last executing test programs:

1m17.271253379s ago: executing program 1 (id=229):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x3, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfc, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
shmdt(0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x67, 0x52e, &(0x7f0000000480)="$eJzs3U9vI2cZAPBnHHvZ7GabFDhAJUqhRdkVrJ00tI04lCIhOFUCyr2ExImiOHEUO+0mqtis+ABICAESJ7hwQeIDIKFKXDgipEpwBgECIdjCgQN00NjjNJv4X7tOnE1+P2ky78y8M8/zOprxvJ7RTACX1lMR8VJEvJOm6a2ImM7nF/IhDtpDVu/t+28sZ0MSafrKP5JI8nmdbSX5+Hq+2tWI+NqXI76ZnIzb2NvfWKrVqjv5dKW5uV1p7O3fXt9cWquuVbcWFuafX3xh8bnFuZG080ZEvPjFv3z/Oz/90ou//Mzrf3z1bze/laU1lS8/2o73qNhvYbvppdZncXSFnfcZ7DwqtlqYm+xWY+LEnHunnBMAAN1l5/gfjIhPRsStmI6J/qezAAAAwCMo/fxU/DeJSLu70mM+AAAA8AgptO6BTQrl/F6AqSgUyuX2PbwfjmuFWr3R/PRqfXdrpX2v7EyUCqvrtepcfq/wTJSSbHq+VX53+tlj0wsR8XhEfG96sjVdXq7XVsb94wcAAABcEteP9f//Pd3u/3fcHWdyAAAAwOjMjDsBAAAA4NQN2/+/dsp5AAAAAKfH9X8AAAC40L7y8svZkHbef73y2t7uRv212yvVxkZ5c3e5vFzf2S6v1etrrWf2bQ7aXq1e3/5sbO3eqTSrjWalsXc1Nuu7W81X1x94BTYAAABwhh7/+Ju/TyLi4HOTrSFzZbhVh6wGnFfFw1KSj7vs1n94rD3+8xklBZyJiXEnAIxNcdwJAGNTGncCwNglA5b3vHnnN/n4E6PNBwAAGL3Zj/a+/l/ou+ZB/8XAuWcnhsvL9X+4vFrX/4e9k7fgbeBwkZQGnQH07SA4HsBF8NDX/wdK0/eUEAAAMHJTrSEplIud6UKhXI640XotQClZXa9V5yLisYj43XTpA9n0fKtmMrDPAAAAAAAAAAAAAAAAAAAAAAAAAAC0pWkSKQAAAHChRRT+mvyq/Sz/2elnpo7/PnAl+c905K8Iff1Hr/zgzlKzuTOfzf/n4fzmD/P5z47jFwwAAAC4FAa8wP9BnX56px8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKP09v03ljvDWcb9+xciYqZb/GJcbY2vRikirv0rieKR9ZKImBhB/Mnsz0e6xU+ytA5Ddos/OYL4B/f6xo+D/FPoFv/6COLDZfZmdvx5qdv+V4inWuPu+18x4oHp96v38S8Oj38TPfb/G0PGeOKtn1d6xr8X8UTxRPy7WYRO/KRH/KeHjP+Nr+/v91qW/jhituv3T9Kpkh0ho9Lc3K409vZvr28urVXXqlsLC/PPL76w+NziXGV1vVbN/3aN8d2P/eKdfu2/1iP+zID2P3Nia1e6xvjfW3fuf6hdLHWLf/PpLvF//ZO8xsn4hfy771N5OVs+2ykftMtHPfmz3z7Zr/0rPdo/6P9/s9dGj7n11W//aciqAMAZaOztbyzVatWdC1vIeulDVs7Ozs5FzgpDFCYefjt3R5pYmqZptk89xHaSGPenelgY95EJAAAYtXdP+sedCQAAAAAAAAAAAAAAAAAAAFxeZ/E4seMxDw5LySgeoQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBL/DwAA//9t9tlI")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f40)=ANY=[], 0x40}}, 0x0)
add_key$keyring(&(0x7f0000000a40), &(0x7f0000000ac0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffa)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

1m16.943615803s ago: executing program 1 (id=236):
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r1, 0x0, 0x20040811)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_setup(0x494, &(0x7f0000000180)={0x0, 0x5ea7, 0x8, 0x8000, 0x400250}, 0x0, 0x0)
sendmmsg(r2, 0x0, 0x0, 0x4004)
sendmmsg$inet(r1, &(0x7f0000000240)=[{{&(0x7f00000007c0)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a90500040000746400009e150451160200000064c6", 0x15}, {&(0x7f0000000000)="53340081ba60ccbb9d000000000000", 0xf}], 0x2}}, {{&(0x7f0000000080)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000780)="5825be06000000000000007ca2746314d1787b35", 0x14}], 0x1}}], 0x2, 0x4004040)

1m16.77010431s ago: executing program 1 (id=239):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket(0x1e, 0x4, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000800)={r2, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000240)="b9ff030768441a8cb89e14f00800e075702b1c1d23f4347dfde4a10fa01ebdf22117", 0x0, 0x4, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, 0x0, 0x401, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
close(r1)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r6 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010028bd7000ffdbdf2514000000080001000100000008001c00", @ANYRES32=r6, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)

1m16.54734927s ago: executing program 1 (id=241):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0e000000040000000400000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000010000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000000000000b70400000000000085000000330000008500000007"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc641}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
chroot(&(0x7f0000000a40)='./file0\x00')
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x2014050, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xd, 0x4, 0x4, 0x7, 0x0, r2, 0x10000}, 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)

1m16.470210803s ago: executing program 1 (id=244):
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f00000014c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x12001, 0x0)

1m16.102037539s ago: executing program 1 (id=252):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc, 0x0, 0x48810}, 0x4000800)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003080)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000940)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}}, 0x0)

1m16.050368841s ago: executing program 32 (id=252):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc, 0x0, 0x48810}, 0x4000800)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003080)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000940)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}}, 0x0)

4.680226927s ago: executing program 4 (id=1049):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10208}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x100000001}, 0x18)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x2)
getsockopt(0xffffffffffffffff, 0x200000000114, 0x2716, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x200000, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40840d4}, 0x0)

3.651875572s ago: executing program 4 (id=1056):
r0 = socket(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r0, &(0x7f0000000000)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000b4bffc)=0x1, 0x4)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write(r0, &(0x7f0000000ac0)="a9701e", 0x3)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

2.781156029s ago: executing program 4 (id=1062):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x109003, 0x0)
brk(0x5d555ede6000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x0, 0x0})
setxattr$system_posix_acl(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000300)=""/180}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000099c0)=[{{0x0, 0x0, 0x0}, 0x4251}, {{0x0, 0x0, &(0x7f0000000000)=[{0x0}, {0x0}], 0x2}, 0x8000}], 0x2, 0x10002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4d, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='-\x0f-\x00')

2.734767331s ago: executing program 4 (id=1063):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x4f, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x19, &(0x7f0000000400)=ANY=[@ANYBLOB="180000008f000000000000000b00400018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000086000000bf0900000000000055090100000000009500000000000000bd0a060000000000d500f4ff0100030018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000010000006500000006000000bf91000000000000b702000003000000850000002a000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x7, 0x1000, &(0x7f0000000cc0)=""/4096, 0x41100, 0x2f}, 0x21)

2.5256811s ago: executing program 0 (id=1068):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
close(0x3)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)

2.434539014s ago: executing program 0 (id=1072):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1)
syz_clone(0x40000000, &(0x7f0000000280)="2a30053e1c3176348270ca8b9180188fc835645c38b5c342fa86e88edfa65351a46a96741fb8b27eb7a0bbf51c48d5e453c0f1988ab9e8ce16", 0x39, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x102, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)

2.018099692s ago: executing program 0 (id=1074):
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f00000001c0)={0x8000042, 0x3}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000d379)={&(0x7f0000000380)={0x18, 0x14, 0x609, 0x0, 0x0, {0x1e}, [@generic="c1"]}, 0x18}}, 0x8040)

1.689034006s ago: executing program 4 (id=1075):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
memfd_secret(0x80000)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r2}, 0x6c)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x9, 0x4)

1.165760119s ago: executing program 2 (id=1078):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0}, 0x18)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x7, 0x4, 0x200, 0x21db}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x0, 0x318}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

1.14563474s ago: executing program 0 (id=1079):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = fsopen(&(0x7f0000000500)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fchdir(r3)
mkdirat(r3, &(0x7f0000000040)='./bus\x00', 0x38)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x70000, 0x181)
rmdir(&(0x7f0000000000)='./file0\x00')
r5 = open_tree(r4, &(0x7f0000000280)='\x00', 0x89901)
move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0)

1.017737896s ago: executing program 5 (id=1081):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x6048800)
r5 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000240)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r5, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r6}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x200448c0)

950.443079ms ago: executing program 0 (id=1082):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
r3 = socket$netlink(0x10, 0x3, 0xa)
r4 = dup(r3)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d1)
socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_setup(0xbdc, 0x0, 0x0, 0x0)

818.293104ms ago: executing program 4 (id=1084):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x14, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200006600000000"], 0x0, 0x7ff, 0x0, 0x0, 0x41100}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0xa, 0x300)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = gettid()
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000002000000)

808.734785ms ago: executing program 2 (id=1094):
prlimit64(0x0, 0xe, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000240)='./file0\x00', 0x80, &(0x7f00000008c0)=ANY=[], 0x1, 0x1b1, &(0x7f0000000280)="$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")
socket(0x1e, 0x4, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56974eed54d6b758}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)

711.603639ms ago: executing program 0 (id=1085):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$evdev(0x0, 0x1, 0x422002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, 0xffffffffffffffff, 0x0, 0xb9}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x508e, &(0x7f0000000080)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x20}}, {@user_xattr}, {@noinit_itable}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r2, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
readv(r2, &(0x7f0000000100)=[{&(0x7f00000002c0)=""/215, 0xd7}], 0x1)

661.379741ms ago: executing program 3 (id=1086):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x400ad80, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

611.232913ms ago: executing program 2 (id=1087):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
r2 = msgget$private(0x0, 0x0)
msgsnd(r2, &(0x7f0000000340)=ANY=[@ANYRES16], 0x2000, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x10000, 0x0, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
msgrcv(r2, &(0x7f0000001080)={0x0, ""/1}, 0x2000, 0x2, 0x3000)
msgctl$IPC_SET(r2, 0x1, &(0x7f00000004c0)={{0x0, 0xee00, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xb, 0x6f76, 0x7, 0x0, 0x1, 0x8, 0x7f, 0x3})
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)

596.480974ms ago: executing program 5 (id=1088):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), 0x3, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r4, &(0x7f0000002300)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e22, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x44}, 0x4)
sendmsg$tipc(r4, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

572.642855ms ago: executing program 5 (id=1089):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
close(r0)
r1 = inotify_init1(0x800)
fcntl$setstatus(r0, 0x4, 0x2c00)
r2 = gettid()
fcntl$setown(r0, 0x8, r2)
fcntl$setsig(r1, 0xa, 0xe)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r1, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')

534.993217ms ago: executing program 3 (id=1090):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000140)={'tunl0\x00', &(0x7f0000000340)={'syztnl2\x00', 0x0, 0x700, 0x8, 0x7, 0x2f, {{0x5, 0x4, 0x0, 0x4, 0x14, 0x64, 0x0, 0x3, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}}}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='sched_switch\x00', r0}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socket(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e0001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000850}, 0x40)

