last executing test programs:

2m37.871373779s ago: executing program 32 (id=679):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r1)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r2, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)

1m49.494381454s ago: executing program 4 (id=2550):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0xd)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

1m49.448085784s ago: executing program 4 (id=2554):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x19, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0xb}, 0x18)
r1 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000580)='$\x00\x19y\x01\xff\xb4\x9e\x95oQE\xc9\x1f|\bZ\xf44\x7f)\x03c\x9a\x85\x01V\xb8p+\x84\xfb\xe6?\x88\xe9\x98Y\x0e\xd5P\xa2\xcc\x01*\xcd%v!\x82\xf1\xaaB\x04-\x88\xeb-q8\x03\xadO\xa0F\xc5Z\x0f\xee\x94\xfcy\xa5\xa4L\xa1\xd7g\x9d\xd2m5r\xef\xe1\xd1\x87\x1aM\xa6\xa8\xa2\xef\xb0\x9e\xa9d\xee\xacl\x9c\xcb\x03\x17\xbbG\x15\xba3\xa5r<]T\xc6R\x03\xee#\x0f\x88\xc4\xd3\x02\xd1 @\r\x1cc\xe4|\x13H\xc2\x1fq\x88\xdd\x98\xe1~\xb0\xedK\x17x\v\x9b\xaa\xb4\a\xb6\x8b\x9e*=\x8f\x05\x8b\x88\xc9\x12\xa6\x8fs\x98\xf1\xfe\xcdX\xce,AD\xd2v\xf4\xe5\xd3\xf3\xf1TY\x1c\x8a\x98\xf8\xcf6\xc3>]l\xdaQ\xac\n{)\xc9\x95\xb4\x12j}8\x03\xba&\xe8p\xe8\xf0\xa4\xa6e\xbc\xef\x93%/x\x19\xaa\xb5\x97\x98A\\\x91\x9a \xa8\xf8a\xd8\x97\x1eR\xaf\xc8\x9f', 0x0)
read$ptp(r1, &(0x7f0000000280)=""/176, 0xb0)

1m49.398248084s ago: executing program 4 (id=2555):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)

1m49.292796965s ago: executing program 4 (id=2559):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1c5008, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x500, 0x40)
r1 = open_tree(r0, &(0x7f0000000300)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000040)='./file0/../file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x172)

1m49.233232445s ago: executing program 4 (id=2562):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020641700000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000040)="3700000013000318680907070000000f0000ff3f13000000170a001700000000040037000d00030001362564aa58b9a6c011f6bbf44dc4", 0x37}], 0x1)

1m48.999926497s ago: executing program 4 (id=2574):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x4)
fcntl$notify(r2, 0x402, 0x8000003d)
close_range(r0, r2, 0x0)

1m48.999801777s ago: executing program 33 (id=2574):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x4)
fcntl$notify(r2, 0x402, 0x8000003d)
close_range(r0, r2, 0x0)

1m44.363260265s ago: executing program 3 (id=2761):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
r2 = add_key(&(0x7f0000000300)='keyring\x00', &(0x7f0000000340)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000080)=@chain)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f00000000c0)='asymmetric\x00', &(0x7f0000000280)=@chain={'key_or_keyring:', r1})

1m44.282476615s ago: executing program 3 (id=2765):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="e80000006c00010029bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="001000008000000008000f002000000014003500726f7365300000000000000000000000a40034801400350070696d367265673000000020000000001400350076657468305f6d614176746170000000140035006d61637674617030020000000000000014003500677265300000000000000000000000001400350076657468305f746f5f626174616476001400350001657468315f6d6163767461700000001400350067726530000000000000000000000000140035006261746164765f736c6176655f31000008000f"], 0xe8}}, 0x0)

1m44.200414676s ago: executing program 3 (id=2771):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0xffffffff80000401, 0x0, 0x0)

1m44.146248096s ago: executing program 3 (id=2776):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x800000, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
chroot(&(0x7f00000000c0)='./file0/file0\x00')
pivot_root(&(0x7f0000000240)='./file0/../file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

1m44.112975126s ago: executing program 3 (id=2778):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000540)='./file0\x00', 0x1204018, &(0x7f0000000240)=ANY=[@ANYBLOB="6f76657272696465726f636b7065726d2c6e6f636f6d70726573732c686964652c73657373696f6e3d3078303030303030303030303030303032312c756e686964652c696f636861727365743d63703433372c6f76657272696465726f636b7065726d2c626c6f636b3d3078303030303030303030303030303430302c005fb50aab29cf1d32d24be5ab2a6506aa524c8f1cd5781842ee1c86bee627767fee958f25bb6db8e631262ed8a59d337d730b6698271aeb8c31c1902a7e236e5dd878e6c1352c0c799d8e80d7346f8d2870acebe617c694bbb925d3ab4fb01784c564c03d88c81d2f84f58e8c6ba18548f09fa6"], 0x1, 0x56f, &(0x7f0000000b00)="$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")

1m43.719514329s ago: executing program 3 (id=2791):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x9)

1m43.719438549s ago: executing program 34 (id=2791):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x9)

1m33.73693997s ago: executing program 1 (id=3103):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xeb, '\x00', 0x0, @tracing=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca}, 0x48)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x8800)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="b90103606989068c3c270040f000", 0x0, 0x104, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m33.64463851s ago: executing program 1 (id=3106):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r1}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000400)=ANY=[@ANYBLOB="54020000170001000000000000000000200100000000000000000000000000010000000000000000ac141400000000000000000000000000fc020000000000000003000000000000e000000200001000000000000000000000000000000000080a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="1242ffff040000000000000000000037660b6aff000000000000000000000000000000000000000002"], 0x254}}, 0x0)

1m33.58466735s ago: executing program 1 (id=3108):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000003, 0x20000000ec072, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

1m33.044512683s ago: executing program 1 (id=3128):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r1, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x7ffffffd, 0x4}, {}, {}, @result={0x1f00}}], 0x1c)
write$sndseq(r0, &(0x7f0000000540)=[{0x84, 0x77, 0x0, 0x0, @tick=0x7, {0xfd, 0xfe}, {0x7, 0x3d}, @raw32={[0x2, 0x7c, 0x8000000]}}, {0x2, 0x0, 0x5, 0x83, @tick=0x40000, {0xa, 0xff}, {}, @note={0x81, 0x0, 0x0, 0x8}}], 0x38)

1m32.949877844s ago: executing program 1 (id=3131):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
io_setup(0x4, &(0x7f00000014c0)=<r0=>0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000002c0)='mounts\x00')
io_submit(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0xfffe, r1, 0x0}])
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

1m32.852402495s ago: executing program 1 (id=3135):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f00000001c0)={0x1d, r1}, 0x10)
recvmmsg(r0, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000300)=""/50, 0x32}], 0x2}, 0x4}], 0x2, 0x40000002, 0x0)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}}, 0x20000000)

1m17.818372646s ago: executing program 35 (id=3135):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f00000001c0)={0x1d, r1}, 0x10)
recvmmsg(r0, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000300)=""/50, 0x32}], 0x2}, 0x4}], 0x2, 0x40000002, 0x0)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}}, 0x20000000)

56.090881399s ago: executing program 2 (id=4383):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000440), 0x23}, 0x38)
r2 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')

56.033230129s ago: executing program 2 (id=4385):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b703000008000040850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x0)
sysinfo(&(0x7f00000001c0)=""/138)

55.958089599s ago: executing program 2 (id=4388):
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)={0x20, r2, 0xc4fc9e906872338b, 0x70bd2e, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0x4, 0x3a}}}}}, 0x20}}, 0x40000)

55.92921272s ago: executing program 2 (id=4390):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10)

55.86005124s ago: executing program 2 (id=4394):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000780)='./file0/../file0\x00', 0x0, 0xa06002, 0x0)

55.81315302s ago: executing program 2 (id=4397):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r2, 0x0, 0x10000001}, 0x18)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYRESHEX], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xcd)

41.347920208s ago: executing program 36 (id=4397):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r2, 0x0, 0x10000001}, 0x18)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYRESHEX], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xcd)

31.18697514s ago: executing program 7 (id=5154):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r2, {}, {}, {0xffe0, 0x5}}, [@filter_kind_options=@f_u32={{0x8}, {0xfffffed3, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0xffffffff}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x20048850)

31.088511781s ago: executing program 7 (id=5156):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r2, 0x0, 0x10000001}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="6000000002060300000000000000000000000000050001000700000014000300686173683a69702c706f72742c697000140007800800124008070000080008400000001405000500020000000500040000000000090002"], 0x60}}, 0x0)

31.02397173s ago: executing program 7 (id=5157):
syz_open_dev$mouse(0x0, 0x5, 0x200000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$caif_stream(0x25, 0x1, 0x0)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000800)="c7", 0x1}], 0x1)

31.023697181s ago: executing program 7 (id=5158):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff2d, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a00)={0x30, r3, 0x1, 0xf6, 0x25dfdbfb, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000885}, 0x8000)

30.985857411s ago: executing program 7 (id=5161):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)
mount$bpf(0x0, &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x24000, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x8b7848, 0x0)

30.950188351s ago: executing program 7 (id=5163):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3c, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x378, 0x0, 0x111, 0x4b4, 0x170, 0x700, 0x2a8, 0x278, 0x278, 0x2a8, 0x278, 0x3, 0x0, {[{{@ipv6={@private1={0xfc, 0x1, '\x00', 0x1}, @empty, [], [], 'wg0\x00', 'team_slave_0\x00', {}, {}, 0x88, 0x0, 0x0, 0x48}, 0x0, 0x108, 0x170, 0x0, {}, [@common=@inet=@length={{0x28}, {0x9, 0x7, 0x1}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x8, {0x9}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xa}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d8)

16.34549641s ago: executing program 37 (id=5163):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3c, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x378, 0x0, 0x111, 0x4b4, 0x170, 0x700, 0x2a8, 0x278, 0x278, 0x2a8, 0x278, 0x3, 0x0, {[{{@ipv6={@private1={0xfc, 0x1, '\x00', 0x1}, @empty, [], [], 'wg0\x00', 'team_slave_0\x00', {}, {}, 0x88, 0x0, 0x0, 0x48}, 0x0, 0x108, 0x170, 0x0, {}, [@common=@inet=@length={{0x28}, {0x9, 0x7, 0x1}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x8, {0x9}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xa}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d8)

1.58563555s ago: executing program 6 (id=6010):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000140), &(0x7f0000000040)='%+9llu \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0300000004000000040000000100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="19"], 0x48)

1.46418062s ago: executing program 0 (id=6013):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r0}, 0x10)
r1 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

1.393257011s ago: executing program 0 (id=6016):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xa0000004})
epoll_wait(r1, &(0x7f00000000c0)=[{}], 0x1, 0x44000006)

1.340559401s ago: executing program 0 (id=6018):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x2, 0x7fe2, 0x3, 0x12}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x5)
fcntl$notify(r2, 0x402, 0x8000003d)

1.340451011s ago: executing program 6 (id=6019):
r0 = syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
syz_open_procfs(r0, &(0x7f0000000100)='maps\x00')

1.288876612s ago: executing program 0 (id=6021):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0x6}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x2, 0x3, 0x200, 0xb, 0x0, 0xf0, 0xf8, 0xf0, 0x1f8, 0x1f8, 0x1f8, 0x1f8, 0x1f8, 0x3, 0x0, {[{{@ip={@multicast1, @multicast1, 0x0, 0x0, 'ip6gretap0\x00', 'syzkaller1\x00', {}, {}, 0x11}, 0xb000000, 0x70, 0x90}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x260)

1.202158292s ago: executing program 0 (id=6022):
syz_clone(0xb44040, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x8, 0x101002, 0x0, 0x8000007, 0x8001, 0xfffffffe, 0x0, 0x0, 0x7cce8c743ee810da})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x84, 0xe9a, 0x0, 0x5, 0x9, 0xc, 0xfd, 0x0, 0x1})

994.531323ms ago: executing program 9 (id=6039):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000440)='kmem_cache_free\x00', r1, 0x0, 0x3}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
readlink(&(0x7f0000000080)='./cgroup\x00', &(0x7f00000005c0)=""/15, 0xf)

994.039933ms ago: executing program 0 (id=6028):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@orlov}, {@noinit_itable}, {@barrier_val={'barrier', 0x3d, 0x40000006}}]}, 0x1, 0x5f3, &(0x7f0000001200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

908.147574ms ago: executing program 6 (id=6030):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r1}, 0x18)
r2 = open(&(0x7f0000000280)='.\x00', 0x40080, 0x1d2)
fcntl$notify(r2, 0x402, 0x5)
fcntl$notify(r2, 0x402, 0x8000003d)

907.837054ms ago: executing program 9 (id=6031):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)={0x114, 0x29, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x103, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8", @typed={0x8, 0x145, 0x0, 0x0, @ipv4=@remote}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

