last executing test programs:

5m57.782055541s ago: executing program 32 (id=3789):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f00000000c0)={0x1d, r2}, 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r0, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$can_bcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2}, 0x0)

5m44.978003592s ago: executing program 33 (id=4364):
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r1}, 0x18)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)

5m44.673163678s ago: executing program 34 (id=4366):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={<r3=>r2, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000000)={r3}, 0x8)

5m31.26229347s ago: executing program 35 (id=4915):
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x7})
r0 = syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/pid\x00')

5m31.064265643s ago: executing program 36 (id=4926):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000000c0)='kfree\x00', r2}, 0x18)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x12d, r0)

5m30.71987373s ago: executing program 37 (id=4937):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0, 0x0, 0x3904}, 0x18)
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0x2, 0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xa], 0x0, [0x8, 0x4, 0x0, 0x0, 0x8, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}}]}}]}, 0x8c}}, 0x0)

3m33.101659008s ago: executing program 38 (id=9839):
syz_usb_connect(0x6, 0x1fc, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003600)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a800800028008000200080000003e127a5108000200"], 0x44}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[], 0xa0}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0xfff0)

2m1.424118358s ago: executing program 5 (id=13209):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)

2m1.293032611s ago: executing program 5 (id=13213):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
listen(0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000001007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
socket$inet_smc(0x2b, 0x1, 0x0)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000140)=""/59)

2m1.060538856s ago: executing program 5 (id=13223):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x52, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x1, 0x0)
listen(r2, 0x0)

2m0.80159355s ago: executing program 5 (id=13230):
socket$igmp6(0xa, 0x3, 0x2)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000080), 0x4)
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r1)

1m59.369371348s ago: executing program 5 (id=13250):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000640), &(0x7f00000003c0), 0x20075, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5e, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x10)
setitimer(0x1, 0x0, 0x0)

1m57.996243535s ago: executing program 8 (id=13268):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1m57.957253976s ago: executing program 8 (id=13269):
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x4}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {0x35, 0x0, 0x5}, {}, {0x0, 0x0, 0x2}, {0x0, 0x8}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x2}]}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x3}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa0}}, 0x0)

1m57.809294719s ago: executing program 8 (id=13270):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$sndseq(r3, &(0x7f0000000040)=[{0x4, 0xf6, 0x0, 0x0, @tick=0xf64b, {0x0, 0xb8}, {0x4, 0x6}, @control={0x2, 0x7f, 0x2}}, {0x0, 0x3, 0x0, 0x4, @time={0x85, 0xa77f}, {0x2, 0x4}, {0x1, 0x2}, @ext={0x0, 0x0}}], 0x38)

1m57.75469808s ago: executing program 8 (id=13271):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000000040), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000900000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000400)='signal_generate\x00', r1}, 0x18)
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000002d00)={0x0, 0x0, 0xffffffff})

1m57.710215671s ago: executing program 8 (id=13272):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
r2 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
dup3(r2, r3, 0x0)

1m57.567522714s ago: executing program 8 (id=13273):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r2, 0x0, 0x100000000}, 0x18)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

1m57.095876253s ago: executing program 5 (id=13274):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="020a000207000000000000000000000005001a"], 0x38}}, 0x40000)

1m44.43955396s ago: executing program 39 (id=13254):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='rxrpc_recvmsg\x00', r0}, 0x10)
r1 = socket(0x21, 0x2, 0x10000000000002)
connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x100, 0x2, 0x10, {0x2, 0x4000, @empty}}, 0x24)
sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000002d40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)

1m43.43937962s ago: executing program 40 (id=13266):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xffff7ffffffffffd}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

1m43.345993871s ago: executing program 41 (id=13267):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
sigaltstack(0x0, 0x0)

1m42.944041199s ago: executing program 42 (id=13273):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r2, 0x0, 0x100000000}, 0x18)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

1m42.43794667s ago: executing program 43 (id=13274):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="020a000207000000000000000000000005001a"], 0x38}}, 0x40000)

43.065813239s ago: executing program 7 (id=13815):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xfc, "2af01c3d0040fbffffffffffffff00"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0))
ioctl$TCSETS(r1, 0x5402, &(0x7f00000002c0)={0xd02, 0x0, 0xfffffffd, 0x3, 0xff, "db2d416fbecfb84b5452b768e08ee2df361089"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0xd)

43.00714576s ago: executing program 7 (id=13820):
r0 = syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0x3}, 0x18)
fsetxattr$trusted_overlay_upper(r2, &(0x7f0000000000), 0x0, 0x0, 0x2)

43.00682157s ago: executing program 7 (id=13822):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000040)=0xfffffffc, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

42.810857524s ago: executing program 7 (id=13826):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file7\x00', 0x200000, &(0x7f0000000b40)=ANY=[@ANYBLOB="64656275672c757466383d312c757466383d302c757466383d312c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c002bc08d8cca74e8ecafb48437094fe1a4a2383bd9d85bff651d1101fd722e01b9b5d22f08b5fc0ac7cbf33fb553a90ae4d01d71ddeeb089f517aeaaa271899287d5b8949b22b23c2807b7d81714b89e9682f6c3faa6107733a77a4cf985560ed64ec24e255dee3654aa2ba55be4bf3ae257adba34bb46aa57a75dab0288098e42f886f09bdf63537db28a454b02a4204a7e7dac3c30a6d4b5c814916b0284a6fbf80000a0ac567a0ebfa782c6c3729a2afa6f0e6a852e9b202dc9dcb97d35c8", @ANYRESDEC, @ANYRES32, @ANYRESOCT], 0x3, 0x250, &(0x7f0000001cc0)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f00000000c0)='./file0/../file0/../file0/../file0\x00', &(0x7f0000000080)='./file0/../file0/../file0/../file0/file0\x00')

42.731907085s ago: executing program 7 (id=13828):
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000001980)=""/195}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xca)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r1}, 0x10)
chmod(&(0x7f0000000340)='./file1\x00', 0x0)

42.567732099s ago: executing program 7 (id=13833):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = syz_io_uring_setup(0x10e, &(0x7f0000000600)={0x0, 0xf07d, 0x800, 0x3ffff, 0x307}, &(0x7f0000000400)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x4004, @fd_index=0x1, 0x8, &(0x7f0000002a40)=[{&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000002b00)=""/4099, 0x1000}, {&(0x7f0000000440)=""/107}, {&(0x7f0000000500)=""/193}, {&(0x7f00000003c0)=""/18}, {&(0x7f0000000700)=""/148}, {&(0x7f0000002840)=""/245}, {&(0x7f0000002940)=""/226}], 0x11b, 0x1d})
io_uring_enter(r2, 0x8aa, 0xeffd, 0x0, 0x0, 0x0)

42.567620529s ago: executing program 44 (id=13833):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = syz_io_uring_setup(0x10e, &(0x7f0000000600)={0x0, 0xf07d, 0x800, 0x3ffff, 0x307}, &(0x7f0000000400)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x4004, @fd_index=0x1, 0x8, &(0x7f0000002a40)=[{&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000002b00)=""/4099, 0x1000}, {&(0x7f0000000440)=""/107}, {&(0x7f0000000500)=""/193}, {&(0x7f00000003c0)=""/18}, {&(0x7f0000000700)=""/148}, {&(0x7f0000002840)=""/245}, {&(0x7f0000002940)=""/226}], 0x11b, 0x1d})
io_uring_enter(r2, 0x8aa, 0xeffd, 0x0, 0x0, 0x0)

39.591752877s ago: executing program 6 (id=13934):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f0000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_io_uring_submit(0x0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000003580)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)="a1", 0x1}], 0x1, &(0x7f0000000800)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000014"], 0x30, 0x40400d1}}], 0x1, 0x10)
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r0, 0x0, r3, 0x0, 0xa86, 0x0)

39.539898538s ago: executing program 6 (id=13938):
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xeb9aaf92d0d9f6e2, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0xa4d, &(0x7f0000000480)={0x0, 0x0, 0x80, 0x1, 0x24f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x42, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, {0x2}})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

39.369888501s ago: executing program 6 (id=13944):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x5)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000140), &(0x7f0000000040)='%pI4   \x00'}, 0x2a)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
setrlimit(0x9, &(0x7f0000000400)={0x0, 0x7})
io_setup(0x2004, &(0x7f0000000680))

39.326493542s ago: executing program 6 (id=13946):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x800)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x20000, 0x0)
open_tree(r0, &(0x7f0000000640)='\x00', 0x89901)

39.286139023s ago: executing program 6 (id=13948):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x22}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x7}, 0x18)
r2 = memfd_secret(0x80000)
fcntl$setlease(r2, 0x400, 0x0)
close(r2)

39.104257197s ago: executing program 6 (id=13953):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2, 0x0, 0x7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ustat(0x3, &(0x7f0000000000))

39.069412697s ago: executing program 45 (id=13953):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2, 0x0, 0x7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ustat(0x3, &(0x7f0000000000))

24.894818204s ago: executing program 1 (id=14404):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xa6}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffe3e)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
memfd_secret(0x80000)

24.894607174s ago: executing program 1 (id=14405):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
ioctl$SG_SET_COMMAND_Q(r1, 0x2271, &(0x7f0000000040)=0x1)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b81000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_emit_ethernet(0x102b, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x0)

24.871266334s ago: executing program 1 (id=14408):
r0 = io_uring_setup(0x77da, &(0x7f0000000240)={0x0, 0xdb5e, 0x40, 0x0, 0x12f})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xe, 0x0, 0x0, 0x40f00}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000480), 0x0)

24.822951105s ago: executing program 1 (id=14411):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0xf4)
r2 = dup2(r1, r1)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x200000a, 0x1, 0x8})
ioctl$BLKTRACESETUP(r2, 0x1276, 0x0)

24.515730331s ago: executing program 1 (id=14426):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x73, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

24.466053102s ago: executing program 1 (id=14429):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000140), 0x12)

9.770262169s ago: executing program 46 (id=14429):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000140), 0x12)

1.321381224s ago: executing program 4 (id=15112):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=@newtfilter={0x44, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0xfff3, 0x9}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_IPV4_SRC={0x8, 0xa, @rand_addr=0x64010101}, @TCA_FLOWER_KEY_IPV4_SRC_MASK={0x8}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)

1.193844857s ago: executing program 4 (id=15119):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

1.155686598s ago: executing program 4 (id=15121):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
tkill(r0, 0x37)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
ptrace(0x10, r0)
tkill(r0, 0xa)
ptrace$peeksig(0x4209, r0, &(0x7f0000000140)={0x2000000, 0x0, 0x4e}, &(0x7f0000000fc0))

1.141880398s ago: executing program 3 (id=15123):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000300000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000080)={0x2, 0x1, 0x4004, 0xffffffffffffffff})

1.116915348s ago: executing program 3 (id=15125):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='page_pool_state_release\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x11, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

974.937541ms ago: executing program 3 (id=15131):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000003000), r2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000003040)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_TP_METER(r2, &(0x7f0000003140)={0x0, 0x60, &(0x7f0000003100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002bbd7000fbdbdf25020000000a000900aaaaaaaaaa44000008000300", @ANYRES32=r4, @ANYBLOB='\b\x00\v'], 0x30}, 0x1, 0x0, 0x0, 0x20000050}, 0x20040084)

930.818912ms ago: executing program 3 (id=15132):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

900.480923ms ago: executing program 3 (id=15133):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
open$dir(&(0x7f0000000200)='./file1\x00', 0x1, 0x58)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x103000, 0x8d)
openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x20401, 0xc0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000001440)=""/126, 0x7e, 0x41)

801.664085ms ago: executing program 9 (id=15135):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000180)=ANY=[], 0x38)
sendto$inet6(r2, 0x0, 0x0, 0x20044080, &(0x7f00000006c0)={0xa, 0x4e23, 0xffffff7c, @empty, 0xa21}, 0x1c)

801.428254ms ago: executing program 9 (id=15136):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x3000)
mlock(&(0x7f0000656000/0x3000)=nil, 0x3000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

688.594237ms ago: executing program 2 (id=15138):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a0011"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000010)

643.315507ms ago: executing program 2 (id=15139):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="11000000040000000400000022"], 0x48)
r2 = socket(0x2c, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r3, &(0x7f0000000140), &(0x7f0000000080)=@udp6=r2}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r1, &(0x7f0000000140), &(0x7f0000000080)=@udp=r2}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)

621.922008ms ago: executing program 2 (id=15140):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r0}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x41000004, 0x0)

477.562731ms ago: executing program 9 (id=15145):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0e000000040000000400000009"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)

451.588731ms ago: executing program 0 (id=15146):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r0, 0x18000000000002a0, 0xe40, 0x0, &(0x7f00000002c0)="f6eb094549002060009b8538a4ba", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

433.996772ms ago: executing program 0 (id=15147):
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xd, 0x0, &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
vmsplice(r0, &(0x7f00000013c0)=[{&(0x7f0000000080)='4', 0xfee1}, {&(0x7f0000000100)="a7", 0x1}, {&(0x7f0000000240)="9f", 0x1}, {&(0x7f0000000300)='b', 0x1}], 0x10000000000000e0, 0x1)

433.201382ms ago: executing program 9 (id=15148):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000440)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}], [{@uid_lt}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@measure}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
r0 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000300)={<r1=>r0})
syz_genetlink_get_family_id$nl80211(&(0x7f0000001600), r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

419.777022ms ago: executing program 2 (id=15149):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)

382.460203ms ago: executing program 0 (id=15150):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x35}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r2, 0xc0f85403, 0x0)

382.056153ms ago: executing program 2 (id=15151):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r2}, &(0x7f0000000200), &(0x7f00000002c0)}, 0x20)

369.744473ms ago: executing program 0 (id=15152):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x18d6, &(0x7f0000000040)={0x0, 0x3, 0x0, 0x0, 0xad}, &(0x7f0000000440), &(0x7f0000ffe000))
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r2, 0x2, &(0x7f0000000180), 0xfe)