494.572058ms ago: executing program 5 (id=1091):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$eJzs3W1rZFcdAPD/vcmk2d3UTFVkLdgWW9ktujNJY9so0lYQfVVQ6/s1JpMQMsmEzKRuQtEsfgBBRAU/gG8EP4Ag+xFEWND3oqKI7upL3St35kbzMJMMySSzTn4/OJlz7sP5n3PJ3LkPh3sDuLJeioh3ImIsIl6NiOlielqk2OukfLnHjz5YzFMSWfbe35JIimn7deXl8Yi4Uaw2GRFf/0rEt5LjcZs7u2sL9XptqyhXW+ub1ebO7p3V9YWV2kptY25u9o35N+dfn5/JCufqZzki3vrSn370/Z99+a1ffebbv7/7l9vfyZv1hY912h0Ri+cK0EOn7lJ7W+zLt9HWRQQbkrw/pbFhtwIAgH7kx/gfjohPto//p2OsfTQHAAAAjJLs7an4VxKRAQAAACMrjYipSNJKMRZgKtK0UumM4f1oXE/rjWbr08uN7Y2lfF5EOUrp8mq9NlOMFS5HKcnLs8UY2/3ya0fKcxHxXET8cPpau1xZbNSXhn3xAwAAAK6IGy8ePv//53TazgMAAAAjptyzAAAAAIwKp/wAAAAw+pz/AwAAwEj76rvv5inbf4/30vs722uN9+8s1ZprlfXtxcpiY2uzstJorLSf2bd+Wn31RmPzs7Gxfa/aqjVb1ebO7t31xvZG6+7qoVdgAwAAAJfouRcf/C6JiL3PX2unKJ4DCHDIH4fdAGCQxobdAGBoxofdAGBoSqcuYQ8Boy45Zf7xwTuda4Xx64tpDwAAMHi3Pn78/v9EMe/0awPA/zNjfQDg6nF3D66u0llHAN4cdEuAYflQ5+OZXvN7Pryjj/v/nWsMWXamhgEAAAMz1U5JWimO06ciTSuViGfbrwUoJcur9dpMcX7w2+nSM3l5tr1mcuqYYQAAAAAAAAAAAAAAAAAAAAAAAACgI8uSyAAAAICRFpH+OWk/zT/i1vQrU4evDhx569dP3/vxvYVWa2s2YiL5+3Q+aSIiWj8ppr+WeSUAAAAAPAU65+nF5+ywWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAqHn86IPF/XSZcf/6xYgod4s/HpPtz8koRcT1fyQxfmC9JCLGBhB/735E3OwWP4knWZaVi1Z0i3/tguOX25ume/w0Im4MID5cZQ/y/c873b5/abzU/uz+/Rsv0nn13v+l/93/jfXY/zx7pNzL8w9/Ue0Z/37E8+Pd9z/78ZNO/EMh8sLLffbxm9/Y3e0640CV3eIfjFVtrW9Wmzu7d1bXF1ZqK7WNubnZN+bfnH99fqa6vFqvFX+7hvnBJ3755KT+X+8Rv3y4/8e2/yt99T6Lfz+89+gjnUKpW/zbL3f//b3ZI35a/PZ9qsjn82/t5/c6+YNe+PlvXjip/0s9+j95Sv9v99X/+NyrX/veH7rOObY1AIDL0NzZXVuo12tbJ2Qm+1jmkjNvPx3NGGAmno5mDCuTfbfz/3i+es65+rFMdp7Vx2MAzZg49j0di7NWmETs5XX1+Q8JAACMmP8d9J90BwkAAAAAAAAAAAAAAAAAAAC4SGd8LNlkRPS98NGYe8PpKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAif4TAAD//4RX0Xo=")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, &(0x7f00000004c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket(0x1e, 0x805, 0x0)
connect$tipc(r1, &(0x7f00000003c0)=@id={0x1e, 0x3, 0x0, {0x4e21, 0x3}}, 0x10)
connect$tipc(r1, &(0x7f0000000000)=@id, 0x10)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x80, 0x8)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
close(r1)

418.756452ms ago: executing program 2 (id=1092):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$ARCH_MAP_VDSO_X32(0x1e, r2, 0xfffffffeffffffff, 0x1002)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x9}]}], {0x14}}, 0x64}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00', r5}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003402e60000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x60044084)

312.815026ms ago: executing program 2 (id=1093):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=@newsa={0x158, 0x10, 0x413, 0x70bd2c, 0x25dfdbf9, {{@in6=@dev, @in=@remote, 0x0, 0x1}, {@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x32}, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, {0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1ebf5fdf}, {0x0, 0x0, 0x0, 0x90}, {}, 0x0, 0x0, 0xa, 0x2, 0x0, 0xa2}, [@algo_aead={0x4c, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x0, 0x60}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x70bd27, 0x70bd2d, 0x70bd2b, 0x70bd2d, 0x1}}]}, 0x158}}, 0x0)

289.536527ms ago: executing program 3 (id=1095):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x10000})
listen(r0, 0x5)
r1 = socket(0x28, 0x5, 0x0)
setrlimit(0x40000000000008, &(0x7f0000000000))
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000002480)=@deltfilter={0x24, 0x2d, 0x4, 0x70bd2f, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff2}, {0x1, 0x2}, {0x4, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x4004885}, 0x40004)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000001700000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f00000000c0)={0x1, 0x79e}, 0x8)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)

263.633098ms ago: executing program 5 (id=1096):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r3, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)

256.161308ms ago: executing program 3 (id=1097):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
io_uring_enter(0xffffffffffffffff, 0xf00, 0x2, 0x17, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680), 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1, 0x0, 0x1}, 0x18)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)

76.933767ms ago: executing program 2 (id=1098):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
memfd_secret(0x80000)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r2}, 0x6c)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x9, 0x4)

76.169807ms ago: executing program 3 (id=1108):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r3, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)

75.706017ms ago: executing program 5 (id=1099):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x8)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x1, 0x800001, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
munlock(&(0x7f0000ffc000/0x1000)=nil, 0x1000)
mincore(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
creat(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)

0s ago: executing program 3 (id=1100):
sendmsg$NFNL_MSG_ACCT_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, 0x1, 0x7, 0x401, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x9}]}, 0x20}, 0x1, 0x0, 0x0, 0x24080051}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r2, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000002c0)=@in6={0xa, 0x4e22, 0x0, @mcast1, 0x6}, 0x80, 0x0}, 0x8e8c5)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f0000001580)={0x2c, &(0x7f0000001380)={0x20, 0x11, 0x85, "b78befd2d3c786dac881051d1b3b62854f8f892e74d6c2cf90821cb9ca59241c867c20c780a1e2f7724f3e2cde444a7e5ffe8a3943105dddf8679295e657efd91badb21c5647be346461b6db0ea326bcc13ee2a2ca2382271806b8d5e714ae4f85d0e04ae0a5a2ae89ab1c7ae1491e80e897987b1a20e3c01995736f13a5d4cb3e32d51bed"}, 0x0, &(0x7f0000001480)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000014c0)={0x20, 0x1, 0x52, "c11ee2f167fc7f22b127cc0720b261b3c7d4c2275ea40ae8c1922c296b53ff1be902243d11a2644864a38e809db0f79d2db87a858f6de3127c3968a133ad85c1532370a2942b299cac3423bafc57dce8f223"}, 0x0})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x294}}, 0x0)

kernel console output (not intermixed with test programs):

