last executing test programs:

1m27.748215783s ago: executing program 3 (id=525):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
acct(&(0x7f0000000100)='./file0/bus\x00')
close(r2)
umount2(&(0x7f0000000280)='./file0\x00', 0x0)

1m27.694027003s ago: executing program 3 (id=527):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socket$isdn_base(0x22, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000080)={[{@discard}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
r2 = open(&(0x7f0000000140)='./file1\x00', 0x64842, 0x21)
write$UHID_INPUT(r2, &(0x7f0000000f80)={0x8, {"4092bc62b16fc2eaf993268353745cb1888a46f1899668f648ae84341553a4abfb86a4e787fbf672ac4cca7ba3c524d6c2203e186e19bbba2e6c3c9e9b38469574cc74b5428bd1c281962d830fce8051c807d61d00202cb0de4b208220268a26d7ce00c1e81e487818d20557e11717dcbd9d324d79561a01db896410dc82dcb8bafafab98fd065262f9ba66c12dc00aabdc58117a34a9cbd80d76d13319fe5565d39c7c8b176b6e92315a1d67c349c97d3d26bad8985e4460f59b5ad149c25a75ad8cabf93c56eef8a48882e64fb40b76479ce2b6783d2de7628d15a0d3d52d2ca2cfdc7facd2741b75ce8152fee3fbcca84d23bfe44a2780edb1c801754fd71312d3aae36c74ab658916cc2fe7f4e79dca239614a399caeb1394eab65af7ab3fe291364ed9c7993837335521c5017f277fef08a8fcb17beaf797bb9c025862b2713efbe4e493c4c7e459c03cbcb6b6ac494ac71e4363c07be98523598d80da2d459feabba6f37ebfa920f6b35d7328bcf8bf814b066e42e10a1825a183a59341a093dd13b53e2c505a86821495140fed7fd188c7a8c9047383b4a0b629ea810b2d55d97202dd4ed1337feadc5300e31b177c89d5dbfedca2f18d65a00afa5371078a00b5d61065be3b85eefdd051f4423e44eb011e2cc68d0c178e038db43b1b527298820c4f54850ae90b2c792dab74ad3a82077b25b2ec43b971576957efac8471e9a1a1af92e0a9a9d1dcc88a7a1af48d19fbdc6fba99c42f05a5a5446c2947ca13b61dd78ca22b93a5620dec0ee7052a3cb25adffeb8da060130fd7e15519b4ede2295a7f0babf2f291f0b97263262b123e6e40b9f21e8139792e47c8acfd81f75ee1a620359be51ba5a9f58a962d1b4a884122657f997fc625bfd9822d1273727f0fa6d8907adb1c251f3c101c545921abebf60d11314147045a90e7b4ca4cb25a184b4e11de65be5adae3ef701888f35eb74ddeb23933b91fd35057e5ffb138b0bba637069d356fb772188b62d542c519617762e1e447c83a71b9bdd93f1e9dde817608fc04762d8abd38850176363fccd2bc817520bec2c252ade938f0119b59972e9c7e4466121349132d51cc33f4a81fff600887bf48b2baf1300179790865652bb686f2257155559a0bab3b62a808be33bbeef3f313479373b18b1b6e1a9e984ceeb64875b690014f93abd9ebf0ec26ccd38ee6c7720ae5ee2aa49061da4806b9f712838b4338f97cc1a54f36e242977e55d26fea90815524a888c0417f3824bbb6e8f2ced1e375d7cbfa2c02fe014b2765870af695dd4ba667382f441770f428438b56ce4512cfc5faab4977bd979154530daa309b5732e885c4c91734adcdee38d845489feff605db2670f8c6e8179fd448a71f8f87f1cb4ca66b1313016c443d678a4d69128bb1b795d758aa176b12bd41384e829028654938d7d4cd5ffaa7a994ad1f6b88f260de9aafb9aef91984f9cb971ac013c2ee4a3dc96c3f5109255a44c1e5ae25b7d93554e6c82a1947329486476a06a930994cc1d364ebc8ccb37c0b9d83a6dbd96e2afb5ec48e9150f47bb3f2df8b2c257f4a5bf3f8850b071ffbdd2984e53f928d8fd9ed6200970e0163945574e59e8c403f5521f072431f0f48778ba940b15f151219db630ca5e523a6438953e1e1ba562ce5ae1ae4285bcb32117afd878596bd098d63428386b1ae1a620c9048735a9872f72d40d59f3eb18aeef2c6d5454cbc7eb3e0149f75cf336dd1570b6e5fc87833ee9ae377d58ff0304f24c444afc402e7a1ff8dbffff87a556ea9d152c4a2726681e28ab2c263ba249ba7f6a85d7318d562c1ca3284acd85ae3c8673e3ed84a46de4ce76a6a9f518b960107d2322b4e51207f8f85a1c96c073f8b8a2020de75b3747284a7ac8f502f99fd75f4c3e2b69bc3f71231be854d299cc96045f889c2a61a0cf91e25c0ed73bf1905f3d43f53d0168fe7a1a50a6728829c71379f30c38f0953f5c866c3c58855b9c6c93b3998ec7ab8caf93177dafe3b6b9ff0d42411a12e87f501a5f2d4daeeb93fe3e2314d0205d09e070bf42e5919d8ed076d73c1629aef3e8a8a3fa9c19eed50c841f01b3dc12e0f826d1d9383fad983482b69f5453ef45f4dc430861c60a029eee33694725ff098e5c3fdf4783b45b9a18f552b3b17e616feb3273b05ac3deee3228a9d1eaff9a0214417b6c7cecc424edb45f9dc9f79f5770073e4b09f2b68563444b470b7d612d0810a749a33b5908ec4fe77f4bc339391f2e506d4918df59cacd2950b8acc1d9b12be4d9167e87f051d282cee7298c4722b662fe2d7bb34e83859675d56d4bbf337aab9b90adada18b6c38a909a82ce39aacb65abe9684b96ef79651775d17e0e1098584bcfc0c070f9d58559bfdfa393c6e4f3e59cbf127bca424e0cfff3168752996d87cdce446c09617ba9f5fe56aa0e2bef0c829ebe2c9afa039b4ffdefd5998ba23d1612d3ee54822f715fb1a153a17d650a0fa31a34a8407c0f21a1010533e7d7c9a5b3810ba93a6279217ad5c0418e2f05f238cc3e384d5fb99f59699daf62429d123c85623dbafc954bf0ce3f5ff5a2a5b995a2879a97c3acbcb4196b4733e0b607ab9ac71eac77a20b9a4de860713bc3bef7fa4053c6e518f44af293896c3a757d62dfb93f1e3817ed147fe0ffcce3e9385e91dd7836fe8fb03dca491e03c012aa3efa73c0829f45a93d3e2692893650ba11ad0d430414ab102a086f0216d2a53773896c75642cda8af9782b9e60c8f14844b48352af714950d2106118140e90affc050b048de96919f9113c473f0d2da1d2c219ac5c329238dd9ffbb4765472a8f4d55d5c5d8a0cee45c556995e14f8f7dddb0f27ed6eaa2929abd2ca7b7ba176af94ee59b9e1aa9616a3a6f707c1c683e597643cf73c684ac081e1b570e748dedf403ab2f9b0faa8dde3f3dc5824e08a6204c75359f8bdc45a723c5df2799c7f3dddcdf090dd02a11c01dd9bcd4f415631997dfdb31fd793a37f10e554e9760878998a957e02fdfe0a48a6bac472e6b26c460143dd3de8108e36c3f7b694b1b57bac6c2271139e09a5b4cbbc03b4603e12942eb874f3571bbc0ec031072369064aa0710bbbf9d1dea3bbfb5409eb64322d10353e0a70b7a7a7958beaebf22fd9c84ad2ac7f9ee3e115443cc847f6e54ce4e43e646cea3f3dd5ec48e700f817087beb78dc37edcd1507164ac71a223ddbf48ac4d7c275ffdd6d53d5eff1a9e3b8b74dd5e4ad462e8accbc71b7be611861892b5e31a7c5e19dad9ef540658f8f94c852a0c6b8a03266a06a8f0da47c6ae69d0cdb35b594fff798b37c7f7f953bf25d51594983ca576f65ae13b9c3fd893f9971850e6c9ffea4a22234c57397f5f5d83c42b85f2d40516964c09f145adcafd5b6d1d8f537a15768a7f709fc61852337cf84bc407288d8dfcd96b99a5c4d4757024604e61ecf522210fcfe9dbabb0bd8d9b3db2f17fef169a46e326ccbe161008af338f1d4ed1bd13644688f7e68c611e74f5377225ecc26879557cdd52b8d6aa5c208aa0e4e20ac5f633f8959a0244658a5c004b2947d7cfb7fd11d50b228b5892f7df1e2fdf81d7619619abf59b16460ff29039dfff95698f136b7e3f2286d3aa08455f697009b2ed585c54f1115669430eb1a10dfdbafeae5354d93306157e1fffdf84ad90f059c1f056117245ebcfa6938bfc28344bdee4ddb93778c18ce6c7847b72df3811a37798f35647438d387cb3eef1736154749193c86391ada8c3c793af5c77700d24a1930875d39bcef1069ca88f0e07f3b5c84502dddece727fe22ddb4fd37e34a1b2a883336db8b2425f3d6e1e8bfec5300acca4edf10eda556d767fa07aaa2717a89c31ce2d359fa8b20713aefd3f86377f109da7630d50d132b2c905f32ec02ea7f4beb7f8aa639d7c8341b4817f3d5781b67f3e998b3b8751019b45bce508b3c2c86f58756fdc92694eb76c2c1a1b318cb234cfef187c1999e0a99bb44a68fe183dd28e6bdbb723fe6202339d8ad45d7f61c7bab9bf6f9a5f99cd65a4eb4c7f7d1e62d659cab4dcfbe36ebc65fe026506339279ef219e980d22badbf9ff09893dd3e8477304466a351268de5b7c03e8bee37f04dc5fd6432b97204d1b5e3b33c8a7fcb16cde22d2d0231da272e176b6258beacf144d6c8ca451f5f88e77833b7dc04e568d049398148a6a80c6c9c915ed5ee86bc7674fcaa335f76e08c620e88c51f6143d4e929e80e36943a58130632199e1df891a910cc6316a9dc463ca05a80ee6a5f9968a491d06b9f193812ba98a419a739c6e2a980dbaf52eb9b3a04d276b821aff5708d6c504031b24d37f5fa6e9952d7e85788bc5f86bf64de92d8f8815ba1b4c5036e11ed162cf8876b2e243950b3547428603448912e715a850ca8177f761cd0e24e9f65fd4f6bd8cab047c9ef37e08d52347c4cb019e9be7d5740b1fef981505679e9a9d5c9adb8f6898ac99522779f9d7e0628a71d25e652ee1310b48702622c91941ed483e3ac64cd9971d713fb7725c42c2bfb7cb33733b38a67b9d6d14f00d1310305e1e2cda56780936f7b72809eb6b2c8ffd39b8d86d40aee0a52faf54afcc7e92377acf5d4ac28c54c587c1e6125a22203fe0c3b2b5e2063a0fb56b581b97a96ec06895b819824abaecb5647c166c76f8468d6fc832ee421d85083c4eb079c57bc9711d8ef3ab09cc597329d9bc664d34a47db54beb27ebd8b7c2531e2e3a92e9975935c410aca015bd1d289d2179a3d7e755fe48956ae6f25cf3dfaaeff296964da466530fd270f0b690fd088575fb91a581dbc6407ddcebf768edd5779c968c373da8a72962363fdfcea0911f018f343900d5347d70c68f27cdf3211dd65264be0f5d22b2ae5308c6023f85cd18a31f52ed198745c9f809f3cafa7c5f4826316c2dc945e8417c38f58c8eb3981a35db1c481d2653845be17e7acb6e64108d856e58b5ccb12c242df5718f8597cb53aeef42c8fa91036a89062265f4b8f28d3fd2b2c23a68db7df1092402c7e4cff99f674ee028e39742890169ca08143ae6d1791d5728de203d3a795c6f8c1963afccd9d2474e77700cffe086c1bc683d59a67859fef5bf0cc1ddb840ecf42ae46c0d876bbcffd9c8bb86cbb6b3a2e64e705dd97ae729e22fbc7175f9620a42fdad8bb507581690274e031bb5e7f5df5a89feacca555b15e767620965ee66613d8502728516c636a177e05b2c2ee7722dd2e203b1879826b115c1b46f007934626f655bc3b7bded44165a6a9300547fb37888060069b48bb268eb87fca01dc4241327cff805aec9f3515bd11a81f65222a79275e7c775cef02dae18f864935ed6aaff57bccde4bdf2377c9e1ba458aee9a89bdd2a1915d43820ebb8cda4b2378ba2350b1635fd731f470b5e2e241fdaf50047bd84194690fcce4a403973a57330cae41b31f5c4797d00d25a28a10f4897f5e747993f820103c4c287b27cd4168a6d99873c1ca4e7c546d1831398f89bc4533c661d23c6822473984c2032da1f5d36c6eb39331a08343d3189b24812841879770cd2864bb1a9f39786458f946c2c8f2e6c5216408301c01f246c741c90f4271c5bb8593772d6c7350d73b950611605ca47f20a1d030db372c59419f07bdaf8ad09c226c7806e34ccfb579b95ca6b551e09e1c6ba22589e504475d227aa6aa05a5568af2f00f033212a71aba0f7d156e0a35b2c44f6858f556c0c298279a14b590eb4ef709300fafd7ecda1717141f90b88e6a15eefcc4224b6a349f3fa6dbd1e52c45c2e3", 0x1000}}, 0x1006)
pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x100, 0x0, 0x3)
write$sndseq(r2, &(0x7f0000000340)=[{0x4, 0x29, 0x10, 0x0, @tick=0x8, {0x7, 0x9}, {0x81, 0x8}, @connect={{0x6, 0xff}, {0x6b, 0x2}}}], 0x1c)

1m27.196472321s ago: executing program 3 (id=532):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x555)
semtimedop(0x0, &(0x7f0000000440)=[{0x0, 0x0, 0x1000}], 0xf, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
unshare(0x2c040000)