354.359233ms ago: executing program 2 (id=15153):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x4004880}, 0x884)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)

341.926563ms ago: executing program 4 (id=15154):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2002000000, 0x4, 0x0, 0x1, 0x0, r2, &(0x7f0000000440)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])

255.288985ms ago: executing program 9 (id=15155):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@minixdf}, {}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@commit={'commit', 0x3d, 0x5}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@noblock_validity}, {@nomblk_io_submit}]}, 0x1, 0x566, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000000240)=ANY=[], 0x835, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000080), &(0x7f0000001400)=ANY=[], 0x835, 0x2)

221.573346ms ago: executing program 4 (id=15156):
r0 = epoll_create1(0x80000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x20000014})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000480), 0x84, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}})
close_range(r0, r1, 0x0)

203.052536ms ago: executing program 0 (id=15157):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r0, 0x0, 0x8ce}, 0x18)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0)
write$selinux_load(r1, &(0x7f0000000000)=ANY=[], 0x603f)

155.826907ms ago: executing program 0 (id=15158):
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffff9}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x4, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x11}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
close(0x3)
timerfd_create(0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

120.112588ms ago: executing program 9 (id=15159):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
syz_io_uring_submit(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r2)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000037400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a7330000800020000000000080007002609090914000600626f6e64300000000000000000000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x0)

60.099989ms ago: executing program 4 (id=15160):
r0 = socket$unix(0x1, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000100)={[{@errors_remount}, {@noload}, {@nogrpid}, {@noquota}, {@noblock_validity}, {}, {@resuid}, {@acl}, {@resgid}], [], 0x3d}, 0x1, 0x51f, &(0x7f00000007c0)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f00000005c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffe00}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)

0s ago: executing program 3 (id=15161):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
syz_emit_ethernet(0xd2, &(0x7f0000001840)=ANY=[@ANYBLOB="0180c2000000ffffffffffff86dd6a01a604009c110000000000000000000000ffffe0000002ff0200000000000000000000000000014e234e20009c90"], 0x0)

kernel console output (not intermixed with test programs):