miscuous mode
[   52.336825][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.345878][   T12] bridge_slave_0: left allmulticast mode
[   52.351653][   T12] bridge_slave_0: left promiscuous mode
[   52.357453][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.443921][   T12] bond0 (unregistering): left promiscuous mode
[   52.450216][   T12] bond_slave_0: left promiscuous mode
[   52.455692][   T12] bond_slave_1: left promiscuous mode
[   52.464533][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   52.475082][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   52.485597][   T12] bond0 (unregistering): Released all slaves
[   52.493588][ T3400] tipc: Node number set to 2886997007
[   52.505344][ T4220] lo speed is unknown, defaulting to 1000
[   52.601471][   T12] hsr_slave_0: left promiscuous mode
[   52.607330][   T12] hsr_slave_1: left promiscuous mode
[   52.615877][   T12] veth1_macvtap: left promiscuous mode
[   52.621533][   T12] veth0_macvtap: left promiscuous mode
[   52.627201][   T12] veth1_vlan: left promiscuous mode
[   52.632482][   T12] veth0_vlan: left promiscuous mode
[   52.694985][   T12] team0 (unregistering): Port device team_slave_1 removed
[   52.704863][   T12] team0 (unregistering): Port device team_slave_0 removed
[   52.777350][ T4244] loop0: detected capacity change from 0 to 164
[   52.786478][ T4220] chnl_net:caif_netlink_parms(): no params data found
[   52.787286][ T4244] loop0: detected capacity change from 0 to 128
[   52.827019][ T4220] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.834077][ T4220] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.841425][ T4220] bridge_slave_0: entered allmulticast mode
[   52.847864][ T4220] bridge_slave_0: entered promiscuous mode
[   52.854581][ T4220] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.861712][ T4220] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.869281][ T4220] bridge_slave_1: entered allmulticast mode
[   52.875762][ T4220] bridge_slave_1: entered promiscuous mode
[   52.897430][ T4220] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.917722][ T4220] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.955055][ T4220] team0: Port device team_slave_0 added
[   52.968577][ T4220] team0: Port device team_slave_1 added
[   52.992250][ T4220] batman_adv: batadv0: Adding interface: batadv_slave_0
[   52.999280][ T4220] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.025250][ T4220] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.036736][ T4220] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.043718][ T4220] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.069766][ T4220] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.080695][ T4256] loop0: detected capacity change from 0 to 128
[   53.107643][ T4256] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   53.120162][ T4256] ext4 filesystem being mounted at /60/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   53.121584][ T4258] __nla_validate_parse: 1 callbacks suppressed
[   53.121601][ T4258] netlink: 12 bytes leftover after parsing attributes in process `syz.2.262'.
[   53.163950][ T4220] hsr_slave_0: entered promiscuous mode
[   53.164331][ T3311] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   53.170476][ T4220] hsr_slave_1: entered promiscuous mode
[   53.184687][ T4220] debugfs: 'hsr0' already exists in 'hsr'
[   53.190655][ T4220] Cannot create hsr debugfs directory
[   53.377789][ T4220] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   53.387212][ T4220] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   53.396420][ T4220] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   53.405575][ T4220] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   53.423299][ T4220] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.430436][ T4220] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.437808][ T4220] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.444872][ T4220] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.457150][ T4286] xt_hashlimit: size too large, truncated to 1048576
[   53.483011][ T4220] 8021q: adding VLAN 0 to HW filter on device bond0
[   53.495522][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.504730][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.575811][ T4289] netlink: 4 bytes leftover after parsing attributes in process `syz.4.270'.
[   53.621127][ T4220] 8021q: adding VLAN 0 to HW filter on device team0
[   53.632714][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.639829][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.687068][ T2295] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.694290][ T2295] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.798395][ T4220] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.970193][ T4220] veth0_vlan: entered promiscuous mode
[   54.062000][ T4220] veth1_vlan: entered promiscuous mode
[   54.089891][ T4220] veth0_macvtap: entered promiscuous mode
[   54.099283][ T4220] veth1_macvtap: entered promiscuous mode
[   54.114834][ T4220] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.140608][ T4220] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.163052][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.191302][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.197756][   T29] kauditd_printk_skb: 257 callbacks suppressed
[   54.197775][   T29] audit: type=1400 audit(1763988432.610:1215): avc:  denied  { mounton } for  pid=4220 comm="syz-executor" path="/root/syzkaller.6QDjEw/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   54.216335][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.297124][   T29] audit: type=1326 audit(1763988432.690:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.313345][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.320516][   T29] audit: type=1326 audit(1763988432.690:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.320552][   T29] audit: type=1326 audit(1763988432.690:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.320617][   T29] audit: type=1326 audit(1763988432.690:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.320658][   T29] audit: type=1326 audit(1763988432.690:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.320691][   T29] audit: type=1326 audit(1763988432.690:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.320727][   T29] audit: type=1326 audit(1763988432.690:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.320761][   T29] audit: type=1326 audit(1763988432.690:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.320790][   T29] audit: type=1326 audit(1763988432.690:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4319 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3478ddf749 code=0x7ffc0000
[   54.386998][ T4324] netlink: 8 bytes leftover after parsing attributes in process `syz.4.275'.
[   54.525618][ T4324] netlink: 8 bytes leftover after parsing attributes in process `syz.4.275'.
[   54.578912][ T4315] netlink: 8 bytes leftover after parsing attributes in process `syz.3.274'.
[   54.601197][ T4327] lo speed is unknown, defaulting to 1000
[   54.622552][ T4331] netlink: 64 bytes leftover after parsing attributes in process `syz.2.278'.
[   54.698696][ T4334] netlink: 'syz.2.279': attribute type 1 has an invalid length.
[   54.730208][ T4334] netlink: 28 bytes leftover after parsing attributes in process `syz.2.279'.
[   54.742421][ T4334] 8021q: adding VLAN 0 to HW filter on device bond1
[   54.776391][ T4334] 8021q: adding VLAN 0 to HW filter on device bond1
[   54.786581][ T4334] bond1: (slave geneve2): making interface the new active one
[   54.795021][ T4334] bond1: (slave geneve2): Enslaving as an active interface with an up link
[   54.829185][  T150] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 20004 - 0
[   54.837572][  T150] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 20004 - 0
[   54.846574][ T4341] netlink: 4 bytes leftover after parsing attributes in process `syz.5.282'.
[   54.897512][  T150] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 20004 - 0
[   54.958277][   T31] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 20004 - 0
[   55.147090][ T4352] loop4: detected capacity change from 0 to 1024
[   55.153960][ T4352] EXT4-fs: Ignoring removed nomblk_io_submit option
[   55.160665][ T4350] netlink: 131740 bytes leftover after parsing attributes in process `syz.2.294'.
[   55.160705][ T4350] netlink: zone id is out of range
[   55.160713][ T4350] netlink: zone id is out of range
[   55.197267][ T4352] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.209451][ T4350] netlink: zone id is out of range
[   55.209464][ T4350] netlink: zone id is out of range
[   55.209491][ T4350] netlink: del zone limit has 8 unknown bytes
[   55.711430][ T4375] netlink: 64 bytes leftover after parsing attributes in process `syz.0.290'.
[   55.978805][ T4381] lo speed is unknown, defaulting to 1000
[   56.200546][ T4389] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.258464][ T4389] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.307725][ T4394] netlink: zone id is out of range
[   56.312920][ T4394] netlink: zone id is out of range
[   56.336054][ T4394] netlink: zone id is out of range
[   56.340916][ T4352] syz.4.284 (4352) used greatest stack depth: 6184 bytes left
[   56.341197][ T4394] netlink: zone id is out of range
[   56.359064][ T4394] netlink: del zone limit has 8 unknown bytes
[   56.372569][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.384097][ T4389] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.436038][ T4400] lo speed is unknown, defaulting to 1000
[   56.457933][ T4389] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.561696][   T52] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.588780][   T52] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.606573][   T52] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.614936][   T52] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.643294][ T4412] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.708088][ T4412] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.814857][ T4412] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.863510][ T4419] loop4: detected capacity change from 0 to 512
[   56.872079][ T4419] EXT4-fs (loop4): orphan cleanup on readonly fs
[   56.880237][ T4412] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.890640][ T4419] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.309: bad orphan inode 13
[   56.903911][ T4419] ext4_test_bit(bit=12, block=18) = 1
[   56.909356][ T4419] is_bad_inode(inode)=0
[   56.913526][ T4419] NEXT_ORPHAN(inode)=2130706432
[   56.918442][ T4419] max_ino=32
[   56.921648][ T4419] i_nlink=1
[   56.926977][ T4419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.013343][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.046152][ T4428] lo speed is unknown, defaulting to 1000
[   57.159399][ T4433] loop0: detected capacity change from 0 to 1024
[   57.173850][ T4433] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.205094][ T4433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.255510][ T4441] lo speed is unknown, defaulting to 1000
[   57.841611][ T4443] sch_fq: defrate 4294967295 ignored.
[   57.950548][ T4460] loop5: detected capacity change from 0 to 512
[   57.969093][ T4460] EXT4-fs (loop5): orphan cleanup on readonly fs
[   57.983065][ T4460] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.321: bad orphan inode 13
[   57.993627][ T4460] ext4_test_bit(bit=12, block=18) = 1
[   57.999171][ T4460] is_bad_inode(inode)=0
[   58.003337][ T4460] NEXT_ORPHAN(inode)=2130706432
[   58.008275][ T4460] max_ino=32
[   58.011484][ T4460] i_nlink=1
[   58.063532][ T4460] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   58.173718][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.248310][  T150] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.258160][  T150] netdevsim netdevsim2 eth3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[   58.298311][  T150] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.308159][  T150] netdevsim netdevsim2 eth2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[   58.369522][  T150] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.379502][  T150] netdevsim netdevsim2 eth1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[   58.487604][  T150] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.497521][  T150] netdevsim netdevsim2 eth0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[   58.537217][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.552568][ T4474] lo speed is unknown, defaulting to 1000
[   58.587966][  T150] bridge_slave_1: left allmulticast mode
[   58.593738][  T150] bridge_slave_1: left promiscuous mode
[   58.599447][  T150] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.633297][  T150] bridge_slave_0: left allmulticast mode
[   58.639102][  T150] bridge_slave_0: left promiscuous mode
[   58.644793][  T150] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.718823][  T150] bond1 (unregistering): (slave geneve2): Releasing active interface
[   58.918694][  T150] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   58.929033][  T150] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   58.940347][  T150] bond0 (unregistering): Released all slaves
[   58.950513][  T150] bond1 (unregistering): Released all slaves
[   59.074565][ T4474] chnl_net:caif_netlink_parms(): no params data found
[   59.231846][  T150] hsr_slave_0: left promiscuous mode
[   59.250695][  T150] hsr_slave_1: left promiscuous mode
[   59.266332][  T150] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.273771][  T150] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.291589][  T150] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.299097][  T150] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.316651][   T29] kauditd_printk_skb: 111 callbacks suppressed
[   59.316667][   T29] audit: type=1326 audit(1763988437.700:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.346396][   T29] audit: type=1326 audit(1763988437.700:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.370009][   T29] audit: type=1326 audit(1763988437.700:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.393474][   T29] audit: type=1326 audit(1763988437.700:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.416975][   T29] audit: type=1326 audit(1763988437.700:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.440636][   T29] audit: type=1326 audit(1763988437.700:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.463959][   T29] audit: type=1326 audit(1763988437.700:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.487296][   T29] audit: type=1326 audit(1763988437.700:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.510649][   T29] audit: type=1326 audit(1763988437.720:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.534124][   T29] audit: type=1326 audit(1763988437.720:1345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4500 comm="syz.4.330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[   59.609466][  T150] veth1_macvtap: left promiscuous mode
[   59.615243][  T150] veth0_macvtap: left promiscuous mode
[   59.700893][  T150] team0 (unregistering): Port device team_slave_1 removed
[   59.720858][  T150] team0 (unregistering): Port device team_slave_0 removed
[   59.787419][ T4474] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.794527][ T4474] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.809631][ T4474] bridge_slave_0: entered allmulticast mode
[   59.826504][ T4474] bridge_slave_0: entered promiscuous mode
[   59.833592][ T4474] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.840763][ T4474] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.856042][ T4474] bridge_slave_1: entered allmulticast mode
[   59.862594][ T4474] bridge_slave_1: entered promiscuous mode
[   59.891552][ T4474] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.907052][ T4474] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.945391][ T4474] team0: Port device team_slave_0 added
[   59.952386][ T4474] team0: Port device team_slave_1 added
[   59.969472][ T4474] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.976569][ T4474] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   60.002670][ T4474] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.013867][ T4474] batman_adv: batadv0: Adding interface: batadv_slave_1
[   60.020952][ T4474] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   60.047025][ T4474] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.092680][ T4474] hsr_slave_0: entered promiscuous mode
[   60.098818][ T4474] hsr_slave_1: entered promiscuous mode
[   60.104670][ T4474] debugfs: 'hsr0' already exists in 'hsr'
[   60.110446][ T4474] Cannot create hsr debugfs directory
[   60.348211][   T12] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.369880][   T12] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.383595][   T12] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.405655][   T12] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.491346][ T4518] __nla_validate_parse: 9 callbacks suppressed