1m27.059488413s ago: executing program 3 (id=538):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x12b)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='configfs\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
move_mount(r0, &(0x7f0000000080)='./file0/file0\x00', r0, &(0x7f0000000040)='./file0/../file0\x00', 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x12f451, 0x0)

1m26.975792794s ago: executing program 3 (id=542):
r0 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r0, 0x2)
r1 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r1, 0x2)
r2 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
flock(r2, 0x1)
flock(r2, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000500)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

1m26.095298348s ago: executing program 3 (id=547):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

1m26.094901637s ago: executing program 32 (id=547):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

2.298939096s ago: executing program 5 (id=1967):
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2b, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)
ftruncate(r0, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r3, r0, 0x0, 0x578410e9)
sendfile(r3, r0, 0x0, 0x100000000)

1.964854261s ago: executing program 0 (id=1971):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
socket$key(0xf, 0x3, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x3, 0x5, 0x4}}}}]}, 0x44}}, 0x40080)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r1, {0xfff3}, {}, {0x8, 0xffe5}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.34297016s ago: executing program 5 (id=1976):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@jqfmt_vfsold}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = socket(0x200000000000011, 0x2, 0xd)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000200)={'syzkaller0\x00', @random="e5db029ea53c"})
write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000300008c71ef28ff4b"], 0xffdd)

1.177995592s ago: executing program 0 (id=1978):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = dup(0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x84, @remote, 0x4e22, 0x1, 'lblcr\x00', 0x0, 0x10000, 0x100000}, 0x2c)
setsockopt$IP_VS_SO_SET_DEL(r3, 0x0, 0x483, 0x0, 0x0)

1.038915964s ago: executing program 4 (id=1980):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @perf_config_ext={0x5}, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
ppoll(0x0, 0x0, &(0x7f00000003c0)={0x0, 0x3938700}, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000680)=ANY=[], 0x18c}}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5400000002060104000000000000000000000000050004000000000005000100060000000d000300686173683a6d61630000000005000500000000000c00078008001240f5ffffff0900020073797a30000000009e8ebf2a017193ffb8d534d1ac4aeb38d442a31301406fd5cf3302e779c9fdba2d"], 0x54}}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00')

1.038258124s ago: executing program 0 (id=1990):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)='%pS    \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)}], 0x1, 0x0, 0x0, 0x2044}, 0x60)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r0, 0x40047451, &(0x7f0000000180))

900.979796ms ago: executing program 5 (id=1981):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
setxattr$incfs_metadata(0x0, &(0x7f0000000840), 0x0, 0x0, 0x1)
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="12000000010000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r2, &(0x7f0000000040)}, 0x20)

891.757216ms ago: executing program 0 (id=1992):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000200)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x38, 0x3, r2, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}})
io_uring_enter(r2, 0x6e2, 0x600, 0x1, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r5, 0x0, 0x6}, 0x18)

815.203348ms ago: executing program 5 (id=1983):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, &(0x7f00000002c0)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000240)=0xffffffff, 0x0, 0x4)
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x4, 0x700000000000000}, 0x80c0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x58}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x30, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)

783.938278ms ago: executing program 5 (id=1984):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000880)='+}[@\x00')
r1 = socket(0x10, 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000340)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33c81cf7995313c09de00fd6ded74", "62266bd8", "1e00040000000100"}, 0x28)
write$binfmt_script(r2, &(0x7f0000000500)={'#! ', './file0'}, 0xb)
close_range(r1, r2, 0x0)

737.780729ms ago: executing program 5 (id=1985):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x14)
fcntl$setsig(r2, 0xa, 0x13)
fcntl$setlease(r2, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000200)='./file0\x00', 0x1000000)

691.85013ms ago: executing program 4 (id=1986):
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x1320, 0xffffffff, 0x3, 0x6, 0x0, 0x1, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socket$key(0xf, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_io_uring_setup(0x24fe, &(0x7f0000000300)={0x0, 0xf36e, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYRES8=r0], 0x38}}, 0x490)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FILES_UPDATE={0x14, 0x62, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x2d3e, 0x2936, 0x0, 0x0, 0x0)

612.739461ms ago: executing program 4 (id=1988):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000580)={{r0}, &(0x7f0000000500), &(0x7f0000000540)='%pS    \x00'}, 0x20)
r1 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x5885}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)

611.968411ms ago: executing program 2 (id=1989):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'macsec0\x00', 0x400})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='mm_page_alloc\x00'}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000140)={'veth0_macvtap\x00', 0x200})

596.334111ms ago: executing program 0 (id=1991):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000007c0)=@newtfilter={0x84, 0x2c, 0xd27, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x6, 0x9, 0x5, 0x80000001}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x55}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x6, 0x9, 0x3, 0x80000001}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)

530.537842ms ago: executing program 0 (id=1994):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x4040002)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={0xffffffffffffffff, 0xfffffffffffffff8, 0x0, 0x3})
r0 = socket$inet_sctp(0x2, 0x800000000000001, 0x84)
sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
sendto$inet(r0, &(0x7f0000000380)="bf", 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x4e1f, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
shutdown(r0, 0x1)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000180)={0x0, 0xc, 0x9, 0xfff}, 0x10)

464.452543ms ago: executing program 2 (id=1995):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
setxattr$incfs_metadata(0x0, &(0x7f0000000840), 0x0, 0x0, 0x1)
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="12000000010000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r2, &(0x7f0000000040)}, 0x20)

464.220123ms ago: executing program 1 (id=1996):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000340)={<r1=>r0})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000040)={r0})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000400)='netfs_rreq_ref\x00', r2, 0x0, 0x9}, 0x18)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
close(r4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000640)="0a001c008e9381064e81f7a2db44b9b545c7910006007c09", 0x18}], 0x1}, 0x40008c4)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e3, &(0x7f0000000180)={r0, r5})

463.978653ms ago: executing program 2 (id=1997):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x20}})
io_uring_enter(r2, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r0, r1, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x800)

395.106564ms ago: executing program 1 (id=1998):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r1}, &(0x7f00000004c0), &(0x7f0000000500)=r2}, 0x20)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0)
bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x2, &(0x7f0000002400)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000002340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])

380.871554ms ago: executing program 4 (id=1999):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r1, 0x0, 0x0})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
io_uring_enter(r2, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r0, r1, 0x0)

373.955015ms ago: executing program 2 (id=2000):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
ppoll(&(0x7f0000000140)=[{r0}], 0x1, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x3)

298.946076ms ago: executing program 1 (id=2001):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000, 0x0, 0x2, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x15e, &(0x7f00000003c0)=ANY=[@ANYBLOB="e33110495bfdaaaaaaaaaa0086dd6004180001283afffe800000000000000000000000000000fe8000000000000000000000000000aa"], 0x0)

290.009036ms ago: executing program 1 (id=2002):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000480)={0xa, 0xce22, 0xfffffffc, @empty, 0x9}, 0x1c)
listen(r1, 0x0)
listen(r0, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x8, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r2, 0x0)

267.556556ms ago: executing program 1 (id=2003):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x3c, 0x2c, 0xd27, 0x30bd29, 0x2, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {}, {0x9, 0xa}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_FLAGS={0x8, 0x16, 0x10}]}}]}, 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2e, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0xe8b, 0x93, 0x1, 0x3}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

253.731876ms ago: executing program 4 (id=2004):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4003, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))

183.069927ms ago: executing program 2 (id=2005):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = gettid()
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r4, &(0x7f0000000200)=""/209, 0xd1)
tkill(r3, 0x7)

182.575537ms ago: executing program 1 (id=2006):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r1 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\x01\x04\x00\x00\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x0)
pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000100)="c4", 0x1}], 0x1, 0x800000, 0xe)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
sendfile(r0, r0, 0x0, 0x24002deb)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r3 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
close(r3)

117.353508ms ago: executing program 2 (id=2007):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x1000000000000}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvmsg$unix(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)

0s ago: executing program 4 (id=2008):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
tkill(0x0, 0x12)
faccessat2(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x2, 0x1100)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

kernel console output (not intermixed with test programs):

