last executing test programs:

1m13.005357174s ago: executing program 4 (id=4345):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000280)='mm_page_free\x00', r1, 0x0, 0x800000000000002}, 0x18)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
sendfile(r2, r2, 0x0, 0x800000009)

1m12.850202027s ago: executing program 4 (id=4347):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)

1m12.31170953s ago: executing program 4 (id=4368):
r0 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x2, 0x80, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='sched_switch\x00', r3, 0x0, 0x2}, 0x18)

1m12.130879125s ago: executing program 4 (id=4371):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
move_mount(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f00000001c0)='./file0\x00', 0x221)

1m12.079299049s ago: executing program 4 (id=4372):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x4, 0x6})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

1m11.991313716s ago: executing program 4 (id=4375):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000004280), 0x400)

1m11.990558696s ago: executing program 32 (id=4375):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000004280), 0x400)

1m4.139517833s ago: executing program 1 (id=4752):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4dd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25047c0000100036800c00020007009300000000000c0001"], 0x30}, 0x1, 0x0, 0x0, 0x8080}, 0x4080)

1m4.103139847s ago: executing program 1 (id=4746):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000004c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01002dbd7000fedbdf2501"], 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x40040)

1m4.036510702s ago: executing program 1 (id=4760):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x2}, 0x50)
syz_io_uring_setup(0x3c0c, &(0x7f0000000400)={0x0, 0xa26e, 0x4002, 0x4}, 0x0, 0x0)

1m3.997623695s ago: executing program 1 (id=4762):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
move_mount(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f00000001c0)='./file0\x00', 0x221)

1m3.981034486s ago: executing program 1 (id=4753):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f0000000480)=0x74d, 0x4)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000140)=0x3, 0x20)
sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f00000000c0)=@id, 0x10, 0x0}, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@id={0x1e, 0x2}, 0x10)

1m3.748963555s ago: executing program 1 (id=4767):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000010000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x88002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x2a)
pwritev(r1, &(0x7f00000000c0)=[{0x0, 0x4f}, {&(0x7f0000000140)="de", 0x1}], 0x2, 0x0, 0x0)

1m3.748718565s ago: executing program 33 (id=4767):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000010000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x88002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x2a)
pwritev(r1, &(0x7f00000000c0)=[{0x0, 0x4f}, {&(0x7f0000000140)="de", 0x1}], 0x2, 0x0, 0x0)

59.027317119s ago: executing program 5 (id=4933):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a500850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

59.017095309s ago: executing program 5 (id=4934):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x8, 0xcc38b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_bp={0x0, 0x5}, 0x0, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003500)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4e0664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa7666b5ded16ee7025f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b3a2327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6cd28cf28fe2ee593e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c191355391771f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde34ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f2708e09ae8268dcc15411483b8506386aa0ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae4c697bfc674e03231c42f7eaaf5166bbc4653c71805f9448416e379cc1c40f8f866c9b319a849dd00ff9b84857436ed362c4632bfc3fa7357c24f15bbb07bd91893e61df7eb6dc5e071a9cc2faa7a32a91c4d982f5cfb725dca80b23874877a4980dbd70cda040b1ce527e7188159df77b493efbbd7bfe2680bf44e49eb68e5e33a0a5726072b2699d6244cd5c4a82bf18c668a3d43cec78c5fe1f12283d5dde6d0ea0b1b81ee7c065c938577e4ec93f22f1e6106f337625b7f7798011a6"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffd4d}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='tlb_flush\x00', r1, 0x0, 0x2}, 0x18)
mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x3, 0x13, r0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)

58.88217262s ago: executing program 5 (id=4937):
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x58, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x8, 0x10, 0x6169, 0x9, 0xd3, 0x0, 0xffffeffa, 0x7, 0x2ac8}}}}]}, 0x58}}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x30, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {}, {0x9, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x2}}]}, 0x30}, 0x1, 0x0, 0x0, 0x55}, 0x4000)

58.816962246s ago: executing program 5 (id=4939):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x59d, &(0x7f0000001100)="$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")
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
write$binfmt_register(r0, &(0x7f0000000140)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x2007, 0x3a, '\r', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4E\xe7L\x82n;H\xd8\xdf\x9a, \\E\xd4\xab\x1ed', 0x3a, './file2', 0x3a, [0x46]}, 0x4b)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1258438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
rename(&(0x7f00000001c0)='./file2\x00', &(0x7f0000000200)='./file1\x00')

58.431051527s ago: executing program 5 (id=4942):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x8, 0x7fe2, 0x1, 0x4}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f00000002c0)={0x28, 0x0, 0x2710, @local}, 0x10)

57.791813349s ago: executing program 5 (id=4956):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000680), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
write$selinux_validatetrans(r0, 0x0, 0x79)

57.751826202s ago: executing program 34 (id=4956):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000680), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
write$selinux_validatetrans(r0, 0x0, 0x79)

847.466641ms ago: executing program 7 (id=6932):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b904021d080225000000040000a118000200fcffffff00000e1208000f0100810401a80016ea1f", 0x35}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000005c0)=""/4163, 0x1043}], 0x1}, 0x40000000)
write$cgroup_subtree(r0, &(0x7f0000000580)=ANY=[], 0xfe33)

724.72858ms ago: executing program 7 (id=6937):
r0 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000080)=0x7ff, 0x4)
sendmmsg$inet(r0, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000a40)="fac28d000090e9c3aee5dbe57493388f51e611ceb53a5c9866a207ace2b5957fe5ac95a01f7ceb22c68cb55a91489a9c06457941f270ea9982947c9f2bbe18232844eeab6796f3220606366b66adcdbdaa9d52c6bdc16d311e5da98997031d27dcad941eac2ccf44f3af8a19479bbaf8b670e53fcb75a7c4b9ba6a3027cbbaa9b9fa55ff178181b6d798bbcba0a9195802c8b4c0b6590bd04b22a0e8e7ab058ff877c48c419da077efcb78c2f9cb9cda2bfd0359ac3222b9078ad5365c69da29e4c712ba014525d404f85d79d56895b83421ab5670c478a40e7d3eb185136ca623490955eb0a9d6a8447315a2377d1d474c43c228c42f9ae7096c63b9b873c1cb5dd9059914ff4ffa17a05126910e50338080000000000000067474c83564a2b1fbbf11231008bbf11cc8cc6e4fcbda4b75a597b2018ca8c0f36378b62628d59a76c44b1414a7cd5b0a02ed90f9f4cfe10501edbaf114259652efa99a4319211eb0364f6b8224c1da83ae83fd55be72530949197603467e45deed2d2cfd6f74cd14b8d968555d554a623df2069f9b45856de29a4fd334c86c46a57e445db25188ebcb6289779c760ff8eef66afae2cf848c754b80a5fce558bd95963a4d79eaf71304529c5a4b28d1a59f1bd069b2e057af846d557a34e48e72f63d0aa5a259647b7ee2f52518308f9f1cad379614a405953ab8c4afe5a48ace74fb163f729fc4949537d6f98c3adc8771d2b1b9014d2b35ebd7dbe24f39adbcace50a90192a5464fa79ddacff779012284a398ac91f4430f8bb902f736c712bc69b9198b7991b3acfd73a16fa7f44c7859b28e35a8ca5c0ac07f8245723c2a1a9b5320d1f1887ba2107f72526087b4ff3728489b1c85f3299a3046e2092ce0f94ccbf05ac57ed6", 0x281}], 0x1}}], 0x1, 0x80)

723.85403ms ago: executing program 2 (id=6938):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000001b00)=@newqdisc={0x21c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1ec, 0x2, {{0x0, 0x0, 0x57b2}, [@TCA_NETEM_REORDER={0xc, 0x3, {0xdc, 0x3}}, @TCA_NETEM_LOSS={0xc8, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x8, 0x4, 0x2, 0x3e}}, @NETEM_LOSS_GE={0x14, 0x2, {0x2, 0x7, 0x2}}, @NETEM_LOSS_GE={0x14, 0x2, {0x2, 0xffffdb68, 0xf, 0x4}}, @NETEM_LOSS_GI={0x30, 0x1, {0x7, 0x1, 0x8, 0x85bc, 0x1ff}}, @NETEM_LOSS_GE={0x14, 0x2, {0x5, 0x8000000, 0x5}}, @NETEM_LOSS_GI={0x18, 0x1, {0x7, 0x0, 0x5, 0x7, 0x1}}, @NETEM_LOSS_GE={0x14, 0x2, {0x6, 0xf, 0xa9c8}}, @NETEM_LOSS_GI={0x18, 0x1, {0x7, 0x0, 0x8, 0x50195274, 0x1}}, @NETEM_LOSS_GE={0x0, 0x2, {0x4, 0x0, 0x59, 0x2}}]}, @TCA_NETEM_LOSS={0xd0, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x5, 0x3, 0x1, 0xedff, 0x4}}, @NETEM_LOSS_GI={0x88, 0x1, {0x9, 0x9, 0x7, 0xfffff000, 0x3a2}}, @NETEM_LOSS_GE={0x14, 0x2, {0x9, 0x4, 0x3, 0x9}}, @NETEM_LOSS_GI={0x18, 0x1, {0x7, 0x4, 0x7, 0x200, 0x40}}, @NETEM_LOSS_GI={0x18, 0x1, {0xffffff54, 0x3, 0x1, 0x3c9, 0xc}}, @NETEM_LOSS_GE={0x9, 0x2, {0x3, 0x5, 0x5, 0x9}}, @NETEM_LOSS_GE={0x14, 0x2, {0x1, 0x9, 0x9, 0x2}}, @NETEM_LOSS_GI={0xffffffffffffffad, 0x1, {0x1, 0x9da, 0x1, 0x141, 0xffff}}, @NETEM_LOSS_GI={0x18, 0x1, {0x7, 0x40ae, 0x3, 0x3, 0x6}}]}, @TCA_NETEM_SLOT={0x2c, 0xc, {0x7, 0x100, 0x40, 0x9, 0x2, 0x94}}]}}}]}, 0x21c}}, 0x0)

698.830022ms ago: executing program 7 (id=6940):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x1000, 0x7}, 0x50)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000040)=@generic={&(0x7f0000000000)='./cgroup\x00', r2}, 0x18)

678.576744ms ago: executing program 0 (id=6941):
socket$nl_xfrm(0x10, 0x3, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x2, 0x1}, 0x1205, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x40000000000000, 0xffffffffffffffff, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)

665.950035ms ago: executing program 2 (id=6944):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x40, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
writev(r2, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}], 0x1)

649.732197ms ago: executing program 7 (id=6945):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
bind$llc(r0, &(0x7f0000000140)={0x1a, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
sendfile(r0, r1, 0x0, 0xffffffff000)
ioctl$int_in(r0, 0x5452, &(0x7f00000001c0)=0x40000083)

614.797669ms ago: executing program 2 (id=6956):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)={0x38, r2, 0x10ada85e65c25359, 0xfffffff9, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x72}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)

552.471075ms ago: executing program 2 (id=6947):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setfsgid(0x0)

552.007855ms ago: executing program 6 (id=6958):
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x9}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="080100000000000029000000", @ANYRES64=r0], 0x108}}], 0x2, 0xc040)

499.818279ms ago: executing program 6 (id=6948):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)='N', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x4e24, 0x0, @private2}, 0x1c)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000300)={0x0, 0x2}, 0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7c, &(0x7f00000000c0), &(0x7f0000000180)=0x8)

483.66202ms ago: executing program 2 (id=6949):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x0, 0x7, 0x6, 0x0, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)

440.347324ms ago: executing program 2 (id=6950):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200))
ioctl$int_in(r0, 0x5452, &(0x7f00000000c0)=0x2)
sendmmsg$inet6(r0, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x34000811)

431.837084ms ago: executing program 6 (id=6951):
socket$inet6_sctp(0xa, 0x5, 0x84)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

331.467342ms ago: executing program 3 (id=6952):
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300a8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffff800, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x3, 0x0, 0x8003}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x62, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x38, 0x3, r0, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}})
io_uring_enter(r0, 0x6e2, 0x8313, 0x22, 0x0, 0xfffffffffffffd41)