[   60.491365][ T4518] netlink: 4 bytes leftover after parsing attributes in process `syz.0.334'.
[   60.507774][ T4521] sch_fq: defrate 4294967295 ignored.
[   60.548408][ T4474] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   60.564789][ T4474] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   60.574256][ T4525] loop0: detected capacity change from 0 to 512
[   60.584317][ T4474] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   60.595504][ T4525] EXT4-fs (loop0): orphan cleanup on readonly fs
[   60.603936][ T4474] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   60.622955][ T4525] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.335: bad orphan inode 13
[   60.639402][ T4529] loop5: detected capacity change from 0 to 1024
[   60.646798][ T4525] ext4_test_bit(bit=12, block=18) = 1
[   60.652220][ T4525] is_bad_inode(inode)=0
[   60.654367][ T4529] EXT4-fs: Ignoring removed nomblk_io_submit option
[   60.656443][ T4525] NEXT_ORPHAN(inode)=2130706432
[   60.656455][ T4525] max_ino=32
[   60.656463][ T4525] i_nlink=1
[   60.668437][ T4525] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   60.699112][ T4538] netlink: 24 bytes leftover after parsing attributes in process `syz.3.339'.
[   60.715355][ T4529] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.729536][ T4474] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.740699][ T4474] 8021q: adding VLAN 0 to HW filter on device team0
[   60.761609][ T4538] netlink: 4 bytes leftover after parsing attributes in process `syz.3.339'.
[   60.767204][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.777566][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.790716][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.810514][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.817757][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.921470][ T4474] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.038215][ T4474] veth0_vlan: entered promiscuous mode
[   61.058828][ T4474] veth1_vlan: entered promiscuous mode
[   61.088494][ T4474] veth0_macvtap: entered promiscuous mode
[   61.108012][ T4474] veth1_macvtap: entered promiscuous mode
[   61.125915][ T4474] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.137808][ T4474] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.149708][  T150] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.162912][   T52] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.187597][   T52] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.200343][   T52] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.256760][ T4569] loop4: detected capacity change from 0 to 164
[   61.270276][ T4569] loop4: detected capacity change from 0 to 128
[   61.596547][ T4573] netlink: 104 bytes leftover after parsing attributes in process `syz.4.357'.
[   61.652480][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.530627][ T4594] netlink: 4 bytes leftover after parsing attributes in process `syz.3.348'.
[   62.602234][ T4598] netlink: 12 bytes leftover after parsing attributes in process `syz.0.352'.
[   62.612811][ T4600] loop4: detected capacity change from 0 to 128
[   62.640697][ T4600] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   62.675318][ T4600] ext4 filesystem being mounted at /66/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   62.704839][ T4593] sch_fq: defrate 4294967295 ignored.
[   62.765673][ T3319] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   62.904940][ T4617] lo speed is unknown, defaulting to 1000
[   62.921882][ T4619] loop4: detected capacity change from 0 to 512
[   62.960985][ T4619] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.016180][ T4619] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.070829][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.584676][ T4644] netlink: 12 bytes leftover after parsing attributes in process `syz.4.370'.
[   63.596484][ T4645] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.638215][ T4647] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4647 comm=syz.4.371
[   63.650700][ T4647] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4647 comm=syz.4.371
[   63.669193][ T4647] loop4: detected capacity change from 0 to 512
[   63.675852][ T4647] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   64.609415][ T4645] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.659027][ T4645] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.708792][ T4645] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.762163][ T2295] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.773841][  T150] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.785112][ T2295] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.796293][ T2295] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.830986][ T4654] veth2: entered promiscuous mode
[   64.836216][ T4654] veth2: entered allmulticast mode
[   64.859468][ T4656] netlink: 104 bytes leftover after parsing attributes in process `syz.5.375'.
[   64.898181][ T4667] netlink: 24 bytes leftover after parsing attributes in process `syz.4.376'.
[   64.980924][ T4672] loop5: detected capacity change from 0 to 1024
[   65.029595][ T4672] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   65.110209][ T4661] sch_fq: defrate 4294967295 ignored.
[   65.126377][ T4666] lo speed is unknown, defaulting to 1000
[   65.204191][ T4672] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   65.258944][ T4672] EXT4-fs (loop5): orphan cleanup on readonly fs
[   65.329085][ T4672] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.377: Freeing blocks not in datazone - block = 0, count = 4096
[   65.387845][ T4672] EXT4-fs (loop5): 1 orphan inode deleted
[   65.405509][ T4672] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   65.738044][ T4700] loop2: detected capacity change from 0 to 1024
[   65.747813][ T4700] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.778452][ T4700] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.387: Allocating blocks 449-513 which overlap fs metadata
[   65.793332][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.803143][ T4698] EXT4-fs (loop2): pa ffff8881072f50e0: logic 48, phys. 177, len 21
[   65.811380][ T4698] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   65.833754][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.950946][ T4713] netlink: 24 bytes leftover after parsing attributes in process `syz.2.391'.
[   66.008758][ T4717] netlink: 104 bytes leftover after parsing attributes in process `syz.2.394'.
[   66.032903][   T29] kauditd_printk_skb: 472 callbacks suppressed
[   66.032920][   T29] audit: type=1400 audit(1763988444.440:1818): avc:  denied  { read } for  pid=4718 comm="syz.2.396" name="qrtr-tun" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   66.063112][   T29] audit: type=1400 audit(1763988444.440:1819): avc:  denied  { open } for  pid=4718 comm="syz.2.396" path="/dev/qrtr-tun" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   66.211115][   T29] audit: type=1326 audit(1763988444.620:1820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4728 comm="syz.2.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   66.239664][   T29] audit: type=1326 audit(1763988444.620:1821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4728 comm="syz.2.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   66.263110][   T29] audit: type=1326 audit(1763988444.650:1822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4728 comm="syz.2.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   66.286734][   T29] audit: type=1326 audit(1763988444.650:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4728 comm="syz.2.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   66.310516][   T29] audit: type=1326 audit(1763988444.650:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4728 comm="syz.2.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   66.333912][   T29] audit: type=1326 audit(1763988444.650:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4728 comm="syz.2.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   66.357248][   T29] audit: type=1326 audit(1763988444.650:1826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4728 comm="syz.2.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   66.380815][   T29] audit: type=1326 audit(1763988444.650:1827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4728 comm="syz.2.399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   66.425045][ T4734] netlink: 28 bytes leftover after parsing attributes in process `syz.2.401'.
[   66.537728][ T4742] loop3: detected capacity change from 0 to 1024
[   66.544961][ T4742] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.562012][ T4742] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.625206][ T4747] loop0: detected capacity change from 0 to 1024
[   66.638050][ T4747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.811154][ T4747] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.406: Allocating blocks 449-513 which overlap fs metadata
[   67.049834][ T4746] EXT4-fs (loop0): pa ffff8881072f5150: logic 48, phys. 177, len 21
[   67.057959][ T4746] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[   67.239582][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.475802][ T4763] loop0: detected capacity change from 0 to 512
[   67.502182][ T4763] EXT4-fs warning (device loop0): dx_probe:861: inode #2: comm syz.0.410: dx entry: limit 0 != root limit 125
[   67.513926][ T4763] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.410: Corrupt directory, running e2fsck is recommended
[   67.566897][ T4763] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[   67.634547][ T4763] EXT4-fs error (device loop0): ext4_iget_extra_inode:5075: inode #15: comm syz.0.410: corrupted in-inode xattr: invalid ea_ino
[   67.687853][ T4763] EXT4-fs (loop0): Remounting filesystem read-only
[   67.713125][ T4763] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.823821][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.268473][ T4780] loop2: detected capacity change from 0 to 1024
[   68.283472][ T4780] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   68.315772][ T4776] lo speed is unknown, defaulting to 1000
[   68.335509][ T4780] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   68.353107][ T4780] EXT4-fs (loop2): orphan cleanup on readonly fs
[   68.366662][ T4780] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.425: Freeing blocks not in datazone - block = 0, count = 4096
[   68.442124][ T4786] netlink: 24 bytes leftover after parsing attributes in process `syz.5.418'.
[   68.457824][ T4780] EXT4-fs (loop2): 1 orphan inode deleted
[   68.491740][ T4780] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   68.504516][ T4786] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4786 comm=syz.5.418
[   68.526946][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.611226][ T4791] netlink: 28 bytes leftover after parsing attributes in process `syz.3.419'.
[   68.689388][ T4802] netlink: 12 bytes leftover after parsing attributes in process `syz.3.426'.
[   68.838633][ T4810] loop3: detected capacity change from 0 to 1024
[   68.846396][ T4810] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   68.857643][ T4810] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[   68.881729][ T4810] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   68.892725][ T4810] EXT4-fs (loop3): invalid journal inode
[   68.898621][ T4810] EXT4-fs (loop3): can't get journal size
[   68.904896][ T4810] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #3: comm syz.3.428: blocks 2-2 from inode overlap system zone
[   68.931153][ T4810] EXT4-fs (loop3): failed to initialize system zone (-117)
[   68.938495][ T4810] EXT4-fs (loop3): mount failed
[   69.019636][ T4816] loop0: detected capacity change from 0 to 512
[   69.062752][ T4816] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.081306][ T4819] loop3: detected capacity change from 0 to 1024
[   69.109067][ T4819] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.126180][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.136678][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.180683][ T4823] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4823 comm=syz.2.433
[   69.193252][ T4823] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4823 comm=syz.2.433
[   69.206240][ T4819] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.227080][ T4823] loop2: detected capacity change from 0 to 512
[   69.233697][ T4823] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   69.238070][ T4831] sch_tbf: burst 1023 is lower than device lo mtu (65550) !
[   69.415267][ T4846] netlink: 156 bytes leftover after parsing attributes in process `syz.2.440'.
[   69.430461][ T4846] netlink: 156 bytes leftover after parsing attributes in process `syz.2.440'.
[   69.556597][ T4850] syzkaller0: entered promiscuous mode
[   69.562196][ T4850] syzkaller0: entered allmulticast mode
[   69.603294][ T4853] loop0: detected capacity change from 0 to 1024
[   69.620633][ T4853] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   69.649353][ T4853] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   69.681729][ T4852] lo speed is unknown, defaulting to 1000
[   69.747041][ T4853] EXT4-fs (loop0): orphan cleanup on readonly fs
[   69.783327][ T4853] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.442: Freeing blocks not in datazone - block = 0, count = 4096
[   69.820239][ T4853] EXT4-fs (loop0): 1 orphan inode deleted
[   69.838898][ T4853] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.157068][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.175274][ T4859] loop2: detected capacity change from 0 to 512
[   70.184947][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.205902][ T4859] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.245575][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.546396][ T4887] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4887 comm=syz.3.452
[   70.558922][ T4887] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4887 comm=syz.3.452
[   70.576555][ T4887] loop3: detected capacity change from 0 to 512
[   70.583454][ T4887] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   70.644983][ T4896] loop2: detected capacity change from 0 to 1024
[   70.651856][ T4896] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.667664][ T4896] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.727153][ T4893] program syz.3.456 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   71.032253][ T4914] netlink: 12 bytes leftover after parsing attributes in process `syz.3.463'.
[   71.053904][ T4914] 8021q: adding VLAN 0 to HW filter on device bond2
[   71.072511][ T4914] macvlan0: entered promiscuous mode
[   71.077919][ T4914] macvlan0: entered allmulticast mode
[   71.084489][ T4914] bond2: (slave macvlan0): Opening slave failed
[   71.125602][ T4916] syzkaller0: entered promiscuous mode
[   71.131209][ T4916] syzkaller0: entered allmulticast mode
[   71.193935][   T29] kauditd_printk_skb: 450 callbacks suppressed
[   71.193949][   T29] audit: type=1400 audit(1763988449.600:2278): avc:  denied  { write } for  pid=4925 comm="syz.3.466" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   71.227629][ T4927] loop0: detected capacity change from 0 to 512
[   71.251873][ T4927] EXT4-fs warning (device loop0): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   71.263430][ T4927] EXT4-fs warning (device loop0): dx_probe:849: Enable large directory feature to access it
[   71.273597][ T4927] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.465: Corrupt directory, running e2fsck is recommended
[   71.316289][ T4927] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[   71.346077][ T4927] EXT4-fs error (device loop0): ext4_iget_extra_inode:5075: inode #15: comm syz.0.465: corrupted in-inode xattr: invalid ea_ino
[   71.396478][ T4938] netlink: 12 bytes leftover after parsing attributes in process `syz.3.469'.
[   71.410408][ T4927] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.465: couldn't read orphan inode 15 (err -117)
[   71.455397][ T4927] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.473759][ T4939] loop4: detected capacity change from 0 to 1024
[   71.489851][ T4939] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   71.500879][ T4939] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[   71.524964][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.579464][   T29] audit: type=1326 audit(1763988449.990:2279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.603292][ T4939] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   71.615979][   T29] audit: type=1326 audit(1763988449.990:2280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.646182][ T4939] EXT4-fs (loop4): invalid journal inode