ogical offset 0 with max blocks 1 with error 28
[   97.884704][ T6708] netlink: 28 bytes leftover after parsing attributes in process `kfree'.
[   97.894631][ T6700] EXT4-fs (loop4): This should not happen!! Data will be lost
[   97.894631][ T6700] 
[   97.894652][ T6700] EXT4-fs (loop4): Total free blocks count 0
[   97.903150][ T6708] netlink: 28 bytes leftover after parsing attributes in process `kfree'.
[   97.912844][ T6700] EXT4-fs (loop4): Free/Dirty block details
[   97.918862][ T6708] netlink: 28 bytes leftover after parsing attributes in process `kfree'.
[   97.927377][ T6700] EXT4-fs (loop4): free_blocks=2415919104
[   97.934366][ T6712] netlink: 'syz.4.1029': attribute type 10 has an invalid length.
[   97.941895][ T6700] EXT4-fs (loop4): dirty_blocks=16
[   97.947576][ T6712] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1029'.
[   97.955481][ T6700] EXT4-fs (loop4): Block reservation details
[   97.975884][ T6700] EXT4-fs (loop4): i_reserved_data_blocks=1
[   97.990946][ T6708] netlink: 28 bytes leftover after parsing attributes in process `kfree'.
[   98.000255][ T6708] netlink: 28 bytes leftover after parsing attributes in process `kfree'.
[   98.008855][ T6708] netlink: 28 bytes leftover after parsing attributes in process `kfree'.
[   98.041793][ T6708] netlink: 28 bytes leftover after parsing attributes in process `kfree'.
[   98.050413][ T6708] netlink: 28 bytes leftover after parsing attributes in process `kfree'.
[   98.062509][   T29] audit: type=1400 audit(1748745554.351:1580): avc:  denied  { create } for  pid=6716 comm="syz.5.1036" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   98.108398][   T29] audit: type=1400 audit(1748745554.401:1581): avc:  denied  { ioctl } for  pid=6718 comm="syz.4.1035" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   98.156567][ T6725] loop5: detected capacity change from 0 to 1024
[   98.176095][ T6725] ext4 filesystem being mounted at /124/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.325153][   T29] audit: type=1400 audit(1748745554.611:1582): avc:  denied  { setopt } for  pid=6732 comm="syz.4.1043" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   98.350643][   T29] audit: type=1400 audit(1748745554.621:1583): avc:  denied  { ioctl } for  pid=6738 comm="syz.1.1047" path="socket:[13707]" dev="sockfs" ino=13707 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   98.383491][ T6731] syzkaller0: entered promiscuous mode
[   98.389073][ T6731] syzkaller0: entered allmulticast mode
[   98.399721][   T29] audit: type=1400 audit(1748745554.691:1584): avc:  denied  { bind } for  pid=6741 comm="syz.1.1057" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   98.420498][   T29] audit: type=1400 audit(1748745554.691:1585): avc:  denied  { setopt } for  pid=6741 comm="syz.1.1057" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   98.587695][ T6750] @: renamed from ipvlan0
[   98.590411][   T29] audit: type=1400 audit(1748745554.881:1586): avc:  denied  { bind } for  pid=6748 comm="syz.4.1050" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   98.613380][ T6745] loop2: detected capacity change from 0 to 2048
[   98.622741][ T6745] EXT4-fs: Ignoring removed bh option
[   98.639686][ T6745] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   98.656039][ T6745] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   98.668362][ T6745] EXT4-fs (loop2): This should not happen!! Data will be lost
[   98.668362][ T6745] 
[   98.678187][ T6745] EXT4-fs (loop2): Total free blocks count 0
[   98.684259][ T6745] EXT4-fs (loop2): Free/Dirty block details
[   98.689195][ T6758] netlink: 'syz.0.1051': attribute type 13 has an invalid length.
[   98.690178][ T6745] EXT4-fs (loop2): free_blocks=2415919104
[   98.699010][ T6759] netlink: 'syz.2.1048': attribute type 10 has an invalid length.
[   98.703765][ T6745] EXT4-fs (loop2): dirty_blocks=16
[   98.703783][ T6745] EXT4-fs (loop2): Block reservation details
[   98.703794][ T6745] EXT4-fs (loop2): i_reserved_data_blocks=1
[   98.783196][ T6764] loop2: detected capacity change from 0 to 512
[   98.790892][ T6764] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   98.830436][ T6764] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.000312][ T6782] loop2: detected capacity change from 0 to 512
[   99.008728][ T6782] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   99.020530][ T6782] EXT4-fs (loop2): 1 truncate cleaned up
[   99.033105][ T6785] loop4: detected capacity change from 0 to 1024
[   99.042073][ T6785] EXT4-fs: Ignoring removed i_version option
[   99.048225][ T6785] EXT4-fs: Ignoring removed mblk_io_submit option
[   99.054945][ T6785] EXT4-fs: Ignoring removed nobh option
[   99.060558][ T6785] EXT4-fs: Ignoring removed bh option
[   99.616198][ T6831] loop4: detected capacity change from 0 to 256
[   99.696956][ T6833] loop4: detected capacity change from 0 to 512
[   99.728338][ T6833] EXT4-fs (loop4): 1 orphan inode deleted
[   99.734860][ T6833] EXT4-fs mount: 57 callbacks suppressed
[   99.734875][ T6833] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.753256][ T3651] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:48: Failed to release dquot type 1
[   99.755149][ T6833] ext4 filesystem being mounted at /218/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.795598][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.850621][ T6838] loop4: detected capacity change from 0 to 8192
[  100.027777][ T6845] veth0: entered promiscuous mode
[  100.035365][ T6845] veth0 (unregistering): left promiscuous mode
[  100.104729][ T6849] loop5: detected capacity change from 0 to 1024
[  100.111627][ T6849] EXT4-fs: Ignoring removed i_version option
[  100.118158][ T6849] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  100.130821][ T6849] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1088: Invalid block bitmap block 0 in block_group 0
[  100.148918][ T6849] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1088: Failed to acquire dquot type 0
[  100.160751][ T6849] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.1088: Freeing blocks not in datazone - block = 0, count = 4096
[  100.174696][ T6849] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1088: Invalid inode bitmap blk 0 in block_group 0
[  100.187793][ T6849] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[  100.196729][ T3628] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 0
[  100.209097][ T6849] EXT4-fs (loop5): 1 orphan inode deleted
[  100.215612][ T6849] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.245148][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.879983][ T6951] netlink: 'syz.1.1111': attribute type 1 has an invalid length.
[  100.926167][ T6951] 8021q: adding VLAN 0 to HW filter on device bond2
[  100.967452][ T6958] bond2 (unregistering): Released all slaves
[  101.040935][ T6965] hub 9-0:1.0: USB hub found
[  101.054153][ T6965] hub 9-0:1.0: 8 ports detected
[  101.337980][ T7012] ALSA: seq fatal error: cannot create timer (-19)
[  101.345324][ T6997] loop1: detected capacity change from 0 to 8192
[  101.404411][ T7027] loop4: detected capacity change from 0 to 512
[  101.418288][ T7027] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.453267][ T7027] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.488311][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.550892][ T7045] loop4: detected capacity change from 0 to 2048
[  101.567713][ T7045] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.627138][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.705890][ T7071] tipc: New replicast peer: 255.255.255.255
[  101.712075][ T7071] tipc: Enabled bearer <udp:syz2>, priority 10
[  102.493395][ T7101] loop2: detected capacity change from 0 to 2048
[  102.557029][ T7101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.649468][   T29] kauditd_printk_skb: 58 callbacks suppressed
[  102.649486][   T29] audit: type=1400 audit(1748745558.941:1641): avc:  denied  { create } for  pid=7097 comm="syz.0.1143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  102.675095][   T29] audit: type=1400 audit(1748745558.941:1642): avc:  denied  { getopt } for  pid=7097 comm="syz.0.1143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  102.715340][ T3454] tipc: Node number set to 2176726386
[  103.190362][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.317584][   T29] audit: type=1400 audit(1748745559.611:1643): avc:  denied  { read } for  pid=7120 comm="syz.0.1150" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  103.340835][   T29] audit: type=1400 audit(1748745559.611:1644): avc:  denied  { open } for  pid=7120 comm="syz.0.1150" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  103.370966][ T7121] xt_TCPMSS: Only works on TCP SYN packets
[  103.400077][   T29] audit: type=1326 audit(1748745559.691:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7124 comm="syz.1.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  103.436361][   T29] audit: type=1326 audit(1748745559.721:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7124 comm="syz.1.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  103.460272][   T29] audit: type=1326 audit(1748745559.721:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7124 comm="syz.1.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  103.484133][   T29] audit: type=1326 audit(1748745559.721:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7124 comm="syz.1.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  103.507679][   T29] audit: type=1326 audit(1748745559.721:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7124 comm="syz.1.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  103.566442][   T29] audit: type=1400 audit(1748745559.851:1650): avc:  denied  { mount } for  pid=7129 comm="syz.1.1153" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  103.591780][ T7133] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7133 comm=syz.2.1154
[  103.640535][ T7148] bond0: left promiscuous mode
[  103.645515][ T7148] bond_slave_0: left promiscuous mode
[  103.651227][ T7148] bond_slave_1: left promiscuous mode
[  103.658509][ T7148] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.681797][ T7148] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  103.701173][ T7154] __nla_validate_parse: 11 callbacks suppressed
[  103.701192][ T7154] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1157'.
[  103.714430][ T7157] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1160'.
[  103.716691][ T7154] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1157'.
[  103.763338][ T7157] bond2: entered promiscuous mode
[  103.768527][ T7157] bond2: entered allmulticast mode
[  103.781164][ T7157] 8021q: adding VLAN 0 to HW filter on device bond2
[  103.792026][ T7161] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7161 comm=syz.2.1161
[  103.822672][ T7167] sd 0:0:1:0: device reset
[  103.964591][ T7192] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  103.973019][ T7192] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  103.981387][ T7192] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  103.989698][ T7192] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  104.075297][ T7210] loop5: detected capacity change from 0 to 512
[  104.082320][ T7210] EXT4-fs: Ignoring removed orlov option
[  104.089131][ T7210] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  104.100748][ T7210] EXT4-fs (loop5): orphan cleanup on readonly fs
[  104.108031][ T7210] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1173: bg 0: block 248: padding at end of block bitmap is not set
[  104.123248][ T7210] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1173: Failed to acquire dquot type 1
[  104.137042][ T7210] EXT4-fs (loop5): 1 truncate cleaned up
[  104.143486][ T7210] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  104.157260][ T7210] EXT4-fs (loop5): shut down requested (2)
[  104.163432][ T7210] EXT4-fs: Ignoring removed orlov option
[  104.169485][ T7210] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  104.192815][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.331601][ T7248] bridge: RTM_NEWNEIGH with invalid ether address
[  104.616783][ T7293] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  104.709447][ T7306] loop2: detected capacity change from 0 to 1024
[  104.734808][ T7306] EXT4-fs: Ignoring removed orlov option
[  104.749812][ T7306] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  104.776052][ T7306] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.926416][ T7318] infiniband syz2: set down
[  104.931065][ T7318] infiniband syz2: added veth0_to_bond
[  104.955541][ T7318] RDS/IB: syz2: added
[  104.962075][ T7318] smc: adding ib device syz2 with port count 1
[  104.973123][ T7318] smc:    ib device syz2 port 1 has pnetid 
[  105.050259][ T7327] loop1: detected capacity change from 0 to 128
[  105.138773][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.138773][ T7327] loop1: rw=2049, sector=129, nr_sectors = 8 limit=128
[  105.208583][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.208583][ T7327] loop1: rw=2049, sector=145, nr_sectors = 8 limit=128
[  105.224176][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.238262][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.238262][ T7327] loop1: rw=2049, sector=161, nr_sectors = 8 limit=128
[  105.298071][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.298071][ T7327] loop1: rw=2049, sector=177, nr_sectors = 8 limit=128
[  105.362849][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.362849][ T7327] loop1: rw=2049, sector=193, nr_sectors = 8 limit=128
[  105.378838][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.378838][ T7327] loop1: rw=2049, sector=209, nr_sectors = 8 limit=128
[  105.392592][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.392592][ T7327] loop1: rw=2049, sector=225, nr_sectors = 8 limit=128
[  105.407620][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.407620][ T7327] loop1: rw=2049, sector=241, nr_sectors = 8 limit=128
[  105.454023][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.454023][ T7327] loop1: rw=2049, sector=257, nr_sectors = 8 limit=128
[  105.482514][ T7327] syz.1.1186: attempt to access beyond end of device
[  105.482514][ T7327] loop1: rw=2049, sector=273, nr_sectors = 8 limit=128
[  105.924418][ T4542] IPVS: starting estimator thread 0...
[  106.015163][ T7356] IPVS: using max 1680 ests per chain, 84000 per kthread
[  106.335137][ T7362] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1199'.
[  106.366322][ T7326] syz.1.1186 (7326) used greatest stack depth: 5920 bytes left
[  106.382897][ T7363] xt_hashlimit: max too large, truncated to 1048576
[  106.414939][ T7365] bond0: entered promiscuous mode
[  106.431763][ T7365] batadv0: entered promiscuous mode
[  106.445633][ T7365] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  106.455602][ T7365] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  106.495447][ T7365] 8021q: adding VLAN 0 to HW filter on device hsr1
[  106.510886][ T7365] bond0: left promiscuous mode
[  106.539575][ T7365] batadv0: left promiscuous mode
[  106.634857][ T7394] netlink: 'syz.0.1209': attribute type 12 has an invalid length.
[  106.688100][ T7402] rdma_op ffff88811ac8d980 conn xmit_rdma 0000000000000000
[  106.740128][ T7410] loop4: detected capacity change from 0 to 512
[  106.753095][ T7410] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  106.765914][ T7410] EXT4-fs (loop4): 1 truncate cleaned up
[  106.772061][ T7410] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.826261][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.870287][ T7432] netlink: 'syz.4.1216': attribute type 1 has an invalid length.
[  107.386742][ T7495] xt_hashlimit: size too large, truncated to 1048576
[  107.397490][ T7498] veth0: entered promiscuous mode
[  107.403095][ T7498] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1226'.
[  107.446273][ T7498] veth0 (unregistering): left promiscuous mode
[  107.724589][   T29] kauditd_printk_skb: 223 callbacks suppressed