330.984203ms ago: executing program 6 (id=6964):
r0 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="7f454c4682010503fcffffffffffffff02003e0005000000fd0400000000000040000000000000004401000000000000080000003e003800010007002500010003"], 0x78)
close_range(r1, 0xffffffffffffffff, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
execveat$binfmt(r2, r0, 0x0, 0x0, 0x1000)

321.329363ms ago: executing program 0 (id=6953):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000380)='kfree\x00', r1}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000000000000808000440000000010c00014000000000000080010c00024000000000000000090800034000000fba0c00024000000000000000000c000140000000000000000714000000110001"], 0xdc}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="44000000190a0102"], 0x44}}, 0x0)

291.256646ms ago: executing program 6 (id=6954):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000)=0x80, 0x4)

210.955222ms ago: executing program 6 (id=6955):
socket$unix(0x1, 0x1, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x80, 0x5, 0x7fff0003}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000400))

206.717753ms ago: executing program 3 (id=6968):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@bloom_filter={0x1e, 0x0, 0x7, 0x6, 0x0, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)

206.204843ms ago: executing program 0 (id=6957):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x328000, 0x1000, 0x0, 0x4000002}, 0x20)

181.936225ms ago: executing program 3 (id=6959):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)={0x38, r2, 0x10ada85e65c25359, 0xfffffff9, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x72}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)

177.779015ms ago: executing program 0 (id=6960):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000040), &(0x7f0000000080)='%pS    \x00'}, 0x20)

161.481376ms ago: executing program 3 (id=6961):
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x9}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="080100000000000029000000", @ANYRES64=r0], 0x108}}], 0x2, 0xc040)

126.943899ms ago: executing program 3 (id=6962):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002a40)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc101500000c0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000e4140380100000800c00018006000100d10300000c0000800800034000000002"], 0x1574}, 0x1, 0x0, 0x0, 0x4000850}, 0x840)

120.20256ms ago: executing program 0 (id=6974):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_lsm={0x4, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000050002000000000085000000cc00000085000000000000000500feff0000000095"], &(0x7f00000003c0)='GPL\x00', 0x2}, 0x94)

105.629031ms ago: executing program 3 (id=6963):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$eJzs3E1rE10UwPGTNEnTlHayeHhEQXrRjW6GNu7FIC2IAUttxBcQp81EQ8akZEIlIrZduXEhfggXpcvuCtov0I07V27cdSO4sAtxJDOTl7aJrWnSWPv/QZlD7j0z9+Y24dyBzPbdN0/zWVvPGmUJRpUERER2ROISlJqAfwy6cUSaLcvl4W+fzt++d/9mMpWanFFqKjl7JaGUGh17/+zFkN9tY1C24g+3vya+bP2/dXb75+yTnK1ytioUy8pQc8XPZWPOMlUmZ+d1paYt07BNlSvYZslrd5ZELFNlreLCQkUZhcxIbKFk2rYyChWVNyuqXFTlUkUZj41cQem6rkZigoOkV2dmjGSHyfNdHgx6pFRKGgMiMrSvJb3alwEBAIC+8uv/erUfrJb0ndT/oZb1/9qFzfLwnfVRv/7fiFTrf5Gm+v9R41ymygTr9X9URBr1f9HbH3S7/t9fEZ1sr3cvjjhOPYy06n+k+h8nRLX+j/mfX9fKg7VxN6D+BwAAAAAAAAAAAAAAAAAAAADgJNhxHM1xHM07DvivOtqgiETdX5B47X0eJnpk9/o3/lj/06Hx4I7QqIj1ajG9mPaOfodNEbHElHHR5If7/+CrxpFl5XZSVXH5YC35+UuLae+7JJmVnJs/IZrE9+Y7ztSN1OSE8uzOD0usOT8hmvzXOj+xNz9cPUbk0sWmfF00+TgvRbEk4/8yrpb/ckKp67dSe64/5PYDAAAAAOBfoKu6+v59sLld39/u7Y+9dm9/HZLW9we8/fV4y/19SM6F+jVrAAAAAABOF7vyPG9YllnqUbAiIj2+RJugNsPDZtUekNumT0AC7Zq6ENQu3ll6dWxdG0/4UO9YsKOhjkX+cFFaBrXbRu36yHQnZ3Y0kaO+h2fevvv++z7enTGRw5zw6nr0gJl2GkQOmmn42L6AAAAAABybRtFfe+VafwcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMApdByP4uv3HAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC/xa8AAAD//46ZAFE=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r1, &(0x7f0000000080)="4f1002f8839db50f6b17361b58", 0xd)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

86.078943ms ago: executing program 0 (id=6965):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="020000000400000005000000aa"], 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r0}, 0x38)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22041000f3fe80000000000000110880febb0007aafe8000000000000027bfa7b09303960e2b80"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

85.925253ms ago: executing program 7 (id=6966):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="0000000005"])

0s ago: executing program 7 (id=6967):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f00000004c0)={'ip6tnl0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x3, 0x0, 0x0, @local, @local, 0x7, 0x7, 0x202, 0x8}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000240)={'syztnl1\x00', 0x0})

kernel console output (not intermixed with test programs):

