last executing test programs:

57.535789159s ago: executing program 3 (id=1252):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000006000000bca30000000000002403000020feffff620af0fff8ffffff71a4f2ff000000000f03000000000000e5000300000000002604fdffff02000016010000033800001d13f8ff000000007a0af0ff0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae"], 0x0}, 0x94)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x3a, 0x8, 0x2}, 0x48)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0xfffffffe, 0x8}}]}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x68, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff1, 0x4}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_ACT={0x34}]}}]}, 0x68}}, 0x0)

57.396360791s ago: executing program 3 (id=1257):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg$unix(r4, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x2000)
sendmsg$inet(r3, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0x1}], 0x1}, 0x0)

57.234480034s ago: executing program 3 (id=1263):
unshare(0x22020400)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
r4 = syz_clone(0x16040000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x10000000)

57.183887498s ago: executing program 3 (id=1265):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000040)='./file2\x00', 0x800810, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x1f, 0x249, &(0x7f0000000a00)="$eJzs3T9qFGEYBvDXGJM1FqYQbCxGbKwW9QaDRBAHhJUptHIg2mRFmTSj1Z7ATryDF/AGnsJTpEq3kp0hk782mpls5veDMA95GPb9YNnd4vt23977sLP9cff9t1/fYzRKYiViFvsRmwepca25rizyWhw1CwBg2UwmRdr3DFysskyLGxGxfqrJf/QyEAAAAAAAAAAAAP/M/n8AGB77/6++skyLjebz23H2/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD92Z/Pb8//8tf3fADA/+f9HwCG59XrNy/SLNuaJMkoYm9W5VVeX+v+2fNs61GysNnetVdV+fXD/nHdJ0159/7XT4uw0fRPjvfN/Wvx8EHdH3RPX2Yn+vXY7mD9AAAAAAAAAAAAAAAAAAAAcBmMk0Nnnu8fj8/r63Tk+wFOnN9fjVurnS0DAAAAAAAAAAAAAAAAAAAAltru5y87xXT6rmzD71P/GUxILscYXYSb5z8BBKGY9vzCBAAAAAAAAAAAAAAAAAAAA9Qe+u17EgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoT/v7/xcXznzgn3c6XysAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsNz+BAAA//9auV53")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x7, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c675bd9bffbcc2542ded71238259ca171ce1a311ef543dc137661d34f7c700", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204, 0x5]})
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

56.883963822s ago: executing program 3 (id=1271):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x800000, 0x6, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000540), 0x84)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x0)
perf_event_open(&(0x7f0000000400)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x20)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1e, 0x12, 0xffffffffffffffff, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

56.773283161s ago: executing program 3 (id=1275):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x33, &(0x7f0000000000)=ANY=[@ANYBLOB="e90c610faca20180c20000000800450000250000e0"], 0x0)
r2 = socket(0x200000000000011, 0x2, 0x1)
bind$packet(r2, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x6d2969b2, 0x0, 0x0, 0x0, 0x43}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

56.760727562s ago: executing program 32 (id=1275):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x33, &(0x7f0000000000)=ANY=[@ANYBLOB="e90c610faca20180c20000000800450000250000e0"], 0x0)
r2 = socket(0x200000000000011, 0x2, 0x1)
bind$packet(r2, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x6d2969b2, 0x0, 0x0, 0x0, 0x43}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

3.21110583s ago: executing program 4 (id=2199):
r0 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x20003)
pause()
fcntl$setsig(r1, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r2}], 0x2c, 0xffffffffffbffff8)
futex(&(0x7f00000006c0)=0x2, 0x0, 0x2, &(0x7f0000000140)={0x77359400}, 0x0, 0x80000002)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x30, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x6d}, 0x94)
dup2(r1, r2)
fcntl$setown(r1, 0x8, r0)
tkill(r0, 0x13)

2.239115119s ago: executing program 4 (id=2218):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff})
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
fchdir(r4)
open(&(0x7f00000003c0)='.\x00', 0x800, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

2.052902794s ago: executing program 4 (id=2220):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffb}, 0x49)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
syz_open_procfs(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)=ANY=[])
unshare(0x62040200)
r0 = getpid()
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x9, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
umount2(&(0x7f0000000540)='.\x00', 0x9)

1.867417209s ago: executing program 4 (id=2226):
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0xff, 0x5, 0x0, 0x2, 0x44c04, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xfffffffffffffff8, 0x8}, 0x0, 0xc8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000940)={0x0, 0x0, 0x0}, 0x80)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
write$cgroup_subtree(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce8102030400fe08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)

1.866699459s ago: executing program 4 (id=2227):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r0}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

1.816634773s ago: executing program 4 (id=2230):
mq_unlink(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000050000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
setresgid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x2, 0x64, 0x0, 0x0)
r1 = socket$kcm(0x21, 0x2, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e22, @empty}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0xfffffe5e}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0x8000)

1.588747372s ago: executing program 1 (id=2234):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000000)={0x2001}, 0x10)

1.391763547s ago: executing program 0 (id=2237):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x0, &(0x7f0000000780)})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$kcm(0xa, 0x1, 0x106)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r3)
sendmsg$kcm(r2, &(0x7f00000019c0)={&(0x7f00000003c0)=@l2tp6={0xa, 0x0, 0xffffffff, @local, 0x5}, 0x80, 0x0}, 0x24004059)
close(r2)

1.385562968s ago: executing program 1 (id=2238):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
r2 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000b28000)=0x20003)
fcntl$setsig(r3, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r4}], 0x2c, 0xffffffffffbffff8)
dup2(r3, r4)
fcntl$setown(r3, 0x8, r2)
tkill(r2, 0x13)

1.295144076s ago: executing program 0 (id=2239):
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x36e, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r0, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000900)=ANY=[], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000c014}, 0x800)
r3 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)

1.196490364s ago: executing program 5 (id=2241):
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f00000007c0), 0x1, 0x73a, &(0x7f0000000800)="$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")
timer_create(0x3, 0x0, &(0x7f0000001b40)=<r0=>0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000100)={[0x3ffffffe]}, 0x8, 0x80000)
readv(r1, &(0x7f0000000140)=[{&(0x7f0000000240)=""/144, 0x90}], 0x1)
timer_create(0x1, 0x0, &(0x7f0000000000)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000880)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timer_settime(r0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}}, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, 0x0, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
rt_sigaction(0xe, &(0x7f00000000c0)={&(0x7f0000000180)="f30f1efc6645f10f0808c482adbcaf07000000c4e1fd5aa13c9c43713ef2400f1ed3c4c2e93be7f2262e669f8f88a4a2e100430f12957b2c0000653ed9fa", 0x80000004, 0x0, {[0x7ffc]}}, 0x0, 0x8, &(0x7f0000000200))

1.144643288s ago: executing program 1 (id=2242):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000fc0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xe, 0x0, 0x0, 0x0, 0x18}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000740)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x80d, 0x0, 0x10000000, 0x5, 0x4}, 0x1, r5}}]}, {0x0, 0xa}, {0xc}, {0xc, 0x8, {0x2}}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x1}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x4008001}, 0x0)

979.244091ms ago: executing program 1 (id=2243):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x4}, 0x94)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000080)=0x7, 0x4)
syz_emit_ethernet(0x2e, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000001980)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a20000000000a01080000000000000000010000090900010073797a31000000005c000000030a030000000000000000000100000a0900010073797a31000000000900030073797a300000000010000871060001400000000000000afa140004800800014000000001080002400a7b1af20b00030066696c746572"], 0xa4}, 0x1, 0x0, 0x0, 0x24000144}, 0x20000050)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x20000800)

773.018558ms ago: executing program 5 (id=2245):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x47, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, &(0x7f0000000340)=ANY=[], 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000010)

569.725674ms ago: executing program 5 (id=2246):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), 0xffffffffffffffff)
r4 = getuid()
quotactl_fd$Q_SETINFO(0xffffffffffffffff, 0xffffffff80000601, r4, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000040000020f00000005002f000000000008000300", @ANYRES32=r5, @ANYBLOB="2b91204a37da2c18fe8c0010b7f4b215023c4b8b7795b6d4e2c485744a763efd8be602a914010000000ffe7caefc38cdae44aff3b600fd493c39c781afe1184ae903b9a4ea405bb6f6367c08ca6ab3421359d147"], 0x24}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)

500.04792ms ago: executing program 5 (id=2248):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7}, 0x18)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000040)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="580000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000002800128009000100766c616e00000000180002800c0002001f0000001f000000060001000100000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6], 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)

395.361819ms ago: executing program 0 (id=2249):
mmap(&(0x7f00001d8000/0x2000)=nil, 0x2000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x7)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x41032, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
cachestat(r0, &(0x7f0000000040), 0x0, 0x0)

394.734599ms ago: executing program 2 (id=2250):
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, 0x0, 0x0, 0x800, 0x8, 0x0, 0xfffffffe, 0x4, 0x0})
r0 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
bind$llc(r0, &(0x7f0000000000)={0x1a, 0x0, 0x1, 0x0, 0x3, 0x4a}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000380)='kfree\x00', r1}, 0x18)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x25c}}, 0x0)

337.996033ms ago: executing program 2 (id=2251):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'macvlan1\x00', <r5=>0x0})
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f00000004c0)={r5, 0x3, 0x6, @random="5e1cf8b4c253"}, 0x10)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f00000000c0)={r5, 0x3, 0x6, @random="cea0300a1672"}, 0x10)
dup2(r2, r3)

334.521533ms ago: executing program 0 (id=2252):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="00001000252155b21c0012000c000100626f6e64"], 0x3c}}, 0x40000)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x503, 0x0, 0xfffffffc, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x59)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x4, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0)

252.46657ms ago: executing program 5 (id=2253):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
close(r1)
r2 = socket$tipc(0x1e, 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r3, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r3, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x3, 0x0, @vifc_lcl_addr=@local, @local}, 0x10)
syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000))
syz_emit_ethernet(0x2a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0xfb, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x64, 0xd2}}}}}, 0x0)
ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000080)=@get={0x1, 0x0, 0x1000})

251.94557ms ago: executing program 2 (id=2254):
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000b00)=ANY=[@ANYRESDEC, @ANYBLOB="a2ebe12825fc6e67a7e9f29e27090300b9f4f5b3d5b730fc4b24a4b8a51cbead9ae999025f862638cc6c4edb5e64b4bcde14ef663aff258f5610fe13c14f82c3d20f56948c87508fa6f49c57c0c4866a1a99b79002b6f7e2380c9bdf00e52af270b3ea669ab4c7b8f151494628e1906276c7fec8f128a9e4a891d49244b6422bd70cbc6ef980138a3ac53032a9b60c25ebb0231a80d7da4b922a41a08a558e37268ac34ef6a0f39afa6e931e94da66b8f8dd5c8203cefb2b46a8526fd405c91c7801690988f76dc2c04eb36c56ffc02d35ec7bb1f41e5c955c2ed707d9186cbb5f97c975226ca51ea56b6873447913fb81b1c63920ebb27fa9b6906461dd335c6611", @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYBLOB, @ANYRESDEC, @ANYRES64], 0x104}, 0x1, 0x0, 0x0, 0x41}, 0x4048000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
gettid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x5, 0xffffffffffffffff, 0x3)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a00)=ANY=[@ANYBLOB="442300003b0007010100000000000000017c00000400fc802b2301"], 0x2344}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c000)

192.727935ms ago: executing program 5 (id=2255):
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x4000)
sendmmsg$inet(r1, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000140)="94fc3688cbd6fb6105c122ec6ab886a5f59d647f87d65d9c3592b043b47ef482b0353d77dc5d25087958b5", 0x2b}, {&(0x7f0000000300)="f510340a6bc5e2417848da06ec469278a5a03e403852326d8eeb37de3965656c2d38804e104368034c557384a02602514ba77f35d1dbe8c66277da751b15fb22c2f0f97e668f7b884bf993d3127cc4d0e259ac01b165d7e3ad7e78f93cd63e80a3f98698f238283313b71068fe8e3289ae5e9f7f8eac2e309df5756be56c70359a5d932d505d864de23f2ce922f610c2bf58e9f6f0c4223cbc393202bb82ed5191b023fcb4c533b43980cf25", 0xac}, {&(0x7f00000010c0)="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", 0xf2a}], 0x3}}], 0x1, 0x1)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f00000003c0)=@gcm_256={{0x304}, "74c05283a1348b4b", "1cf5a5faf8b5ccf7f96995cc78f3d68a426a5475a68e5c77de9d320ac6db84e7", "5e69db2c", "aaa5c6f27ae3cda6"}, 0x38)
recvmmsg(r0, &(0x7f0000001040)=[{{0x0, 0x0, 0x0}, 0x2002}, {{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f00000007c0)=""/94, 0x5e}], 0x1}, 0x4}], 0x2, 0x40000002, 0x0)

