last executing test programs:

1.50369617s ago: executing program 0 (id=471):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000001480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r0, &(0x7f00000003c0)=""/4082, 0xff2)

1.390513673s ago: executing program 4 (id=475):
r0 = inotify_init1(0x0)
r1 = inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x10000a0)
r2 = dup(r0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
inotify_rm_watch(r2, r1)

1.359087283s ago: executing program 4 (id=476):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x600000000000000, &(0x7f00000004c0)=@base={0xf, 0x4, 0x4, 0x20002, 0x0, 0x1, 0xfffffff9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)

1.203787207s ago: executing program 4 (id=480):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
syz_mount_image$ext4(&(0x7f0000001140)='ext3\x00', &(0x7f0000000e40)='./file2\x00', 0xc50cc0, &(0x7f0000000080)={[{@resgid}], [{@uid_eq}, {@audit}]}, 0xff, 0x775, &(0x7f0000001180)="$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")
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r0, 0x0}, 0x20)

1.146261608s ago: executing program 4 (id=482):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32=0x0, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x40f00, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2208c08, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x0)

1.070982319s ago: executing program 4 (id=489):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, 0x0, 0x8100, 0x0)
prlimit64(0x0, 0x2, &(0x7f0000000040)={0x1000000000000009, 0xffffffffffffffff}, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x200000ffc000)

722.580036ms ago: executing program 3 (id=499):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
shmget$private(0x0, 0x4000, 0x1000, &(0x7f0000000000/0x4000)=nil)

701.105616ms ago: executing program 3 (id=500):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000780)=@newsa={0x148, 0x10, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@private=0xa010101, 0x0, 0x0, 0x4e21}, {@in=@broadcast, 0x0, 0x33}, @in6=@remote, {}, {0x0, 0x0, 0xfffffffffffffffc}, {0x0, 0x40000, 0x10000}, 0x0, 0x0, 0xa}, [@algo_auth={0x48, 0x1, {{'sha256\x00'}}}, @XFRMA_SET_MARK={0x8}, @XFRMA_SET_MARK_MASK={0x8, 0x1e, 0x3}]}, 0x148}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0xa4, 0x65, 0x200, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2}, {0x0, 0xfff3}, {0x4, 0xb}}, [@filter_kind_options=@f_bpf={{0x8}, {0x78, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x6}, @TCA_BPF_ACT={0x64, 0x1, [@m_bpf={0x60, 0x7, 0x0, 0x0, {{0x8}, {0x10, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0xc, 0x4, [{0x3, 0xb6, 0xad, 0x6}]}]}, {0x29, 0x6, "b50b94c53388647253e494148eddc620cd227058874b95cb765140dfb772116f76bd0a1709"}, {0xc}, {0xc, 0x8, {0x3}}}}]}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})

662.512477ms ago: executing program 3 (id=503):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000a40)=ANY=[@ANYBLOB="1801000000050000000000000000ea0485000000d000000095"], &(0x7f0000000a00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x600}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x2}, 0x0)

628.867308ms ago: executing program 0 (id=505):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000180)='tlb_flush\x00', r0, 0x0, 0x51}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='tlb_flush\x00', r0, 0x0, 0x10000000000000}, 0x18)
modify_ldt$write(0x1, &(0x7f0000000000)={0xfff}, 0x10)
modify_ldt$write2(0x11, &(0x7f0000000080)={0xd7, 0x1000, 0x2000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x10)

627.830468ms ago: executing program 3 (id=506):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x8000000000000000}, 0x18)
fchdir(0xffffffffffffffff)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003402e60000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x60044084)

627.414728ms ago: executing program 2 (id=507):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
rmdir(&(0x7f0000004340)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

557.715359ms ago: executing program 0 (id=509):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
listen(r0, 0x20)
poll(&(0x7f00000001c0)=[{r0}], 0x1, 0x11ff)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x62, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x6}, 0x2424, 0x0, 0x800000, 0x0, 0x2, 0x200, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
shutdown(r0, 0x0)

557.315679ms ago: executing program 2 (id=511):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)

501.061741ms ago: executing program 2 (id=512):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r1 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\x00'/557, 0x1)
pwritev(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
sendfile(r0, r0, 0x0, 0x24002de8)

499.919721ms ago: executing program 1 (id=513):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000c1010000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000059729ec6850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={{0x14, 0x3ec, 0x1, 0x0, 0x0, {0x3}}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x40001}, 0x0)

468.654121ms ago: executing program 3 (id=514):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x69, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000d00)=""/242, 0xf2}, {&(0x7f0000000240)=""/205, 0xcd}, {&(0x7f0000000380)=""/210, 0xd2}, {&(0x7f0000000f40)=""/213, 0xd5}, {&(0x7f0000003440)=""/4089, 0xff9}, {&(0x7f00000007c0)=""/211, 0xd3}, {&(0x7f0000003200)=""/232, 0xe8}, {&(0x7f00000006c0)=""/176, 0xb0}, {&(0x7f0000000c00)=""/208, 0xd0}, {&(0x7f0000000540)=""/159, 0x9f}, {&(0x7f0000001040)=""/4096, 0x1000}], 0xb}, 0x40010102)
recvmsg$kcm(r0, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0)

379.036683ms ago: executing program 0 (id=515):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000000)='sys_enter\x00'}, 0x18)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000000c0)='./file0\x00', 0x204888, &(0x7f0000000380)=ANY=[@ANYBLOB="756e695f786c6174653d312c696f636861727365743d757466382c0097b75cbdde02821d0f899c2377ee9577397fc18b433d0c59e692b381740ca495e1c145c5922679338b5ff21c0653a98440a5725268a242c0263564f988d3c178704feaf8a412df818275708882ea9a4048c6e458a1f05b83f2e69b965b1df203b21de2b0ee375647f886a5310889982079aa7b1fb42e2382d40feefe7f768eec58b19cf50faaf129503175f4262df740183df51d3641ff78b86127c1db8ef165bfa3bd20797fde6ff91a0e45d3d7c1c6d1ce0a72be8c1fdb00000000"], 0x1, 0x336, &(0x7f0000000880)="$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")
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaa"], 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)