uota_enable:7131: comm syz.3.4869: Bad quota inode: 3, type: 0
[  131.280519][T14699] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  131.296419][T14699] EXT4-fs (loop3): mount failed
[  131.307313][T14697] IPVS: using max 3696 ests per chain, 184800 per kthread
[  131.353584][   T31] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.439690][   T31] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.458719][T14721] rdma_op ffff8881255f7580 conn xmit_rdma 0000000000000000
[  131.503622][   T31] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.598086][   T31] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.679554][   T31] bridge_slave_1: left allmulticast mode
[  131.685531][   T31] bridge_slave_1: left promiscuous mode
[  131.691319][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.712647][   T31] bridge_slave_0: left allmulticast mode
[  131.718549][   T31] bridge_slave_0: left promiscuous mode
[  131.724424][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.822224][   T31] team0: Port device bond0 removed
[  131.829065][   T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  131.838230][   T31] bond_slave_0: left allmulticast mode
[  131.844588][   T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  131.854136][   T31] bond_slave_1: left allmulticast mode
[  131.860162][   T31] bond0 (unregistering): Released all slaves
[  131.923296][   T31] hsr_slave_0: left promiscuous mode
[  131.929175][   T31] hsr_slave_1: left promiscuous mode
[  131.934687][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  131.942164][   T31] batman_adv: batadv0: Removing interface: batadv_slave_0
[  131.949882][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  131.957291][   T31] batman_adv: batadv0: Removing interface: batadv_slave_1
[  131.968980][   T31] veth1_macvtap: left promiscuous mode
[  131.974633][   T31] veth0_macvtap: left promiscuous mode
[  131.980373][   T31] veth1_vlan: left promiscuous mode
[  131.988020][   T31] veth0_vlan: left promiscuous mode
[  132.064302][   T31] team0 (unregistering): Port device team_slave_1 removed
[  132.079215][   T31] team0 (unregistering): Port device team_slave_0 removed
[  132.128964][T14755] netlink: 'syz.6.4891': attribute type 12 has an invalid length.
[  132.136935][T14755] netlink: 'syz.6.4891': attribute type 29 has an invalid length.
[  132.146954][T14762] netlink: 'syz.6.4891': attribute type 12 has an invalid length.
[  132.154938][T14762] netlink: 'syz.6.4891': attribute type 29 has an invalid length.
[  132.318798][T14796] loop6: detected capacity change from 0 to 1024
[  132.326949][T14796] EXT4-fs: Ignoring removed orlov option
[  132.338960][T14796] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.341931][T14801] loop2: detected capacity change from 0 to 1024
[  132.358828][T14801] EXT4-fs: inline encryption not supported
[  132.364701][T14801] EXT4-fs: Ignoring removed i_version option
[  132.389368][T14801] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.405536][   T31] IPVS: stop unused estimator thread 0...
[  132.454961][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.545022][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.626597][T14822] IPVS: stopping master sync thread 11648 ...
[  132.658402][T14821] loop6: detected capacity change from 0 to 8192
[  132.673563][T14828] SELinux:  Context system_u:object_r:crack_db_t:s0 is not valid (left unmapped).
[  132.689023][T14832] loop2: detected capacity change from 0 to 128
[  132.697359][T14832] EXT4-fs: Ignoring removed nobh option
[  132.703505][T14831] loop5: detected capacity change from 0 to 512
[  132.714008][T14832] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  132.720684][T14835] loop3: detected capacity change from 0 to 512
[  132.733433][T14832] ext4 filesystem being mounted at /931/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.745290][T14831] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #3: comm syz.5.4926: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  132.774732][T14831] EXT4-fs error (device loop5): ext4_quota_enable:7131: comm syz.5.4926: Bad quota inode: 3, type: 0
[  132.775100][ T3305] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  132.786452][T14831] EXT4-fs warning (device loop5): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  132.809773][T14831] EXT4-fs (loop5): mount failed
[  132.809916][T14835] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.832236][T14835] ext4 filesystem being mounted at /958/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  132.928371][T14835] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 3: comm syz.3.4927: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=2048 fake=1
[  132.949661][T14835] EXT4-fs (loop3): Remounting filesystem read-only
[  132.984182][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.058487][T14857] __nla_validate_parse: 9 callbacks suppressed
[  133.058503][T14857] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4936'.
[  133.074069][T14857] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4936'.
[  133.083158][T14857] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4936'.
[  133.113696][T14857] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4936'.
[  133.122926][T14857] netlink: 'syz.0.4936': attribute type 6 has an invalid length.
[  133.131793][T14860] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4937'.
[  133.198383][T14864] loop5: detected capacity change from 0 to 1024
[  133.213113][T14864] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.4939: Failed to acquire dquot type 0
[  133.230863][T14864] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  133.253031][T14864] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.4939: corrupted inode contents
[  133.265417][T14864] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #13: comm syz.5.4939: mark_inode_dirty error
[  133.282255][T14864] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.4939: corrupted inode contents
[  133.306502][T14864] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.4939: mark_inode_dirty error
[  133.319877][T14864] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.4939: corrupted inode contents
[  133.338420][T14864] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  133.347506][T14864] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.4939: corrupted inode contents
[  133.360229][T14864] EXT4-fs error (device loop5): ext4_truncate:4666: inode #13: comm syz.5.4939: mark_inode_dirty error
[  133.373654][T14864] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  133.383607][T14864] EXT4-fs (loop5): 1 truncate cleaned up
[  133.389756][T14864] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.427937][T14864] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  133.441910][T14864] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  133.452185][T14864] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.4939: Failed to acquire dquot type 0
[  133.465832][T14864] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  133.501926][T13535] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 74: comm syz-executor: path /137/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=768, inode=0, rec_len=0, size=1024 fake=0
[  133.542713][T13535] EXT4-fs error (device loop5): ext4_empty_dir:3120: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=11008, inode=0, rec_len=0, size=1024 fake=0
[  133.574745][T13535] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 74: comm syz-executor: path /137/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=768, inode=0, rec_len=0, size=1024 fake=0
[  133.617546][T13535] EXT4-fs error (device loop5): ext4_empty_dir:3120: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=11008, inode=0, rec_len=0, size=1024 fake=0
[  133.648732][T13535] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 74: comm syz-executor: path /137/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=768, inode=0, rec_len=0, size=1024 fake=0
[  133.673744][T13535] EXT4-fs error (device loop5): ext4_empty_dir:3120: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=11008, inode=0, rec_len=0, size=1024 fake=0
[  133.696457][T13535] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 74: comm syz-executor: path /137/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=768, inode=0, rec_len=0, size=1024 fake=0
[  133.719342][T13535] EXT4-fs error (device loop5): ext4_empty_dir:3120: inode #11: block 74: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=11008, inode=0, rec_len=0, size=1024 fake=0
[  133.745417][T13535] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 74: comm syz-executor: path /137/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=768, inode=0, rec_len=0, size=1024 fake=0
[  133.814899][   T29] kauditd_printk_skb: 385 callbacks suppressed
[  133.814913][   T29] audit: type=1400 audit(1755836089.717:5381): avc:  denied  { module_request } for  pid=14871 comm="syz.6.4943" kmod="crypto-echainiv(authenc(digest_null,cbc(aes)))" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  133.846494][   T29] audit: type=1326 audit(1755836089.717:5382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  133.870004][   T29] audit: type=1326 audit(1755836089.717:5383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  133.894198][   T29] audit: type=1326 audit(1755836089.717:5384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  133.917763][   T29] audit: type=1326 audit(1755836089.717:5385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  133.941366][   T29] audit: type=1326 audit(1755836089.717:5386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  133.965054][   T29] audit: type=1326 audit(1755836089.717:5387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f897e000b07 code=0x7ffc0000
[  133.989182][   T29] audit: type=1326 audit(1755836089.717:5388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f897e000a7c code=0x7ffc0000
[  134.012974][   T29] audit: type=1326 audit(1755836089.717:5389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f897e0009b4 code=0x7ffc0000
[  134.036751][   T29] audit: type=1326 audit(1755836089.717:5390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14873 comm="syz.2.4944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f897e0009b4 code=0x7ffc0000
[  134.206117][   T41] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  134.216634][   T41] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.273044][   T41] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  134.283526][   T41] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.356884][   T41] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  134.367720][   T41] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.432270][   T41] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  134.442707][   T41] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.490364][T14932] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4966'.
[  134.499350][T14932] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4966'.
[  134.510382][T14936] netlink: 180 bytes leftover after parsing attributes in process `syz.3.4967'.
[  134.535453][T14915] lo speed is unknown, defaulting to 1000
[  134.602531][   T41] bridge_slave_1: left allmulticast mode
[  134.608391][   T41] bridge_slave_1: left promiscuous mode
[  134.614249][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.657699][   T41] bridge_slave_0: left allmulticast mode
[  134.663380][   T41] bridge_slave_0: left promiscuous mode
[  134.669209][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.747281][T14947] loop2: detected capacity change from 0 to 1024
[  134.762014][T14947] EXT4-fs: Ignoring removed orlov option
[  134.767836][T14947] EXT4-fs: Ignoring removed nomblk_io_submit option
[  134.803140][T14947] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.840527][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.849876][   T41] team0: Port device geneve1 removed
[  134.875532][T14958] netlink: 268 bytes leftover after parsing attributes in process `syz.2.4976'.
[  134.950060][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  134.967009][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  134.993203][   T41] bond0 (unregistering): Released all slaves
[  135.086550][T14963] SELinux:  Context system_u:object_r:udev_exec_t:s0 is not valid (left unmapped).
[  135.157109][   T41] hsr_slave_0: left promiscuous mode
[  135.166622][   T41] hsr_slave_1: left promiscuous mode
[  135.180727][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  135.188237][   T41] batman_adv: batadv0: Removing interface: batadv_slave_0
[  135.197169][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  135.204861][   T41] batman_adv: batadv0: Removing interface: batadv_slave_1
[  135.223217][   T41] veth1_macvtap: left promiscuous mode
[  135.228912][   T41] veth0_macvtap: left promiscuous mode
[  135.245262][   T41] veth1_vlan: left promiscuous mode
[  135.250991][   T41] veth0_vlan: left promiscuous mode
[  135.381255][   T41] team0 (unregistering): Port device team_slave_1 removed
[  135.393674][   T41] team0 (unregistering): Port device team_slave_0 removed
[  135.397694][T14986] 9pnet_fd: Insufficient options for proto=fd
[  135.465987][T14975] pimreg: entered allmulticast mode
[  135.472245][T14976] pimreg: left allmulticast mode
[  135.495021][T14915] chnl_net:caif_netlink_parms(): no params data found
[  135.511653][T14974] lo speed is unknown, defaulting to 1000
[  135.583788][T15001] netlink: 'syz.0.4994': attribute type 3 has an invalid length.
[  135.651286][T14915] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.658618][T14915] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.682701][T14915] bridge_slave_0: entered allmulticast mode
[  135.689347][T14915] bridge_slave_0: entered promiscuous mode
[  135.701186][T14915] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.708404][T14915] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.716287][T14915] bridge_slave_1: entered allmulticast mode
[  135.722792][T14915] bridge_slave_1: entered promiscuous mode
[  135.743002][T14915] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  135.753548][T14915] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.784213][T14915] team0: Port device team_slave_0 added
[  135.791313][T14915] team0: Port device team_slave_1 added
[  135.811687][T14915] batman_adv: batadv0: Adding interface: batadv_slave_0
[  135.818840][T14915] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.844837][T14915] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  135.860865][T14915] batman_adv: batadv0: Adding interface: batadv_slave_1
[  135.868019][T14915] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.894018][T14915] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  135.907215][T15026] pimreg: entered allmulticast mode
[  135.947701][T15026] pimreg: left allmulticast mode
[  135.965068][T14915] hsr_slave_0: entered promiscuous mode
[  135.971557][T14915] hsr_slave_1: entered promiscuous mode
[  135.977710][T14915] debugfs: 'hsr0' already exists in 'hsr'
[  135.983503][T14915] Cannot create hsr debugfs directory
[  136.064151][T15045] loop0: detected capacity change from 0 to 512
[  136.072014][T15045] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  136.083597][T15045] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c119, mo2=0002]
[  136.092729][T15045] System zones: 1-12
[  136.097739][T15045] EXT4-fs error (device loop0): ext4_orphan_get:1392: comm syz.0.5014: inode #15: comm syz.0.5014: iget: illegal inode #
[  136.127974][T15045] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.5014: couldn't read orphan inode 15 (err -117)
[  136.162503][T15045] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.193793][T15048] loop3: detected capacity change from 0 to 512
[  136.210905][T14915] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  136.222812][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.228416][T15048] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.244805][T14915] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  136.253759][T15048] ext4 filesystem being mounted at /984/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  136.269695][T14915] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  136.278968][T15048] EXT4-fs error (device loop3): ext4_get_first_dir_block:3537: inode #12: block 32: comm syz.3.5015: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  136.300515][T15048] EXT4-fs error (device loop3): ext4_get_first_dir_block:3540: inode #12: comm syz.3.5015: directory missing '.'