164.959907ms ago: executing program 2 (id=2256):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000006c8b, 0x37}, 0x7, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f00000003c0), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = io_uring_setup(0x1fb8, &(0x7f0000000540)={0x0, 0x1ae0, 0x400, 0x0, 0xea})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f0000000940)=[{0x0}], 0x1)
syz_clone3(&(0x7f0000000000)={0x285002400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x46)
io_uring_register$IORING_REGISTER_FILES(r3, 0x1e, &(0x7f0000000000)=[r3], 0x1)

146.692998ms ago: executing program 2 (id=2257):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0xfffffffffffffd95, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000540)='kfree\x00', r4, 0x0, 0x1}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x70bd2b, 0x10000, {0x0, 0x0, 0x0, r3, {0x1}, {}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)

113.363861ms ago: executing program 1 (id=2258):
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r1=>0x0})
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000006c8b, 0x37}, 0x7, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc9aa}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f00000003c0), &(0x7f00000001c0)=r2}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x300, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c000000100003052cbd7000fedbdf2500000020", @ANYRES32=0x0, @ANYBLOB="0000000000080400240012800b0001006d61637365630000140002800500060000000000050007000000000008000500", @ANYRES32=r1], 0x4c}}, 0x0)

105.980071ms ago: executing program 0 (id=2259):
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x972, &(0x7f0000006680))
syz_io_uring_setup(0x83d, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x4, 0x4, 0xa, 0x40}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

54.931066ms ago: executing program 0 (id=2260):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000140)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@quota}, {@resuid}, {@lazytime}]}, 0x1, 0x445, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000010240), 0x5a)
write(r2, &(0x7f00000009c0)="3bf58d7d45d32cfe1da7c797b82f16713d1cb80b3fa1bda74e3977b40e7af46b4c60b70d7a79ed5d8c48f52a50185980", 0x30)
sendfile(r2, r0, 0x0, 0x3ffff)
sendfile(r2, r0, 0x0, 0x7fffeffd)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

50.214986ms ago: executing program 1 (id=2261):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x80004, 0x10510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x5, 0x6, 0x20005, 0x5, 0x0, 0x0, 0x0, 0x2000000a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
truncate(&(0x7f0000000640)='./file0\x00', 0x2)

0s ago: executing program 2 (id=2262):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
get_mempolicy(0x0, 0x0, 0x203, &(0x7f0000394000/0x3000)=nil, 0x3)

kernel console output (not intermixed with test programs):