[  107.724657][   T29] audit: type=1400 audit(1748745564.021:1872): avc:  denied  { bind } for  pid=7517 comm="syz.0.1231" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  107.789808][   T29] audit: type=1400 audit(1748745564.051:1873): avc:  denied  { read } for  pid=7520 comm="syz.2.1232" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  107.824842][   T29] audit: type=1326 audit(1748745564.121:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7526 comm="syz.0.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  107.880578][   T29] audit: type=1326 audit(1748745564.121:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7526 comm="syz.0.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  107.904338][   T29] audit: type=1326 audit(1748745564.151:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7526 comm="syz.0.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  107.927915][   T29] audit: type=1326 audit(1748745564.151:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7526 comm="syz.0.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  107.951421][   T29] audit: type=1326 audit(1748745564.151:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7526 comm="syz.0.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  107.975075][   T29] audit: type=1326 audit(1748745564.151:1879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7526 comm="syz.0.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  107.998709][   T29] audit: type=1326 audit(1748745564.151:1880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7526 comm="syz.0.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  108.022603][   T29] audit: type=1326 audit(1748745564.151:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7526 comm="syz.0.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  108.229013][ T7569] netlink: 'syz.1.1241': attribute type 10 has an invalid length.
[  108.315595][ T7577] loop1: detected capacity change from 0 to 256
[  108.332111][ T7577] block device autoloading is deprecated and will be removed.
[  108.477429][ T7588] pim6reg1: entered promiscuous mode
[  108.482786][ T7588] pim6reg1: entered allmulticast mode
[  108.590407][ T7592] loop1: detected capacity change from 0 to 256
[  109.258964][ T7653] loop4: detected capacity change from 0 to 1024
[  109.275948][ T7653] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.291700][ T7653] ext4 filesystem being mounted at /257/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.410394][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.682418][ T7721] loop1: detected capacity change from 0 to 1024
[  109.683315][ T7728] loop5: detected capacity change from 0 to 512
[  109.689365][ T7721] EXT4-fs: Ignoring removed orlov option
[  109.706787][ T7721] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.722814][ T7728] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.735754][ T7728] ext4 filesystem being mounted at /164/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  109.753648][ T7728] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.1267: corrupted inode contents
[  109.768617][ T7728] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm syz.5.1267: mark_inode_dirty error
[  109.784348][ T7728] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.1267: corrupted inode contents
[  109.797535][ T7728] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.1267: mark_inode_dirty error
[  109.865700][ T7728] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.1267: corrupted inode contents
[  109.877961][ T7728] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm syz.5.1267: mark_inode_dirty error
[  109.889841][ T7728] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.1267: corrupted inode contents
[  109.905156][ T7728] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.1267: corrupted inode contents
[  109.917500][ T7728] EXT4-fs error (device loop5): ext4_setent:3643: inode #2: comm syz.5.1267: mark_inode_dirty error
[  109.947549][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.368904][ T7744] netlink: 'syz.5.1270': attribute type 4 has an invalid length.
[  110.510159][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.546720][ T7764] loop5: detected capacity change from 0 to 1024
[  110.559431][ T7764] EXT4-fs: Ignoring removed nobh option
[  110.574864][ T7764] EXT4-fs: Ignoring removed bh option
[  110.597570][ T7764] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.683882][ T7777] syzkaller0: entered promiscuous mode
[  110.689603][ T7777] syzkaller0: entered allmulticast mode
[  110.786991][ T7791] netlink: 87 bytes leftover after parsing attributes in process `syz.0.1274'.
[  110.812310][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.073949][ T7839] loop2: detected capacity change from 0 to 512
[  111.107690][ T7839] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.121317][ T7839] ext4 filesystem being mounted at /244/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.162566][ T7839] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1282: corrupted inode contents
[  111.175838][ T7839] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.1282: mark_inode_dirty error
[  111.197271][ T7839] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1282: corrupted inode contents
[  111.220732][ T7856] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1282: corrupted inode contents
[  111.233525][ T7856] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.1282: mark_inode_dirty error
[  111.256759][ T7856] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1282: corrupted inode contents
[  111.272165][ T7856] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.1282: mark_inode_dirty error
[  111.285408][ T7856] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1282: corrupted inode contents
[  111.309032][ T7856] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.1282: mark_inode_dirty error
[  111.363718][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.643715][ T7902] loop2: detected capacity change from 0 to 512
[  111.654523][ T7902] EXT4-fs: Ignoring removed nomblk_io_submit option
[  111.679783][ T7902] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.707417][ T7902] ext4 filesystem being mounted at /245/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.721400][ T7903] syzkaller0: entered promiscuous mode
[  111.727041][ T7903] syzkaller0: entered allmulticast mode
[  111.752719][ T7909] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.809317][ T7909] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.877751][ T7909] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.928837][ T7909] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.969576][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.005225][ T7909] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  112.021486][ T7909] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  112.043558][ T7909] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  112.056864][ T7909] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  112.096976][ T7938] @: renamed from ipvlan0
[  112.158467][ T7942] netlink: 'syz.5.1295': attribute type 10 has an invalid length.
[  112.178891][ T7942] team0 (unregistering): Port device team_slave_0 removed
[  112.189717][ T7942] team0 (unregistering): Port device team_slave_1 removed
[  112.509882][ T7953] loop1: detected capacity change from 0 to 512
[  112.530453][ T7953] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  112.566697][ T7953] EXT4-fs (loop1): 1 truncate cleaned up
[  112.574435][ T7953] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.608350][ T7953] EXT4-fs error (device loop1): ext4_lookup:1787: inode #16: comm syz.1.1299: iget: bad i_size value: 5497558147880
[  112.639329][ T7953] netlink: 'syz.1.1299': attribute type 1 has an invalid length.
[  112.675668][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.795512][ T7961] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1301'.
[  113.017014][ T7968] loop1: detected capacity change from 0 to 128
[  113.033156][ T7968] bio_check_eod: 2 callbacks suppressed
[  113.033241][ T7968] syz.1.1307: attempt to access beyond end of device
[  113.033241][ T7968] loop1: rw=2049, sector=145, nr_sectors = 8 limit=128
[  113.055067][ T7968] syz.1.1307: attempt to access beyond end of device
[  113.055067][ T7968] loop1: rw=34817, sector=113, nr_sectors = 16 limit=128
[  113.113778][ T7968] syz.1.1307: attempt to access beyond end of device
[  113.113778][ T7968] loop1: rw=34817, sector=145, nr_sectors = 8 limit=128
[  113.156734][ T7974] loop2: detected capacity change from 0 to 2048
[  113.163412][ T7974] EXT4-fs: Ignoring removed bh option
[  113.176889][ T7974] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.193484][ T7974] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  113.209851][ T7974] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  113.222192][ T7974] EXT4-fs (loop2): This should not happen!! Data will be lost
[  113.222192][ T7974] 
[  113.231994][ T7974] EXT4-fs (loop2): Total free blocks count 0
[  113.238196][ T7974] EXT4-fs (loop2): Free/Dirty block details
[  113.244165][ T7974] EXT4-fs (loop2): free_blocks=2415919104
[  113.249911][ T7974] EXT4-fs (loop2): dirty_blocks=16
[  113.255135][ T7974] EXT4-fs (loop2): Block reservation details
[  113.261187][ T7974] EXT4-fs (loop2): i_reserved_data_blocks=1
[  113.308042][ T7974] netlink: 'syz.2.1309': attribute type 10 has an invalid length.
[  113.316049][ T7974] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1309'.
[  113.328308][   T29] kauditd_printk_skb: 228 callbacks suppressed
[  113.328326][   T29] audit: type=1326 audit(1748745569.621:2110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.358427][   T29] audit: type=1326 audit(1748745569.621:2111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.359710][   T29] audit: type=1326 audit(1748745569.621:2112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.359783][   T29] audit: type=1326 audit(1748745569.621:2113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.359874][   T29] audit: type=1326 audit(1748745569.621:2114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.359908][   T29] audit: type=1326 audit(1748745569.621:2115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.359942][   T29] audit: type=1326 audit(1748745569.621:2116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.359991][   T29] audit: type=1326 audit(1748745569.621:2117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.360026][   T29] audit: type=1326 audit(1748745569.621:2118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.360060][   T29] audit: type=1326 audit(1748745569.621:2119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7981 comm="syz.4.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  113.360923][ T7980] syzkaller0: entered promiscuous mode
[  113.579001][ T7980] syzkaller0: entered allmulticast mode
[  113.619000][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.641484][ T7988] loop4: detected capacity change from 0 to 512
[  113.659306][ T7988] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  113.670808][ T7988] EXT4-fs (loop4): 1 truncate cleaned up
[  113.678096][ T7988] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.695621][ T7988] EXT4-fs error (device loop4): ext4_lookup:1787: inode #16: comm syz.4.1314: iget: bad i_size value: 5497558147880
[  113.711781][ T7988] netlink: 'syz.4.1314': attribute type 1 has an invalid length.
[  113.737838][ T7998] loop0: detected capacity change from 0 to 512
[  113.746703][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.751508][ T7995] loop2: detected capacity change from 0 to 1024
[  113.762557][ T7995] EXT4-fs: Ignoring removed i_version option
[  113.769089][ T7995] EXT4-fs: Ignoring removed mblk_io_submit option
[  113.776045][ T7995] EXT4-fs: Ignoring removed nobh option
[  113.782079][ T7995] EXT4-fs: Ignoring removed bh option
[  113.789271][ T7998] EXT4-fs (loop0): 1 orphan inode deleted
[  113.795651][ T7998] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.808337][ T3628] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 1
[  113.810407][ T7998] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.835328][ T7995] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.888310][ T8016] bond0: entered promiscuous mode
[  113.892940][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.893441][ T8016] bond_slave_0: entered promiscuous mode
[  113.908417][ T8016] bond_slave_1: entered promiscuous mode
[  113.916064][ T8016] batadv0: entered promiscuous mode
[  113.919597][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.921969][ T8016] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  113.941270][ T8016] 8021q: adding VLAN 0 to HW filter on device hsr1
[  113.957612][ T8016] bond0: left promiscuous mode
[  113.962472][ T8016] bond_slave_0: left promiscuous mode
[  113.968122][ T8016] bond_slave_1: left promiscuous mode
[  113.974893][ T8016] batadv0: left promiscuous mode
[  114.016909][ T8031] loop0: detected capacity change from 0 to 256
[  114.196870][ T8065] loop2: detected capacity change from 0 to 512
[  114.204332][ T8065] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  114.217384][ T8065] EXT4-fs (loop2): 1 truncate cleaned up
[  114.223620][ T8065] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.292196][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.910250][ T8137] loop4: detected capacity change from 0 to 2048
[  114.917346][ T8137] EXT4-fs: Ignoring removed bh option
[  114.936125][ T8137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.952874][ T8137] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  114.968222][ T8137] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  114.980975][ T8137] EXT4-fs (loop4): This should not happen!! Data will be lost
[  114.980975][ T8137] 
[  114.990759][ T8137] EXT4-fs (loop4): Total free blocks count 0
[  114.996814][ T8137] EXT4-fs (loop4): Free/Dirty block details
[  115.003006][ T8137] EXT4-fs (loop4): free_blocks=2415919104
[  115.005032][ T8144] netlink: 'syz.4.1325': attribute type 10 has an invalid length.
[  115.008764][ T8137] EXT4-fs (loop4): dirty_blocks=16
[  115.008781][ T8137] EXT4-fs (loop4): Block reservation details
[  115.017063][ T8144] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1325'.
[  115.022102][ T8137] EXT4-fs (loop4): i_reserved_data_blocks=1
[  115.071138][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.195356][ T8148] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1327'.
[  115.209485][ T8148] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1327'.
[  115.325352][ T8156] loop1: detected capacity change from 0 to 8192
[  115.475705][ T8166] loop1: detected capacity change from 0 to 256
[  115.492157][ T8168] syzkaller0: entered promiscuous mode
[  115.497821][ T8168] syzkaller0: entered allmulticast mode
[  115.818003][ T8173] loop1: detected capacity change from 0 to 1024
[  115.838713][ T8175] loop0: detected capacity change from 0 to 512
[  115.847730][ T8173] EXT4-fs: Ignoring removed orlov option
[  115.857945][ T8175] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  115.872897][ T8173] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  115.947461][ T8175] EXT4-fs (loop0): 1 truncate cleaned up
[  115.955040][ T8173] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.969668][ T8175] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.995311][ T8175] EXT4-fs error (device loop0): ext4_lookup:1787: inode #16: comm syz.0.1336: iget: bad i_size value: 5497558147880
[  116.033329][ T8175] netlink: 'syz.0.1336': attribute type 1 has an invalid length.
[  116.136063][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.192009][ T8190] ALSA: seq fatal error: cannot create timer (-19)
[  116.377642][ T8207] bond0: entered promiscuous mode
[  116.382789][ T8207] bond_slave_0: entered promiscuous mode
[  116.388685][ T8207] bond_slave_1: entered promiscuous mode
[  116.426401][ T8210] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  116.469571][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.495020][ T8207] batadv0: entered promiscuous mode
[  116.504192][ T8207] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  116.526091][ T8217] loop1: detected capacity change from 0 to 1024
[  116.533009][ T8217] EXT4-fs: Ignoring removed i_version option
[  116.534803][ T8207] 8021q: adding VLAN 0 to HW filter on device hsr1
[  116.546514][ T8217] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  116.558176][ T8207] bond0: left promiscuous mode
[  116.563015][ T8207] bond_slave_0: left promiscuous mode
[  116.569010][ T8207] bond_slave_1: left promiscuous mode
[  116.580479][ T8217] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.1355: Invalid block bitmap block 0 in block_group 0
[  116.595809][ T8207] batadv0: left promiscuous mode
[  116.602057][ T8217] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1355: Failed to acquire dquot type 0
[  116.616665][ T8217] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.1355: Freeing blocks not in datazone - block = 0, count = 4096