[  136.320157][T14915] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  136.337728][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.340029][T14915] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.353922][T14915] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.361356][T14915] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.368437][T14915] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.394268][T14915] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.405791][T10561] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.416918][T10561] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.435210][T14915] 8021q: adding VLAN 0 to HW filter on device team0
[  136.454568][  T384] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.461742][  T384] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.474017][T10567] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.481148][T10567] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.541202][T14915] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.647252][T14915] veth0_vlan: entered promiscuous mode
[  136.655945][T14915] veth1_vlan: entered promiscuous mode
[  136.674916][T14915] veth0_macvtap: entered promiscuous mode
[  136.682559][T14915] veth1_macvtap: entered promiscuous mode
[  136.698026][T14915] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.713279][T14915] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.724470][T10567] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.733637][T10567] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.752597][T10567] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.766059][T10567] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.797709][T15104] loop7: detected capacity change from 0 to 2048
[  136.835085][T15104] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.847531][T15104] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.917778][T15108] loop3: detected capacity change from 0 to 8192
[  136.950435][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.498625][T15135] netlink: 'syz.7.5040': attribute type 3 has an invalid length.
[  137.585255][T15144] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5044'.
[  137.686621][T15154] loop6: detected capacity change from 0 to 2048
[  137.742405][T15154] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.755885][T15162] program syz.0.5053 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  137.768960][T15154] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.990189][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.037176][T15184] loop6: detected capacity change from 0 to 512
[  138.052131][T15184] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  138.059391][T15182] lo speed is unknown, defaulting to 1000
[  138.062705][T15184] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c119, mo2=0002]
[  138.074337][T15184] System zones: 1-12
[  138.079153][T15184] EXT4-fs error (device loop6): ext4_orphan_get:1392: comm syz.6.5062: inode #15: comm syz.6.5062: iget: illegal inode #
[  138.095408][T15184] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.5062: couldn't read orphan inode 15 (err -117)
[  138.108419][T15184] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.134561][T15189] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  138.160026][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.273760][T15200] loop0: detected capacity change from 0 to 8192
[  138.338358][T15210] loop6: detected capacity change from 0 to 512
[  138.368437][T15210] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.402973][T15210] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  138.427480][T15210] EXT4-fs error (device loop6): ext4_get_first_dir_block:3537: inode #12: block 32: comm syz.6.5074: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  138.491710][T15210] EXT4-fs error (device loop6): ext4_get_first_dir_block:3540: inode #12: comm syz.6.5074: directory missing '.'
[  138.547262][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.618050][T15209] lo speed is unknown, defaulting to 1000
[  138.904565][T15237] SELinux: failed to load policy
[  138.942717][T15239] __nla_validate_parse: 1 callbacks suppressed
[  138.942732][T15239] netlink: 9 bytes leftover after parsing attributes in process `syz.6.5086'.
[  138.976924][T15239] 0·: renamed from hsr0 (while UP)
[  138.984930][T15239] 0·: entered allmulticast mode
[  138.989880][T15239] hsr_slave_0: entered allmulticast mode
[  138.995894][T15239] hsr_slave_1: entered allmulticast mode
[  139.002403][T15239] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  139.060144][T15243] lo speed is unknown, defaulting to 1000
[  139.206345][   T29] kauditd_printk_skb: 163 callbacks suppressed
[  139.206360][   T29] audit: type=1326 audit(1755836094.768:5554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15248 comm="syz.7.5091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.271666][   T29] audit: type=1326 audit(1755836094.796:5555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15248 comm="syz.7.5091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.295551][   T29] audit: type=1326 audit(1755836094.796:5556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15248 comm="syz.7.5091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.319346][   T29] audit: type=1326 audit(1755836094.796:5557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15248 comm="syz.7.5091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.400136][   T29] audit: type=1326 audit(1755836094.899:5558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15248 comm="syz.7.5091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.423826][   T29] audit: type=1326 audit(1755836094.899:5559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15248 comm="syz.7.5091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.447508][   T29] audit: type=1326 audit(1755836094.899:5560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15248 comm="syz.7.5091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.470998][   T29] audit: type=1326 audit(1755836094.946:5561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15251 comm="syz.7.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.494644][   T29] audit: type=1326 audit(1755836094.946:5562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15251 comm="syz.7.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  139.518612][   T29] audit: type=1326 audit(1755836094.946:5563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15253 comm="syz.6.5094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  139.758730][T15279] loop7: detected capacity change from 0 to 1024
[  139.767134][T15279] EXT4-fs: Ignoring removed oldalloc option
[  139.773458][T15279] EXT4-fs (loop7): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  139.787853][T15284] netlink: 'syz.3.5107': attribute type 22 has an invalid length.
[  139.788337][T15279] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.795748][T15284] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5107'.
[  139.822187][   T51] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  139.833571][T15284] netlink: 'syz.3.5107': attribute type 22 has an invalid length.
[  139.841472][T15284] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5107'.
[  139.850618][   T51] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  139.859405][   T51] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  139.868472][   T51] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  139.904275][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.239497][T15329] netlink: 96 bytes leftover after parsing attributes in process `syz.7.5127'.
[  140.341483][T15336] lo speed is unknown, defaulting to 1000
[  140.418753][T15351] loop3: detected capacity change from 0 to 8192
[  140.427133][T15351] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  140.441977][T15351] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF
[  140.450963][T15351] FAT-fs (loop3): Filesystem has been set read-only
[  140.526979][T15361] loop6: detected capacity change from 0 to 1024
[  140.534238][T15361] EXT4-fs: Ignoring removed oldalloc option
[  140.540561][T15361] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  140.568395][T15361] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.598953][T15371] syzkaller1: entered promiscuous mode
[  140.604498][T15371] syzkaller1: entered allmulticast mode
[  140.618520][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.628944][T15370] lo speed is unknown, defaulting to 1000
[  140.695448][T15378] loop3: detected capacity change from 0 to 1024
[  140.716119][T15378] EXT4-fs: Ignoring removed oldalloc option
[  140.734404][T15378] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  140.755902][T15381] lo speed is unknown, defaulting to 1000
[  140.769408][T15378] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.805019][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.930549][T15385] lo speed is unknown, defaulting to 1000
[  141.252102][T15410] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5158'.
[  141.407190][T15432] loop0: detected capacity change from 0 to 1024
[  141.431607][T15432] EXT4-fs: Ignoring removed oldalloc option
[  141.438110][T15432] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  141.461182][T15432] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.465474][T15438] lo speed is unknown, defaulting to 1000
[  141.511222][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.574107][T15425] lo speed is unknown, defaulting to 1000
[  141.622314][T15455] loop0: detected capacity change from 0 to 512
[  141.629419][T15455] EXT4-fs: Ignoring removed nomblk_io_submit option
[  141.640272][T15455] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  141.655386][T15455] EXT4-fs (loop0): 1 truncate cleaned up
[  141.661988][T15455] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.734430][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.755970][T15459] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5183'.
[  142.066847][T15508] rdma_op ffff888123937d80 conn xmit_rdma 0000000000000000
[  142.249380][T15523] loop6: detected capacity change from 0 to 512
[  142.256519][T15523] EXT4-fs: Ignoring removed nomblk_io_submit option
[  142.263666][T15523] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  142.277365][T15523] EXT4-fs (loop6): 1 truncate cleaned up
[  142.284659][T15523] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.359532][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.470495][T15540] syzkaller1: entered promiscuous mode
[  142.476089][T15540] syzkaller1: entered allmulticast mode
[  142.510374][T15544] netlink: 'syz.7.5217': attribute type 21 has an invalid length.
[  142.518488][T15544] IPv6: NLM_F_CREATE should be specified when creating new route
[  142.736437][T15564] vhci_hcd: invalid port number 96
[  142.741802][T15564] vhci_hcd: default hub control req: 0318 vf7fa i0060 l0
[  142.879140][T15581] netlink: 100 bytes leftover after parsing attributes in process `syz.2.5235'.
[  142.945424][T15587] netlink: 'syz.2.5238': attribute type 298 has an invalid length.
[  142.992710][T15589] vhci_hcd: invalid port number 96
[  142.997847][T15589] vhci_hcd: default hub control req: 0318 vf7fa i0060 l0
[  143.257886][T15622] syzkaller1: entered promiscuous mode
[  143.263460][T15622] syzkaller1: entered allmulticast mode
[  143.919127][T15648] netlink: 'syz.2.5258': attribute type 21 has an invalid length.
[  143.927284][T15648] IPv6: NLM_F_CREATE should be specified when creating new route
[  144.064483][T15658] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5262'.
[  144.106757][T15663] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5265'.
[  144.446978][T15699] loop7: detected capacity change from 0 to 512
[  144.478031][T15699] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.627048][T15699] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.699234][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.758607][T15722] loop0: detected capacity change from 0 to 512
[  144.790395][T15722] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.804279][T15722] ext4 filesystem being mounted at /1063/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.815880][T15722] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.930363][T15749] netlink: 24 bytes leftover after parsing attributes in process `+}[@'.
[  145.060826][T15761] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5309'.
[  145.090925][   T29] kauditd_printk_skb: 188 callbacks suppressed
[  145.090939][   T29] audit: type=1326 audit(1755836100.278:5752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15764 comm="syz.2.5311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  145.161298][   T29] audit: type=1326 audit(1755836100.306:5753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15764 comm="syz.2.5311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  145.185107][   T29] audit: type=1326 audit(1755836100.306:5754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15764 comm="syz.2.5311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  145.581523][T15801] loop3: detected capacity change from 0 to 512
[  145.600667][   T29] audit: type=1400 audit(1755836100.745:5755): avc:  denied  { setopt } for  pid=15804 comm="syz.0.5327" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  145.647821][T15801] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.664773][T15801] ext4 filesystem being mounted at /1029/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.798952][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.878358][   T29] audit: type=1326 audit(1755836101.007:5756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15828 comm="syz.7.5343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  145.912229][   T29] audit: type=1326 audit(1755836101.045:5757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15828 comm="syz.7.5343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  145.936157][   T29] audit: type=1326 audit(1755836101.045:5758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15828 comm="syz.7.5343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  145.959740][   T29] audit: type=1326 audit(1755836101.045:5759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15828 comm="syz.7.5343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  146.012506][T15836] netlink: 24 bytes leftover after parsing attributes in process `+}[@'.
[  146.053746][T15841] netlink: 88 bytes leftover after parsing attributes in process `syz.7.5338'.
[  146.062841][T15841] netlink: 88 bytes leftover after parsing attributes in process `syz.7.5338'.
[  146.217960][   T29] audit: type=1400 audit(1755836101.325:5760): avc:  denied  { bind } for  pid=15844 comm="syz.0.5340" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  146.306319][   T29] audit: type=1400 audit(1755836101.381:5761): avc:  denied  { read write } for  pid=15848 comm="syz.7.5344" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  146.378797][T15865] loop2: detected capacity change from 0 to 512
[  146.391455][T15861] loop3: detected capacity change from 0 to 512
[  146.411410][T15865] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.434693][T15865] ext4 filesystem being mounted at /1018/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.459926][T15861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.487997][T15861] ext4 filesystem being mounted at /1033/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.533859][T15861] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.559515][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.952037][T15923] vlan2: entered allmulticast mode
[  147.000874][T15937] loop2: detected capacity change from 0 to 256
[  147.189648][T15962] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5395'.
[  147.198713][T15962] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5395'.
[  147.207932][T15962] netlink: 'syz.7.5395': attribute type 20 has an invalid length.
[  147.227596][   T51] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  147.237589][T15962] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5395'.
[  147.246509][T15962] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5395'.
[  147.255605][T15962] netlink: 'syz.7.5395': attribute type 20 has an invalid length.
[  147.268060][   T51] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  147.277041][   T51] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  147.277081][T15969] loop2: detected capacity change from 0 to 164
[  147.292550][   T51] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  147.310061][T15969] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  147.316009][T15970] vlan2: entered allmulticast mode
[  147.573589][T15994] netlink: 88 bytes leftover after parsing attributes in process `syz.6.5408'.
[  148.173410][T16032] vlan1: entered allmulticast mode
[  148.453402][T16077] loop3: detected capacity change from 0 to 1024
[  148.461442][T16077] EXT4-fs: Ignoring removed bh option