106.595466][ T7131] netlink: 1347 bytes leftover after parsing attributes in process `syz.4.1289'.
[  106.708910][ T7138] loop5: detected capacity change from 0 to 1024
[  106.740284][ T7138] EXT4-fs: Ignoring removed orlov option
[  106.779078][ T7141] ip6gre1: entered allmulticast mode
[  106.960357][ T7138] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.993931][ T7138] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  107.605553][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.620946][   T29] kauditd_printk_skb: 330 callbacks suppressed
[  107.620962][   T29] audit: type=1326 audit(2000000043.540:4407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.650661][   T29] audit: type=1326 audit(2000000043.540:4408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.676175][ T7154] loop0: detected capacity change from 0 to 128
[  107.685950][   T29] audit: type=1326 audit(2000000043.600:4409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.709573][   T29] audit: type=1326 audit(2000000043.600:4410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.733057][   T29] audit: type=1326 audit(2000000043.600:4411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.756628][   T29] audit: type=1326 audit(2000000043.600:4412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.780053][   T29] audit: type=1326 audit(2000000043.600:4413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.803514][   T29] audit: type=1326 audit(2000000043.600:4414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.827114][   T29] audit: type=1326 audit(2000000043.600:4415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.850681][   T29] audit: type=1326 audit(2000000043.600:4416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7149 comm="syz.4.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  107.879288][ T7158] syz.0.1294: attempt to access beyond end of device
[  107.879288][ T7158] loop0: rw=2049, sector=145, nr_sectors = 32 limit=128
[  107.909037][ T7158] syz.0.1294: attempt to access beyond end of device
[  107.909037][ T7158] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[  107.977125][ T7160] loop5: detected capacity change from 0 to 1024
[  107.991714][ T7158] syz.0.1294: attempt to access beyond end of device
[  107.991714][ T7158] loop0: rw=2049, sector=201, nr_sectors = 24 limit=128
[  107.992888][ T7160] EXT4-fs: Ignoring removed orlov option
[  108.029803][ T7160] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.120043][ T7158] syz.0.1294: attempt to access beyond end of device
[  108.120043][ T7158] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[  108.168065][ T7158] syz.0.1294: attempt to access beyond end of device
[  108.168065][ T7158] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[  108.233991][ T7158] syz.0.1294: attempt to access beyond end of device
[  108.233991][ T7158] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[  108.272799][ T7154] syz.0.1294: attempt to access beyond end of device
[  108.272799][ T7154] loop0: rw=2049, sector=297, nr_sectors = 8 limit=128
[  108.325597][ T7158] syz.0.1294: attempt to access beyond end of device
[  108.325597][ T7158] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[  108.891320][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.613603][ T7214] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  109.631603][ T7213] tipc: Resetting bearer <eth:syzkaller0>
[  109.679483][ T7213] tipc: Disabling bearer <eth:syzkaller0>
[  109.708850][ T7223] wg2: left promiscuous mode
[  109.713547][ T7223] wg2: left allmulticast mode
[  109.731411][ T7223] wg2: entered promiscuous mode
[  109.736370][ T7223] wg2: entered allmulticast mode
[  109.814202][ T7225] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.853072][ T7225] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.875210][ T7225] bond0: (slave dummy0): Releasing backup interface
[  109.898096][ T7225] batman_adv: batadv0: Adding interface: dummy0
[  109.904500][ T7225] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.929762][ T7225] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  110.372591][ T7240] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1315'.
[  110.382889][ T7240] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1315'.
[  110.391908][ T7240] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1315'.
[  110.464403][ T7242] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.476200][ T7242] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.687565][ T7255] batman_adv: batadv0: Removing interface: dummy0
[  110.696751][ T7255] bridge_slave_0: left allmulticast mode
[  110.702414][ T7255] bridge_slave_0: left promiscuous mode
[  110.708464][ T7255] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.719503][ T7255] bridge_slave_1: left promiscuous mode
[  110.725107][ T3680] nci: nci_rsp_packet: unknown rsp opcode 0x73a
[  110.725351][ T7255] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.740480][ T7255] bond0: (slave bond_slave_0): Releasing backup interface
[  110.748966][ T7255] bond0: (slave bond_slave_1): Releasing backup interface
[  110.758180][ T7255] team0: Port device team_slave_0 removed
[  110.765284][ T7255] team0: Port device team_slave_1 removed
[  110.771327][ T7255] batman_adv: batadv0: Removing interface: batadv_slave_0
[  110.781318][ T7255] batman_adv: batadv0: Removing interface: batadv_slave_1
[  110.791464][ T7255] bond1: (slave batadv1): Releasing active interface
[  110.845197][ T7258] netlink: '+}[@': attribute type 13 has an invalid length.
[  110.880129][ T7258] 8021q: adding VLAN 0 to HW filter on device bond0
[  110.889116][ T7258] 8021q: adding VLAN 0 to HW filter on device team0
[  110.900608][ T7258] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  111.276346][ T7262] Set syz1 is full, maxelem 65536 reached
[  111.461370][ T7274] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1329'.
[  111.473326][ T7274] ip6gre1: entered allmulticast mode
[  111.516255][ T7278] netlink: 'syz.1.1331': attribute type 1 has an invalid length.
[  111.539200][ T7278] bond2: entered promiscuous mode
[  111.544330][ T7278] bond2: entered allmulticast mode
[  111.604060][ T7278] geneve4: entered allmulticast mode
[  111.674971][ T7278] bond2: (slave geneve4): making interface the new active one
[  111.682513][ T7278] geneve4: entered promiscuous mode
[  111.719706][ T7285] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1331'.
[  111.722746][ T7278] bond2: (slave geneve4): Enslaving as an active interface with an up link
[  111.738339][ T7285] bond2: left promiscuous mode
[  111.743271][ T7285] geneve4: left promiscuous mode
[  111.748371][ T7285] bond2: left allmulticast mode
[  111.755875][ T7285] 8021q: adding VLAN 0 to HW filter on device bond2
[  111.765055][ T3676] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  111.782957][ T7287] loop5: detected capacity change from 0 to 128
[  111.789440][ T3676] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  111.805646][ T3676] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  111.824027][ T3676] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  111.846701][ T7085] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  111.854735][ T7085] FAT-fs (loop5): Filesystem has been set read-only
[  112.029102][ T7297] loop5: detected capacity change from 0 to 512
[  112.047995][ T7297] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #3: comm syz.5.1339: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  112.068581][ T7297] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1339: Bad quota inode: 3, type: 0
[  112.080139][ T7297] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  112.097097][ T7297] EXT4-fs (loop5): mount failed
[  112.354186][ T7308] loop4: detected capacity change from 0 to 1024
[  112.361057][ T7308] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.376800][ T7308] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.453030][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.690887][   T29] kauditd_printk_skb: 142 callbacks suppressed
[  112.690904][   T29] audit: type=1326 audit(2000000048.610:4559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  112.762021][   T29] audit: type=1326 audit(2000000048.650:4560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  112.785508][   T29] audit: type=1326 audit(2000000048.650:4561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  112.802863][ T7324] loop4: detected capacity change from 0 to 1024
[  112.809025][   T29] audit: type=1326 audit(2000000048.650:4562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  112.838672][   T29] audit: type=1326 audit(2000000048.650:4563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  112.862144][   T29] audit: type=1326 audit(2000000048.650:4564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff486530b07 code=0x7ffc0000
[  112.885549][   T29] audit: type=1326 audit(2000000048.650:4565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7ff486530a7c code=0x7ffc0000
[  112.885890][ T7324] EXT4-fs: Ignoring removed orlov option
[  112.908877][   T29] audit: type=1326 audit(2000000048.650:4566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7ff4865309b4 code=0x7ffc0000
[  112.908969][   T29] audit: type=1326 audit(2000000048.650:4567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff48652d84a code=0x7ffc0000
[  112.961181][   T29] audit: type=1326 audit(2000000048.650:4568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7320 comm="syz.1.1349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  112.995165][ T7324] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.010881][ T7326] syzkaller0: entered allmulticast mode
[  113.048826][ T7328] bridge0: entered promiscuous mode
[  113.066498][ T7328] bridge0: port 3(macsec1) entered blocking state
[  113.074920][ T7328] bridge0: port 3(macsec1) entered disabled state
[  113.085180][ T7328] macsec1: entered allmulticast mode
[  113.090940][ T7328] bridge0: entered allmulticast mode
[  113.102342][ T7328] macsec1: left allmulticast mode
[  113.108073][ T7328] bridge0: left allmulticast mode
[  113.119091][ T7328] bridge0: left promiscuous mode
[  113.166431][ T7326] syzkaller0: entered promiscuous mode
[  113.176688][ T7330] syzkaller0 (unregistering): left allmulticast mode
[  113.183606][ T7330] syzkaller0 (unregistering): left promiscuous mode
[  113.304598][ T7338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  113.306319][ T7334] ��
: port 1(erspan0) entered blocking state
[  113.319134][ T7334] ��
: port 1(erspan0) entered disabled state
[  113.326657][ T7338] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  113.357039][ T7334] erspan0: entered allmulticast mode
[  113.364978][ T7334] erspan0: entered promiscuous mode
[  113.371623][ T7336] batman_adv: batadv0: Adding interface: dummy0
[  113.377931][ T7336] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.403284][ T7336] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  113.433352][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.206251][ T7360] netlink: 'syz.2.1364': attribute type 1 has an invalid length.
[  114.219661][ T7360] bond1: entered promiscuous mode
[  114.224903][ T7360] bond1: entered allmulticast mode
[  114.230274][ T7361] syzkaller0: entered allmulticast mode
[  114.238601][ T7360] geneve3: entered allmulticast mode
[  114.245822][ T7360] bond1: (slave geneve3): making interface the new active one
[  114.253329][ T7360] geneve3: entered promiscuous mode
[  114.262175][ T7360] bond1: (slave geneve3): Enslaving as an active interface with an up link
[  114.272654][ T7361] syzkaller0: entered promiscuous mode
[  114.282461][ T7360] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1364'.
[  114.283190][ T7364] SELinux:  policydb version -957581230 does not match my version range 15-35
[  114.301109][ T7364] SELinux: failed to load policy
[  114.307138][ T7361] syzkaller0 (unregistering): left allmulticast mode
[  114.314021][ T7361] syzkaller0 (unregistering): left promiscuous mode
[  114.364544][ T7360] bond1: left promiscuous mode
[  114.369488][ T7360] geneve3: left promiscuous mode
[  114.374649][ T7360] bond1: left allmulticast mode
[  114.380646][ T7360] 8021q: adding VLAN 0 to HW filter on device bond1
[  114.453966][ T7373] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1369'.
[  114.492083][ T7373] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  114.516657][ T7373] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  114.526266][ T7376] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.536272][ T7373] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1369'.
[  114.606509][ T7376] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.659189][ T7376] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.699453][ T7376] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.774352][ T3674] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.798558][ T3674] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.813933][ T3674] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.830908][ T3674] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.848013][ T7381] netlink: 'syz.0.1372': attribute type 1 has an invalid length.
[  114.869328][ T7381] 8021q: adding VLAN 0 to HW filter on device bond3
[  114.909796][ T7389] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  114.921125][ T7388] IPVS: stopping master sync thread 7389 ...
[  114.928898][ T7381] bond3: (slave ip6erspan0): making interface the new active one
[  114.940847][ T7381] bond3: (slave ip6erspan0): Enslaving as an active interface with an up link
[  115.058885][ T7399] netlink: 'syz.0.1381': attribute type 1 has an invalid length.
[  115.075393][ T7399] bond4: entered promiscuous mode
[  115.080503][ T7399] bond4: entered allmulticast mode
[  115.148436][ T7399] geneve2: entered allmulticast mode
[  115.161936][ T7399] bond4: (slave geneve2): making interface the new active one
[  115.169738][ T7399] geneve2: entered promiscuous mode
[  115.185947][ T7399] bond4: (slave geneve2): Enslaving as an active interface with an up link
[  115.199481][ T7399] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1381'.
[  115.209357][ T7399] bond4: left promiscuous mode
[  115.214232][ T7399] geneve2: left promiscuous mode
[  115.219281][ T7399] bond4: left allmulticast mode
[  115.230728][ T7399] 8021q: adding VLAN 0 to HW filter on device bond4
[  115.328082][ T7412] SELinux:  policydb version -957581230 does not match my version range 15-35
[  115.342533][ T7412] SELinux: failed to load policy
[  115.360658][ T7414] loop0: detected capacity change from 0 to 1024
[  115.367722][ T7414] EXT4-fs: Ignoring removed nobh option
[  115.376407][ T7414] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  115.387816][ T7414] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.1389: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  115.409434][ T7414] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1389: couldn't read orphan inode 11 (err -117)
[  115.427621][ T7414] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.457667][ T7414] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1389: Invalid block bitmap block 0 in block_group 0
[  115.474833][ T7414] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1389: Failed to acquire dquot type 0
[  115.592228][ T3693] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm kworker/u8:49: Invalid inode table block 8589934593 in block_group 0
[  115.610290][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.663541][ T7432] vhci_hcd: invalid port number 254
[  115.863750][ T7437] loop5: detected capacity change from 0 to 1024
[  115.870547][ T7437] EXT4-fs: Ignoring removed nomblk_io_submit option
[  115.884202][ T7437] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.916037][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.008293][ T7447] loop5: detected capacity change from 0 to 128
[  116.016633][ T7447] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  116.029460][ T7447] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.055665][ T7085] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  116.316107][ T7459] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1404'.
[  116.453488][ T7475] netlink: 'syz.4.1408': attribute type 4 has an invalid length.
[  117.439111][ T7507] loop4: detected capacity change from 0 to 8192
[  117.592861][ T7515] loop5: detected capacity change from 0 to 1024
[  117.606494][ T7515] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.677373][ T7522] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.1426'.
[  117.687065][ T7515] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.1426'.
[  117.725141][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.763691][ T7532] loop5: detected capacity change from 0 to 512
[  117.773483][ T7532] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  117.795832][ T7532] EXT4-fs (loop5): orphan cleanup on readonly fs
[  117.808151][ T7532] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.1431: bad orphan inode 15
[  117.815012][   T29] kauditd_printk_skb: 403 callbacks suppressed
[  117.815030][   T29] audit: type=1326 audit(2000000053.730:4970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  117.860227][ T7532] ext4_test_bit(bit=14, block=18) = 1
[  117.865716][ T7532] is_bad_inode(inode)=0
[  117.869955][ T7532] NEXT_ORPHAN(inode)=1023
[  117.874301][ T7532] max_ino=32
[  117.877515][ T7532] i_nlink=0
[  117.883797][ T7532] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #15: comm syz.5.1431: corrupted xattr block 19: e_value size too large
[  117.904362][ T7541] loop0: detected capacity change from 0 to 128