884.892134ms ago: executing program 6 (id=6033):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000f0070000000900010073797a300000000080000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d3c00128014000180090001006c617374000000000400028010000180090001006c61737400000000140001800c000100636f756e746572000400028008000340000001"], 0xc8}, 0x1, 0x0, 0x0, 0x40000}, 0x20050800)

779.528074ms ago: executing program 9 (id=6037):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x448c0}, 0xd4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xaf)

779.423785ms ago: executing program 6 (id=6038):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0xd000000, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
sendfile(r0, r1, 0x0, 0x8000002b)
setsockopt$sock_int(r0, 0x1, 0x2d, &(0x7f0000000140)=0x4008, 0x4)

767.333175ms ago: executing program 5 (id=6040):
pipe(0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f0000000100)={[], [{@obj_user}, {@appraise}, {@subj_user={'subj_user', 0x3d, '!,['}}, {@context={'context', 0x3d, 'staff_u'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '^@'}}, {@flag='posixacl'}, {@subj_user={'subj_user', 0x3d, '$:,'}}, {@obj_role={'obj_role', 0x3d, 'ext4\x00'}}, {@appraise}]}, 0xff, 0x531, &(0x7f0000000640)="$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")

739.863045ms ago: executing program 9 (id=6041):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0x20000000002}, 0x18)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), 0x0}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)
socket$kcm(0x10, 0x2, 0x0)

643.879095ms ago: executing program 8 (id=6042):
syz_clone(0xb44040, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x8, 0x101002, 0x0, 0x8000007, 0x8001, 0xfffffffe, 0x0, 0x0, 0x7cce8c743ee810da})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x84, 0xe9a, 0x0, 0x5, 0x9, 0xc, 0xfd, 0x0, 0x1})

610.188086ms ago: executing program 5 (id=6043):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')

583.840926ms ago: executing program 9 (id=6044):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mlock(&(0x7f0000656000/0x3000)=nil, 0x3000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r0, 0x0)
mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4003, &(0x7f0000000c00)=0xc, 0x6, 0x2)

524.043506ms ago: executing program 5 (id=6045):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x1, 0x5, 0x0, 'queue0\x00', 0x5})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000100)={0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0x80000}, 0x100})

419.622557ms ago: executing program 8 (id=6046):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x82000, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, r2, 0x0, 0x3a)

387.197777ms ago: executing program 5 (id=6047):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f00000002c0)=@filename='./file0\x00', 0x0, 0x0)

263.814948ms ago: executing program 8 (id=6048):
setresuid(0xee00, 0xee00, 0x0)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000380), 0x12)

209.795688ms ago: executing program 5 (id=6049):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x5}, 0x18)
r2 = fsopen(&(0x7f0000000080)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000280)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\x8cU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^', &(0x7f00000000c0)='dE\x00', 0x0)
close(r2)

196.742668ms ago: executing program 8 (id=6050):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18)
r2 = socket(0x1e, 0x1, 0x0)
connect$tipc(r2, &(0x7f0000000040)=@name={0x1e, 0x2, 0x1, {{0x41, 0x3}, 0x9}}, 0x10)
shutdown(r2, 0x2)

99.570689ms ago: executing program 8 (id=6051):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000600000001"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000400), &(0x7f00000001c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x19, &(0x7f0000000a40)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xac5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)

99.345489ms ago: executing program 6 (id=6052):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
io_pgetevents(0x0, 0x2, 0x0, 0x0, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)

53.429139ms ago: executing program 5 (id=6053):
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x3, 0xff, 0x4e, 0x54, 0x0, 0xcb2, 0x89008, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x2, @perf_bp={0x0, 0x1}, 0x403a, 0x81, 0x800, 0x6, 0x8, 0x4002, 0x77c, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000000780)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x800}}, 0x120)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000080000000000000004850000006d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)

51.468679ms ago: executing program 9 (id=6054):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r2, 0x200000000114, 0x271f, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9)

0s ago: executing program 8 (id=6055):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000004c0), 0xce, r2}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r2, 0x0, &(0x7f0000000280)=""/201}, 0x20)

kernel console output (not intermixed with test programs):