nregistering): Released all slaves
[  419.194092][ T4800] bond1 (unregistering): Released all slaves
[  419.202033][ T4800] bond2 (unregistering): Released all slaves
[  419.210392][ T4800] bond3 (unregistering): Released all slaves
[  419.218412][ T4800] bond4 (unregistering): Released all slaves
[  419.227122][ T4800] bond5 (unregistering): Released all slaves
[  419.254854][ T4800] bond3 (unregistering): (slave geneve2): Releasing active interface
[  419.356811][ T4800] $Hÿ (unregistering): Released all slaves
[  419.364789][ T4800] bond1 (unregistering): Released all slaves
[  419.373053][ T4800] bond0 (unregistering): Released all slaves
[  419.380888][ T4800] bond2 (unregistering): Released all slaves
[  419.388862][ T4800] bond3 (unregistering): Released all slaves
[  419.401626][T10966] netlink: 264 bytes leftover after parsing attributes in process `syz.0.13284'.
[  419.487128][ T4800] tipc: Left network mode
[  419.523103][ T4800] tipc: Left network mode
[  419.540126][ T9308] 8021q: adding VLAN 0 to HW filter on device batadv0
[  419.558970][ T9316] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  419.587068][ T9304] veth0_vlan: entered promiscuous mode
[  419.599226][ T9316] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  419.616068][ T9316] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  419.646618][ T9304] veth1_vlan: entered promiscuous mode
[  419.659291][ T9316] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  419.722440][ T9304] veth0_macvtap: entered promiscuous mode
[  419.745767][ T4800] batman_adv: batadv0: Removing interface: dummy0
[  419.757197][ T4800] hsr_slave_0: left promiscuous mode
[  419.767862][ T4800] veth0_macvtap: left promiscuous mode
[  419.773439][ T4800] veth1_vlan: left promiscuous mode
[  419.779824][ T4800] veth0_vlan: left promiscuous mode
[  419.786601][ T4800] veth0_macvtap: left promiscuous mode
[  419.792406][ T4800] veth1_vlan: left promiscuous mode
[  419.798745][ T4800] veth0_vlan: left promiscuous mode
[  419.912475][ T4800] hsr_slave_0 (unregistering): left promiscuous mode
[  419.919241][ T4800] hsr_slave_0 (unregistering): left allmulticast mode
[  419.928119][ T4800] team0 (unregistering): Port device hsr_slave_0 removed
[  419.945708][ T4793] smc: removing ib device syz!
[  420.133647][   T10] lo speed is unknown, defaulting to 1000
[  420.134405][ T9304] veth1_macvtap: entered promiscuous mode
[  420.139468][   T10] infiniband syz2: ib_query_port failed (-19)
[  420.189596][ T9308] veth0_vlan: entered promiscuous mode
[  420.212873][ T9304] batman_adv: batadv0: Interface activated: batadv_slave_0
[  420.228132][ T9308] veth1_vlan: entered promiscuous mode
[  420.272059][ T9304] batman_adv: batadv0: Interface activated: batadv_slave_1
[  420.330877][ T9312] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  420.378117][ T9316] 8021q: adding VLAN 0 to HW filter on device bond0
[  420.394696][ T4768] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  420.415012][ T9308] veth0_macvtap: entered promiscuous mode
[  420.435004][ T9312] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  420.453965][ T9312] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  420.485121][ T4768] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  420.494519][ T9308] veth1_macvtap: entered promiscuous mode
[  420.502951][ T9312] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  420.518726][ T4768] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.532715][ T9308] batman_adv: batadv0: Interface activated: batadv_slave_0
[  420.539981][ T4768] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.551231][ T9316] 8021q: adding VLAN 0 to HW filter on device team0
[  420.566370][ T9308] batman_adv: batadv0: Interface activated: batadv_slave_1
[  420.588100][ T4793] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.595222][ T4793] bridge0: port 1(bridge_slave_0) entered forwarding state
[  420.606661][ T4797] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  420.625909][ T4797] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  420.638513][T11072] netlink: 32 bytes leftover after parsing attributes in process `syz.6.13276'.
[  420.660133][ T4797] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.671351][ T4796] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.678435][ T4796] bridge0: port 2(bridge_slave_1) entered forwarding state
[  420.702581][   T29] audit: type=1400 audit(2000003291.093:14273): avc:  denied  { read write } for  pid=9308 comm="syz-executor" name="loop2" dev="devtmpfs" ino=1010 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  420.726060][   T29] audit: type=1400 audit(2000003291.093:14274): avc:  denied  { open } for  pid=9308 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=1010 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  420.749529][   T29] audit: type=1400 audit(2000003291.093:14275): avc:  denied  { ioctl } for  pid=9308 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=1010 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  420.777820][ T4800] IPVS: stop unused estimator thread 0...
[  420.783941][ T4800] IPVS: stop unused estimator thread 0...
[  420.811585][ T4797] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.863549][T11082] netlink: 'syz.0.13294': attribute type 10 has an invalid length.
[  420.866121][ T9316] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  420.881870][ T9316] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  420.899844][   T29] audit: type=1400 audit(2000003291.261:14276): avc:  denied  { bind } for  pid=11081 comm="syz.0.13294" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  420.933145][T11088] netlink: 'syz.0.13294': attribute type 10 has an invalid length.
[  420.947155][ T9312] 8021q: adding VLAN 0 to HW filter on device bond0
[  420.961289][T11082] team0: Port device dummy0 added
[  420.973993][T11088] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  420.986234][T11088] team0: Failed to send options change via netlink (err -105)
[  420.997883][T11088] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  421.017571][T11088] team0: Port device dummy0 removed
[  421.035426][T11088] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  421.062412][ T9312] 8021q: adding VLAN 0 to HW filter on device team0
[  421.093910][ T4797] bridge0: port 1(bridge_slave_0) entered blocking state
[  421.101095][ T4797] bridge0: port 1(bridge_slave_0) entered forwarding state
[  421.135888][ T4800] bridge0: port 2(bridge_slave_1) entered blocking state
[  421.143010][ T4800] bridge0: port 2(bridge_slave_1) entered forwarding state
[  421.218630][T11113] loop2: detected capacity change from 0 to 512
[  421.230864][ T9312] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  421.241408][ T9312] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  421.269567][ T9316] 8021q: adding VLAN 0 to HW filter on device batadv0
[  421.336736][T11127] netlink: 20 bytes leftover after parsing attributes in process `syz.6.13306'.
[  421.340362][ T9312] 8021q: adding VLAN 0 to HW filter on device batadv0
[  421.497052][ T9316] veth0_vlan: entered promiscuous mode
[  421.519012][ T9316] veth1_vlan: entered promiscuous mode
[  421.579618][ T9316] veth0_macvtap: entered promiscuous mode
[  421.587831][ T9312] veth0_vlan: entered promiscuous mode
[  421.597894][ T9316] veth1_macvtap: entered promiscuous mode
[  421.607716][ T9312] veth1_vlan: entered promiscuous mode
[  421.619004][ T9316] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.636572][ T9316] batman_adv: batadv0: Interface activated: batadv_slave_1
[  421.648245][ T9312] veth0_macvtap: entered promiscuous mode
[  421.656879][ T9312] veth1_macvtap: entered promiscuous mode
[  421.666930][ T4768] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  421.678743][ T4768] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  421.691983][ T9312] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.716264][ T4768] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  421.726935][ T9312] batman_adv: batadv0: Interface activated: batadv_slave_1
[  421.753319][ T4768] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  421.775382][T11171] Invalid ELF header magic: != ELF
[  421.782153][ T4768] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  421.805554][ T4768] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  421.838953][ T4768] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  421.852328][ T4797] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  422.105644][T11254] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.13336' sets config #1
[  422.261822][T11284] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13349'.
[  422.277564][T11284] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13349'.
[  422.314085][T11288] IPv6: NLM_F_CREATE should be specified when creating new route
[  422.370159][T11301] netlink: 60 bytes leftover after parsing attributes in process `syz.9.13355'.
[  422.415005][T11262] loop2: detected capacity change from 0 to 32768
[  422.461350][T11262]  loop2: p1 p2 p3 < >
[  422.466374][T11262] loop2: p2 size 39627 extends beyond EOD, truncated
[  422.554081][T11337] netlink: 'syz.9.13365': attribute type 2 has an invalid length.
[  422.562004][T11337] netlink: 'syz.9.13365': attribute type 1 has an invalid length.
[  422.569906][T11337] netlink: 199820 bytes leftover after parsing attributes in process `syz.9.13365'.
[  422.583574][T11341] netlink: 'syz.2.13362': attribute type 13 has an invalid length.
[  422.820377][T11356] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13374'.
[  422.903997][T11379] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  422.912727][T11380] loop7: detected capacity change from 0 to 128
[  422.922804][T11382] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  422.937015][T11380] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  422.965066][T11380] ext4 filesystem being mounted at /4/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  422.990025][ T9312] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  423.257506][   T29] kauditd_printk_skb: 75 callbacks suppressed
[  423.257576][   T29] audit: type=1400 audit(2000000000.881:14352): avc:  denied  { remove_name } for  pid=11430 comm="syz.6.13402" name="file0" dev="cgroup2" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  423.371577][T11447] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  423.382769][T11442] IPVS: stopping master sync thread 11447 ...
[  423.445593][   T29] audit: type=1400 audit(2000000001.081:14353): avc:  denied  { listen } for  pid=11452 comm="syz.9.13410" lport=37642 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  423.471599][   T29] audit: type=1400 audit(2000000001.112:14354): avc:  denied  { accept } for  pid=11452 comm="syz.9.13410" lport=37642 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  423.494930][   T29] audit: type=1400 audit(2000000001.112:14355): avc:  denied  { write } for  pid=11452 comm="syz.9.13410" lport=37642 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  423.539374][T11459] netlink: 96 bytes leftover after parsing attributes in process `syz.6.13412'.
[  423.564319][   T29] audit: type=1326 audit(2000000001.207:14356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11460 comm="syz.6.13414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aa15aeec9 code=0x7ffc0000
[  423.591766][   T29] audit: type=1326 audit(2000000001.238:14357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11460 comm="syz.6.13414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6aa15aeec9 code=0x7ffc0000
[  423.615584][   T29] audit: type=1326 audit(2000000001.238:14358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11460 comm="syz.6.13414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aa15aeec9 code=0x7ffc0000
[  423.639231][   T29] audit: type=1326 audit(2000000001.238:14359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11460 comm="syz.6.13414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aa15aeec9 code=0x7ffc0000
[  423.663176][   T29] audit: type=1326 audit(2000000001.238:14360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11460 comm="syz.6.13414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6aa15aeec9 code=0x7ffc0000
[  423.686886][   T29] audit: type=1326 audit(2000000001.238:14361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11460 comm="syz.6.13414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aa15aeec9 code=0x7ffc0000
[  423.736738][T11508] syzkaller1: entered promiscuous mode
[  423.742302][T11508] syzkaller1: entered allmulticast mode
[  423.752036][T11508] PF_CAN: dropped non conform CAN skbuff: dev type 280, len 324
[  424.066356][T11541] netlink: 'syz.7.13430': attribute type 1 has an invalid length.
[  424.283857][T11600] netlink: 'syz.9.13446': attribute type 2 has an invalid length.
[  424.311552][T11602] loop7: detected capacity change from 0 to 512
[  424.355359][T11602] EXT4-fs warning (device loop7): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  424.387190][T11614] loop2: detected capacity change from 0 to 1024
[  424.396048][T11614] EXT4-fs: Ignoring removed bh option
[  424.402183][T11602] EXT4-fs (loop7): mount failed
[  424.420783][T11614] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  424.512489][T11635] __nla_validate_parse: 1 callbacks suppressed
[  424.512505][T11635] netlink: 12 bytes leftover after parsing attributes in process `syz.6.13456'.
[  424.520973][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.602114][T11683] netlink: 28 bytes leftover after parsing attributes in process `syz.6.13459'.
[  424.620473][T11686] netlink: 'syz.2.13454': attribute type 30 has an invalid length.
[  424.681307][T11702] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13462'.
[  425.054216][T11710] I/O error, dev loop19, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  425.141739][T11765] netlink: 12 bytes leftover after parsing attributes in process `syz.0.13478'.
[  425.199890][T11772] loop7: detected capacity change from 0 to 512
[  425.218858][T11772] EXT4-fs: Ignoring removed mblk_io_submit option
[  425.236852][T11772] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  425.250973][T11783] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13485'.
[  425.262483][T11772] EXT4-fs error (device loop7): xattr_find_entry:333: inode #15: comm syz.7.13482: corrupted xattr entries
[  425.282945][T11772] EXT4-fs (loop7): 1 orphan inode deleted
[  425.292369][T11772] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  425.302787][   T31] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  425.324831][   T31] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  425.333974][   T31] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  425.343067][   T31] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  425.398533][T11802] netlink: 'syz.0.13488': attribute type 1 has an invalid length.
[  425.406444][T11802] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.13488'.
[  425.489616][T11815] IPVS: stopping master sync thread 11816 ...
[  425.495882][T11816] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  425.697432][T11849] netlink: 3 bytes leftover after parsing attributes in process `syz.0.13505'.
[  425.724528][T11849] batadv1: entered promiscuous mode
[  425.730101][T11849] batadv1: entered allmulticast mode
[  425.767274][T11864] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11864 comm=syz.2.13509
[  426.019013][ T9312] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.072377][T11906] netlink: 76 bytes leftover after parsing attributes in process `syz.0.13518'.
[  426.124050][T11913] netlink: 'syz.2.13520': attribute type 10 has an invalid length.
[  426.139165][T11913] team0: Port device dummy0 added
[  426.154399][T11913] netlink: 'syz.2.13520': attribute type 10 has an invalid length.
[  426.163168][T11913] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  426.174292][T11913] team0: Failed to send options change via netlink (err -105)
[  426.182348][T11913] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  426.193102][T11913] team0: Port device dummy0 removed
[  426.200604][T11913] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  426.214589][T11919] netlink: 3 bytes leftover after parsing attributes in process `syz.7.13522'.
[  426.229031][ T3384] IPVS: starting estimator thread 0...
[  426.236438][T11919] batadv1: entered promiscuous mode
[  426.241667][T11919] batadv1: entered allmulticast mode
[  426.318559][T11923] IPVS: using max 2640 ests per chain, 132000 per kthread
[  426.336173][T11941] loop2: detected capacity change from 0 to 2048
[  426.386097][T11941]  loop2: p1 < > p4
[  426.392042][T11941] loop2: p4 size 8388608 extends beyond EOD, truncated
[  426.444384][T11981] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  426.455892][T11983] SELinux: security policydb version 17 (MLS) not backwards compatible
[  426.464887][T11983] SELinux: failed to load policy
[  426.491060][T11989] loop2: detected capacity change from 0 to 512
[  426.498342][T11989] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  426.511852][T11994] netlink: 76 bytes leftover after parsing attributes in process `syz.7.13540'.
[  426.528367][T11989] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  426.569720][T11989] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  426.603377][T12005] loop7: detected capacity change from 0 to 512
[  426.625609][T12007] random: crng reseeded on system resumption
[  426.681149][T12005] EXT4-fs warning (device loop7): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  426.719737][T12005] EXT4-fs (loop7): mount failed
[  426.768686][T12005] loop7: detected capacity change from 0 to 512
[  426.785277][T12005] EXT4-fs: Ignoring removed nobh option
[  426.796529][ T3384] IPVS: starting estimator thread 0...
[  426.825520][T12005] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #3: comm syz.7.13541: corrupted inode contents
[  426.837623][T12005] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #3: comm syz.7.13541: mark_inode_dirty error
[  426.853180][T12005] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #3: comm syz.7.13541: corrupted inode contents