355.644483ms ago: executing program 1 (id=516):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={<r1=>0x0, 0x1c, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000000)={r1, @in={{0x2, 0x0, @empty}}, 0x0, 0x7ffe}, 0x90)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000340)={r1, @in6={{0xa, 0x4e27, 0x5, @empty, 0x2800}}, 0x3, 0x0, 0x20000, 0x81, 0x4a, 0xf080, 0x4}, 0x9c)

332.379624ms ago: executing program 3 (id=517):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000001480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r0, &(0x7f00000003c0)=""/4082, 0xff2)

238.211596ms ago: executing program 0 (id=518):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@abort}]}, 0x22, 0x4d5, &(0x7f0000000580)="$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")
mkdir(0x0, 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
chdir(&(0x7f0000000400)='./file0\x00')
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

238.109326ms ago: executing program 1 (id=519):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0xc3}, {}, {0xe, 0xd}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

207.494906ms ago: executing program 2 (id=520):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000004, 0x2, @perf_config_ext={0x1, 0x6}, 0x2, 0x0, 0x2, 0x1, 0xb0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
pipe(&(0x7f00000002c0)={<r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000080)=[{&(0x7f00000004c0)='|', 0x1}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

93.601269ms ago: executing program 1 (id=521):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000180)='tlb_flush\x00', r0, 0x0, 0x51}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='tlb_flush\x00', r0, 0x0, 0x10000000000000}, 0x18)
modify_ldt$write(0x1, &(0x7f0000000000)={0xfff}, 0x10)
modify_ldt$write2(0x11, &(0x7f0000000080)={0xd7, 0x1000, 0x2000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x10)

93.508459ms ago: executing program 2 (id=522):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0x3}, 0x18)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000380)={0x1, &(0x7f0000000100)=[{0x50, 0x8, 0x0, 0x7}]})

93.069069ms ago: executing program 0 (id=531):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000004, 0x2, @perf_config_ext={0x1, 0x6}, 0x2, 0x0, 0x2, 0x1, 0xb0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
pipe(&(0x7f00000002c0)={<r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000080)=[{&(0x7f00000004c0)='|', 0x1}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

71.728689ms ago: executing program 1 (id=523):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'team_slave_1\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e000000004000028006000100000ffe00340003800c0001000ffe0000000000000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32=r1, @ANYBLOB="080003"], 0x80}}, 0x8000)

821.95µs ago: executing program 4 (id=524):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)

379.58µs ago: executing program 1 (id=535):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, 0x0, 0x8100, 0x0)
prlimit64(0x0, 0x2, &(0x7f0000000040)={0x1000000000000009, 0xffffffffffffffff}, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x200000ffc000)

0s ago: executing program 2 (id=525):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
sync()