[  148.468087][T16077] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  148.491498][T16077] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.507786][T16084] loop0: detected capacity change from 0 to 512
[  148.516727][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.520981][T16084] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.539647][T16084] ext4 filesystem being mounted at /1099/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.559908][T16084] netlink: 'syz.0.5449': attribute type 10 has an invalid length.
[  148.568122][T16084] veth0_vlan: entered allmulticast mode
[  148.575042][T16084] veth0_vlan: left promiscuous mode
[  148.581614][T16084] veth0_vlan: entered promiscuous mode
[  148.589312][T16084] team0: Device veth0_vlan failed to register rx_handler
[  148.625829][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.779821][T16111] loop6: detected capacity change from 0 to 512
[  148.798360][T16111] EXT4-fs (loop6): orphan cleanup on readonly fs
[  148.808493][T16111] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set
[  148.830243][T16111] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm +}[@: Failed to acquire dquot type 1
[  148.861819][T16111] EXT4-fs (loop6): 1 truncate cleaned up
[  148.868260][T16111] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  148.911988][T16111] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  148.939040][T16111] EXT4-fs warning (device loop6): read_mmp_block:115: Error -117 while reading MMP block 0
[  148.958893][T16120] netlink: 'syz.2.5463': attribute type 20 has an invalid length.
[  148.984148][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.991802][T16120] netlink: 'syz.2.5463': attribute type 20 has an invalid length.
[  148.993320][T10561] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  149.036896][T10561] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  149.059047][T10561] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  149.080747][T10561] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  149.134721][T16134] loop0: detected capacity change from 0 to 512
[  149.166870][T16134] EXT4-fs: Ignoring removed bh option
[  149.192975][T16134] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  149.202101][T16134] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  149.254906][T16134] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  149.317230][T16134] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  149.334496][T16134] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.409070][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.457555][T16181] loop7: detected capacity change from 0 to 512
[  149.470759][T16181] EXT4-fs: Ignoring removed bh option
[  149.484084][T16184] vlan2: entered allmulticast mode
[  149.503011][T16181] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  149.512084][T16181] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  149.534984][T16181] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended
[  149.546637][T16181] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  149.600844][T16198] loop3: detected capacity change from 0 to 1024
[  149.612821][T16198] EXT4-fs: Ignoring removed nomblk_io_submit option
[  149.622089][T16198] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  149.632776][T16198] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  149.641013][T16198] System zones: 0-1, 3-36
[  149.954266][T16227] vlan0: entered allmulticast mode
[  150.039534][T16235] SELinux: ebitmap: truncated map
[  150.049224][T16235] SELinux: failed to load policy
[  150.068201][T16238] loop0: detected capacity change from 0 to 512
[  150.078306][T16238] EXT4-fs (loop0): orphan cleanup on readonly fs
[  150.085140][T16238] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set
[  150.099196][T16238] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm +}[@: Failed to acquire dquot type 1
[  150.110719][T16238] EXT4-fs (loop0): 1 truncate cleaned up
[  150.119649][T16238] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  150.129424][T16238] EXT4-fs warning (device loop0): read_mmp_block:115: Error -117 while reading MMP block 0
[  150.622721][T16271] __nla_validate_parse: 8 callbacks suppressed
[  150.622740][T16271] netlink: 468 bytes leftover after parsing attributes in process `syz.7.5531'.
[  150.659304][   T29] kauditd_printk_skb: 158 callbacks suppressed
[  150.659320][   T29] audit: type=1400 audit(1755836105.488:5916): avc:  denied  { mount } for  pid=16272 comm="syz.6.5532" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  150.760362][   T29] audit: type=1326 audit(1755836105.581:5917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  150.784328][   T29] audit: type=1326 audit(1755836105.581:5918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  150.811724][   T29] audit: type=1326 audit(1755836105.628:5919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  150.835480][   T29] audit: type=1326 audit(1755836105.628:5920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  150.859338][   T29] audit: type=1326 audit(1755836105.628:5921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  150.883072][   T29] audit: type=1326 audit(1755836105.628:5922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  150.906920][   T29] audit: type=1326 audit(1755836105.628:5923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  150.930661][   T29] audit: type=1326 audit(1755836105.628:5924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  150.955176][   T29] audit: type=1326 audit(1755836105.628:5925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16287 comm="syz.7.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  151.005143][T16291] netlink: 'syz.3.5540': attribute type 13 has an invalid length.
[  151.021156][T16291] gretap0: refused to change device tx_queue_len
[  151.027875][T16291] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  151.078605][T16298] loop7: detected capacity change from 0 to 512
[  151.089258][T16298] EXT4-fs: Ignoring removed bh option
[  151.097189][T16298] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  151.106461][T16298] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  151.125546][T16298] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended
[  151.135137][T16298] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  151.173070][T16312] loop0: detected capacity change from 0 to 512
[  151.179754][T16312] EXT4-fs: Ignoring removed bh option
[  151.214246][T16312] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  151.223341][T16312] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  151.237092][T16318] netlink: 468 bytes leftover after parsing attributes in process `syz.6.5552'.
[  151.254072][T16312] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  151.285820][T16312] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  151.379101][T16339] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x23
[  151.422467][T16343] loop6: detected capacity change from 0 to 512
[  151.430618][T16343] EXT4-fs: Ignoring removed bh option
[  151.444478][T16343] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  151.453774][T16343] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  151.479568][T16343] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  151.490473][T16343] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  151.527782][T16349] loop7: detected capacity change from 0 to 512
[  152.198405][T16361] netlink: 468 bytes leftover after parsing attributes in process `syz.3.5570'.
[  152.218688][T16365] loop6: detected capacity change from 0 to 512
[  152.224772][T16367] loop3: detected capacity change from 0 to 512
[  152.231798][T16367] EXT4-fs: Ignoring removed bh option
[  152.232088][T16365] EXT4-fs (loop6): orphan cleanup on readonly fs
[  152.244301][T16367] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  152.253496][T16367] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  152.262276][T16365] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.5571: bg 0: block 248: padding at end of block bitmap is not set
[  152.273850][T16367] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  152.277048][T16365] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm syz.6.5571: Failed to acquire dquot type 1
[  152.287779][T16367] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  152.297865][T16365] EXT4-fs (loop6): 1 truncate cleaned up
[  153.264001][T16388] loop3: detected capacity change from 0 to 512
[  153.277308][T16388] EXT4-fs: Ignoring removed bh option
[  153.298499][T16388] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  153.307571][T16388] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  153.337765][T16388] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  153.359155][T16388] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  154.198478][T16410] loop6: detected capacity change from 0 to 512
[  154.206809][T16410] EXT4-fs: Ignoring removed bh option
[  154.216883][T16410] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  154.223663][T16415] SELinux: security policydb version 17 (MLS) not backwards compatible
[  154.226066][T16410] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  154.235746][T16415] SELinux: failed to load policy
[  154.259444][T16410] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  154.300718][T16410] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  154.374486][T16439] loop3: detected capacity change from 0 to 512
[  154.397321][T16439] EXT4-fs: Ignoring removed i_version option
[  154.403538][T16439] EXT4-fs: Ignoring removed nobh option
[  154.412792][T16439] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  154.433064][T16443] loop7: detected capacity change from 0 to 2048
[  154.441238][T16439] EXT4-fs (loop3): 1 truncate cleaned up
[  154.688166][T16494] loop0: detected capacity change from 0 to 512
[  154.698790][T16494] EXT4-fs: Ignoring removed nobh option
[  154.708194][T16494] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.5629: iget: bad i_size value: 38620345925642
[  154.731515][T16494] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.5629: couldn't read orphan inode 15 (err -117)
[  155.145519][T10561] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm kworker/u8:8: bg 0: block 5: invalid block bitmap
[  155.161587][T10561] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  155.174159][T10561] EXT4-fs (loop0): This should not happen!! Data will be lost
[  155.174159][T10561] 
[  155.183870][T10561] EXT4-fs (loop0): Total free blocks count 0
[  155.189863][T10561] EXT4-fs (loop0): Free/Dirty block details
[  155.195912][T10561] EXT4-fs (loop0): free_blocks=0
[  155.201016][T10561] EXT4-fs (loop0): dirty_blocks=16000
[  155.206463][T10561] EXT4-fs (loop0): Block reservation details
[  155.212464][T10561] EXT4-fs (loop0): i_reserved_data_blocks=16000
[  155.252228][T10561] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  155.264998][T10561] EXT4-fs (loop0): This should not happen!! Data will be lost
[  155.264998][T10561] 
[  155.289360][T16512] loop7: detected capacity change from 0 to 512
[  155.310877][T16512] EXT4-fs: Ignoring removed i_version option
[  155.316990][T16512] EXT4-fs: Ignoring removed nobh option
[  155.329903][T16512] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  155.345478][T16512] EXT4-fs (loop7): 1 truncate cleaned up
[  155.460936][T16522] syzkaller0: entered promiscuous mode
[  155.466583][T16522] syzkaller0: entered allmulticast mode
[  155.530030][T16536] netlink: 264 bytes leftover after parsing attributes in process `syz.0.5642'.
[  155.539404][T16536] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5642'.
[  155.628427][T16547] SELinux: failed to load policy
[  155.796432][T16564] loop2: detected capacity change from 0 to 1024
[  156.044859][   T29] kauditd_printk_skb: 244 callbacks suppressed
[  156.044885][   T29] audit: type=1400 audit(1755836110.520:6168): avc:  denied  { lock } for  pid=16599 comm="syz.2.5676" path="socket:[48744]" dev="sockfs" ino=48744 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  156.085233][   T29] audit: type=1400 audit(1755836110.558:6169): avc:  denied  { create } for  pid=16601 comm="syz.0.5677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  156.105984][   T29] audit: type=1400 audit(1755836110.558:6170): avc:  denied  { write } for  pid=16601 comm="syz.0.5677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  156.126506][   T29] audit: type=1400 audit(1755836110.558:6171): avc:  denied  { nlmsg_write } for  pid=16601 comm="syz.0.5677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  156.407854][   T29] audit: type=1400 audit(1755836110.857:6172): avc:  denied  { write } for  pid=16615 comm="syz.0.5690" name="001" dev="devtmpfs" ino=168 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  156.446405][T16618] netlink: 264 bytes leftover after parsing attributes in process `syz.7.5679'.
[  156.455504][T16618] netlink: 56 bytes leftover after parsing attributes in process `syz.7.5679'.
[  156.458646][   T29] audit: type=1400 audit(1755836110.913:6173): avc:  denied  { mount } for  pid=16619 comm="syz.6.5680" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  156.502684][   T29] audit: type=1400 audit(1755836110.951:6174): avc:  denied  { unmount } for  pid=14439 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  156.527904][   T29] audit: type=1400 audit(1755836110.979:6175): avc:  denied  { create } for  pid=16623 comm="syz.6.5682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  156.546363][T16627] syzkaller0: entered promiscuous mode
[  156.553532][   T29] audit: type=1400 audit(1755836110.988:6176): avc:  denied  { getopt } for  pid=16622 comm="syz.0.5681" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  156.553584][T16627] syzkaller0: entered allmulticast mode
[  156.573298][   T29] audit: type=1400 audit(1755836110.988:6177): avc:  denied  { connect } for  pid=16622 comm="syz.0.5681" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  156.949686][T16637] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  157.021021][T16649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5695'.
[  157.137883][T16658] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5700'.
[  157.471220][T16676] loop6: detected capacity change from 0 to 128
[  157.500626][T16682] netlink: 'syz.0.5709': attribute type 21 has an invalid length.
[  157.534029][T16688] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5712'.
[  157.714638][T16723] netlink: 204 bytes leftover after parsing attributes in process `syz.0.5728'.
[  157.742540][T16727] netem: incorrect ge model size
[  157.763829][T16731] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5733'.
[  158.522095][T16772] netlink: 176 bytes leftover after parsing attributes in process `syz.3.5750'.
[  158.747882][T16813] netlink: 204 bytes leftover after parsing attributes in process `syz.3.5770'.
[  158.799432][T16821] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  158.809642][T16824] netlink: 204 bytes leftover after parsing attributes in process `syz.7.5784'.
[  158.861703][T16832] loop3: detected capacity change from 0 to 512
[  158.873045][T16832] EXT4-fs: Ignoring removed nobh option
[  158.893923][T16832] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.5775: iget: bad i_size value: 38620345925642
[  158.907643][T16832] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.5775: couldn't read orphan inode 15 (err -117)
[  159.356794][T16876] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  159.609394][   T12] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm kworker/u8:0: bg 0: block 5: invalid block bitmap
[  159.637630][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  159.650187][   T12] EXT4-fs (loop3): This should not happen!! Data will be lost
[  159.650187][   T12] 
[  159.659884][   T12] EXT4-fs (loop3): Total free blocks count 0
[  159.665874][   T12] EXT4-fs (loop3): Free/Dirty block details
[  159.671918][   T12] EXT4-fs (loop3): free_blocks=0
[  159.676989][   T12] EXT4-fs (loop3): dirty_blocks=16024
[  159.682405][   T12] EXT4-fs (loop3): Block reservation details
[  159.688503][   T12] EXT4-fs (loop3): i_reserved_data_blocks=16024
[  159.703875][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  159.716672][   T12] EXT4-fs (loop3): This should not happen!! Data will be lost
[  159.716672][   T12] 
[  160.242077][T16926] netdevsim netdevsim7: Direct firmware load for ./file0 failed with error -2
[  160.397292][T16944] loop7: detected capacity change from 0 to 2048
[  160.419449][T16944] ext4 filesystem being mounted at /198/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.542395][T16955] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2
[  160.776884][T16979] loop2: detected capacity change from 0 to 2048