[  426.881270][T12036] IPVS: using max 2592 ests per chain, 129600 per kthread
[  426.890786][T12005] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #3: comm syz.7.13541: mark_inode_dirty error
[  426.930762][T12005] EXT4-fs error (device loop7): ext4_acquire_dquot:6937: comm syz.7.13541: Failed to acquire dquot type 0
[  426.956950][T12005] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.13541: corrupted inode contents
[  426.979192][T12005] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #16: comm syz.7.13541: mark_inode_dirty error
[  426.986016][T11989] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  426.991745][T12005] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.13541: corrupted inode contents
[  427.017421][T11989] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 9 with max blocks 2048 with error 28
[  427.019069][T12005] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #16: comm syz.7.13541: mark_inode_dirty error
[  427.029885][T11989] EXT4-fs (loop2): This should not happen!! Data will be lost
[  427.029885][T11989] 
[  427.029911][T11989] EXT4-fs (loop2): Total free blocks count 0
[  427.029924][T11989] EXT4-fs (loop2): Free/Dirty block details
[  427.043476][T12005] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.13541: corrupted inode contents
[  427.050849][T11989] EXT4-fs (loop2): free_blocks=39626
[  427.057248][T12005] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem
[  427.062709][T11989] EXT4-fs (loop2): dirty_blocks=4096
[  427.062775][T11989] EXT4-fs (loop2): Block reservation details
[  427.062785][T11989] EXT4-fs (loop2): i_reserved_data_blocks=4096
[  427.140844][T12005] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.13541: corrupted inode contents
[  427.155190][T12005] EXT4-fs error (device loop7): ext4_truncate:4666: inode #16: comm syz.7.13541: mark_inode_dirty error
[  427.167618][T12005] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem
[  427.192182][T12005] EXT4-fs (loop7): 1 truncate cleaned up
[  427.192935][ T4793] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 2058 with max blocks 2047 with error 28
[  427.199426][T12005] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  427.253774][T12005] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  427.305546][T12070] loop2: detected capacity change from 0 to 512
[  427.316804][T12072] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  427.324056][T12072] IPv6: NLM_F_CREATE should be set when creating new route
[  427.331313][T12072] IPv6: NLM_F_CREATE should be set when creating new route
[  427.339950][T12070] EXT4-fs (loop2): bad geometry: first data block 0 is beyond end of filesystem (0)
[  427.396294][ T9312] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.496482][T12092] infiniband syz0: set active
[  427.496990][T12096] syz_tun: entered promiscuous mode
[  427.501230][T12092] infiniband syz0: added bond_slave_0
[  427.517969][T12092] RDS/IB: syz0: added
[  427.525237][T12092] smc: adding ib device syz0 with port count 1
[  427.539440][T12092] smc:    ib device syz0 port 1 has pnetid 
[  427.540143][T12096] batadv_slave_0: entered promiscuous mode
[  427.886086][T12160] sch_tbf: burst 2976 is lower than device lo mtu (65550) !
[  427.985348][T12184] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  427.995344][T12184] SELinux: failed to load policy
[  428.035058][T12187] team0 (unregistering): Port device team_slave_0 removed
[  428.044653][T12187] team0 (unregistering): Port device team_slave_1 removed
[  428.103145][   T29] kauditd_printk_skb: 281 callbacks suppressed
[  428.103160][   T29] audit: type=1326 audit(2000000518.978:14639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.133190][   T29] audit: type=1326 audit(2000000518.978:14640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.157061][   T29] audit: type=1326 audit(2000000518.978:14641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.180760][   T29] audit: type=1326 audit(2000000518.978:14642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.204464][   T29] audit: type=1326 audit(2000000518.978:14643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.228121][   T29] audit: type=1326 audit(2000000518.978:14644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.251781][   T29] audit: type=1326 audit(2000000518.978:14645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.275573][   T29] audit: type=1326 audit(2000000518.978:14646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.312688][   T29] audit: type=1326 audit(2000000519.136:14647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.336640][   T29] audit: type=1326 audit(2000000519.136:14648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12236 comm="syz.7.13610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32317eeec9 code=0x7ffc0000
[  428.413357][T12248] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  428.489756][T12264] ip6tnl1: entered promiscuous mode
[  428.701124][T12313] 9pnet_fd: Insufficient options for proto=fd
[  428.952169][T12357] ref_ctr_offset mismatch. inode: 0x167 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  429.112258][T12387] ipvlan2: entered promiscuous mode
[  429.252564][T12412] syzkaller0: refused to change device tx_queue_len
[  429.287654][T12426] atomic_op ffff8881149f3d28 conn xmit_atomic 0000000000000000
[  429.288720][ T4807] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0x7
[  429.352792][T12436] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12436 comm=syz.2.13680
[  429.365534][T12436] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=12436 comm=syz.2.13680
[  429.402751][T12437] __nla_validate_parse: 11 callbacks suppressed
[  429.402768][T12437] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13681'.
[  429.737970][T12460] loop2: detected capacity change from 0 to 512
[  429.784723][T12460] EXT4-fs (loop2): orphan cleanup on readonly fs
[  429.801948][T12460] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.13692: bad orphan inode 13
[  429.813958][T12460] ext4_test_bit(bit=12, block=18) = 1
[  429.819410][T12460] is_bad_inode(inode)=0
[  429.823693][T12460] NEXT_ORPHAN(inode)=2130706432
[  429.828585][T12460] max_ino=32
[  429.831777][T12460] i_nlink=1
[  429.861487][T12460] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  429.905685][T12460] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  429.948362][T12460] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  429.976976][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.053903][T12487] netlink: 20 bytes leftover after parsing attributes in process `syz.6.13698'.
[  430.083725][T12493] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  430.123371][T12499] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13702'.
[  430.151222][T12499] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13702'.
[  430.221627][T12518] netlink: 'syz.2.13711': attribute type 10 has an invalid length.
[  430.233249][T12518] bond0: (slave dummy0): Releasing backup interface
[  430.245428][T12518] netlink: 'syz.2.13711': attribute type 10 has an invalid length.
[  430.259436][T12518] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  430.288071][T12528] macvtap0: refused to change device tx_queue_len
[  430.351319][T12538] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13719'.
[  430.394776][T12556] loop2: detected capacity change from 0 to 128
[  430.442522][T12567] loop2: detected capacity change from 0 to 256
[  430.743413][T12627] netlink: 12 bytes leftover after parsing attributes in process `syz.6.13747'.
[  430.926365][T12664] netlink: 28 bytes leftover after parsing attributes in process `syz.6.13761'.
[  430.935687][T12664] netlink: 32 bytes leftover after parsing attributes in process `syz.6.13761'.
[  430.944770][T12664] netlink: 28 bytes leftover after parsing attributes in process `syz.6.13761'.
[  430.975944][T12664] netlink: 32 bytes leftover after parsing attributes in process `syz.6.13761'.
[  431.140370][T12690] netlink: 'syz.9.13772': attribute type 30 has an invalid length.
[  431.370921][T12738] SELinux: failed to load policy
[  431.580032][ T3384] IPVS: starting estimator thread 0...
[  431.691287][T12769] IPVS: using max 2688 ests per chain, 134400 per kthread
[  431.739843][T12809] random: crng reseeded on system resumption
[  431.771224][T12815] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  431.819444][T12823] loop2: detected capacity change from 0 to 256
[  432.059116][T12850] loop7: detected capacity change from 0 to 128
[  432.239510][   T31] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.275595][   T31] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.327772][   T31] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.381480][   T31] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.498114][   T31] bridge_slave_1: left allmulticast mode
[  432.503839][   T31] bridge_slave_1: left promiscuous mode
[  432.509471][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[  432.520174][   T31] bridge_slave_0: left allmulticast mode
[  432.525814][   T31] bridge_slave_0: left promiscuous mode
[  432.531464][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[  432.618319][   T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  432.647306][   T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  432.660512][   T31] bond0 (unregistering): Released all slaves
[  432.766119][T12919] loop9: detected capacity change from 0 to 8192
[  432.778531][   T31] hsr_slave_0: left promiscuous mode
[  432.792258][   T31] hsr_slave_1: left promiscuous mode
[  432.801921][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  432.809454][   T31] batman_adv: batadv0: Removing interface: batadv_slave_0
[  432.825013][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  432.832399][   T31] batman_adv: batadv0: Removing interface: batadv_slave_1
[  432.853895][   T31] veth1_macvtap: left promiscuous mode
[  432.865906][   T31] veth0_macvtap: left promiscuous mode
[  432.871424][   T31] veth1_vlan: left promiscuous mode
[  432.876691][   T31] veth0_vlan: left promiscuous mode
[  432.884980][   T29] kauditd_printk_skb: 600 callbacks suppressed
[  432.885066][   T29] audit: type=1400 audit(2000000523.996:15249): avc:  denied  { read } for  pid=12955 comm="syz.9.13851" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  432.918293][   T29] audit: type=1400 audit(2000000524.028:15250): avc:  denied  { remount } for  pid=12946 comm="syz.0.13850" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  432.945871][   T29] audit: type=1400 audit(2000000524.059:15251): avc:  denied  { ioctl } for  pid=12959 comm="syz.0.13854" path="socket:[110677]" dev="sockfs" ino=110677 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  432.978114][   T29] audit: type=1400 audit(2000000524.059:15252): avc:  denied  { shutdown } for  pid=12953 comm="syz.6.13853" lport=36595 faddr=2001::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  433.018811][   T31] team0 (unregistering): Port device team_slave_1 removed
[  433.028396][   T31] team0 (unregistering): Port device team_slave_0 removed
[  433.085401][   T29] audit: type=1326 audit(2000000524.206:15253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12970 comm="syz.9.13858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  433.112847][   T29] audit: type=1326 audit(2000000524.238:15254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12970 comm="syz.9.13858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  433.136690][   T29] audit: type=1326 audit(2000000524.238:15255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12970 comm="syz.9.13858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  433.160743][   T29] audit: type=1326 audit(2000000524.238:15256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12970 comm="syz.9.13858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  433.185387][   T29] audit: type=1326 audit(2000000524.238:15257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12970 comm="syz.9.13858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  433.209585][   T29] audit: type=1326 audit(2000000524.238:15258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12970 comm="syz.9.13858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  433.293375][T12874] chnl_net:caif_netlink_parms(): no params data found
[  433.359534][T12874] bridge0: port 1(bridge_slave_0) entered blocking state
[  433.366656][T12874] bridge0: port 1(bridge_slave_0) entered disabled state
[  433.373901][T12874] bridge_slave_0: entered allmulticast mode
[  433.385201][T12874] bridge_slave_0: entered promiscuous mode
[  433.393444][T13128] 9p: Unknown Cache mode or invalid value mtaÎiÅ”ùpcl
[  433.409097][T12874] bridge0: port 2(bridge_slave_1) entered blocking state
[  433.416254][T12874] bridge0: port 2(bridge_slave_1) entered disabled state
[  433.423491][T12874] bridge_slave_1: entered allmulticast mode
[  433.430342][T12874] bridge_slave_1: entered promiscuous mode
[  433.455941][T12874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  433.478713][T12874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  433.495710][   T31] IPVS: stop unused estimator thread 0...
[  433.524103][T12874] team0: Port device team_slave_0 added
[  433.531063][T12874] team0: Port device team_slave_1 added
[  433.556007][T12874] batman_adv: batadv0: Adding interface: batadv_slave_0
[  433.563043][T12874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  433.588995][T12874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  433.604769][T12874] batman_adv: batadv0: Adding interface: batadv_slave_1
[  433.611813][T12874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  433.637776][T12874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  433.678051][T12874] hsr_slave_0: entered promiscuous mode
[  433.684237][T12874] hsr_slave_1: entered promiscuous mode
[  433.690070][T12874] debugfs: 'hsr0' already exists in 'hsr'
[  433.695847][T12874] Cannot create hsr debugfs directory
[  433.776807][T12874] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 256 - 0
[  433.844715][T12874] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 256 - 0
[  433.892092][T12874] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 256 - 0
[  433.939752][T12874] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 256 - 0
[  434.000737][T12874] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  434.009170][T12874] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  434.017959][T12874] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  434.027490][T12874] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  434.042333][T12874] bridge0: port 2(bridge_slave_1) entered blocking state
[  434.049476][T12874] bridge0: port 2(bridge_slave_1) entered forwarding state
[  434.056800][T12874] bridge0: port 1(bridge_slave_0) entered blocking state
[  434.063837][T12874] bridge0: port 1(bridge_slave_0) entered forwarding state
[  434.089101][T12874] 8021q: adding VLAN 0 to HW filter on device bond0
[  434.100232][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[  434.108112][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[  434.120526][T12874] 8021q: adding VLAN 0 to HW filter on device team0
[  434.133471][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  434.140558][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  434.151597][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[  434.158698][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[  434.214559][T12874] 8021q: adding VLAN 0 to HW filter on device batadv0
[  434.271123][T12874] veth0_vlan: entered promiscuous mode
[  434.278918][T12874] veth1_vlan: entered promiscuous mode
[  434.293859][T12874] veth0_macvtap: entered promiscuous mode
[  434.301345][T12874] veth1_macvtap: entered promiscuous mode
[  434.312295][T12874] batman_adv: batadv0: Interface activated: batadv_slave_0
[  434.323248][T12874] batman_adv: batadv0: Interface activated: batadv_slave_1
[  434.334006][ T4793] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  434.348251][ T4793] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  434.365469][ T4793] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  434.384772][ T4793] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  434.446616][T13361] syzkaller1: entered promiscuous mode
[  434.452153][T13361] syzkaller1: entered allmulticast mode
[  434.469418][T13363] loop2: detected capacity change from 0 to 8192
[  434.487802][T13359] SELinux: failed to load policy
[  434.560527][T13392] __nla_validate_parse: 15 callbacks suppressed
[  434.560543][T13392] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13889'.
[  434.667976][T13413] netlink: 56 bytes leftover after parsing attributes in process `syz.2.13897'.
[  434.670812][T13409] pim6reg1: entered promiscuous mode
[  434.682486][T13409] pim6reg1: entered allmulticast mode
[  434.763366][T13423] vhci_hcd: invalid port number 96
[  434.768549][T13423] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  434.820217][T13432] loop2: detected capacity change from 0 to 512
[  434.840096][T13439] sd 0:0:1:0: device reset
[  434.846115][T13432] EXT4-fs (loop2): too many log groups per flexible block group
[  434.853871][T13432] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  434.861928][T13432] EXT4-fs (loop2): mount failed
[  435.020527][T13471] netlink: 12 bytes leftover after parsing attributes in process `syz.9.13920'.
[  435.387087][T13509] hub 6-0:1.0: USB hub found
[  435.391826][T13509] hub 6-0:1.0: 8 ports detected
[  435.450334][T13518] netlink: 20 bytes leftover after parsing attributes in process `syz.2.13942'.
[  435.475574][T13520] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13943'.
[  435.525532][T13520] netlink: 56 bytes leftover after parsing attributes in process `syz.0.13943'.
[  435.637919][T13535] loop2: detected capacity change from 0 to 512
[  435.664427][T13535] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  435.704479][T13545] netlink: 64 bytes leftover after parsing attributes in process `syz.0.13952'.
[  435.715444][T13535] EXT4-fs (loop2): mount failed