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.122' (ED25519) to the list of known hosts.
[   33.381317][   T29] audit: type=1400 audit(1759085627.954:62): avc:  denied  { mounton } for  pid=3290 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   33.382562][ T3290] cgroup: Unknown subsys name 'net'
[   33.404085][   T29] audit: type=1400 audit(1759085627.954:63): avc:  denied  { mount } for  pid=3290 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   33.431578][   T29] audit: type=1400 audit(1759085627.974:64): avc:  denied  { unmount } for  pid=3290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   33.571383][ T3290] cgroup: Unknown subsys name 'cpuset'
[   33.577767][ T3290] cgroup: Unknown subsys name 'rlimit'
[   33.688835][   T29] audit: type=1400 audit(1759085628.254:65): avc:  denied  { setattr } for  pid=3290 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   33.712509][   T29] audit: type=1400 audit(1759085628.254:66): avc:  denied  { create } for  pid=3290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.733038][   T29] audit: type=1400 audit(1759085628.254:67): avc:  denied  { write } for  pid=3290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.742047][ T3292] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   33.753509][   T29] audit: type=1400 audit(1759085628.254:68): avc:  denied  { read } for  pid=3290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   33.782464][   T29] audit: type=1400 audit(1759085628.264:69): avc:  denied  { mounton } for  pid=3290 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   33.807282][   T29] audit: type=1400 audit(1759085628.264:70): avc:  denied  { mount } for  pid=3290 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   33.815585][ T3290] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   33.830917][   T29] audit: type=1400 audit(1759085628.334:71): avc:  denied  { relabelto } for  pid=3292 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   34.894054][ T3305] chnl_net:caif_netlink_parms(): no params data found
[   35.002587][ T3305] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.009849][ T3305] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.017481][ T3305] bridge_slave_0: entered allmulticast mode
[   35.024006][ T3305] bridge_slave_0: entered promiscuous mode
[   35.033920][ T3300] chnl_net:caif_netlink_parms(): no params data found
[   35.063768][ T3305] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.070868][ T3305] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.077989][ T3305] bridge_slave_1: entered allmulticast mode
[   35.084486][ T3305] bridge_slave_1: entered promiscuous mode
[   35.162486][ T3305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.173833][ T3303] chnl_net:caif_netlink_parms(): no params data found
[   35.182663][ T3299] chnl_net:caif_netlink_parms(): no params data found
[   35.194257][ T3300] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.201340][ T3300] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.208472][ T3300] bridge_slave_0: entered allmulticast mode
[   35.215200][ T3300] bridge_slave_0: entered promiscuous mode
[   35.222518][ T3305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.231655][ T3300] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.238746][ T3300] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.245939][ T3300] bridge_slave_1: entered allmulticast mode
[   35.252475][ T3300] bridge_slave_1: entered promiscuous mode
[   35.278725][ T3306] chnl_net:caif_netlink_parms(): no params data found
[   35.302556][ T3305] team0: Port device team_slave_0 added
[   35.309050][ T3305] team0: Port device team_slave_1 added
[   35.338236][ T3300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.348472][ T3300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.366707][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.373756][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.399730][ T3305] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.425178][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.432169][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.458130][ T3305] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.490681][ T3300] team0: Port device team_slave_0 added
[   35.517553][ T3300] team0: Port device team_slave_1 added
[   35.525933][ T3299] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.533080][ T3299] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.540320][ T3299] bridge_slave_0: entered allmulticast mode
[   35.546952][ T3299] bridge_slave_0: entered promiscuous mode
[   35.553611][ T3303] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.560711][ T3303] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.568110][ T3303] bridge_slave_0: entered allmulticast mode
[   35.574655][ T3303] bridge_slave_0: entered promiscuous mode
[   35.594628][ T3299] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.601791][ T3299] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.609755][ T3299] bridge_slave_1: entered allmulticast mode
[   35.616415][ T3299] bridge_slave_1: entered promiscuous mode
[   35.622815][ T3303] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.629872][ T3303] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.637232][ T3303] bridge_slave_1: entered allmulticast mode
[   35.643761][ T3303] bridge_slave_1: entered promiscuous mode
[   35.651992][ T3305] hsr_slave_0: entered promiscuous mode
[   35.658037][ T3305] hsr_slave_1: entered promiscuous mode
[   35.674743][ T3306] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.681908][ T3306] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.689056][ T3306] bridge_slave_0: entered allmulticast mode
[   35.695528][ T3306] bridge_slave_0: entered promiscuous mode
[   35.717429][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.724432][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.750778][ T3300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.761689][ T3306] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.768859][ T3306] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.777250][ T3306] bridge_slave_1: entered allmulticast mode
[   35.783626][ T3306] bridge_slave_1: entered promiscuous mode
[   35.796417][ T3299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.806796][ T3303] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.817332][ T3303] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.826852][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.833879][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.859915][ T3300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.876798][ T3299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.916612][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.926985][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.942735][ T3303] team0: Port device team_slave_0 added
[   35.975487][ T3303] team0: Port device team_slave_1 added
[   35.982869][ T3306] team0: Port device team_slave_0 added
[   35.989182][ T3299] team0: Port device team_slave_0 added
[   36.007393][ T3306] team0: Port device team_slave_1 added
[   36.019557][ T3299] team0: Port device team_slave_1 added
[   36.035195][ T3300] hsr_slave_0: entered promiscuous mode
[   36.041174][ T3300] hsr_slave_1: entered promiscuous mode
[   36.047043][ T3300] debugfs: 'hsr0' already exists in 'hsr'
[   36.052813][ T3300] Cannot create hsr debugfs directory
