy0: left allmulticast mode
[  103.605852][ T9431] can0 (unregistered): slcan off ttyS3.
[  103.638618][ T9453] netlink: 'syz.0.2214': attribute type 1 has an invalid length.
[  103.748632][ T3398] hid-generic 0000:3000000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  104.038301][ T9534] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2235'.
[  104.145593][ T9552] loop8: detected capacity change from 0 to 2048
[  104.219755][ T9567] loop1: detected capacity change from 0 to 1024
[  104.275826][ T9567] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.2249: Allocating blocks 497-513 which overlap fs metadata
[  104.313733][ T9567] EXT4-fs (loop1): pa ffff88810056a4d0: logic 256, phys. 369, len 9
[  104.321778][ T9567] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  104.341586][ T9567] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 18: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[  104.503259][ T9597] can0: slcan on ttyS3.
[  104.546672][ T9595] can0 (unregistered): slcan off ttyS3.
[  104.584088][ T9616] SELinux: failed to load policy
[  104.633171][ T9627] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2269'.
[  104.824720][ T9637] loop1: detected capacity change from 0 to 2048
[  104.843578][ T9643] can0: slcan on ttyS3.
[  104.858151][ T9641] can0 (unregistered): slcan off ttyS3.
[  104.866537][ T9637] EXT4-fs mount: 32 callbacks suppressed
[  104.866553][ T9637] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.875472][ T9649] 9pnet_fd: Insufficient options for proto=fd
[  105.048689][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.161966][ T9678] sctp: [Deprecated]: syz.9.2291 (pid 9678) Use of int in max_burst socket option deprecated.
[  105.161966][ T9678] Use struct sctp_assoc_value instead
[  105.381333][   T29] kauditd_printk_skb: 216 callbacks suppressed
[  105.381348][   T29] audit: type=1400 audit(2000000027.781:2841): avc:  denied  { ioctl } for  pid=9695 comm="+}[@" path="socket:[27368]" dev="sockfs" ino=27368 ioctlcmd=0x48cb scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  105.434558][   T29] audit: type=1400 audit(2000000027.818:2842): avc:  denied  { getopt } for  pid=9699 comm="syz.1.2302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  105.454113][   T29] audit: type=1400 audit(2000000027.818:2843): avc:  denied  { name_connect } for  pid=9699 comm="syz.1.2302" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  105.572211][ T9711] can0: slcan on ttyS3.
[  105.593869][   T29] audit: type=1400 audit(2000000027.968:2844): avc:  denied  { create } for  pid=9716 comm="syz.3.2309" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  105.594568][ T9717] lo speed is unknown, defaulting to 1000
[  105.619640][   T29] audit: type=1400 audit(2000000027.968:2845): avc:  denied  { write } for  pid=9716 comm="syz.3.2309" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  105.620738][ T9717] lo speed is unknown, defaulting to 1000
[  105.650800][ T9717] lo speed is unknown, defaulting to 1000
[  105.657081][ T9717] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  105.664317][ T9710] can0 (unregistered): slcan off ttyS3.
[  105.675980][ T9717] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  105.699496][ T9717] lo speed is unknown, defaulting to 1000
[  105.712884][ T9717] lo speed is unknown, defaulting to 1000
[  105.722947][ T9717] lo speed is unknown, defaulting to 1000
[  105.729599][   T29] audit: type=1326 audit(2000000028.090:2846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9724 comm="syz.0.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  105.739534][ T9717] lo speed is unknown, defaulting to 1000
[  105.753129][   T29] audit: type=1326 audit(2000000028.090:2847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9724 comm="syz.0.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  105.770823][ T9717] lo speed is unknown, defaulting to 1000
[  105.782150][   T29] audit: type=1326 audit(2000000028.090:2848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9724 comm="syz.0.2313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  105.812152][ T9717] lo speed is unknown, defaulting to 1000
[  105.842495][ T9732] netlink: 'syz.0.2317': attribute type 3 has an invalid length.
[  105.897492][   T29] audit: type=1400 audit(2000000028.258:2849): avc:  denied  { write } for  pid=9739 comm="syz.0.2321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  105.920691][ T9744] loop8: detected capacity change from 0 to 512
[  105.939236][ T9744] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.952452][ T9744] ext4 filesystem being mounted at /231/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.968627][   T29] audit: type=1400 audit(2000000028.333:2850): avc:  denied  { read write } for  pid=9743 comm="syz.8.2323" name="file1" dev="loop8" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  106.017832][ T9744] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  106.034658][ T9750] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9750 comm=syz.0.2325
[  106.047178][ T9750] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9750 comm=syz.0.2325
[  106.089921][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.152421][ T9763] loop3: detected capacity change from 0 to 512
[  106.160138][ T9763] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2331: Invalid inode bitmap blk 4 in block_group 0
[  106.174426][ T9763] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.207285][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.402214][ T9800] loop8: detected capacity change from 0 to 512
[  106.420858][ T9800] EXT4-fs error (device loop8): ext4_read_inode_bitmap:139: comm syz.8.2346: Invalid inode bitmap blk 4 in block_group 0
[  106.434901][ T9800] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.465499][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.531603][ T9810] lo speed is unknown, defaulting to 1000
[  106.570175][ T9818] 9pnet_fd: Insufficient options for proto=fd
[  106.686983][ T9837] loop3: detected capacity change from 0 to 2048
[  106.696928][ T9837] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.831855][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.841047][ T9847] loop1: detected capacity change from 0 to 512
[  106.874954][ T9847] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.887719][ T9847] ext4 filesystem being mounted at /457/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.905968][ T9847] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  106.942098][ T9860] netlink: 14 bytes leftover after parsing attributes in process `syz.8.2381'.
[  106.955215][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.983542][ T9860] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  107.012006][ T9860] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.036822][ T9860] bond0 (unregistering): Released all slaves
[  107.157448][ T9874] loop1: detected capacity change from 0 to 512
[  107.170150][ T9874] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.2376: Invalid inode bitmap blk 4 in block_group 0
[  107.196316][ T9874] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.259302][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.270424][ T9888] netlink: 'syz.3.2385': attribute type 3 has an invalid length.
[  107.483090][ T9933] program syz.3.2399 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  107.498896][ T9933] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  107.550295][ T9943] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2403'.
[  108.057472][T10021] program syz.8.2438 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  108.078797][T10021] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  108.242986][T10037] loop9: detected capacity change from 0 to 2048
[  108.268208][T10037] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.398266][T10062] lo speed is unknown, defaulting to 1000
[  108.418101][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.428547][T10067] 9pnet_fd: Insufficient options for proto=fd
[  108.435768][T10068] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2458'.
[  109.067811][T10129] netlink: 'syz.3.2485': attribute type 8 has an invalid length.
[  109.125100][    T9] hid_parser_main: 25 callbacks suppressed
[  109.125114][    T9] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4
[  109.138673][    T9] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2
[  109.146441][    T9] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x3
[  109.158465][    T9] hid-generic 0000:3000000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  109.370606][T10170] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2504'.
[  109.391921][T10170] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2504'.
[  109.427102][T10179] usb usb1: usbfs: process 10179 (syz.1.2509) did not claim interface 2 before use
[  109.477855][T10187] loop1: detected capacity change from 0 to 1024
[  109.484703][T10187] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  109.507223][T10187] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  109.526200][T10187] EXT4-fs (loop1): orphan cleanup on readonly fs
[  109.538576][T10187] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2513: Failed to acquire dquot type 0
[  109.569885][T10187] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2513: Failed to acquire dquot type 0
[  109.585833][T10187] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.2513: Freeing blocks not in datazone - block = 0, count = 4096
[  109.600425][T10187] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2513: Failed to acquire dquot type 0
[  109.611947][T10187] EXT4-fs (loop1): 1 orphan inode deleted
[  109.618148][T10187] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  109.632875][T10187] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 16: comm syz.1.2513: path /477/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  109.663548][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.915739][T10216] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2527'.