[  435.755850][T13535] loop2: detected capacity change from 0 to 512
[  435.763084][ T4793] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.768431][T13535] EXT4-fs: Ignoring removed nobh option
[  435.834697][T13535] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.13949: corrupted inode contents
[  435.849509][ T4793] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.861318][T13535] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #3: comm syz.2.13949: mark_inode_dirty error
[  435.882906][T13535] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.13949: corrupted inode contents
[  435.897188][T13535] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.13949: mark_inode_dirty error
[  435.915490][T13535] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.13949: Failed to acquire dquot type 0
[  435.932007][T13535] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.13949: corrupted inode contents
[  435.944207][T13535] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.13949: mark_inode_dirty error
[  435.957536][T13535] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.13949: corrupted inode contents
[  435.959481][ T4793] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.995317][T13535] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.13949: mark_inode_dirty error
[  436.040600][T13568] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13961'.
[  436.049721][T13568] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13961'.
[  436.063365][T13535] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.13949: corrupted inode contents
[  436.076818][T13535] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  436.085644][T13535] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.13949: corrupted inode contents
[  436.098639][T13535] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.13949: mark_inode_dirty error
[  436.109857][T13568] bridge0: port 3(macsec1) entered blocking state
[  436.109887][T13568] bridge0: port 3(macsec1) entered disabled state
[  436.109960][T13568] macsec1: entered allmulticast mode
[  436.128462][T13568] macsec1: left allmulticast mode
[  436.133253][T13535] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  436.143396][T13535] EXT4-fs (loop2): 1 truncate cleaned up
[  436.149628][T13535] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.163229][T13535] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.181448][ T4793] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.244744][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.264983][ T4793] bridge_slave_1: left allmulticast mode
[  436.270671][ T4793] bridge_slave_1: left promiscuous mode
[  436.276448][ T4793] bridge0: port 2(bridge_slave_1) entered disabled state
[  436.284635][ T4793] bridge_slave_0: left allmulticast mode
[  436.290374][ T4793] bridge_slave_0: left promiscuous mode
[  436.296199][ T4793] bridge0: port 1(bridge_slave_0) entered disabled state
[  436.474970][ T4793] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  436.487209][ T4793] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  436.502928][T13626] ref_ctr increment failed for inode: 0x381 offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff88811ae761c0
[  436.522539][ T4793] bond0 (unregistering): Released all slaves
[  436.532902][ T4793] bond1 (unregistering): Released all slaves
[  436.539077][T13625] uprobe: syz.0.13974:13625 failed to unregister, leaking uprobe
[  436.659118][ T4793] hsr_slave_0: left promiscuous mode
[  436.663979][T13642] netlink: 56 bytes leftover after parsing attributes in process `syz.2.13977'.
[  436.674994][ T4793] hsr_slave_1: left promiscuous mode
[  436.680680][ T4793] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  436.688235][ T4793] batman_adv: batadv0: Removing interface: batadv_slave_0
[  436.710956][ T4793] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  436.718489][ T4793] batman_adv: batadv0: Removing interface: batadv_slave_1
[  436.741562][ T4793] veth1_macvtap: left promiscuous mode
[  436.747254][ T4793] veth0_macvtap: left promiscuous mode
[  436.756531][ T4793] veth1_vlan: left promiscuous mode
[  436.768298][ T4793] veth0_vlan: left promiscuous mode
[  436.841820][T13657] loop2: detected capacity change from 0 to 1024
[  436.848727][T13657] EXT4-fs: inline encryption not supported
[  436.856602][ T4793] team0 (unregistering): Port device team_slave_1 removed
[  436.880321][ T4793] team0 (unregistering): Port device team_slave_0 removed
[  436.891238][T13657] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  436.947490][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.969202][T13675] loop2: detected capacity change from 0 to 164
[  436.980097][T13675] syz.2.13984: attempt to access beyond end of device
[  436.980097][T13675] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  436.994322][T13675] syz.2.13984: attempt to access beyond end of device
[  436.994322][T13675] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  437.091854][T13560] chnl_net:caif_netlink_parms(): no params data found
[  437.272257][T13560] bridge0: port 1(bridge_slave_0) entered blocking state
[  437.279598][T13560] bridge0: port 1(bridge_slave_0) entered disabled state
[  437.303222][T13560] bridge_slave_0: entered allmulticast mode
[  437.313136][T13560] bridge_slave_0: entered promiscuous mode
[  437.331558][T13560] bridge0: port 2(bridge_slave_1) entered blocking state
[  437.338680][T13560] bridge0: port 2(bridge_slave_1) entered disabled state
[  437.347883][T13560] bridge_slave_1: entered allmulticast mode
[  437.354784][T13560] bridge_slave_1: entered promiscuous mode
[  437.371907][ T4793] IPVS: stop unused estimator thread 0...
[  437.387798][T13870] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  437.392798][T13560] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  437.394315][T13870] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  437.410927][T13870] vhci_hcd vhci_hcd.0: Device attached
[  437.417791][T13560] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  437.449598][T13560] team0: Port device team_slave_0 added
[  437.457640][T13560] team0: Port device team_slave_1 added
[  437.463387][T13878] vhci_hcd: connection closed
[  437.464725][   T31] vhci_hcd: stop threads
[  437.473702][   T31] vhci_hcd: release socket
[  437.478103][   T31] vhci_hcd: disconnect device
[  437.496792][T13560] batman_adv: batadv0: Adding interface: batadv_slave_0
[  437.503795][T13560] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  437.529719][T13560] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  437.541469][T13560] batman_adv: batadv0: Adding interface: batadv_slave_1
[  437.548568][T13560] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  437.574704][T13560] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  437.618257][T13560] hsr_slave_0: entered promiscuous mode
[  437.624234][T13560] hsr_slave_1: entered promiscuous mode
[  437.630449][T13560] debugfs: 'hsr0' already exists in 'hsr'
[  437.636245][T13560] Cannot create hsr debugfs directory
[  437.689132][   T29] kauditd_printk_skb: 438 callbacks suppressed
[  437.689174][   T29] audit: type=1326 audit(449.822:15694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.724373][   T29] audit: type=1326 audit(449.822:15695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.747504][   T29] audit: type=1326 audit(449.822:15696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.770468][   T29] audit: type=1326 audit(449.822:15697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.793524][   T29] audit: type=1326 audit(449.822:15698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.816618][   T29] audit: type=1326 audit(449.822:15699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.839728][   T29] audit: type=1326 audit(449.822:15700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.862895][   T29] audit: type=1326 audit(449.822:15701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.885997][   T29] audit: type=1326 audit(449.822:15702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  437.909051][   T29] audit: type=1326 audit(449.822:15703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14021 comm="syz.0.14003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f201fb6eec9 code=0x7ffc0000
[  438.164652][T13560] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  438.177317][T13560] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  438.201594][T13560] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  438.256531][T13560] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  438.358649][T13560] 8021q: adding VLAN 0 to HW filter on device bond0
[  438.392739][T14118] SELinux: failed to load policy
[  438.404392][T13560] 8021q: adding VLAN 0 to HW filter on device team0
[  438.430721][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  438.437891][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  438.470463][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[  438.477618][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[  438.581841][T13560] 8021q: adding VLAN 0 to HW filter on device batadv0
[  438.627639][T14157] syzkaller1: entered promiscuous mode
[  438.633130][T14157] syzkaller1: entered allmulticast mode
[  438.674219][T14169] loop9: detected capacity change from 0 to 128
[  438.685464][T14173] loop2: detected capacity change from 0 to 512
[  438.697634][T14173] EXT4-fs (loop2): orphan cleanup on readonly fs
[  438.704830][T14173] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.14042: bad orphan inode 13
[  438.728482][T14173] ext4_test_bit(bit=12, block=18) = 1
[  438.733964][T14173] is_bad_inode(inode)=0
[  438.738131][T14173] NEXT_ORPHAN(inode)=2130706432
[  438.743014][T14173] max_ino=32
[  438.746243][T14173] i_nlink=1
[  438.756068][T13560] veth0_vlan: entered promiscuous mode
[  438.770963][T14173] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  438.775224][T13560] veth1_vlan: entered promiscuous mode
[  438.816667][T13560] veth0_macvtap: entered promiscuous mode
[  438.823634][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.833842][T13560] veth1_macvtap: entered promiscuous mode
[  438.845244][T13560] batman_adv: batadv0: Interface activated: batadv_slave_0
[  438.859587][T13560] batman_adv: batadv0: Interface activated: batadv_slave_1
[  438.889336][   T31] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  438.911519][   T31] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  438.927734][ T4793] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  438.950365][ T4793] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  438.962208][T14212] syz.9.14054: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  438.977072][T14212] CPU: 1 UID: 0 PID: 14212 Comm: syz.9.14054 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  438.977114][T14212] Tainted: [W]=WARN
[  438.977121][T14212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  438.977205][T14212] Call Trace:
[  438.977210][T14212]  <TASK>
[  438.977217][T14212]  __dump_stack+0x1d/0x30
[  438.977239][T14212]  dump_stack_lvl+0xe8/0x140
[  438.977259][T14212]  dump_stack+0x15/0x1b
[  438.977345][T14212]  warn_alloc+0x12b/0x1a0
[  438.977377][T14212]  __vmalloc_node_range_noprof+0x9c/0xe00
[  438.977430][T14212]  ? __futex_wait+0x1ff/0x260
[  438.977464][T14212]  ? __pfx_futex_wake_mark+0x10/0x10
[  438.977653][T14212]  ? __rcu_read_unlock+0x4f/0x70
[  438.977675][T14212]  ? avc_has_perm_noaudit+0x1b1/0x200
[  438.977703][T14212]  ? should_fail_ex+0x30/0x280
[  438.977762][T14212]  ? xskq_create+0x36/0xe0
[  438.977784][T14212]  vmalloc_user_noprof+0x7d/0xb0
[  438.977814][T14212]  ? xskq_create+0x80/0xe0
[  438.977858][T14212]  xskq_create+0x80/0xe0
[  438.977880][T14212]  xsk_init_queue+0x95/0xf0
[  438.977923][T14212]  xsk_setsockopt+0x477/0x640
[  438.978010][T14212]  ? __pfx_xsk_setsockopt+0x10/0x10
[  438.978030][T14212]  __sys_setsockopt+0x184/0x200
[  438.978058][T14212]  __x64_sys_setsockopt+0x64/0x80
[  438.978123][T14212]  x64_sys_call+0x20ec/0x2ff0
[  438.978257][T14212]  do_syscall_64+0xd2/0x200
[  438.978289][T14212]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  438.978316][T14212]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  438.978347][T14212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.978382][T14212] RIP: 0033:0x7f86591ceec9
[  438.978399][T14212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.978417][T14212] RSP: 002b:00007f8657c37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  438.978438][T14212] RAX: ffffffffffffffda RBX: 00007f8659425fa0 RCX: 00007f86591ceec9
[  438.978462][T14212] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005
[  438.978476][T14212] RBP: 00007f8659251f91 R08: 0000000000000004 R09: 0000000000000000
[  438.978498][T14212] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  438.978512][T14212] R13: 00007f8659426038 R14: 00007f8659425fa0 R15: 00007ffd40b8bf38
[  438.978533][T14212]  </TASK>
[  439.202593][T14212] Mem-Info:
[  439.205708][T14212] active_anon:27795 inactive_anon:41 isolated_anon:0
[  439.205708][T14212]  active_file:27007 inactive_file:3136 isolated_file:0
[  439.205708][T14212]  unevictable:16391 dirty:305 writeback:0
[  439.205708][T14212]  slab_reclaimable:3909 slab_unreclaimable:25667
[  439.205708][T14212]  mapped:28986 shmem:17121 pagetables:1338
[  439.205708][T14212]  sec_pagetables:0 bounce:0
[  439.205708][T14212]  kernel_misc_reclaimable:0
[  439.205708][T14212]  free:1777024 free_pcp:52101 free_cma:0
[  439.251333][T14212] Node 0 active_anon:111180kB inactive_anon:164kB active_file:108028kB inactive_file:12544kB unevictable:65564kB isolated(anon):0kB isolated(file):0kB mapped:115944kB dirty:1220kB writeback:0kB shmem:68484kB kernel_stack:4736kB pagetables:5352kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  439.279703][T14212] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  439.308935][T14212] lowmem_reserve[]: 0 2883 7862 7862
[  439.314409][T14212] Node 0 DMA32 free:2949288kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2952820kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  439.344717][T14212] lowmem_reserve[]: 0 0 4978 4978
[  439.349803][T14212] Node 0 Normal free:4146024kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:111964kB inactive_anon:164kB active_file:107928kB inactive_file:12524kB unevictable:65564kB writepending:1236kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:200924kB local_pcp:10140kB free_cma:0kB
[  439.382625][T14212] lowmem_reserve[]: 0 0 0 0
[  439.387150][T14212] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  439.400038][T14212] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949288kB
[  439.416370][T14212] Node 0 Normal: 88*4kB (ME) 677*8kB (UME) 1025*16kB (UM) 601*32kB (UM) 1209*64kB (UME) 439*128kB (UME) 210*256kB (UM) 106*512kB (UME) 48*1024kB (UME) 73*2048kB (UM) 896*4096kB (UM) = 4151672kB
[  439.435975][T14212] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  439.445364][T14212] 63789 total pagecache pages
[  439.450069][T14212] 74 pages in swap cache
[  439.454499][T14212] Free swap  = 124700kB
[  439.458840][T14212] Total swap = 124996kB
[  439.463003][T14212] 2097051 pages RAM
[  439.466813][T14212] 0 pages HighMem/MovableOnly
[  439.471473][T14212] 80446 pages reserved
[  439.537795][T14244] netlink: 'syz.0.14060': attribute type 13 has an invalid length.
[  439.545780][T14244] netlink: 'syz.0.14060': attribute type 17 has an invalid length.
[  439.600550][T14244] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  439.644131][T14215] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  440.081823][T14346] SELinux: security_context_str_to_sid (Ö) failed with errno=-22
[  441.108983][T14473] netdevsim netdevsim2: Direct firmware load for ..€ failed with error -2
[  441.289127][T14533] netlink: 'syz.9.14142': attribute type 13 has an invalid length.
[  441.297150][T14533] netlink: 'syz.9.14142': attribute type 17 has an invalid length.
[  441.365132][T14533] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  441.398029][T14471] netlink: 'syz.4.14125': attribute type 13 has an invalid length.
[  441.406051][T14471] netlink: 'syz.4.14125': attribute type 17 has an invalid length.
[  441.425321][T14471] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  441.486432][T14555] loop9: detected capacity change from 0 to 512
[  441.525098][T14555] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  441.620556][T14582] netlink: 'syz.2.14161': attribute type 13 has an invalid length.
[  441.627684][ T9316] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.628592][T14582] netlink: 'syz.2.14161': attribute type 17 has an invalid length.
[  441.689869][T14582] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  441.929922][T14619] loop2: detected capacity change from 0 to 1764
[  442.374722][T14643] netlink: 'syz.1.14176': attribute type 13 has an invalid length.
[  442.374737][T14643] netlink: 'syz.1.14176': attribute type 17 has an invalid length.
[  442.465974][   T29] kauditd_printk_skb: 413 callbacks suppressed
[  442.465988][   T29] audit: type=1326 audit(454.841:16117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f86591c5d67 code=0x7ffc0000
[  442.466125][   T29] audit: type=1326 audit(454.841:16118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f865916af79 code=0x7ffc0000
[  442.466249][   T29] audit: type=1326 audit(454.841:16119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  442.496243][   T29] audit: type=1326 audit(454.872:16120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f86591c5d67 code=0x7ffc0000
[  442.564520][   T29] audit: type=1326 audit(454.872:16121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f865916af79 code=0x7ffc0000
[  442.587604][   T29] audit: type=1326 audit(454.872:16122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  442.611354][T14643] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  442.612876][   T29] audit: type=1326 audit(454.977:16123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f86591c5d67 code=0x7ffc0000
[  442.649760][   T29] audit: type=1326 audit(454.977:16124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f865916af79 code=0x7ffc0000