[   36.077084][ T3299] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.084244][ T3299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.110242][ T3299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.121401][ T3303] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.128345][ T3303] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.154326][ T3303] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.165412][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.172473][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.198482][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.218543][ T3299] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.225549][ T3299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.251493][ T3299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.262605][ T3303] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.269577][ T3303] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.295589][ T3303] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.310293][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.317282][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.343253][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.400930][ T3303] hsr_slave_0: entered promiscuous mode
[   36.407120][ T3303] hsr_slave_1: entered promiscuous mode
[   36.413350][ T3303] debugfs: 'hsr0' already exists in 'hsr'
[   36.419085][ T3303] Cannot create hsr debugfs directory
[   36.455109][ T3299] hsr_slave_0: entered promiscuous mode
[   36.461309][ T3299] hsr_slave_1: entered promiscuous mode
[   36.467172][ T3299] debugfs: 'hsr0' already exists in 'hsr'
[   36.472990][ T3299] Cannot create hsr debugfs directory
[   36.500600][ T3306] hsr_slave_0: entered promiscuous mode
[   36.506770][ T3306] hsr_slave_1: entered promiscuous mode
[   36.512653][ T3306] debugfs: 'hsr0' already exists in 'hsr'
[   36.518376][ T3306] Cannot create hsr debugfs directory
[   36.611490][ T3305] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   36.629973][ T3305] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   36.638998][ T3305] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   36.659363][ T3305] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   36.709001][ T3300] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   36.717809][ T3300] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   36.727602][ T3300] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   36.736606][ T3300] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   36.767306][ T3299] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   36.778132][ T3299] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   36.787399][ T3299] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   36.797080][ T3299] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   36.857933][ T3303] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   36.875787][ T3303] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   36.891639][ T3305] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.898881][ T3303] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   36.907567][ T3303] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   36.919365][ T3300] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.942124][ T3300] 8021q: adding VLAN 0 to HW filter on device team0
[   36.955448][ T3306] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   36.964166][ T3306] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   36.974329][ T3306] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   36.983336][ T3306] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   36.994103][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.001278][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.018479][ T3299] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.028668][ T3305] 8021q: adding VLAN 0 to HW filter on device team0
[   37.041067][  T554] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.048233][  T554] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.059645][  T554] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.066729][  T554] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.086248][  T554] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.093333][  T554] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.106161][ T3299] 8021q: adding VLAN 0 to HW filter on device team0
[   37.129472][ T1724] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.136596][ T1724] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.158462][ T3300] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.182541][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.189874][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.226130][ T3303] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.242218][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.259303][ T3303] 8021q: adding VLAN 0 to HW filter on device team0
[   37.279185][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.286372][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.312128][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   37.323582][ T1724] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.330687][ T1724] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.343031][ T3305] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.380094][ T3299] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.393408][ T1724] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.400656][ T1724] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.410171][ T1724] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.417341][ T1724] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.439570][ T3306] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   37.450028][ T3306] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.475592][ T3300] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.492113][ T3303] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   37.502823][ T3303] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.543302][ T3305] veth0_vlan: entered promiscuous mode
[   37.582865][ T3305] veth1_vlan: entered promiscuous mode
[   37.610166][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.625989][ T3303] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.691952][ T3305] veth0_macvtap: entered promiscuous mode
[   37.705736][ T3299] veth0_vlan: entered promiscuous mode
[   37.718488][ T3300] veth0_vlan: entered promiscuous mode
[   37.729021][ T3305] veth1_macvtap: entered promiscuous mode
[   37.738196][ T3299] veth1_vlan: entered promiscuous mode
[   37.754450][ T3300] veth1_vlan: entered promiscuous mode
[   37.762000][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.785240][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.802533][ T3299] veth0_macvtap: entered promiscuous mode
[   37.808992][  T554] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.818627][ T3299] veth1_macvtap: entered promiscuous mode
[   37.829703][  T554] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.842534][   T54] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.857350][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.864717][   T37] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.883951][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.902049][ T3300] veth0_macvtap: entered promiscuous mode
[   37.911421][ T3300] veth1_macvtap: entered promiscuous mode
[   37.936820][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.952366][   T37] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.966212][ T3305] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   37.983143][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.995271][ T3306] veth0_vlan: entered promiscuous mode