10:4603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14684 comm="syz.5.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  136.022404][   T29] audit: type=1326 audit(2000000037.010:4604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14684 comm="syz.5.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  136.050482][   T29] audit: type=1326 audit(2000000037.010:4605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14684 comm="syz.5.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  136.106455][T14697] loop5: detected capacity change from 0 to 1024
[  136.116628][ T4442] netdevsim netdevsim7 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  136.126235][ T4442] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.151806][T14697] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.174909][ T4442] netdevsim netdevsim7 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  136.179459][T14697] ext4 filesystem being mounted at /609/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.184705][ T4442] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.319937][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.337464][ T4442] netdevsim netdevsim7 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  136.347720][ T4442] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.410090][ T4442] netdevsim netdevsim7 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  136.419568][ T4442] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.446070][T14203] veth0_vlan: entered promiscuous mode
[  136.490458][T14203] veth1_vlan: entered promiscuous mode
[  136.540202][T14203] veth0_macvtap: entered promiscuous mode
[  136.581446][T14203] veth1_macvtap: entered promiscuous mode
[  136.596391][T14203] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.626333][T14203] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.638450][ T4368] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.665707][ T4368] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.709439][ T4368] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.728664][T14754] can0: slcan on ptm0.
[  136.733546][ T4368] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.829932][T14754] can0 (unregistered): slcan off ptm0.
[  136.839914][T14754] Falling back ldisc for ptm0.
[  136.863589][T14773] vcan0 speed is unknown, defaulting to 1000
[  137.446240][T14837] loop8: detected capacity change from 0 to 8192
[  137.578063][T14872] loop2: detected capacity change from 0 to 7
[  137.803089][T14893] loop6: detected capacity change from 0 to 256
[  137.825560][T14894] netlink: 'syz.8.3683': attribute type 6 has an invalid length.
[  137.887278][T14903] vhci_hcd: invalid port number 129
[  137.892987][T14903] vhci_hcd: default hub control req: 2006 v02fe i0081 l0
[  137.939578][T14909] vcan0 speed is unknown, defaulting to 1000
[  138.180381][T14969] loop8: detected capacity change from 0 to 128
[  138.318435][T14993] loop9: detected capacity change from 0 to 7
[  138.327427][T14993] Buffer I/O error on dev loop9, logical block 0, async page read
[  138.342412][T14993] Buffer I/O error on dev loop9, logical block 0, async page read
[  138.353107][T14993]  loop9: unable to read partition table
[  138.376576][T14993] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  138.376576][T14993] 
) failed (rc=-5)
[  138.422150][T15000] loop8: detected capacity change from 0 to 1024
[  138.456001][T15000] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.529790][T15000] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  138.582649][T15000] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  138.598985][T15000] EXT4-fs (loop8): This should not happen!! Data will be lost
[  138.598985][T15000] 
[  138.610086][T15000] EXT4-fs (loop8): Total free blocks count 0
[  138.616985][T15000] EXT4-fs (loop8): Free/Dirty block details
[  138.623925][T15000] EXT4-fs (loop8): free_blocks=68451041280
[  138.630954][T15000] EXT4-fs (loop8): dirty_blocks=80
[  138.636871][T15000] EXT4-fs (loop8): Block reservation details
[  138.643362][T15000] EXT4-fs (loop8): i_reserved_data_blocks=5
[  138.709537][T15025] sd 0:0:1:0: device reset
[  138.718723][ T4337] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  138.887425][T15048] SELinux:  Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped).
[  138.934755][T15052] loop6: detected capacity change from 0 to 512
[  138.984246][T15052] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3732: bg 0: block 248: padding at end of block bitmap is not set
[  139.029453][T15052] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.3732: Failed to acquire dquot type 1
[  139.047952][T15052] EXT4-fs (loop6): 1 truncate cleaned up
[  139.057128][T15052] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.072312][T15052] ext4 filesystem being mounted at /240/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  139.122829][T10112] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.139656][ T4442] EXT4-fs error (device loop6): ext4_release_dquot:6981: comm kworker/u8:52: Failed to release dquot type 1
[  139.233487][T15078] sch_fq: defrate 4294967295 ignored.
[  139.253162][T15081] netlink: 'syz.8.3743': attribute type 1 has an invalid length.
[  139.263829][T15081] __nla_validate_parse: 7 callbacks suppressed
[  139.263846][T15081] netlink: 224 bytes leftover after parsing attributes in process `syz.8.3743'.
[  139.319307][T15091] xt_l2tp: wrong L2TP version: 1
[  139.405246][T15106] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3751'.
[  139.426051][T15106] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3751'.
[  139.567943][T15135] loop7: detected capacity change from 0 to 1024
[  139.577892][T15135] EXT4-fs: Ignoring removed orlov option
[  139.584677][T15135] EXT4-fs (loop7): Invalid log block size: 27052
[  139.985574][T15190] vcan0 speed is unknown, defaulting to 1000
[  140.028579][T15199] SELinux: failed to load policy
[  140.130790][T15229] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3785'.
[  140.142801][T15231] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  140.180549][T15229] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3785'.
[  140.221427][T15235] loop2: detected capacity change from 0 to 128
[  140.249885][T15235] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  140.278333][T15235] System zones: 1-3, 19-19, 35-36
[  140.286148][T15235] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  140.301852][T15235] ext4 filesystem being mounted at /805/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  140.400614][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  140.412384][T15250] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  140.422092][T15250] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  140.671958][T15286] SELinux: failed to load policy
[  140.681302][ T3409] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  140.700883][T15291] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.715387][ T3409] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  140.773452][T15291] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.795719][   T29] kauditd_printk_skb: 227 callbacks suppressed
[  140.795739][   T29] audit: type=1400 audit(2000000042.020:4830): avc:  denied  { prog_load } for  pid=15302 comm="syz.8.3808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  140.829938][   T29] audit: type=1400 audit(2000000042.020:4831): avc:  denied  { bpf } for  pid=15302 comm="syz.8.3808" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  140.859673][   T29] audit: type=1400 audit(2000000042.020:4832): avc:  denied  { perfmon } for  pid=15302 comm="syz.8.3808" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  140.908540][T15307] netlink: 300 bytes leftover after parsing attributes in process `syz.7.3810'.
[  140.920679][T15307] netlink: 152 bytes leftover after parsing attributes in process `syz.7.3810'.
[  140.977607][   T29] audit: type=1400 audit(2000000042.040:4833): avc:  denied  { prog_run } for  pid=15302 comm="syz.8.3808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  141.002060][   T29] audit: type=1400 audit(2000000042.130:4834): avc:  denied  { create } for  pid=15306 comm="syz.7.3810" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  141.025761][   T29] audit: type=1400 audit(2000000042.140:4835): avc:  denied  { write } for  pid=15306 comm="syz.7.3810" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  141.049329][   T29] audit: type=1400 audit(2000000042.140:4836): avc:  denied  { read } for  pid=15306 comm="syz.7.3810" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  141.074236][   T29] audit: type=1400 audit(2000000042.140:4837): avc:  denied  { ioctl } for  pid=15306 comm="syz.7.3810" path="socket:[36990]" dev="sockfs" ino=36990 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  141.105906][   T29] audit: type=1400 audit(2000000042.140:4838): avc:  denied  { bind } for  pid=15306 comm="syz.7.3810" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  141.132462][   T29] audit: type=1400 audit(2000000042.180:4839): avc:  denied  { write } for  pid=15292 comm="syz.5.3806" name="hidraw0" dev="devtmpfs" ino=625 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  141.163506][T15304] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  141.187764][T15291] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.196797][T15304] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  141.273665][T15291] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.351970][ T4342] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.366864][ T4342] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.377455][ T4342] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.386714][ T4342] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.753943][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.764035][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.772414][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.781482][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.791959][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.800753][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.809314][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.819698][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.828625][ T3409] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  141.838132][ T3409] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [] on 
[  141.990150][T15438] netlink: 'syz.5.3856': attribute type 1 has an invalid length.
[  142.028766][ T4442] Bluetooth: hci0: Frame reassembly failed (-84)
[  142.085910][T15460] No such timeout policy "syz1"
[  142.184128][T15473] netlink: 'syz.8.3871': attribute type 1 has an invalid length.
[  142.286311][T15485] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3875'.
[  142.296792][T15485] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3875'.
[  142.596923][T15518] loop8: detected capacity change from 0 to 2048
[  142.627400][T15523] loop6: detected capacity change from 0 to 256
[  142.636051][T15523] vfat: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  142.650369][T15518] Alternate GPT is invalid, using primary GPT.
[  142.657158][T15518]  loop8: p1 p2 p3
[  142.690324][T15536] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3896'.
[  142.704036][T15536] 0ªX¹¦À: renamed from caif0
[  142.720250][T15536] 0ªX¹¦À: entered allmulticast mode
[  142.728041][T15536] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  142.779852][T15549] loop8: detected capacity change from 0 to 512
[  142.791065][T15549] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  142.811115][T15549] EXT4-fs (loop8): 1 truncate cleaned up
[  142.817868][T15549] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.900231][T14203] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.001161][T15578] ip6gretap0: entered promiscuous mode
[  143.059269][T15586] xt_hashlimit: max too large, truncated to 1048576
[  143.092928][T15588] loop8: detected capacity change from 0 to 512
[  143.101273][T15588] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  143.115245][T15588] EXT4-fs (loop8): 1 truncate cleaned up
[  143.124866][T15588] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.168010][T14203] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.256458][T15604] vlan2: entered allmulticast mode
[  143.353982][T15612] loop5: detected capacity change from 0 to 256
[  143.362127][T15612] vfat: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[  143.435634][T15617] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.518400][T15617] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.612755][T15617] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.663563][T15617] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.737392][ T4442] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.752447][ T4442] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.768147][ T4337] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.784464][ T4337] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  144.039290][ T3543] Bluetooth: hci0: command 0x1003 tx timeout
[  144.045740][ T4107] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  144.116750][T15663] netlink: 'syz.7.3936': attribute type 21 has an invalid length.
[  144.126298][T15663] netlink: 'syz.7.3936': attribute type 21 has an invalid length.
[  144.177576][T15667] loop7: detected capacity change from 0 to 512
[  144.185685][T15667] EXT4-fs: Ignoring removed i_version option
[  144.193413][T15667] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  144.212228][T15667] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.227379][T15667] ext4 filesystem being mounted at /207/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.246797][T15667] EXT4-fs error (device loop7): ext4_do_update_inode:5632: inode #2: comm syz.7.3938: corrupted inode contents
[  144.259333][T15667] EXT4-fs (loop7): Remounting filesystem read-only
[  144.280065][T11240] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.384272][T15682] loop7: detected capacity change from 0 to 128
[  144.536577][T15699] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  144.610467][T15709] wireguard0: entered promiscuous mode
[  144.617475][T15709] wireguard0: entered allmulticast mode
[  144.698080][T15729] __nla_validate_parse: 5 callbacks suppressed
[  144.698098][T15729] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3962'.
[  144.722738][T15729] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3962'.
[  144.733766][T15729] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3962'.
[  144.744704][T15729] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3962'.
[  144.757533][T15729] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3962'.
[  144.804452][T15735] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3965'.
[  144.818400][T15735] ip6gre1: entered allmulticast mode
[  144.896562][T15746] loop7: detected capacity change from 0 to 1024
[  144.949845][T15746] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.990886][T15762] netlink: 'syz.2.3974': attribute type 21 has an invalid length.
[  145.001161][T15762] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3974'.
[  145.046652][T15746] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4193: comm syz.7.3968: Allocating blocks 449-513 which overlap fs metadata
[  145.055956][T15762] netlink: 'syz.2.3974': attribute type 21 has an invalid length.
[  145.071615][T15762] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3974'.
[  145.091588][T15745] EXT4-fs (loop7): pa ffff8881072507e0: logic 48, phys. 177, len 21
[  145.101600][T15745] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  145.135254][T11240] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.171633][T15768] wireguard0: entered promiscuous mode
[  145.177874][T15768] wireguard0: entered allmulticast mode
[  145.393247][T15801] loop7: detected capacity change from 0 to 512
[  145.406003][T15801] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #15: comm syz.7.3984: inode has both inline data and extents flags
[  145.423640][T15801] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.3984: couldn't read orphan inode 15 (err -117)
[  145.440069][T15801] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.484867][T11240] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.567211][T15822] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3992'.
[  145.646311][T15830] SELinux: failed to load policy
[  145.672928][T15836] netlink: 176 bytes leftover after parsing attributes in process `syz.7.3999'.
[  145.799401][   T29] kauditd_printk_skb: 510 callbacks suppressed
[  145.799420][   T29] audit: type=1326 audit(145.762:5350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  145.839842][   T29] audit: type=1326 audit(145.812:5351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  145.885163][   T29] audit: type=1326 audit(145.842:5352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  145.913660][   T29] audit: type=1326 audit(145.842:5353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  145.948176][   T29] audit: type=1326 audit(145.842:5354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  145.976190][   T29] audit: type=1326 audit(145.842:5355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  146.006819][   T29] audit: type=1326 audit(145.842:5356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  146.036175][   T29] audit: type=1326 audit(145.842:5357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  146.067720][   T29] audit: type=1326 audit(145.842:5358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  146.099302][   T29] audit: type=1326 audit(145.842:5359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15852 comm="syz.2.4009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f15e7a4f6c9 code=0x7ffc0000