[  442.649785][   T29] audit: type=1326 audit(454.977:16125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  442.699553][   T29] audit: type=1326 audit(455.029:16126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14585 comm="syz.9.14160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f86591c5d67 code=0x7ffc0000
[  442.817671][T14662] netlink: 32 bytes leftover after parsing attributes in process `syz.0.14182'.
[  442.872504][T14667] bridge0: entered promiscuous mode
[  442.879982][T14667] macvtap1: entered allmulticast mode
[  442.885399][T14667] bridge0: entered allmulticast mode
[  442.892387][T14667] bridge0: port 3(macvtap1) entered blocking state
[  442.899053][T14667] bridge0: port 3(macvtap1) entered disabled state
[  442.914461][T14667] bridge0: left allmulticast mode
[  442.919518][T14667] bridge0: left promiscuous mode
[  443.118042][T14679] loop4: detected capacity change from 0 to 8192
[  443.167557][T14679] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  443.176161][T14679] FAT-fs (loop4): Filesystem has been set read-only
[  443.450886][T14649] Set syz1 is full, maxelem 65536 reached
[  443.661983][T14743] netlink: 24 bytes leftover after parsing attributes in process `syz.9.14213'.
[  443.678083][T14743] netlink: 56 bytes leftover after parsing attributes in process `syz.9.14213'.
[  443.792910][T14761] vhci_hcd: invalid port number 96
[  443.798169][T14761] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  443.929749][T14785] netlink: 24 bytes leftover after parsing attributes in process `syz.2.14225'.
[  443.950818][T14785] netlink: 56 bytes leftover after parsing attributes in process `syz.2.14225'.
[  443.999814][T14802] IPv6: sit1: Disabled Multicast RS
[  444.005825][T14802] sit1: entered allmulticast mode
[  444.031910][T14803] vhci_hcd: invalid port number 96
[  444.037141][T14803] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  444.610540][T14866] vhci_hcd: invalid port number 96
[  444.615692][T14866] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  444.821104][T14888] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  444.870827][T14894] vlan2: entered allmulticast mode
[  444.950139][T14910] netlink: 24 bytes leftover after parsing attributes in process `syz.1.14257'.
[  444.969618][T14910] netlink: 56 bytes leftover after parsing attributes in process `syz.1.14257'.
[  445.300926][T14937] program syz.0.14262 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  445.312655][T14937] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  445.328151][T14942] netlink: 'syz.1.14266': attribute type 10 has an invalid length.
[  445.342594][T14942] team0: Device hsr_slave_0 failed to register rx_handler
[  445.416000][T14957] netlink: 24 bytes leftover after parsing attributes in process `syz.4.14270'.
[  445.433345][T14957] netlink: 56 bytes leftover after parsing attributes in process `syz.4.14270'.
[  445.527869][T14971] loop2: detected capacity change from 0 to 512
[  445.530149][T14972] netlink: 32 bytes leftover after parsing attributes in process `syz.4.14284'.
[  445.535255][T14971] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  445.554874][T14974] vhci_hcd: invalid port number 96
[  445.555133][T14971] EXT4-fs (loop2): 1 truncate cleaned up
[  445.560067][T14974] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  445.566128][T14971] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  445.728328][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.460458][T15016] Set syz1 is full, maxelem 65536 reached
[  446.522794][T15049] bridge0: entered promiscuous mode
[  446.529510][T15049] macvtap1: entered allmulticast mode
[  446.534933][T15049] bridge0: entered allmulticast mode
[  446.543667][T15049] bridge0: port 3(macvtap1) entered blocking state
[  446.550270][T15049] bridge0: port 3(macvtap1) entered disabled state
[  446.560305][T15049] bridge0: left allmulticast mode
[  446.565434][T15049] bridge0: left promiscuous mode
[  446.599046][T15064] loop2: detected capacity change from 0 to 128
[  446.611351][T15060] netlink: 'syz.4.14306': attribute type 1 has an invalid length.
[  446.619349][T15060] netlink: 'syz.4.14306': attribute type 2 has an invalid length.
[  446.639526][T15064] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  446.655963][T15064] EXT4-fs error (device loop2): dx_make_map:1296: inode #2: block 63: comm syz.2.14308: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  446.674797][T15064] EXT4-fs error (device loop2) in do_split:2029: Corrupt filesystem
[  446.683859][T15064] EXT4-fs error (device loop2): htree_dirblock_to_tree:1080: inode #2: block 63: comm syz.2.14308: bad entry in directory: inode out of bounds - offset=2012, inode=128, rec_len=36, size=1024 fake=1
[  446.728420][ T9308] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  446.838897][T15100] ref_ctr increment failed for inode: 0x496 offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff88811ae71140
[  446.852686][T15096] uprobe: syz.2.14318:15096 failed to unregister, leaking uprobe
[  447.335377][T15132] SELinux: failed to load policy
[  447.434590][T15095] Set syz1 is full, maxelem 65536 reached
[  447.498380][   T29] kauditd_printk_skb: 329 callbacks suppressed
[  447.498394][   T29] audit: type=1400 audit(460.121:16456): avc:  denied  { create } for  pid=15141 comm="syz.0.14334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  447.547100][   T29] audit: type=1400 audit(460.121:16457): avc:  denied  { write } for  pid=15141 comm="syz.0.14334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  447.566965][   T29] audit: type=1400 audit(460.153:16458): avc:  denied  { ioctl } for  pid=15139 comm="syz.1.14332" path="socket:[114506]" dev="sockfs" ino=114506 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  447.622396][T15153] loop2: detected capacity change from 0 to 2048
[  447.666699][T15153]  loop2: p1 < > p4
[  447.671519][T15153] loop2: p4 size 8388608 extends beyond EOD, truncated
[  447.692747][   T29] audit: type=1400 audit(460.320:16459): avc:  denied  { append } for  pid=15146 comm="syz.2.14338" name="loop2p4" dev="devtmpfs" ino=1051 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  447.731498][   T29] audit: type=1326 audit(460.362:16460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15169 comm="syz.4.14352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  447.754587][   T29] audit: type=1326 audit(460.362:16461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15169 comm="syz.4.14352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  447.777668][   T29] audit: type=1326 audit(460.362:16462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15169 comm="syz.4.14352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  447.801031][   T29] audit: type=1326 audit(460.362:16463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15169 comm="syz.4.14352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  447.824603][   T29] audit: type=1326 audit(460.362:16464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15169 comm="syz.4.14352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  447.896869][T15193] program syz.1.14348 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  447.906821][T15193] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  447.932458][   T29] audit: type=1326 audit(460.583:16465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15195 comm="syz.4.14349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  447.989340][T15204] pim6reg1: entered promiscuous mode
[  447.994660][T15204] pim6reg1: entered allmulticast mode
[  448.082003][T15218] pim6reg1: entered promiscuous mode
[  448.087440][T15218] pim6reg1: entered allmulticast mode
[  448.107051][T15224] serio: Serial port ptm0
[  448.185685][T15234] ref_ctr increment failed for inode: 0x1cd offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff88810a12d080
[  448.198555][T15235] loop2: detected capacity change from 0 to 128
[  448.204923][T15232] uprobe: syz.1.14361:15232 failed to unregister, leaking uprobe
[  448.216004][T15235] FAT-fs (loop2): bogus logical sector size 767
[  448.222283][T15235] FAT-fs (loop2): Can't find a valid FAT filesystem
[  448.371182][T15270] sd 0:0:1:0: device reset
[  448.396876][T15274] __nla_validate_parse: 7 callbacks suppressed
[  448.396892][T15274] netlink: 12 bytes leftover after parsing attributes in process `syz.4.14366'.
[  448.700799][T15304] loop9: detected capacity change from 0 to 128
[  448.708797][T15252] netlink: 'syz.1.14376': attribute type 13 has an invalid length.
[  448.716763][T15252] netlink: 'syz.1.14376': attribute type 17 has an invalid length.
[  448.736289][T15252] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  448.760019][T15304] syz.9.14377: attempt to access beyond end of device
[  448.760019][T15304] loop9: rw=2049, sector=138, nr_sectors = 112 limit=128
[  448.833587][T15315] netlink: 'syz.0.14381': attribute type 83 has an invalid length.
[  448.939996][T15333] netlink: 12 bytes leftover after parsing attributes in process `syz.9.14386'.
[  449.339344][T15400] loop4: detected capacity change from 0 to 164
[  449.372200][T15400] syz.4.14397: attempt to access beyond end of device
[  449.372200][T15400] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  449.389542][T15400] syz.4.14397: attempt to access beyond end of device
[  449.389542][T15400] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  449.509217][T15355] netlink: 'syz.9.14392': attribute type 13 has an invalid length.
[  449.517261][T15355] netlink: 'syz.9.14392': attribute type 17 has an invalid length.
[  449.546205][T15355] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  449.648903][T15405] loop9: detected capacity change from 0 to 8192
[  449.697389][T15405] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  449.705998][T15405] FAT-fs (loop9): Filesystem has been set read-only
[  450.116997][T15387] Set syz1 is full, maxelem 65536 reached
[  450.251154][T15441] loop2: detected capacity change from 0 to 8192
[  450.316451][T15441] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  450.325077][T15441] FAT-fs (loop2): Filesystem has been set read-only
[  450.871890][T15481] netlink: 'syz.2.14434': attribute type 13 has an invalid length.
[  450.879975][T15481] netlink: 'syz.2.14434': attribute type 17 has an invalid length.
[  450.893477][T15481] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  451.006569][T15565] netlink: 256 bytes leftover after parsing attributes in process `syz.2.14455'.
[  451.029887][T15567] netlink: 132 bytes leftover after parsing attributes in process `syz.9.14456'.
[  451.050180][T15575] netlink: 132 bytes leftover after parsing attributes in process `syz.2.14457'.
[  451.194529][T15582] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  451.343643][T15602] loop9: detected capacity change from 0 to 1024
[  451.363716][T15602] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  451.387698][T15602] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.446575][T15625] netlink: 4 bytes leftover after parsing attributes in process `syz.9.14480'.
[  451.640189][T15640] netlink: 96 bytes leftover after parsing attributes in process `syz.2.14485'.
[  451.682660][T15643] random: crng reseeded on system resumption
[  451.832581][T15667] netlink: 96 bytes leftover after parsing attributes in process `syz.9.14496'.
[  451.858082][T15674] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14497'.
[  451.892978][T15678] netlink: 40 bytes leftover after parsing attributes in process `syz.4.14500'.
[  451.927438][T15683] loop4: detected capacity change from 0 to 128
[  451.948974][T15683] msdos: Unknown parameter 'Ä\pwÔìñ^ò‡!þ…þ1T"ìóÙ;‚5ò¡@¤\/h(J°<éWi µ“}¸'
[  452.042965][T15697] loop2: detected capacity change from 0 to 1024
[  452.068667][T15697] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  452.110974][T15697] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.271040][   T29] kauditd_printk_skb: 386 callbacks suppressed
[  452.271055][   T29] audit: type=1326 audit(465.129:16852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.302144][   T29] audit: type=1326 audit(465.129:16853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.325432][   T29] audit: type=1326 audit(465.129:16854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.348677][   T29] audit: type=1326 audit(465.129:16855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.371822][   T29] audit: type=1326 audit(465.129:16856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.395003][   T29] audit: type=1326 audit(465.129:16857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.418081][   T29] audit: type=1326 audit(465.129:16858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.441226][   T29] audit: type=1326 audit(465.129:16859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.464342][   T29] audit: type=1326 audit(465.129:16860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.487375][   T29] audit: type=1326 audit(465.129:16861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15724 comm="syz.9.14518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  452.872446][T15775] loop2: detected capacity change from 0 to 512
[  452.886264][T15775] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  452.894410][T15775] EXT4-fs (loop2): orphan cleanup on readonly fs
[  452.901259][T15775] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  452.916567][T15775] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  452.925212][T15775] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.14537: bg 0: block 40: padding at end of block bitmap is not set
[  452.947692][T15782] SELinux: ebitmap: truncated map
[  452.952399][T15775] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  452.954100][T15782] SELinux: failed to load policy
[  452.962941][T15775] EXT4-fs (loop2): 1 truncate cleaned up
[  452.972589][T15775] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  452.997627][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.022298][T15790] netlink: 'syz.2.14542': attribute type 56 has an invalid length.
[  453.030427][T15790] netlink: 'syz.2.14542': attribute type 1 has an invalid length.
[  453.229387][T15832] program syz.2.14560 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  453.290468][T15843] __nla_validate_parse: 9 callbacks suppressed
[  453.290481][T15843] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14565'.
[  453.559321][T15870] tipc: Started in network mode
[  453.564282][T15870] tipc: Node identity ac14140f, cluster identity 4711
[  453.572809][T15870] tipc: New replicast peer: 255.255.255.255
[  453.578890][T15870] tipc: Enabled bearer <udp:syz2>, priority 10
[  453.647130][T15878] netlink: 20 bytes leftover after parsing attributes in process `syz.0.14580'.
[  453.659500][T15880] SELinux: failed to load policy
[  453.717509][T15890] ip6gretap1: entered allmulticast mode
[  453.876261][   T10] hid_parser_main: 8 callbacks suppressed
[  453.876280][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.889453][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.897032][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.906943][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.914496][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.922050][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.929466][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.936896][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.944311][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.951769][   T10] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  453.969469][   T10] hid-generic 0000:0000:0000.001B: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz1
[  453.991367][T15921] loop2: detected capacity change from 0 to 1024
[  454.007323][T15921] EXT4-fs: Ignoring removed bh option
[  454.014957][T15921] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  454.030051][T15921] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.046658][T15921] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  454.074038][T15939] IPv6: Can't replace route, no match found
[  454.085161][T15940] loop4: detected capacity change from 0 to 1024
[  454.092650][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.102158][T15940] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  454.113183][T15940] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  454.124870][T15940] JBD2: no valid journal superblock found
[  454.130638][T15940] EXT4-fs (loop4): Could not load journal inode
[  454.149351][T15940] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  454.432191][T15989] loop2: detected capacity change from 0 to 512
[  454.449882][T15989] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  454.476607][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.638410][ T8093] tipc: Node number set to 2886997007
[  454.823362][T16006] loop9: detected capacity change from 0 to 512
[  454.839462][T16006] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  454.847533][T16006] EXT4-fs (loop9): orphan cleanup on readonly fs
[  454.854092][T16006] EXT4-fs warning (device loop9): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  454.869216][T16006] EXT4-fs (loop9): Cannot turn on quotas: error -117
[  454.876404][T16006] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.14625: bg 0: block 40: padding at end of block bitmap is not set
[  454.890940][T16006] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  454.901166][T16006] EXT4-fs (loop9): 1 truncate cleaned up
[  454.907231][T16006] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  454.929350][ T9316] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  455.296966][T16026] loop2: detected capacity change from 0 to 128
[  455.303486][T16026] msdos: Unknown parameter 'Ä\pwÔìñ^ò‡!þ…þ1T"ìóÙ;‚5ò¡@¤\/h(J°<éWi µ“}¸'
[  456.465814][T16072] loop2: detected capacity change from 0 to 164
[  456.474056][T16072] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  456.484302][T16072] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  456.493489][T16072] Symlink component flag not implemented
[  456.499175][T16072] Symlink component flag not implemented