[   38.001427][   T37] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.014037][ T3306] veth1_vlan: entered promiscuous mode
[   38.035117][   T37] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.056894][ T3303] veth0_vlan: entered promiscuous mode
[   38.062809][   T37] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.071914][  T554] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.098283][ T3303] veth1_vlan: entered promiscuous mode
[   38.105423][  T554] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.117950][ T3306] veth0_macvtap: entered promiscuous mode
[   38.125576][  T554] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.151281][  T554] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.162483][ T3303] veth0_macvtap: entered promiscuous mode
[   38.169271][ T3306] veth1_macvtap: entered promiscuous mode
[   38.181934][ T3303] veth1_macvtap: entered promiscuous mode
[   38.198017][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.216162][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.229657][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.237188][ T3475] loop1: detected capacity change from 0 to 512
[   38.240959][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.257959][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.290530][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.300074][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.320532][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.334695][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.352454][ T3479] loop0: detected capacity change from 0 to 512
[   38.358846][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.384654][ T3479] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e042c118, mo2=0002]
[   38.385410][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.405120][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.414850][ T3479] System zones: 1-12
[   38.425635][ T3479] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.1: corrupted in-inode xattr: e_value size too large
[   38.462382][ T3479] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1: couldn't read orphan inode 15 (err -117)
[   38.510584][ T3479] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.531243][ T3494] loop4: detected capacity change from 0 to 128
[   38.538676][   T29] kauditd_printk_skb: 38 callbacks suppressed
[   38.538711][   T29] audit: type=1400 audit(1759085633.104:110): avc:  denied  { create } for  pid=3490 comm="syz.3.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   38.565185][   T29] audit: type=1400 audit(1759085633.104:111): avc:  denied  { write } for  pid=3490 comm="syz.3.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   38.585356][   T29] audit: type=1400 audit(1759085633.104:112): avc:  denied  { read } for  pid=3490 comm="syz.3.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   38.605559][   T29] audit: type=1400 audit(1759085633.104:113): avc:  denied  { ioctl } for  pid=3490 comm="syz.3.9" path="socket:[4090]" dev="sockfs" ino=4090 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   38.632091][   T29] audit: type=1400 audit(1759085633.114:114): avc:  denied  { mount } for  pid=3478 comm="syz.0.1" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   38.634411][ T3497] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11'.
[   38.653470][   T29] audit: type=1400 audit(1759085633.134:115): avc:  denied  { add_name } for  pid=3478 comm="syz.0.1" name="control" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   38.653585][   T29] audit: type=1400 audit(1759085633.134:116): avc:  denied  { create } for  pid=3478 comm="syz.0.1" name="control" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   38.671700][ T3494] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   38.682859][   T29] audit: type=1400 audit(1759085633.134:117): avc:  denied  { remove_name } for  pid=3478 comm="syz.0.1" name="control" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   38.737426][   T29] audit: type=1400 audit(1759085633.134:118): avc:  denied  { rmdir } for  pid=3478 comm="syz.0.1" name="control" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   38.759097][   T29] audit: type=1400 audit(1759085633.174:119): avc:  denied  { create } for  pid=3496 comm="syz.3.11" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   38.787023][ T3494] ext4 filesystem being mounted at /1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   38.822602][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.851126][ T3306] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   39.035738][ T3521] netlink: 48 bytes leftover after parsing attributes in process `syz.0.23'.
[   39.242749][ T3545] process 'syz.0.32' launched '/dev/fd/5' with NULL argv: empty string added
[   39.300409][ T3555] syz_tun: entered allmulticast mode
[   39.310817][ T3555] dvmrp8: entered allmulticast mode
[   39.321247][ T3555] syz_tun: left allmulticast mode
[   39.326332][ T3555] dvmrp8: left allmulticast mode
[   39.389315][ T3557] rdma_op ffff88811a575580 conn xmit_rdma 0000000000000000
[   39.601017][ T3583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.48'.
[   39.680406][ T3595] pim6reg: entered allmulticast mode
[   39.698886][ T3595] pim6reg: left allmulticast mode
[   39.799372][ T3606] netlink: 28 bytes leftover after parsing attributes in process `syz.1.60'.
[   39.808266][ T3606] netlink: 28 bytes leftover after parsing attributes in process `syz.1.60'.
[   39.822444][ T3604] netlink: 4 bytes leftover after parsing attributes in process `syz.2.59'.
[   40.112466][ T3632] loop0: detected capacity change from 0 to 512
[   40.113235][ T3632] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   40.113253][ T3632] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   40.114888][ T3632] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   40.115064][ T3632] EXT4-fs (loop0): 1 truncate cleaned up
[   40.115450][ T3632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.208204][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.504720][ T3663] hub 6-0:1.0: USB hub found
[   40.504774][ T3663] hub 6-0:1.0: 8 ports detected
[   40.540710][ T3665] syz.0.85 uses obsolete (PF_INET,SOCK_PACKET)
[   40.646443][ T3672] loop4: detected capacity change from 0 to 512
[   40.649810][ T3672] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   40.675391][ T3672] EXT4-fs (loop4): 1 truncate cleaned up
[   40.675833][ T3672] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.755278][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.924277][ T3684] syz.4.94 (3684) used greatest stack depth: 10736 bytes left
[   40.967196][ T3685] syz.4.94 (3685) used greatest stack depth: 10640 bytes left
[   40.988004][ T3695] netlink: 'syz.0.100': attribute type 1 has an invalid length.
[   41.016843][ T3701] netlink: 'syz.4.102': attribute type 10 has an invalid length.
[   41.024713][ T3701] netlink: 'syz.4.102': attribute type 19 has an invalid length.
[   41.032528][ T3701] netlink: 14536 bytes leftover after parsing attributes in process `syz.4.102'.
[   41.064566][ T3697] loop3: detected capacity change from 0 to 8192
[   41.094959][ T3708] netlink: 6032 bytes leftover after parsing attributes in process `syz.4.105'.
[   41.106790][ T3708] Zero length message leads to an empty skb
[   41.114391][ T3697]  loop3: p1 < > p2 < > p4 < >
[   41.137922][ T3712] 9pnet_fd: Insufficient options for proto=fd