[  160.793751][T16979] ext4 filesystem being mounted at /1109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.062204][T17005] loop6: detected capacity change from 0 to 256
[  161.069142][T17005] FAT-fs (loop6): Directory bread(block 1285) failed
[  161.078291][T17005] FAT-fs (loop6): Directory bread(block 1285) failed
[  161.085411][T17005] FAT-fs (loop6): Directory bread(block 1285) failed
[  161.092346][T17005] FAT-fs (loop6): Directory bread(block 1285) failed
[  161.125850][T17009] loop6: detected capacity change from 0 to 512
[  161.132448][T17009] EXT4-fs: Ignoring removed mblk_io_submit option
[  161.139129][T17009] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  161.150496][T17009] EXT4-fs (loop6): 1 truncate cleaned up
[  161.156932][T17009] EXT4-fs mount: 36 callbacks suppressed
[  161.156961][T17009] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.192517][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.318914][T17022] loop6: detected capacity change from 0 to 512
[  161.325508][T17022] EXT4-fs: Ignoring removed nobh option
[  161.333309][T17022] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.5863: iget: bad i_size value: 38620345925642
[  161.346439][T17022] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.5863: couldn't read orphan inode 15 (err -117)
[  161.366161][T17022] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.664876][  T384] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm kworker/u8:5: bg 0: block 5: invalid block bitmap
[  161.678004][  T384] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  161.690798][  T384] EXT4-fs (loop6): This should not happen!! Data will be lost
[  161.690798][  T384] 
[  161.700670][  T384] EXT4-fs (loop6): Total free blocks count 0
[  161.707180][  T384] EXT4-fs (loop6): Free/Dirty block details
[  161.713156][  T384] EXT4-fs (loop6): free_blocks=0
[  161.718112][  T384] EXT4-fs (loop6): dirty_blocks=16000
[  161.723564][  T384] EXT4-fs (loop6): Block reservation details
[  161.729538][  T384] EXT4-fs (loop6): i_reserved_data_blocks=16000
[  161.746213][  T384] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  161.798883][   T29] kauditd_printk_skb: 192 callbacks suppressed
[  161.798897][   T29] audit: type=1326 audit(1755836115.899:6370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17030 comm="syz.2.5867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  161.828749][   T29] audit: type=1326 audit(1755836115.899:6371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17030 comm="syz.2.5867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  161.854201][T17032] bridge0: port 3(batadv1) entered blocking state
[  161.860721][T17032] bridge0: port 3(batadv1) entered disabled state
[  161.870529][T17032] batadv1: entered allmulticast mode
[  161.876709][T17032] batadv1: entered promiscuous mode
[  161.882399][   T29] audit: type=1326 audit(1755836115.955:6372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17030 comm="syz.2.5867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  161.906087][   T29] audit: type=1326 audit(1755836115.955:6373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17030 comm="syz.2.5867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  161.929603][   T29] audit: type=1326 audit(1755836115.955:6374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17030 comm="syz.2.5867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  162.011285][   T29] audit: type=1400 audit(1755836116.086:6375): avc:  denied  { read write } for  pid=17038 comm="syz.3.5871" name="ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  162.034665][   T29] audit: type=1400 audit(1755836116.086:6376): avc:  denied  { open } for  pid=17038 comm="syz.3.5871" path="/dev/ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  162.035199][T17045] loop2: detected capacity change from 0 to 256
[  162.057951][   T29] audit: type=1400 audit(1755836116.086:6377): avc:  denied  { ioctl } for  pid=17038 comm="syz.3.5871" path="/dev/ppp" dev="devtmpfs" ino=139 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  162.057979][   T29] audit: type=1400 audit(1755836116.095:6378): avc:  denied  { mount } for  pid=17039 comm="syz.7.5873" name="/" dev="ramfs" ino=50491 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  162.112093][T17045] FAT-fs (loop2): Directory bread(block 1285) failed
[  162.126255][T17045] FAT-fs (loop2): Directory bread(block 1285) failed
[  162.133538][T17045] FAT-fs (loop2): Directory bread(block 1285) failed
[  162.150812][T17045] FAT-fs (loop2): Directory bread(block 1285) failed
[  162.172463][T17049] vlan2: entered promiscuous mode
[  162.177555][T17049] macvtap0: entered promiscuous mode
[  162.235605][   T29] audit: type=1326 audit(1755836116.310:6379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17058 comm="syz.0.5880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74c3a7ebe9 code=0x7ffc0000
[  162.280591][T17062] loop3: detected capacity change from 0 to 1024
[  162.287269][T17062] EXT4-fs: Ignoring removed orlov option
[  162.293035][T17062] EXT4-fs: Ignoring removed nomblk_io_submit option
[  162.325965][T17070] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  162.331150][T17062] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.345511][  T384] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  162.354733][  T384] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  162.421822][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.435695][T17077] __nla_validate_parse: 5 callbacks suppressed
[  162.435780][T17077] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5886'.
[  162.456990][T17077] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5886'.
[  162.469779][T17081] syz_tun: entered allmulticast mode
[  162.484798][T17081] syz_tun: left allmulticast mode
[  162.503952][T17085] vlan1: entered promiscuous mode
[  162.509611][T17085] macvtap0: entered promiscuous mode
[  162.671259][T17104] 9pnet_fd: Insufficient options for proto=fd
[  162.681258][T17106] vhci_hcd: default hub control req: 0310 v0009 i0003 l0
[  162.694263][T17108] netlink: 56 bytes leftover after parsing attributes in process `wÞ£ÿ'.
[  162.768181][T17124] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5908'.
[  162.777271][T17124] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5908'.
[  163.084120][T17147] syz_tun: entered promiscuous mode
[  163.091137][T17147] batadv_slave_0: entered promiscuous mode
[  163.097574][T17147] hsr1: entered allmulticast mode
[  163.103022][T17147] syz_tun: entered allmulticast mode
[  163.108551][T17147] batadv_slave_0: entered allmulticast mode
[  163.225002][T17157] loop7: detected capacity change from 0 to 512
[  163.273129][T17157] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.290392][T17157] ext4 filesystem being mounted at /228/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.364039][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.252725][T17196] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5938'.
[  164.298287][T17200] loop6: detected capacity change from 0 to 512
[  164.313786][T17200] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.326729][T17200] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.355785][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.415426][T17219] syz_tun: entered promiscuous mode
[  164.422705][T17219] batadv_slave_0: entered promiscuous mode
[  164.430020][T17219] debugfs: 'hsr0' already exists in 'hsr'
[  164.435850][T17219] Cannot create hsr debugfs directory
[  164.441474][T17219] hsr0: entered allmulticast mode
[  164.446529][T17219] syz_tun: entered allmulticast mode
[  164.452204][T17223] loop7: detected capacity change from 0 to 2048
[  164.459128][T17219] batadv_slave_0: entered allmulticast mode
[  164.471753][T17223] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.594657][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.184329][T17239] loop3: detected capacity change from 0 to 512
[  165.199978][T17239] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.215217][T17239] ext4 filesystem being mounted at /1146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.253971][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.335211][T17266] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5972'.
[  165.497967][T17296] netlink: 56 bytes leftover after parsing attributes in process `syz.7.5985'.
[  165.552627][T17308] netlink: 'syz.7.5991': attribute type 1 has an invalid length.
[  165.755227][T17329] netlink: 56 bytes leftover after parsing attributes in process `syz.3.6000'.
[  165.928379][T17346] smc: net device bond0 applied user defined pnetid SYZ0
[  165.936005][T17346] smc: net device bond0 erased user defined pnetid SYZ0
[  166.159315][T17366] openvswitch: netlink: Message has 6 unknown bytes.
[  166.632853][T17373] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6023'.
[  167.059932][T17390] netlink: 'syz.2.6030': attribute type 1 has an invalid length.
[  167.535867][   T29] kauditd_printk_skb: 109 callbacks suppressed
[  167.535881][   T29] audit: type=1326 audit(1755836121.268:6489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.566492][   T29] audit: type=1326 audit(1755836121.268:6490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.612247][   T29] audit: type=1326 audit(1755836121.277:6491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.636597][   T29] audit: type=1326 audit(1755836121.305:6492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.660357][   T29] audit: type=1326 audit(1755836121.305:6493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.684744][   T29] audit: type=1326 audit(1755836121.305:6494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17405 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd9816914a5 code=0x7ffc0000
[  167.695513][T17418] loop7: detected capacity change from 0 to 1024
[  167.708378][   T29] audit: type=1326 audit(1755836121.343:6495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.716303][T17418] EXT4-fs: Ignoring removed orlov option
[  167.739057][   T29] audit: type=1326 audit(1755836121.343:6496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.739086][   T29] audit: type=1326 audit(1755836121.343:6497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.739109][   T29] audit: type=1326 audit(1755836121.343:6498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17402 comm="syz.6.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  167.817384][T17418] EXT4-fs: Ignoring removed nomblk_io_submit option
[  167.854759][T17418] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.957429][T17433] syz_tun: entered promiscuous mode
[  167.963293][T17433] batadv_slave_0: entered promiscuous mode
[  167.971117][T17433] debugfs: 'hsr1' already exists in 'hsr'
[  167.976892][T17433] Cannot create hsr debugfs directory
[  168.011686][T17433] hsr1: Slave A (syz_tun) is not up; please bring it up to get a fully working HSR network
[  168.021843][T17433] hsr1: Slave B (batadv_slave_0) is not up; please bring it up to get a fully working HSR network
[  168.032964][T17433] hsr1: entered allmulticast mode
[  168.038167][T17433] syz_tun: entered allmulticast mode
[  168.044330][T17433] batadv_slave_0: entered allmulticast mode
[  168.088425][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.342163][T17452] syzkaller0: entered promiscuous mode
[  168.347757][T17452] syzkaller0: entered allmulticast mode
[  168.407498][T17458] __nla_validate_parse: 2 callbacks suppressed
[  168.407508][T17458] netlink: 100 bytes leftover after parsing attributes in process `syz.0.6058'.
[  168.561496][T17459] loop3: detected capacity change from 0 to 32768
[  168.609855][T17475] SELinux: failed to load policy
[  168.748409][T17492] syzkaller0: entered promiscuous mode
[  168.754701][T17492] syzkaller0: entered allmulticast mode
[  168.827747][T17505] netlink: 197276 bytes leftover after parsing attributes in process `syz.7.6080'.
[  168.844693][T17506] lo speed is unknown, defaulting to 1000
[  168.976683][T10567] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  169.210717][T17537] syzkaller0: entered promiscuous mode
[  169.216225][T17537] syzkaller0: entered allmulticast mode
[  169.310786][T17539] SELinux: failed to load policy
[  169.377831][T17545] syz_tun: entered promiscuous mode
[  169.383943][T17545] batadv_slave_0: entered promiscuous mode
[  169.390279][T17545] debugfs: 'hsr1' already exists in 'hsr'
[  169.396159][T17545] Cannot create hsr debugfs directory
[  169.402079][T17545] hsr1: Slave A (syz_tun) is not up; please bring it up to get a fully working HSR network
[  169.412837][T17545] hsr1: Slave B (batadv_slave_0) is not up; please bring it up to get a fully working HSR network
[  169.424274][T17545] hsr1: entered allmulticast mode
[  169.429424][T17545] syz_tun: entered allmulticast mode
[  169.435426][T17545] batadv_slave_0: entered allmulticast mode
[  169.597005][T17563] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6103'.
[  169.607183][T17563] netlink: 32 bytes leftover after parsing attributes in process `syz.3.6103'.
[  169.718042][T17565] netlink: 'syz.3.6104': attribute type 1 has an invalid length.
[  169.725950][T17565] netlink: 224 bytes leftover after parsing attributes in process `syz.3.6104'.
[  169.936299][T17578] loop7: detected capacity change from 0 to 128
[  170.121227][T17588] netlink: 197276 bytes leftover after parsing attributes in process `syz.2.6113'.
[  170.141524][T17590] netlink: 100 bytes leftover after parsing attributes in process `syz.6.6114'.
[  170.205424][T17596] netlink: 'syz.6.6116': attribute type 1 has an invalid length.
[  170.213258][T17596] netlink: 224 bytes leftover after parsing attributes in process `syz.6.6116'.
[  170.276646][T17598] netlink: 'syz.2.6118': attribute type 3 has an invalid length.
[  170.581018][T17583] bio_check_eod: 19 callbacks suppressed
[  170.581045][T17583] syz.7.6110: attempt to access beyond end of device
[  170.581045][T17583] loop7: rw=2049, sector=128, nr_sectors = 1 limit=128
[  170.600983][T17583] buffer_io_error: 4 callbacks suppressed
[  170.600997][T17583] Buffer I/O error on dev loop7, logical block 128, lost async page write
[  170.638131][T17578] syz.7.6110: attempt to access beyond end of device
[  170.638131][T17578] loop7: rw=2049, sector=128, nr_sectors = 1 limit=128
[  170.652474][T17578] Buffer I/O error on dev loop7, logical block 128, lost async page write
[  170.715442][T17673] netlink: 100 bytes leftover after parsing attributes in process `syz.7.6126'.
[  170.722137][T17675] netlink: 197276 bytes leftover after parsing attributes in process `syz.3.6127'.
[  170.862385][T17683] netlink: 'syz.0.6130': attribute type 1 has an invalid length.
[  170.934553][T17692] lo speed is unknown, defaulting to 1000
[  171.227090][T17713] loop2: detected capacity change from 0 to 512
[  171.235380][T17713] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  171.260637][T17713] EXT4-fs (loop2): 1 truncate cleaned up
[  171.269230][T17713] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.305992][T17728] lo speed is unknown, defaulting to 1000
[  171.587820][T17713] EXT4-fs error (device loop2): __ext4_remount:6740: comm syz.2.6145: Abort forced by user
[  171.601049][T17713] EXT4-fs (loop2): Remounting filesystem read-only
[  171.607643][T17713] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  171.706360][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.858766][T17761] loop3: detected capacity change from 0 to 164
[  171.886516][T17761] syz.3.6165: attempt to access beyond end of device
[  171.886516][T17761] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  171.915512][T17761] syz.3.6165: attempt to access beyond end of device
[  171.915512][T17761] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  172.051449][T17778] netlink: 'syz.7.6170': attribute type 1 has an invalid length.
[  172.065215][T17785] loop3: detected capacity change from 0 to 512
[  172.090501][T17785] EXT4-fs: Ignoring removed nobh option
[  172.108798][T17785] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  172.131523][T17790] netlink: 'syz.2.6175': attribute type 10 has an invalid length.
[  172.158891][T17785] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #13: comm syz.3.6174: casefold flag without casefold feature
[  172.194364][T17790] team0: Port device dummy0 added
[  172.211323][T17790] netlink: 'syz.2.6175': attribute type 10 has an invalid length.
[  172.246517][T17785] EXT4-fs (loop3): Remounting filesystem read-only
[  172.254525][T17790] team0: Port device dummy0 removed
[  172.265324][T17790] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  172.276151][T17785] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.316261][T17785] EXT4-fs (loop3): shut down requested (1)