[  116.631239][ T8217] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.1355: Invalid inode bitmap blk 0 in block_group 0
[  116.654826][ T3628] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 0
[  116.668508][ T8217] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  116.677678][ T8217] EXT4-fs (loop1): 1 orphan inode deleted
[  116.685359][ T8217] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.714448][ T8223] ALSA: seq fatal error: cannot create timer (-19)
[  116.747091][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.893284][ T8237] loop2: detected capacity change from 0 to 8192
[  116.956649][ T8239] netlink: 'syz.2.1364': attribute type 10 has an invalid length.
[  116.968549][ T8239] team0 (unregistering): Port device team_slave_0 removed
[  116.978298][ T8239] team0 (unregistering): Port device team_slave_1 removed
[  116.988858][ T8239] team0 (unregistering): Port device geneve1 removed
[  117.410747][ T8245] loop4: detected capacity change from 0 to 1024
[  117.421262][ T8247] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  117.428793][ T8245] EXT4-fs: Ignoring removed orlov option
[  117.442893][ T8245] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  117.514132][ T8249] syzkaller0: entered promiscuous mode
[  117.519737][ T8249] syzkaller0: entered allmulticast mode
[  117.537758][ T8245] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.676092][ T8256] rdma_op ffff888130e58580 conn xmit_rdma 0000000000000000
[  117.696218][ T8259] ALSA: seq fatal error: cannot create timer (-19)
[  117.741215][ T8264] batadv0: entered promiscuous mode
[  117.751363][ T8264] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  117.763547][ T8264] 8021q: adding VLAN 0 to HW filter on device hsr1
[  117.773670][ T8264] batadv0: left promiscuous mode
[  117.845020][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.906662][ T8271] loop4: detected capacity change from 0 to 1024
[  117.916157][ T8273] loop0: detected capacity change from 0 to 512
[  117.923433][ T8271] EXT4-fs: Ignoring removed i_version option
[  117.929632][ T8273] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  117.940292][ T8271] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  117.962053][ T8271] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.1372: Invalid block bitmap block 0 in block_group 0
[  117.985553][ T8273] EXT4-fs (loop0): 1 truncate cleaned up
[  118.013779][ T8271] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1372: Failed to acquire dquot type 0
[  118.033257][ T8273] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.068838][ T8271] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.1372: Freeing blocks not in datazone - block = 0, count = 4096
[  118.082932][ T8271] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.1372: Invalid inode bitmap blk 0 in block_group 0
[  118.101592][ T3635] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:33: Failed to release dquot type 0
[  118.104022][ T8271] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  118.134610][ T8271] EXT4-fs (loop4): 1 orphan inode deleted
[  118.140910][ T8271] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.201132][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.213376][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.277886][ T8294] netlink: 'syz.2.1384': attribute type 1 has an invalid length.
[  118.282977][ T8293] loop0: detected capacity change from 0 to 1024
[  118.298059][ T8293] EXT4-fs: Ignoring removed orlov option
[  118.305369][ T8294] 8021q: adding VLAN 0 to HW filter on device bond3
[  118.321718][ T8294] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1384'.
[  118.333710][ T8294] vlan0: entered promiscuous mode
[  118.338943][ T8294] bond3: entered promiscuous mode
[  118.345156][ T8294] dummy0: entered promiscuous mode
[  118.346946][ T8293] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.353708][ T8294] bond3: (slave dummy0): making interface the new active one
[  118.371348][ T8304] loop5: detected capacity change from 0 to 128
[  118.384595][ T8294] bond3: (slave dummy0): Enslaving as an active interface with an up link
[  118.450990][ T8307] loop4: detected capacity change from 0 to 1024
[  118.534553][   T29] kauditd_printk_skb: 464 callbacks suppressed
[  118.534573][   T29] audit: type=1400 audit(1748745574.761:2577): avc:  denied  { read } for  pid=8308 comm="syz.2.1390" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  118.571649][ T8315] pim6reg1: entered promiscuous mode
[  118.577075][ T8315] pim6reg1: entered allmulticast mode
[  118.590356][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.605027][ T8307] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.633834][ T8320] loop2: detected capacity change from 0 to 1024
[  118.642231][ T8320] EXT4-fs (loop2): can't mount with both data=journal and delalloc
[  118.704692][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.753741][ T8328] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1395'.
[  118.860091][ T8328] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8328 comm=syz.4.1395
[  118.911843][ T8340] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1401'.
[  118.939516][ T8341] loop5: detected capacity change from 0 to 256
[  118.957430][ T8341] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  118.979225][ T8343] loop0: detected capacity change from 0 to 1024
[  119.026970][ T8343] EXT4-fs: Ignoring removed nobh option
[  119.032611][ T8343] EXT4-fs: Ignoring removed bh option
[  119.072991][ T8350] loop2: detected capacity change from 0 to 128
[  119.114808][ T8350] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  119.148231][ T8353] pim6reg1: entered promiscuous mode
[  119.153756][ T8353] pim6reg1: entered allmulticast mode
[  119.166686][ T8350] FAT-fs (loop2): error, invalid access to FAT (entry 0x0affffff)
[  119.174640][ T8350] FAT-fs (loop2): Filesystem has been set read-only
[  119.184697][ T8350] FAT-fs (loop2): error, invalid access to FAT (entry 0x0affffff)
[  119.231047][ T3325] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  119.241935][ T8343] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.356841][ T8361] xt_hashlimit: size too large, truncated to 1048576
[  119.403298][ T8363] loop4: detected capacity change from 0 to 2048
[  119.445854][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.456268][ T8363] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.488048][   T29] audit: type=1400 audit(1748745575.781:2578): avc:  denied  { block_suspend } for  pid=8362 comm="syz.4.1411" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  119.595950][ T8375] pim6reg1: entered promiscuous mode
[  119.601338][ T8375] pim6reg1: entered allmulticast mode
[  119.608835][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.883369][   T29] audit: type=1400 audit(1748745576.171:2579): avc:  denied  { create } for  pid=8420 comm="syz.4.1421" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  119.927190][   T29] audit: type=1400 audit(1748745576.221:2580): avc:  denied  { bind } for  pid=8420 comm="syz.4.1421" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  120.220992][ T8452] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  120.238030][ T8453] loop5: detected capacity change from 0 to 2048
[  120.244810][ T8455] loop0: detected capacity change from 0 to 128
[  120.265784][ T8453] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  120.368723][   T29] audit: type=1400 audit(1748745576.661:2581): avc:  denied  { create } for  pid=8470 comm="syz.1.1429" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  120.393875][ T8476] loop0: detected capacity change from 0 to 512
[  120.477857][ T8473] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  120.479139][   T29] audit: type=1400 audit(1748745576.691:2582): avc:  denied  { setopt } for  pid=8470 comm="syz.1.1429" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  120.512332][   T29] audit: type=1400 audit(1748745576.731:2583): avc:  denied  { connect } for  pid=8488 comm="syz.2.1432" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  120.546942][ T8476] EXT4-fs (loop0): orphan cleanup on readonly fs
[  120.547850][ T8473] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1924 with error 28
[  120.565963][ T8473] EXT4-fs (loop5): This should not happen!! Data will be lost
[  120.565963][ T8473] 
[  120.575701][ T8473] EXT4-fs (loop5): Total free blocks count 0
[  120.581720][ T8473] EXT4-fs (loop5): Free/Dirty block details
[  120.582741][   T29] audit: type=1400 audit(1748745576.871:2584): avc:  denied  { watch } for  pid=8501 comm="syz.4.1433" path="/297" dev="tmpfs" ino=1605 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  120.587680][ T8473] EXT4-fs (loop5): free_blocks=2415919104
[  120.610715][ T8476] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1430: bg 0: block 248: padding at end of block bitmap is not set
[  120.615600][ T8473] EXT4-fs (loop5): dirty_blocks=1936
[  120.631729][ T8476] Quota error (device loop0): write_blk: dquota write failed
[  120.635502][ T8473] EXT4-fs (loop5): Block reservation details
[  120.642866][ T8476] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  120.648859][ T8473] EXT4-fs (loop5): i_reserved_data_blocks=121
[  120.665059][ T8476] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1430: Failed to acquire dquot type 1
[  120.676743][ T8498] loop1: detected capacity change from 0 to 1024
[  120.677578][ T8476] EXT4-fs (loop0): 1 truncate cleaned up
[  120.694478][ T8476] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  120.714499][ T8476] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  120.740763][ T8476] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  120.746776][ T8498] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1431: Allocating blocks 449-513 which overlap fs metadata
[  120.783102][ T8486] EXT4-fs (loop1): pa ffff888104a45620: logic 48, phys. 177, len 21
[  120.791216][ T8486] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[  120.826854][ T3640] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  120.858080][ T8513] loop1: detected capacity change from 0 to 512
[  120.870087][ T8513] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  120.931903][ T8513] ext4 filesystem being mounted at /294/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  120.944873][ T8525] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  120.955316][ T8525] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  121.066674][ T8530] syzkaller0: entered promiscuous mode
[  121.072221][ T8530] syzkaller0: entered allmulticast mode
[  121.510023][ T8560] loop0: detected capacity change from 0 to 512
[  121.523393][ T8563] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1454'.
[  121.534313][ T8560] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.552068][ T8563] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8563 comm=syz.1.1454
[  121.610520][ T8570] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  121.626867][ T8570] tipc: Disabling bearer <eth:syzkaller0>
[  121.688607][ T8577] xt_TCPMSS: Only works on TCP SYN packets
[  121.767471][ T8587] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1473'.
[  121.918009][ T8597] pim6reg1: entered promiscuous mode
[  121.923406][ T8597] pim6reg1: entered allmulticast mode
[  121.987725][ T8599] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1467'.
[  121.996833][ T8599] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1467'.
[  122.093718][ T8609] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1470'.
[  122.110889][ T8609] bond2: entered promiscuous mode
[  122.116018][ T8609] bond2: entered allmulticast mode
[  122.121409][ T8609] 8021q: adding VLAN 0 to HW filter on device bond2
[  122.180246][ T8616] netlink: 'syz.5.1474': attribute type 1 has an invalid length.
[  122.195547][ T8616] 8021q: adding VLAN 0 to HW filter on device bond3
[  122.221795][ T8616] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1474'.
[  122.234671][ T8616] bond3 (unregistering): Released all slaves
[  122.318032][ T8621] loop5: detected capacity change from 0 to 2048
[  122.669901][ T8646] bridge0: port 3(syz_tun) entered blocking state
[  122.676733][ T8646] bridge0: port 3(syz_tun) entered disabled state
[  122.683512][ T8646] syz_tun: entered allmulticast mode
[  122.690719][ T8646] syz_tun: entered promiscuous mode
[  122.696547][ T8646] bridge0: port 3(syz_tun) entered blocking state
[  122.703130][ T8646] bridge0: port 3(syz_tun) entered forwarding state
[  122.718589][ T8646] syz_tun: left allmulticast mode
[  122.723721][ T8646] syz_tun: left promiscuous mode
[  122.729278][ T8646] bridge0: port 3(syz_tun) entered disabled state
[  122.739805][ T8646] bridge_slave_0: left allmulticast mode
[  122.745586][ T8646] bridge_slave_0: left promiscuous mode
[  122.751362][ T8646] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.759714][ T8646] bridge_slave_1: left allmulticast mode
[  122.765479][ T8646] bridge_slave_1: left promiscuous mode
[  122.771392][ T8646] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.780759][ T8646] bond0: (slave bond_slave_0): Releasing backup interface
[  122.789626][ T8646] bond0: (slave bond_slave_1): Releasing backup interface
[  122.799383][ T8646] team0: Port device team_slave_0 removed
[  122.807362][ T8646] team0: Port device team_slave_1 removed
[  122.813713][ T8646] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.821502][ T8646] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.829907][ T8646] bond1: (slave ip6erspan0): Releasing active interface
[  122.887989][ T8648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8648 comm=syz.0.1486
[  122.932051][ T8652] loop0: detected capacity change from 0 to 1024
[  122.939055][ T8652] EXT4-fs: Ignoring removed orlov option
[  123.278996][ T8657] netlink: 'syz.5.1489': attribute type 1 has an invalid length.
[  123.329881][ T8659] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1489'.
[  123.387153][ T8658] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  123.443047][ T8657] 8021q: adding VLAN 0 to HW filter on device bond3
[  123.469495][ T8659] vlan1: entered promiscuous mode
[  123.474773][ T8659] bond3: entered promiscuous mode
[  123.500028][ T8661] dummy0: entered promiscuous mode
[  123.517513][ T8664] loop1: detected capacity change from 0 to 2048
[  123.521715][ T8661] bond3: (slave dummy0): making interface the new active one
[  123.535320][ T8661] bond3: (slave dummy0): Enslaving as an active interface with an up link
[  123.577378][ T8675] loop4: detected capacity change from 0 to 512
[  123.589278][ T8670] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1494'.
[  123.598543][ T8670] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1494'.
[  123.642510][ T8678] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1496'.
[  123.651719][ T8678] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1496'.
[  123.651909][ T8675] loop4: detected capacity change from 0 to 2048
[  123.669673][ T8675] EXT4-fs: Ignoring removed bh option
[  123.753276][ T8688] loop2: detected capacity change from 0 to 1024
[  123.957639][   T29] kauditd_printk_skb: 70 callbacks suppressed
[  123.957654][   T29] audit: type=1400 audit(1748745580.251:2654): avc:  denied  { wake_alarm } for  pid=8712 comm="syz.5.1508" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  124.002801][ T8715] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  124.011740][ T8715] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  124.080021][ T8710] loop1: detected capacity change from 0 to 512
[  124.118232][   T29] audit: type=1326 audit(1748745580.411:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.135807][ T8696] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  124.164933][ T8696] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 641 with error 28
[  124.177638][ T8696] EXT4-fs (loop4): This should not happen!! Data will be lost
[  124.177638][ T8696] 
[  124.184660][   T29] audit: type=1326 audit(1748745580.441:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.187309][ T8696] EXT4-fs (loop4): Total free blocks count 0
[  124.187324][ T8696] EXT4-fs (loop4): Free/Dirty block details
[  124.210814][   T29] audit: type=1326 audit(1748745580.441:2657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.216792][ T8696] EXT4-fs (loop4): free_blocks=2415919104
[  124.222733][   T29] audit: type=1326 audit(1748745580.441:2658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.246298][ T8696] EXT4-fs (loop4): dirty_blocks=8224