[  109.929830][T10218] IPv6: Can't replace route, no match found
[  110.017965][T10216] netlink: 'syz.8.2527': attribute type 1 has an invalid length.
[  110.025735][T10216] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2527'.
[  110.098591][T10240] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2539'.
[  110.172386][T10254] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.182780][T10254] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.197474][T10256] loop8: detected capacity change from 0 to 512
[  110.206061][T10256] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  110.215741][T10256] EXT4-fs (loop8): orphan cleanup on readonly fs
[  110.222679][T10256] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.2546: bg 0: block 248: padding at end of block bitmap is not set
[  110.238753][T10256] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.2546: Failed to acquire dquot type 1
[  110.250897][T10256] EXT4-fs (loop8): 1 truncate cleaned up
[  110.257711][T10256] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  110.282520][T10256] syz.8.2546 (10256) used greatest stack depth: 9552 bytes left
[  110.299123][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.367587][T10273] loop1: detected capacity change from 0 to 2048
[  110.377188][T10273] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.388204][T10275] loop9: detected capacity change from 0 to 1024
[  110.397834][T10273] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  110.407044][T10275] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  110.413816][T10273] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  110.423471][T10275] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  110.433209][T10273] EXT4-fs (loop1): This should not happen!! Data will be lost
[  110.433209][T10273] 
[  110.433222][T10273] EXT4-fs (loop1): Total free blocks count 0
[  110.433232][T10273] EXT4-fs (loop1): Free/Dirty block details
[  110.433241][T10273] EXT4-fs (loop1): free_blocks=2415919104
[  110.433252][T10273] EXT4-fs (loop1): dirty_blocks=64
[  110.433262][T10273] EXT4-fs (loop1): Block reservation details
[  110.433271][T10273] EXT4-fs (loop1): i_reserved_data_blocks=4
[  110.444132][T10275] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[  110.457349][T10282] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  110.465716][T10275] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  110.466293][T10275] EXT4-fs error (device loop9): ext4_get_journal_inode:5796: inode #17: comm syz.9.2555: iget: bad i_size value: 4398046511204
[  110.535155][T10275] EXT4-fs (loop9): no journal found
[  110.626763][T10298] loop9: detected capacity change from 0 to 2048
[  110.633657][T10298] EXT4-fs: Ignoring removed mblk_io_submit option
[  110.642144][T10298] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.666091][T10298] EXT4-fs (loop9): shut down requested (0)
[  110.676793][T10298] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop9 ino=12
[  110.685794][T10298] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop9 ino=12
[  110.694740][T10298] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop9 ino=12
[  110.703789][T10298] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop9 ino=12
[  110.708838][T10305] loop1: detected capacity change from 0 to 128
[  110.729020][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.741049][   T29] kauditd_printk_skb: 397 callbacks suppressed
[  110.741062][   T29] audit: type=1326 audit(2000000032.795:3240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10292 comm="syz.9.2560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fa3e9dfebe9 code=0x7ffc0000
[  110.783833][   T29] audit: type=1326 audit(2000000032.823:3241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10307 comm="syz.9.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa3e9df5ba7 code=0x7ffc0000
[  110.807288][   T29] audit: type=1326 audit(2000000032.823:3242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10307 comm="syz.9.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa3e9d9add9 code=0x7ffc0000
[  110.828260][T10309] netem: incorrect gi model size
[  110.830855][   T29] audit: type=1326 audit(2000000032.823:3243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10307 comm="syz.9.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa3e9df5ba7 code=0x7ffc0000
[  110.835941][T10309] netem: change failed
[  110.863398][   T29] audit: type=1326 audit(2000000032.823:3244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10307 comm="syz.9.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa3e9d9add9 code=0x7ffc0000
[  110.886877][   T29] audit: type=1326 audit(2000000032.823:3245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10307 comm="syz.9.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3e9dfebe9 code=0x7ffc0000
[  110.910643][   T29] audit: type=1326 audit(2000000032.823:3246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10307 comm="syz.9.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=460 compat=0 ip=0x7fa3e9dfebe9 code=0x7ffc0000
[  110.934143][   T29] audit: type=1326 audit(2000000032.823:3247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10307 comm="syz.9.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3e9dfebe9 code=0x7ffc0000
[  110.968423][   T29] audit: type=1400 audit(2000000032.860:3248): avc:  denied  { write } for  pid=10310 comm="syz.3.2568" name="file0" dev="tmpfs" ino=1986 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  110.991040][   T29] audit: type=1400 audit(2000000032.860:3249): avc:  denied  { open } for  pid=10310 comm="syz.3.2568" path="/380/file0" dev="tmpfs" ino=1986 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  111.038292][T10326] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2574'.
[  111.047298][T10326] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2574'.
[  111.056265][T10326] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2574'.
[  111.098672][T10326] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2574'.
[  111.107687][T10326] netlink: 'syz.9.2574': attribute type 6 has an invalid length.
[  111.373686][T10344] loop8: detected capacity change from 0 to 256
[  111.391484][T10344] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  111.425647][    T9] IPVS: starting estimator thread 0...
[  111.538146][T10349] IPVS: using max 2976 ests per chain, 148800 per kthread
[  111.797554][T10371] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 1
[  112.111913][T10413] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2612'.
[  112.121956][T10408] vhci_hcd: invalid port number 96
[  112.127189][T10408] vhci_hcd: default hub control req: 0318 vf7fa i0060 l0
[  112.163506][T10418] loop8: detected capacity change from 0 to 1024
[  112.179269][T10418] EXT4-fs: Ignoring removed oldalloc option
[  112.185338][T10418] EXT4-fs: Ignoring removed bh option
[  112.203696][T10418] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.224487][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2619'.
[  112.256969][T10418] EXT4-fs: Ignoring removed orlov option
[  112.262745][T10418] EXT4-fs (loop8): can't enable nombcache during remount
[  112.327737][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.384220][T10451] loop1: detected capacity change from 0 to 512
[  112.390985][T10451] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  112.398886][T10453] loop8: detected capacity change from 0 to 128
[  112.408154][T10451] EXT4-fs (loop1): orphan cleanup on readonly fs
[  112.415237][T10451] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.2628: Block bitmap for bg 0 marked uninitialized
[  112.435469][T10451] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  112.448584][T10451] EXT4-fs (loop1): 1 orphan inode deleted
[  112.465246][T10451] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  112.529258][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.688322][T10489] netlink: 'syz.9.2646': attribute type 21 has an invalid length.
[  113.047424][T10519] netlink: 'syz.8.2660': attribute type 6 has an invalid length.
[  113.145480][T10525] loop9: detected capacity change from 0 to 2048
[  113.164808][T10525] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.204046][T10525] ext4 filesystem being mounted at /362/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.242676][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.296981][T10539] loop3: detected capacity change from 0 to 2048
[  113.543482][T10570] serio: Serial port ttyS3
[  114.507927][T10619] loop8: detected capacity change from 0 to 2048
[  114.515252][T10619] EXT4-fs: Ignoring removed mblk_io_submit option
[  114.554070][T10619] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.567393][T10631] netlink: 'syz.1.2709': attribute type 21 has an invalid length.