[  117.927582][   T29] audit: type=1326 audit(2000000053.770:4971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  117.951377][   T29] audit: type=1326 audit(2000000053.770:4972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  117.974951][   T29] audit: type=1326 audit(2000000053.770:4973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  117.998476][   T29] audit: type=1326 audit(2000000053.770:4974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  118.001902][ T7532] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  118.021960][   T29] audit: type=1326 audit(2000000053.770:4975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  118.022003][   T29] audit: type=1326 audit(2000000053.780:4976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  118.061803][ T7532] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  118.077871][   T29] audit: type=1326 audit(2000000053.780:4977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  118.077909][   T29] audit: type=1326 audit(2000000053.780:4978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  118.078009][   T29] audit: type=1326 audit(2000000053.780:4979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz.4.1433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcbeb3ebe9 code=0x7ffc0000
[  118.190053][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.259690][ T7556] netlink: 'syz.1.1440': attribute type 1 has an invalid length.
[  118.275215][ T7556] 8021q: adding VLAN 0 to HW filter on device bond3
[  118.293965][ T7556] 8021q: adding VLAN 0 to HW filter on device batadv2
[  118.304680][ T7556] bond3: (slave batadv2): making interface the new active one
[  118.313651][ T7556] bond3: (slave batadv2): Enslaving as an active interface with an up link
[  118.875079][ T7582] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1450'.
[  118.945139][ T7584] loop4: detected capacity change from 0 to 128
[  119.353755][ T7602] loop5: detected capacity change from 0 to 8192
[  119.394016][ T7602]  loop5: p1 p2[DM] p4
[  119.401114][ T7602] loop5: p1 size 196608 extends beyond EOD, truncated
[  119.434006][ T7602] loop5: p2 start 4292936063 is beyond EOD, truncated
[  119.440839][ T7602] loop5: p4 size 50331648 extends beyond EOD, truncated
[  119.517492][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119bd6400: rx timeout, send abort
[  119.525743][    C0] vcan0: j1939_tp_rxtimer: 0xffff888119bd6c00: rx timeout, send abort
[  119.534228][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888119bd6400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  119.548528][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888119bd6c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  119.596720][ T7605] netlink: 'syz.2.1459': attribute type 10 has an invalid length.
[  119.606921][ T7605] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1459'.
[  119.618401][ T7605] dummy0: entered promiscuous mode
[  119.632890][ T7605] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  119.671825][    T9] hid_parser_main: 18 callbacks suppressed
[  119.671872][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  119.688764][    T9] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  119.704624][ T7607] loop2: detected capacity change from 0 to 1024
[  119.713463][ T7607] EXT4-fs: Ignoring removed nomblk_io_submit option
[  119.721811][ T7607] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  119.733406][ T7607] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.790410][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.998184][ T7617] pim6reg1: entered promiscuous mode
[  120.003593][ T7617] pim6reg1: entered allmulticast mode
[  120.065865][ T7623] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1467'.
[  120.087394][ T7623] loop2: detected capacity change from 0 to 512
[  120.097402][ T7627] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1469'.
[  120.097932][ T7623] EXT4-fs (loop2): 1 truncate cleaned up
[  120.113834][ T7623] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.156312][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.170408][ T7630] loop5: detected capacity change from 0 to 512
[  120.177585][ T7630] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  120.591372][ T7651] pim6reg1: entered promiscuous mode
[  120.596925][ T7651] pim6reg1: entered allmulticast mode
[  120.708209][ T7658] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1482'.
[  120.767844][ T7658] loop5: detected capacity change from 0 to 512
[  120.791935][ T7658] EXT4-fs (loop5): 1 truncate cleaned up
[  120.799143][ T7658] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.858407][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.018364][ T7667] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1484'.
[  121.030025][ T7665] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1484'.
[  121.178657][ T7677] 
@�: renamed from bond_slave_0
[  121.265836][ T3362] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  121.276600][ T3362] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  121.296837][ T7681] loop4: detected capacity change from 0 to 1024
[  121.303963][ T7681] EXT4-fs: Ignoring removed nomblk_io_submit option
[  121.310989][ T7681] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  121.328047][ T7681] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.345813][ T7684] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1487'.
[  121.366440][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.569014][ T7699] loop2: detected capacity change from 0 to 1024
[  121.603595][ T7699] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.671183][ T7702] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1496'.
[  121.681394][ T7699] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1496'.
[  121.708934][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.185130][ T7740] loop2: detected capacity change from 0 to 8192
[  122.211023][ T7740] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1514'.
[  122.254208][ T7743] loop2: detected capacity change from 0 to 512
[  122.267703][ T7743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.280724][ T7743] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.335227][ T7749] netlink: 'syz.4.1517': attribute type 10 has an invalid length.
[  122.344916][ T7749] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1517'.
[  122.355196][ T7749] dummy0: entered promiscuous mode
[  122.361715][ T7749] bridge0: port 1(dummy0) entered blocking state
[  122.361811][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.380256][ T7749] bridge0: port 1(dummy0) entered disabled state
[  122.393187][ T7749] dummy0: entered allmulticast mode
[  122.415666][ T7749] bridge0: port 1(dummy0) entered blocking state
[  122.423797][ T7749] bridge0: port 1(dummy0) entered forwarding state
[  122.474414][ T7757] netlink: 'syz.2.1520': attribute type 1 has an invalid length.
[  122.526268][ T7767] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1520'.
[  122.529940][ T7757] 8021q: adding VLAN 0 to HW filter on device bond2
[  122.535801][ T7759] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1521'.
[  122.558428][ T7767] vlan0: entered promiscuous mode
[  122.563706][ T7767] bond2: entered promiscuous mode
[  122.569182][ T7766] 
: renamed from bond0 (while UP)
[  122.591918][ T7769] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1524'.
[  122.601953][ T7757] bond2: (slave dummy0): making interface the new active one
[  122.610680][ T7757] bond2: (slave dummy0): Enslaving as an active interface with an up link
[  122.655017][ T7769] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7769 comm=syz.4.1524
[  122.682980][ T7769] netlink: 'syz.4.1524': attribute type 1 has an invalid length.
[  122.729325][ T7780] loop4: detected capacity change from 0 to 512
[  122.739559][ T7780] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  122.860849][ T7787] loop0: detected capacity change from 0 to 512
[  122.867942][ T7787] ext4: Unknown parameter '"'
[  122.897910][ T7789] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  122.932930][ T7792] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1536'.
[  122.986916][   T29] kauditd_printk_skb: 664 callbacks suppressed
[  122.986936][   T29] audit: type=1400 audit(2000000058.910:5644): avc:  denied  { setopt } for  pid=7794 comm="syz.5.1537" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  123.037683][   T29] audit: type=1400 audit(2000000058.910:5645): avc:  denied  { checkpoint_restore } for  pid=7794 comm="syz.5.1537" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  123.102233][   T29] audit: type=1326 audit(2000000059.020:5646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7803 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  123.110092][ T7805] loop5: detected capacity change from 0 to 2048
[  123.125788][   T29] audit: type=1326 audit(2000000059.020:5647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7803 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  123.155651][   T29] audit: type=1326 audit(2000000059.020:5648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7803 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  123.179321][   T29] audit: type=1326 audit(2000000059.050:5649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7803 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  123.202899][   T29] audit: type=1326 audit(2000000059.050:5650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7803 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  123.226504][   T29] audit: type=1326 audit(2000000059.050:5651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7803 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  123.250049][   T29] audit: type=1326 audit(2000000059.050:5652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7803 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  123.273533][   T29] audit: type=1326 audit(2000000059.050:5653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7803 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  123.305875][ T7805]  loop5: p1 < > p4
[  123.310581][ T7805] loop5: p4 size 8388608 extends beyond EOD, truncated
[  123.365852][ T7815] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1546'.
[  123.921820][ T7867] loop0: detected capacity change from 0 to 8192
[  124.094272][ T7853] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.101549][ T7853] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.180276][ T7875] loop2: detected capacity change from 0 to 512
[  124.210676][ T7875] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[  124.336090][ T7853] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  124.360113][ T7853] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  124.445669][ T3662] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.471099][ T3662] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.498387][ T3662] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.510706][ T3662] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.976304][ T7904] netlink: 'syz.1.1580': attribute type 10 has an invalid length.
[  124.987919][ T7904] dummy0: entered promiscuous mode
[  125.015245][ T7904] bond0: (slave dummy0): Releasing backup interface
[  125.054091][ T7904] bridge0: port 5(dummy0) entered blocking state
[  125.061592][ T7904] bridge0: port 5(dummy0) entered disabled state
[  125.071134][ T7904] dummy0: entered allmulticast mode
[  125.144389][ T7912] netlink: 'syz.1.1584': attribute type 1 has an invalid length.
[  125.157290][ T7910] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.180830][ T7912] 8021q: adding VLAN 0 to HW filter on device bond4
[  125.201046][ T7912] bond4: (slave geneve5): making interface the new active one
[  125.210103][ T7912] bond4: (slave geneve5): Enslaving as an active interface with an up link
[  125.232786][ T7917] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7917 comm=syz.5.1586
[  125.279531][ T7910] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.366499][ T7910] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.383831][ T7928] veth1_to_bond: entered allmulticast mode
[  125.391146][ T7928] bond0: (slave bond_slave_1): Releasing backup interface
[  125.404061][ T7928] veth1_to_bond (unregistering): left allmulticast mode
[  125.435965][ T7910] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.517556][ T3693] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.541934][ T3693] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.579293][ T3693] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.597904][ T3693] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  125.650466][ T7943] netlink: 'syz.5.1596': attribute type 1 has an invalid length.
[  125.673582][ T7945] loop0: detected capacity change from 0 to 512
[  125.686476][ T7940] wireguard0: entered promiscuous mode
[  125.694923][ T7940] wireguard0: entered allmulticast mode
[  125.697167][ T7945] EXT4-fs: Ignoring removed mblk_io_submit option
[  125.718759][ T7945] EXT4-fs: Ignoring removed nomblk_io_submit option
[  125.733635][ T7945] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  125.742095][ T7945] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  125.766198][ T7943] 8021q: adding VLAN 0 to HW filter on device bond1
[  125.782308][ T7945] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.1597: Allocating blocks 41-42 which overlap fs metadata
[  125.783064][ T7947] bond1 (unregistering): Released all slaves
[  125.802231][ T7945] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.1597: Allocating blocks 41-42 which overlap fs metadata
[  125.816431][ T7945] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1597: Failed to acquire dquot type 1
[  125.829963][ T7945] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  125.844623][ T7945] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #12: comm syz.0.1597: corrupted inode contents
[  125.857256][ T7945] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #12: comm syz.0.1597: mark_inode_dirty error
[  125.871472][ T7945] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #12: comm syz.0.1597: corrupted inode contents
[  125.884546][ T7945] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.1597: mark_inode_dirty error
[  125.897016][ T7945] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #12: comm syz.0.1597: corrupted inode contents
[  125.909371][ T7945] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  125.919729][ T7945] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #12: comm syz.0.1597: corrupted inode contents
[  125.935294][ T7945] EXT4-fs error (device loop0): ext4_truncate:4666: inode #12: comm syz.0.1597: mark_inode_dirty error
[  125.949658][ T7945] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  125.960130][ T7945] EXT4-fs (loop0): 1 truncate cleaned up
[  125.966508][ T7945] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.007074][ T7945] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  126.029840][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.142802][ T7968] netlink: 'syz.4.1605': attribute type 1 has an invalid length.
[  126.156527][ T7968] 8021q: adding VLAN 0 to HW filter on device bond2
[  126.171032][ T7968] vlan0: entered promiscuous mode
[  126.176166][ T7968] bond2: entered promiscuous mode
[  126.186504][ T7968] bridge0: port 1(dummy0) entered disabled state
[  126.193566][ T7968] dummy0: left allmulticast mode
[  126.198592][ T7968] bridge0: port 1(dummy0) entered disabled state
[  126.209966][ T7968] bond2: (slave dummy0): making interface the new active one
[  126.219039][ T7968] bond2: (slave dummy0): Enslaving as an active interface with an up link
[  126.293451][ T7975] netlink: 'syz.4.1607': attribute type 1 has an invalid length.
[  126.316334][ T7975] bond3: entered promiscuous mode
[  126.325861][ T7975] 8021q: adding VLAN 0 to HW filter on device bond3
[  126.347680][ T7975] 8021q: adding VLAN 0 to HW filter on device bond3
[  126.373544][ T7975] bond3: (slave wireguard0): The slave device specified does not support setting the MAC address
[  126.384315][ T7975] bond3: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[  126.396936][ T7975] bond3: (slave wireguard0): making interface the new active one
[  126.401695][ T7984] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  126.404809][ T7975] wireguard0: entered promiscuous mode
[  126.412021][ T7984] IPv6: NLM_F_CREATE should be set when creating new route
[  126.424726][ T7984] IPv6: NLM_F_CREATE should be set when creating new route
[  126.433368][ T7975] bond3: (slave wireguard0): Enslaving as an active interface with an up link
[  126.442454][ T7984] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  126.460326][ T7984] bond3: (slave wireguard1): The slave device specified does not support setting the MAC address
[  126.485405][ T7984] bond3: (slave wireguard1): Enslaving as a backup interface with an up link
[  126.505627][ T7987] loop0: detected capacity change from 0 to 2048
[  126.516159][ T7992] __nla_validate_parse: 10 callbacks suppressed
[  126.516235][ T7992] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1612'.
[  126.564941][ T7987]  loop0: p1 < > p4
[  126.574768][ T7987] loop0: p4 size 8388608 extends beyond EOD, truncated
[  126.969654][ T8020] loop4: detected capacity change from 0 to 1024
[  126.995449][ T8020] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  127.007996][ T8020] ext4 filesystem being mounted at /320/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.029258][ T8020] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm syz.4.1625: lblock 0 mapped to illegal pblock 0 (length 1)
[  127.045438][ T8020] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  127.057906][ T8020] EXT4-fs (loop4): This should not happen!! Data will be lost
[  127.057906][ T8020] 
[  127.089691][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  127.110944][ T8033] loop0: detected capacity change from 0 to 128
[  127.126345][ T8035] bridge: RTM_NEWNEIGH with invalid ether address
[  127.216231][ T8033] bio_check_eod: 107 callbacks suppressed