[  124.252133][   T29] audit: type=1326 audit(1748745580.441:2659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.275720][ T8696] EXT4-fs (loop4): Block reservation details
[  124.275737][ T8696] EXT4-fs (loop4): i_reserved_data_blocks=514
[  124.316970][   T29] audit: type=1326 audit(1748745580.441:2660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.340613][   T29] audit: type=1326 audit(1748745580.441:2661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.364245][   T29] audit: type=1326 audit(1748745580.441:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.388176][   T29] audit: type=1326 audit(1748745580.441:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8724 comm="syz.5.1512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  124.413383][ T8710] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  124.422488][ T3631] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  124.435091][ T3631] EXT4-fs (loop4): This should not happen!! Data will be lost
[  124.435091][ T3631] 
[  124.498595][ T8728] loop5: detected capacity change from 0 to 1024
[  124.505632][ T8728] EXT4-fs: Ignoring removed orlov option
[  124.816255][ T8735] loop0: detected capacity change from 0 to 1024
[  124.909365][ T8749] rdma_op ffff88810124c180 conn xmit_rdma 0000000000000000
[  124.999442][ T8752] loop0: detected capacity change from 0 to 2048
[  125.393526][ T8756] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1532'.
[  125.467080][ T8769] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1523'.
[  125.511939][ T8775] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1524'.
[  125.593446][ T8783] netlink: 'syz.5.1526': attribute type 12 has an invalid length.
[  125.620751][ T8785] xt_hashlimit: max too large, truncated to 1048576
[  125.648389][ T8787] loop5: detected capacity change from 0 to 1024
[  125.655318][ T8787] EXT4-fs: Ignoring removed orlov option
[  125.661397][ T8787] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  126.075760][ T8807] loop5: detected capacity change from 0 to 1024
[  126.339370][ T8819] loop5: detected capacity change from 0 to 512
[  126.347052][ T8819] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  126.359820][ T8819] EXT4-fs (loop5): 1 truncate cleaned up
[  126.437533][ T8826] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  126.498786][ T8826] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  126.575756][ T8826] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  126.627238][ T8826] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  126.697243][ T8826] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  126.727797][ T8826] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  126.762043][ T8826] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  126.798275][ T8826] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  127.033368][ T8847] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  127.088583][ T8851] tipc: Disabling bearer <eth:syzkaller0>
[  127.250489][ T8857] pim6reg1: entered promiscuous mode
[  127.255958][ T8857] pim6reg1: entered allmulticast mode
[  127.371825][ T8866] loop2: detected capacity change from 0 to 2048
[  127.468734][ T8879] 9pnet_fd: p9_fd_create_tcp (8879): problem connecting socket to 127.0.0.1
[  127.601402][ T8880] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  127.624140][ T8880] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1070 with error 28
[  127.636714][ T8880] EXT4-fs (loop2): This should not happen!! Data will be lost
[  127.636714][ T8880] 
[  127.646469][ T8880] EXT4-fs (loop2): Total free blocks count 0
[  127.652575][ T8880] EXT4-fs (loop2): Free/Dirty block details
[  127.658605][ T8880] EXT4-fs (loop2): free_blocks=2415919104
[  127.664598][ T8880] EXT4-fs (loop2): dirty_blocks=1072
[  127.669900][ T8880] EXT4-fs (loop2): Block reservation details
[  127.676043][ T8880] EXT4-fs (loop2): i_reserved_data_blocks=67
[  127.876185][ T3633] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  127.888786][ T3633] EXT4-fs (loop2): This should not happen!! Data will be lost
[  127.888786][ T3633] 
[  127.990142][ T8903] random: crng reseeded on system resumption
[  128.398687][ T8935] syzkaller0: entered promiscuous mode
[  128.404341][ T8935] syzkaller0: entered allmulticast mode
[  129.144440][ T9015] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9015 comm=syz.0.1593
[  129.157177][ T9015] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9015 comm=syz.0.1593
[  129.199333][ T9021] loop0: detected capacity change from 0 to 512
[  129.206906][ T9021] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  129.225910][ T9021] EXT4-fs (loop0): 1 truncate cleaned up
[  129.478269][ T9061] loop5: detected capacity change from 0 to 2048
[  129.613816][ T9075] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  129.632106][ T9075] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1310 with error 28
[  129.644935][ T9075] EXT4-fs (loop5): This should not happen!! Data will be lost
[  129.644935][ T9075] 
[  129.654761][ T9075] EXT4-fs (loop5): Total free blocks count 0
[  129.660856][ T9075] EXT4-fs (loop5): Free/Dirty block details
[  129.667554][ T9075] EXT4-fs (loop5): free_blocks=2415919104
[  129.673410][ T9075] EXT4-fs (loop5): dirty_blocks=1312
[  129.679120][ T9075] EXT4-fs (loop5): Block reservation details
[  129.685366][ T9075] EXT4-fs (loop5): i_reserved_data_blocks=82
[  129.739713][ T3640] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  129.752200][ T3640] EXT4-fs (loop5): This should not happen!! Data will be lost
[  129.752200][ T3640] 
[  129.766022][ T5207] EXT4-fs unmount: 35 callbacks suppressed
[  129.946520][   T29] kauditd_printk_skb: 162 callbacks suppressed
[  129.946536][   T29] audit: type=1400 audit(1748745586.241:2826): avc:  denied  { mount } for  pid=9125 comm="syz.2.1612" name="/" dev="ramfs" ino=19558 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  130.003940][   T29] audit: type=1400 audit(1748745586.291:2827): avc:  denied  { unmount } for  pid=3325 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  130.047243][   T29] audit: type=1107 audit(1748745586.341:2828): pid=9131 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  130.080119][ T9134] loop2: detected capacity change from 0 to 512
[  130.087424][ T9134] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  130.101436][ T9136] random: crng reseeded on system resumption
[  130.117466][ T9134] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.130568][ T9134] ext4 filesystem being mounted at /313/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  130.176178][ T9037] 9pnet_fd: p9_fd_create_tcp (9037): problem connecting socket to 127.0.0.1
[  130.297676][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.311652][ T9146] 9pnet_fd: p9_fd_create_tcp (9146): problem connecting socket to 127.0.0.1
[  130.381238][ T9150] loop2: detected capacity change from 0 to 512
[  130.389544][ T9150] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  130.402564][ T9142] loop4: detected capacity change from 0 to 512
[  130.402976][ T9150] EXT4-fs (loop2): 1 truncate cleaned up
[  130.403440][ T9150] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.437712][ T9142] EXT4-fs: Ignoring removed mblk_io_submit option
[  130.455777][ T9142] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  130.531992][ T9142] EXT4-fs (loop4): 1 truncate cleaned up
[  130.543177][ T9142] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.547405][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.673746][   T29] audit: type=1107 audit(1748745586.961:2829): pid=9167 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  130.934765][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.061609][ T9183] random: crng reseeded on system resumption
[  131.290540][ T9197] loop5: detected capacity change from 0 to 512
[  131.299726][ T9197] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  131.345973][ T9197] EXT4-fs (loop5): 1 truncate cleaned up
[  131.352303][ T9197] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.501197][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.588582][   T29] audit: type=1107 audit(1748745587.881:2830): pid=9225 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  132.130667][ T9270] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1645'.
[  132.199467][ T9278] netlink: 'syz.4.1644': attribute type 13 has an invalid length.
[  132.207471][ T9278] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1644'.
[  132.270992][ T9284] netlink: 'syz.2.1646': attribute type 13 has an invalid length.
[  132.345307][ T9284] netdevsim netdevsim2 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  132.353894][ T9284] netdevsim netdevsim2 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  132.362650][ T9284] netdevsim netdevsim2 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  132.371230][ T9284] netdevsim netdevsim2 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  132.513808][   T29] audit: type=1400 audit(1748745588.801:2831): avc:  denied  { write } for  pid=9300 comm="syz.0.1659" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  133.316784][ T9351] loop1: detected capacity change from 0 to 512
[  133.335177][ T9351] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  133.369315][ T9351] EXT4-fs (loop1): 1 truncate cleaned up
[  133.388392][ T9351] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.498219][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.953483][ T9421] loop0: detected capacity change from 0 to 128
[  133.990216][ T9421] syz.0.1667: attempt to access beyond end of device
[  133.990216][ T9421] loop0: rw=2049, sector=129, nr_sectors = 8 limit=128
[  134.015304][ T9421] syz.0.1667: attempt to access beyond end of device
[  134.015304][ T9421] loop0: rw=2049, sector=145, nr_sectors = 8 limit=128
[  134.040096][ T9428] hub 2-0:1.0: USB hub found
[  134.050375][ T9428] hub 2-0:1.0: 8 ports detected
[  134.061101][ T9421] syz.0.1667: attempt to access beyond end of device
[  134.061101][ T9421] loop0: rw=2049, sector=161, nr_sectors = 8 limit=128
[  134.083278][ T9428] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9428 comm=syz.2.1669
[  134.114027][   T29] audit: type=1107 audit(1748745590.401:2832): pid=9426 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  134.115689][ T3633] kworker/u8:31: attempt to access beyond end of device
[  134.115689][ T3633] loop0: rw=1, sector=193, nr_sectors = 8 limit=128
[  134.251330][ T9457] loop2: detected capacity change from 0 to 512
[  134.261074][ T9421] syz.0.1667: attempt to access beyond end of device
[  134.261074][ T9421] loop0: rw=2049, sector=177, nr_sectors = 8 limit=128
[  134.277772][ T9457] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  134.279558][ T9459] SELinux:  Context system_u:object_r:fixed_disk_device_t:s0 is not valid (left unmapped).
[  134.289451][ T3633] kworker/u8:31: attempt to access beyond end of device
[  134.289451][ T3633] loop0: rw=1, sector=209, nr_sectors = 8 limit=128
[  134.298514][   T29] audit: type=1326 audit(1748745590.571:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9458 comm="syz.4.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  134.311769][ T3633] kworker/u8:31: attempt to access beyond end of device
[  134.311769][ T3633] loop0: rw=1, sector=241, nr_sectors = 8 limit=128
[  134.335218][   T29] audit: type=1326 audit(1748745590.571:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9458 comm="syz.4.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  134.348885][ T3633] kworker/u8:31: attempt to access beyond end of device
[  134.348885][ T3633] loop0: rw=1, sector=257, nr_sectors = 8 limit=128
[  134.373017][   T29] audit: type=1326 audit(1748745590.571:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9458 comm="syz.4.1671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  134.386471][ T3633] kworker/u8:31: attempt to access beyond end of device
[  134.386471][ T3633] loop0: rw=1, sector=273, nr_sectors = 8 limit=128
[  134.425044][ T9457] EXT4-fs (loop2): 1 truncate cleaned up
[  134.434338][ T9457] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.459586][ T9421] syz.0.1667: attempt to access beyond end of device
[  134.459586][ T9421] loop0: rw=2049, sector=225, nr_sectors = 8 limit=128
[  134.500093][ T9465] loop4: detected capacity change from 0 to 256
[  134.507704][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.545680][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.553628][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.567968][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.575924][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.582709][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.590228][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.597783][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.605174][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.612145][ T9465] FAT-fs (loop4): Directory bread(block 1285) failed
[  134.619878][ T9465] FAT-fs (loop4): FAT read failed (blocknr 1281)
[  134.695434][ T9472] bond3: (slave dummy0): Releasing active interface
[  134.702314][ T9472] dummy0: left promiscuous mode
[  134.745798][ T9474] netlink: 87 bytes leftover after parsing attributes in process `syz.1.1676'.
[  134.764320][ T9472] bridge_slave_0: left allmulticast mode
[  134.770180][ T9472] bridge_slave_0: left promiscuous mode
[  134.775974][ T9472] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.785357][ T9472] bridge_slave_1: left allmulticast mode
[  134.791152][ T9472] bridge_slave_1: left promiscuous mode
[  134.797038][ T9472] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.806002][ T9472] batman_adv: batadv0: Removing interface: batadv_slave_0
[  134.813808][ T9472] batman_adv: batadv0: Removing interface: batadv_slave_1
[  134.832939][ T9472] bond1: (slave ip6erspan0): Releasing active interface
[  134.846123][ T9472] bond2: (slave bridge1): Removing an active aggregator
[  134.854260][ T9472] bond2: (slave bridge1): Releasing backup interface
[  134.862180][ T9472] bridge1: left promiscuous mode
[  134.867693][ T9472] bridge1: left allmulticast mode
[  134.997174][ T9493] loop1: detected capacity change from 0 to 1024
[  135.004446][ T9493] EXT4-fs: Ignoring removed nobh option
[  135.010061][ T9493] EXT4-fs: Ignoring removed bh option
[  135.032243][ T9493] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.187251][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.229944][   T29] kauditd_printk_skb: 18 callbacks suppressed
[  135.229963][   T29] audit: type=1400 audit(1748745591.521:2854): avc:  denied  { watch_reads } for  pid=9502 comm="syz.1.1697" path="/335" dev="tmpfs" ino=1793 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  135.260817][ T9506] loop1: detected capacity change from 0 to 512
[  135.269434][ T9506] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  135.286245][ T9506] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.299076][ T9506] ext4 filesystem being mounted at /336/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  135.387042][ T9512] loop4: detected capacity change from 0 to 128
[  135.458567][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.940764][ T9521] loop1: detected capacity change from 0 to 512
[  135.956698][ T9524] bridge0: port 3(syz_tun) entered blocking state
[  135.963451][ T9524] bridge0: port 3(syz_tun) entered disabled state
[  135.972422][ T9521] EXT4-fs: Ignoring removed nomblk_io_submit option
[  135.998636][ T9524] syz_tun: entered allmulticast mode
[  136.008739][ T9521] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.034057][ T9521] ext4 filesystem being mounted at /338/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  136.048550][ T9524] syz_tun: entered promiscuous mode
[  136.123177][ T9524] bridge0: port 3(syz_tun) entered blocking state
[  136.129871][ T9524] bridge0: port 3(syz_tun) entered forwarding state
[  136.159214][ T9528] syz_tun: left allmulticast mode
[  136.164444][ T9528] syz_tun: left promiscuous mode
[  136.169924][ T9528] bridge0: port 3(syz_tun) entered disabled state
[  136.198628][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.234523][ T9528] bond3: (slave dummy0): Releasing active interface
[  136.294957][ T9528] bridge_slave_0: left allmulticast mode
[  136.300658][ T9528] bridge_slave_0: left promiscuous mode
[  136.306664][ T9528] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.321789][ T9528] bridge_slave_1: left allmulticast mode