[  114.579465][T10619] EXT4-fs (loop8): shut down requested (0)
[  114.591534][T10633] loop3: detected capacity change from 0 to 512
[  114.598661][T10619] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop8 ino=12
[  114.611745][T10619] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop8 ino=12
[  114.621034][T10619] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop8 ino=12
[  114.639024][T10633] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2710: Failed to acquire dquot type 1
[  114.656058][T10619] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop8 ino=12
[  114.668862][T10633] EXT4-fs (loop3): 1 truncate cleaned up
[  114.681532][T10633] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.714517][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.728401][T10633] ext4 filesystem being mounted at /406/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.739355][T10427] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 248: padding at end of block bitmap is not set
[  114.755417][T10633] __nla_validate_parse: 9 callbacks suppressed
[  114.755431][T10633] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2710'.
[  114.802343][T10653] loop8: detected capacity change from 0 to 128
[  114.825423][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.829203][T10650] netlink: 20 bytes leftover after parsing attributes in process `syz.9.2720'.
[  114.835110][T10653] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  114.862869][T10653] ext4 filesystem being mounted at /322/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  114.897988][ T6929] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  115.045191][T10686] batman_adv: batadv0: Adding interface: vxlan0
[  115.051468][T10686] batman_adv: batadv0: The MTU of interface vxlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.092151][T10686] batman_adv: batadv0: Interface activated: vxlan0
[  115.101116][ T9107] netdevsim netdevsim9 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  115.122013][ T9107] netdevsim netdevsim9 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  115.134349][ T9107] netdevsim netdevsim9 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  115.144486][ T9107] netdevsim netdevsim9 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  115.268407][T10721] loop3: detected capacity change from 0 to 512
[  115.294146][T10721] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm +}[@: Parent and EA inode have the same ino 15
[  115.308540][T10721] EXT4-fs (loop3): Remounting filesystem read-only
[  115.326326][T10721] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  115.338238][T10721] EXT4-fs (loop3): 1 orphan inode deleted
[  115.344523][T10721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.370890][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.443707][T10746] loop9: detected capacity change from 0 to 1024
[  115.455087][T10746] EXT4-fs: Ignoring removed oldalloc option
[  115.461101][T10746] EXT4-fs: Ignoring removed bh option
[  115.473810][T10746] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.494547][T10740] loop8: detected capacity change from 0 to 2048
[  115.503486][T10746] EXT4-fs: Ignoring removed orlov option
[  115.509313][T10746] EXT4-fs (loop9): can't enable nombcache during remount
[  115.526835][T10752] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2754'.
[  115.538737][T10740]  loop8: p1 < > p4
[  115.551948][T10740] loop8: p4 size 8388608 extends beyond EOD, truncated
[  115.564434][T10754] loop3: detected capacity change from 0 to 2048
[  115.580148][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.592993][T10754] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.605210][T10754] ext4 filesystem being mounted at /414/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.650596][T10761] loop9: detected capacity change from 0 to 512
[  115.664211][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.676123][T10761] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.688956][T10761] ext4 filesystem being mounted at /385/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.706320][T10764] loop8: detected capacity change from 0 to 512
[  115.726174][T10764] EXT4-fs error (device loop8): ext4_xattr_inode_iget:433: comm +}[@: Parent and EA inode have the same ino 15
[  115.733249][T10770] loop3: detected capacity change from 0 to 2048
[  115.745884][T10764] EXT4-fs (loop8): Remounting filesystem read-only
[  115.759590][T10764] EXT4-fs warning (device loop8): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  115.763364][T10770] EXT4-fs: Ignoring removed mblk_io_submit option
[  115.769866][T10764] EXT4-fs (loop8): 1 orphan inode deleted
[  115.782407][T10764] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.804297][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.813964][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.825079][T10770] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.873156][T10770] EXT4-fs (loop3): shut down requested (0)
[  115.881741][T10770] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  115.891257][T10770] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  115.912373][T10770] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  115.955610][T10770] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  116.017627][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.073683][T10808] loop3: detected capacity change from 0 to 2048
[  116.094584][T10808] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.104055][   T29] kauditd_printk_skb: 192 callbacks suppressed
[  116.104066][   T29] audit: type=1326 audit(2000000037.799:3440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10789 comm="syz.8.2775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fb6bb47ebe9 code=0x7ffc0000
[  116.140259][T10806] syz.0.2784 (10806) used greatest stack depth: 8848 bytes left
[  116.153200][T10808] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  116.168067][T10808] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  116.180498][T10808] EXT4-fs (loop3): This should not happen!! Data will be lost
[  116.180498][T10808] 
[  116.190183][T10808] EXT4-fs (loop3): Total free blocks count 0
[  116.196249][T10808] EXT4-fs (loop3): Free/Dirty block details
[  116.202152][T10808] EXT4-fs (loop3): free_blocks=2415919104
[  116.207356][T10815] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  116.207950][T10808] EXT4-fs (loop3): dirty_blocks=64
[  116.220145][T10815] EXT4-fs (loop3): This should not happen!! Data will be lost
[  116.220145][T10815] 
[  116.225244][T10808] EXT4-fs (loop3): Block reservation details
[  116.244818][   T29] audit: type=1326 audit(2000000037.939:3441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.268414][   T29] audit: type=1326 audit(2000000037.939:3442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.308185][   T29] audit: type=1326 audit(2000000037.977:3443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.331826][   T29] audit: type=1326 audit(2000000037.977:3444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.355708][   T29] audit: type=1326 audit(2000000037.977:3445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.379186][   T29] audit: type=1326 audit(2000000037.977:3446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.402861][   T29] audit: type=1326 audit(2000000037.977:3447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.426901][   T29] audit: type=1326 audit(2000000037.977:3448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.450444][   T29] audit: type=1326 audit(2000000037.977:3449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10816 comm="syz.0.2786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fecad8bebe9 code=0x7ffc0000
[  116.628006][T10831] loop3: detected capacity change from 0 to 1024
[  116.634847][T10831] EXT4-fs: Ignoring removed bh option
[  116.641854][T10831] EXT4-fs: inline encryption not supported
[  116.648170][T10831] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  116.660987][T10831] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  116.670196][T10831] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.2792: lblock 2 mapped to illegal pblock 2 (length 1)
[  116.687748][T10831] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.2792: lblock 0 mapped to illegal pblock 48 (length 1)
[  116.703637][T10831] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2792: Failed to acquire dquot type 0
[  116.715184][T10831] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  116.726409][T10831] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.2792: mark_inode_dirty error
[  116.738050][T10831] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  116.749793][T10831] EXT4-fs (loop3): 1 orphan inode deleted
[  116.763138][T10831] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.776970][ T9107] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:62: lblock 1 mapped to illegal pblock 1 (length 1)
[  116.796780][ T9107] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:62: Failed to release dquot type 0
[  116.818554][T10831] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.2792: lblock 0 mapped to illegal pblock 48 (length 1)
[  116.835152][T10831] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  116.858849][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.871721][T10834] netlink: 14 bytes leftover after parsing attributes in process `syz.9.2794'.
[  116.901360][T10834] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  116.916301][T10834] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  116.920939][T10838] loop3: detected capacity change from 0 to 1024
[  116.950403][T10834] bond0 (unregistering): Released all slaves
[  116.975812][T10838] EXT4-fs: Ignoring removed oldalloc option
[  116.981803][T10838] EXT4-fs: Ignoring removed bh option
[  117.043165][T10838] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.065010][T10838] EXT4-fs: Ignoring removed orlov option
[  117.075793][T10838] EXT4-fs (loop3): can't enable nombcache during remount
[  117.131316][T10861] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  117.134927][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.149952][T10861] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  117.177060][T10856] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2801'.