[  127.216247][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.216247][ T8033] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[  127.235725][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.235725][ T8033] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[  127.249738][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.249738][ T8033] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[  127.263355][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.263355][ T8033] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[  127.277472][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.277472][ T8033] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[  127.302513][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.302513][ T8033] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[  127.316166][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.316166][ T8033] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[  127.329796][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.329796][ T8033] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[  127.343665][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.343665][ T8033] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[  127.357375][ T8033] syz.0.1629: attempt to access beyond end of device
[  127.357375][ T8033] loop0: rw=2049, sector=297, nr_sectors = 8 limit=128
[  127.923485][ T8066] netlink: 'syz.4.1640': attribute type 10 has an invalid length.
[  127.943167][ T8066] 8021q: adding VLAN 0 to HW filter on device team0
[  127.951497][ T8066] bond0: (slave team0): Enslaving as an active interface with an up link
[  128.035784][ T8070] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.095411][ T8070] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.184596][ T8070] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.273081][ T8070] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.367275][ T3676] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  128.378736][ T3676] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  128.390156][ T3676] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  128.406607][ T8082] loop5: detected capacity change from 0 to 1024
[  128.413204][ T3676] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  128.422021][ T8082] EXT4-fs: Ignoring removed oldalloc option
[  128.428064][ T8082] EXT4-fs: Ignoring removed bh option
[  128.445616][ T8082] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.466777][   T29] kauditd_printk_skb: 783 callbacks suppressed
[  128.466792][   T29] audit: type=1400 audit(2000000064.390:6433): avc:  denied  { map } for  pid=8081 comm="syz.5.1646" path="/86/file1/file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  128.496132][   T29] audit: type=1400 audit(2000000064.390:6434): avc:  denied  { execute } for  pid=8081 comm="syz.5.1646" path="/86/file1/file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  128.520689][ T8088] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8088 comm=syz.1.1648
[  128.546766][ T8090] loop2: detected capacity change from 0 to 2048
[  128.555493][ T8091] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1646: Allocating blocks 385-513 which overlap fs metadata
[  128.557539][ T8093] bridge0: port 6(syz_tun) entered blocking state
[  128.576054][ T8093] bridge0: port 6(syz_tun) entered disabled state
[  128.578053][ T8082] EXT4-fs (loop5): pa ffff888106e81a10: logic 16, phys. 129, len 24
[  128.582906][ T8093] syz_tun: entered allmulticast mode
[  128.590536][ T8082] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  128.607280][ T8093] syz_tun: entered promiscuous mode
[  128.623605][ T8090]  loop2: p1 < > p4
[  128.624373][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.628699][ T8090] loop2: p4 size 8388608 extends beyond EOD, truncated
[  128.673509][   T29] audit: type=1326 audit(2000000064.590:6435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8094 comm="syz.5.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  128.697044][   T29] audit: type=1326 audit(2000000064.600:6436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8094 comm="syz.5.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  128.750388][ T8101] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1655'.
[  128.817643][   T29] audit: type=1326 audit(2000000064.640:6437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8094 comm="syz.5.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  128.841184][   T29] audit: type=1326 audit(2000000064.640:6438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8094 comm="syz.5.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  128.864706][   T29] audit: type=1326 audit(2000000064.640:6439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8094 comm="syz.5.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  128.888373][   T29] audit: type=1326 audit(2000000064.650:6440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8094 comm="syz.5.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  128.911918][   T29] audit: type=1326 audit(2000000064.650:6441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8094 comm="syz.5.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  128.935972][   T29] audit: type=1326 audit(2000000064.650:6442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8094 comm="syz.5.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  129.026090][ T8122] smc: net device bond0 applied user defined pnetid SYZ2
[  129.033641][ T8122] smc: net device bond0 erased user defined pnetid SYZ2
[  129.109688][ T8127] bridge0: port 1(syz_tun) entered blocking state
[  129.116363][ T8127] bridge0: port 1(syz_tun) entered disabled state
[  129.125826][ T8127] syz_tun: entered allmulticast mode
[  129.132445][ T8127] bridge0: port 1(syz_tun) entered blocking state
[  129.138989][ T8127] bridge0: port 1(syz_tun) entered forwarding state
[  129.309980][ T8141] loop0: detected capacity change from 0 to 512
[  129.325862][ T8141] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.341163][ T8141] ext4 filesystem being mounted at /353/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.397891][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.425137][ T8149] vlan0: entered allmulticast mode
[  129.430358][ T8149] bridge_slave_0: entered allmulticast mode
[  129.586472][ T8159] netlink: 'syz.1.1677': attribute type 1 has an invalid length.
[  129.602312][ T8159] 8021q: adding VLAN 0 to HW filter on device bond5
[  129.618795][ T8159] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1677'.
[  129.651518][ T8159] bond5 (unregistering): Released all slaves
[  129.725669][ T8166] loop4: detected capacity change from 0 to 2048
[  129.783635][ T8166]  loop4: p1 < > p4
[  129.790456][ T8166] loop4: p4 size 8388608 extends beyond EOD, truncated
[  129.890859][ T8176] netlink: 'syz.0.1683': attribute type 10 has an invalid length.
[  129.901083][ T8176] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1683'.
[  129.932902][ T8176] dummy0: entered promiscuous mode
[  129.944161][ T8176] batman_adv: batadv0: Interface activated: dummy0
[  129.951171][ T8176] batadv0: mtu less than device minimum
[  129.963003][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  129.978189][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  129.994172][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.010009][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.023547][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.037771][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.050812][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.063922][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.077020][ T8176] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.132169][ T8176] batman_adv: batadv0: Interface deactivated: dummy0
[  130.141549][ T8176] batman_adv: batadv0: Removing interface: dummy0
[  130.173058][ T8184] bridge: RTM_NEWNEIGH with invalid ether address
[  130.267744][ T8192] tipc: Started in network mode
[  130.272756][ T8192] tipc: Node identity ac14140f, cluster identity 4711
[  130.279764][ T8192] tipc: New replicast peer: 255.255.255.255
[  130.285932][ T8192] tipc: Enabled bearer <udp:syz2>, priority 10
[  130.458089][ T8209] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  130.464689][ T8209] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  130.472184][ T8209] vhci_hcd vhci_hcd.0: Device attached
[  130.508322][ T8209] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(5)
[  130.514938][ T8209] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  130.522527][ T8209] vhci_hcd vhci_hcd.0: Device attached
[  130.568311][ T8214] vhci_hcd: connection closed
[  130.568535][ T3676] vhci_hcd: stop threads
[  130.569819][ T8211] vhci_hcd: connection closed
[  130.573274][ T3676] vhci_hcd: release socket
[  130.573338][ T3676] vhci_hcd: disconnect device
[  130.648443][ T3676] vhci_hcd: stop threads
[  130.652761][ T3676] vhci_hcd: release socket
[  130.657207][ T3676] vhci_hcd: disconnect device
[  130.664539][ T6569] vhci_hcd: vhci_device speed not set
[  131.098630][ T8232] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1708'.
[  131.158318][ T8240] loop5: detected capacity change from 0 to 512
[  131.175919][ T8240] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.189181][ T8240] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.213654][ T8245] netlink: 'syz.4.1712': attribute type 1 has an invalid length.
[  131.228377][ T8245] 8021q: adding VLAN 0 to HW filter on device bond4
[  131.238539][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.242075][ T8245] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1712'.
[  131.270457][ T8245] bond4 (unregistering): Released all slaves
[  131.395443][ T8254] loop5: detected capacity change from 0 to 128
[  131.404083][ T6723] tipc: Node number set to 2886997007
[  131.435030][ T8252] loop4: detected capacity change from 0 to 2048
[  131.503082][ T8252]  loop4: p1 < > p4
[  131.508752][ T8252] loop4: p4 size 8388608 extends beyond EOD, truncated
[  132.226816][ T8254] bio_check_eod: 12709 callbacks suppressed
[  132.226831][ T8254] syz.5.1716: attempt to access beyond end of device
[  132.226831][ T8254] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  132.272321][ T8254] syz.5.1716: attempt to access beyond end of device
[  132.272321][ T8254] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  132.329082][ T8282] veth1_to_bond: entered allmulticast mode
[  132.335957][ T8282] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1726'.
[  132.349463][ T8282] bond0: (slave bond_slave_1): Releasing backup interface
[  132.360173][ T8282] veth1_to_bond (unregistering): left allmulticast mode
[  132.438635][ T8287] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1728'.
[  132.600987][ T8297] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.634945][ T8297] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.696943][ T8297] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.744612][ T8297] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.801119][ T3676] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.813097][ T3676] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.823955][ T3676] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.837177][ T3662] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.921475][ T8305] wireguard0: entered promiscuous mode
[  132.928039][ T8305] wireguard0: entered allmulticast mode
[  133.335499][ T8317] bridge0: port 3(macsec1) entered blocking state
[  133.342009][ T8317] bridge0: port 3(macsec1) entered disabled state
[  133.371408][ T8317] macsec1: entered allmulticast mode
[  133.377011][ T8317] bridge0: entered allmulticast mode
[  133.402866][ T8317] macsec1: left allmulticast mode
[  133.408017][ T8317] bridge0: left allmulticast mode
[  133.467385][ T8328] loop5: detected capacity change from 0 to 256
[  133.481296][   T29] kauditd_printk_skb: 487 callbacks suppressed
[  133.481314][   T29] audit: type=1326 audit(2000000069.400:6930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8f260f5ba7 code=0x7ffc0000
[  133.511612][   T29] audit: type=1326 audit(2000000069.440:6931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8f2609add9 code=0x7ffc0000
[  133.535127][   T29] audit: type=1326 audit(2000000069.440:6932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8f260f5ba7 code=0x7ffc0000
[  133.558529][   T29] audit: type=1326 audit(2000000069.440:6933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8f2609add9 code=0x7ffc0000
[  133.582046][   T29] audit: type=1326 audit(2000000069.440:6934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8f260f5ba7 code=0x7ffc0000
[  133.605437][   T29] audit: type=1326 audit(2000000069.440:6935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8f2609add9 code=0x7ffc0000
[  133.628802][   T29] audit: type=1326 audit(2000000069.440:6936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  133.652887][   T29] audit: type=1326 audit(2000000069.490:6937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8f260f5ba7 code=0x7ffc0000
[  133.676324][   T29] audit: type=1326 audit(2000000069.490:6938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8f2609add9 code=0x7ffc0000
[  133.699739][   T29] audit: type=1326 audit(2000000069.490:6939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8309 comm="syz.0.1735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  133.762349][ T8333] tipc: New replicast peer: 255.255.255.255
[  133.768712][ T8333] tipc: Enabled bearer <udp:syz2>, priority 10
[  133.874547][ T8343] netlink: 'syz.1.1753': attribute type 39 has an invalid length.
[  133.900592][ T8345] 9pnet: p9_errstr2errno: server reported unknown error 
[  133.941775][ T8347] SELinux:  Context � is not valid (left unmapped).
[  133.953321][ T8347] loop4: detected capacity change from 0 to 512
[  133.963949][ T8347] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  133.972228][ T8347] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.1754: invalid indirect mapped block 2683928664 (level 1)
[  133.986525][ T8347] EXT4-fs (loop4): Remounting filesystem read-only
[  133.995590][ T8347] EXT4-fs (loop4): 1 truncate cleaned up
[  134.001877][ T8347] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.049755][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.087669][ T8358] loop4: detected capacity change from 0 to 256
[  134.209037][ T8363] vlan0: entered allmulticast mode
[  134.384947][ T8365] loop4: detected capacity change from 0 to 8192
[  134.415885][ T8365] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  134.458684][ T8377] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1766'.
[  134.526126][ T8377] 8021q: adding VLAN 0 to HW filter on device bond5
[  134.554572][ T8383] vlan0: entered allmulticast mode
[  134.559777][ T8383] bond5: entered allmulticast mode
[  134.726178][ T8399] bridge0: entered allmulticast mode
[  134.731966][ T8399] syz_tun: left allmulticast mode
[  134.737069][ T8399] syz_tun: left promiscuous mode
[  134.742116][ T8399] bridge0: port 6(syz_tun) entered disabled state
[  134.750723][ T8399] dummy0: left allmulticast mode
[  134.759251][ T8399] bridge0: port 5(dummy0) entered disabled state
[  134.773613][ T8399] batadv0: left allmulticast mode
[  134.779153][ T8399] batadv0: left promiscuous mode
[  134.785295][ T8399] bridge0: port 4(batadv0) entered disabled state
[  134.793416][ T8399] batadv1: left allmulticast mode
[  134.798574][ T8399] batadv1: left promiscuous mode
[  134.803731][ T8399] bridge0: port 3(batadv1) entered disabled state
[  134.822387][ T8402] loop5: detected capacity change from 0 to 2048
[  134.831597][ T8399] bridge_slave_1: left promiscuous mode
[  134.837482][ T8399] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.845827][ T8399] bridge_slave_0: left promiscuous mode
[  134.851537][ T8399] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.876335][ T8402] Alternate GPT is invalid, using primary GPT.
[  134.882748][ T8402]  loop5: p2 p3 p7
[  134.944516][ T8408] netlink: 'syz.4.1776': attribute type 10 has an invalid length.
[  134.955068][ T8408] bond2: (slave dummy0): Releasing active interface
[  134.962277][ T8408] dummy0: left promiscuous mode
[  134.977931][ T8408] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  134.987522][ T8408] team0: Failed to send options change via netlink (err -105)
[  134.995168][ T8408] team0: Port device dummy0 added
[  135.017064][ T8414] netlink: 'syz.5.1779': attribute type 10 has an invalid length.
[  135.024976][ T8414] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1779'.
[  135.123583][ T8422] netlink: 'syz.5.1781': attribute type 10 has an invalid length.
[  135.133259][ T8422] 8021q: adding VLAN 0 to HW filter on device team0
[  135.141294][ T8422] bond0: (slave team0): Enslaving as an active interface with an up link
[  135.756870][ T8459] loop0: detected capacity change from 0 to 512
[  135.774727][ T8459] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.787529][ T8459] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.850525][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.367266][ T8483] syzkaller0: entered allmulticast mode
[  136.381941][ T8483] syzkaller0: entered promiscuous mode
[  136.390661][ T8483] syzkaller0 (unregistering): left allmulticast mode
[  136.397454][ T8483] syzkaller0 (unregistering): left promiscuous mode
[  136.588043][ T8488] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1804'.
[  138.401043][ T8623] syzkaller0: entered promiscuous mode
[  138.406701][ T8623] syzkaller0: entered allmulticast mode
[  138.541888][ T8636] vlan2: entered allmulticast mode
[  138.547135][ T8636] bridge_slave_0: entered allmulticast mode
[  138.565908][   T29] kauditd_printk_skb: 775 callbacks suppressed