[  136.327686][ T9528] bridge_slave_1: left promiscuous mode
[  136.333442][ T9528] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.350662][ T9510] syz.4.1689 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  136.365311][ T9510] CPU: 0 UID: 0 PID: 9510 Comm: syz.4.1689 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(voluntary) 
[  136.365350][ T9510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  136.365372][ T9510] Call Trace:
[  136.365381][ T9510]  <TASK>
[  136.365391][ T9510]  __dump_stack+0x1d/0x30
[  136.365420][ T9510]  dump_stack_lvl+0xe8/0x140
[  136.365443][ T9510]  dump_stack+0x15/0x1b
[  136.365466][ T9510]  dump_header+0x81/0x220
[  136.365553][ T9510]  oom_kill_process+0x334/0x3f0
[  136.365636][ T9510]  out_of_memory+0x979/0xb80
[  136.365667][ T9510]  ? css_next_descendant_pre+0x138/0x160
[  136.365692][ T9510]  mem_cgroup_out_of_memory+0x13d/0x190
[  136.365728][ T9510]  try_charge_memcg+0x5e2/0x870
[  136.365856][ T9510]  obj_cgroup_charge_pages+0xb7/0x1a0
[  136.365888][ T9510]  __memcg_kmem_charge_page+0x9f/0x170
[  136.365934][ T9510]  __alloc_frozen_pages_noprof+0x188/0x360
[  136.365984][ T9510]  alloc_pages_mpol+0xb3/0x250
[  136.366036][ T9510]  alloc_pages_noprof+0x90/0x130
[  136.366077][ T9510]  __vmalloc_node_range_noprof+0x6d5/0xe40
[  136.366125][ T9510]  __kvmalloc_node_noprof+0x312/0x4f0
[  136.366201][ T9510]  ? ip_set_alloc+0x1f/0x30
[  136.366229][ T9510]  ? ip_set_alloc+0x1f/0x30
[  136.366249][ T9510]  ? hash_netiface_create+0x21b/0x740
[  136.366272][ T9510]  ? __kmalloc_cache_noprof+0x189/0x320
[  136.366371][ T9510]  ip_set_alloc+0x1f/0x30
[  136.366399][ T9510]  hash_netiface_create+0x282/0x740
[  136.366425][ T9510]  ? __pfx_hash_netiface_create+0x10/0x10
[  136.366540][ T9510]  ip_set_create+0x3c9/0x960
[  136.366591][ T9510]  ? __nla_parse+0x40/0x60
[  136.366617][ T9510]  nfnetlink_rcv_msg+0x4c6/0x590
[  136.366658][ T9510]  ? should_fail_ex+0x30/0x280
[  136.366729][ T9510]  ? selinux_capable+0x1f9/0x270
[  136.366773][ T9510]  netlink_rcv_skb+0x123/0x220
[  136.366806][ T9510]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  136.366863][ T9510]  nfnetlink_rcv+0x16b/0x1690
[  136.366910][ T9510]  ? __kfree_skb+0x109/0x150
[  136.366941][ T9510]  ? nlmon_xmit+0x4f/0x60
[  136.366970][ T9510]  ? consume_skb+0x49/0x150
[  136.367074][ T9510]  ? nlmon_xmit+0x4f/0x60
[  136.367125][ T9510]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  136.367163][ T9510]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  136.367246][ T9510]  ? __dev_queue_xmit+0x182/0x1fb0
[  136.367281][ T9510]  ? ref_tracker_free+0x37d/0x3e0
[  136.367322][ T9510]  ? __netlink_deliver_tap+0x4dc/0x500
[  136.367366][ T9510]  netlink_unicast+0x59e/0x670
[  136.367396][ T9510]  netlink_sendmsg+0x58b/0x6b0
[  136.367444][ T9510]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.367479][ T9510]  __sock_sendmsg+0x142/0x180
[  136.367519][ T9510]  ____sys_sendmsg+0x31e/0x4e0
[  136.367632][ T9510]  ___sys_sendmsg+0x17b/0x1d0
[  136.367676][ T9510]  __x64_sys_sendmsg+0xd4/0x160
[  136.367740][ T9510]  x64_sys_call+0x2999/0x2fb0
[  136.367765][ T9510]  do_syscall_64+0xd2/0x200
[  136.367797][ T9510]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  136.367870][ T9510]  ? clear_bhb_loop+0x40/0x90
[  136.367894][ T9510]  ? clear_bhb_loop+0x40/0x90
[  136.367944][ T9510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.367968][ T9510] RIP: 0033:0x7f14b4bee969
[  136.367992][ T9510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.368013][ T9510] RSP: 002b:00007f14b3257038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.368088][ T9510] RAX: ffffffffffffffda RBX: 00007f14b4e15fa0 RCX: 00007f14b4bee969
[  136.368102][ T9510] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[  136.368115][ T9510] RBP: 00007f14b4c70ab1 R08: 0000000000000000 R09: 0000000000000000
[  136.368130][ T9510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.368144][ T9510] R13: 0000000000000000 R14: 00007f14b4e15fa0 R15: 00007fff79d53bd8
[  136.368164][ T9510]  </TASK>
[  136.368175][ T9510] memory: usage 307200kB, limit 307200kB, failcnt 226
[  136.746848][ T9510] memory+swap: usage 307464kB, limit 9007199254740988kB, failcnt 0
[  136.754970][ T9510] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[  136.762272][ T9510] Memory cgroup stats for /syz4:
[  136.763437][ T9510] cache 0
[  136.771384][ T9510] rss 0
[  136.774269][ T9510] shmem 0
[  136.777215][ T9510] mapped_file 0
[  136.780695][ T9510] dirty 0
[  136.783781][ T9510] writeback 0
[  136.787248][ T9510] workingset_refault_anon 1199
[  136.792124][ T9510] workingset_refault_file 100
[  136.796965][ T9510] swap 270336
[  136.800278][ T9510] swapcached 4096
[  136.803941][ T9510] nr_memmap_boot_pages 122755
[  136.809068][ T9510] pgpgin 122753
[  136.812631][ T9510] pglazyfree 116247
[  136.815753][ T9528] bond0: (slave bond_slave_0): Releasing backup interface
[  136.816893][ T9510] pgfault 184
[  136.827605][ T9510] a_other 4096
[  136.830995][ T9510] inactive_anon 0
[  136.834784][ T9510] active_anon 4096
[  136.838640][ T9510] inactive_file 0
[  136.842306][ T9510] active_file 0
[  136.845881][ T9510] hierarchical_memory_limit 314572800
[  136.851548][ T9510] hierarchical_memsw_limit 9223372036854771712
[  136.857868][ T9510] total_cache 0
[  136.861351][ T9510] total_rss 0
[  136.864794][ T9510] total_shmem 0
[  136.868368][ T9510] total_mapped_file 0
[  136.872365][ T9510] total_dirty 0
[  136.876032][ T9510] total_writeback 0
[  136.879885][ T9510] total_workingset_refault_anon 1199
[  136.885386][ T9510] total_workingset_refault_file 100
[  136.890601][ T9510] total_swap 270336
[  136.894614][ T9510] total_swapcached 4096
[  136.898888][ T9510] total_nr_memmap_boot_pages 122755
[  136.904131][ T9510] total_pgpgin 122753
[  136.908118][ T9510] total_pglazyfree 116247
[  136.912466][ T9510] total_pgfault 184
[  136.916361][ T9510] total_a_other 4096
[  136.920277][ T9510] total_inactive_anon 0
[  136.924626][ T9510] total_active_anon 4096
[  136.928984][ T9510] total_inactive_file 0
[  136.933381][ T9510] total_active_file 0
[  136.937486][ T9510] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1689,pid=9509,uid=0
[  136.952274][ T9510] Memory cgroup out of memory: Killed process 9509 (syz.4.1689) total-vm:95796kB, anon-rss:936kB, file-rss:22320kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  136.971001][ T9528] bond_slave_0: left promiscuous mode
[  136.983568][ T9528] bond0: (slave bond_slave_1): Releasing backup interface
[  137.001038][ T9528] bond_slave_1: left promiscuous mode
[  137.032867][ T9528] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.040697][ T9528] batman_adv: batadv0: Removing interface: batadv_slave_0
[  137.052056][ T4542] Process accounting resumed
[  137.067071][ T9528] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  137.074673][ T9528] batman_adv: batadv0: Removing interface: batadv_slave_1
[  137.098239][ T9528] bond1: (slave ip6erspan0): Releasing active interface
[  137.169630][ T9554] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1701'.
[  137.233132][ T9560] loop0: detected capacity change from 0 to 256
[  137.239564][   T29] audit: type=1400 audit(1748745593.521:2855): avc:  denied  { create } for  pid=9559 comm="syz.0.1704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  137.325600][ T9560] netlink: 'syz.0.1704': attribute type 13 has an invalid length.
[  137.333440][ T9547] Process accounting resumed
[  137.357114][ T9564] loop5: detected capacity change from 0 to 1024
[  137.389291][ T9564] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.410500][ T9564] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.459019][ T9564] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  137.479104][ T9564] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  137.491497][ T9564] EXT4-fs (loop5): This should not happen!! Data will be lost
[  137.491497][ T9564] 
[  137.501271][ T9564] EXT4-fs (loop5): Total free blocks count 0
[  137.502876][ T9575] loop0: detected capacity change from 0 to 512
[  137.507578][ T9564] EXT4-fs (loop5): Free/Dirty block details
[  137.519886][ T9564] EXT4-fs (loop5): free_blocks=4293918720
[  137.525966][ T9564] EXT4-fs (loop5): dirty_blocks=16
[  137.526553][ T9575] EXT4-fs: Ignoring removed nobh option
[  137.531211][ T9564] EXT4-fs (loop5): Block reservation details
[  137.543422][ T9564] EXT4-fs (loop5): i_reserved_data_blocks=1
[  137.550173][ T9575] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  137.563419][ T9573] netlink: 'syz.4.1707': attribute type 13 has an invalid length.
[  137.583848][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.595532][ T9575] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.609181][ T9575] ext4 filesystem being mounted at /321/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.675810][   T29] audit: type=1400 audit(1748745593.971:2856): avc:  denied  { rename } for  pid=9574 comm="syz.0.1709" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  137.770817][   T29] audit: type=1326 audit(1748745594.061:2857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9596 comm="syz.4.1716" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x0
[  138.335361][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.358720][ T9716] loop1: detected capacity change from 0 to 1024
[  138.365740][ T9716] EXT4-fs: Ignoring removed orlov option
[  138.374772][ T9711] pim6reg1: entered promiscuous mode
[  138.380140][ T9711] pim6reg1: entered allmulticast mode
[  138.392213][ T9716] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.412462][   T29] audit: type=1326 audit(1748745594.701:2858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.1.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  138.436340][   T29] audit: type=1326 audit(1748745594.701:2859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.1.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  138.460154][   T29] audit: type=1326 audit(1748745594.701:2860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.1.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  138.484190][   T29] audit: type=1326 audit(1748745594.701:2861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.1.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  138.507835][   T29] audit: type=1326 audit(1748745594.701:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.1.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  138.531356][   T29] audit: type=1326 audit(1748745594.701:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.1.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f9b213ce969 code=0x7ffc0000
[  138.626636][ T9727] loop0: detected capacity change from 0 to 512
[  138.651399][ T9727] EXT4-fs: Ignoring removed nomblk_io_submit option
[  138.666264][ T9730] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1724'.
[  138.676847][ T9727] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.689547][ T9734] loop2: detected capacity change from 0 to 512
[  138.691016][ T9727] ext4 filesystem being mounted at /322/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  138.709435][ T9734] loop2: detected capacity change from 0 to 2048
[  138.716230][ T9734] EXT4-fs: Ignoring removed bh option
[  138.741798][ T9734] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.956480][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.010550][ T9743] loop0: detected capacity change from 0 to 2048
[  139.026162][ T9743] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  139.193407][ T9749] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  139.230085][ T9749] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 390 with error 28
[  139.242718][ T9749] EXT4-fs (loop0): This should not happen!! Data will be lost
[  139.242718][ T9749] 
[  139.252462][ T9749] EXT4-fs (loop0): Total free blocks count 0
[  139.258750][ T9749] EXT4-fs (loop0): Free/Dirty block details
[  139.264750][ T9749] EXT4-fs (loop0): free_blocks=2415919104
[  139.270597][ T9749] EXT4-fs (loop0): dirty_blocks=400
[  139.276009][ T9749] EXT4-fs (loop0): Block reservation details
[  139.282178][ T9749] EXT4-fs (loop0): i_reserved_data_blocks=25
[  139.297501][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.338499][ T9739] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  139.354703][ T9739] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 641 with error 28
[  139.367288][ T9739] EXT4-fs (loop2): This should not happen!! Data will be lost
[  139.367288][ T9739] 
[  139.377102][ T9739] EXT4-fs (loop2): Total free blocks count 0
[  139.383195][ T9739] EXT4-fs (loop2): Free/Dirty block details
[  139.389167][ T9739] EXT4-fs (loop2): free_blocks=2415919104
[  139.395016][ T9739] EXT4-fs (loop2): dirty_blocks=8224
[  139.400392][ T9739] EXT4-fs (loop2): Block reservation details
[  139.406590][ T9739] EXT4-fs (loop2): i_reserved_data_blocks=514
[  139.426811][ T3663] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  139.456095][ T3635] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  139.477229][ T9758] loop0: detected capacity change from 0 to 1024
[  139.506952][ T9758] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  139.518082][ T9758] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  139.542838][ T9758] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  139.560459][ T9758] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #3: comm syz.0.1730: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 2, max 15(4), depth 0(0)
[  139.578930][ T9758] EXT4-fs (loop0): no journal found
[  139.584312][ T9758] EXT4-fs (loop0): can't get journal size
[  139.599222][ T9758] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  139.624705][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.662648][ T9766] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.671508][ T9766] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.942207][ T9801] loop5: detected capacity change from 0 to 512
[  139.973507][ T9801] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  140.053911][ T9801] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.084206][ T9801] ext4 filesystem being mounted at /273/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  140.462713][ T9838] bridge: RTM_NEWNEIGH with invalid ether address
[  140.662513][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  140.662531][   T29] audit: type=1326 audit(1748745596.951:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.692207][   T29] audit: type=1326 audit(1748745596.951:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.715893][   T29] audit: type=1326 audit(1748745596.951:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.739843][   T29] audit: type=1326 audit(1748745596.951:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.763319][   T29] audit: type=1326 audit(1748745596.951:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.787047][   T29] audit: type=1326 audit(1748745596.951:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.810360][   T29] audit: type=1326 audit(1748745596.951:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.833798][   T29] audit: type=1326 audit(1748745596.951:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.897159][ T9875] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1745'.
[  140.914257][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.968713][   T29] audit: type=1326 audit(1748745597.151:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9861 comm="syz.4.1740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f14b4bee969 code=0x7ffc0000
[  140.992268][   T29] audit: type=1326 audit(1748745597.241:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9878 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75ccee969 code=0x7ffc0000
[  141.030914][ T9886] netlink: 'syz.2.1748': attribute type 1 has an invalid length.
[  141.061326][ T9886] 8021q: adding VLAN 0 to HW filter on device bond4
[  141.101848][ T9886] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1748'.
[  141.130078][ T9886] bond4 (unregistering): Released all slaves
[  141.263331][ T9898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.272027][ T9898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.281930][ T9898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.290711][ T9898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.299349][ T9898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.307982][ T9898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.465745][ T9898] 9pnet: p9_errstr2errno: server reported unknown error q’