[  117.194903][T10868] loop3: detected capacity change from 0 to 512
[  117.223967][T10868] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  117.235544][T10868] EXT4-fs (loop3): orphan cleanup on readonly fs
[  117.243313][T10868] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2806: bg 0: block 248: padding at end of block bitmap is not set
[  117.258765][T10868] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2806: Failed to acquire dquot type 1
[  117.271722][T10868] EXT4-fs (loop3): 1 truncate cleaned up
[  117.278606][T10868] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.306337][ T5624] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.344077][T10885] netlink: 'syz.1.2816': attribute type 8 has an invalid length.
[  117.354111][T10889] loop8: detected capacity change from 0 to 128
[  117.386921][T10889] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  117.407371][T10889] ext4 filesystem being mounted at /347/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  117.461280][T10898] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2822'.
[  117.471107][ T6929] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  117.547047][T10913] loop1: detected capacity change from 0 to 512
[  117.563220][T10913] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[  117.574104][T10913] System zones: 1-12
[  117.584044][T10913] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.2831: error while reading EA inode 32 err=-116
[  117.596575][T10913] EXT4-fs (loop1): Remounting filesystem read-only
[  117.603448][T10913] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  117.624789][T10913] EXT4-fs (loop1): 1 orphan inode deleted
[  117.631255][T10913] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.645302][T10913] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2831'.
[  117.654371][T10913] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2831'.
[  117.663680][T10913] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2831'.
[  117.672739][T10913] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2831'.
[  117.717695][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.883800][T10963] bond0 (unregistering): Released all slaves
[  117.911295][T10971] loop3: detected capacity change from 0 to 128
[  117.918996][T10960] lo speed is unknown, defaulting to 1000
[  117.924998][T10973] loop8: detected capacity change from 0 to 1024
[  117.932091][T10971] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.944743][T10973] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  117.955055][T10971] ext4 filesystem being mounted at /434/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  117.956649][T10975] 9pnet_fd: Insufficient options for proto=fd
[  117.972417][T10973] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  117.996368][T10973] EXT4-fs (loop8): orphan cleanup on readonly fs
[  118.011175][ T5624] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.021584][T10973] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.2853: Failed to acquire dquot type 0
[  118.033020][T10973] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.2853: Failed to acquire dquot type 0
[  118.045022][T10973] EXT4-fs error (device loop8): ext4_free_blocks:6696: comm syz.8.2853: Freeing blocks not in datazone - block = 0, count = 4096
[  118.062790][T10973] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.2853: Failed to acquire dquot type 0
[  118.080760][T10973] EXT4-fs (loop8): 1 orphan inode deleted
[  118.086997][T10973] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  118.121222][T10973] EXT4-fs error (device loop8): ext4_readdir:264: inode #2: block 16: comm syz.8.2853: path /356/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  118.195567][ T6929] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.533197][T11017] loop1: detected capacity change from 0 to 512
[  118.544305][T11017] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  118.564181][T11017] EXT4-fs (loop1): orphan cleanup on readonly fs
[  118.571858][T11017] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2874: bg 0: block 248: padding at end of block bitmap is not set
[  118.588714][T11017] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2874: Failed to acquire dquot type 1
[  118.600699][T11017] EXT4-fs (loop1): 1 truncate cleaned up
[  118.631246][T11025] pim6reg: entered allmulticast mode
[  118.637014][T11025] pim6reg: left allmulticast mode
[  118.693906][T11038] ALSA: seq fatal error: cannot create timer (-22)
[  119.004525][T11058] loop9: detected capacity change from 0 to 1024
[  119.018749][T11058] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  119.036556][T11058] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  119.045120][T11058] EXT4-fs (loop9): orphan cleanup on readonly fs
[  119.054756][T11058] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.2889: Failed to acquire dquot type 0
[  119.067846][T11058] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.2889: Failed to acquire dquot type 0
[  119.088029][T11058] EXT4-fs error (device loop9): ext4_free_blocks:6696: comm syz.9.2889: Freeing blocks not in datazone - block = 0, count = 4096
[  119.113435][T11058] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.2889: Failed to acquire dquot type 0
[  119.148210][T11058] EXT4-fs (loop9): 1 orphan inode deleted
[  119.169485][T11058] EXT4-fs error (device loop9): ext4_readdir:264: inode #2: block 16: comm syz.9.2889: path /401/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  119.325510][T11090] loop3: detected capacity change from 0 to 512
[  119.343102][T11090] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[  119.351105][T11090] System zones: 1-12
[  119.370565][T11090] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.2908: error while reading EA inode 32 err=-116
[  119.383508][T11090] EXT4-fs (loop3): Remounting filesystem read-only
[  119.390111][T11090] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  119.400339][T11090] EXT4-fs (loop3): 1 orphan inode deleted
[  119.433180][T11099] sd 0:0:1:0: device reset
[  119.462689][ T9067] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.501064][T11104] loop3: detected capacity change from 0 to 1024
[  119.521338][ T9067] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.541708][T11104] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  119.559169][T11106] vhci_hcd: invalid port number 96
[  119.564424][T11106] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  119.579102][T11104] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  119.596368][T11104] EXT4-fs (loop3): orphan cleanup on readonly fs
[  119.605257][ T9067] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.618856][T11104] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2913: Failed to acquire dquot type 0
[  119.637805][T11104] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2913: Failed to acquire dquot type 0
[  119.653582][T11104] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.2913: Freeing blocks not in datazone - block = 0, count = 4096
[  119.677467][T11104] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2913: Failed to acquire dquot type 0
[  119.692236][ T9067] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.704160][T11104] EXT4-fs (loop3): 1 orphan inode deleted
[  119.727449][T11104] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 16: comm syz.3.2913: path /443/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  119.782326][T11107] lo speed is unknown, defaulting to 1000
[  119.848544][T11140] netlink: 'syz.1.2925': attribute type 3 has an invalid length.