[  146.313891][ T9942] hid_parser_main: 21 callbacks suppressed
[  146.313932][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.330539][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.339949][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.349163][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.358475][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.367404][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.376376][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.385427][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.395699][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.404811][ T9942] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  146.422692][T15901] loop5: detected capacity change from 0 to 512
[  146.431428][T15901] EXT4-fs: Ignoring removed bh option
[  146.438006][T15901] EXT4-fs: Ignoring removed oldalloc option
[  146.444883][T15901] ext4: Unknown parameter 'dont_measure'
[  146.455304][ T9942] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  146.905589][T15955] netlink: 'syz.5.4046': attribute type 10 has an invalid length.
[  147.777830][T16067] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  147.790510][T16067] SELinux: failed to load policy
[  147.938547][T16093] loop5: detected capacity change from 0 to 512
[  147.989860][T16101] netlink: 'syz.5.4102': attribute type 7 has an invalid length.
[  148.035275][T16105] smc: net device bond0 applied user defined pnetid SYZ0
[  148.045239][T16107] loop8: detected capacity change from 0 to 512
[  148.045454][T16105] smc: net device bond0 erased user defined pnetid SYZ0
[  148.075595][T16107] EXT4-fs warning (device loop8): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  148.094122][T16107] EXT4-fs (loop8): mount failed
[  148.294168][T16135] loop5: detected capacity change from 0 to 1024
[  148.314845][T16135] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.375048][T16135] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.4116: Allocating blocks 449-513 which overlap fs metadata
[  148.405931][T16134] EXT4-fs (loop5): pa ffff888107250850: logic 48, phys. 177, len 21
[  148.415781][T16134] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  148.447544][T16150] netlink: 'syz.7.4120': attribute type 6 has an invalid length.
[  148.459170][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.492215][T16156] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  148.502085][T16156] batman_adv: batadv0: Removing interface: batadv_slave_0
[  148.503434][T16156] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  148.520726][T16156] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.891321][ T9942] hid-generic 0000:3000000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  149.063957][T16265] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  149.077919][T16267] netlink: 'syz.7.4155': attribute type 3 has an invalid length.
[  149.534821][T16324] netlink: 'syz.7.4180': attribute type 12 has an invalid length.
[  149.933107][T16375] loop8: detected capacity change from 0 to 128
[  149.949759][T16375] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  149.972097][T16375] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  150.037960][T16381] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  150.063764][T16387] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  150.095748][T16383] SELinux: failed to load policy
[  150.104402][T16389] __nla_validate_parse: 10 callbacks suppressed
[  150.104420][T16389] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4198'.
[  150.124255][T16389] netlink: 36 bytes leftover after parsing attributes in process `syz.8.4198'.
[  150.504144][T16416] loop2: detected capacity change from 0 to 512
[  150.523093][T16416] EXT4-fs (loop2): orphan cleanup on readonly fs
[  150.568543][T16416] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.4210: bad orphan inode 13
[  150.615849][T16416] ext4_test_bit(bit=12, block=18) = 1
[  150.622833][T16416] is_bad_inode(inode)=0
[  150.627552][T16416] NEXT_ORPHAN(inode)=2130706432
[  150.634928][T16416] max_ino=32
[  150.638711][T16416] i_nlink=1
[  150.651389][T16416] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  150.741561][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.860113][T16457] loop8: detected capacity change from 0 to 256
[  150.875498][T16461] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4228'.
[  150.888972][   T29] kauditd_printk_skb: 770 callbacks suppressed
[  150.888988][   T29] audit: type=1400 audit(150.862:6129): avc:  denied  { mount } for  pid=16458 comm="syz.6.4229" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  150.905998][T16457] FAT-fs (loop8): error, corrupted file size (i_pos 196, 2097152)
[  150.934947][T16457] FAT-fs (loop8): Filesystem has been set read-only
[  150.942430][T16457] FAT-fs (loop8): error, corrupted file size (i_pos 196, 2097152)
[  150.957626][T16457] FAT-fs (loop8): error, corrupted file size (i_pos 196, 2097152)
[  150.967874][T16457] FAT-fs (loop8): error, corrupted file size (i_pos 196, 2097152)
[  151.040536][   T29] audit: type=1400 audit(151.012:6130): avc:  denied  { block_suspend } for  pid=16464 comm="syz.7.4230" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  151.151406][T16487] rdma_op ffff888114f19980 conn xmit_rdma 0000000000000000
[  151.166389][   T29] audit: type=1400 audit(151.132:6131): avc:  denied  { name_bind } for  pid=16488 comm="syz.6.4237" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  151.222862][T16492] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4239'.
[  151.235192][T16492] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4239'.
[  151.255813][T16493] hub 2-0:1.0: USB hub found
[  151.277103][T16493] hub 2-0:1.0: 8 ports detected
[  151.316565][T16505] x_tables: duplicate underflow at hook 1
[  151.371506][   T29] audit: type=1400 audit(151.342:6132): avc:  denied  { relabelfrom } for  pid=16510 comm="syz.8.4245" name="" dev="pipefs" ino=39684 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  151.411080][   T29] audit: type=1326 audit(151.382:6133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16514 comm="syz.7.4247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aafc2f6c9 code=0x7ffc0000
[  151.451167][   T29] audit: type=1326 audit(151.382:6134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16514 comm="syz.7.4247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f8aafc2f6c9 code=0x7ffc0000
[  151.481683][   T29] audit: type=1326 audit(151.382:6135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16514 comm="syz.7.4247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aafc2f6c9 code=0x7ffc0000
[  151.509968][   T29] audit: type=1326 audit(151.412:6136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16514 comm="syz.7.4247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aafc2f6c9 code=0x7ffc0000
[  151.540083][   T29] audit: type=1400 audit(151.512:6137): avc:  denied  { connect } for  pid=16516 comm="syz.6.4248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  151.581966][T16526] GUP no longer grows the stack in syz.7.4252 (16526): 200000004000-20000000a000 (200000002000)
[  151.594185][T16526] CPU: 0 UID: 0 PID: 16526 Comm: syz.7.4252 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  151.594225][T16526] Tainted: [W]=WARN
[  151.594327][T16526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  151.594391][T16526] Call Trace:
[  151.594399][T16526]  <TASK>
[  151.594408][T16526]  __dump_stack+0x1d/0x30
[  151.594449][T16526]  dump_stack_lvl+0xe8/0x140
[  151.594477][T16526]  dump_stack+0x15/0x1b
[  151.594498][T16526]  __get_user_pages+0x1968/0x1ed0
[  151.594540][T16526]  get_user_pages_remote+0x1d5/0x6c0
[  151.594593][T16526]  __access_remote_vm+0x15c/0x590
[  151.594632][T16526]  access_remote_vm+0x32/0x40
[  151.594662][T16526]  proc_pid_cmdline_read+0x32b/0x6c0
[  151.594732][T16526]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  151.594772][T16526]  vfs_readv+0x3fb/0x690
[  151.594824][T16526]  __x64_sys_preadv+0xfd/0x1c0
[  151.594896][T16526]  x64_sys_call+0x282e/0x3000
[  151.594923][T16526]  do_syscall_64+0xd2/0x200
[  151.594945][T16526]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  151.594977][T16526]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  151.595059][T16526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.595093][T16526] RIP: 0033:0x7f8aafc2f6c9
[  151.595119][T16526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.595139][T16526] RSP: 002b:00007f8aae68f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  151.595180][T16526] RAX: ffffffffffffffda RBX: 00007f8aafe85fa0 RCX: 00007f8aafc2f6c9
[  151.595196][T16526] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003
[  151.595212][T16526] RBP: 00007f8aafcb1f91 R08: 0000000000000000 R09: 0000000000000000
[  151.595297][T16526] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  151.595315][T16526] R13: 00007f8aafe86038 R14: 00007f8aafe85fa0 R15: 00007ffea9ad6068
[  151.595341][T16526]  </TASK>
[  151.913331][   T29] audit: type=1326 audit(151.872:6138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16535 comm="syz.7.4258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8aafc26567 code=0x7ffc0000
[  151.999017][T16544] loop2: detected capacity change from 0 to 128
[  152.009817][T16544] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  152.029548][T16544] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  152.051320][T16547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  152.076836][T16547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  152.129896][T16376] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  152.357040][T16563] loop2: detected capacity change from 0 to 1024
[  152.367039][T16563] EXT4-fs: Ignoring removed nobh option
[  152.375979][T16563] EXT4-fs: Ignoring removed bh option
[  152.387822][T16563] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.421228][T16563] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.4268: Allocating blocks 385-513 which overlap fs metadata
[  152.443842][T16563] EXT4-fs (loop2): pa ffff8881072507e0: logic 16, phys. 129, len 24
[  152.455434][T16563] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[  152.486646][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.560650][T16574] ref_ctr_offset mismatch. inode: 0x11ee offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  152.831987][T16588] loop5: detected capacity change from 0 to 512
[  152.849569][T16588] EXT4-fs (loop5): orphan cleanup on readonly fs
[  152.878708][T16588] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.4276: bad orphan inode 13
[  152.897522][T16595] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  152.906291][T16588] ext4_test_bit(bit=12, block=18) = 1
[  152.914600][T16588] is_bad_inode(inode)=0
[  152.919611][T16588] NEXT_ORPHAN(inode)=2130706432
[  152.925671][T16588] max_ino=32
[  152.929941][T16588] i_nlink=1
[  152.938101][T16588] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  153.007567][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.062515][T16605] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  153.265785][T16647] tipc: Started in network mode
[  153.272627][T16647] tipc: Node identity 4, cluster identity 4711
[  153.279483][T16647] tipc: Node number set to 4
[  153.382545][T16655] netlink: 'syz.7.4300': attribute type 3 has an invalid length.
[  153.461704][T16669] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  153.461704][T16669]    program syz.7.4304 not setting count and/or reply_len properly
[  153.575661][T16678] loop6: detected capacity change from 0 to 1024
[  153.602183][T16678] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.700921][T16678] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4193: comm syz.6.4308: Allocating blocks 449-513 which overlap fs metadata
[  153.759993][T16677] EXT4-fs (loop6): pa ffff8881072072a0: logic 48, phys. 177, len 21
[  153.771462][T16677] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  153.852813][T10112] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.212632][T16749] netlink: 'syz.2.4339': attribute type 1 has an invalid length.
[  154.295534][T16761] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4344'.
[  154.309560][T16761] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4344'.
[  154.343499][T16765] netlink: 'syz.2.4345': attribute type 3 has an invalid length.
[  154.965890][T16799] loop7: detected capacity change from 0 to 1024
[  154.981064][T16799] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.018072][T16799] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4193: comm syz.7.4359: Allocating blocks 449-513 which overlap fs metadata
[  155.043661][T16798] EXT4-fs (loop7): pa ffff888107250930: logic 48, phys. 177, len 21
[  155.053674][T16798] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  155.091983][T11240] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.095996][T16819] loop6: detected capacity change from 0 to 1024
[  155.114884][T16819] EXT4-fs: Ignoring removed nobh option
[  155.122703][T16819] EXT4-fs: Ignoring removed bh option
[  155.144703][T16826] sd 0:0:1:0: device reset
[  155.157156][T16819] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.180294][T16819] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4193: comm syz.6.4364: Allocating blocks 385-513 which overlap fs metadata
[  155.211240][T16819] EXT4-fs (loop6): pa ffff888107207230: logic 16, phys. 129, len 24
[  155.221203][T16819] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[  155.265895][T10112] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.335183][T16854] vcan0 speed is unknown, defaulting to 1000
[  155.502782][T16851] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.523349][T16891] sd 0:0:1:0: device reset
[  155.537446][T16851] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.713218][T16911] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16911 comm=syz.8.4387
[  155.881677][T16927] xt_policy: output policy not valid in PREROUTING and INPUT
[  155.891212][   T29] kauditd_printk_skb: 179 callbacks suppressed
[  155.891228][   T29] audit: type=1326 audit(155.852:6318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  155.930188][   T29] audit: type=1326 audit(155.862:6319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.048705][   T29] audit: type=1326 audit(155.872:6320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.077327][   T29] audit: type=1326 audit(155.902:6321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.103508][   T29] audit: type=1326 audit(155.902:6322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.131037][   T29] audit: type=1326 audit(155.902:6323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.156496][   T29] audit: type=1326 audit(155.932:6324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.184478][   T29] audit: type=1326 audit(155.942:6325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.211856][   T29] audit: type=1326 audit(155.952:6326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.242744][   T29] audit: type=1326 audit(155.962:6327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16920 comm="syz.8.4393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  156.348041][T16945] loop5: detected capacity change from 0 to 512
[  156.357411][T16945] EXT4-fs: Ignoring removed bh option
[  156.369329][T16945] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  156.400260][T16945] EXT4-fs (loop5): 1 truncate cleaned up
[  156.414999][T16945] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.490432][T16945] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  156.543985][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.565407][T16972] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4411'.
[  156.576076][T16972] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4411'.
[  156.612438][T16977] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  156.632778][T16977] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  156.724589][T16994] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4420'.
[  157.098203][T17032] loop8: detected capacity change from 0 to 512
[  157.106198][T17034] binfmt_misc: register: failed to install interpreter file ./file0
[  157.127845][T17032] EXT4-fs warning (device loop8): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  157.170015][T17032] EXT4-fs (loop8): mount failed
[  157.222274][T17042] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  157.239429][T17042] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  157.725415][T17085] loop8: detected capacity change from 0 to 256
[  157.728953][T17079] SELinux: failed to load policy
[  157.744289][T17087] xt_hashlimit: max too large, truncated to 1048576
[  157.805220][T17087] Cannot find add_set index 0 as target
[  157.817999][T17085] FAT-fs (loop8): Directory bread(block 64) failed
[  157.829367][T17085] FAT-fs (loop8): Directory bread(block 65) failed
[  157.836910][T17085] FAT-fs (loop8): Directory bread(block 66) failed
[  157.869561][T17085] FAT-fs (loop8): Directory bread(block 67) failed
[  157.876619][T17085] FAT-fs (loop8): Directory bread(block 68) failed
[  157.899319][T17085] FAT-fs (loop8): Directory bread(block 69) failed