[   41.225489][ T3620] udevd[3620]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   41.237067][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   41.238296][ T3519] udevd[3519]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   41.399348][ T3740] loop3: detected capacity change from 0 to 512
[   41.417420][ T3742] netlink: 'syz.2.122': attribute type 10 has an invalid length.
[   41.434367][ T3742] team0: Device hsr_slave_0 failed to register rx_handler
[   41.446295][ T3746] capability: warning: `syz.4.123' uses deprecated v2 capabilities in a way that may be insecure
[   41.447812][ T3740] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.121: casefold flag without casefold feature
[   41.470103][ T3740] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.121: couldn't read orphan inode 15 (err -117)
[   41.483448][ T3740] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.570298][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.755114][ T3786] loop4: detected capacity change from 0 to 512
[   41.775286][ T3783] loop1: detected capacity change from 0 to 512
[   41.793463][ T3786] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.807398][ T3786] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.850200][ T3793] loop3: detected capacity change from 0 to 1024
[   41.859903][ T3793] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[   41.895043][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.968471][ T3805] loop0: detected capacity change from 0 to 256
[   42.016530][ T3805] FAT-fs (loop0): Directory bread(block 64) failed
[   42.026610][ T3805] FAT-fs (loop0): Directory bread(block 65) failed
[   42.050945][ T3805] FAT-fs (loop0): Directory bread(block 66) failed
[   42.058091][ T3805] FAT-fs (loop0): Directory bread(block 67) failed
[   42.065302][ T3805] FAT-fs (loop0): Directory bread(block 68) failed
[   42.072262][ T3805] FAT-fs (loop0): Directory bread(block 69) failed
[   42.079044][ T3805] FAT-fs (loop0): Directory bread(block 70) failed
[   42.085665][ T3817] loop4: detected capacity change from 0 to 1024
[   42.087835][ T3805] FAT-fs (loop0): Directory bread(block 71) failed
[   42.092469][ T3817] =======================================================
[   42.092469][ T3817] WARNING: The mand mount option has been deprecated and
[   42.092469][ T3817]          and is ignored by this kernel. Remove the mand
[   42.092469][ T3817]          option from the mount to silence this warning.
[   42.092469][ T3817] =======================================================
[   42.133978][ T3805] FAT-fs (loop0): Directory bread(block 72) failed
[   42.162215][ T3805] FAT-fs (loop0): Directory bread(block 73) failed
[   42.175846][ T3817] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.226855][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.503018][ T3863] loop0: detected capacity change from 0 to 1024
[   42.510954][ T3863] EXT4-fs: Ignoring removed orlov option
[   42.521364][ T3863] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   42.532483][ T3863] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   42.552203][ T3863] JBD2: no valid journal superblock found
[   42.558059][ T3863] EXT4-fs (loop0): Could not load journal inode
[   42.632798][ T3875] bond0: (slave veth1_to_bond): Error: Device can not be enslaved while up
[   42.773171][ T3894] loop3: detected capacity change from 0 to 1024
[   42.790455][ T3894] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.809073][ T3894] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.828299][ T3894] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   42.844825][ T3894] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 28
[   42.857292][ T3894] EXT4-fs (loop3): This should not happen!! Data will be lost
[   42.857292][ T3894] 
[   42.867038][ T3894] EXT4-fs (loop3): Total free blocks count 0
[   42.873094][ T3894] EXT4-fs (loop3): Free/Dirty block details
[   42.879005][ T3894] EXT4-fs (loop3): free_blocks=4293918720
[   42.884781][ T3894] EXT4-fs (loop3): dirty_blocks=16
[   42.889913][ T3894] EXT4-fs (loop3): Block reservation details
[   42.894064][ T3902] openvswitch: netlink: Message has 6 unknown bytes.
[   42.896150][ T3894] EXT4-fs (loop3): i_reserved_data_blocks=1
[   42.928689][ T3894] syz.3.191 (3894) used greatest stack depth: 9896 bytes left
[   42.938512][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.959420][ T3906] netlink: 'syz.4.197': attribute type 298 has an invalid length.
[   43.092913][ T3925] bond0: (slave veth1_to_bond): Error: Device can not be enslaved while up
[   43.135327][ T3929] loop1: detected capacity change from 0 to 128
[   43.202176][ T3934] syz.1.204: attempt to access beyond end of device
[   43.202176][ T3934] loop1: rw=2049, sector=145, nr_sectors = 8 limit=128
[   43.235059][ T3934] syz.1.204: attempt to access beyond end of device
[   43.235059][ T3934] loop1: rw=2049, sector=161, nr_sectors = 8 limit=128
[   43.251604][ T3934] syz.1.204: attempt to access beyond end of device
[   43.251604][ T3934] loop1: rw=2049, sector=177, nr_sectors = 8 limit=128
[   43.282533][ T3934] syz.1.204: attempt to access beyond end of device
[   43.282533][ T3934] loop1: rw=2049, sector=193, nr_sectors = 8 limit=128
[   43.296901][ T3934] syz.1.204: attempt to access beyond end of device
[   43.296901][ T3934] loop1: rw=2049, sector=209, nr_sectors = 8 limit=128
[   43.311833][ T3934] syz.1.204: attempt to access beyond end of device
[   43.311833][ T3934] loop1: rw=2049, sector=225, nr_sectors = 8 limit=128
[   43.326859][ T3934] syz.1.204: attempt to access beyond end of device
[   43.326859][ T3934] loop1: rw=2049, sector=241, nr_sectors = 8 limit=128
[   43.358685][ T3934] syz.1.204: attempt to access beyond end of device
[   43.358685][ T3934] loop1: rw=2049, sector=257, nr_sectors = 8 limit=128
[   43.375859][ T3934] syz.1.204: attempt to access beyond end of device
[   43.375859][ T3934] loop1: rw=2049, sector=273, nr_sectors = 8 limit=128
[   43.389858][ T3934] syz.1.204: attempt to access beyond end of device
[   43.389858][ T3934] loop1: rw=2049, sector=289, nr_sectors = 8 limit=128
[   43.500124][ T3939] vhci_hcd: invalid port number 96
[   43.505353][ T3939] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   43.559704][ T3942] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   43.643224][   T29] kauditd_printk_skb: 194 callbacks suppressed
[   43.643242][   T29] audit: type=1326 audit(1759085638.194:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.672759][   T29] audit: type=1326 audit(1759085638.194:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.696155][   T29] audit: type=1326 audit(1759085638.194:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.719527][   T29] audit: type=1326 audit(1759085638.204:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.742779][   T29] audit: type=1326 audit(1759085638.204:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.766121][   T29] audit: type=1326 audit(1759085638.204:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.789350][   T29] audit: type=1326 audit(1759085638.204:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.812632][   T29] audit: type=1326 audit(1759085638.204:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.835899][   T29] audit: type=1326 audit(1759085638.204:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   43.859610][   T29] audit: type=1326 audit(1759085638.204:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3945 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4b376eec9 code=0x7ffc0000
[   44.041563][ T3948] hub 2-0:1.0: USB hub found
[   44.055563][ T3948] hub 2-0:1.0: 8 ports detected