[  119.858726][ T9067] bridge_slave_1: left allmulticast mode
[  119.864396][ T9067] bridge_slave_1: left promiscuous mode
[  119.870117][ T9067] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.897092][ T9067] bridge_slave_0: left allmulticast mode
[  119.903111][ T9067] bridge_slave_0: left promiscuous mode
[  119.909055][ T9067] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.050483][ T9067] bond0 (unregistering): Released all slaves
[  120.060735][ T9067] bond1 (unregistering): Released all slaves
[  120.126897][ T9067] hsr_slave_0: left promiscuous mode
[  120.135971][ T9067] hsr_slave_1: left promiscuous mode
[  120.141655][ T9067] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.149064][ T9067] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.169621][ T9067] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.177091][ T9067] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.205009][ T9067] veth1_macvtap: left promiscuous mode
[  120.214069][ T9067] veth0_macvtap: left promiscuous mode
[  120.219735][ T9067] veth1_vlan: left promiscuous mode
[  120.224973][ T9067] veth0_vlan: left promiscuous mode
[  120.269450][T11183] loop3: detected capacity change from 0 to 2048
[  120.323291][T11183] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  120.341505][T11183] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  120.342730][ T9067] team0 (unregistering): Port device team_slave_1 removed
[  120.353778][T11183] EXT4-fs (loop3): This should not happen!! Data will be lost
[  120.353778][T11183] 
[  120.353796][T11183] EXT4-fs (loop3): Total free blocks count 0
[  120.376588][T11183] EXT4-fs (loop3): Free/Dirty block details
[  120.382544][T11183] EXT4-fs (loop3): free_blocks=4096
[  120.387744][T11183] EXT4-fs (loop3): dirty_blocks=16
[  120.392927][T11183] EXT4-fs (loop3): Block reservation details
[  120.398902][T11183] EXT4-fs (loop3): i_reserved_data_blocks=1
[  120.406735][ T9067] team0 (unregistering): Port device team_slave_0 removed
[  120.440448][T11196] loop9: detected capacity change from 0 to 512
[  120.453293][T11196] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  120.463468][T11196] EXT4-fs (loop9): orphan cleanup on readonly fs
[  120.471371][T11196] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.2945: bg 0: block 248: padding at end of block bitmap is not set
[  120.488199][T11196] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.2945: Failed to acquire dquot type 1
[  120.488478][T11107] chnl_net:caif_netlink_parms(): no params data found
[  120.500034][T11196] EXT4-fs (loop9): 1 truncate cleaned up
[  120.512194][T11174] pim6reg: entered allmulticast mode
[  120.517600][T11179] pim6reg: left allmulticast mode
[  120.528698][T11188] syzkaller1: entered promiscuous mode
[  120.534331][T11188] syzkaller1: entered allmulticast mode
[  120.560473][T11201] loop9: detected capacity change from 0 to 1024
[  120.567299][T11201] EXT4-fs: Ignoring removed bh option
[  120.573280][T11201] EXT4-fs: inline encryption not supported
[  120.591258][T11201] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  120.611545][T11201] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  120.614937][T11107] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.625940][T11201] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 2: comm syz.9.2946: lblock 2 mapped to illegal pblock 2 (length 1)
[  120.626877][T11107] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.650067][T11107] bridge_slave_0: entered allmulticast mode
[  120.656626][T11107] bridge_slave_0: entered promiscuous mode
[  120.668600][T11201] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 48: comm syz.9.2946: lblock 0 mapped to illegal pblock 48 (length 1)
[  120.698625][T11201] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.2946: Failed to acquire dquot type 0
[  120.715442][T11107] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.722606][T11107] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.729796][T11107] bridge_slave_1: entered allmulticast mode
[  120.735855][T11201] EXT4-fs error (device loop9) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  120.745932][T11107] bridge_slave_1: entered promiscuous mode
[  120.752052][T11201] EXT4-fs error (device loop9): ext4_evict_inode:254: inode #11: comm syz.9.2946: mark_inode_dirty error
[  120.764194][T11201] EXT4-fs warning (device loop9): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  120.787983][T11201] EXT4-fs (loop9): 1 orphan inode deleted
[  120.802055][T11219] loop1: detected capacity change from 0 to 1024
[  120.808722][ T9077] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:32: lblock 1 mapped to illegal pblock 1 (length 1)
[  120.810784][T11107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  120.827622][ T9077] EXT4-fs error (device loop9): ext4_release_dquot:6969: comm kworker/u8:32: Failed to release dquot type 0
[  120.848577][T11219] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  120.849721][T11107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  120.859836][T11219] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  120.877396][T11219] EXT4-fs (loop1): orphan cleanup on readonly fs
[  120.884683][T11219] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2951: Failed to acquire dquot type 0
[  120.884719][T11201] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 48: comm syz.9.2946: lblock 0 mapped to illegal pblock 48 (length 1)
[  120.912060][T11219] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2951: Failed to acquire dquot type 0
[  120.923503][T11219] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.2951: Freeing blocks not in datazone - block = 0, count = 4096
[  120.938914][T11219] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2951: Failed to acquire dquot type 0
[  120.949125][T11201] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  120.959080][T11219] EXT4-fs (loop1): 1 orphan inode deleted
[  120.970506][T11107] team0: Port device team_slave_0 added
[  120.977234][T11107] team0: Port device team_slave_1 added
[  120.995818][T11219] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 16: comm syz.1.2951: path /564/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  121.017574][T11107] batman_adv: batadv0: Adding interface: batadv_slave_0
[  121.024705][T11107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  121.050727][T11107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  121.061924][T11107] batman_adv: batadv0: Adding interface: batadv_slave_1
[  121.068957][T11107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  121.094928][T11107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  121.128511][T11107] hsr_slave_0: entered promiscuous mode
[  121.145608][T11107] hsr_slave_1: entered promiscuous mode
[  121.167416][T11237] __nla_validate_parse: 12 callbacks suppressed
[  121.167483][T11237] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2960'.
[  121.262644][T11253] pim6reg: entered allmulticast mode
[  121.272482][T11253] pim6reg: left allmulticast mode
[  121.496034][T11265] vhci_hcd: invalid port number 96
[  121.501192][T11265] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  121.508835][T11107] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  121.524948][T11107] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  121.534221][T11107] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  121.543180][T11107] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  121.560482][T11107] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.567584][T11107] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.574856][T11107] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.581978][T11107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.612337][T11107] 8021q: adding VLAN 0 to HW filter on device bond0
[  121.624778][ T9107] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.632941][ T9107] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.652360][T11107] 8021q: adding VLAN 0 to HW filter on device team0
[  121.667722][ T3454] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.674826][ T3454] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.690724][ T3454] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.697909][ T3454] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.723885][T11107] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  121.734441][T11107] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  121.795397][T11107] 8021q: adding VLAN 0 to HW filter on device batadv0
[  121.836600][   T29] kauditd_printk_skb: 198 callbacks suppressed
[  121.836619][   T29] audit: type=1400 audit(2000000043.168:3610): avc:  denied  { ioctl } for  pid=11286 comm="syz.3.2977" path="socket:[32744]" dev="sockfs" ino=32744 ioctlcmd=0x48d2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  121.957755][T11107] veth0_vlan: entered promiscuous mode
[  121.966137][T11107] veth1_vlan: entered promiscuous mode
[  121.984011][T11107] veth0_macvtap: entered promiscuous mode
[  121.991702][T11107] veth1_macvtap: entered promiscuous mode
[  122.005694][T11107] batman_adv: batadv0: Interface activated: batadv_slave_0
[  122.018634][T11107] batman_adv: batadv0: Interface activated: batadv_slave_1
[  122.029477][ T9057] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  122.047749][ T9057] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  122.056452][ T9057] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  122.084039][ T9057] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  122.097617][   T29] audit: type=1400 audit(2000000043.411:3611): avc:  denied  { mounton } for  pid=11107 comm="syz-executor" path="/root/syzkaller.thEiuF/syz-tmp" dev="sda1" ino=2063 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  122.137552][T11306] RDS: rds_bind could not find a transport for fe88::10a, load rds_tcp or rds_rdma?
[  122.164650][   T29] audit: type=1400 audit(2000000043.421:3612): avc:  denied  { mount } for  pid=11107 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  122.186955][   T29] audit: type=1400 audit(2000000043.421:3613): avc:  denied  { mounton } for  pid=11107 comm="syz-executor" path="/root/syzkaller.thEiuF/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  122.213731][   T29] audit: type=1400 audit(2000000043.421:3614): avc:  denied  { mounton } for  pid=11107 comm="syz-executor" path="/root/syzkaller.thEiuF/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=33112 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  122.241478][   T29] audit: type=1400 audit(2000000043.439:3615): avc:  denied  { mounton } for  pid=11107 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  122.264462][   T29] audit: type=1400 audit(2000000043.439:3616): avc:  denied  { mount } for  pid=11107 comm="syz-executor" name="/" dev="gadgetfs" ino=4504 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  122.286992][   T29] audit: type=1400 audit(2000000043.468:3617): avc:  denied  { add_name } for  pid=11107 comm="syz-executor" name="syz8" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  122.311763][   T29] audit: type=1400 audit(2000000043.468:3618): avc:  denied  { create } for  pid=11107 comm="syz-executor" name="syz8" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  122.332188][   T29] audit: type=1400 audit(2000000043.468:3619): avc:  denied  { associate } for  pid=11107 comm="syz-executor" name="syz8" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  122.395191][T11317] lo speed is unknown, defaulting to 1000
[  122.432472][T11317] netlink: 'syz.9.2985': attribute type 13 has an invalid length.