[  157.919615][T17085] FAT-fs (loop8): Directory bread(block 70) failed
[  157.928929][T17085] FAT-fs (loop8): Directory bread(block 71) failed
[  157.949340][T17085] FAT-fs (loop8): Directory bread(block 72) failed
[  157.966973][T17085] FAT-fs (loop8): Directory bread(block 73) failed
[  158.039022][T17085] bio_check_eod: 97 callbacks suppressed
[  158.039044][T17085] syz.8.4455: attempt to access beyond end of device
[  158.039044][T17085] loop8: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  158.164289][T17127] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.180917][T17133] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  158.190706][T17127] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.326015][T17146] loop5: detected capacity change from 0 to 512
[  158.333745][T17146] EXT4-fs: Ignoring removed bh option
[  158.340761][T17146] EXT4-fs: Ignoring removed nobh option
[  158.346853][T17146] EXT4-fs: Ignoring removed oldalloc option
[  158.357138][T17146] EXT4-fs (loop5): 1 truncate cleaned up
[  158.367198][T17146] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.398122][T17146] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.419442][ T1035] hid_parser_main: 20 callbacks suppressed
[  158.419545][ T1035] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  158.454802][ T1035] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  158.771922][T17175] loop6: detected capacity change from 0 to 512
[  158.791369][T17175] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.4485: inode has both inline data and extents flags
[  158.817509][T17175] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.4485: couldn't read orphan inode 15 (err -117)
[  158.840177][T17175] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.858755][T17188] program syz.5.4488 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  159.098309][T10112] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.179782][T17221] loop6: detected capacity change from 0 to 256
[  159.203634][T17221] FAT-fs (loop6): Directory bread(block 64) failed
[  159.224437][T17221] FAT-fs (loop6): Directory bread(block 65) failed
[  159.233127][T17221] FAT-fs (loop6): Directory bread(block 66) failed
[  159.242204][T17221] FAT-fs (loop6): Directory bread(block 67) failed
[  159.249695][T17221] FAT-fs (loop6): Directory bread(block 68) failed
[  159.257592][T17221] FAT-fs (loop6): Directory bread(block 69) failed
[  159.287263][T17221] FAT-fs (loop6): Directory bread(block 70) failed
[  159.295438][T17221] FAT-fs (loop6): Directory bread(block 71) failed
[  159.305527][T17221] FAT-fs (loop6): Directory bread(block 72) failed
[  159.314499][T17221] FAT-fs (loop6): Directory bread(block 73) failed
[  159.323970][T17229] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4504'.
[  159.379780][T17233] bridge0: entered allmulticast mode
[  159.379845][T17221] syz.6.4502: attempt to access beyond end of device
[  159.379845][T17221] loop6: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  159.419565][T17233] pim6reg: entered allmulticast mode
[  159.522553][T17247] syzkaller1: entered promiscuous mode
[  159.529075][T17247] syzkaller1: entered allmulticast mode
[  161.113834][T17260] loop7: detected capacity change from 0 to 164
[  161.164946][T17260] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  161.185871][   T29] kauditd_printk_skb: 139 callbacks suppressed
[  161.185890][   T29] audit: type=1400 audit(161.276:6466): avc:  denied  { mount } for  pid=17259 comm="syz.7.4514" name="/" dev="loop7" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  161.222392][T17260] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  161.273070][   T29] audit: type=1400 audit(161.360:6467): avc:  denied  { unmount } for  pid=11240 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  161.325094][T17273] vcan0 speed is unknown, defaulting to 1000
[  161.346324][T17280] netlink: 'syz.8.4523': attribute type 3 has an invalid length.
[  161.429648][   T29] audit: type=1326 audit(161.528:6468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17290 comm="syz.8.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  161.480441][   T29] audit: type=1326 audit(161.528:6469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17290 comm="syz.8.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  161.507041][   T29] audit: type=1326 audit(161.539:6470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17290 comm="syz.8.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  161.529617][T17295] netlink: 'syz.7.4526': attribute type 6 has an invalid length.
[  161.534544][   T29] audit: type=1326 audit(161.539:6471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17290 comm="syz.8.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  161.569300][   T29] audit: type=1326 audit(161.539:6472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17290 comm="syz.8.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  161.597234][   T29] audit: type=1326 audit(161.539:6473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17290 comm="syz.8.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  161.625998][   T29] audit: type=1326 audit(161.539:6474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17290 comm="syz.8.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  161.655554][   T29] audit: type=1326 audit(161.539:6475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17290 comm="syz.8.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  161.665063][T17289] vcan0 speed is unknown, defaulting to 1000
[  162.750820][T17408] loop5: detected capacity change from 0 to 164
[  162.778710][T17408] syz.5.4559: attempt to access beyond end of device
[  162.778710][T17408] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  162.823217][T17408] syz.5.4559: attempt to access beyond end of device
[  162.823217][T17408] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  162.835320][T17416] loop7: detected capacity change from 0 to 512
[  162.876425][T17425] ip6t_srh: unknown srh match flags  4000
[  162.901829][T17418] loop8: detected capacity change from 0 to 1024
[  162.909984][T17418] EXT4-fs: Ignoring removed nobh option
[  162.916591][T17418] EXT4-fs: Ignoring removed bh option
[  162.965315][T17416] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.4563: bad orphan inode 13
[  162.984001][T17416] ext4_test_bit(bit=12, block=4) = 1
[  162.989728][T17418] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.991252][T17416] is_bad_inode(inode)=0
[  163.009966][T17416] NEXT_ORPHAN(inode)=0
[  163.014534][T17416] max_ino=32
[  163.017972][T17416] i_nlink=1
[  163.077073][T17416] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.176835][T17418] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4193: comm syz.8.4564: Allocating blocks 1-17 which overlap fs metadata
[  163.196050][T17418] EXT4-fs (loop8): Remounting filesystem read-only
[  163.258482][T14203] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.324326][T17450] netlink: 7 bytes leftover after parsing attributes in process `syz.8.4573'.
[  163.337289][T11240] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.349484][T17450] netlink: 7 bytes leftover after parsing attributes in process `syz.8.4573'.
[  163.385398][T17454] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  163.422593][T17456] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4575'.
[  163.584849][T17476] lo speed is unknown, defaulting to 1000
[  163.592333][T17476] lo speed is unknown, defaulting to 1000
[  163.600275][T17476] lo speed is unknown, defaulting to 1000
[  163.616849][T17476] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  163.634543][T17476] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  163.650943][T17476] lo speed is unknown, defaulting to 1000
[  163.659000][T17476] lo speed is unknown, defaulting to 1000
[  163.666905][T17476] lo speed is unknown, defaulting to 1000
[  163.673521][T17476] lo speed is unknown, defaulting to 1000
[  163.685912][T17476] lo speed is unknown, defaulting to 1000
[  163.694877][T17476] lo speed is unknown, defaulting to 1000
[  163.704746][T17476] lo speed is unknown, defaulting to 1000
[  164.007504][T17509] rdma_op ffff88811fe2f580 conn xmit_rdma 0000000000000000
[  164.025338][T17511] SELinux: failed to load policy
[  164.966453][T17592] pim6reg: entered allmulticast mode
[  164.980417][T17592] pim6reg: left allmulticast mode
[  165.034547][T17602] loop5: detected capacity change from 0 to 2048
[  165.084390][T17602] Alternate GPT is invalid, using primary GPT.
[  165.092567][T17602]  loop5: p2 p3 p7
[  165.657579][T17657] IPv6: Can't replace route, no match found
[  165.729416][T17662] netlink: 96 bytes leftover after parsing attributes in process `syz.5.4662'.
[  166.052450][T17702] netlink: 13602 bytes leftover after parsing attributes in process `syz.5.4679'.
[  166.167828][T17712] atomic_op ffff888149acb928 conn xmit_atomic 0000000000000000
[  166.196212][   T29] kauditd_printk_skb: 205 callbacks suppressed
[  166.196232][   T29] audit: type=1326 audit(166.536:6681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.234739][   T29] audit: type=1326 audit(166.578:6682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.263189][   T29] audit: type=1326 audit(166.578:6683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.289590][   T29] audit: type=1326 audit(166.578:6684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.316550][   T29] audit: type=1326 audit(166.578:6685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.355313][   T29] audit: type=1326 audit(166.578:6686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.383319][   T29] audit: type=1326 audit(166.578:6687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.409166][   T29] audit: type=1326 audit(166.578:6688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.438503][   T29] audit: type=1326 audit(166.662:6689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.466826][   T29] audit: type=1326 audit(166.693:6690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17715 comm="syz.5.4685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  166.547085][T17724] xt_hashlimit: max too large, truncated to 1048576
[  166.556017][T17724] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  166.837083][T17755] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4704'.
[  166.887939][T17761] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  167.030194][T17785] loop5: detected capacity change from 0 to 2048
[  167.126598][T17785] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.178468][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.198744][T17804] vlan2: entered allmulticast mode
[  167.667295][T17866] loop7: detected capacity change from 0 to 1024
[  167.695726][T17866] EXT4-fs: Ignoring removed orlov option
[  167.748376][T17866] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.311168][T17910] xt_hashlimit: max too large, truncated to 1048576
[  168.394055][T17914] loop8: detected capacity change from 0 to 1024
[  168.403084][T17914] EXT4-fs: Ignoring removed orlov option
[  168.417894][T17914] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.473879][T14203] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.585625][T11240] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.708311][T17940] loop8: detected capacity change from 0 to 512
[  168.718775][T17940] EXT4-fs: Ignoring removed bh option
[  168.726717][T17940] EXT4-fs: Ignoring removed nobh option
[  168.733681][T17940] EXT4-fs: Ignoring removed oldalloc option
[  168.755863][T17940] EXT4-fs (loop8): 1 truncate cleaned up
[  168.770241][T17940] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.812305][T17940] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.044719][T17970] netlink: 332 bytes leftover after parsing attributes in process `syz.5.4788'.
[  169.112954][ T9939] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  169.124372][ T9939] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  169.322911][T17987] pim6reg: entered allmulticast mode
[  169.407976][T18003] netlink: 14 bytes leftover after parsing attributes in process `syz.8.4800'.
[  169.432907][T18003] hsr_slave_0: left promiscuous mode
[  169.463286][T18003] hsr_slave_1: left promiscuous mode
[  169.715406][T18033] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4812'.
[  170.101621][T18061] netlink: 'syz.8.4825': attribute type 1 has an invalid length.
[  170.530609][T18078] vcan0 speed is unknown, defaulting to 1000
[  170.623763][T18078] lo speed is unknown, defaulting to 1000
[  170.801970][T18078] chnl_net:caif_netlink_parms(): no params data found
[  170.948902][T18078] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.957894][T18078] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.975640][T18078] bridge_slave_0: entered allmulticast mode
[  170.985450][T18078] bridge_slave_0: entered promiscuous mode
[  171.016705][T18078] bridge0: port 2(bridge_slave_1) entered blocking state
[  171.019840][   T29] kauditd_printk_skb: 195 callbacks suppressed
[  171.019860][   T29] audit: type=1326 audit(171.596:6886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  171.025241][T18078] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.045527][   T29] audit: type=1326 audit(171.606:6887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  171.060583][T18078] bridge_slave_1: entered allmulticast mode
[  171.067577][   T29] audit: type=1326 audit(171.606:6888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  171.129258][   T29] audit: type=1326 audit(171.606:6889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  171.156827][   T29] audit: type=1326 audit(171.606:6890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  171.188464][   T29] audit: type=1326 audit(171.774:6891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  171.219813][   T29] audit: type=1326 audit(171.774:6892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  171.221100][T18078] bridge_slave_1: entered promiscuous mode
[  171.252701][   T29] audit: type=1326 audit(171.774:6893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f851125df10 code=0x7ffc0000
[  171.291320][   T29] audit: type=1400 audit(171.774:6894): avc:  denied  { write } for  pid=18278 comm="syz.5.4846" name="event1" dev="devtmpfs" ino=243 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  171.320462][   T29] audit: type=1326 audit(171.774:6895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18278 comm="syz.5.4846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  171.380297][   T37] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  171.395531][   T37] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.441608][T18078] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  171.455437][T18078] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  171.496670][   T37] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  171.508694][   T37] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.526452][T18343] loop7: detected capacity change from 0 to 256
[  171.536644][T18078] team0: Port device team_slave_0 added
[  171.551278][T18078] team0: Port device team_slave_1 added
[  171.592695][   T37] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  171.606309][   T37] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.630026][T18078] batman_adv: batadv0: Adding interface: batadv_slave_0
[  171.639147][T18078] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  171.639495][T18378] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4858'.
[  171.668615][T18078] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  171.699100][T18078] batman_adv: batadv0: Adding interface: batadv_slave_1
[  171.708065][T18078] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  171.739626][T18078] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  171.791581][   T37] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  171.804103][   T37] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.883509][T18078] hsr_slave_0: entered promiscuous mode
[  171.896995][T18078] hsr_slave_1: entered promiscuous mode
[  171.915994][T18078] debugfs: 'hsr0' already exists in 'hsr'
[  171.922670][T18078] Cannot create hsr debugfs directory
[  172.105641][ T4371] Bluetooth: hci0: Frame reassembly failed (-84)
[  172.106433][   T37] bond0 (unregistering): Released all slaves
[  172.122267][T18472] netlink: 'syz.7.4875': attribute type 16 has an invalid length.
[  172.131259][T18472] netlink: 'syz.7.4875': attribute type 17 has an invalid length.
[  172.152416][T18472] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  172.230961][   T37] tipc: Disabling bearer <udp:£>
[  172.236923][   T37] tipc: Left network mode
[  172.278627][T18531] loop7: detected capacity change from 0 to 764
[  172.292234][T18531] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  172.306837][T18531] program syz.7.4879 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  172.323019][T18078] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  172.342041][T18541] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  172.342264][T18078] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  172.359831][T18538] IPVS: stopping master sync thread 18541 ...
[  172.380213][   T37] hsr_slave_0: left promiscuous mode
[  172.387455][   T37] hsr_slave_1: left promiscuous mode
[  172.404218][   T37] veth1_macvtap: left promiscuous mode
[  172.415937][   T37] veth0_macvtap: left promiscuous mode
[  172.599043][T16371] smc: removing ib device syz1