[  138.565926][   T29] audit: type=1400 audit(2000000074.490:7715): avc:  denied  { connect } for  pid=8640 comm="syz.5.1833" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  138.599771][   T29] audit: type=1400 audit(2000000074.520:7716): avc:  denied  { ioctl } for  pid=8640 comm="syz.5.1833" path="socket:[27894]" dev="sockfs" ino=27894 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  138.629924][ T8646] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1823'.
[  138.697598][ T8643] loop5: detected capacity change from 0 to 512
[  138.734912][ T8654] bridge0: entered promiscuous mode
[  138.744271][ T8654] bridge0: port 1(macsec1) entered blocking state
[  138.750763][ T8654] bridge0: port 1(macsec1) entered disabled state
[  138.752965][ T8643] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.757411][ T8654] macsec1: entered allmulticast mode
[  138.775163][ T8654] bridge0: entered allmulticast mode
[  138.783451][ T8643] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.794487][ T8654] macsec1: left allmulticast mode
[  138.799574][ T8654] bridge0: left allmulticast mode
[  138.817089][ T8654] bridge0: left promiscuous mode
[  138.905120][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.992329][   T29] audit: type=1400 audit(2000000074.910:7717): avc:  denied  { shutdown } for  pid=8675 comm="syz.1.1828" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  139.279472][ T8712] tipc: Started in network mode
[  139.284539][ T8712] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  139.293479][ T8712] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  139.317633][ T8710] vlan2: entered allmulticast mode
[  139.464427][   T29] audit: type=1326 audit(2000000075.360:7718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8727 comm="syz.2.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d7c96ebe9 code=0x7ffc0000
[  139.488152][   T29] audit: type=1326 audit(2000000075.360:7719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8727 comm="syz.2.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f3d7c96ebe9 code=0x7ffc0000
[  139.488516][ T8731] loop0: detected capacity change from 0 to 1024
[  139.511741][   T29] audit: type=1326 audit(2000000075.360:7720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8727 comm="syz.2.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d7c96ebe9 code=0x7ffc0000
[  139.511779][   T29] audit: type=1326 audit(2000000075.380:7721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="syz.0.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  139.511860][   T29] audit: type=1326 audit(2000000075.380:7722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="syz.0.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  139.587469][ T8731] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.588545][   T29] audit: type=1326 audit(2000000075.380:7723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="syz.0.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  139.623745][   T29] audit: type=1326 audit(2000000075.390:7724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8729 comm="syz.0.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f260febe9 code=0x7ffc0000
[  139.640065][ T8731] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.1844: Allocating blocks 497-513 which overlap fs metadata
[  139.760848][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.100311][ T8752] loop0: detected capacity change from 0 to 1024
[  140.136512][ T8752] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  140.274462][ T8752] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  140.294779][ T8755] syzkaller0: entered allmulticast mode
[  140.307525][ T8752] EXT4-fs (loop0): orphan cleanup on readonly fs
[  140.318527][ T8755] syzkaller0: entered promiscuous mode
[  140.330694][ T8755] syzkaller0 (unregistering): left allmulticast mode
[  140.337454][ T8755] syzkaller0 (unregistering): left promiscuous mode
[  140.348064][ T8752] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm syz.0.1852: Invalid inode table block 0 in block_group 0
[  140.371773][ T8752] EXT4-fs (loop0): Remounting filesystem read-only
[  140.381143][ T8752] EXT4-fs (loop0): 1 truncate cleaned up
[  140.471696][ T8752] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.472248][ T8726] net_ratelimit: 11 callbacks suppressed
[  140.472263][ T8726] Set syz1 is full, maxelem 65536 reached
[  140.623318][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.715581][ T8771] bridge0: entered allmulticast mode
[  140.924404][ T8778] loop0: detected capacity change from 0 to 512
[  140.931361][ T8778] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  140.955456][ T8766] loop5: detected capacity change from 0 to 512
[  140.955893][ T8778] EXT4-fs (loop0): orphan cleanup on readonly fs
[  140.962332][ T8766] EXT4-fs: Ignoring removed nobh option
[  140.994406][ T8778] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.1862: Block bitmap for bg 0 marked uninitialized
[  141.021509][ T8778] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  141.046940][ T8778] EXT4-fs (loop0): 1 orphan inode deleted
[  141.059577][ T8766] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.1857: corrupted inode contents
[  141.064012][ T8778] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  141.081144][ T8766] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #3: comm syz.5.1857: mark_inode_dirty error
[  141.114022][ T8766] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.1857: corrupted inode contents
[  141.138942][ T8766] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #3: comm syz.5.1857: mark_inode_dirty error
[  141.181655][ T8766] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1857: Failed to acquire dquot type 0
[  141.207923][ T8790] loop2: detected capacity change from 0 to 512
[  141.239763][ T8792] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1866'.
[  141.251076][ T8790] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.273104][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.285043][ T8766] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.1857: corrupted inode contents
[  141.327673][ T8766] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #16: comm syz.5.1857: mark_inode_dirty error
[  141.350641][ T8790] ext4 filesystem being mounted at /371/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.375861][ T8798] syzkaller0: entered allmulticast mode
[  141.381834][ T8766] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.1857: corrupted inode contents
[  141.396204][ T8798] syzkaller0: entered promiscuous mode
[  141.408358][ T8798] syzkaller0 (unregistering): left allmulticast mode
[  141.415237][ T8798] syzkaller0 (unregistering): left promiscuous mode
[  141.425038][ T8766] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.1857: mark_inode_dirty error
[  141.438746][ T8766] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.1857: corrupted inode contents
[  141.453772][ T8766] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  141.462469][ T8766] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.1857: corrupted inode contents
[  141.505529][ T8766] EXT4-fs error (device loop5): ext4_truncate:4666: inode #16: comm syz.5.1857: mark_inode_dirty error
[  141.518830][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.541491][ T8766] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  141.565634][ T8766] EXT4-fs (loop5): 1 truncate cleaned up
[  141.574053][ T8766] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.597668][ T8803] loop0: detected capacity change from 0 to 512
[  141.605757][ T8805] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1870'.
[  141.615105][ T8766] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.633643][ T8803] EXT4-fs (loop0): failed to initialize system zone (-117)
[  141.641035][ T8803] EXT4-fs (loop0): mount failed
[  142.001004][ T8800] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1869'.
[  142.047894][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.124811][ T8848] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  142.158570][ T8848] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  142.173441][ T8853] bridge0: entered allmulticast mode
[  142.180309][ T8853] bridge_slave_1: left allmulticast mode
[  142.186107][ T8853] bridge_slave_1: left promiscuous mode
[  142.191782][ T8853] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.199734][ T8853] bridge_slave_0: left promiscuous mode
[  142.205499][ T8853] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.265282][ T8848] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  142.359349][ T8861] syzkaller0: entered allmulticast mode
[  142.374459][ T8848] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  142.397032][ T8861] syzkaller0: entered promiscuous mode
[  142.407790][ T8861] syzkaller0 (unregistering): left allmulticast mode
[  142.414853][ T8861] syzkaller0 (unregistering): left promiscuous mode
[  142.479950][ T3693] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  142.499161][ T3693] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  142.515739][ T3693] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  142.524308][ T3693] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  142.613676][ T8873] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1898'.
[  142.631195][ T8873] loop9: detected capacity change from 0 to 7
[  142.638170][ T8873] buffer_io_error: 37758 callbacks suppressed
[  142.638240][ T8873] Buffer I/O error on dev loop9, logical block 0, async page read
[  142.658660][ T8873] Buffer I/O error on dev loop9, logical block 0, async page read
[  142.658701][ T8877] netlink: 'syz.2.1897': attribute type 39 has an invalid length.
[  142.666560][ T8873]  loop9: unable to read partition table
[  142.682339][ T8873] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  142.682339][ T8873] 
) failed (rc=-5)
[  142.688914][ T8879] loop4: detected capacity change from 0 to 1024
[  142.731846][ T8879] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.761137][ T8886] loop0: detected capacity change from 0 to 128
[  142.791941][ T8886] FAT-fs (loop0): Directory bread(block 32) failed
[  142.795896][ T8879] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.1900: Allocating blocks 497-513 which overlap fs metadata
[  142.813416][ T8886] FAT-fs (loop0): Directory bread(block 33) failed
[  142.821986][ T8886] FAT-fs (loop0): Directory bread(block 34) failed
[  142.830692][ T8886] FAT-fs (loop0): Directory bread(block 35) failed
[  142.837564][ T8886] FAT-fs (loop0): Directory bread(block 36) failed
[  142.842547][ T8891] tipc: Started in network mode
[  142.844273][ T8886] FAT-fs (loop0): Directory bread(block 37) failed
[  142.849081][ T8891] tipc: Node identity ac14140f, cluster identity 4711
[  142.852329][ T8888] netlink: 'syz.1.1904': attribute type 11 has an invalid length.
[  142.855818][ T8886] FAT-fs (loop0): Directory bread(block 38) failed
[  142.862838][ T8891] tipc: New replicast peer: 255.255.255.255
[  142.883048][ T8891] tipc: Enabled bearer <udp:syz2>, priority 10
[  142.889292][ T8886] FAT-fs (loop0): Directory bread(block 39) failed
[  142.895958][ T8886] FAT-fs (loop0): Directory bread(block 40) failed
[  142.902803][ T8886] FAT-fs (loop0): Directory bread(block 41) failed
[  142.951642][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.184223][ T8926] loop4: detected capacity change from 0 to 1024
[  143.211078][ T8926] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  143.225255][ T8926] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  143.234904][ T8926] EXT4-fs (loop4): orphan cleanup on readonly fs
[  143.241951][ T8926] EXT4-fs error (device loop4): __ext4_get_inode_loc:4861: comm syz.4.1927: Invalid inode table block 0 in block_group 0
[  143.248643][ T8928] loop5: detected capacity change from 0 to 1024
[  143.258449][ T8926] EXT4-fs (loop4): Remounting filesystem read-only
[  143.267882][ T8926] EXT4-fs (loop4): 1 truncate cleaned up
[  143.276401][ T8926] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.349156][ T8928] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.362577][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.391512][ T8939] loop2: detected capacity change from 0 to 512
[  143.419709][ T8939] EXT4-fs: Ignoring removed bh option
[  143.427987][ T8928] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1918: Allocating blocks 497-513 which overlap fs metadata
[  143.443184][ T8939] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  143.452249][ T8939] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  143.467057][ T8939] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  143.480464][ T8949] batadv_slave_0: entered promiscuous mode
[  143.487666][ T8947] syzkaller0: entered promiscuous mode
[  143.493248][ T8947] syzkaller0: entered allmulticast mode
[  143.497566][ T8939] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  143.507750][ T8939] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.532173][ T8949] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1924'.
[  143.541829][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.553311][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.555531][ T8949] batadv_slave_0 (unregistering): left promiscuous mode
[  143.600220][   T29] kauditd_printk_skb: 173 callbacks suppressed
[  143.600266][   T29] audit: type=1326 audit(2000000079.520:7892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  143.635459][ T8955] loop5: detected capacity change from 0 to 512
[  143.642446][ T8955] msdos: Bad value for 'uid'
[  143.647286][ T8955] msdos: Bad value for 'uid'
[  143.660198][   T29] audit: type=1326 audit(2000000079.560:7893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe4584febe9 code=0x7ffc0000
[  143.683723][   T29] audit: type=1326 audit(2000000079.560:7894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe4584fec23 code=0x7ffc0000
[  143.707053][   T29] audit: type=1326 audit(2000000079.560:7895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe4584fd69f code=0x7ffc0000
[  143.730380][   T29] audit: type=1326 audit(2000000079.560:7896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe4584fec77 code=0x7ffc0000
[  143.753750][   T29] audit: type=1326 audit(2000000079.560:7897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe4584fd550 code=0x7ffc0000
[  143.777154][   T29] audit: type=1326 audit(2000000079.560:7898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe4584fe7eb code=0x7ffc0000
[  143.800510][   T29] audit: type=1326 audit(2000000079.560:7899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe4584fd84a code=0x7ffc0000
[  143.823792][   T29] audit: type=1326 audit(2000000079.560:7900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe4584fd84a code=0x7ffc0000
[  143.847055][   T29] audit: type=1326 audit(2000000079.560:7901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.5.1925" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fe4584fd457 code=0x7ffc0000
[  143.937447][ T8973] loop2: detected capacity change from 0 to 1024
[  143.947650][ T8973] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  143.958769][ T8973] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  143.967085][ T8973] EXT4-fs (loop2): orphan cleanup on readonly fs
[  143.974162][ T8973] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz.2.1934: Invalid inode table block 0 in block_group 0
[  143.986922][ T8973] EXT4-fs (loop2): Remounting filesystem read-only
[  143.993850][ T8973] EXT4-fs (loop2): 1 truncate cleaned up
[  144.000170][ T8973] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  144.012673][ T3362] tipc: Node number set to 2886997007
[  144.029521][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.452249][ T8982] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  144.462220][ T8982] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  144.514353][ T8982] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  144.524467][ T8982] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  144.578788][ T8994] netlink: 'syz.0.1942': attribute type 3 has an invalid length.
[  144.602825][ T8982] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  144.612800][ T8982] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  144.675345][ T8982] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  144.685353][ T8982] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  144.756165][ T3680] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  144.764441][ T3680] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  144.795610][ T3680] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  144.803974][ T3680] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  144.818583][ T8992] loop2: detected capacity change from 0 to 512
[  144.830542][ T3680] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  144.838819][ T3680] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  144.870990][ T8992] EXT4-fs: Ignoring removed nobh option
[  144.884078][ T3662] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  144.892346][ T3662] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  145.015950][ T8992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.1939: corrupted inode contents
[  145.124397][ T8992] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #3: comm syz.2.1939: mark_inode_dirty error
[  145.171965][ T9020] lo speed is unknown, defaulting to 1000
[  145.177981][ T9020] lo speed is unknown, defaulting to 1000
[  145.184155][ T9020] lo speed is unknown, defaulting to 1000
[  145.190380][ T9020] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  145.210885][ T9020] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  145.233003][ T9020] lo speed is unknown, defaulting to 1000
[  145.286400][ T9020] lo speed is unknown, defaulting to 1000
[  145.294779][ T9020] lo speed is unknown, defaulting to 1000
[  145.304365][ T9020] lo speed is unknown, defaulting to 1000
[  145.316172][ T9020] lo speed is unknown, defaulting to 1000