[  122.444206][T11317] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  122.729474][T11348] loop3: detected capacity change from 0 to 512
[  122.736512][T11348] EXT4-fs: Ignoring removed mblk_io_submit option
[  122.744150][T11348] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  122.757683][T11343] sctp: [Deprecated]: syz.0.2998 (pid 11343) Use of struct sctp_assoc_value in delayed_ack socket option.
[  122.757683][T11343] Use struct sctp_sack_info instead
[  122.779080][T11348] EXT4-fs (loop3): 1 truncate cleaned up
[  122.799341][T11354] xt_policy: too many policy elements
[  122.867531][T11365] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11365 comm=syz.0.3007
[  123.307765][T11393] lo speed is unknown, defaulting to 1000
[  123.329181][T11398] netlink: 'syz.8.3028': attribute type 13 has an invalid length.
[  123.482965][T11398] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  123.635370][T11422] loop8: detected capacity change from 0 to 2048
[  123.666255][T11422]  loop8: p2 < > p3 < >
[  123.670485][T11422] loop8: partition table partially beyond EOD, truncated
[  123.688639][T11422] loop8: p2 start 4278190080 is beyond EOD, truncated
[  123.902519][T11465] netlink: 'syz.0.3052': attribute type 6 has an invalid length.
[  124.059907][T11488] lo speed is unknown, defaulting to 1000
[  124.142394][T11488] netlink: 'syz.0.3071': attribute type 13 has an invalid length.
[  124.155777][T11488] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  124.225567][T11504] lo speed is unknown, defaulting to 1000
[  124.266990][T11504] netlink: 'syz.1.3080': attribute type 13 has an invalid length.
[  124.284118][T11504] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  124.657934][T11519] loop8: detected capacity change from 0 to 1024
[  124.679028][T11519] EXT4-fs: Ignoring removed bh option
[  124.684487][T11519] EXT4-fs: inline encryption not supported
[  124.695479][T11519] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  124.708311][T11519] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  124.720975][T11519] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 2: comm syz.8.3068: lblock 2 mapped to illegal pblock 2 (length 1)
[  124.737011][T11519] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 48: comm syz.8.3068: lblock 0 mapped to illegal pblock 48 (length 1)
[  124.751457][T11519] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.3068: Failed to acquire dquot type 0
[  124.774698][T11519] EXT4-fs error (device loop8) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  124.803622][T11519] EXT4-fs error (device loop8): ext4_evict_inode:254: inode #11: comm syz.8.3068: mark_inode_dirty error
[  124.817893][T11519] EXT4-fs warning (device loop8): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  124.828992][T11540] netlink: 'syz.0.3086': attribute type 13 has an invalid length.
[  124.836817][T11540] netlink: 'syz.0.3086': attribute type 17 has an invalid length.
[  124.862099][T11519] EXT4-fs (loop8): 1 orphan inode deleted
[  124.873396][T11540] 0��{X��: left allmulticast mode
[  124.882259][ T3454] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  124.903656][ T3454] EXT4-fs error (device loop8): ext4_release_dquot:6969: comm kworker/u8:8: Failed to release dquot type 0
[  124.935113][T11519] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 48: comm syz.8.3068: lblock 0 mapped to illegal pblock 48 (length 1)
[  124.964172][T11519] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  124.964219][T11540] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  125.069218][T11565] sctp: [Deprecated]: syz.3.3093 (pid 11565) Use of struct sctp_assoc_value in delayed_ack socket option.
[  125.069218][T11565] Use struct sctp_sack_info instead
[  125.118396][T11567] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  125.163049][T11576] loop9: detected capacity change from 0 to 512
[  125.187330][T11576] ext4 filesystem being mounted at /433/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.259611][T11594] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3112'.
[  125.284691][T11596] loop8: detected capacity change from 0 to 2048
[  125.343815][T11607] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3117'.
[  125.391352][T11609] SELinux: failed to load policy
[  125.440550][T11613] netlink: 'syz.3.3120': attribute type 6 has an invalid length.
[  125.755656][T11671] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=11671 comm=syz.3.3147
[  125.785381][T11673] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3145'.
[  125.831330][T11684] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3151'.
[  125.944930][T11707] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  125.951337][T11707] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  125.959492][T11707] hsr_slave_0: left promiscuous mode
[  125.969919][T11707] hsr_slave_1: left promiscuous mode
[  126.081142][T11727] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11727 comm=syz.1.3174
[  126.093932][T11727] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=11727 comm=syz.1.3174
[  126.126962][T11737] netlink: 'syz.3.3179': attribute type 10 has an invalid length.
[  126.146440][T11737] ipvlan0: entered allmulticast mode
[  126.151765][T11737] veth0_vlan: entered allmulticast mode
[  126.180611][T11737] team0: Device ipvlan0 failed to register rx_handler
[  126.214402][T11750] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  126.359379][T11770] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  126.379086][T11775] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3193'.
[  126.493743][T11793] sd 0:0:1:0: device reset
[  126.644026][    T9] Process accounting resumed
[  126.851533][T11839] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3225'.
[  126.902083][T11840] netlink: 'syz.8.3224': attribute type 13 has an invalid length.
[  126.954635][T11840] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  127.039041][T11857] ipvlan0: entered allmulticast mode
[  127.044528][T11857] veth0_vlan: entered allmulticast mode
[  127.051755][T11857] team0: Device ipvlan0 failed to register rx_handler
[  127.175534][T11877] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3243'.
[  127.184582][T11877] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3243'.
[  127.222160][   T29] kauditd_printk_skb: 348 callbacks suppressed
[  127.222177][   T29] audit: type=1400 audit(2000000048.201:3964): avc:  denied  { create } for  pid=11881 comm="syz.8.3246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  127.269109][T11880] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  127.306223][T11886] ipvlan0: entered allmulticast mode
[  127.311818][T11886] veth0_vlan: entered allmulticast mode
[  127.318797][   T29] audit: type=1400 audit(2000000048.294:3965): avc:  denied  { lock } for  pid=11887 comm="syz.3.3248" path="socket:[35858]" dev="sockfs" ino=35858 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  127.369004][T11886] team0: Device ipvlan0 failed to register rx_handler
[  127.417850][T11898] loop9: detected capacity change from 0 to 2048
[  127.517727][   T29] audit: type=1326 audit(2000000048.481:3966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.1.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  127.579121][   T29] audit: type=1326 audit(2000000048.481:3967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.1.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  127.602763][   T29] audit: type=1326 audit(2000000048.481:3968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.1.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  127.626283][   T29] audit: type=1326 audit(2000000048.481:3969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.1.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  127.650013][   T29] audit: type=1326 audit(2000000048.481:3970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.1.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  127.673696][   T29] audit: type=1326 audit(2000000048.481:3971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.1.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  127.697256][   T29] audit: type=1326 audit(2000000048.481:3972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.1.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  127.720795][   T29] audit: type=1326 audit(2000000048.500:3973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.1.3260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  127.941106][T11958] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11958 comm=syz.8.3273
[  128.322145][T12008] loop9: detected capacity change from 0 to 512
[  128.344244][T12008] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  128.366002][T12008] EXT4-fs (loop9): 1 truncate cleaned up
[  128.377877][T12016] bridge0: port 3(veth0_to_bridge) entered blocking state
[  128.385078][T12016] bridge0: port 3(veth0_to_bridge) entered disabled state
[  128.393141][T12016] veth0_to_bridge: entered allmulticast mode
[  128.399799][T12016] veth0_to_bridge: entered promiscuous mode
[  129.519877][T12094] Falling back ldisc for ttyS3.