[  172.606423][T18078] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  172.637451][ T9942] vcan0 speed is unknown, defaulting to 1000
[  172.637738][T18078] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  172.645350][ T9942] syz1: Port: 1 Link DOWN
[  172.831174][T18078] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.876634][T18078] 8021q: adding VLAN 0 to HW filter on device team0
[  172.908037][ T4334] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.918079][ T4334] bridge0: port 1(bridge_slave_0) entered forwarding state
[  172.967049][ T4334] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.975033][ T4334] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.128712][T18078] 8021q: adding VLAN 0 to HW filter on device batadv0
[  173.312325][T18078] veth0_vlan: entered promiscuous mode
[  173.322227][T18078] veth1_vlan: entered promiscuous mode
[  173.339306][T18078] veth0_macvtap: entered promiscuous mode
[  173.350790][T18078] veth1_macvtap: entered promiscuous mode
[  173.364291][T18078] batman_adv: batadv0: Interface activated: batadv_slave_0
[  173.380313][T18078] batman_adv: batadv0: Interface activated: batadv_slave_1
[  173.394026][ T4334] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.405559][ T4334] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.432360][ T4334] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.448804][ T4334] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.501823][T18626] netlink: 'syz.7.4902': attribute type 1 has an invalid length.
[  174.074260][ T4107] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  174.458170][T18715] netlink: 96 bytes leftover after parsing attributes in process `syz.6.4935'.
[  174.711924][T18733] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  174.734088][T18737] SELinux: failed to load policy
[  174.805386][T18747] lo speed is unknown, defaulting to 1000
[  174.921589][T18781] loop8: detected capacity change from 0 to 2048
[  174.972798][T18781] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.048487][T18790] atomic_op ffff888119565d28 conn xmit_atomic 0000000000000000
[  175.113337][T14203] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.354506][T18812] netlink: 'syz.8.4962': attribute type 16 has an invalid length.
[  175.364389][T18812] netlink: 'syz.8.4962': attribute type 17 has an invalid length.
[  175.395414][T18812] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  175.413561][ T9941] lo speed is unknown, defaulting to 1000
[  175.481417][T18823] loop7: detected capacity change from 0 to 512
[  175.494269][T18823] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.536324][T11240] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.857632][T18846] netlink: 'syz.9.4979': attribute type 21 has an invalid length.
[  175.867892][T18846] netlink: 'syz.9.4979': attribute type 1 has an invalid length.
[  175.877259][T18846] netlink: 144 bytes leftover after parsing attributes in process `syz.9.4979'.
[  176.054650][T18862] loop5: detected capacity change from 0 to 512
[  176.076521][T18862] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.126168][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.138926][T18872] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4987'.
[  176.149278][   T29] kauditd_printk_skb: 127 callbacks suppressed
[  176.156620][   T29] audit: type=1326 audit(176.971:7023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.181682][   T29] audit: type=1326 audit(176.981:7024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.212696][   T29] audit: type=1326 audit(176.981:7025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.239488][   T29] audit: type=1326 audit(176.981:7026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.268593][   T29] audit: type=1326 audit(176.981:7027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.297786][   T29] audit: type=1326 audit(176.981:7028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.326221][   T29] audit: type=1326 audit(176.981:7029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.356628][   T29] audit: type=1326 audit(176.981:7030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.386453][   T29] audit: type=1326 audit(176.981:7031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.424076][   T29] audit: type=1326 audit(177.076:7032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18873 comm="syz.9.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914bfcf6c9 code=0x7ffc0000
[  176.634425][T18898] lo speed is unknown, defaulting to 1000
[  176.913097][ T4334] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  176.961661][ T4334] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  176.998499][T18977] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5021'.
[  177.009505][T18978] lo speed is unknown, defaulting to 1000
[  177.017800][ T4334] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  177.045152][T18989] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5023'.
[  177.066353][ T4334] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  177.099176][T19004] loop5: detected capacity change from 0 to 1024
[  177.124771][T19004] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  177.212593][ T4334] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  177.231541][ T4334] bond0 (unregistering): Released all slaves
[  177.323450][ T4334] hsr_slave_0: left promiscuous mode
[  177.343890][ T4334] hsr_slave_1: left promiscuous mode
[  177.742147][T19058] loop7: detected capacity change from 0 to 256
[  177.770989][T19058] FAT-fs (loop7): Directory bread(block 64) failed
[  177.779623][T19058] FAT-fs (loop7): Directory bread(block 65) failed
[  177.798736][T19058] FAT-fs (loop7): Directory bread(block 66) failed
[  177.825983][T19058] FAT-fs (loop7): Directory bread(block 67) failed
[  177.835464][T19058] FAT-fs (loop7): Directory bread(block 68) failed
[  177.854502][T19058] FAT-fs (loop7): Directory bread(block 69) failed
[  177.865366][T19058] FAT-fs (loop7): Directory bread(block 70) failed
[  177.898321][T19058] FAT-fs (loop7): Directory bread(block 71) failed
[  177.916989][T19058] FAT-fs (loop7): Directory bread(block 72) failed
[  177.932517][T19058] FAT-fs (loop7): Directory bread(block 73) failed
[  177.993704][T19058] syz.7.5041: attempt to access beyond end of device
[  177.993704][T19058] loop7: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  178.010416][T19058] syz.7.5041: attempt to access beyond end of device
[  178.010416][T19058] loop7: rw=34817, sector=1224, nr_sectors = 2 limit=256
[  178.162821][T19108] xt_CT: You must specify a L4 protocol and not use inversions on it
[  178.520492][T19142] netlink: 256 bytes leftover after parsing attributes in process `syz.5.5073'.
[  178.761189][T19165] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5081'.
[  178.772138][T19165] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  178.781435][T19165] batman_adv: batadv0: Removing interface: batadv_slave_0
[  178.809707][T19165] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  178.818905][T19165] batman_adv: batadv0: Removing interface: batadv_slave_1
[  179.277316][T19211] netlink: 24 bytes leftover after parsing attributes in process `syz.9.5102'.
[  179.487045][T19235] IPv6: NLM_F_CREATE should be specified when creating new route
[  179.568331][T19248] 9pnet_fd: p9_fd_create_unix (19248): problem connecting socket: ./file0: -2
[  179.599884][T19255] netlink: 'syz.5.5123': attribute type 3 has an invalid length.
[  179.771324][T19282] rtc_cmos 00:00: Alarms can be up to one day in the future
[  179.791562][ T9938] rtc_cmos 00:00: Alarms can be up to one day in the future
[  179.800565][ T9938] rtc_cmos 00:00: Alarms can be up to one day in the future
[  179.811512][ T9938] rtc_cmos 00:00: Alarms can be up to one day in the future
[  179.822255][ T9938] rtc_cmos 00:00: Alarms can be up to one day in the future
[  179.831316][ T9938] rtc rtc0: __rtc_set_alarm: err=-22
[  179.876738][T19289] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5139'.
[  179.997524][T19294] SELinux: ebitmap: high bit 7341312 is not equal to the expected value 1536
[  180.008021][T19299] loop9: detected capacity change from 0 to 1024
[  180.019040][T19299] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.035939][T19294] SELinux: failed to load policy
[  180.042987][T19299] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  180.165665][T18078] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.188000][T19309] loop7: detected capacity change from 0 to 512
[  180.249163][T19309] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.294468][T11240] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.400946][T19329] geneve2: entered promiscuous mode
[  180.406596][T19329] geneve2: entered allmulticast mode
[  180.530150][T19339] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5154'.
[  180.783479][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119b93000: rx timeout, send abort
[  181.035649][   T29] kauditd_printk_skb: 126 callbacks suppressed
[  181.035668][   T29] audit: type=1400 audit(182.106:7159): avc:  denied  { create } for  pid=19365 comm="syz.6.5165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  181.103101][   T29] audit: type=1400 audit(182.169:7160): avc:  denied  { setopt } for  pid=19365 comm="syz.6.5165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  181.188866][   T29] audit: type=1400 audit(182.274:7161): avc:  denied  { execmem } for  pid=19369 comm="syz.9.5168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  181.259904][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119b92c00: rx timeout, send abort
[  181.269024][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119b93000: abort rx timeout. Force session deactivation
[  181.280271][   T29] audit: type=1326 audit(182.358:7162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19377 comm="syz.6.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  181.308619][   T29] audit: type=1326 audit(182.358:7163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19377 comm="syz.6.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  181.337953][   T29] audit: type=1326 audit(182.358:7164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19377 comm="syz.6.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  181.371090][   T29] audit: type=1326 audit(182.358:7165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19377 comm="syz.6.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  181.402253][   T29] audit: type=1326 audit(182.358:7166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19377 comm="syz.6.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  181.430891][   T29] audit: type=1326 audit(182.358:7167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19377 comm="syz.6.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  181.459823][   T29] audit: type=1326 audit(182.358:7168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19377 comm="syz.6.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  181.638727][T19388] netlink: 'syz.5.5175': attribute type 4 has an invalid length.
[  181.652007][T19388] netlink: 'syz.5.5175': attribute type 4 has an invalid length.
[  181.745482][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119b92c00: abort rx timeout. Force session deactivation
[  181.764562][T19398] IPv6: NLM_F_CREATE should be specified when creating new route
[  181.907310][T19411] lo speed is unknown, defaulting to 1000
[  182.179381][T19463] loop5: detected capacity change from 0 to 128
[  182.217020][T19465] bridge0: port 3(batadv1) entered blocking state
[  182.224550][T19465] bridge0: port 3(batadv1) entered disabled state
[  182.240443][T19465] batadv1: entered allmulticast mode
[  182.250623][T19465] batadv1: entered promiscuous mode
[  182.289420][T19475] loop9: detected capacity change from 0 to 512
[  182.299135][T19475] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  182.528794][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119b93200: rx timeout, send abort
[  182.694062][ T4334] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  182.704833][ T4334] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  183.015120][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119b93200: abort rx timeout. Force session deactivation
[  183.783946][T19595] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5255'.
[  184.200983][T19621] loop9: detected capacity change from 0 to 256
[  184.221005][T19621] FAT-fs (loop9): bogus number of FAT sectors
[  184.228568][T19621] FAT-fs (loop9): Can't find a valid FAT filesystem
[  184.628680][T19659] xt_hashlimit: max too large, truncated to 1048576
[  184.831280][T19676] netlink: 20 bytes leftover after parsing attributes in process `syz.9.5284'.
[  184.968750][T19691] 9pnet_fd: p9_fd_create_unix (19691): problem connecting socket: ./file0: -2
[  185.322794][T19704] SELinux: failed to load policy
[  185.538047][T19720] loop5: detected capacity change from 0 to 2048
[  185.556778][T19720] EXT4-fs (loop5): cluster size (2048) smaller than block size (4096)
[  185.831014][   T29] kauditd_printk_skb: 297 callbacks suppressed
[  185.831033][   T29] audit: type=1326 audit(187.145:7466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  185.867765][   T29] audit: type=1326 audit(187.145:7467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  185.977742][   T29] audit: type=1326 audit(187.145:7468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  186.007237][   T29] audit: type=1326 audit(187.145:7469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  186.037794][   T29] audit: type=1326 audit(187.145:7470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  186.067109][   T29] audit: type=1326 audit(187.176:7471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  186.093915][   T29] audit: type=1326 audit(187.176:7472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  186.123529][   T29] audit: type=1326 audit(187.176:7473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  186.154907][   T29] audit: type=1326 audit(187.176:7474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  186.181725][   T29] audit: type=1326 audit(187.176:7475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19755 comm="syz.5.5316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  186.372733][T19790] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5330'.
[  186.387646][T19790] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5330'.
[  186.600762][T19815] lo speed is unknown, defaulting to 1000
[  187.283332][T19896] loop5: detected capacity change from 0 to 8192
[  187.313606][T19908] netlink: 24 bytes leftover after parsing attributes in process `syz.8.5366'.
[  187.657787][T19940] netlink: 'syz.9.5392': attribute type 1 has an invalid length.
[  187.783910][T19953] netlink: 24 bytes leftover after parsing attributes in process `syz.9.5384'.
[  187.816277][T16371] Bluetooth: hci0: Frame reassembly failed (-84)
[  188.681551][T19993] binfmt_misc: register: failed to install interpreter file ./file0
[  189.771362][ T3543] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  190.386418][T20057] IPv6: Can't replace route, no match found
[  190.607572][   T29] kauditd_printk_skb: 274 callbacks suppressed
[  190.607588][   T29] audit: type=1326 audit(192.155:7750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20010 comm="syz.5.5410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  190.666775][   T29] audit: type=1326 audit(192.165:7751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20010 comm="syz.5.5410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  190.694074][   T29] audit: type=1326 audit(192.176:7752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20010 comm="syz.5.5410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  190.848757][T20079] IPv6: Can't replace route, no match found
[  190.883037][ T3409] IPVS: starting estimator thread 0...
[  190.981492][T20088] IPVS: using max 2112 ests per chain, 105600 per kthread
[  191.238458][   T29] audit: type=1400 audit(192.816:7753): avc:  denied  { map } for  pid=20121 comm="syz.6.5463" path="socket:[50333]" dev="sockfs" ino=50333 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  191.265487][   T29] audit: type=1400 audit(192.816:7754): avc:  denied  { read } for  pid=20121 comm="syz.6.5463" path="socket:[50333]" dev="sockfs" ino=50333 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  191.333759][ T9941] IPVS: starting estimator thread 0...
[  191.438081][T20129] IPVS: using max 2256 ests per chain, 112800 per kthread
[  191.571371][   T29] audit: type=1326 audit(193.152:7755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20143 comm="syz.6.5472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  191.597915][   T29] audit: type=1326 audit(193.152:7756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20143 comm="syz.6.5472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  191.625816][   T29] audit: type=1326 audit(193.152:7757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20143 comm="syz.6.5472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  191.651958][   T29] audit: type=1326 audit(193.152:7758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20143 comm="syz.6.5472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  191.681124][   T29] audit: type=1326 audit(193.152:7759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20143 comm="syz.6.5472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff610fdf6c9 code=0x7ffc0000
[  191.900359][T20154] loop5: detected capacity change from 0 to 1024