[  145.329323][ T8992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.1939: corrupted inode contents
[  145.372045][ T9029] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1957'.
[  145.382078][ T8992] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.1939: mark_inode_dirty error
[  145.382258][ T9029] 0�X���: renamed from caif0
[  145.405970][ T8992] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1939: Failed to acquire dquot type 0
[  145.419242][ T9029] 0�X���: entered allmulticast mode
[  145.424598][ T9029] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  145.441734][ T8992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.1939: corrupted inode contents
[  145.477024][ T8992] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.1939: mark_inode_dirty error
[  145.497963][ T9032] tipc: Failed to remove unknown binding: 66,3,3/3999011316:4018660585/4018660586
[  145.515210][ T8992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.1939: corrupted inode contents
[  145.610389][ T8992] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.1939: mark_inode_dirty error
[  145.669281][ T8992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.1939: corrupted inode contents
[  145.701300][ T9039] netlink: 277 bytes leftover after parsing attributes in process `syz.4.1961'.
[  145.730862][ T8992] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  145.750046][ T8992] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.1939: corrupted inode contents
[  145.780923][ T8992] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.1939: mark_inode_dirty error
[  145.796400][ T8992] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  145.805705][ T9045] loop5: detected capacity change from 0 to 512
[  145.813901][ T9045] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  145.825847][ T8992] EXT4-fs (loop2): 1 truncate cleaned up
[  145.832266][ T8992] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.834061][ T9045] EXT4-fs (loop5): 1 truncate cleaned up
[  145.851008][ T9045] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.867557][ T8992] ext4 filesystem being mounted at /393/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.895080][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.554417][ T9066] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1970'.
[  146.633399][ T9066] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9066 comm=syz.4.1970
[  146.893527][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.960333][ T9084] loop2: detected capacity change from 0 to 128
[  146.971055][ T9084] FAT-fs (loop2): Directory bread(block 32) failed
[  146.991257][ T9084] FAT-fs (loop2): Directory bread(block 33) failed
[  147.001812][ T9084] FAT-fs (loop2): Directory bread(block 34) failed
[  147.011368][ T9084] FAT-fs (loop2): Directory bread(block 35) failed
[  147.019835][ T9084] FAT-fs (loop2): Directory bread(block 36) failed
[  147.027887][ T9084] FAT-fs (loop2): Directory bread(block 37) failed
[  147.036386][ T9084] FAT-fs (loop2): Directory bread(block 38) failed
[  147.109159][ T9084] FAT-fs (loop2): Directory bread(block 39) failed
[  147.118014][ T9084] FAT-fs (loop2): Directory bread(block 40) failed
[  147.124737][ T9084] FAT-fs (loop2): Directory bread(block 41) failed
[  147.319244][ T9114] loop0: detected capacity change from 0 to 128
[  147.368970][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.368970][ T9114] loop0: rw=2049, sector=153, nr_sectors = 8 limit=128
[  147.401629][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.401629][ T9114] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[  147.441292][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.441292][ T9114] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[  147.457968][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.457968][ T9114] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[  147.477945][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.477945][ T9114] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[  147.510550][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.510550][ T9114] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[  147.527908][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.527908][ T9114] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[  147.535351][ T9136] loop2: detected capacity change from 0 to 512
[  147.548944][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.548944][ T9114] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[  147.561281][ T9136] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[  147.568650][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.568650][ T9114] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[  147.572392][ T9136] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 1)!
[  147.591926][ T9114] syz.0.1983: attempt to access beyond end of device
[  147.591926][ T9114] loop0: rw=2049, sector=297, nr_sectors = 8 limit=128
[  147.595889][ T9136] EXT4-fs (loop2): group descriptors corrupted!
[  147.860258][ T9175] loop2: detected capacity change from 0 to 128
[  147.881346][ T9178] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1990'.
[  147.929274][ T9182] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.936828][ T9182] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.972315][ T9182] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.979884][ T9182] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.012250][ T9192] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1996'.
[  148.110745][ T9206] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  148.119398][ T9206] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  148.337953][ T9225] loop0: detected capacity change from 0 to 512
[  148.364365][ T9225] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  148.384642][ T9225] EXT4-fs (loop0): 1 truncate cleaned up
[  148.401289][ T9225] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.428516][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.499926][ T9238] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.565348][ T9233] lo speed is unknown, defaulting to 1000
[  148.575431][ T9238] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.622441][ T9243] netlink: 'syz.5.2016': attribute type 4 has an invalid length.
[  148.632495][ T9238] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.664198][ T9243] netlink: 'syz.5.2016': attribute type 4 has an invalid length.
[  148.684424][ T9238] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.732728][ T9251] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2019'.
[  148.798750][ T1595] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.813049][   T29] kauditd_printk_skb: 181 callbacks suppressed
[  148.813134][   T29] audit: type=1400 audit(2000000084.740:8079): avc:  denied  { bind } for  pid=9254 comm="syz.5.2020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  148.856267][ T9247] lo speed is unknown, defaulting to 1000
[  148.862087][ T3653] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.878526][   T29] audit: type=1400 audit(2000000084.800:8080): avc:  denied  { setopt } for  pid=9254 comm="syz.5.2020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  148.897262][ T9258] loop2: detected capacity change from 0 to 512
[  148.919894][ T3653] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.955563][ T9258] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.961831][ T3666] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.179871][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.260072][   T29] audit: type=1326 audit(2000000085.180:8081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9269 comm="syz.2.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3d7c965ba7 code=0x7ffc0000
[  149.283498][   T29] audit: type=1326 audit(2000000085.180:8082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9269 comm="syz.2.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3d7c90add9 code=0x7ffc0000
[  149.288222][ T9270] loop2: detected capacity change from 0 to 512
[  149.336426][   T29] audit: type=1326 audit(2000000085.180:8083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9269 comm="syz.2.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3d7c965ba7 code=0x7ffc0000
[  149.359844][   T29] audit: type=1326 audit(2000000085.180:8084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9269 comm="syz.2.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3d7c90add9 code=0x7ffc0000
[  149.383285][   T29] audit: type=1326 audit(2000000085.180:8085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9269 comm="syz.2.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d7c96ebe9 code=0x7ffc0000
[  149.406794][   T29] audit: type=1326 audit(2000000085.180:8086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9269 comm="syz.2.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d7c96ebe9 code=0x7ffc0000
[  149.430272][   T29] audit: type=1326 audit(2000000085.210:8087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9269 comm="syz.2.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3d7c96ebe9 code=0x7ffc0000
[  149.453697][   T29] audit: type=1326 audit(2000000085.210:8088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9269 comm="syz.2.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3d7c96ec23 code=0x7ffc0000
[  149.508344][ T9270] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  149.534652][ T9270] EXT4-fs (loop2): 1 truncate cleaned up
[  149.548406][ T9270] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.581411][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.604550][ T9285] ------------[ cut here ]------------
[  149.610060][ T9285] 'send_pkt()' returns 0, but 65536 expected
[  149.617270][ T9285] WARNING: CPU: 1 PID: 9285 at net/vmw_vsock/virtio_transport_common.c:428 virtio_transport_send_pkt_info+0x846/0x860
[  149.629713][ T9285] Modules linked in:
[  149.633654][ T9285] CPU: 1 UID: 0 PID: 9285 Comm: syz.4.2030 Not tainted 6.16.0-syzkaller-12256-g561c80369df0 #0 PREEMPT(voluntary) 
[  149.645776][ T9285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  149.655957][ T9285] RIP: 0010:virtio_transport_send_pkt_info+0x846/0x860
[  149.662885][ T9285] Code: 7c 01 fc 48 c7 c7 1d 37 d4 86 e8 35 2d 1c fc c6 05 db b9 7d 01 01 90 48 c7 c7 06 dc 5e 86 44 89 fe 48 89 da e8 cb 1f cb fb 90 <0f> 0b 90 90 e9 f6 fe ff ff e8 5c 7c 01 fc 90 0f 0b 90 e9 04 fb ff
[  149.682621][ T9285] RSP: 0018:ffffc90001637918 EFLAGS: 00010246
[  149.688722][ T9285] RAX: d093b047e58cde00 RBX: 0000000000010000 RCX: 0000000000080000
[  149.696770][ T9285] RDX: ffffc90004f34000 RSI: 0000000000005272 RDI: 0000000000005273
[  149.704816][ T9285] RBP: 0000000000010000 R08: 0001c9000163778f R09: 0000000000000000
[  149.712835][ T9285] R10: 00000000ffffffff R11: 0000000000000002 R12: 0000000000040000
[  149.720883][ T9285] R13: ffff88812d1be0cc R14: ffffffff86d1f4b8 R15: 0000000000000000
[  149.728982][ T9285] FS:  00007fbcbd59f6c0(0000) GS:ffff8882aef44000(0000) knlGS:0000000000000000
[  149.737970][ T9285] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  149.744680][ T9285] CR2: 000020000003f000 CR3: 00000001211da000 CR4: 00000000003506f0
[  149.752731][ T9285] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  149.760727][ T9285] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  149.768728][ T9285] Call Trace:
[  149.772021][ T9285]  <TASK>
[  149.774995][ T9285]  virtio_transport_seqpacket_enqueue+0xb4/0xe0
[  149.781274][ T9285]  vsock_connectible_sendmsg+0x752/0x980
[  149.787042][ T9285]  ? __pfx_woken_wake_function+0x10/0x10
[  149.792727][ T9285]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[  149.799034][ T9285]  __sock_sendmsg+0x142/0x180
[  149.803786][ T9285]  ____sys_sendmsg+0x345/0x4e0
[  149.808565][ T9285]  ___sys_sendmsg+0x17b/0x1d0
[  149.813324][ T9285]  __sys_sendmmsg+0x178/0x300
[  149.818173][ T9285]  __x64_sys_sendmmsg+0x57/0x70
[  149.823150][ T9285]  x64_sys_call+0x1c4a/0x2ff0
[  149.827856][ T9285]  do_syscall_64+0xd2/0x200
[  149.832380][ T9285]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  149.838646][ T9285]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  149.844584][ T9285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.850590][ T9285] RIP: 0033:0x7fbcbeb3ebe9
[  149.855133][ T9285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.874825][ T9285] RSP: 002b:00007fbcbd59f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  149.883318][ T9285] RAX: ffffffffffffffda RBX: 00007fbcbed65fa0 RCX: 00007fbcbeb3ebe9
[  149.891314][ T9285] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000004
[  149.899332][ T9285] RBP: 00007fbcbebc1e19 R08: 0000000000000000 R09: 0000000000000000
[  149.907457][ T9285] R10: 0000000024008094 R11: 0000000000000246 R12: 0000000000000000
[  149.915558][ T9285] R13: 00007fbcbed66038 R14: 00007fbcbed65fa0 R15: 00007ffd0c7c9c78
[  149.923757][ T9285]  </TASK>
[  149.926791][ T9285] ---[ end trace 0000000000000000 ]---
[  149.965308][ T9288] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2029'.
[  150.003409][ T9288] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2029'.
[  150.104877][ T9297] netlink: 277 bytes leftover after parsing attributes in process `syz.5.2034'.
[  150.108024][ T9295] loop4: detected capacity change from 0 to 1024
[  150.152562][ T9295] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.249235][ T9295] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.2035: Allocating blocks 449-513 which overlap fs metadata
[  150.301652][ T9294] EXT4-fs (loop4): pa ffff888106c6d540: logic 48, phys. 177, len 21
[  150.309813][ T9294] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  150.345626][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.796900][ T9332] netlink: 'syz.4.2048': attribute type 4 has an invalid length.
[  150.805189][ T9332] netlink: 'syz.4.2048': attribute type 4 has an invalid length.
[  150.815047][ T3362] lo speed is unknown, defaulting to 1000
[  150.820929][ T3362] syz0: Port: 1 Link ACTIVE
[  150.944091][ T9344] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2053'.
[  150.969709][ T9344] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9344 comm=syz.2.2053
[  151.207352][ T9358] loop2: detected capacity change from 0 to 128
[  151.217588][ T9358] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  151.230509][ T9358] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  151.247434][ T9356] loop4: detected capacity change from 0 to 512
[  151.263176][ T9358] rdma_op ffff888138159d80 conn xmit_rdma 0000000000000000
[  151.271830][ T9356] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  151.339437][ T9356] EXT4-fs (loop4): 1 truncate cleaned up
[  151.352422][ T9356] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.613388][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.723095][ T9374] netlink: 'syz.0.2063': attribute type 10 has an invalid length.
[  151.957802][ T9383] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.973278][ T9383] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.117493][ T9399] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2073'.
[  152.145466][ T9399] 8021q: adding VLAN 0 to HW filter on device bond2
[  152.160893][ T9399] bond1: (slave bond2): Enslaving as an active interface with an up link
[  152.191044][ T9399] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2073'.
[  152.211346][ T9399] bond1 (unregistering): (slave bond2): Releasing backup interface
[  152.223404][ T9399] bond1 (unregistering): Released all slaves
[  152.259710][ T9414] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.315990][ T9414] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.423828][ T9414] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.466250][ T9414] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.529893][ T3678] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  152.558873][ T3678] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  152.575935][ T3678] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  152.592885][ T3678] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  153.156404][ T6723] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  153.164622][ T6723] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  153.197721][ T6569] IPVS: starting estimator thread 0...
[  153.203480][ T9466] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  153.208060][ T9469] loop5: detected capacity change from 0 to 1024
[  153.235429][ T9469] EXT4-fs: Ignoring removed nomblk_io_submit option
[  153.236327][ T9472] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  153.242537][ T9469] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  153.266056][ T9469] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.293883][ T9477] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2104'.
[  153.312689][ T9474] IPVS: using max 2352 ests per chain, 117600 per kthread
[  153.326178][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.367143][ T9481] loop5: detected capacity change from 0 to 1024
[  153.385591][ T9481] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.415196][ T9481] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.2106: Allocating blocks 449-513 which overlap fs metadata
[  153.438333][ T9480] EXT4-fs (loop5): pa ffff888106e81d20: logic 48, phys. 177, len 21
[  153.446519][ T9480] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  153.503972][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.534384][ T9496] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2112'.
[  153.575204][ T9499] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  153.590671][ T9494] loop5: detected capacity change from 0 to 512
[  153.598370][ T9494] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  153.611292][ T9494] EXT4-fs (loop5): 1 truncate cleaned up