[  456.506580][T16072] Symlink component flag not implemented (7)
[  456.512552][T16072] Symlink component flag not implemented (116)
[  456.678753][T16092] netlink: 16 bytes leftover after parsing attributes in process `syz.2.14657'.
[  456.711566][T16096] syzkaller1: entered promiscuous mode
[  456.717089][T16096] syzkaller1: entered allmulticast mode
[  456.847761][T16120] kernel read not supported for file /policy (pid: 16120 comm: syz.9.14667)
[  456.851808][T16124] loop4: detected capacity change from 0 to 1024
[  456.863764][T16124] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  456.874704][T16124] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  456.885388][T16124] JBD2: no valid journal superblock found
[  456.891263][T16124] EXT4-fs (loop4): Could not load journal inode
[  456.901308][T16124] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  457.335186][   T29] kauditd_printk_skb: 116 callbacks suppressed
[  457.335202][   T29] audit: type=1326 audit(470.451:16976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.347112][T16158] loop9: detected capacity change from 0 to 32768
[  457.372932][   T29] audit: type=1326 audit(470.483:16977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.396130][   T29] audit: type=1326 audit(470.483:16978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.419227][   T29] audit: type=1326 audit(470.483:16979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.442313][   T29] audit: type=1326 audit(470.483:16980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.465418][   T29] audit: type=1326 audit(470.483:16981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.488591][   T29] audit: type=1326 audit(470.483:16982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.511753][   T29] audit: type=1326 audit(470.483:16983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.534878][   T29] audit: type=1326 audit(470.483:16984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.558138][   T29] audit: type=1326 audit(470.483:16985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16169 comm="syz.4.14687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f341d1ceec9 code=0x7ffc0000
[  457.681110][T16187] loop9: detected capacity change from 0 to 1024
[  457.688330][T16187] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  457.699432][T16187] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  457.710073][T16187] JBD2: no valid journal superblock found
[  457.715840][T16187] EXT4-fs (loop9): Could not load journal inode
[  457.727195][T16187] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  457.768021][T16198] syz_tun: entered allmulticast mode
[  457.774810][T16197] syz_tun: left allmulticast mode
[  457.869530][T16212] loop4: detected capacity change from 0 to 512
[  457.920467][T16219] syzkaller1: entered promiscuous mode
[  457.926083][T16219] syzkaller1: entered allmulticast mode
[  457.937357][T16212] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  457.992601][T13560] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.036005][T16232] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  458.043252][T16232] IPv6: NLM_F_CREATE should be set when creating new route
[  458.108213][T16238] loop2: detected capacity change from 0 to 128
[  458.145586][T16238] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  458.189062][ T9308] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  458.215269][T16253] loop2: detected capacity change from 0 to 1024
[  458.233137][T16253] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  458.251759][T16253] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  458.268598][T16253] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[  458.281033][T16253] EXT4-fs (loop2): This should not happen!! Data will be lost
[  458.281033][T16253] 
[  458.290702][T16253] EXT4-fs (loop2): Total free blocks count 0
[  458.296783][T16253] EXT4-fs (loop2): Free/Dirty block details
[  458.302748][T16253] EXT4-fs (loop2): free_blocks=20480
[  458.308164][T16253] EXT4-fs (loop2): dirty_blocks=96
[  458.313432][T16253] EXT4-fs (loop2): Block reservation details
[  458.319597][T16253] EXT4-fs (loop2): i_reserved_data_blocks=6
[  458.370840][   T31] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  458.805915][T16292] loop2: detected capacity change from 0 to 1024
[  458.815607][T16292] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  458.826707][T16292] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  458.857511][T16300] loop9: detected capacity change from 0 to 128
[  458.869368][T16300] EXT4-fs: Ignoring removed nobh option
[  458.877574][T16292] JBD2: no valid journal superblock found
[  458.883349][T16292] EXT4-fs (loop2): Could not load journal inode
[  458.892046][T16300] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  458.961732][ T9316] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  458.979354][T16292] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  459.019434][T16312] netlink: 24 bytes leftover after parsing attributes in process `syz.2.14734'.
[  459.035330][T16310] loop9: detected capacity change from 0 to 1024
[  459.051153][T16310] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.128086][ T4797] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  459.143299][ T4797] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 320 with error 28
[  459.155685][ T4797] EXT4-fs (loop9): This should not happen!! Data will be lost
[  459.155685][ T4797] 
[  459.165334][ T4797] EXT4-fs (loop9): Total free blocks count 0
[  459.171307][ T4797] EXT4-fs (loop9): Free/Dirty block details
[  459.177299][ T4797] EXT4-fs (loop9): free_blocks=68451041280
[  459.183114][ T4797] EXT4-fs (loop9): dirty_blocks=320
[  459.188301][ T4797] EXT4-fs (loop9): Block reservation details
[  459.194325][ T4797] EXT4-fs (loop9): i_reserved_data_blocks=20
[  459.203018][ T9316] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.227818][T16317] netlink: 60 bytes leftover after parsing attributes in process `syz.2.14736'.
[  459.237056][T16317] netlink: 60 bytes leftover after parsing attributes in process `syz.2.14736'.
[  459.275980][T16317] netlink: 60 bytes leftover after parsing attributes in process `syz.2.14736'.
[  459.285094][T16317] netlink: 60 bytes leftover after parsing attributes in process `syz.2.14736'.
[  459.329834][T16317] netlink: 60 bytes leftover after parsing attributes in process `syz.2.14736'.
[  459.338965][T16317] netlink: 60 bytes leftover after parsing attributes in process `syz.2.14736'.
[  459.671208][T16366] loop2: detected capacity change from 0 to 128
[  459.693410][T16366] EXT4-fs: Ignoring removed nobh option
[  459.713485][T16366] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  459.761254][ T9308] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  459.787424][T16378] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14750'.
[  459.798387][T16378] IPVS: Error joining to the multicast group
[  460.041223][T16408] rdma_op ffff8881328bcd80 conn xmit_rdma 0000000000000000
[  460.300029][T16436] pimreg: entered allmulticast mode
[  460.306783][T16437] pimreg: left allmulticast mode
[  460.373740][T16450] loop9: detected capacity change from 0 to 128
[  460.424475][T16456] loop4: detected capacity change from 0 to 128
[  460.478563][T16456] syz.4.14785: attempt to access beyond end of device
[  460.478563][T16456] loop4: rw=0, sector=121, nr_sectors = 920 limit=128
[  460.631409][T16471] loop4: detected capacity change from 0 to 128
[  460.637919][T16471] EXT4-fs: Ignoring removed nobh option
[  460.644912][T16471] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  460.667574][T13560] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  460.787293][T16483] hub 2-0:1.0: USB hub found
[  460.792297][T16483] hub 2-0:1.0: 8 ports detected
[  460.800259][T16479] loop4: detected capacity change from 0 to 2048
[  460.806899][T16479] EXT4-fs: Ignoring removed i_version option
[  460.821516][T16479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  460.931381][T16491] loop2: detected capacity change from 0 to 1024
[  460.938186][T16491] EXT4-fs: Ignoring removed orlov option
[  460.949242][T16491] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  460.990124][T13560] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.213993][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.230562][T16519] chnl_net:caif_netlink_parms(): no params data found
[  465.265900][T16519] bridge0: port 1(bridge_slave_0) entered blocking state
[  465.272987][T16519] bridge0: port 1(bridge_slave_0) entered disabled state
[  465.280174][T16519] bridge_slave_0: entered allmulticast mode
[  465.286577][T16519] bridge_slave_0: entered promiscuous mode
[  465.293295][T16519] bridge0: port 2(bridge_slave_1) entered blocking state
[  465.300437][T16519] bridge0: port 2(bridge_slave_1) entered disabled state
[  465.307685][T16519] bridge_slave_1: entered allmulticast mode
[  465.314051][T16519] bridge_slave_1: entered promiscuous mode
[  465.330877][T16519] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  465.341190][T16519] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  465.361586][T16519] team0: Port device team_slave_0 added
[  465.368103][T16519] team0: Port device team_slave_1 added
[  465.384086][T16519] batman_adv: batadv0: Adding interface: batadv_slave_0
[  465.391124][T16519] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  465.417171][T16519] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  465.428383][T16519] batman_adv: batadv0: Adding interface: batadv_slave_1
[  465.435402][T16519] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  465.461382][T16519] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  465.488131][T16519] hsr_slave_0: entered promiscuous mode
[  465.494014][T16519] hsr_slave_1: entered promiscuous mode
[  465.499887][T16519] debugfs: 'hsr0' already exists in 'hsr'
[  465.505591][T16519] Cannot create hsr debugfs directory
[  465.588300][   T29] kauditd_printk_skb: 81 callbacks suppressed
[  465.588315][   T29] audit: type=1400 audit(479.112:17067): avc:  denied  { getopt } for  pid=16844 comm="syz.2.14798" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  465.647501][T16858] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  465.655513][T16858] SELinux: failed to load policy
[  465.757432][T16519] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  465.766783][T16519] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  465.776444][T16519] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  465.792446][T16519] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  465.796450][   T29] audit: type=1326 audit(479.322:17068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16894 comm="syz.2.14812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  465.822204][   T29] audit: type=1326 audit(479.322:17069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16898 comm="syz.0.14810" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f201fb6eec9 code=0x0
[  465.844777][   T29] audit: type=1326 audit(479.322:17070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16894 comm="syz.2.14812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  465.867858][   T29] audit: type=1326 audit(479.322:17071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16894 comm="syz.2.14812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  465.890900][   T29] audit: type=1326 audit(479.322:17072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16894 comm="syz.2.14812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  465.981026][   T29] audit: type=1400 audit(479.521:17073): avc:  denied  { read } for  pid=16908 comm="syz.4.14815" path="socket:[119238]" dev="sockfs" ino=119238 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  466.012866][T16519] bridge0: port 2(bridge_slave_1) entered blocking state
[  466.019975][T16519] bridge0: port 2(bridge_slave_1) entered forwarding state
[  466.027323][T16519] bridge0: port 1(bridge_slave_0) entered blocking state
[  466.034379][T16519] bridge0: port 1(bridge_slave_0) entered forwarding state
[  466.104028][T16922] SELinux: ebitmap: truncated map
[  466.110679][T16922] SELinux: failed to load policy
[  466.124149][T16519] 8021q: adding VLAN 0 to HW filter on device bond0
[  466.138370][ T4796] bridge0: port 1(bridge_slave_0) entered disabled state
[  466.147966][   T29] audit: type=1400 audit(479.689:17074): avc:  denied  { read } for  pid=16923 comm="syz.4.14820" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  466.171193][ T4796] bridge0: port 2(bridge_slave_1) entered disabled state
[  466.180302][T16926] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14820'.
[  466.196172][T16519] 8021q: adding VLAN 0 to HW filter on device team0
[  466.207501][ T4768] bridge0: port 1(bridge_slave_0) entered blocking state
[  466.214593][ T4768] bridge0: port 1(bridge_slave_0) entered forwarding state
[  466.235462][ T4768] bridge0: port 2(bridge_slave_1) entered blocking state
[  466.242554][ T4768] bridge0: port 2(bridge_slave_1) entered forwarding state
[  466.339930][   T29] audit: type=1400 audit(479.899:17075): avc:  denied  { watch } for  pid=16944 comm="syz.9.14826" path="/proc/620/task/621" dev="proc" ino=119349 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  466.354084][T16519] 8021q: adding VLAN 0 to HW filter on device batadv0
[  466.413826][   T29] audit: type=1326 audit(479.983:17076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16952 comm="syz.9.14828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86591ceec9 code=0x7ffc0000
[  466.487141][T16519] veth0_vlan: entered promiscuous mode
[  466.497895][T16519] veth1_vlan: entered promiscuous mode
[  466.517555][T16519] veth0_macvtap: entered promiscuous mode
[  466.526291][T16966] netlink: 'syz.9.14833': attribute type 3 has an invalid length.
[  466.535064][T16519] veth1_macvtap: entered promiscuous mode
[  466.551134][T16519] batman_adv: batadv0: Interface activated: batadv_slave_0
[  466.566502][T16519] batman_adv: batadv0: Interface activated: batadv_slave_1
[  466.614181][   T31] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  466.642688][   T31] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  466.666709][   T31] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  466.681438][   T31] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  466.697884][T16981] loop3: detected capacity change from 0 to 128
[  466.705378][T16981] EXT4-fs: Ignoring removed nobh option
[  466.714591][T16981] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  466.727040][T16977] vhci_hcd: invalid port number 96
[  466.732174][T16977] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  466.741091][T16519] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  466.966065][T17020] netlink: 28 bytes leftover after parsing attributes in process `syz.2.14852'.
[  466.999057][T17020] netem: change failed
[  467.063472][T17028] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14855'.
[  467.072590][T17028] netlink: 28 bytes leftover after parsing attributes in process `syz.2.14855'.
[  467.081795][T17028] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14855'.
[  467.133119][T17028] netlink: 28 bytes leftover after parsing attributes in process `syz.2.14855'.
[  467.142226][T17028] netlink: 'syz.2.14855': attribute type 6 has an invalid length.
[  467.312755][T17048] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.408592][T16382] Process accounting resumed
[  467.728553][T17092] loop4: detected capacity change from 0 to 128
[  467.825084][T17099] loop4: detected capacity change from 0 to 8192
[  467.869285][T17099]  loop4: p1 p2[DM] p4
[  467.873435][T17099] loop4: p1 size 196608 extends beyond EOD, truncated
[  467.881338][T17099] loop4: p2 start 4292936063 is beyond EOD, truncated
[  467.888164][T17099] loop4: p4 size 50331648 extends beyond EOD, truncated
[  468.024272][T17123] ipvlan2: entered promiscuous mode
[  468.031824][T17123] bridge0: port 3(ipvlan2) entered blocking state
[  468.038316][T17123] bridge0: port 3(ipvlan2) entered disabled state
[  468.045311][T17123] ipvlan2: entered allmulticast mode
[  468.050698][T17123] bridge0: entered allmulticast mode
[  468.061837][T17123] ipvlan2: left allmulticast mode
[  468.066894][T17123] bridge0: left allmulticast mode
[  468.078180][T17131] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14894'.
[  468.095470][T17133] loop9: detected capacity change from 0 to 164
[  468.106928][T17133] syz.9.14893: attempt to access beyond end of device
[  468.106928][T17133] loop9: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  468.112209][T17131] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14894'.
[  468.123611][T17133] syz.9.14893: attempt to access beyond end of device
[  468.123611][T17133] loop9: rw=0, sector=263328, nr_sectors = 4 limit=164
[  468.399361][T17048] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.577475][T17171] SELinux: ebitmap: truncated map
[  468.592039][T17171] SELinux: failed to load policy
[  468.624371][T17174] C: renamed from team_slave_0 (while UP)
[  468.663583][T17174] netlink: 152 bytes leftover after parsing attributes in process `syz.0.14906'.
[  468.676892][T17176] loop2: detected capacity change from 0 to 4096
[  468.684267][T17176] EXT4-fs: Ignoring removed nomblk_io_submit option
[  468.698905][T17176] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  468.802097][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.842312][T17168] Set syz1 is full, maxelem 65536 reached
[  469.099485][T17211] IPVS: stopping master sync thread 17214 ...
[  469.105792][T17214] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  469.202806][T17222] loop9: detected capacity change from 0 to 128
[  469.210150][T17222] EXT4-fs: Ignoring removed nobh option
[  469.230665][T17222] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  469.252565][T17228] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14925'.