[  191.924863][T20154] EXT4-fs: Ignoring removed orlov option
[  191.966624][T20154] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.176347][T20165] loop8: detected capacity change from 0 to 256
[  192.378369][T20165] FAT-fs (loop8): Directory bread(block 64) failed
[  192.465891][T20165] FAT-fs (loop8): Directory bread(block 65) failed
[  192.476559][T20165] FAT-fs (loop8): Directory bread(block 66) failed
[  192.484627][T20165] FAT-fs (loop8): Directory bread(block 67) failed
[  192.493067][T20165] FAT-fs (loop8): Directory bread(block 68) failed
[  192.502109][T20165] FAT-fs (loop8): Directory bread(block 69) failed
[  192.510870][T20165] FAT-fs (loop8): Directory bread(block 70) failed
[  192.552598][T20165] FAT-fs (loop8): Directory bread(block 71) failed
[  192.609090][T20165] FAT-fs (loop8): Directory bread(block 72) failed
[  192.632226][T20165] FAT-fs (loop8): Directory bread(block 73) failed
[  192.713015][T20165] syz.8.5490: attempt to access beyond end of device
[  192.713015][T20165] loop8: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  192.744235][T20165] syz.8.5490: attempt to access beyond end of device
[  192.744235][T20165] loop8: rw=34817, sector=1224, nr_sectors = 2 limit=256
[  192.800322][T20184] loop9: detected capacity change from 0 to 512
[  192.834835][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.835192][T20184] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.886424][T18078] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.974515][T20203] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5502'.
[  193.002213][T20203] netlink: 312 bytes leftover after parsing attributes in process `syz.5.5502'.
[  193.015276][T20203] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5502'.
[  193.141909][T20214] loop5: detected capacity change from 0 to 1024
[  193.204753][T20214] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.262193][T20214] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  193.279155][T20226] loop8: detected capacity change from 0 to 512
[  193.326556][T20226] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.344693][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.374416][T14203] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.470150][T20243] geneve2: entered promiscuous mode
[  193.477152][T20243] geneve2: entered allmulticast mode
[  193.705167][T20264] geneve2: entered promiscuous mode
[  193.711732][T20264] geneve2: entered allmulticast mode
[  193.927627][T20288] IPv6: NLM_F_CREATE should be specified when creating new route
[  195.386991][   T29] kauditd_printk_skb: 80 callbacks suppressed
[  195.387008][   T29] audit: type=1400 audit(197.173:7840): avc:  denied  { mounton } for  pid=20290 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  195.423051][   T29] audit: type=1400 audit(197.215:7841): avc:  denied  { module_request } for  pid=20290 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  195.450670][   T29] audit: type=1400 audit(197.246:7842): avc:  denied  { sys_module } for  pid=20290 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  195.557551][T20290] lo speed is unknown, defaulting to 1000
[  195.638122][T20290] chnl_net:caif_netlink_parms(): no params data found
[  195.684735][T20290] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.694614][T20290] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.703901][T20290] bridge_slave_0: entered allmulticast mode
[  195.711446][T20290] bridge_slave_0: entered promiscuous mode
[  195.719660][T20290] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.729671][T20290] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.739471][T20290] bridge_slave_1: entered allmulticast mode
[  195.748058][T20290] bridge_slave_1: entered promiscuous mode
[  195.762831][T16371] netdevsim netdevsim7 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  195.774594][T16371] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.796003][T20290] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  195.810706][T20290] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  195.843370][T16371] netdevsim netdevsim7 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  195.855812][T16371] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.869860][   T29] audit: type=1326 audit(197.687:7843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20504 comm="syz.5.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  195.904145][T20290] team0: Port device team_slave_0 added
[  195.916225][   T29] audit: type=1326 audit(197.687:7844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20504 comm="syz.5.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  195.942905][   T29] audit: type=1400 audit(197.687:7845): avc:  denied  { read } for  pid=20502 comm="syz.9.5529" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  195.944857][T20290] team0: Port device team_slave_1 added
[  195.971126][   T29] audit: type=1400 audit(197.687:7846): avc:  denied  { open } for  pid=20502 comm="syz.9.5529" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  196.009207][   T29] audit: type=1326 audit(197.719:7847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20504 comm="syz.5.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  196.036574][   T29] audit: type=1326 audit(197.719:7848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20504 comm="syz.5.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  196.062333][   T29] audit: type=1326 audit(197.719:7849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20504 comm="syz.5.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f851125f6c9 code=0x7ffc0000
[  196.124308][T16371] netdevsim netdevsim7 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  196.137403][T16371] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.151314][T20290] batman_adv: batadv0: Adding interface: batadv_slave_0
[  196.159561][T20290] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  196.194734][T20290] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  196.213644][T20290] batman_adv: batadv0: Adding interface: batadv_slave_1
[  196.221294][T20290] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  196.254797][T20290] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  196.278877][T20543] loop8: detected capacity change from 0 to 512
[  196.294493][T16371] netdevsim netdevsim7 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  196.305760][T16371] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.330757][T20543] EXT4-fs warning (device loop8): ext4_xattr_inode_get:546: inode #11: comm syz.8.5535: ea_inode file size=0 entry size=6
[  196.353521][T20543] ------------[ cut here ]------------
[  196.359806][T20543] EA inode 11 i_nlink=2
[  196.360132][T20543] WARNING: CPU: 1 PID: 20543 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x36a/0x380
[  196.378794][T20543] Modules linked in:
[  196.383344][T20543] CPU: 1 UID: 0 PID: 20543 Comm: syz.8.5535 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  196.398349][T20543] Tainted: [W]=WARN
[  196.404521][T20543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  196.407822][T20578] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5539'.
[  196.417251][T20543] RIP: 0010:ext4_xattr_inode_update_ref+0x36a/0x380
[  196.417294][T20543] Code: 90 49 8d 7e 40 e8 76 fd b8 ff 4d 8b 6e 40 4c 89 e7 e8 8a f8 b8 ff 41 8b 56 48 48 c7 c7 ae d1 55 86 4c 89 ee e8 07 fa 67 ff 90 <0f> 0b 90 90 e9 ff fe ff ff e8 88 e7 b5 03 0f 1f 84 00 00 00 00 00
[  196.427319][T20578] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5539'.
[  196.468959][T20543] RSP: 0018:ffffc90002903778 EFLAGS: 00010246
[  196.478507][T20543] RAX: bda2393ae2e63400 RBX: ffff888119e435c8 RCX: 0000000000080000
[  196.488387][T20543] RDX: ffffc900082d3000 RSI: 00000000000049d5 RDI: 00000000000049d6
[  196.499735][T20543] RBP: 0000000000000002 R08: 0001c900029035f7 R09: 0000000000000000
[  196.510510][T20543] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff888119e43578
[  196.519898][T20543] R13: 000000000000000b R14: ffff888119e43530 R15: 0000000000000001
[  196.529119][T20543] FS:  00007f76245576c0(0000) GS:ffff8882aef13000(0000) knlGS:0000000000000000
[  196.538326][T20543] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  196.546018][T20543] CR2: 00007f85114812f8 CR3: 000000012c964000 CR4: 00000000003506f0
[  196.554963][T20543] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  196.564377][T20543] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  196.573390][T20543] Call Trace:
[  196.577614][T20543]  <TASK>
[  196.582473][T20543]  ext4_xattr_inode_dec_ref_all+0x579/0x830
[  196.588946][T20543]  ? errseq_check+0x2c/0x50
[  196.594397][T20543]  ext4_xattr_delete_inode+0x6b7/0x790
[  196.602154][T20543]  ? ext4_truncate+0x92e/0xae0
[  196.607776][T20543]  ext4_evict_inode+0xa6a/0xd90
[  196.613104][T20543]  ? __pfx_ext4_evict_inode+0x10/0x10
[  196.619862][T20543]  evict+0x2e3/0x550
[  196.624074][T20543]  ? __dquot_initialize+0x146/0x7c0
[  196.629947][T20543]  iput+0x4ed/0x650
[  196.634375][T20543]  ext4_process_orphan+0x1a9/0x1c0
[  196.641312][T20543]  ext4_orphan_cleanup+0x6a8/0xa00
[  196.648034][T20543]  ext4_fill_super+0x3483/0x3810
[  196.654000][T20543]  ? snprintf+0x86/0xb0
[  196.659922][T20543]  ? set_blocksize+0x1a8/0x310
[  196.665808][T20543]  ? sb_set_blocksize+0xe3/0x100
[  196.672698][T20543]  ? setup_bdev_super+0x30e/0x370
[  196.679557][T20543]  ? __pfx_ext4_fill_super+0x10/0x10
[  196.688605][T20543]  get_tree_bdev_flags+0x291/0x300
[  196.695147][T20543]  ? __pfx_ext4_fill_super+0x10/0x10
[  196.701378][T20543]  get_tree_bdev+0x1f/0x30
[  196.707590][T20543]  ext4_get_tree+0x1c/0x30
[  196.712814][T20543]  vfs_get_tree+0x57/0x1d0
[  196.717846][T20543]  do_new_mount+0x24d/0x660
[  196.723197][T20543]  path_mount+0x4a5/0xb70
[  196.728920][T20543]  ? user_path_at+0x109/0x130
[  196.735311][T20543]  __se_sys_mount+0x28c/0x2e0
[  196.741394][T20543]  __x64_sys_mount+0x67/0x80
[  196.747387][T20543]  x64_sys_call+0x2b51/0x3000
[  196.752995][T20543]  do_syscall_64+0xd2/0x200
[  196.758531][T20543]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  196.766292][T20543]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  196.773828][T20543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.780903][T20543] RIP: 0033:0x7f7625af0e6a
[  196.786235][T20543] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.810801][T20543] RSP: 002b:00007f7624556e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  196.820038][T20543] RAX: ffffffffffffffda RBX: 00007f7624556ef0 RCX: 00007f7625af0e6a
[  196.830831][T20543] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f7624556eb0
[  196.841496][T20543] RBP: 0000200000000180 R08: 00007f7624556ef0 R09: 0000000000800700
[  196.851414][T20543] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  196.860570][T20543] R13: 00007f7624556eb0 R14: 0000000000000473 R15: 0000200000000680
[  196.871954][T20543]  </TASK>
[  196.876201][T20543] ---[ end trace 0000000000000000 ]---
[  196.884964][T20543] EXT4-fs (loop8): 1 orphan inode deleted
[  196.888550][T20290] hsr_slave_0: entered promiscuous mode
[  196.892748][T20543] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.899690][T20290] hsr_slave_1: entered promiscuous mode
[  196.919187][T20290] debugfs: 'hsr0' already exists in 'hsr'
[  196.927259][T20290] Cannot create hsr debugfs directory
[  196.983775][T14203] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.020515][T16371] bridge_slave_1: left allmulticast mode
[  197.027142][T16371] bridge_slave_1: left promiscuous mode
[  197.034482][T16371] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.059548][T16371] bridge_slave_0: left promiscuous mode
[  197.067220][T16371] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.110400][T20629] loop9: detected capacity change from 0 to 1024
[  197.122251][T20629] EXT4-fs: Ignoring removed orlov option
[  197.142631][T20629] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.244762][T20645] netlink: 256 bytes leftover after parsing attributes in process `syz.8.5549'.
[  197.254522][T20645] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5549'.
[  197.288397][T16371] bond1 (unregistering): Released all slaves
[  197.341407][T20638] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  197.392383][T16371] hsr_slave_0: left promiscuous mode
[  197.421227][T16371] hsr_slave_1: left promiscuous mode
[  197.452266][T16371] veth1_macvtap: left promiscuous mode
[  197.458379][T16371] veth0_macvtap: left promiscuous mode
[  197.466316][T16371] veth1_vlan: left promiscuous mode
[  197.474323][T16371] veth0_vlan: left promiscuous mode
[  197.557122][T20684] netlink: 131740 bytes leftover after parsing attributes in process `syz.6.5561'.
[  197.585492][T20684] netlink: zone id is out of range
[  197.591109][T20684] netlink: zone id is out of range
[  197.609755][T20684] netlink: zone id is out of range
[  197.623240][T20684] netlink: zone id is out of range
[  197.637658][T20684] netlink: del zone limit has 8 unknown bytes
[  197.646587][T16371] team0 (unregistering): Port device team_slave_1 removed
[  197.656558][T18078] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.684737][T16371] team0 (unregistering): Port device team_slave_0 removed
[  197.893585][T20752] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5577'.
[  197.905304][T20752] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5577'.
[  197.915509][T20754] loop8: detected capacity change from 0 to 1024
[  197.924877][T20754] EXT4-fs: Ignoring removed orlov option
[  197.959103][T20754] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.097438][T20290] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  198.108635][T20290] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  198.121188][T16371] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.133355][T20290] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  198.165588][T20290] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  198.184052][T16371] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.271051][T16371] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.359317][T20290] 8021q: adding VLAN 0 to HW filter on device bond0
[  198.382145][T16371] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.419310][T20290] 8021q: adding VLAN 0 to HW filter on device team0
[  198.469408][T16376] bridge0: port 1(bridge_slave_0) entered blocking state
[  198.477312][T16376] bridge0: port 1(bridge_slave_0) entered forwarding state
[  198.488604][T16376] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.496340][T16376] bridge0: port 2(bridge_slave_1) entered forwarding state
[  198.600300][T20848] 9pnet_fd: Insufficient options for proto=fd
[  198.684061][T16371] bond0 (unregistering): Released all slaves
[  198.694456][T16371] bond1 (unregistering): Released all slaves
[  198.709164][T20856] netlink: 300 bytes leftover after parsing attributes in process `syz.5.5602'.
[  198.732201][T16371] tipc: Disabling bearer <udp:£>
[  198.737639][T16371] tipc: Left network mode
[  198.780542][T16371] hsr_slave_0: left promiscuous mode
[  198.803240][T16371] hsr_slave_1: left promiscuous mode
[  198.830125][T16371] veth1_macvtap: left promiscuous mode
[  198.837415][T16371] veth1_vlan: left promiscuous mode
[  198.844082][T16371] veth0_vlan: left promiscuous mode
[  198.862625][T14203] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.947474][T20290] 8021q: adding VLAN 0 to HW filter on device batadv0
[  199.018868][T20290] veth0_vlan: entered promiscuous mode
[  199.028508][T20290] veth1_vlan: entered promiscuous mode
[  199.046957][T20290] veth0_macvtap: entered promiscuous mode
[  199.056717][T20290] veth1_macvtap: entered promiscuous mode
[  199.068952][T20290] batman_adv: batadv0: Interface activated: batadv_slave_0
[  199.082459][T20290] batman_adv: batadv0: Interface activated: batadv_slave_1
[  199.095328][ T4425] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  199.108207][ T4425] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  199.124584][ T4425] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  199.141706][ T4425] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  199.241510][T20895] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  199.377507][T20915] netlink: 168 bytes leftover after parsing attributes in process `syz.9.5621'.
[  199.389500][T20915] tipc: Started in network mode
[  199.395200][T20915] tipc: Node identity 0000000000005f120000000000000001, cluster identity 4711
[  199.405726][T20915] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  199.503830][T20932] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5627'.
[  199.827816][T20948] 9pnet_fd: p9_fd_create_unix (20948): problem connecting socket: ./file0: -2
[  199.909243][T20952] netlink: 131740 bytes leftover after parsing attributes in process `syz.5.5638'.
[  199.922274][T20952] netlink: zone id is out of range
[  199.929275][T20952] netlink: zone id is out of range
[  199.937147][T20952] netlink: zone id is out of range
[  199.943012][T20952] netlink: zone id is out of range
[  199.949951][T20952] netlink: del zone limit has 8 unknown bytes
[  200.165653][T20977] 9pnet_fd: p9_fd_create_unix (20977): problem connecting socket: ./file0: -2
[  200.188251][T20979] xt_hashlimit: max too large, truncated to 1048576
[  200.245155][   T29] kauditd_printk_skb: 267 callbacks suppressed