[   71.655615][ T4939] EXT4-fs (loop4): can't get journal size
[   71.669972][ T4939] EXT4-fs error (device loop4): ext4_protect_reserved_inode:182: inode #3: comm syz.4.467: blocks 2-2 from inode overlap system zone
[   71.676016][   T29] audit: type=1326 audit(1763988450.070:2281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.706987][   T29] audit: type=1326 audit(1763988450.070:2282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.730558][ T4939] EXT4-fs (loop4): failed to initialize system zone (-117)
[   71.744623][ T4939] EXT4-fs (loop4): mount failed
[   71.746028][ T4949] wg2: entered promiscuous mode
[   71.754391][ T4949] wg2: entered allmulticast mode
[   71.766453][   T29] audit: type=1326 audit(1763988450.150:2283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.789879][   T29] audit: type=1326 audit(1763988450.150:2284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.813245][   T29] audit: type=1326 audit(1763988450.150:2285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.836629][   T29] audit: type=1326 audit(1763988450.150:2286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.859973][   T29] audit: type=1326 audit(1763988450.160:2287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4942 comm="syz.0.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   71.997527][ T4954] netlink: 24 bytes leftover after parsing attributes in process `+}[@'.
[   72.024832][ T4956] loop0: detected capacity change from 0 to 2048
[   72.033512][ T4954] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4954 comm=+}[@
[   72.066243][ T4958] netlink: 12 bytes leftover after parsing attributes in process `syz.4.477'.
[   72.077119][ T4956] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.081775][ T4961] syzkaller0: entered promiscuous mode
[   72.094704][ T4961] syzkaller0: entered allmulticast mode
[   72.287914][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.417069][ T4974] lo speed is unknown, defaulting to 1000
[   72.726110][ T4980] mmap: syz.4.483 (4980) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   73.373743][ T4997] loop4: detected capacity change from 0 to 512
[   73.390385][ T4997] EXT4-fs warning (device loop4): dx_probe:861: inode #2: comm syz.4.489: dx entry: limit 0 != root limit 125
[   73.402161][ T4997] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.489: Corrupt directory, running e2fsck is recommended
[   73.453478][ T4997] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[   73.471450][ T5000] tmpfs: Bad value for 'mpol'
[   73.487566][ T5000] netlink: 16 bytes leftover after parsing attributes in process `syz.0.490'.
[   73.505295][ T4997] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.489: corrupted in-inode xattr: invalid ea_ino
[   73.537498][ T4997] EXT4-fs (loop4): Remounting filesystem read-only
[   73.544776][ T4997] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.645169][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.646166][ T5005] syzkaller0: entered promiscuous mode
[   73.659781][ T5005] syzkaller0: entered allmulticast mode
[   73.880642][ T5015] netlink: 12 bytes leftover after parsing attributes in process `syz.4.495'.
[   73.916409][ T5020] loop2: detected capacity change from 0 to 1024
[   74.093403][ T4703] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 2: invalid block bitmap
[   74.109893][ T5025] loop4: detected capacity change from 0 to 512
[   74.119910][ T5025] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.499: error while reading EA inode 32 err=-116
[   74.136245][ T5020] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.497: Failed to acquire dquot type 0
[   74.149422][ T5025] EXT4-fs (loop4): Remounting filesystem read-only
[   74.157201][ T5020] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   74.172774][ T5025] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   74.183177][ T5020] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #13: comm syz.2.497: corrupted inode contents
[   74.196531][ T5025] EXT4-fs (loop4): 1 orphan inode deleted
[   74.203149][ T5025] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.216642][ T5020] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #13: comm syz.2.497: mark_inode_dirty error
[   74.240441][ T5020] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #13: comm syz.2.497: corrupted inode contents
[   74.282276][ T5013] ip6t_rpfilter: unknown options
[   74.288251][ T5020] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.497: mark_inode_dirty error
[   74.303699][ T5020] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #13: comm syz.2.497: corrupted inode contents
[   74.348414][ T5020] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[   74.360717][ T5031] ip6gretap0: entered promiscuous mode
[   74.362934][ T5020] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #13: comm syz.2.497: corrupted inode contents
[   74.378537][ T5020] EXT4-fs error (device loop2): ext4_truncate:4637: inode #13: comm syz.2.497: mark_inode_dirty error
[   74.389814][ T5020] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[   74.389946][ T5031] netlink: 4 bytes leftover after parsing attributes in process `syz.0.501'.
[   74.399327][ T5020] EXT4-fs (loop2): 1 truncate cleaned up
[   74.413866][ T5020] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.431408][ T5031] ip6gretap0 (unregistering): left promiscuous mode
[   74.451308][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.492619][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.532786][ T5037] loop5: detected capacity change from 0 to 512
[   74.542195][ T5037] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.504: dx entry: limit 0 != root limit 125
[   74.554034][ T5037] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.504: Corrupt directory, running e2fsck is recommended
[   74.567182][ T5037] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[   74.575703][ T5037] EXT4-fs error (device loop5): ext4_iget_extra_inode:5075: inode #15: comm syz.5.504: corrupted in-inode xattr: invalid ea_ino
[   74.589946][ T5037] EXT4-fs (loop5): Remounting filesystem read-only
[   74.597152][ T5037] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.630573][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.657119][ T5046] syzkaller0: entered promiscuous mode
[   74.662652][ T5046] syzkaller0: entered allmulticast mode
[   74.830755][ T5051] wg2: entered promiscuous mode
[   74.835770][ T5051] wg2: entered allmulticast mode
[   74.888617][ T5056] loop3: detected capacity change from 0 to 4096
[   74.897797][ T5056] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.988004][ T5058] ip6t_rpfilter: unknown options
[   75.016859][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.244720][ T5065] loop7: detected capacity change from 0 to 16384
[   75.427563][ T5072] netlink: 'syz.3.510': attribute type 1 has an invalid length.
[   75.469324][ T5072] 8021q: adding VLAN 0 to HW filter on device bond4
[   75.478256][ T5072] bond3: (slave bond4): making interface the new active one
[   75.485879][ T5072] bond3: (slave bond4): Enslaving as an active interface with an up link
[   75.496021][ T5066] loop7: detected capacity change from 16384 to 0
[   75.496283][    C0] I/O error, dev loop7, sector 12032 op 0x0:(READ) flags 0x80700 phys_seg 21 prio class 2
[   75.535601][ T5072] bond3: (slave gretap1): Enslaving as a backup interface with an up link
[   75.617649][ T5072] netlink: 28 bytes leftover after parsing attributes in process `syz.3.510'.
[   75.638556][ T5072] 8021q: adding VLAN 0 to HW filter on device bond3
[   75.706418][ T5084] loop3: detected capacity change from 0 to 512
[   75.718839][ T5084] EXT4-fs warning (device loop3): dx_probe:861: inode #2: comm syz.3.517: dx entry: limit 0 != root limit 125
[   75.730758][ T5084] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.517: Corrupt directory, running e2fsck is recommended
[   75.752894][ T5092] netlink: 12 bytes leftover after parsing attributes in process `syz.5.520'.
[   75.810502][ T5092] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.853916][ T5092] macvlan0: entered promiscuous mode
[   75.859340][ T5092] macvlan0: entered allmulticast mode
[   75.875455][ T5084] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[   75.883916][ T5092] bond1: (slave macvlan0): Opening slave failed
[   75.890930][ T5084] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.517: corrupted in-inode xattr: invalid ea_ino
[   75.915252][ T5084] EXT4-fs (loop3): Remounting filesystem read-only
[   75.924518][ T5084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.986456][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.988922][ T5098] netlink: 12 bytes leftover after parsing attributes in process `syz.5.522'.
[   76.276482][   T29] kauditd_printk_skb: 548 callbacks suppressed
[   76.276498][   T29] audit: type=1326 audit(1763988454.690:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.376382][   T29] audit: type=1326 audit(1763988454.720:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.399807][   T29] audit: type=1326 audit(1763988454.720:2836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.423275][   T29] audit: type=1326 audit(1763988454.720:2837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.430620][ T5110] netlink: 'syz.4.527': attribute type 10 has an invalid length.
[   76.446619][   T29] audit: type=1326 audit(1763988454.720:2838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.469399][ T5110] syz_tun: entered promiscuous mode
[   76.477602][   T29] audit: type=1326 audit(1763988454.720:2839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.506215][   T29] audit: type=1326 audit(1763988454.720:2840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.513772][ T5110] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   76.529564][   T29] audit: type=1326 audit(1763988454.720:2841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.529643][   T29] audit: type=1326 audit(1763988454.720:2842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.584913][   T29] audit: type=1326 audit(1763988454.720:2843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5106 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   76.675756][ T5115] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.810319][ T5122] netlink: 24 bytes leftover after parsing attributes in process `+}[@'.
[   76.821982][ T5115] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.847497][ T5122] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5122 comm=+}[@
[   76.914233][ T5124] ip6t_rpfilter: unknown options
[   76.951062][ T5115] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.030536][ T5115] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.115109][   T52] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.144508][   T52] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.171390][   T52] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.243869][   T52] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.364443][ T5136] netlink: 12 bytes leftover after parsing attributes in process `syz.0.537'.
[   77.672307][ T5142] loop4: detected capacity change from 0 to 1024
[   77.680668][ T5142] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.541: Failed to acquire dquot type 0
[   77.692556][ T5142] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   77.707272][ T5142] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.541: corrupted inode contents
[   77.723551][ T5142] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #13: comm syz.4.541: mark_inode_dirty error
[   77.736193][ T5142] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.541: corrupted inode contents
[   77.761011][ T5142] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.541: mark_inode_dirty error
[   77.784684][ T5142] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.541: corrupted inode contents
[   77.796698][ T5142] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[   77.828183][ T5142] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.541: corrupted inode contents
[   77.828307][ T5142] EXT4-fs error (device loop4): ext4_truncate:4637: inode #13: comm syz.4.541: mark_inode_dirty error
[   77.828414][ T5142] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[   77.828891][ T5142] EXT4-fs (loop4): 1 truncate cleaned up
[   77.829228][ T5142] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.831353][ T5149] loop3: detected capacity change from 0 to 1024
[   77.851516][ T5149] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   77.857641][ T5149] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   77.857706][ T5149] EXT4-fs (loop3): orphan cleanup on readonly fs
[   77.869732][ T5149] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.539: Freeing blocks not in datazone - block = 0, count = 4096
[   77.879065][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.922251][ T5148] lo speed is unknown, defaulting to 1000
[   77.946468][ T5149] EXT4-fs (loop3): 1 orphan inode deleted
[   77.989053][ T5157] netlink: 24 bytes leftover after parsing attributes in process `+}[@'.
[   78.032096][ T5157] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5157 comm=+}[@
[   78.032680][ T5149] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   78.148416][ T5164] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   78.371109][ T5170] lo speed is unknown, defaulting to 1000
[   78.761906][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.786655][ T5173] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.848462][ T5173] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.900720][ T5173] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.936666][ T5178] netlink: 32 bytes leftover after parsing attributes in process `syz.4.551'.
[   78.954444][ T5178] netlink: 32 bytes leftover after parsing attributes in process `syz.4.551'.
[   78.966140][ T5173] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.035213][ T5185] netlink: 52 bytes leftover after parsing attributes in process `syz.0.552'.
[   79.146080][ T5188] geneve2: entered promiscuous mode
[   79.151350][ T5188] geneve2: entered allmulticast mode
[   79.217582][ T5189] lo speed is unknown, defaulting to 1000
[   79.377792][   T52] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.479550][   T52] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.550506][   T52] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.572523][   T52] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.626776][ T5200] netlink: 12 bytes leftover after parsing attributes in process `syz.3.558'.
[   79.768235][ T5205] netlink: 20 bytes leftover after parsing attributes in process `syz.0.559'.
[   79.782940][ T5211] loop3: detected capacity change from 0 to 1024
[   79.862016][ T5211] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   79.898922][ T5211] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   80.004839][ T5221] bridge: RTM_NEWNEIGH with invalid ether address
[   80.009483][ T5211] EXT4-fs (loop3): orphan cleanup on readonly fs
[   80.016450][ T5207] lo speed is unknown, defaulting to 1000
[   80.036796][ T5220] netlink: 4 bytes leftover after parsing attributes in process `syz.0.564'.
[   80.103645][ T5220] netlink: 4 bytes leftover after parsing attributes in process `syz.0.564'.
[   80.146217][ T5211] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.560: Freeing blocks not in datazone - block = 0, count = 4096
[   80.176341][ T5211] EXT4-fs (loop3): 1 orphan inode deleted
[   80.182389][ T5211] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.454708][ T5233] tmpfs: Bad value for 'mpol'
[   80.787343][ T5226] lo speed is unknown, defaulting to 1000
[   80.816352][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.164476][ T5230] lo speed is unknown, defaulting to 1000
[   81.265368][ T5245] lo speed is unknown, defaulting to 1000
[   81.427762][   T29] kauditd_printk_skb: 92 callbacks suppressed
[   81.427778][   T29] audit: type=1400 audit(1763988459.840:2934): avc:  denied  { append } for  pid=5250 comm="syz.5.575" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   81.478404][ T5251] loop5: detected capacity change from 0 to 512
[   81.542156][ T5251] EXT4-fs (loop5): failed to initialize system zone (-117)
[   81.556251][   T29] audit: type=1326 audit(1763988459.870:2935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.578506][ T5251] EXT4-fs (loop5): mount failed
[   81.579733][   T29] audit: type=1326 audit(1763988459.870:2936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.607804][   T29] audit: type=1326 audit(1763988459.870:2937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.631220][   T29] audit: type=1326 audit(1763988459.870:2938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.654629][   T29] audit: type=1326 audit(1763988459.870:2939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.678001][   T29] audit: type=1326 audit(1763988459.870:2940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.701383][   T29] audit: type=1326 audit(1763988459.870:2941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.724781][   T29] audit: type=1326 audit(1763988459.870:2942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.748711][   T29] audit: type=1326 audit(1763988459.870:2943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5250 comm="syz.5.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[   81.870745][ T5258] loop2: detected capacity change from 0 to 512