	H
[  141.668310][ T9910] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.677034][ T9910] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.948324][ T9927] netlink: 'syz.4.1763': attribute type 1 has an invalid length.
[  141.963395][ T9927] 8021q: adding VLAN 0 to HW filter on device bond2
[  141.974583][ T9925] netlink: 1343 bytes leftover after parsing attributes in process `syz.5.1766'.
[  141.987359][ T9927] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1763'.
[  142.016307][ T9927] bond2 (unregistering): Released all slaves
[  142.035219][ T9930] syzkaller1: entered promiscuous mode
[  142.040885][ T9930] syzkaller1: entered allmulticast mode
[  142.437378][ T9981] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1786'.
[  142.599603][T10003] syz.1.1790 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  142.917709][T10034] loop1: detected capacity change from 0 to 512
[  142.939373][T10034] loop1: detected capacity change from 0 to 2048
[  142.946135][T10034] EXT4-fs: Ignoring removed bh option
[  142.987552][T10034] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.535429][T10107] loop0: detected capacity change from 0 to 512
[  143.555743][T10107] ext4: Unknown parameter 'uid<00000000000000000000'
[  143.586091][T10107] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1805'.
[  143.633931][T10059] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  143.679697][T10059] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 641 with error 28
[  143.692329][T10059] EXT4-fs (loop1): This should not happen!! Data will be lost
[  143.692329][T10059] 
[  143.702050][T10059] EXT4-fs (loop1): Total free blocks count 0
[  143.708143][T10059] EXT4-fs (loop1): Free/Dirty block details
[  143.714212][T10059] EXT4-fs (loop1): free_blocks=2415919104
[  143.720046][T10059] EXT4-fs (loop1): dirty_blocks=8224
[  143.725408][T10059] EXT4-fs (loop1): Block reservation details
[  143.731455][T10059] EXT4-fs (loop1): i_reserved_data_blocks=514
[  143.769272][   T31] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  143.874966][T10139] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1809'.
[  143.937094][T10143] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1812'.
[  143.950726][T10143] 8021q: adding VLAN 0 to HW filter on device team0
[  144.233179][T10156] loop2: detected capacity change from 0 to 512
[  144.244430][T10156] EXT4-fs: Ignoring removed nobh option
[  144.265598][T10156] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  144.289444][T10156] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.362885][T10166] loop5: detected capacity change from 0 to 512
[  144.371251][T10165] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  144.380886][T10156] ext4 filesystem being mounted at /361/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.400267][T10165] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  144.420902][T10168] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1821'.
[  144.432632][T10166] loop5: detected capacity change from 0 to 2048
[  144.446166][T10166] EXT4-fs: Ignoring removed bh option
[  144.465440][T10168] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  144.483887][T10166] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.485349][T10168] 8021q: adding VLAN 0 to HW filter on device bond2
[  144.555907][T10174] netlink: 'syz.4.1822': attribute type 29 has an invalid length.
[  144.825411][T10178] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  144.851243][T10178] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 641 with error 28
[  144.863995][T10178] EXT4-fs (loop5): This should not happen!! Data will be lost
[  144.863995][T10178] 
[  144.873720][T10178] EXT4-fs (loop5): Total free blocks count 0
[  144.879948][T10178] EXT4-fs (loop5): Free/Dirty block details
[  144.886007][T10178] EXT4-fs (loop5): free_blocks=2415919104
[  144.891875][T10178] EXT4-fs (loop5): dirty_blocks=8224
[  144.897386][T10178] EXT4-fs (loop5): Block reservation details
[  144.903500][T10178] EXT4-fs (loop5): i_reserved_data_blocks=514
[  144.935716][   T31] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  144.999476][T10185] infiniband syz0: set down
[  145.004173][T10185] infiniband syz0: added batadv_slave_1
[  145.015017][T10185] RDS/IB: syz0: added
[  145.019168][T10185] smc: adding ib device syz0 with port count 1
[  145.025658][T10185] smc:    ib device syz0 port 1 has pnetid 
[  145.074081][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.149922][T10195] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=10195 comm=syz.4.1829
[  145.258899][T10203] loop2: detected capacity change from 0 to 1024
[  145.267093][T10203] EXT4-fs: Ignoring removed orlov option
[  145.276045][T10203] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.474397][T10211] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  145.535551][T10213] macsec0: entered promiscuous mode
[  145.563512][T10215] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.599132][T10217] netlink: 'syz.1.1838': attribute type 4 has an invalid length.
[  145.640459][T10215] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.665709][T10217] netlink: 'syz.1.1838': attribute type 4 has an invalid length.
[  145.705856][T10215] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.771180][T10215] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.800712][T10225] veth0: entered promiscuous mode
[  145.806563][T10225] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1840'.
[  145.817691][T10225] veth0 (unregistering): left promiscuous mode
[  145.847845][T10227] netlink: 'syz.1.1841': attribute type 3 has an invalid length.
[  145.855840][T10227] netlink: 'syz.1.1841': attribute type 3 has an invalid length.
[  145.857098][T10215] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.900417][T10215] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.943472][T10215] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.957870][T10227] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1841'.
[  145.987841][T10215] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.012918][T10229] netlink: 'syz.0.1842': attribute type 1 has an invalid length.
[  146.052994][T10229] 8021q: adding VLAN 0 to HW filter on device bond2
[  146.093117][T10232] syzkaller0: entered promiscuous mode
[  146.098902][T10232] syzkaller0: entered allmulticast mode
[  146.138811][T10229] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1842'.
[  146.170031][T10229] bond2 (unregistering): Released all slaves
[  146.209670][T10236] 9pnet_fd: p9_fd_create_tcp (10236): problem connecting socket to 127.0.0.1
[  146.256903][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.324694][T10243] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1847'.
[  146.346869][T10234] loop1: detected capacity change from 0 to 512
[  146.369057][T10234] EXT4-fs: Ignoring removed mblk_io_submit option
[  146.387478][T10243] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1847'.
[  146.410252][T10245] loop0: detected capacity change from 0 to 512
[  146.417204][T10234] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  146.514052][T10245] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  146.548603][T10234] EXT4-fs (loop1): 1 truncate cleaned up
[  146.585341][T10234] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.627252][T10245] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.660426][T10245] ext4 filesystem being mounted at /348/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.740105][T10245] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1849: corrupted xattr block 19: overlapping e_value 
[  146.769158][T10245] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  146.778395][T10245] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1849: corrupted xattr block 19: overlapping e_value 
[  146.810745][T10245] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  146.821681][   T29] kauditd_printk_skb: 153 callbacks suppressed
[  146.821700][   T29] audit: type=1326 audit(1748745603.111:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  146.856507][T10245] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1849: corrupted xattr block 19: overlapping e_value 
[  146.870630][   T29] audit: type=1326 audit(1748745603.111:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  146.894778][   T29] audit: type=1326 audit(1748745603.111:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  146.918631][   T29] audit: type=1326 audit(1748745603.111:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  146.942303][   T29] audit: type=1326 audit(1748745603.111:3034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  146.966301][   T29] audit: type=1326 audit(1748745603.111:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  146.989969][   T29] audit: type=1326 audit(1748745603.111:3036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  147.013564][   T29] audit: type=1326 audit(1748745603.111:3037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  147.014027][T10259] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1849: corrupted xattr block 19: overlapping e_value 
[  147.037306][   T29] audit: type=1326 audit(1748745603.121:3038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  147.074936][   T29] audit: type=1326 audit(1748745603.121:3039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f47036ce969 code=0x7ffc0000
[  147.091174][T10268] loop5: detected capacity change from 0 to 1024
[  147.109770][T10268] EXT4-fs: Ignoring removed orlov option
[  147.143243][T10259] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  147.154290][T10268] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.171203][T10259] EXT4-fs error (device loop0): ext4_xattr_block_find:1869: inode #15: comm syz.0.1849: corrupted xattr block 19: overlapping e_value 
[  147.199047][T10275] syz_tun: entered promiscuous mode
[  147.205396][T10275] syz_tun: left promiscuous mode
[  147.286999][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.338127][T10277] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  147.359720][T10277] 8021q: adding VLAN 0 to HW filter on device bond4
[  147.405929][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.445024][T10282] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10282 comm=syz.4.1864
[  147.553291][T10296] netlink: 'syz.1.1866': attribute type 11 has an invalid length.
[  147.640602][T10301] loop0: detected capacity change from 0 to 128
[  147.679104][T10301] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  147.813905][T10301] ext4 filesystem being mounted at /351/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  147.902886][ T3324] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  147.987770][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.022154][T10316] loop2: detected capacity change from 0 to 1024
[  148.040487][T10316] EXT4-fs: Ignoring removed orlov option
[  148.049910][T10320] netlink: 'syz.1.1879': attribute type 13 has an invalid length.
[  148.076047][T10316] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.330365][T10330] __nla_validate_parse: 4 callbacks suppressed
[  148.330385][T10330] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1883'.
[  148.812324][T10338] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1885'.
[  148.873937][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.906602][T10344] rdma_rxe: rxe_newlink: failed to add veth0_virt_wifi
[  149.307862][T10371] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1901'.
[  149.408710][T10377] loop2: detected capacity change from 0 to 128
[  149.424885][T10377] EXT4-fs: Ignoring removed nomblk_io_submit option
[  149.439749][T10377] EXT4-fs error (device loop2): __ext4_fill_super:5500: inode #2: comm syz.2.1902: iget: checksum invalid
[  149.472184][T10377] EXT4-fs (loop2): get root inode failed
[  149.478229][T10377] EXT4-fs (loop2): mount failed
[  149.595069][T10384] netlink: 'syz.2.1904': attribute type 11 has an invalid length.
[  149.653082][ T3454] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  149.664754][ T3454] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  149.745696][T10397] rdma_rxe: rxe_newlink: failed to add veth0_virt_wifi
[  150.150036][T10421] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1918'.
[  150.291268][T10414] loop2: detected capacity change from 0 to 512
[  150.312571][T10414] EXT4-fs: Ignoring removed mblk_io_submit option
[  150.332066][T10414] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  150.387689][T10414] EXT4-fs (loop2): 1 truncate cleaned up
[  150.411206][T10414] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.605972][T10431] loop0: detected capacity change from 0 to 512
[  150.623694][T10431] EXT4-fs: Ignoring removed orlov option
[  150.650218][T10431] ext4: Unknown parameter 'uid>00000000000000000000'
[  151.003160][T10442] syzkaller0: entered allmulticast mode
[  151.026885][T10442] syzkaller0: entered promiscuous mode
[  151.059661][T10442] syzkaller0 (unregistering): left allmulticast mode
[  151.066947][T10442] syzkaller0 (unregistering): left promiscuous mode
[  151.133610][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.148334][T10449] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1929'.
[  151.181078][T10451] loop2: detected capacity change from 0 to 512
[  151.199227][T10451] EXT4-fs (loop2): 1 orphan inode deleted
[  151.209281][T10451] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.223117][T10451] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.235040][   T31] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 1
[  151.306511][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.335983][T10465] loop2: detected capacity change from 0 to 512
[  151.351423][T10465] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.354761][T10470] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1937'.
[  151.376369][T10470] team0 (unregistering): Port device team_slave_0 removed
[  151.385052][T10465] ext4 filesystem being mounted at /385/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  151.396383][T10470] team0 (unregistering): Failed to send options change via netlink (err -105)
[  151.405766][T10470] team0 (unregistering): Failed to send port change of device team_slave_1 via netlink (err -105)
[  151.416990][T10470] team0 (unregistering): Port device team_slave_1 removed
[  151.435759][T10465] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1934: corrupted inode contents
[  151.450739][T10465] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.1934: mark_inode_dirty error
[  151.491280][T10465] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1934: corrupted inode contents
[  151.525347][T10465] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.1934: mark_inode_dirty error
[  151.541762][T10482] 9pnet_fd: Insufficient options for proto=fd
[  151.551722][ T3396] IPVS: starting estimator thread 0...
[  151.599779][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.609552][T10485] loop0: detected capacity change from 0 to 2048
[  151.632180][T10485] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.654097][T10483] IPVS: using max 1968 ests per chain, 98400 per kthread
[  151.661728][T10485] EXT4-fs (loop0): stripe (248) is not aligned with cluster size (16), stripe is disabled
[  151.678022][T10485] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[  151.736711][T10495] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1946'.
[  151.736822][ T3324] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.781460][T10502] loop5: detected capacity change from 0 to 128
[  151.799846][T10502] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  151.819041][T10502] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  151.843806][   T29] kauditd_printk_skb: 1124 callbacks suppressed
[  151.843821][   T29] audit: type=1326 audit(1748745608.131:4163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4a5c63d2d0 code=0x7ffc0000
[  151.891624][   T29] audit: type=1326 audit(1748745608.131:4164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f4a5c63d6b7 code=0x7ffc0000
[  151.915406][   T29] audit: type=1326 audit(1748745608.131:4165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4a5c63d2d0 code=0x7ffc0000
[  151.939051][   T29] audit: type=1326 audit(1748745608.141:4166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  151.963398][   T29] audit: type=1326 audit(1748745608.141:4167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  151.987203][   T29] audit: type=1326 audit(1748745608.141:4168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4a5c63e969 code=0x7ffc0000
[  152.011037][   T29] audit: type=1326 audit(1748745608.141:4169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4a5c63e9a3 code=0x7ffc0000
[  152.034553][   T29] audit: type=1326 audit(1748745608.141:4170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4a5c63d41f code=0x7ffc0000
[  152.058358][   T29] audit: type=1326 audit(1748745608.151:4171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4a5c63e9f7 code=0x7ffc0000
[  152.082135][   T29] audit: type=1326 audit(1748745608.151:4172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10500 comm="syz.5.1948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4a5c63d2d0 code=0x7ffc0000
[  152.147827][T10531] pim6reg1: entered promiscuous mode
[  152.153591][T10531] pim6reg1: entered allmulticast mode
[  152.187945][T10540] loop1: detected capacity change from 0 to 164
[  152.195333][T10537] syzkaller0: entered promiscuous mode
[  152.201233][T10537] syzkaller0: entered allmulticast mode
[  152.207135][T10540] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.231701][T10540] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.251602][T10540] Symlink component flag not implemented
[  152.257413][T10540] Symlink component flag not implemented
[  152.276858][T10540] Symlink component flag not implemented (7)
[  152.283177][T10540] Symlink component flag not implemented (116)
[  152.464391][T10570] loop1: detected capacity change from 0 to 1024
[  152.481133][T10570] ext4: Unknown parameter 'uid<00000000000000000000'
[  152.554103][T10592] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1964'.
[  152.591190][T10592] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10592 comm=syz.1.1964
[  152.694538][T10611] pim6reg1: entered promiscuous mode
[  152.699937][T10611] pim6reg1: entered allmulticast mode
[  152.848125][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x1
[  152.855647][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.863064][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.870492][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.878079][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.885637][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.893117][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x4
[  152.900624][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.908571][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.916199][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.923694][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x2
[  152.931267][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.938753][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.946403][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x4
[  152.953868][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.961342][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.968937][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x2
[  152.976529][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.984150][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.991643][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  152.999159][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  153.006731][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  153.014223][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  153.021655][ T3391] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0
[  153.029674][ T3391] hid-generic 0006:0000:0000.0007: hidraw0: VIRTUAL HID vffffff.00 Device [syz0] on syz1
[  153.729278][T10689] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1975'.
[  153.879558][T10691] loop5: detected capacity change from 0 to 1024
[  153.942822][T10695] 9pnet_fd: Insufficient options for proto=fd
[  153.974107][T10691] EXT4-fs: Ignoring removed nobh option
[  153.979784][T10691] EXT4-fs: Ignoring removed bh option
[  154.018407][T10691] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.064930][T10691] syzkaller0: entered promiscuous mode
[  154.071389][T10691] syzkaller0: entered allmulticast mode
[  154.186447][ T5207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.886628][T10769] loop7: detected capacity change from 0 to 16384
[  155.334800][T10778] ==================================================================
[  155.342937][T10778] BUG: KCSAN: data-race in atime_needs_update / inode_update_timestamps
[  155.351311][T10778] 
[  155.353661][T10778] write to 0xffff888117d07544 of 4 bytes by task 10777 on cpu 0:
[  155.361395][T10778]  inode_update_timestamps+0x147/0x270
[  155.366893][T10778]  file_update_time+0x20e/0x2b0
[  155.371863][T10778]  shmem_file_write_iter+0x9c/0xf0
[  155.377006][T10778]  iter_file_splice_write+0x5ef/0x970
[  155.382420][T10778]  direct_splice_actor+0x156/0x2a0
[  155.387570][T10778]  splice_direct_to_actor+0x312/0x680
[  155.392979][T10778]  do_splice_direct+0xda/0x150
[  155.397791][T10778]  do_sendfile+0x380/0x650
[  155.402242][T10778]  __x64_sys_sendfile64+0x105/0x150
[  155.407467][T10778]  x64_sys_call+0xb39/0x2fb0
[  155.412078][T10778]  do_syscall_64+0xd2/0x200
[  155.416608][T10778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.422537][T10778] 
[  155.424881][T10778] read to 0xffff888117d07544 of 4 bytes by task 10778 on cpu 1:
[  155.432541][T10778]  atime_needs_update+0x2a8/0x3e0
[  155.437601][T10778]  touch_atime+0x4a/0x340
[  155.441956][T10778]  shmem_file_splice_read+0x5b1/0x600
[  155.447361][T10778]  splice_direct_to_actor+0x26c/0x680
[  155.452844][T10778]  do_splice_direct+0xda/0x150
[  155.457664][T10778]  do_sendfile+0x380/0x650
[  155.462112][T10778]  __x64_sys_sendfile64+0x105/0x150
[  155.467354][T10778]  x64_sys_call+0xb39/0x2fb0
[  155.471962][T10778]  do_syscall_64+0xd2/0x200
[  155.476488][T10778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.482394][T10778] 
[  155.484726][T10778] value changed: 0x2503f117 -> 0x259c8797
[  155.490449][T10778] 
[  155.492781][T10778] Reported by Kernel Concurrency Sanitizer on:
[  155.499147][T10778] CPU: 1 UID: 0 PID: 10778 Comm: syz.4.2008 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(voluntary) 
[  155.511314][T10778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.521486][T10778] ==================================================================