[  200.245174][   T29] audit: type=1326 audit(202.275:8117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.279073][   T29] audit: type=1326 audit(202.275:8118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.317142][   T29] audit: type=1326 audit(202.359:8119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.388569][   T29] audit: type=1326 audit(202.359:8120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.413866][   T29] audit: type=1326 audit(202.359:8121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.440369][   T29] audit: type=1326 audit(202.359:8122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.466505][   T29] audit: type=1326 audit(202.369:8123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.491850][   T29] audit: type=1326 audit(202.369:8124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.497654][T20993] loop0: detected capacity change from 0 to 2048
[  200.517862][   T29] audit: type=1326 audit(202.369:8125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.548670][   T29] audit: type=1326 audit(202.369:8126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20984 comm="syz.0.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  200.575486][T20993] EXT4-fs (loop0): cluster size (2048) smaller than block size (4096)
[  200.702829][T21015] 9pnet_fd: p9_fd_create_unix (21015): problem connecting socket: ./file0: -2
[  201.376019][T21092] xt_hashlimit: max too large, truncated to 1048576
[  201.426178][    C0] vcan0: j1939_tp_rxtimer: 0xffff88810da05e00: rx timeout, send abort
[  201.902404][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881068c2e00: rx timeout, send abort
[  201.912901][    C0] vcan0: j1939_tp_rxtimer: 0xffff88810da05e00: abort rx timeout. Force session deactivation
[  202.389425][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881068c2e00: abort rx timeout. Force session deactivation
[  202.523729][T21156] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5705'.
[  202.551803][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.560819][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.568751][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.577525][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.585816][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.595020][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.603189][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.613218][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.622668][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.633419][ T9942] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  202.647129][ T9942] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  202.798003][T21189] netlink: 'syz.5.5717': attribute type 10 has an invalid length.
[  202.915152][T21205] netlink: 'syz.5.5729': attribute type 10 has an invalid length.
[  202.925076][T21205] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5729'.
[  202.949122][T21205] $Hÿ: (slave dummy0): Releasing backup interface
[  202.980569][T21205] bridge0: port 2(dummy0) entered blocking state
[  202.988199][T21205] bridge0: port 2(dummy0) entered disabled state
[  202.997854][T21205] dummy0: entered allmulticast mode
[  203.129358][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881068c2200: rx timeout, send abort
[  203.210351][T21216] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.424554][T21225] loop8: detected capacity change from 0 to 128
[  203.434915][T21225] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.463835][T14203] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  203.615056][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881068c2200: abort rx timeout. Force session deactivation
[  203.675848][T21243] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5744'.
[  203.692814][T21243] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5744'.
[  204.187541][T21292] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5763'.
[  204.462447][T21317] lo speed is unknown, defaulting to 1000
[  204.506201][T21317] SELinux:  policydb version 0 does not match my version range 15-35
[  204.516284][T21317] SELinux: failed to load policy
[  204.707442][ T3543] Bluetooth: hci0: command 0x1003 tx timeout
[  204.715226][ T4107] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  204.815613][T21382] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5793'.
[  204.888980][T21392] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5798'.
[  204.994294][T21405] loop0: detected capacity change from 0 to 512
[  205.013594][T21405] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  205.024542][T21405] EXT4-fs (loop0): orphan cleanup on readonly fs
[  205.039674][T21405] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.5804: corrupted inode contents
[  205.059491][T21405] EXT4-fs (loop0): Remounting filesystem read-only
[  205.068252][T21416] netlink: 83992 bytes leftover after parsing attributes in process `syz.9.5808'.
[  205.078383][T21416] netlink: zone id is out of range
[  205.078925][T21405] EXT4-fs (loop0): 1 truncate cleaned up
[  205.084287][T21416] netlink: zone id is out of range
[  205.084521][T21416] netlink: zone id is out of range
[  205.104942][ T4334] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  205.105431][T21416] netlink: zone id is out of range
[  205.117138][ T4334] __quota_error: 223 callbacks suppressed
[  205.117158][ T4334] Quota error (device loop0): write_blk: dquota write failed
[  205.123362][T21416] netlink: zone id is out of range
[  205.130661][ T4334] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries
[  205.148844][T21416] netlink: set zone limit has 8 unknown bytes
[  205.155307][ T4334] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  205.173682][ T4334] Quota error (device loop0): write_blk: dquota write failed
[  205.181491][ T4334] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list
[  205.199397][   T29] audit: type=1326 audit(207.471:8350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21417 comm="syz.8.5809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  205.225633][   T29] audit: type=1326 audit(207.471:8351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21417 comm="syz.8.5809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  205.246113][ T4334] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  205.252250][   T29] audit: type=1326 audit(207.471:8352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21417 comm="syz.8.5809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7625aef6c9 code=0x7ffc0000
[  205.263774][ T4334] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  205.300945][ T4334] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  205.313073][T21405] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  205.345174][T20290] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.355850][T21422] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.379178][   T29] audit: type=1326 audit(207.660:8353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21430 comm="syz.0.5813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcc9ecf6c9 code=0x7ffc0000
[  205.423926][T21422] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.490367][T21422] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.547182][T21422] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.610366][ T4345] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.624228][T16371] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.642372][T16371] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.684569][T16371] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.971736][T21528] netlink: 296 bytes leftover after parsing attributes in process `syz.0.5850'.
[  206.142721][T21547] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  206.272473][T21562] SELinux: failed to load policy
[  206.319511][T21566] lo speed is unknown, defaulting to 1000
[  206.365938][T21579] sch_tbf: peakrate 7 is lower than or equals to rate 7 !
[  207.320327][T16371] Bluetooth: hci0: Frame reassembly failed (-84)
[  207.503054][T21669] infiniband syz!: set active
[  207.508735][T21669] infiniband syz!: added team_slave_0
[  207.524002][T21669] RDS/IB: syz!: added
[  207.529109][T21669] smc: adding ib device syz! with port count 1
[  207.536008][T21669] smc:    ib device syz! port 1 has no pnetid
[  207.781101][T21696] ALSA: seq fatal error: cannot create timer (-19)
[  208.067383][T16371] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  208.110299][T21748] pimreg: entered allmulticast mode
[  208.118126][T21748] pimreg: left allmulticast mode
[  208.651174][T21796] netlink: 'syz.5.5948': attribute type 3 has an invalid length.
[  208.659924][T21796] netlink: 132 bytes leftover after parsing attributes in process `syz.5.5948'.
[  208.768396][T21806] netlink: 'syz.5.5953': attribute type 12 has an invalid length.
[  208.807270][T21758] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5933'.
[  208.858431][T21818] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  208.902675][T21824] 9pnet_fd: Insufficient options for proto=fd
[  208.988522][T21840] netlink: 'syz.9.5966': attribute type 1 has an invalid length.
[  209.007967][ T3409] hid_parser_main: 16 callbacks suppressed
[  209.007992][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x4
[  209.009815][T21840] bond1: entered promiscuous mode
[  209.015162][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x2
[  209.024284][T21840] 8021q: adding VLAN 0 to HW filter on device bond1
[  209.044689][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  209.053380][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  209.062012][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  209.072004][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  209.081571][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  209.090522][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  209.099663][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  209.108956][ T3409] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  209.118799][ T3409] hid-generic 0000:3000000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  209.124297][T21879] 8021q: adding VLAN 0 to HW filter on device bond1
[  209.144241][T21879] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  209.156942][T21879] bond1: (slave vxcan3): Setting fail_over_mac to active for active-backup mode
[  209.171105][T21879] bond1: (slave vxcan3): making interface the new active one
[  209.179268][T21879] vxcan3: entered promiscuous mode
[  209.187284][T21879] bond1: (slave vxcan3): Enslaving as an active interface with an up link
[  209.216299][T21891] lo speed is unknown, defaulting to 1000
[  209.269347][T21900] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5971'.
[  209.279647][T21661] Bluetooth: hci0: command 0x1003 tx timeout
[  209.279944][T21900] netlink: 28 bytes leftover after parsing attributes in process `syz.9.5971'.
[  209.298242][T21900] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5971'.
[  209.308133][ T4107] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  209.311288][T21900] netlink: 28 bytes leftover after parsing attributes in process `syz.9.5971'.
[  209.328858][T21900] netlink: 'syz.9.5971': attribute type 6 has an invalid length.
[  209.356258][ T4107] Bluetooth: hci1: command 0x1003 tx timeout
[  209.364072][ T3543] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  209.763006][T21988] vhci_hcd: invalid port number 0
[  209.843887][T22000] netlink: 256 bytes leftover after parsing attributes in process `syz.9.5999'.
[  209.894075][   T29] kauditd_printk_skb: 190 callbacks suppressed
[  209.894091][   T29] audit: type=1400 audit(212.406:8544): avc:  denied  { map } for  pid=22014 comm="syz.6.6004" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=54783 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  209.931881][T22017] loop8: detected capacity change from 0 to 128
[  209.943414][T22017] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  209.954040][T22017] System zones: 1-3, 19-19, 35-36
[  209.960433][   T29] audit: type=1400 audit(212.406:8545): avc:  denied  { read write } for  pid=22014 comm="syz.6.6004" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=54783 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  210.002885][T22017] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  210.023972][   T29] audit: type=1400 audit(212.542:8546): avc:  denied  { mount } for  pid=22016 comm="syz.8.6005" name="/" dev="loop8" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  210.050842][   T29] audit: type=1400 audit(212.542:8547): avc:  denied  { add_name } for  pid=22016 comm="syz.8.6005" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  210.075112][   T29] audit: type=1400 audit(212.542:8548): avc:  denied  { create } for  pid=22016 comm="syz.8.6005" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  210.096772][   T29] audit: type=1400 audit(212.542:8549): avc:  denied  { read write open } for  pid=22016 comm="syz.8.6005" path="/498/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file1" dev="loop8" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  210.179050][   T29] audit: type=1400 audit(212.699:8550): avc:  denied  { unmount } for  pid=14203 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  210.208183][T14203] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  210.226084][T22035] netlink: 96 bytes leftover after parsing attributes in process `syz.0.6013'.
[  210.260238][   T29] audit: type=1400 audit(212.773:8551): avc:  denied  { execmem } for  pid=22040 comm="syz.8.6012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  210.321700][   T29] audit: type=1400 audit(212.815:8552): avc:  denied  { write } for  pid=22032 comm="syz.5.6011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  210.357317][   T29] audit: type=1400 audit(212.899:8553): avc:  denied  { egress } for  pid=9942 comm="kworker/0:5" saddr=fe80::1b daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[  210.548730][T22077] netlink: 300 bytes leftover after parsing attributes in process `syz.9.6023'.
[  210.704803][T22092] loop0: detected capacity change from 0 to 1024
[  210.732649][T22092] EXT4-fs: Ignoring removed orlov option
[  210.752235][T22105] netlink: 'syz.9.6031': attribute type 1 has an invalid length.
[  210.754115][T22092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.761729][T22105] netlink: 224 bytes leftover after parsing attributes in process `syz.9.6031'.
[  210.926982][T22124] xt_limit: Overflow, try lower: 0/0
[  210.948193][T22127] loop5: detected capacity change from 0 to 512
[  210.963711][T22127] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  211.142693][T22142] ALSA: seq fatal error: cannot create timer (-19)
[  211.325320][T22149] loop5: detected capacity change from 0 to 1024
[  211.347405][T22149] EXT4-fs: Ignoring removed orlov option
[  211.382898][T22149] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.476033][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.652535][ T9941] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  211.696579][T22125] ==================================================================
[  211.704832][T22125] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / writeback_single_inode
[  211.715587][T22125] 
[  211.718532][T22125] write to 0xffff888119e42d10 of 4 bytes by task 22092 on cpu 1:
[  211.727601][T22125]  writeback_single_inode+0x150/0x3f0
[  211.734461][T22125]  sync_inode_metadata+0x5b/0x90
[  211.739776][T22125]  generic_buffers_fsync_noflush+0xd9/0x120
[  211.746149][T22125]  ext4_sync_file+0x1ab/0x690
[  211.751528][T22125]  vfs_fsync_range+0x10d/0x130
[  211.757112][T22125]  ext4_buffered_write_iter+0x34f/0x3c0
[  211.763753][T22125]  ext4_file_write_iter+0x387/0xf60
[  211.770143][T22125]  iter_file_splice_write+0x666/0xa60
[  211.776081][T22125]  direct_splice_actor+0x156/0x2a0
[  211.783268][T22125]  splice_direct_to_actor+0x312/0x680
[  211.788845][T22125]  do_splice_direct+0xda/0x150
[  211.793903][T22125]  do_sendfile+0x380/0x650
[  211.798574][T22125]  __x64_sys_sendfile64+0x105/0x150
[  211.805379][T22125]  x64_sys_call+0x2bb4/0x3000
[  211.811435][T22125]  do_syscall_64+0xd2/0x200
[  211.816290][T22125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.822901][T22125] 
[  211.825286][T22125] read to 0xffff888119e42d10 of 4 bytes by task 22125 on cpu 0:
[  211.833675][T22125]  generic_buffers_fsync_noflush+0x80/0x120
[  211.840099][T22125]  ext4_sync_file+0x1ab/0x690
[  211.844900][T22125]  vfs_fsync_range+0x10d/0x130
[  211.850450][T22125]  ext4_buffered_write_iter+0x34f/0x3c0
[  211.856738][T22125]  ext4_file_write_iter+0x387/0xf60
[  211.862250][T22125]  iter_file_splice_write+0x666/0xa60
[  211.867780][T22125]  direct_splice_actor+0x156/0x2a0
[  211.873562][T22125]  splice_direct_to_actor+0x312/0x680
[  211.878976][T22125]  do_splice_direct+0xda/0x150
[  211.884911][T22125]  do_sendfile+0x380/0x650
[  211.891646][T22125]  __x64_sys_sendfile64+0x105/0x150
[  211.897365][T22125]  x64_sys_call+0x2bb4/0x3000
[  211.902715][T22125]  do_syscall_64+0xd2/0x200
[  211.908005][T22125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.914208][T22125] 
[  211.916652][T22125] value changed: 0x00000050 -> 0x00000002
[  211.922684][T22125] 
[  211.925077][T22125] Reported by Kernel Concurrency Sanitizer on:
[  211.932039][T22125] CPU: 0 UID: 0 PID: 22125 Comm: syz.0.6028 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  211.944048][T22125] Tainted: [W]=WARN
[  211.948982][T22125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  211.960639][T22125] ==================================================================
[  212.001629][T20290] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.