[   81.920092][ T5258] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2803: inode #11: comm syz.2.577: corrupted xattr block 95: invalid header
[   81.948984][ T5264] __nla_validate_parse: 1 callbacks suppressed
[   81.949004][ T5264] netlink: 32 bytes leftover after parsing attributes in process `syz.5.579'.
[   81.965446][ T5258] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.577: bg 0: block 7: invalid block bitmap
[   81.986219][ T5258] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   82.010864][ T5258] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2967: inode #11: comm syz.2.577: corrupted xattr block 95: invalid header
[   82.075099][ T5258] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   82.100699][ T5264] netlink: 32 bytes leftover after parsing attributes in process `syz.5.579'.
[   82.120196][ T5258] EXT4-fs (loop2): 1 orphan inode deleted
[   82.168987][ T5258] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.226243][ T5266] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.261784][ T5258] netlink: 4 bytes leftover after parsing attributes in process `syz.2.577'.
[   82.280153][ T5269] tmpfs: Bad value for 'mpol'
[   82.307112][ T5269] netlink: 16 bytes leftover after parsing attributes in process `syz.4.582'.
[   82.394602][ T5266] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.437588][ T5273] netlink: 'syz.4.584': attribute type 39 has an invalid length.
[   82.457967][ T5266] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.497510][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.557591][ T5266] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.570313][ T5281] netlink: 64 bytes leftover after parsing attributes in process `syz.3.588'.
[   82.625181][ T5284] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   82.648384][   T52] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.670011][ T5287] loop4: detected capacity change from 0 to 512
[   82.676527][   T31] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.684816][   T31] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.711861][   T31] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.726478][ T5287] EXT4-fs (loop4): failed to initialize system zone (-117)
[   82.748988][ T5290] loop3: detected capacity change from 0 to 1024
[   82.765868][ T5287] EXT4-fs (loop4): mount failed
[   82.771457][ T5290] EXT4-fs: Ignoring removed bh option
[   82.777031][ T5290] EXT4-fs: inline encryption not supported
[   82.788395][ T5290] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   82.816094][ T5290] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   82.827923][ T5290] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.591: lblock 2 mapped to illegal pblock 2 (length 1)
[   82.929725][ T5290] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.591: lblock 0 mapped to illegal pblock 48 (length 1)
[   82.944640][ T5290] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.591: Failed to acquire dquot type 0
[   82.957712][ T5290] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   82.967427][ T5290] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.591: mark_inode_dirty error
[   82.978887][ T5290] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   82.989488][ T5290] EXT4-fs (loop3): 1 orphan inode deleted
[   82.995722][ T5290] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.018154][ T5290] ip6t_rpfilter: unknown options
[   83.026262][ T2295] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   83.040992][ T2295] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 0
[   83.062294][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.072032][ T3312] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[   83.145548][ T5307] lo speed is unknown, defaulting to 1000
[   83.490222][ T3312] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   83.499967][ T3312] EXT4-fs error (device loop3): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[   83.533839][ T5309] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.568727][ T5309] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.628077][ T5309] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.669606][ T5312] netlink: 'syz.2.599': attribute type 39 has an invalid length.
[   83.678947][ T5312] veth1_macvtap: left promiscuous mode
[   83.690976][ T5309] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.784827][ T5318] netlink: 64 bytes leftover after parsing attributes in process `syz.4.601'.
[   83.892798][ T5327] loop2: detected capacity change from 0 to 512
[   83.900874][ T5327] EXT4-fs (loop2): failed to initialize system zone (-117)
[   83.908836][ T5327] EXT4-fs (loop2): mount failed
[   84.268537][ T2295] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.298878][ T2295] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.320236][ T2295] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.339811][ T2295] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.348125][ T5355] netlink: 64 bytes leftover after parsing attributes in process `syz.2.614'.
[   85.443622][ T5364] netlink: 'syz.3.617': attribute type 39 has an invalid length.
[   85.451970][ T5364] veth1_macvtap: left promiscuous mode
[   85.525874][ T5365] lo speed is unknown, defaulting to 1000
[   86.711148][ T5386] netlink: 20 bytes leftover after parsing attributes in process `syz.2.627'.
[   87.177609][ T5400] loop2: detected capacity change from 0 to 1024
[   87.184433][ T5400] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.208000][ T5400] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.222874][ T5400] netlink: 'syz.2.632': attribute type 30 has an invalid length.
[   87.299741][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.512645][ T5415] lo speed is unknown, defaulting to 1000
[   88.822045][ T5418] lo speed is unknown, defaulting to 1000
[   89.185790][ T5421] netlink: 92 bytes leftover after parsing attributes in process `syz.2.636'.
[   89.206909][ T5421] netlink: 24 bytes leftover after parsing attributes in process `syz.2.636'.
[   89.237616][   T29] kauditd_printk_skb: 83 callbacks suppressed
[   89.237655][   T29] audit: type=1326 audit(1763988467.650:3024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5424 comm="syz.3.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[   89.267228][   T29] audit: type=1326 audit(1763988467.650:3025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5424 comm="syz.3.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[   89.290877][   T29] audit: type=1326 audit(1763988467.650:3026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5424 comm="syz.3.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[   89.314364][   T29] audit: type=1326 audit(1763988467.650:3027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5424 comm="syz.3.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[   89.338137][   T29] audit: type=1326 audit(1763988467.650:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5424 comm="syz.3.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[   89.368070][   T29] audit: type=1326 audit(1763988467.770:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5424 comm="syz.3.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[   89.368157][ T5428] loop3: detected capacity change from 0 to 512
[   89.391415][   T29] audit: type=1326 audit(1763988467.770:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5424 comm="syz.3.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[   89.391456][   T29] audit: type=1326 audit(1763988467.770:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5424 comm="syz.3.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[   89.460941][ T5428] EXT4-fs (loop3): failed to initialize system zone (-117)
[   89.468631][ T5428] EXT4-fs (loop3): mount failed
[   89.502668][ T5433] tmpfs: Bad value for 'mpol'
[   89.509382][ T5433] netlink: 16 bytes leftover after parsing attributes in process `syz.3.637'.
[   89.518570][   T29] audit: type=1326 audit(1763988467.920:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5430 comm="syz.2.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   89.542009][   T29] audit: type=1326 audit(1763988467.920:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5430 comm="syz.2.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[   89.571833][ T5431] loop2: detected capacity change from 0 to 512
[   89.585852][ T5431] EXT4-fs (loop2): failed to initialize system zone (-117)
[   89.592106][ T5435] netlink: 'syz.0.650': attribute type 30 has an invalid length.
[   89.596098][ T5431] EXT4-fs (loop2): mount failed
[   89.723939][ T5442] netlink: 'syz.2.639': attribute type 13 has an invalid length.
[   90.021241][ T5442] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.028604][ T5442] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.141462][ T5452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.642'.
[   90.310328][ T5442] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   90.327740][ T5442] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   90.335744][ T5458] netlink: 4 bytes leftover after parsing attributes in process `syz.4.642'.
[   90.397722][   T52] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   90.408575][ T5449] lo speed is unknown, defaulting to 1000
[   90.418464][   T52] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   90.454808][ T5462] netlink: 'syz.5.645': attribute type 39 has an invalid length.
[   90.454897][ T5460] netlink: 64 bytes leftover after parsing attributes in process `syz.2.647'.
[   90.540359][   T52] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   90.569755][ T5462] veth1_macvtap: left promiscuous mode
[   90.616492][   T52] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   90.669234][ T5457] lo speed is unknown, defaulting to 1000
[   90.737777][ T5472] bridge0: entered allmulticast mode
[   90.756651][ T5472] netlink: 4 bytes leftover after parsing attributes in process `syz.3.653'.
[   90.766661][ T5476] tmpfs: Bad value for 'mpol'
[   90.772821][ T5476] netlink: 16 bytes leftover after parsing attributes in process `syz.5.654'.
[   90.774921][ T5478] loop4: detected capacity change from 0 to 512
[   90.790055][ T5472] bridge_slave_1: left allmulticast mode
[   90.796040][ T5472] bridge_slave_1: left promiscuous mode
[   90.801820][ T5472] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.816695][ T5472] bridge_slave_0: left promiscuous mode
[   90.822383][ T5472] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.837755][ T5478] EXT4-fs (loop4): failed to initialize system zone (-117)
[   90.855454][ T5478] EXT4-fs (loop4): mount failed
[   90.869653][ T5472] bridge0 (unregistering): left allmulticast mode
[   90.881377][ T5482] loop5: detected capacity change from 0 to 1024
[   90.896378][ T5482] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.044156][ T5482] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.070872][ T5474] lo speed is unknown, defaulting to 1000
[   91.099790][ T5482] netlink: 'syz.5.657': attribute type 30 has an invalid length.
[   91.434369][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.074173][ T5499] netlink: 4 bytes leftover after parsing attributes in process `syz.3.674'.
[   92.116583][ T5506] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.202259][ T5507] lo speed is unknown, defaulting to 1000
[   92.876978][ T5512] loop4: detected capacity change from 0 to 2048
[   92.947989][ T5512] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.849512][ T5516] lo speed is unknown, defaulting to 1000
[   93.995620][ T5506] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.996439][ T5512] IPv6: NLM_F_CREATE should be specified when creating new route
[   94.014834][ T5511] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   94.046054][ T5511] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 128 with max blocks 2 with error 28
[   94.058461][ T5511] EXT4-fs (loop4): This should not happen!! Data will be lost
[   94.058461][ T5511] 
[   94.068238][ T5511] EXT4-fs (loop4): Total free blocks count 0
[   94.074319][ T5511] EXT4-fs (loop4): Free/Dirty block details
[   94.080267][ T5511] EXT4-fs (loop4): free_blocks=2415919504
[   94.086062][ T5511] EXT4-fs (loop4): dirty_blocks=16
[   94.091183][ T5511] EXT4-fs (loop4): Block reservation details
[   94.097319][ T5511] EXT4-fs (loop4): i_reserved_data_blocks=1
[   94.108882][ T5506] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.133445][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.153802][ T5522] netlink: 'syz.0.667': attribute type 39 has an invalid length.
[   94.203098][ T5527] loop2: detected capacity change from 0 to 128
[   94.218760][ T5506] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.342277][   T52] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.355237][   T52] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.379381][ T2295] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.403028][ T2295] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.430798][ T5536] netlink: 'syz.0.675': attribute type 12 has an invalid length.
[   94.482746][ T5538] lo speed is unknown, defaulting to 1000
[   94.737515][   T29] kauditd_printk_skb: 68 callbacks suppressed
[   94.737531][   T29] audit: type=1400 audit(1763988473.150:3102): avc:  denied  { create } for  pid=5551 comm="syz.0.681" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[   94.777660][   T29] audit: type=1400 audit(1763988473.190:3103): avc:  denied  { bind } for  pid=5551 comm="syz.0.681" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[   94.916022][ T5556] netlink: 24 bytes leftover after parsing attributes in process `syz.0.682'.
[   95.074347][   T29] audit: type=1400 audit(1763988473.470:3104): avc:  denied  { connect } for  pid=5565 comm="syz.0.685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   95.103523][ T5568] netlink: 4 bytes leftover after parsing attributes in process `syz.0.687'.
[   95.190411][   T29] audit: type=1326 audit(1763988473.600:3105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5573 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   95.213809][   T29] audit: type=1326 audit(1763988473.600:3106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5573 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   95.237171][   T29] audit: type=1326 audit(1763988473.600:3107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5573 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9ebd66f783 code=0x7ffc0000
[   95.260496][   T29] audit: type=1326 audit(1763988473.600:3108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5573 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9ebd66f783 code=0x7ffc0000
[   95.283736][   T29] audit: type=1326 audit(1763988473.600:3109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5573 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   95.355258][   T29] audit: type=1326 audit(1763988473.700:3110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5573 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   95.378643][   T29] audit: type=1326 audit(1763988473.700:3111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5573 comm="syz.0.689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd66f749 code=0x7ffc0000
[   95.665873][ T5588] netlink: 12 bytes leftover after parsing attributes in process `syz.4.694'.
[   95.813909][ T5603] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[   95.851155][ T5602] syzkaller0: entered promiscuous mode
[   95.856811][ T5602] syzkaller0: entered allmulticast mode
[   95.910877][ T5607] lo speed is unknown, defaulting to 1000
[   96.261700][ T5606] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[   96.327626][ T5606] 8021q: adding VLAN 0 to HW filter on device bond1
[   96.381026][ T5619] lo speed is unknown, defaulting to 1000
[   96.597840][ T5629] netlink: 92 bytes leftover after parsing attributes in process `syz.3.706'.
[   96.607037][ T5629] netlink: 24 bytes leftover after parsing attributes in process `syz.3.706'.
[   96.727526][ T5635] netlink: 'syz.3.707': attribute type 13 has an invalid length.
[   96.928708][   T52] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   96.937337][   T52] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   96.947973][   T52] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   96.960974][   T52] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   97.027580][ T5646] loop5: detected capacity change from 0 to 164
[   97.052475][ T5646] syz.5.711: attempt to access beyond end of device