[  153.617393][ T9494] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.639266][ T9499] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  153.662410][ T9505] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2115'.
[  153.673622][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.694408][ T9499] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  153.734638][ T9499] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  153.776782][ T9511] dvmrp1: entered allmulticast mode
[  154.112385][ T9521] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  154.121431][ T9521] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  154.181225][ T9523] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  154.197165][ T9523] tipc: Disabling bearer <eth:syzkaller0>
[  154.424473][ T3654] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  154.453038][ T3678] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  154.471416][ T3678] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  154.481543][ T3678] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  155.039546][ T9561] netlink: 'syz.2.2136': attribute type 4 has an invalid length.
[  155.125056][   T29] kauditd_printk_skb: 244 callbacks suppressed
[  155.125074][   T29] audit: type=1400 audit(2000000603.047:8333): avc:  denied  { getopt } for  pid=9567 comm="syz.1.2139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  155.394054][ T9579] loop0: detected capacity change from 0 to 8192
[  155.453966][ T9585] lo speed is unknown, defaulting to 1000
[  155.530619][ T9588] lo speed is unknown, defaulting to 1000
[  155.577649][   T29] audit: type=1400 audit(2000000603.497:8334): avc:  denied  { create } for  pid=9596 comm="syz.1.2150" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  155.636912][   T29] audit: type=1400 audit(2000000603.537:8335): avc:  denied  { connect } for  pid=9596 comm="syz.1.2150" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  155.657115][   T29] audit: type=1326 audit(2000000603.547:8336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9596 comm="syz.1.2150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  155.680955][   T29] audit: type=1326 audit(2000000603.547:8337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9596 comm="syz.1.2150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  155.704439][   T29] audit: type=1400 audit(2000000603.547:8338): avc:  denied  { write } for  pid=9596 comm="syz.1.2150" path="socket:[31893]" dev="sockfs" ino=31893 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  155.830679][ T9600] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  155.842787][   T29] audit: type=1326 audit(2000000603.577:8339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9596 comm="syz.1.2150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  155.842813][ T6720] IPVS: starting estimator thread 0...
[  155.871814][   T29] audit: type=1326 audit(2000000603.597:8340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9596 comm="syz.1.2150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  155.998621][ T9612] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2156'.
[  156.008094][ T9604] IPVS: using max 2352 ests per chain, 117600 per kthread
[  156.209373][ T9627] bridge0: port 1(batadv3) entered blocking state
[  156.216178][ T9627] bridge0: port 1(batadv3) entered disabled state
[  156.298908][ T9627] batadv3: entered allmulticast mode
[  156.314831][ T9627] batadv3: entered promiscuous mode
[  156.562764][ T6720] IPVS: starting estimator thread 0...
[  156.568478][ T9635] lo speed is unknown, defaulting to 1000
[  156.664172][ T9641] IPVS: using max 2352 ests per chain, 117600 per kthread
[  156.714510][  T167] batman_adv: batadv3: No IGMP Querier present - multicast optimizations disabled
[  156.723778][  T167] batman_adv: batadv3: No MLD Querier present - multicast optimizations disabled
[  156.907179][   T29] audit: type=1326 audit(2000000604.827:8341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9658 comm="syz.2.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d7c96ebe9 code=0x7ffc0000
[  156.931357][   T29] audit: type=1326 audit(2000000604.827:8342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9658 comm="syz.2.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d7c96ebe9 code=0x7ffc0000
[  156.997179][ T9661] geneve4: entered promiscuous mode
[  157.002472][ T9661] geneve4: entered allmulticast mode
[  157.009331][ T3661] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  157.019496][ T3661] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  157.028217][ T3661] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  157.051744][ T3661] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  157.281399][ T9670] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2175'.
[  157.312862][ T9670] 8021q: adding VLAN 0 to HW filter on device bond4
[  157.321562][ T9670] bond3: (slave bond4): Enslaving as an active interface with an up link
[  157.340662][ T9670] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2175'.
[  157.356672][ T9670] bond3 (unregistering): (slave bond4): Releasing backup interface
[  157.374183][ T9670] bond3 (unregistering): Released all slaves
[  157.445572][ T9680] syzkaller0: entered promiscuous mode
[  157.451120][ T9680] syzkaller0: entered allmulticast mode
[  157.484155][ T9680] PF_CAN: dropped non conform CAN FD skbuff: dev type 280, len 65487
[  157.508027][ T9683] loop2: detected capacity change from 0 to 512
[  157.524456][ T9683] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.537288][ T9683] ext4 filesystem being mounted at /436/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.593982][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.619233][ T9696] netlink: 'syz.2.2184': attribute type 4 has an invalid length.
[  157.630583][ T9696] netlink: 'syz.2.2184': attribute type 4 has an invalid length.
[  157.666004][ T9703] wireguard0: entered promiscuous mode
[  158.346048][ T9717] vhci_hcd: invalid port number 96
[  158.351310][ T9717] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  158.384448][ T9720] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  158.418054][ T9722] veth9: entered promiscuous mode
[  158.615275][ T9731] loop5: detected capacity change from 0 to 512
[  158.640375][ T9722] lo speed is unknown, defaulting to 1000
[  158.674401][ T9731] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.2197: iget: bad extended attribute block 1
[  158.707192][ T9731] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.2197: couldn't read orphan inode 15 (err -117)
[  158.749227][ T9731] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.821468][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.091868][ T9767] vlan0: entered allmulticast mode
[  159.891355][ T9789] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  159.937114][ T9789] tipc: Disabling bearer <eth:syzkaller0>
[  160.013552][ T9791] lo speed is unknown, defaulting to 1000
[  160.097493][ T6720] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=6720 comm=kworker/1:11
[  160.317093][   T29] kauditd_printk_skb: 139 callbacks suppressed
[  160.317111][   T29] audit: type=1326 audit(2000000608.237:8482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.349124][   T29] audit: type=1326 audit(2000000608.237:8483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.372687][   T29] audit: type=1326 audit(2000000608.237:8484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.396262][   T29] audit: type=1326 audit(2000000608.237:8485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.419784][   T29] audit: type=1326 audit(2000000608.237:8486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.443267][   T29] audit: type=1326 audit(2000000608.237:8487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.466687][   T29] audit: type=1326 audit(2000000608.237:8488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.490180][   T29] audit: type=1326 audit(2000000608.237:8489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.513554][   T29] audit: type=1326 audit(2000000608.237:8490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.537157][   T29] audit: type=1326 audit(2000000608.237:8491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9821 comm="syz.1.2232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7ff48652ebe9 code=0x7ffc0000
[  160.585433][ T9826] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  160.675407][ T9826] tipc: Disabling bearer <eth:syzkaller0>
[  160.697583][ T9836] loop0: detected capacity change from 0 to 128
[  160.709335][ T9836] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  160.717293][ T9836] FAT-fs (loop0): Filesystem has been set read-only
[  160.724209][ T9836] bio_check_eod: 3 callbacks suppressed
[  160.724225][ T9836] syz.0.2239: attempt to access beyond end of device
[  160.724225][ T9836] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  160.743828][ T9836] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  160.751919][ T9836] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  160.761220][ T9836] syz.0.2239: attempt to access beyond end of device
[  160.761220][ T9836] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  160.778156][ T9836] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  160.795312][ T9840] bond3: entered promiscuous mode
[  160.800384][ T9840] bond3: entered allmulticast mode
[  160.803093][ T9836] syz.0.2239: attempt to access beyond end of device
[  160.803093][ T9836] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  160.820855][ T9836] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  160.828000][ T9838] syz.0.2239: attempt to access beyond end of device
[  160.828000][ T9838] loop0: rw=0, sector=2065, nr_sectors = 1 limit=128
[  160.828793][ T9836] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  160.842119][ T9838] Buffer I/O error on dev loop0, logical block 2065, async page read
[  160.858275][ T9840] 8021q: adding VLAN 0 to HW filter on device bond3
[  160.867964][ T9838] syz.0.2239: attempt to access beyond end of device
[  160.867964][ T9838] loop0: rw=0, sector=2066, nr_sectors = 1 limit=128
[  160.872282][ T9843] loop5: detected capacity change from 0 to 2048
[  160.881274][ T9838] Buffer I/O error on dev loop0, logical block 2066, async page read
[  160.895972][ T9838] syz.0.2239: attempt to access beyond end of device
[  160.895972][ T9838] loop0: rw=0, sector=2067, nr_sectors = 1 limit=128
[  160.897377][ T9840] bond3 (unregistering): Released all slaves
[  160.909224][ T9838] Buffer I/O error on dev loop0, logical block 2067, async page read
[  160.923468][ T9838] syz.0.2239: attempt to access beyond end of device
[  160.923468][ T9838] loop0: rw=0, sector=2068, nr_sectors = 1 limit=128
[  160.923492][ T9845] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2242'.
[  160.936722][ T9838] Buffer I/O error on dev loop0, logical block 2068, async page read
[  160.936752][ T9838] syz.0.2239: attempt to access beyond end of device
[  160.936752][ T9838] loop0: rw=0, sector=2069, nr_sectors = 1 limit=128
[  160.945712][ T9845] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2242'.
[  160.945733][ T9845] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2242'.
[  160.947919][ T9845] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2242'.
[  160.953891][ T9838] Buffer I/O error on dev loop0, logical block 2069, async page read
[  160.954025][ T9838] syz.0.2239: attempt to access beyond end of device
[  160.954025][ T9838] loop0: rw=0, sector=2070, nr_sectors = 1 limit=128
[  161.015639][ T9838] Buffer I/O error on dev loop0, logical block 2070, async page read
[  161.023990][ T9838] syz.0.2239: attempt to access beyond end of device
[  161.023990][ T9838] loop0: rw=0, sector=2071, nr_sectors = 1 limit=128
[  161.026267][ T9843] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.037242][ T9838] Buffer I/O error on dev loop0, logical block 2071, async page read
[  161.037276][ T9838] Buffer I/O error on dev loop0, logical block 2072, async page read
[  161.037313][ T9838] Buffer I/O error on dev loop0, logical block 2065, async page read
[  161.073863][ T9838] Buffer I/O error on dev loop0, logical block 2066, async page read
[  161.085931][ T9843] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.214118][ T7085] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.245714][ T9858] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2245'.
[  161.444097][ T9863] loop2: detected capacity change from 0 to 2048
[  161.488167][ T9863] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.2247: bad orphan inode 61
[  161.507290][ T9868] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2248'.
[  161.515097][ T9863] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.541503][ T9868] 8021q: adding VLAN 0 to HW filter on device bond1
[  161.556428][ T9868] vlan2: entered allmulticast mode
[  161.561659][ T9868] bond1: entered allmulticast mode
[  161.570308][ T9871] loop0: detected capacity change from 0 to 512
[  161.587157][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.598357][ T9871] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.611536][ T9871] ext4 filesystem being mounted at /445/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.656260][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.679809][ T9879] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2252'.
[  161.706927][ T9885] netlink: zone id is out of range
[  161.709080][ T9879] 8021q: adding VLAN 0 to HW filter on device bond5
[  161.712132][ T9885] netlink: zone id is out of range
[  161.712142][ T9885] netlink: zone id is out of range
[  161.712150][ T9885] netlink: zone id is out of range
[  161.720386][ T9879] bond0: (slave bond5): Enslaving as an active interface with an up link
[  161.723947][ T9885] netlink: zone id is out of range
[  161.723956][ T9885] netlink: zone id is out of range
[  161.731729][ T9882] syz_tun: entered allmulticast mode
[  161.734451][ T9885] netlink: zone id is out of range
[  161.751170][ T9880] syz_tun: left allmulticast mode
[  161.753095][ T9885] netlink: zone id is out of range
[  161.753105][ T9885] netlink: zone id is out of range
[  161.753118][ T9885] netlink: zone id is out of range
[  161.770193][ T9879] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2252'.
[  161.800418][ T9879] bond0 (unregistering): (slave bond5): Releasing backup interface
[  161.810947][ T9879] bond0 (unregistering): Released all slaves
[  161.845566][ T9891] netlink: 'syz.2.2257': attribute type 1 has an invalid length.
[  161.860331][ T9891] 8021q: adding VLAN 0 to HW filter on device bond3
[  161.892183][ T9891] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  161.903759][ T9891] bond3 (unregistering): Released all slaves
[  161.916440][ T9899] loop0: detected capacity change from 0 to 512
[  161.925579][ T9899] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  161.937674][ T9899] EXT4-fs (loop0): 1 truncate cleaned up
[  161.943814][ T9899] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.071159][ T9905] ==================================================================
[  162.079391][ T9905] BUG: KCSAN: data-race in file_write_and_wait_range / xas_set_mark
[  162.087433][ T9905] 
[  162.089772][ T9905] write to 0xffff888119c00b3c of 4 bytes by task 9899 on cpu 0:
[  162.097418][ T9905]  xas_set_mark+0x12b/0x140
[  162.101983][ T9905]  tag_pages_for_writeback+0xc2/0x290
[  162.107377][ T9905]  ext4_do_writepages+0x6b2/0x2750
[  162.112541][ T9905]  ext4_writepages+0x176/0x300
[  162.117320][ T9905]  do_writepages+0x1c6/0x310
[  162.121927][ T9905]  filemap_write_and_wait_range+0x144/0x340
[  162.127864][ T9905]  filemap_invalidate_pages+0xa4/0x1a0
[  162.133334][ T9905]  kiocb_invalidate_pages+0x6e/0x80
[  162.138554][ T9905]  __iomap_dio_rw+0x5d4/0x1250
[  162.143324][ T9905]  iomap_dio_rw+0x40/0x90
[  162.147666][ T9905]  ext4_file_write_iter+0xad9/0xf00
[  162.152923][ T9905]  iter_file_splice_write+0x666/0x9e0
[  162.158307][ T9905]  direct_splice_actor+0x153/0x2a0
[  162.163462][ T9905]  splice_direct_to_actor+0x30f/0x680
[  162.168861][ T9905]  do_splice_direct+0xda/0x150
[  162.173642][ T9905]  do_sendfile+0x380/0x650
[  162.178080][ T9905]  __x64_sys_sendfile64+0x105/0x150
[  162.183320][ T9905]  x64_sys_call+0x2bb0/0x2ff0
[  162.188017][ T9905]  do_syscall_64+0xd2/0x200
[  162.192564][ T9905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.198476][ T9905] 
[  162.200805][ T9905] read to 0xffff888119c00b3c of 4 bytes by task 9905 on cpu 1:
[  162.208365][ T9905]  file_write_and_wait_range+0x10e/0x2c0
[  162.214156][ T9905]  generic_buffers_fsync_noflush+0x45/0x120
[  162.220106][ T9905]  ext4_sync_file+0x1ab/0x690
[  162.224822][ T9905]  vfs_fsync_range+0x10d/0x130
[  162.229605][ T9905]  ext4_buffered_write_iter+0x34f/0x3c0
[  162.235303][ T9905]  ext4_file_write_iter+0xdbf/0xf00
[  162.240563][ T9905]  iter_file_splice_write+0x666/0x9e0
[  162.245946][ T9905]  direct_splice_actor+0x153/0x2a0
[  162.251085][ T9905]  splice_direct_to_actor+0x30f/0x680
[  162.256557][ T9905]  do_splice_direct+0xda/0x150
[  162.261348][ T9905]  do_sendfile+0x380/0x650
[  162.265784][ T9905]  __x64_sys_sendfile64+0x105/0x150
[  162.271038][ T9905]  x64_sys_call+0x2bb0/0x2ff0
[  162.275738][ T9905]  do_syscall_64+0xd2/0x200
[  162.280267][ T9905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.286185][ T9905] 
[  162.288516][ T9905] value changed: 0x02000021 -> 0x04000021
[  162.294247][ T9905] 
[  162.296572][ T9905] Reported by Kernel Concurrency Sanitizer on:
[  162.302827][ T9905] CPU: 1 UID: 0 PID: 9905 Comm: syz.0.2260 Tainted: G        W           6.16.0-syzkaller-12256-g561c80369df0 #0 PREEMPT(voluntary) 
[  162.316495][ T9905] Tainted: [W]=WARN
[  162.320335][ T9905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  162.330417][ T9905] ==================================================================
[  162.776218][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.