[  129.584011][T12105] validate_nla: 5 callbacks suppressed
[  129.584036][T12105] netlink: 'syz.8.3334': attribute type 13 has an invalid length.
[  129.597340][T12105] netlink: 'syz.8.3334': attribute type 17 has an invalid length.
[  129.652283][T12105] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  129.697959][T12111] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3340'.
[  129.742540][T12116] loop9: detected capacity change from 0 to 1024
[  129.777595][T12116] ext4 filesystem being mounted at /487/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.885897][ T9077] EXT4-fs error (device loop9): ext4_map_blocks:814: inode #15: comm kworker/u8:32: lblock 0 mapped to illegal pblock 0 (length 1)
[  129.913993][ T9077] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  129.926322][ T9077] EXT4-fs (loop9): This should not happen!! Data will be lost
[  129.926322][ T9077] 
[  130.491836][T12172] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  130.735894][T12213] sd 0:0:1:0: device reset
[  130.867787][T12231] loop9: detected capacity change from 0 to 164
[  130.877237][T12231] bio_check_eod: 37 callbacks suppressed
[  130.877253][T12231] syz.9.3385: attempt to access beyond end of device
[  130.877253][T12231] loop9: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  130.897126][T12231] syz.9.3385: attempt to access beyond end of device
[  130.897126][T12231] loop9: rw=0, sector=263328, nr_sectors = 4 limit=164
[  131.516149][T12243] netlink: 'syz.0.3391': attribute type 13 has an invalid length.
[  131.524000][T12243] netlink: 'syz.0.3391': attribute type 17 has an invalid length.
[  131.543320][T12243] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  131.617219][T12249] SELinux: security policydb version 17 (MLS) not backwards compatible
[  131.632160][T12249] SELinux: failed to load policy
[  131.663501][T12253] bridge0: port 4(batadv1) entered blocking state
[  131.670162][T12253] bridge0: port 4(batadv1) entered disabled state
[  131.695018][T12253] batadv1: entered allmulticast mode
[  131.701199][T12253] batadv1: entered promiscuous mode
[  131.940400][T12269] loop9: detected capacity change from 0 to 8192
[  132.155835][T12315] pim6reg: entered allmulticast mode
[  132.163166][T12315] pim6reg: left allmulticast mode
[  132.203028][ T9067] batman_adv: batadv1: IGMP Querier appeared
[  132.209047][ T9067] batman_adv: batadv1: MLD Querier appeared
[  132.644429][   T29] kauditd_printk_skb: 216 callbacks suppressed
[  132.644446][   T29] audit: type=1326 audit(2000000053.280:4190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12337 comm="syz.1.3429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  132.696955][   T29] audit: type=1326 audit(2000000053.280:4191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12337 comm="syz.1.3429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  132.720518][   T29] audit: type=1400 audit(2000000053.289:4192): avc:  denied  { read write } for  pid=11107 comm="syz-executor" name="loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  132.745047][   T29] audit: type=1400 audit(2000000053.289:4193): avc:  denied  { open } for  pid=11107 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  132.769432][   T29] audit: type=1400 audit(2000000053.289:4194): avc:  denied  { ioctl } for  pid=11107 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=108 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  132.795323][   T29] audit: type=1326 audit(2000000053.289:4195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12337 comm="syz.1.3429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  132.818857][   T29] audit: type=1326 audit(2000000053.308:4196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12337 comm="syz.1.3429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  132.842464][   T29] audit: type=1326 audit(2000000053.308:4197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12337 comm="syz.1.3429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d0b49ebe9 code=0x7ffc0000
[  132.865945][   T29] audit: type=1400 audit(2000000053.317:4198): avc:  denied  { create } for  pid=12339 comm="syz.8.3430" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  132.885661][   T29] audit: type=1400 audit(2000000053.317:4199): avc:  denied  { ioctl } for  pid=12339 comm="syz.8.3430" path="socket:[36457]" dev="sockfs" ino=36457 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  133.135772][T12383] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  133.152347][T12383] vhci_hcd: invalid port number 253
[  133.157782][T12383] vhci_hcd: invalid port number 253
[  133.240495][T12400] ALSA: seq fatal error: cannot create timer (-19)
[  133.417754][T12422] netlink: 268 bytes leftover after parsing attributes in process `syz.8.3470'.
[  133.426984][T12422] unsupported nla_type 65024
[  133.465762][T12428] loop8: detected capacity change from 0 to 512
[  133.472636][T12428] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  133.487065][T12428] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  133.495041][T12428] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  133.504749][T12428] System zones: 0-1, 15-15, 18-18, 34-34
[  133.510577][T12428] EXT4-fs (loop8): orphan cleanup on readonly fs
[  133.532112][T12428] EXT4-fs warning (device loop8): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  133.546754][T12428] EXT4-fs (loop8): Cannot turn on quotas: error -22
[  133.556412][T12428] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.3472: bg 0: block 40: padding at end of block bitmap is not set
[  133.570883][T12428] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  133.596955][T12428] EXT4-fs (loop8): 1 truncate cleaned up
[  133.606221][T12428] EXT4-fs error (device loop8): ext4_encrypted_get_link:46: inode #16: comm syz.8.3472: bad symlink.
[  134.264512][T12486] loop9: detected capacity change from 0 to 512
[  134.288124][T12486] EXT4-fs: Ignoring removed orlov option
[  134.303657][T12486] ext4 filesystem being mounted at /523/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  134.545090][T12513] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3511'.
[  134.879327][T12580] syzkaller1: entered promiscuous mode
[  134.884840][T12580] syzkaller1: entered allmulticast mode
[  134.979886][T12597] netlink: 'syz.3.3534': attribute type 6 has an invalid length.
[  135.076518][T12603] ref_ctr_offset mismatch. inode: 0xac9 offset: 0x0 ref_ctr_offset(old): 0x8000000 ref_ctr_offset(new): 0x0
[  135.139424][T12608] lo speed is unknown, defaulting to 1000
[  135.252392][T12617] netlink: 'syz.3.3542': attribute type 21 has an invalid length.
[  135.374157][T12637] loop3: detected capacity change from 0 to 512
[  135.382139][T12639] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=256 sclass=netlink_audit_socket pid=12639 comm=syz.8.3552
[  135.391042][T12637] EXT4-fs: Ignoring removed oldalloc option
[  135.419056][T12637] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.3551: Parent and EA inode have the same ino 15
[  135.437695][T12637] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.3551: Parent and EA inode have the same ino 15
[  135.450533][T12637] EXT4-fs (loop3): 1 orphan inode deleted
[  135.616110][    T9] kernel read not supported for file /vga_arbiter (pid: 9 comm: kworker/0:0)
[  135.779417][T12702] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3581'.
[  136.119490][ T9081] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  136.128651][ T9081] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  136.139098][ T9081] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  136.148180][ T9081] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  136.172812][ T9081] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  136.181748][ T9081] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  136.192137][ T9081] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  136.201106][ T9081] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  136.526604][T12742] netlink: 'syz.8.3596': attribute type 1 has an invalid length.
[  136.621937][T12758] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3604'.
[  136.631272][T12758] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3604'.
[  136.632895][T12760] netlink: 428 bytes leftover after parsing attributes in process `+}[@'.