[  172.372200][   T29] kauditd_printk_skb: 174 callbacks suppressed
[  172.372214][   T29] audit: type=1400 audit(2000000000.021:6673): avc:  denied  { execute } for  pid=17800 comm="syz.2.6182" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=52706 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  172.431883][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.508811][T17818] loop3: detected capacity change from 0 to 512
[  172.518752][T17818] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #3: comm syz.3.6190: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  172.538082][T17818] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.6190: Bad quota inode: 3, type: 0
[  172.552228][T17818] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  172.568486][   T29] audit: type=1326 audit(2000000000.210:6674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  172.592517][T17818] EXT4-fs (loop3): mount failed
[  172.598286][   T29] audit: type=1326 audit(2000000000.210:6675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  172.622389][   T29] audit: type=1326 audit(2000000000.210:6676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  172.646955][   T29] audit: type=1326 audit(2000000000.210:6677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  172.653376][T17827] netlink: 'syz.0.6194': attribute type 3 has an invalid length.
[  172.671392][   T29] audit: type=1326 audit(2000000000.210:6678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  172.703160][   T29] audit: type=1326 audit(2000000000.210:6679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  172.727887][   T29] audit: type=1326 audit(2000000000.378:6680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  172.751611][   T29] audit: type=1326 audit(2000000000.378:6681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  172.806955][   T29] audit: type=1326 audit(2000000000.420:6682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17824 comm="syz.7.6193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f4831a4ebe9 code=0x7ffc0000
[  173.295016][T17860] lo speed is unknown, defaulting to 1000
[  173.530222][T17861] loop2: detected capacity change from 0 to 32768
[  173.895018][T17910] lo speed is unknown, defaulting to 1000
[  173.902170][T11317] Process accounting resumed
[  173.927065][T17916] loop3: detected capacity change from 0 to 512
[  173.927114][T17915] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  173.942311][T17916] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  173.960326][T17916] EXT4-fs (loop3): 1 truncate cleaned up
[  173.966552][T17916] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.980191][T17916] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.116201][T17926] loop2: detected capacity change from 0 to 164
[  174.126463][T17926] syz.2.6232: attempt to access beyond end of device
[  174.126463][T17926] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  174.142180][T17926] syz.2.6232: attempt to access beyond end of device
[  174.142180][T17926] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  174.247980][T17938] loop3: detected capacity change from 0 to 164
[  174.267542][T17938] syz.3.6241: attempt to access beyond end of device
[  174.267542][T17938] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  174.285560][T17938] syz.3.6241: attempt to access beyond end of device
[  174.285560][T17938] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  174.384771][T17958] loop3: detected capacity change from 0 to 512
[  174.410704][T17958] EXT4-fs: Ignoring removed oldalloc option
[  174.437616][T17958] EXT4-fs (loop3): 1 truncate cleaned up
[  174.451249][T17958] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.486737][T17958] EXT4-fs (loop3): shut down requested (2)
[  174.495545][T17955] loop7: detected capacity change from 0 to 32768
[  174.498272][T17958] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  174.512133][T17958] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[  174.542222][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.624767][T17981] netlink: 'syz.6.6261': attribute type 21 has an invalid length.
[  174.632901][T17981] __nla_validate_parse: 5 callbacks suppressed
[  174.632916][T17981] netlink: 132 bytes leftover after parsing attributes in process `syz.6.6261'.
[  174.648182][T17981] netlink: 'syz.6.6261': attribute type 1 has an invalid length.
[  174.701929][T17991] syzkaller1: entered promiscuous mode
[  174.707621][T17991] syzkaller1: entered allmulticast mode
[  174.758837][T18002] loop3: detected capacity change from 0 to 128
[  174.833467][T18013] loop6: detected capacity change from 0 to 512
[  174.840613][T18013] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  174.886902][T18013] EXT4-fs (loop6): 1 truncate cleaned up
[  174.898692][T18020] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6279'.
[  174.908558][T18020] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6279'.
[  174.917920][T18013] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.110413][T18010] syz.3.6271: attempt to access beyond end of device
[  175.110413][T18010] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  175.123880][T18010] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  175.134195][T18010] syz.3.6271: attempt to access beyond end of device
[  175.134195][T18010] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  175.148756][T18010] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  175.159241][T18013] EXT4-fs error (device loop6): __ext4_remount:6740: comm syz.6.6276: Abort forced by user
[  175.188335][T18013] EXT4-fs (loop6): Remounting filesystem read-only
[  175.195052][T18013] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  175.281521][T18038] netlink: 'syz.3.6287': attribute type 10 has an invalid length.
[  175.291084][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.294517][T18038] team0: Port device dummy0 added
[  175.308254][T18042] netlink: 268 bytes leftover after parsing attributes in process `syz.7.6290'.
[  175.328279][T18038] netlink: 'syz.3.6287': attribute type 10 has an invalid length.
[  175.348597][T18038] team0: Port device dummy0 removed
[  175.359728][T18038] dummy0: entered promiscuous mode
[  175.368200][T11317] Process accounting resumed
[  175.376634][T18038] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  175.459754][T18062] loop6: detected capacity change from 0 to 128
[  175.660812][T18083] netlink: 'syz.7.6306': attribute type 10 has an invalid length.
[  175.690668][T18083] team0: Port device dummy0 added
[  175.709118][T18083] netlink: 'syz.7.6306': attribute type 10 has an invalid length.
[  175.734921][T18083] team0: Port device dummy0 removed
[  175.745043][T18083] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  175.798145][T18095] loop2: detected capacity change from 0 to 164
[  175.812786][T18097] serio: Serial port ptm0
[  175.818621][T18095] syz.2.6313: attempt to access beyond end of device
[  175.818621][T18095] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  175.833365][T18095] syz.2.6313: attempt to access beyond end of device
[  175.833365][T18095] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  175.879373][T18099] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6327'.
[  175.889038][T18099] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6327'.
[  175.914452][T18101] loop2: detected capacity change from 0 to 512
[  175.923476][T18101] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  175.938136][T18101] EXT4-fs (loop2): 1 truncate cleaned up
[  175.950902][T18101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.973736][T18101] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.056569][T18118] netlink: 'syz.0.6325': attribute type 10 has an invalid length.
[  176.070457][T18118] team0: Port device dummy0 added
[  176.077969][T18118] netlink: 'syz.0.6325': attribute type 10 has an invalid length.
[  176.110591][T18118] team0: Port device dummy0 removed
[  176.127515][T18118] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  176.146879][T18073] syz.6.6298: attempt to access beyond end of device
[  176.146879][T18073] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  176.160420][T18073] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  176.183313][T18062] syz.6.6298: attempt to access beyond end of device
[  176.183313][T18062] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  176.197059][T18062] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  176.216573][T18073] syz.6.6298: attempt to access beyond end of device
[  176.216573][T18073] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  176.230812][T18073] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  176.352271][T18138] loop6: detected capacity change from 0 to 164
[  176.362960][T18138] syz.6.6334: attempt to access beyond end of device
[  176.362960][T18138] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  176.369842][T18140] loop3: detected capacity change from 0 to 512
[  176.378452][T18138] syz.6.6334: attempt to access beyond end of device
[  176.378452][T18138] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  176.422103][T18140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.441031][T18148] loop6: detected capacity change from 0 to 512
[  176.447010][T18140] ext4 filesystem being mounted at /1247/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  176.457812][T18148] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  176.471766][T18140] EXT4-fs (loop3): shut down requested (0)
[  176.478317][T18148] EXT4-fs (loop6): 1 truncate cleaned up
[  176.484388][T18148] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.500056][T18140] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  176.510223][T18140] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  176.520249][T18140] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  176.530372][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.550053][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.567881][T18157] netlink: 'syz.6.6342': attribute type 10 has an invalid length.
[  176.579897][T18157] team0: Port device dummy0 added
[  176.592600][T18157] netlink: 'syz.6.6342': attribute type 10 has an invalid length.
[  176.611013][T18157] team0: Port device dummy0 removed
[  176.618998][T18157] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  176.647127][T18167] loop2: detected capacity change from 0 to 128
[  176.659137][T18166] SELinux: failed to load policy
[  176.794263][T18191] netlink: 'syz.6.6361': attribute type 10 has an invalid length.
[  176.830092][T18191] bond0: (slave dummy0): Releasing backup interface
[  176.842945][T18199] netlink: 'syz.6.6361': attribute type 10 has an invalid length.
[  176.853300][T18191] team0: Port device dummy0 added
[  176.876802][T18199] team0: Port device dummy0 removed
[  176.897437][T18199] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  176.906464][T18202] netdevsim netdevsim3: Direct firmware load for ./file0/file1 failed with error -2
[  176.948217][T18206] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6366'.
[  176.957328][T18206] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6366'.
[  177.010824][T18212] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6369'.
[  177.109302][T18229] netlink: 'syz.6.6377': attribute type 10 has an invalid length.
[  177.121466][T18229] bond0: (slave dummy0): Releasing backup interface
[  177.131056][T18229] team0: Port device dummy0 added
[  177.140519][T18231] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6378'.
[  177.142598][T18229] netlink: 'syz.6.6377': attribute type 10 has an invalid length.
[  177.162360][T18229] team0: Port device dummy0 removed
[  177.174258][T18229] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  177.234865][T18234] netdevsim netdevsim0: Direct firmware load for ./file0/file1 failed with error -2
[  177.263350][T18186] syz.2.6347: attempt to access beyond end of device
[  177.263350][T18186] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  177.277717][T18186] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  177.288275][T18167] syz.2.6347: attempt to access beyond end of device
[  177.288275][T18167] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  177.302178][T18167] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  177.413292][T18259] sctp: [Deprecated]: syz.6.6390 (pid 18259) Use of int in max_burst socket option.
[  177.413292][T18259] Use struct sctp_assoc_value instead
[  177.459827][   T29] kauditd_printk_skb: 149 callbacks suppressed
[  177.459909][   T29] audit: type=1326 audit(2000000005.367:6832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18260 comm="syz.6.6393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  177.498421][   T29] audit: type=1326 audit(2000000005.398:6833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18260 comm="syz.6.6393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  177.522851][   T29] audit: type=1326 audit(2000000005.398:6834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18260 comm="syz.6.6393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  177.546871][   T29] audit: type=1326 audit(2000000005.398:6835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18260 comm="syz.6.6393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  177.571491][   T29] audit: type=1326 audit(2000000005.398:6836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18261 comm="syz.3.6394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe38a24ebe9 code=0x7ffc0000
[  177.596171][   T29] audit: type=1326 audit(2000000005.398:6837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18261 comm="syz.3.6394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe38a24ebe9 code=0x7ffc0000
[  177.620621][   T29] audit: type=1326 audit(2000000005.398:6838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18266 comm="syz.6.6393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd9816914a5 code=0x7ffc0000
[  177.644224][   T29] audit: type=1326 audit(2000000005.398:6839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18261 comm="syz.3.6394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fe38a24ebe9 code=0x7ffc0000
[  177.668573][   T29] audit: type=1326 audit(2000000005.398:6840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18261 comm="syz.3.6394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe38a24ebe9 code=0x7ffc0000
[  177.692497][   T29] audit: type=1326 audit(2000000005.398:6841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18261 comm="syz.3.6394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe38a24ebe9 code=0x7ffc0000
[  177.769016][T18284] loop2: detected capacity change from 0 to 512
[  177.778298][T18282] SELinux: failed to load policy
[  177.793656][T18284] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.807653][T18292] loop6: detected capacity change from 0 to 1024
[  177.815000][T18284] ext4 filesystem being mounted at /1195/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  177.818946][T18292] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  177.850255][T18284] EXT4-fs (loop2): shut down requested (0)
[  177.859199][T18292] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.879333][T18284] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[  177.889654][T18292] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000.
[  177.898778][T18284] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[  177.903523][T18292] EXT4-fs error (device loop6): ext4_xattr_inode_iget:437: inode #11: comm syz.6.6404: missing EA_INODE flag
[  177.908646][T18284] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[  177.934747][T18292] EXT4-fs (loop6): Remounting filesystem read-only
[  177.958972][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.975405][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.224308][T18334] loop7: detected capacity change from 0 to 512
[  178.260405][T18334] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.282138][T18334] ext4 filesystem being mounted at /333/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  178.308653][T18334] EXT4-fs (loop7): shut down requested (0)
[  178.322814][T18344] lo speed is unknown, defaulting to 1000
[  178.338369][T18334] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop7 ino=15
[  178.357691][T18334] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop7 ino=15
[  178.372621][T18334] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop7 ino=15
[  178.398930][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.418820][T18347] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  179.659733][T18458] loop6: detected capacity change from 0 to 512
[  179.690710][T18458] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  179.705194][T18458] EXT4-fs (loop6): orphan cleanup on readonly fs