[   44.296487][ T3978] loop1: detected capacity change from 0 to 512
[   44.314869][ T3978] EXT4-fs: Ignoring removed nobh option
[   44.330518][ T3978] EXT4-fs: Ignoring removed mblk_io_submit option
[   44.346871][ T3978] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   44.363075][ T3978] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.229: invalid indirect mapped block 256 (level 1)
[   44.376760][ T3978] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.229: invalid indirect mapped block 2683928664 (level 1)
[   44.392607][ T3978] EXT4-fs (loop1): 1 truncate cleaned up
[   44.399232][ T3978] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.417566][ T3978] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.229: invalid indirect mapped block 65536 (level 1)
[   44.432197][ T3978] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.229: invalid indirect mapped block 480848489 (level 1)
[   44.470210][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.726173][ T4018] netlink: 12 bytes leftover after parsing attributes in process `syz.0.247'.
[   44.735176][ T4018] netlink: 28 bytes leftover after parsing attributes in process `syz.0.247'.
[   44.744126][ T4018] netlink: 12 bytes leftover after parsing attributes in process `syz.0.247'.
[   44.753365][ T4018] netlink: 28 bytes leftover after parsing attributes in process `syz.0.247'.
[   44.762346][ T4018] netlink: 'syz.0.247': attribute type 6 has an invalid length.
[   44.927731][ T4041] loop0: detected capacity change from 0 to 2048
[   44.976764][ T4047] netlink: 'syz.0.261': attribute type 4 has an invalid length.
[   44.984537][ T4047] netlink: 152 bytes leftover after parsing attributes in process `syz.0.261'.
[   45.005763][ T4047] .`: renamed from bond0 (while UP)
[   45.053951][ T4051] bridge0: entered promiscuous mode
[   45.059523][ T4051] macvtap1: entered allmulticast mode
[   45.064976][ T4051] bridge0: entered allmulticast mode
[   45.074023][ T4051] batman_adv: batadv0: Adding interface: macvtap1
[   45.080586][ T4051] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.106401][ T4051] batman_adv: batadv0: Interface activated: macvtap1
[   45.231316][ T4071] geneve0: entered allmulticast mode
[   45.383128][ T4095] loop0: detected capacity change from 0 to 128
[   45.460188][ T4097] loop2: detected capacity change from 0 to 1024
[   45.496540][ T4097] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869)
[   45.533934][ T4097] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002]
[   45.546956][ T4097] EXT4-fs (loop2): failed to initialize system zone (-117)
[   45.554525][ T4097] EXT4-fs (loop2): mount failed
[   45.683039][ T2990] udevd[2990]: worker [3519] terminated by signal 33 (Unknown signal 33)
[   45.701858][ T2990] udevd[2990]: worker [3519] failed while handling '/devices/virtual/block/loop1'
[   45.797759][ T4137] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   45.807976][ T4137] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   46.389253][ T4159] netlink: 8 bytes leftover after parsing attributes in process `syz.1.312'.
[   46.398425][ T4159] netlink: 312 bytes leftover after parsing attributes in process `syz.1.312'.
[   46.407553][ T4159] netlink: 8 bytes leftover after parsing attributes in process `syz.1.312'.
[   46.577998][ T4177] netlink: 28 bytes leftover after parsing attributes in process `syz.3.319'.
[   46.586941][ T4177] netlink: 28 bytes leftover after parsing attributes in process `syz.3.319'.
[   46.627880][ T4181] loop3: detected capacity change from 0 to 764
[   46.662806][ T4181] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   46.685803][ T4181] Symlink component flag not implemented
[   46.699152][ T4181] Symlink component flag not implemented (7)
[   47.234451][ T4244] loop2: detected capacity change from 0 to 512
[   47.260705][ T4244] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   47.355512][ T4252] netlink: 'syz.2.327': attribute type 13 has an invalid length.
[   47.363412][ T4252] netlink: 'syz.2.327': attribute type 17 has an invalid length.
[   47.538543][ T4262] loop1: detected capacity change from 0 to 512
[   47.553259][ T4252] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   47.649925][ T4262] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.716223][ T4280] 9pnet: p9_errstr2errno: server reported unknown error �@��0x0000000000000004
[   47.742396][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.052102][ T4321] loop4: detected capacity change from 0 to 512
[   48.066760][ T4321] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   48.087317][ T4323] syzkaller1: entered promiscuous mode
[   48.092855][ T4323] syzkaller1: entered allmulticast mode
[   48.107193][ T4325] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4325 comm=syz.2.358
[   48.269253][ T4337] loop2: detected capacity change from 0 to 512
[   48.292673][ T4337] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   48.308887][ T4337] EXT4-fs (loop2): mount failed
[   48.400582][ T4354] loop1: detected capacity change from 0 to 256
[   48.654899][   T29] kauditd_printk_skb: 161 callbacks suppressed
[   48.654918][   T29] audit: type=1400 audit(130.168:484): avc:  denied  { write } for  pid=4377 comm="syz.4.383" path="socket:[7667]" dev="sockfs" ino=7667 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   48.769501][   T29] audit: type=1400 audit(130.278:485): avc:  denied  { read write } for  pid=4387 comm="syz.0.387" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   48.792406][   T29] audit: type=1400 audit(130.278:486): avc:  denied  { open } for  pid=4387 comm="syz.0.387" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   48.991924][ T4414] ALSA: seq fatal error: cannot create timer (-22)
[   49.060309][   T29] audit: type=1400 audit(130.568:487): avc:  denied  { bind } for  pid=4419 comm="syz.0.405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   49.109293][ T4426] gretap0: entered promiscuous mode
[   49.124984][ T4426] macsec1: entered promiscuous mode
[   49.130378][ T4426] macsec1: entered allmulticast mode
[   49.135743][ T4426] gretap0: entered allmulticast mode
[   49.169362][ T4426] gretap0: left allmulticast mode
[   49.174651][ T4426] gretap0: left promiscuous mode
[   49.204677][ T4437] loop3: detected capacity change from 0 to 1024
[   49.223453][ T4435] syz_tun: entered allmulticast mode
[   49.233705][ T4428] dvmrp8: entered allmulticast mode
[   49.241896][ T4428] syz_tun: left allmulticast mode
[   49.246967][ T4428] dvmrp8: left allmulticast mode
[   49.277226][ T4437] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   49.453078][   T29] audit: type=1400 audit(130.968:488): avc:  denied  { read write } for  pid=3300 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   49.476721][   T29] audit: type=1400 audit(130.968:489): avc:  denied  { open } for  pid=3300 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   49.500166][   T29] audit: type=1400 audit(130.968:490): avc:  denied  { ioctl } for  pid=3300 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   49.562295][   T29] audit: type=1400 audit(131.058:491): avc:  denied  { create } for  pid=4457 comm="syz.0.418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   49.581251][   T29] audit: type=1400 audit(131.058:492): avc:  denied  { prog_load } for  pid=4457 comm="syz.0.418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   49.599688][   T29] audit: type=1400 audit(131.058:493): avc:  denied  { bpf } for  pid=4457 comm="syz.0.418" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   49.633964][ T4461] pim6reg: entered allmulticast mode