[  137.061547][T12813] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  137.070373][T12813] SELinux: failed to load policy
[  137.113023][T12817] loop9: detected capacity change from 0 to 512
[  137.137879][T12817] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec018, mo2=0002]
[  137.153457][T12817] System zones: 0-2, 18-18, 34-34
[  137.158929][T12817] EXT4-fs (loop9): orphan cleanup on readonly fs
[  137.172070][T12817] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.3632: bg 0: block 248: padding at end of block bitmap is not set
[  137.200558][T12817] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.3632: Failed to acquire dquot type 1
[  137.242378][T12834] netlink: 'syz.3.3640': attribute type 19 has an invalid length.
[  137.250640][T12834] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3640'.
[  137.278205][T12834] netlink: 'syz.3.3640': attribute type 19 has an invalid length.
[  137.280995][ T9081] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  137.286095][T12834] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3640'.
[  137.295781][ T9081] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  137.316978][T12817] EXT4-fs (loop9): 1 orphan inode deleted
[  137.322823][   T51] EXT4-fs error (device loop9): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[  137.334330][ T9092] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  137.356484][ T9092] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  137.376843][T12817] EXT4-fs mount: 36 callbacks suppressed
[  137.376861][T12817] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  137.414947][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.455165][T12849] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12849 comm=syz.9.3647
[  137.544926][T12863] netlink: 'syz.8.3654': attribute type 1 has an invalid length.
[  137.691211][ T3398] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x4
[  137.698968][ T3398] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x2
[  137.716867][ T3398] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x3
[  137.726780][ T3398] hid-generic 0000:3000000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  137.870397][T12901] loop8: detected capacity change from 0 to 128
[  137.920493][ T3398] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  137.927991][ T3398] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  137.935454][ T3398] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  137.942821][ T3398] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  137.950423][ T3398] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  137.957971][ T3398] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  137.965603][ T3398] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  138.024788][ T3398] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  138.095516][   T29] kauditd_printk_skb: 392 callbacks suppressed
[  138.095529][   T29] audit: type=1400 audit(2000000058.378:4588): avc:  denied  { read write } for  pid=12909 comm="syz.8.3676" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  138.125340][   T29] audit: type=1400 audit(2000000058.378:4589): avc:  denied  { open } for  pid=12909 comm="syz.8.3676" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  138.271236][   T29] audit: type=1326 audit(2000000058.537:4590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.8.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83b42debe9 code=0x7ffc0000
[  138.294764][   T29] audit: type=1326 audit(2000000058.537:4591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.8.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83b42debe9 code=0x7ffc0000
[  138.361610][   T29] audit: type=1326 audit(2000000058.537:4592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.8.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f83b42debe9 code=0x7ffc0000
[  138.385055][   T29] audit: type=1326 audit(2000000058.593:4593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.8.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83b42debe9 code=0x7ffc0000
[  138.408555][   T29] audit: type=1326 audit(2000000058.593:4594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12917 comm="syz.8.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83b42debe9 code=0x7ffc0000
[  138.434249][   T29] audit: type=1400 audit(2000000058.696:4595): avc:  denied  { read write } for  pid=12923 comm="syz.3.3681" name="ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  138.457629][   T29] audit: type=1400 audit(2000000058.696:4596): avc:  denied  { open } for  pid=12923 comm="syz.3.3681" path="/dev/ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  138.495600][   T29] audit: type=1400 audit(2000000058.743:4597): avc:  denied  { read write } for  pid=12925 comm="syz.8.3682" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  138.649763][T12953] loop9: detected capacity change from 0 to 512
[  138.671692][T12956] batman_adv: batadv0: Adding interface: ipvlan2
[  138.678047][T12956] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  138.703543][T12956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.714044][T12956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.725236][T12956] batman_adv: batadv0: Interface activated: ipvlan2
[  138.753530][T12953] EXT4-fs error (device loop9): ext4_orphan_get:1418: comm syz.9.3693: bad orphan inode 11862016
[  138.771918][T12953] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  138.787134][T12953] ext4 filesystem being mounted at /554/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.818516][T12965] random: crng reseeded on system resumption
[  138.830920][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  138.841820][T12969] netlink: 'syz.8.3701': attribute type 3 has an invalid length.
[  138.847722][T12967] bond2: entered promiscuous mode
[  138.854708][T12967] bond2: entered allmulticast mode
[  138.860312][T12967] 8021q: adding VLAN 0 to HW filter on device bond2
[  138.885570][T12967] bond2 (unregistering): Released all slaves
[  138.927939][T12982] 9pnet: p9_errstr2errno: server reported unknown error �Ȫjn�
[  138.927939][T12982] �2�$�tO*����m�տ*�Dž��j`c��?ڊ#t>r���)
[  138.989640][T12992] loop9: detected capacity change from 0 to 512
[  138.996318][T12992] EXT4-fs: Ignoring removed mblk_io_submit option
[  139.004050][T12992] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  139.015513][T12992] EXT4-fs (loop9): 1 truncate cleaned up
[  139.021600][T12992] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.242416][T13024] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  139.407687][T13018] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.417313][T13018] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.651307][ T2955] kernel write not supported for file /1234/sched (pid: 2955 comm: kworker/1:2)
[  139.807533][T13063] SELinux:  policydb version 0 does not match my version range 15-35
[  139.816377][T13063] SELinux: failed to load policy
[  139.959144][ T5574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.998861][T13075] SELinux:  policydb version 0 does not match my version range 15-35
[  140.007607][T13075] SELinux: failed to load policy
[  140.121924][T13096] loop9: detected capacity change from 0 to 2048
[  140.129847][T13096] EXT4-fs: Ignoring removed mblk_io_submit option
[  140.148781][T13096] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.169907][T13096] ext4 filesystem being mounted at /562/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.197340][T13096] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.264381][T13105] ==================================================================
[  140.272488][T13105] BUG: KCSAN: data-race in shmem_file_splice_read / shmem_file_splice_read
[  140.281092][T13105] 
[  140.283411][T13105] write to 0xffff88811b7c92e8 of 8 bytes by task 13099 on cpu 1:
[  140.291122][T13105]  shmem_file_splice_read+0x470/0x600
[  140.296521][T13105]  splice_direct_to_actor+0x26c/0x680
[  140.301891][T13105]  do_splice_direct+0xda/0x150
[  140.306655][T13105]  do_sendfile+0x380/0x650
[  140.311079][T13105]  __x64_sys_sendfile64+0x105/0x150
[  140.316294][T13105]  x64_sys_call+0x2bb0/0x2ff0
[  140.320983][T13105]  do_syscall_64+0xd2/0x200
[  140.325503][T13105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.331416][T13105] 
[  140.333740][T13105] write to 0xffff88811b7c92e8 of 8 bytes by task 13105 on cpu 0:
[  140.341450][T13105]  shmem_file_splice_read+0x470/0x600
[  140.346828][T13105]  splice_direct_to_actor+0x26c/0x680
[  140.352201][T13105]  do_splice_direct+0xda/0x150
[  140.356957][T13105]  do_sendfile+0x380/0x650
[  140.361386][T13105]  __x64_sys_sendfile64+0x105/0x150
[  140.366589][T13105]  x64_sys_call+0x2bb0/0x2ff0
[  140.371267][T13105]  do_syscall_64+0xd2/0x200
[  140.375784][T13105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.381674][T13105] 
[  140.383998][T13105] value changed: 0x000000000000b7ce -> 0x000000000000b7f1
[  140.391111][T13105] 
[  140.393430][T13105] Reported by Kernel Concurrency Sanitizer on:
[  140.399593][T13105] CPU: 0 UID: 0 PID: 13105 Comm: syz.1.3759 Tainted: G        W           6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(voluntary) 
[  140.413705][T13105] Tainted: [W]=WARN
[  140.417520][T13105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  140.427678][T13105] ==================================================================