[   97.052475][ T5646] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   97.085025][ T5648] loop3: detected capacity change from 0 to 1024
[   97.122302][ T5646] syz.5.711: attempt to access beyond end of device
[   97.122302][ T5646] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   97.146582][ T5648] EXT4-fs: Ignoring removed orlov option
[   97.173548][ T5648] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.396852][ T5658] lo speed is unknown, defaulting to 1000
[   97.516071][ T5668] netlink: 64 bytes leftover after parsing attributes in process `syz.5.718'.
[   97.841741][ T5677] netlink: 92 bytes leftover after parsing attributes in process `syz.5.719'.
[   97.940515][ T5677] netlink: 24 bytes leftover after parsing attributes in process `syz.5.719'.
[   98.682747][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.702808][ T5688] netlink: 'syz.0.724': attribute type 13 has an invalid length.
[   98.833397][ T5692] loop3: detected capacity change from 0 to 512
[   98.861025][ T5692] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.895198][ T5692] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   99.011597][ T5692] EXT4-fs (loop3): 1 truncate cleaned up
[   99.021717][ T5692] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.094581][ T5691] netlink: 4 bytes leftover after parsing attributes in process `syz.3.725'.
[   99.127532][ T5691] hsr_slave_1 (unregistering): left promiscuous mode
[   99.829979][ T5711] lo speed is unknown, defaulting to 1000
[   99.874324][ T5714] syzkaller0: entered promiscuous mode
[   99.880118][ T5714] syzkaller0: entered allmulticast mode
[   99.932463][ T5716] lo speed is unknown, defaulting to 1000
[  100.002709][ T5720] netlink: 92 bytes leftover after parsing attributes in process `syz.4.734'.
[  100.032644][ T5720] netlink: 24 bytes leftover after parsing attributes in process `syz.4.734'.
[  100.147918][ T5727] netlink: 4 bytes leftover after parsing attributes in process `syz.5.738'.
[  100.162390][ T5727] netlink: 12 bytes leftover after parsing attributes in process `syz.5.738'.
[  100.224187][ T5729] vlan0: entered promiscuous mode
[  100.229380][ T5729] bridge2: entered promiscuous mode
[  100.234865][ T5729] vlan0: entered allmulticast mode
[  100.240150][ T5729] bridge2: entered allmulticast mode
[  100.404055][ T5739] netlink: 'syz.0.742': attribute type 83 has an invalid length.
[  100.597426][ T5744] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  100.610817][ T5744] 8021q: adding VLAN 0 to HW filter on device bond1
[  100.996700][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.048278][   T29] kauditd_printk_skb: 75 callbacks suppressed
[  101.048296][   T29] audit: type=1326 audit(1763988479.460:3187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5749 comm="syz.2.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[  101.089818][   T29] audit: type=1326 audit(1763988479.460:3188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5749 comm="syz.2.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[  101.113290][   T29] audit: type=1326 audit(1763988479.460:3189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5749 comm="syz.2.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[  101.136574][   T29] audit: type=1326 audit(1763988479.460:3190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5749 comm="syz.2.755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[  101.169604][ T5753] lo speed is unknown, defaulting to 1000
[  101.203089][   T29] audit: type=1400 audit(1763988479.610:3191): avc:  denied  { ioctl } for  pid=5755 comm="syz.5.748" path="/dev/usbmon7" dev="devtmpfs" ino=163 ioctlcmd=0x920a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  101.307918][   T29] audit: type=1400 audit(1763988479.720:3192): avc:  denied  { create } for  pid=5755 comm="syz.5.748" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  101.339546][ T5765] netlink: 4 bytes leftover after parsing attributes in process `syz.0.750'.
[  101.349115][ T5765] netlink: 12 bytes leftover after parsing attributes in process `syz.0.750'.
[  101.374261][ T5765] vlan0: entered promiscuous mode
[  101.379384][ T5765] bridge5: entered promiscuous mode
[  101.384663][ T5765] vlan0: entered allmulticast mode
[  101.389805][ T5765] bridge5: entered allmulticast mode
[  101.468788][   T29] audit: type=1326 audit(1763988479.880:3193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5776 comm="syz.2.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[  101.492286][   T29] audit: type=1326 audit(1763988479.880:3194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5776 comm="syz.2.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[  101.518439][   T29] audit: type=1326 audit(1763988479.930:3195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5776 comm="syz.2.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f34d079f749 code=0x7ffc0000
[  101.541968][   T29] audit: type=1326 audit(1763988479.930:3196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5776 comm="syz.2.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f34d079f783 code=0x7ffc0000
[  102.091386][ T5783] netlink: 'syz.5.756': attribute type 83 has an invalid length.
[  102.150200][ T5790] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.208289][ T5790] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.270637][ T5790] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.349844][ T5790] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.410401][   T52] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.423031][   T52] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.462033][   T52] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.482903][   T52] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.722274][ T5811] netlink: 8 bytes leftover after parsing attributes in process `syz.3.765'.
[  102.731126][ T5811] netlink: 8 bytes leftover after parsing attributes in process `syz.3.765'.
[  102.737418][ T5813] lo speed is unknown, defaulting to 1000
[  102.829694][ T5821] bond5: (slave ip6gretap1): Enslaving as an active interface with an up link
[  102.851789][ T5821] 8021q: adding VLAN 0 to HW filter on device bond5
[  102.865688][ T5824] veth0_to_team: entered promiscuous mode
[  102.902076][ T5826] netlink: 'syz.3.772': attribute type 10 has an invalid length.
[  102.911434][ T5826] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  102.968515][ T5832] loop5: detected capacity change from 0 to 512
[  103.010819][ T5836] xt_hashlimit: max too large, truncated to 1048576
[  103.011193][ T5832] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.027119][ T5836] xt_CT: You must specify a L4 protocol and not use inversions on it
[  103.038567][ T5832] ext4 filesystem being mounted at /96/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.122313][ T5832] 9pnet_fd: Insufficient options for proto=fd
[  103.155325][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.232361][ T5846] loop5: detected capacity change from 0 to 1024
[  103.251774][ T5846] EXT4-fs: Ignoring removed orlov option
[  103.315476][ T5846] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.562654][ T5854] lo speed is unknown, defaulting to 1000
[  103.579934][ T5856] loop2: detected capacity change from 0 to 1024
[  103.613123][ T5860] syz_tun: left promiscuous mode
[  103.637226][   T12] bond0: (slave syz_tun): interface is now down
[  103.637658][ T5856] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.646233][ T5860] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.662369][   T12] bond0: (slave syz_tun): interface is now down
[  103.670666][ T5860] 8021q: adding VLAN 0 to HW filter on device team0
[  103.681007][ T5860] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  103.696544][ T3381] lo speed is unknown, defaulting to 1000
[  103.702324][ T3381] syz2: Port: 1 Link ACTIVE
[  103.706893][   T52] bond0: (slave syz_tun): interface is now down
[  103.715404][ T3381] lo speed is unknown, defaulting to 1000
[  103.752568][   T52] bond0: (slave syz_tun): interface is now down
[  103.766385][   T52] bond0: now running without any active interface!
[  103.778492][ T5856] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.792: Allocating blocks 449-513 which overlap fs metadata
[  103.844377][ T5855] EXT4-fs (loop2): pa ffff8881007a6700: logic 48, phys. 177, len 21
[  103.852515][ T5855] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  103.898358][ T5867] netlink: 96 bytes leftover after parsing attributes in process `syz.3.784'.
[  103.919812][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.937781][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.015576][ T5877] netlink: 20 bytes leftover after parsing attributes in process `syz.2.799'.
[  104.039558][ T5878] bond1: (slave ip6gretap0): Enslaving as an active interface with an up link
[  104.120862][ T5880] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.266214][ T5872] 8021q: adding VLAN 0 to HW filter on device bond1
[  104.309681][ T5880] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.491013][ T5880] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.698233][ T5880] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.299070][ T5931] tipc: New replicast peer: 255.255.255.83
[  105.305004][ T5931] tipc: Enabled bearer <udp:£ >, priority 10
[  105.311010][ T5929] loop4: detected capacity change from 0 to 512
[  105.338096][ T5929] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.350801][ T5929] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.350969][ T5935] loop3: detected capacity change from 0 to 1024
[  105.363224][ T5929] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  105.368795][ T5935] EXT4-fs: Ignoring removed nobh option
[  105.383069][ T5935] EXT4-fs: Ignoring removed bh option
[  105.405331][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.419294][ T5935] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.439303][ T5942] syz.4.812 uses obsolete (PF_INET,SOCK_PACKET)
[  105.473068][ T5946] loop4: detected capacity change from 0 to 512
[  105.498157][ T5946] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.510957][ T5946] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.536468][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.578956][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.853910][ T5974] netlink: 36 bytes leftover after parsing attributes in process `syz.0.820'.
[  105.862887][ T5974] netlink: 16 bytes leftover after parsing attributes in process `syz.0.820'.
[  105.871818][ T5974] netlink: 36 bytes leftover after parsing attributes in process `syz.0.820'.
[  105.880856][ T5974] netlink: 36 bytes leftover after parsing attributes in process `syz.0.820'.
[  105.890764][ T5969] netlink: 36 bytes leftover after parsing attributes in process `syz.3.819'.
[  105.986272][ T5980] netlink: '+}[@': attribute type 4 has an invalid length.
[  106.105125][ T3437] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.117699][   T12] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.129498][   T12] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.143425][   T12] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.169974][ T5987] loop5: detected capacity change from 0 to 512
[  106.176786][   T29] kauditd_printk_skb: 205 callbacks suppressed
[  106.176802][   T29] audit: type=1400 audit(1763988484.590:3402): avc:  denied  { remount } for  pid=5986 comm="syz.5.826" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  106.209647][   T29] audit: type=1326 audit(1763988484.620:3403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5986 comm="syz.5.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[  106.233465][   T29] audit: type=1326 audit(1763988484.620:3404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5986 comm="syz.5.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[  106.256875][   T29] audit: type=1326 audit(1763988484.620:3405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5986 comm="syz.5.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[  106.280156][   T29] audit: type=1326 audit(1763988484.620:3406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5986 comm="syz.5.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[  106.315524][   T29] audit: type=1400 audit(1763988484.720:3407): avc:  denied  { create } for  pid=5988 comm="syz.5.827" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  106.336893][   T29] audit: type=1400 audit(1763988484.720:3408): avc:  denied  { write } for  pid=5988 comm="syz.5.827" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  106.357830][   T29] audit: type=1400 audit(1763988484.720:3409): avc:  denied  { nlmsg_read } for  pid=5988 comm="syz.5.827" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  106.405595][   T29] audit: type=1400 audit(1763988484.810:3410): avc:  denied  { getopt } for  pid=5990 comm="syz.5.828" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  106.438641][ T5993] netlink: 64 bytes leftover after parsing attributes in process `syz.5.829'.
[  106.472020][ T5995] loop2: detected capacity change from 0 to 512
[  106.488740][ T5999] netlink: 24 bytes leftover after parsing attributes in process `syz.4.832'.
[  106.497837][ T5999] netlink: 24 bytes leftover after parsing attributes in process `syz.4.832'.
[  106.508768][ T5995] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.543450][   T29] audit: type=1326 audit(1763988484.940:3411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6002 comm="syz.5.833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6dedf749 code=0x7ffc0000
[  106.576134][ T5995] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.650170][ T6011] lo speed is unknown, defaulting to 1000
[  106.688516][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.784047][ T6021] netlink: 'syz.0.839': attribute type 39 has an invalid length.
[  106.913762][ T6025] pim6reg1: entered promiscuous mode
[  106.919244][ T6025] pim6reg1: entered allmulticast mode
[  107.033913][ T6011] netlink: 'syz.4.837': attribute type 2 has an invalid length.
[  107.079093][ T6011] loop4: detected capacity change from 0 to 8192
[  107.096803][ T6011] netlink: 44 bytes leftover after parsing attributes in process `syz.4.837'.
[  107.298032][ T6034] netlink: 'syz.4.844': attribute type 1 has an invalid length.
[  107.428927][ T6034] 8021q: adding VLAN 0 to HW filter on device bond2
[  107.458102][ T6036] bond2: entered allmulticast mode
[  107.581652][ T6045] syzkaller0: entered promiscuous mode
[  107.587332][ T6045] syzkaller0: entered allmulticast mode
[  107.677384][ T6050] SELinux:  policydb string SE Li does not match my string SE Linux
[  107.685790][ T6050] SELinux: failed to load policy
[  108.382171][ T6074] netlink: 4 bytes leftover after parsing attributes in process `syz.0.860'.
[  108.392599][ T6074] bond1: (slave ip6gretap0): Releasing backup interface
[  108.692985][ T6086] netlink: 'syz.0.874': attribute type 1 has an invalid length.
[  108.745489][ T6086] bond2: (slave ip6gretap0): Enslaving as a backup interface with an up link
[  108.791380][ T3437] bond2: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  108.791721][ T6086] 8021q: adding VLAN 0 to HW filter on device bond2
[  108.916025][ T2295] bond2: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  108.931315][ T6096] netlink: 'syz.0.869': attribute type 12 has an invalid length.
[  109.227643][ T6114] netlink: 'syz.4.876': attribute type 13 has an invalid length.
[  109.275581][ T6116] SELinux:  policydb string SE Li does not match my string SE Linux
[  109.284495][ T6116] SELinux: failed to load policy
[  109.428136][ T6132] loop4: detected capacity change from 0 to 764
[  109.472493][ T6132] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  109.529449][ T6143] loop5: detected capacity change from 0 to 512
[  109.544852][ T6145] SELinux:  policydb string SE Li does not match my string SE Linux
[  109.553599][ T6145] SELinux: failed to load policy
[  109.583291][ T6143] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.595963][ T6143] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.773612][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.829066][ T6178] loop2: detected capacity change from 0 to 1024
[  109.836529][ T6178] EXT4-fs: Ignoring removed nomblk_io_submit option
[  109.852172][ T6178] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.918622][ T6176] loop5: detected capacity change from 0 to 128
[  109.926821][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.939086][ T6176] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  109.962989][ T6176] ext4 filesystem being mounted at /109/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  110.030519][ T4220] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  110.880062][ T6209] loop4: detected capacity change from 0 to 512