[   49.658202][ T4461] pim6reg: left allmulticast mode
[   49.742560][ T4472] 9pnet_fd: Insufficient options for proto=fd
[   49.780032][ T4478] loop2: detected capacity change from 0 to 128
[   49.811069][ T4482] __nla_validate_parse: 5 callbacks suppressed
[   49.811085][ T4482] netlink: 4 bytes leftover after parsing attributes in process `syz.4.430'.
[   49.833127][ T4484] netlink: 'syz.1.431': attribute type 10 has an invalid length.
[   49.855154][ T4484] team0: Device hsr_slave_0 failed to register rx_handler
[   49.866380][ T4487] bio_check_eod: 214 callbacks suppressed
[   49.866396][ T4487] syz.2.429: attempt to access beyond end of device
[   49.866396][ T4487] loop2: rw=2049, sector=145, nr_sectors = 8 limit=128
[   49.896682][ T4482] bridge0: port 3(macvlan2) entered blocking state
[   49.903275][ T4482] bridge0: port 3(macvlan2) entered disabled state
[   49.923730][ T4482] macvlan2: entered allmulticast mode
[   49.929968][ T4487] syz.2.429: attempt to access beyond end of device
[   49.929968][ T4487] loop2: rw=2049, sector=161, nr_sectors = 8 limit=128
[   49.944050][ T4482] macvlan2: left allmulticast mode
[   49.950549][ T4487] syz.2.429: attempt to access beyond end of device
[   49.950549][ T4487] loop2: rw=2049, sector=177, nr_sectors = 8 limit=128
[   49.966064][ T4487] syz.2.429: attempt to access beyond end of device
[   49.966064][ T4487] loop2: rw=2049, sector=193, nr_sectors = 8 limit=128
[   50.015108][ T4487] syz.2.429: attempt to access beyond end of device
[   50.015108][ T4487] loop2: rw=2049, sector=209, nr_sectors = 8 limit=128
[   50.046000][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   50.059528][ T4487] syz.2.429: attempt to access beyond end of device
[   50.059528][ T4487] loop2: rw=2049, sector=225, nr_sectors = 8 limit=128
[   50.114250][ T4487] syz.2.429: attempt to access beyond end of device
[   50.114250][ T4487] loop2: rw=2049, sector=241, nr_sectors = 8 limit=128
[   50.129664][ T4487] syz.2.429: attempt to access beyond end of device
[   50.129664][ T4487] loop2: rw=2049, sector=257, nr_sectors = 8 limit=128
[   50.144739][ T4487] syz.2.429: attempt to access beyond end of device
[   50.144739][ T4487] loop2: rw=2049, sector=273, nr_sectors = 8 limit=128
[   50.158429][ T4487] syz.2.429: attempt to access beyond end of device
[   50.158429][ T4487] loop2: rw=2049, sector=289, nr_sectors = 8 limit=128
[   50.369231][ T4510] loop1: detected capacity change from 0 to 8192
[   50.402385][ T3620]  loop1: p1 < > p2 < > p4 < >
[   50.418865][ T4510]  loop1: p1 < > p2 < > p4 < >
[   50.469727][ T4525] atomic_op ffff88811b0e1128 conn xmit_atomic 0000000000000000
[   50.504889][ T4527] loop4: detected capacity change from 0 to 128
[   51.153367][ T4571] loop3: detected capacity change from 0 to 512
[   51.167834][ T4571] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   51.180213][ T4576] loop2: detected capacity change from 0 to 512
[   51.188027][ T4578] loop7: detected capacity change from 0 to 16384
[   51.211152][ T4219] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   51.225449][ T4576] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.349854][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.397359][ T4596] loop3: detected capacity change from 0 to 1024
[   51.414241][ T4596] EXT4-fs: Ignoring removed orlov option
[   51.419943][ T4596] EXT4-fs: Ignoring removed nomblk_io_submit option
[   51.435962][ T4596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.513719][ T4604] loop4: detected capacity change from 0 to 2048
[   51.543774][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.610323][ T4621] unsupported nla_type 52263
[   51.640063][ T4624] geneve0: entered allmulticast mode
[   51.687461][ T4632] netlink: 'syz.2.491': attribute type 4 has an invalid length.
[   51.695255][ T4632] netlink: 152 bytes leftover after parsing attributes in process `syz.2.491'.
[   51.714881][ T4632] .`: renamed from bond0 (while UP)
[   51.844667][ T4642] loop2: detected capacity change from 0 to 2048
[   52.046330][ T4659] geneve0: entered allmulticast mode
[   52.112423][ T4663] netlink: 'syz.3.506': attribute type 4 has an invalid length.
[   52.120101][ T4663] netlink: 152 bytes leftover after parsing attributes in process `syz.3.506'.
[   52.154545][ T4663] .`: renamed from bond0 (while UP)
[   52.217735][ T4675] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4675 comm=syz.1.513
[   52.242087][ T4678] netlink: 'syz.3.514': attribute type 29 has an invalid length.
[   52.271269][ T4678] netlink: 'syz.3.514': attribute type 29 has an invalid length.
[   52.280295][ T4678] netlink: 'syz.3.514': attribute type 29 has an invalid length.
[   52.301241][ T4678] netlink: 'syz.3.514': attribute type 29 has an invalid length.
[   52.361138][ T4680] loop0: detected capacity change from 0 to 512
[   52.383732][ T4680] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   52.469768][ T4686] netlink: 'syz.1.519': attribute type 13 has an invalid length.
[   52.477585][ T4686] netlink: 'syz.1.519': attribute type 17 has an invalid length.
[   52.501233][ T4690] loop0: detected capacity change from 0 to 512
[   52.540324][ T4690] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.560748][ T4686] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   52.601011][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.817877][ T4705] ==================================================================
[   52.826102][ T4705] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked
[   52.833538][ T4705] 
[   52.835869][ T4705] read-write to 0xffff88810729ed98 of 8 bytes by task 4260 on cpu 0:
[   52.843943][ T4705]  __xa_clear_mark+0xf5/0x1e0
[   52.848653][ T4705]  __folio_end_writeback+0x177/0x470
[   52.853974][ T4705]  folio_end_writeback+0x71/0x3d0
[   52.859059][ T4705]  ext4_finish_bio+0x459/0x8c0
[   52.863846][ T4705]  ext4_release_io_end+0x9f/0x1f0
[   52.868897][ T4705]  ext4_end_io_end+0x18d/0x240
[   52.873678][ T4705]  ext4_end_io_rsv_work+0x151/0x1e0
[   52.878898][ T4705]  process_scheduled_works+0x4ce/0x9d0
[   52.884389][ T4705]  worker_thread+0x582/0x770
[   52.889001][ T4705]  kthread+0x486/0x510
[   52.893107][ T4705]  ret_from_fork+0x11f/0x1b0
[   52.897709][ T4705]  ret_from_fork_asm+0x1a/0x30
[   52.902492][ T4705] 
[   52.904828][ T4705] read to 0xffff88810729ed98 of 8 bytes by task 4705 on cpu 1:
[   52.912380][ T4705]  xas_find_marked+0x218/0x620
[   52.917183][ T4705]  find_get_entry+0x5d/0x380
[   52.921787][ T4705]  filemap_get_folios_tag+0x13b/0x210
[   52.927182][ T4705]  filemap_fdatawait_keep_errors+0x6c/0x180
[   52.933111][ T4705]  sync_inodes_sb+0x39c/0x440
[   52.937910][ T4705]  sync_inodes_one_sb+0x3d/0x50
[   52.942823][ T4705]  __iterate_supers+0x10d/0x220
[   52.947679][ T4705]  iterate_supers+0x1f/0x30
[   52.952203][ T4705]  ksys_sync+0x5c/0xe0
[   52.956287][ T4705]  __ia32_sys_sync+0xe/0x20
[   52.960810][ T4705]  x64_sys_call+0x2d10/0x2ff0
[   52.965510][ T4705]  do_syscall_64+0xd2/0x200
[   52.970047][ T4705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.975949][ T4705] 
[   52.978281][ T4705] value changed: 0xffffe00000000000 -> 0xfffe000000000000
[   52.985402][ T4705] 
[   52.987726][ T4705] Reported by Kernel Concurrency Sanitizer on:
[   52.993887][ T4705] CPU: 1 UID: 0 PID: 4705 Comm: syz.2.525 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   53.003520][ T4705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   53.013597][ T4705] ==================================================================