[  469.265536][   T31] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  469.289697][   T31] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  469.299527][   T31] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  469.308456][ T4793] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  469.358003][ T9316] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  469.377148][T17235] 0ªX¹¦À: renamed from caif0
[  469.384198][T17235] 0ªX¹¦À: entered allmulticast mode
[  469.389524][T17235] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  469.568666][T17275] loop9: detected capacity change from 0 to 512
[  469.586857][T17275] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  469.651989][ T9316] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.744301][T17048] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.846368][T17048] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.948974][ T4797] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  469.993455][ T4797] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  470.010517][ T4797] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  470.037843][T17356] loop3: detected capacity change from 0 to 128
[  470.044276][ T4797] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  470.061124][T17356] FAT-fs (loop3): Directory bread(block 162) failed
[  470.067754][T17356] FAT-fs (loop3): Directory bread(block 163) failed
[  470.079583][T17356] FAT-fs (loop3): Directory bread(block 164) failed
[  470.086361][T17356] FAT-fs (loop3): Directory bread(block 165) failed
[  470.100559][T17361] loop2: detected capacity change from 0 to 764
[  470.109671][T17356] FAT-fs (loop3): Directory bread(block 166) failed
[  470.116496][T17356] FAT-fs (loop3): Directory bread(block 167) failed
[  470.138142][T17361] rock: directory entry would overflow storage
[  470.143895][T17356] FAT-fs (loop3): Directory bread(block 168) failed
[  470.144310][T17361] rock: sig=0x4f50, size=4, remaining=3
[  470.151064][T17356] FAT-fs (loop3): Directory bread(block 169) failed
[  470.156472][T17361] iso9660: Corrupted directory entry in block 6 of inode 1792
[  470.197776][T17356] FAT-fs (loop3): Directory bread(block 162) failed
[  470.205228][T17356] FAT-fs (loop3): Directory bread(block 163) failed
[  470.219009][T17356] syz.3.14968: attempt to access beyond end of device
[  470.219009][T17356] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[  470.234023][T17356] syz.3.14968: attempt to access beyond end of device
[  470.234023][T17356] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[  470.327488][T17390] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  470.473008][   T29] kauditd_printk_skb: 199 callbacks suppressed
[  470.473022][   T29] audit: type=1326 audit(484.245:17276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.515146][   T29] audit: type=1326 audit(484.277:17277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.538308][   T29] audit: type=1326 audit(484.277:17278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.561436][   T29] audit: type=1326 audit(484.277:17279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.584550][   T29] audit: type=1326 audit(484.277:17280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.607607][   T29] audit: type=1326 audit(484.287:17281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.630645][   T29] audit: type=1326 audit(484.287:17282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.653684][   T29] audit: type=1326 audit(484.287:17283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.676710][   T29] audit: type=1326 audit(484.287:17284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.713630][   T29] audit: type=1326 audit(484.287:17285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17418 comm="syz.2.14995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd3f5c6eec9 code=0x7ffc0000
[  470.954010][T17455] __nla_validate_parse: 9 callbacks suppressed
[  470.954026][T17455] netlink: 36 bytes leftover after parsing attributes in process `syz.9.15008'.
[  470.988504][T17458] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15011'.
[  471.044617][T17463] loop3: detected capacity change from 0 to 512
[  471.052964][T17463] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  471.072891][T17463] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.15015: invalid indirect mapped block 4294967295 (level 0)
[  471.083882][T17464] loop4: detected capacity change from 0 to 128
[  471.095980][T17463] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.15015: invalid indirect mapped block 4294967295 (level 1)
[  471.097612][T17464] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  471.118026][T17464] FAT-fs (loop4): Filesystem has been set read-only
[  471.136186][T17464] syz.4.15014: attempt to access beyond end of device
[  471.136186][T17464] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  471.150239][T17464] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  471.158087][T17464] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  471.166052][T17463] EXT4-fs (loop3): 1 orphan inode deleted
[  471.171780][T17463] EXT4-fs (loop3): 1 truncate cleaned up
[  471.177811][T17463] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  471.178392][T17477] syz.4.15014: attempt to access beyond end of device
[  471.178392][T17477] loop4: rw=0, sector=2065, nr_sectors = 1 limit=128
[  471.203326][T17477] Buffer I/O error on dev loop4, logical block 2065, async page read
[  471.215758][T17477] syz.4.15014: attempt to access beyond end of device
[  471.215758][T17477] loop4: rw=0, sector=2066, nr_sectors = 1 limit=128
[  471.229235][T17477] Buffer I/O error on dev loop4, logical block 2066, async page read
[  471.241571][T17477] syz.4.15014: attempt to access beyond end of device
[  471.241571][T17477] loop4: rw=0, sector=2067, nr_sectors = 1 limit=128
[  471.254949][T17477] Buffer I/O error on dev loop4, logical block 2067, async page read
[  471.272557][T17477] syz.4.15014: attempt to access beyond end of device
[  471.272557][T17477] loop4: rw=0, sector=2068, nr_sectors = 1 limit=128
[  471.285908][T17477] Buffer I/O error on dev loop4, logical block 2068, async page read
[  471.294435][T17477] syz.4.15014: attempt to access beyond end of device
[  471.294435][T17477] loop4: rw=0, sector=2069, nr_sectors = 1 limit=128
[  471.295329][T16519] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.307788][T17477] Buffer I/O error on dev loop4, logical block 2069, async page read
[  471.324983][T17477] Buffer I/O error on dev loop4, logical block 2070, async page read
[  471.350990][T17487] netlink: 'syz.0.15021': attribute type 10 has an invalid length.
[  471.361442][T17477] Buffer I/O error on dev loop4, logical block 2071, async page read
[  471.370094][T17487] ipvlan0: entered allmulticast mode
[  471.375547][T17487] veth0_vlan: entered allmulticast mode
[  471.381335][T17477] Buffer I/O error on dev loop4, logical block 2072, async page read
[  471.390653][T17487] team0: Device ipvlan0 failed to register rx_handler
[  471.397633][T17464] Buffer I/O error on dev loop4, logical block 2065, async page read
[  471.407612][T17464] Buffer I/O error on dev loop4, logical block 2066, async page read
[  471.616795][T17513] 9p: Unknown access argument Š: -22
[  471.747557][T17525] loop9: detected capacity change from 0 to 1024
[  471.777738][T17525] EXT4-fs: Ignoring removed orlov option
[  471.783433][T17525] EXT4-fs: Ignoring removed nomblk_io_submit option
[  471.790282][T17521] syzkaller0: entered allmulticast mode
[  471.817926][T17521] syzkaller0: entered promiscuous mode
[  471.828919][T17521] syzkaller0 (unregistering): left allmulticast mode
[  471.835843][T17521] syzkaller0 (unregistering): left promiscuous mode
[  471.845368][T17525] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  471.876559][ T9316] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.950831][T17562] netlink: 64 bytes leftover after parsing attributes in process `syz.0.15048'.
[  471.972069][T17568] smc: net device bond0 applied user defined pnetid SYZ0
[  471.998411][T17574] syzkaller1: entered promiscuous mode
[  472.003978][T17574] syzkaller1: entered allmulticast mode
[  472.022066][T17568] smc: net device bond0 erased user defined pnetid SYZ0
[  472.091804][T17588] loop3: detected capacity change from 0 to 128
[  472.110351][T17588] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  472.118302][T17588] FAT-fs (loop3): Filesystem has been set read-only
[  472.125021][T17593] loop2: detected capacity change from 0 to 1024
[  472.133332][T17588] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  472.141225][T17588] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  472.142675][T17597] syzkaller0: entered allmulticast mode
[  472.149949][T17593] EXT4-fs: Ignoring removed orlov option
[  472.160513][T17593] EXT4-fs: Ignoring removed nomblk_io_submit option
[  472.169956][T17597] syzkaller0: entered promiscuous mode
[  472.179051][T17597] syzkaller0 (unregistering): left allmulticast mode
[  472.186186][T17597] syzkaller0 (unregistering): left promiscuous mode
[  472.199010][T17593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  472.237777][ T9308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.290488][T17608] netlink: 4 bytes leftover after parsing attributes in process `syz.9.15062'.
[  472.299564][T17608] Unsupported xt match
[  472.299572][T17608] unable to load match
[  472.431237][T17632] netlink: 288 bytes leftover after parsing attributes in process `syz.9.15066'.
[  472.869961][T17588] bio_check_eod: 105403 callbacks suppressed
[  472.869976][T17588] syz.3.15057: attempt to access beyond end of device
[  472.869976][T17588] loop3: rw=0, sector=2066, nr_sectors = 1 limit=128
[  472.908103][T17588] syz.3.15057: attempt to access beyond end of device
[  472.908103][T17588] loop3: rw=0, sector=2067, nr_sectors = 1 limit=128
[  472.940303][T17588] syz.3.15057: attempt to access beyond end of device
[  472.940303][T17588] loop3: rw=0, sector=2068, nr_sectors = 1 limit=128
[  472.958011][T17588] syz.3.15057: attempt to access beyond end of device
[  472.958011][T17588] loop3: rw=0, sector=2069, nr_sectors = 1 limit=128
[  472.971493][T17588] syz.3.15057: attempt to access beyond end of device
[  472.971493][T17588] loop3: rw=0, sector=2070, nr_sectors = 1 limit=128
[  472.985139][T17588] syz.3.15057: attempt to access beyond end of device
[  472.985139][T17588] loop3: rw=0, sector=2071, nr_sectors = 1 limit=128
[  472.998552][T17588] syz.3.15057: attempt to access beyond end of device
[  472.998552][T17588] loop3: rw=0, sector=2072, nr_sectors = 1 limit=128
[  473.035035][T17688] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  473.054416][T17688] bridge_slave_1: left allmulticast mode
[  473.060268][T17688] bridge_slave_1: left promiscuous mode
[  473.066312][T17688] bridge0: port 2(bridge_slave_1) entered disabled state
[  473.074980][T17688] bridge_slave_0: left allmulticast mode
[  473.080760][T17688] bridge_slave_0: left promiscuous mode
[  473.086429][T17688] bridge0: port 1(bridge_slave_0) entered disabled state
[  473.092656][T17696] loop3: detected capacity change from 0 to 512
[  473.102367][T17696] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  473.113031][T17696] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  473.124899][T17696] EXT4-fs (loop3): orphan cleanup on readonly fs
[  473.131860][T17696] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.15087: Invalid block bitmap block 0 in block_group 0
[  473.147519][T17696] EXT4-fs (loop3): Remounting filesystem read-only
[  473.154536][T17696] EXT4-fs (loop3): 1 orphan inode deleted
[  473.161478][T17696] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  473.192412][T16519] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.245108][T17714] netlink: 12 bytes leftover after parsing attributes in process `syz.4.15093'.
[  473.797864][T17803] loop9: detected capacity change from 0 to 256
[  473.830390][T17803] FAT-fs (loop9): Directory bread(block 64) failed
[  473.838766][T17803] FAT-fs (loop9): Directory bread(block 65) failed
[  473.846695][T17803] FAT-fs (loop9): Directory bread(block 66) failed
[  473.855129][T17803] FAT-fs (loop9): Directory bread(block 67) failed
[  473.878511][T17803] FAT-fs (loop9): Directory bread(block 68) failed
[  473.892889][T17803] FAT-fs (loop9): Directory bread(block 69) failed
[  473.905196][T17803] FAT-fs (loop9): Directory bread(block 70) failed
[  473.920114][T17803] FAT-fs (loop9): Directory bread(block 71) failed
[  473.933280][T17803] FAT-fs (loop9): Directory bread(block 72) failed
[  473.949900][T17803] FAT-fs (loop9): Directory bread(block 73) failed
[  474.097443][T17829] netlink: 'syz.0.15137': attribute type 10 has an invalid length.
[  474.115153][T17829] bond0: (slave dummy0): Releasing backup interface
[  474.134350][T17829] team0: Port device dummy0 added
[  474.171190][T17829] netlink: 'syz.0.15137': attribute type 10 has an invalid length.
[  474.181474][T17832] netlink: 12 bytes leftover after parsing attributes in process `syz.2.15138'.
[  474.218744][T17829] team0: Port device dummy0 removed
[  474.230514][T17829] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  474.440574][T17853] loop9: detected capacity change from 0 to 1024
[  474.448863][T17858] netlink: 'syz.2.15149': attribute type 3 has an invalid length.
[  474.473397][T17853] ext4: Unknown parameter 'uid<00000000000000000000'
[  474.607808][T17875] loop9: detected capacity change from 0 to 1024
[  474.619224][T17875] EXT4-fs: Ignoring removed nomblk_io_submit option
[  474.643092][T17875] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  474.680718][T17882] SELinux: failed to load policy
[  474.708434][T17875] loop9: detected capacity change from 1024 to 64
[  474.730960][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.748260][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.789659][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.803897][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.817500][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.829538][T17896] loop4: detected capacity change from 0 to 512
[  474.832486][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.851508][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.854339][T17896] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  474.865121][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.888644][T17896] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  474.888661][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.888779][ T9316] EXT4-fs warning (device loop9): ext4_empty_dir:3080: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  474.888798][T17896] ==================================================================
[  474.888826][T17896] BUG: KCSAN: data-race in data_push_tail / vsnprintf
[  474.888863][T17896] 
[  474.888869][T17896] write to 0xffffffff88e34800 of 9 bytes by task 9316 on cpu 0:
[  474.888887][T17896]  vsnprintf+0x2ce/0x890
[  474.888911][T17896]  pointer+0x833/0xcf0
[  474.888932][T17896]  vsnprintf+0x491/0x890
[  474.888951][T17896]  vscnprintf+0x41/0x90
[  474.888971][T17896]  printk_sprint+0x30/0x2d0
[  474.888992][T17896]  vprintk_store+0x599/0x860
[  474.889009][T17896]  vprintk_emit+0x178/0x650
[  474.889025][T17896]  vprintk_default+0x26/0x30
[  474.889040][T17896]  vprintk+0x1d/0x30
[  474.889063][T17896]  _printk+0x79/0xa0
[  474.889088][T17896]  __ext4_warning+0x12b/0x140
[  474.889117][T17896]  __ext4_read_dirblock+0xe4/0x4f0
[  474.889141][T17896]  ext4_empty_dir+0x143/0x600
[  474.889164][T17896]  ext4_rmdir+0x1df/0x640
[  474.889188][T17896]  vfs_rmdir+0x279/0x330
[  474.889209][T17896]  do_rmdir+0x178/0x440
[  474.889237][T17896]  __x64_sys_unlinkat+0x86/0xb0
[  474.889257][T17896]  x64_sys_call+0x2ede/0x2ff0
[  474.889281][T17896]  do_syscall_64+0xd2/0x200
[  474.889315][T17896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.889335][T17896] 
[  474.889342][T17896] read to 0xffffffff88e34800 of 8 bytes by task 17896 on cpu 1:
[  474.889357][T17896]  data_push_tail+0xfd/0x420
[  474.889383][T17896]  data_alloc+0xbf/0x2b0
[  474.889408][T17896]  prb_reserve+0x808/0xaf0
[  474.889433][T17896]  vprintk_store+0x56d/0x860
[  474.889452][T17896]  vprintk_emit+0x178/0x650
[  474.889472][T17896]  vprintk_default+0x26/0x30
[  474.889492][T17896]  vprintk+0x1d/0x30
[  474.889517][T17896]  _printk+0x79/0xa0
[  474.889543][T17896]  __ext4_msg+0x18f/0x1a0
[  474.889575][T17896]  ext4_setup_super+0x6b/0x580
[  474.889595][T17896]  ext4_fill_super+0x28b9/0x35d0
[  474.889625][T17896]  get_tree_bdev_flags+0x28e/0x300
[  474.889648][T17896]  get_tree_bdev+0x1f/0x30
[  474.889668][T17896]  ext4_get_tree+0x1c/0x30
[  474.889697][T17896]  vfs_get_tree+0x57/0x1d0
[  474.889721][T17896]  do_new_mount+0x207/0x5e0
[  474.889740][T17896]  path_mount+0x4a4/0xb20
[  474.889760][T17896]  __se_sys_mount+0x28f/0x2e0
[  474.889779][T17896]  __x64_sys_mount+0x67/0x80
[  474.889797][T17896]  x64_sys_call+0x2b4d/0x2ff0
[  474.889817][T17896]  do_syscall_64+0xd2/0x200
[  474.889843][T17896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.889862][T17896] 
[  474.889868][T17896] value changed: 0x00000000fffffb59 -> 0x30206b636f6c626c
[  474.889882][T17896] 
[  474.889888][T17896] Reported by Kernel Concurrency Sanitizer on:
[  474.889904][T17896] CPU: 1 UID: 0 PID: 17896 Comm: syz.4.15160 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  474.889937][T17896] Tainted: [W]=WARN
[  474.889945][T17896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  474.889959][T17896] ==================================================================
[  475.201711][T17896] EXT4-fs (loop4): orphan cleanup on readonly fs
[  475.208532][T17896] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.15160: Invalid block bitmap block 0 in block_group 0
[  475.210416][T14744] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.222509][T17896] EXT4-fs (loop4): Remounting filesystem read-only
[  475.238122][T17896] EXT4-fs (loop4): 1 orphan inode deleted
[  475.244800][T17896] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  475.265328][T17879] kmmpd-loop9: attempt to access beyond end of device
[  475.265328][T17879] loop9: rw=14337, sector=128, nr_sectors = 2 limit=64
[  475.331056][T13560] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.