[  110.898637][ T6209] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.916240][ T6209] ext4 filesystem being mounted at /184/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.070497][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.248765][ T6240] lo speed is unknown, defaulting to 1000
[  111.471863][ T6264] xt_hashlimit: max too large, truncated to 1048576
[  111.493328][ T6264] xt_CT: You must specify a L4 protocol and not use inversions on it
[  111.565372][   T29] kauditd_printk_skb: 440 callbacks suppressed
[  111.565390][   T29] audit: type=1326 audit(1763988489.970:3852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.620590][   T29] audit: type=1326 audit(1763988490.000:3853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.644049][   T29] audit: type=1326 audit(1763988490.000:3854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.667407][   T29] audit: type=1326 audit(1763988490.000:3855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.690783][   T29] audit: type=1326 audit(1763988490.010:3856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.714020][   T29] audit: type=1326 audit(1763988490.010:3857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.737519][   T29] audit: type=1326 audit(1763988490.010:3858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.760872][   T29] audit: type=1326 audit(1763988490.010:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.784207][   T29] audit: type=1326 audit(1763988490.010:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.807596][   T29] audit: type=1326 audit(1763988490.010:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6270 comm="syz.4.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31256af749 code=0x7ffc0000
[  111.924360][ T6282] loop4: detected capacity change from 0 to 1024
[  111.959824][ T6282] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.100423][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.668031][ T6371] syzkaller0: entered promiscuous mode
[  112.673538][ T6371] syzkaller0: entered allmulticast mode
[  112.781301][ T6387] netlink: 'syz.3.932': attribute type 39 has an invalid length.
[  112.886496][ T6403] lo speed is unknown, defaulting to 1000
[  113.234234][ T6403] netlink: 'syz.5.935': attribute type 2 has an invalid length.
[  113.277094][ T6403] loop5: detected capacity change from 0 to 8192
[  113.286470][ T6403] __nla_validate_parse: 3 callbacks suppressed
[  113.286548][ T6403] netlink: 44 bytes leftover after parsing attributes in process `syz.5.935'.
[  113.441198][ T6435] netlink: 57 bytes leftover after parsing attributes in process `syz.4.941'.
[  113.490401][ T6443] loop5: detected capacity change from 0 to 512
[  113.512435][ T6443] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.527673][ T6443] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  113.557992][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.760977][ T6461] sctp: [Deprecated]: syz.0.951 (pid 6461) Use of struct sctp_assoc_value in delayed_ack socket option.
[  113.760977][ T6461] Use struct sctp_sack_info instead
[  113.826069][ T6469] loop5: detected capacity change from 0 to 1024
[  113.867990][ T6469] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.933827][ T6464] xt_connbytes: Forcing CT accounting to be enabled
[  113.940712][ T6464] Cannot find set identified by id 0 to match
[  114.002198][ T6477] 9pnet_fd: Insufficient options for proto=fd
[  114.011780][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.014385][ T6477] loop2: detected capacity change from 0 to 1024
[  114.037622][ T6477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.051815][ T6477] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.372531][ T6497] tipc: Bearer <udp:syz2>: already 2 bearers with priority 10
[  114.380235][ T6497] tipc: Bearer <udp:syz2>: trying with adjusted priority
[  114.387521][ T6497] tipc: New replicast peer: 255.255.255.255
[  114.393911][ T6497] tipc: Enabled bearer <udp:syz2>, priority 9
[  114.991597][ T6504] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.146122][ T6504] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.245586][ T6511] lo speed is unknown, defaulting to 1000
[  115.490352][ T6504] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.577897][ T6504] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.656138][ T6520] tipc: Started in network mode
[  115.661131][ T6520] tipc: Node identity ac14140f, cluster identity 4711
[  115.668574][ T6520] tipc: New replicast peer: 255.255.255.83
[  115.674445][ T6520] tipc: Enabled bearer <udp:£>, priority 10
[  115.680866][ T3437] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.703919][ T3437] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.720652][ T3437] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.738701][ T3437] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.817238][ T6533] loop4: detected capacity change from 0 to 1024
[  115.892240][ T6533] EXT4-fs: Ignoring removed nobh option
[  115.897943][ T6533] EXT4-fs: Ignoring removed bh option
[  115.912375][ T6536] vlan0: entered allmulticast mode
[  115.917707][ T6536] hsr0: entered allmulticast mode
[  115.922807][ T6536] hsr_slave_0: entered allmulticast mode
[  115.982837][ T6533] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.039626][ T6544] lo speed is unknown, defaulting to 1000
[  116.127967][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.175989][ T6559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.984'.
[  116.422292][ T6568] lo speed is unknown, defaulting to 1000
[  116.643856][ T6577] loop3: detected capacity change from 0 to 764
[  116.679269][ T6577] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  116.826042][ T3393] tipc: Node number set to 2886997007
[  117.066859][ T6586] loop5: detected capacity change from 0 to 1024
[  117.109347][ T6586] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.383595][ T6586] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.992: Allocating blocks 449-513 which overlap fs metadata
[  117.607026][ T6584] EXT4-fs (loop5): pa ffff8881007a6770: logic 48, phys. 177, len 21
[  117.615076][ T6584] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4
[  117.677338][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.737044][ T6598] loop5: detected capacity change from 0 to 1024
[  117.743926][ T6598] EXT4-fs: Ignoring removed nobh option
[  117.749559][ T6598] EXT4-fs: Ignoring removed bh option
[  117.773773][ T6598] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.968269][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.971411][   T29] kauditd_printk_skb: 140 callbacks suppressed
[  118.971430][   T29] audit: type=1326 audit(1763988497.380:4002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.220740][   T29] audit: type=1326 audit(1763988497.390:4003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.244370][   T29] audit: type=1326 audit(1763988497.390:4004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.267824][   T29] audit: type=1326 audit(1763988497.390:4005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.291342][   T29] audit: type=1326 audit(1763988497.390:4006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.314801][   T29] audit: type=1326 audit(1763988497.390:4007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.338299][   T29] audit: type=1326 audit(1763988497.390:4008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.361759][   T29] audit: type=1326 audit(1763988497.390:4009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.385367][   T29] audit: type=1326 audit(1763988497.390:4010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.409395][   T29] audit: type=1326 audit(1763988497.390:4011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6637 comm="syz.3.1006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  119.621538][ T6645] lo speed is unknown, defaulting to 1000
[  119.829989][ T6652] tipc: Started in network mode
[  119.835003][ T6652] tipc: Node identity ac14140f, cluster identity 4711
[  119.842550][ T6652] tipc: New replicast peer: 255.255.255.83
[  119.848687][ T6652] tipc: Enabled bearer <udp:£>, priority 10
[  120.752933][ T6687] tipc: Started in network mode
[  120.757926][ T6687] tipc: Node identity ac14140f, cluster identity 4711
[  120.766679][ T6687] tipc: New replicast peer: 255.255.255.83
[  120.772603][ T6687] tipc: Enabled bearer <udp:£>, priority 10
[  120.836273][ T6691] vlan0: entered allmulticast mode
[  120.841467][ T6691] hsr0: entered allmulticast mode
[  120.846863][ T6691] hsr_slave_0: entered allmulticast mode
[  120.852529][ T6691] hsr_slave_1: entered allmulticast mode
[  120.864709][   T23] tipc: Node number set to 2886997007
[  121.478797][ T6712] loop2: detected capacity change from 0 to 512
[  121.518302][ T6714] lo speed is unknown, defaulting to 1000
[  121.568961][ T6712] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.608720][ T6712] ext4 filesystem being mounted at /133/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.624345][ T6712] 9pnet_fd: Insufficient options for proto=fd
[  121.643375][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.669242][ T6719] xt_CT: You must specify a L4 protocol and not use inversions on it
[  122.030637][ T3400] tipc: Node number set to 2886997007
[  122.099877][ T6725] vlan2: entered allmulticast mode
[  122.105096][ T6725] hsr0: entered allmulticast mode
[  122.110205][ T6725] hsr_slave_0: entered allmulticast mode
[  122.115860][ T6725] hsr_slave_1: entered allmulticast mode
[  122.268084][ T6734] lo speed is unknown, defaulting to 1000
[  123.151239][ T6758] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  123.211472][ T6758] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  123.244060][ T6761] netlink: 131740 bytes leftover after parsing attributes in process `syz.4.1047'.
[  123.384225][ T6761] netlink: zone id is out of range
[  123.389444][ T6761] netlink: zone id is out of range
[  123.407213][ T6761] netlink: zone id is out of range
[  123.412442][ T6761] netlink: zone id is out of range
[  123.436130][ T6761] netlink: del zone limit has 8 unknown bytes
[  123.857662][ T6772] lo speed is unknown, defaulting to 1000
[  124.364024][ T6782] loop2: detected capacity change from 0 to 256
[  124.405004][ T6782] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001)
[  124.413112][ T6782] FAT-fs (loop2): Filesystem has been set read-only
[  124.634930][ T6817] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  124.683302][ T6817] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  125.161015][   T29] kauditd_printk_skb: 289 callbacks suppressed
[  125.161029][   T29] audit: type=1326 audit(1763988503.570:4301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.203740][   T29] audit: type=1326 audit(1763988503.570:4302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.227419][   T29] audit: type=1326 audit(1763988503.570:4303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.251046][   T29] audit: type=1326 audit(1763988503.570:4304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.274586][   T29] audit: type=1326 audit(1763988503.570:4305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.297945][   T29] audit: type=1326 audit(1763988503.570:4306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.321495][   T29] audit: type=1326 audit(1763988503.570:4307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.345045][   T29] audit: type=1326 audit(1763988503.570:4308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.368599][   T29] audit: type=1326 audit(1763988503.570:4309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.392101][   T29] audit: type=1326 audit(1763988503.570:4310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6884 comm="syz.3.1060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8665c4f749 code=0x7ffc0000
[  125.766157][ T6915] lo speed is unknown, defaulting to 1000
[  126.500527][ T6987] loop4: detected capacity change from 0 to 1024
[  126.509079][ T6987] EXT4-fs: Ignoring removed orlov option
[  126.527682][ T6987] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.707604][ T7016] loop5: detected capacity change from 0 to 164
[  126.746443][ T7016] syz.5.1076: attempt to access beyond end of device
[  126.746443][ T7016] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  126.789737][ T7016] syz.5.1076: attempt to access beyond end of device
[  126.789737][ T7016] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  126.921933][ T7021] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1077'.
[  126.968788][ T7021] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1077'.
[  127.187788][ T7032] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.237882][ T7032] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.317851][ T7032] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.344219][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.376362][ T7038] loop2: detected capacity change from 0 to 128
[  127.389086][ T7032] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.416966][ T7038] netlink: 83992 bytes leftover after parsing attributes in process `syz.2.1094'.
[  127.434370][ T7038] netlink: zone id is out of range
[  127.439593][ T7038] netlink: zone id is out of range
[  127.455591][   T12] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.460042][ T7038] netlink: zone id is out of range
[  127.469135][ T7038] netlink: zone id is out of range
[  127.469594][   T12] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.474247][ T7038] netlink: zone id is out of range
[  127.521297][   T12] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.539769][   T12] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.636792][ T7054] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1090'.
[  127.657885][ T7054] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1090'.
[  127.674874][ T7059] loop5: detected capacity change from 0 to 512
[  127.687690][ T7064] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1090'.
[  127.699754][ T7059] EXT4-fs (loop5): 1 orphan inode deleted
[  127.706564][ T7059] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.721222][ T6871] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:10: Failed to release dquot type 1
[  127.733857][ T7054] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1090'.
[  127.757278][ T7066] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1092'.
[  127.767338][ T7059] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.778251][ T7064] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1090'.
[  127.809304][ T7066] netlink: 'syz.2.1092': attribute type 4 has an invalid length.
[  127.818537][ T7066] .`: renamed from bond0
[  127.896690][ T4220] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.100013][ T7086] loop2: detected capacity change from 0 to 1024
[  128.106846][ T7086] EXT4-fs: Ignoring removed orlov option
[  128.114460][ T7086] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.189535][ T7086] ==================================================================
[  128.197676][ T7086] BUG: KCSAN: data-race in filemap_read / filemap_read
[  128.204574][ T7086] 
[  128.206931][ T7086] read to 0xffff888118a75be8 of 8 bytes by task 7092 on cpu 1:
[  128.214485][ T7086]  filemap_read+0x6f/0xa00
[  128.218934][ T7086]  generic_file_read_iter+0x79/0x330
[  128.224250][ T7086]  ext4_file_read_iter+0x1cc/0x290
[  128.229388][ T7086]  copy_splice_read+0x442/0x660
[  128.234255][ T7086]  splice_direct_to_actor+0x290/0x680
[  128.239654][ T7086]  do_splice_direct+0xda/0x150
[  128.244441][ T7086]  do_sendfile+0x380/0x650
[  128.248924][ T7086]  __x64_sys_sendfile64+0x105/0x150
[  128.254239][ T7086]  x64_sys_call+0x2bb4/0x3000
[  128.258932][ T7086]  do_syscall_64+0xd2/0x200
[  128.263462][ T7086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.269372][ T7086] 
[  128.271704][ T7086] write to 0xffff888118a75be8 of 8 bytes by task 7086 on cpu 0:
[  128.279348][ T7086]  filemap_read+0x974/0xa00
[  128.283892][ T7086]  generic_file_read_iter+0x79/0x330
[  128.289229][ T7086]  ext4_file_read_iter+0x1cc/0x290
[  128.294355][ T7086]  copy_splice_read+0x442/0x660
[  128.299218][ T7086]  splice_direct_to_actor+0x290/0x680
[  128.304614][ T7086]  do_splice_direct+0xda/0x150
[  128.309386][ T7086]  do_sendfile+0x380/0x650
[  128.313818][ T7086]  __x64_sys_sendfile64+0x105/0x150
[  128.319030][ T7086]  x64_sys_call+0x2bb4/0x3000
[  128.323723][ T7086]  do_syscall_64+0xd2/0x200
[  128.328226][ T7086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.334123][ T7086] 
[  128.336444][ T7086] value changed: 0x0000000000000105 -> 0x0000000000000106
[  128.343550][ T7086] 
[  128.345868][ T7086] Reported by Kernel Concurrency Sanitizer on:
[  128.352036][ T7086] CPU: 0 UID: 0 PID: 7086 Comm: syz.2.1098 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  128.361769][ T7086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  128.371823][ T7086] ==================================================================
[  128.497451][ T4474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.