[  179.718300][T18458] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.6476: corrupted inode contents
[  179.727432][T18466] loop2: detected capacity change from 0 to 1024
[  179.731746][T18458] EXT4-fs (loop6): Remounting filesystem read-only
[  179.744577][T18458] EXT4-fs (loop6): 1 truncate cleaned up
[  179.745286][T18466] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  179.756312][T17639] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  179.770901][T17639] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  179.782094][T17639] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started
[  179.793025][T18458] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  179.807874][T18466] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.831339][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.841712][T18466] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[  179.855954][T18466] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: inode #11: comm syz.2.6479: missing EA_INODE flag
[  179.870685][T18466] EXT4-fs (loop2): Remounting filesystem read-only
[  179.876150][T18478] __nla_validate_parse: 24 callbacks suppressed
[  179.876184][T18478] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6485'.
[  179.892794][T18478] netlink: 108 bytes leftover after parsing attributes in process `syz.0.6485'.
[  179.912589][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.922054][T18478] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6485'.
[  179.931383][T18478] netlink: 108 bytes leftover after parsing attributes in process `syz.0.6485'.
[  179.941380][T18478] netlink: 84 bytes leftover after parsing attributes in process `syz.0.6485'.
[  180.002720][T18490] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6489'.
[  180.064162][T18500] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6491'.
[  180.075297][T18500] dummy0: entered promiscuous mode
[  180.086701][T18500] bond0: (slave dummy0): Releasing backup interface
[  180.108081][T18500] bridge0: port 3(dummy0) entered blocking state
[  180.114632][T18500] bridge0: port 3(dummy0) entered disabled state
[  180.121737][T18500] dummy0: entered allmulticast mode
[  180.143097][T18508] netlink: 28 bytes leftover after parsing attributes in process `syz.7.6497'.
[  180.152973][T18508] netlink: 108 bytes leftover after parsing attributes in process `syz.7.6497'.
[  180.163570][T18508] netlink: 28 bytes leftover after parsing attributes in process `syz.7.6497'.
[  180.570808][T18560] bond3: entered promiscuous mode
[  180.576575][T18560] bond3: entered allmulticast mode
[  180.581948][T18560] 8021q: adding VLAN 0 to HW filter on device bond3
[  180.610905][T18560] bond3 (unregistering): Released all slaves
[  180.692530][T18580] serio: Serial port ptm1
[  180.922314][T18602] loop7: detected capacity change from 0 to 512
[  180.934669][T18602] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  180.942769][T18602] EXT4-fs (loop7): orphan cleanup on readonly fs
[  180.950722][T18602] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.6540: corrupted inode contents
[  180.963562][T18602] EXT4-fs (loop7): Remounting filesystem read-only
[  180.970179][T18602] EXT4-fs (loop7): 1 truncate cleaned up
[  180.976024][T17655] EXT4-fs (loop7): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  180.986920][T17655] EXT4-fs (loop7): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  180.998108][T17655] EXT4-fs (loop7): Quota write (off=8, len=24) cancelled because transaction is not started
[  181.008859][T18602] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  181.031793][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.208667][T18632] loop2: detected capacity change from 0 to 512
[  181.230327][T18632] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  181.238876][T18632] EXT4-fs (loop2): orphan cleanup on readonly fs
[  181.246926][T18632] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.6554: corrupted inode contents
[  181.259720][T18632] EXT4-fs (loop2): Remounting filesystem read-only
[  181.266905][T18632] EXT4-fs (loop2): 1 truncate cleaned up
[  181.272791][T17655] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  181.283803][T17655] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  181.295913][T17655] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  181.307050][T18632] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  181.329835][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.456341][T18653] loop2: detected capacity change from 0 to 1024
[  181.463368][T18653] EXT4-fs: Ignoring removed bh option
[  181.470348][T18653] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  181.487388][T18653] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.515997][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.584195][T18670] loop3: detected capacity change from 0 to 512
[  181.603374][T18670] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  181.619001][T18670] EXT4-fs (loop3): orphan cleanup on readonly fs
[  181.632615][T18670] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.6566: corrupted inode contents
[  181.646323][T18670] EXT4-fs (loop3): Remounting filesystem read-only
[  181.653265][T18670] EXT4-fs (loop3): 1 truncate cleaned up
[  181.659362][T17657] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  181.670587][T17657] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  181.681303][T17657] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  181.691965][T18670] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  181.724443][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.931066][T18724] loop7: detected capacity change from 0 to 512
[  181.938974][T18724] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  181.964022][T18724] EXT4-fs error (device loop7): ext4_acquire_dquot:6937: comm syz.7.6594: Failed to acquire dquot type 1
[  181.975928][T18724] EXT4-fs (loop7): 1 truncate cleaned up
[  181.983699][T18724] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.010906][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.154093][T18755] IPv6: Can't replace route, no match found
[  182.298221][   T29] kauditd_printk_skb: 345 callbacks suppressed
[  182.298280][T18762] random: crng reseeded on system resumption
[  182.298306][   T29] audit: type=1400 audit(2000000010.450:7161): avc:  denied  { write } for  pid=18761 comm="syz.7.6610" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  182.335227][   T29] audit: type=1400 audit(2000000010.450:7162): avc:  denied  { open } for  pid=18761 comm="syz.7.6610" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  182.391877][   T29] audit: type=1400 audit(2000000010.545:7163): avc:  denied  { write } for  pid=18767 comm="syz.7.6613" name="config" dev="proc" ino=4026532745 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  182.583493][   T29] audit: type=1326 audit(2000000010.744:7164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18773 comm="syz.2.6615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  182.609217][   T29] audit: type=1326 audit(2000000010.744:7165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18773 comm="syz.2.6615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  182.633767][   T29] audit: type=1326 audit(2000000010.744:7166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18773 comm="syz.2.6615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  182.657739][   T29] audit: type=1326 audit(2000000010.765:7167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18773 comm="syz.2.6615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  182.681204][   T29] audit: type=1326 audit(2000000010.765:7168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18773 comm="syz.2.6615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  182.705316][   T29] audit: type=1326 audit(2000000010.765:7169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18775 comm="syz.2.6615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f897e0314a5 code=0x7ffc0000
[  182.728888][   T29] audit: type=1326 audit(2000000010.776:7170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18773 comm="syz.2.6615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f897dffebe9 code=0x7ffc0000
[  182.802446][T18785] loop3: detected capacity change from 0 to 1024
[  182.809623][T18785] EXT4-fs: Ignoring removed bh option
[  182.815342][T18785] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  182.841709][T18785] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.871938][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.033762][T18821] loop6: detected capacity change from 0 to 1024
[  183.040780][T18821] EXT4-fs: Ignoring removed bh option
[  183.047014][T18821] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  183.077559][T18821] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.124686][T14439] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.133811][T18834] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  183.175542][T18840] program syz.2.6644 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  183.384376][T18867] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  183.415619][T13197] hid_parser_main: 21 callbacks suppressed
[  183.415637][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.429672][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.437204][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.444716][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.452689][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.460111][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.467648][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.475034][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.483234][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.490681][T13197] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  183.503304][T13197] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  183.585342][T18891] loop2: detected capacity change from 0 to 1024
[  183.592224][T18891] EXT4-fs: Ignoring removed bh option
[  183.597783][T18891] EXT4-fs: Ignoring removed nobh option
[  183.609889][T18891] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.633035][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.457664][T18921] loop7: detected capacity change from 0 to 1024
[  184.468207][T18921] EXT4-fs: Ignoring removed orlov option
[  184.490529][T18921] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.516479][T18921] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000.
[  184.546420][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.746478][T18954] loop7: detected capacity change from 0 to 1024
[  184.761569][T18954] EXT4-fs: Ignoring removed bh option
[  184.773794][T18954] EXT4-fs: Ignoring removed nobh option
[  184.780099][T18954] EXT4-fs: inline encryption not supported
[  184.803617][T18959] lo speed is unknown, defaulting to 1000
[  184.810664][T18954] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.823018][T18959] lo speed is unknown, defaulting to 1000
[  184.829117][T18959] lo speed is unknown, defaulting to 1000
[  184.838143][T18959] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  184.860000][T18954] EXT4-fs error (device loop7): mb_free_blocks:2017: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  184.876303][T18959] lo speed is unknown, defaulting to 1000
[  184.896747][T18959] lo speed is unknown, defaulting to 1000
[  184.926423][T14915] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.936997][T18959] lo speed is unknown, defaulting to 1000
[  184.961547][T18959] lo speed is unknown, defaulting to 1000
[  184.978038][T18959] lo speed is unknown, defaulting to 1000
[  185.391004][T18999] SELinux: failed to load policy
[  185.459749][T19012] __nla_validate_parse: 16 callbacks suppressed
[  185.459764][T19012] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6716'.
[  185.485436][T19017] loop6: detected capacity change from 0 to 128
[  185.638953][T19037] SELinux: failed to load policy
[  185.785283][T19048] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6734'.
[  185.955816][T19063] raw_sendmsg: syz.2.6737 forgot to set AF_INET. Fix it!
[  185.981530][T19065] loop7: detected capacity change from 0 to 128
[  186.001614][T19065] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  186.018507][T19065] ext4 filesystem being mounted at /408/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.046672][T19026] syz.6.6720: attempt to access beyond end of device
[  186.046672][T19026] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  186.060887][T19026] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  186.097088][T14915] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  186.107798][T19026] syz.6.6720: attempt to access beyond end of device
[  186.107798][T19026] loop6: rw=2049, sector=128, nr_sectors = 1 limit=128
[  186.122165][T19026] Buffer I/O error on dev loop6, logical block 128, lost async page write
[  186.146039][T19075] validate_nla: 2 callbacks suppressed
[  186.146055][T19075] netlink: 'syz.7.6744': attribute type 3 has an invalid length.
[  186.273618][T19085] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6749'.
[  186.294315][T19088] loop7: detected capacity change from 0 to 1024
[  186.408874][T19104] netlink: 'syz.0.6757': attribute type 3 has an invalid length.
[  186.441452][T19107] loop6: detected capacity change from 0 to 1024
[  186.457120][T19107] EXT4-fs: Ignoring removed orlov option
[  186.471079][T19107] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000.
[  186.522457][T19119] loop6: detected capacity change from 0 to 1024
[  186.644644][T19142] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6774'.
[  186.686157][T19144] loop6: detected capacity change from 0 to 1024
[  186.696424][T19144] EXT4-fs: Ignoring removed bh option
[  186.702016][T19144] EXT4-fs: Ignoring removed nobh option
[  186.708324][T19144] EXT4-fs: inline encryption not supported
[  186.776210][T19144] EXT4-fs error (device loop6): mb_free_blocks:2017: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt.
[  186.827966][T19150] loop3: detected capacity change from 0 to 1024
[  186.846551][T19158] netlink: 664 bytes leftover after parsing attributes in process `syz.6.6781'.
[  187.186250][T19191] loop2: detected capacity change from 0 to 2048
[  187.238865][T19191] EXT4-fs (loop2): failed to initialize system zone (-117)
[  187.250993][T19191] EXT4-fs (loop2): mount failed
[  187.345440][   T29] kauditd_printk_skb: 234 callbacks suppressed
[  187.345479][   T29] audit: type=1400 audit(2000000015.744:7405): avc:  denied  { validate_trans } for  pid=19202 comm="syz.6.6799" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  187.423918][   T29] audit: type=1326 audit(2000000015.828:7406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  187.448431][   T29] audit: type=1326 audit(2000000015.828:7407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  187.475650][   T29] audit: type=1326 audit(2000000015.891:7408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  187.479105][T19211] netem: change failed
[  187.499890][   T29] audit: type=1326 audit(2000000015.891:7409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  187.527412][   T29] audit: type=1326 audit(2000000015.891:7410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  187.551839][   T29] audit: type=1326 audit(2000000015.891:7411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  187.575734][   T29] audit: type=1326 audit(2000000015.891:7412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  187.600040][   T29] audit: type=1326 audit(2000000015.891:7413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  187.623548][   T29] audit: type=1326 audit(2000000015.891:7414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19208 comm="syz.6.6802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd98165ebe9 code=0x7ffc0000
[  188.014381][T19246] sd 0:0:1:0: device reset
[  188.056120][T19248] loop7: detected capacity change from 0 to 512
[  188.170765][T19259] loop3: detected capacity change from 0 to 128
[  188.174358][T19248] ext4 filesystem being mounted at /430/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  188.660508][T19288] sd 0:0:1:0: device reset
[  188.791775][T19259] syz.3.6821: attempt to access beyond end of device
[  188.791775][T19259] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  188.805303][T19259] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  188.832630][T19259] syz.3.6821: attempt to access beyond end of device
[  188.832630][T19259] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  188.846913][T19259] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  189.683541][T19322] netlink: 268 bytes leftover after parsing attributes in process `+}[@'.
[  189.693924][T19324] serio: Serial port ptm0
[  189.793645][T19327] rdma_op ffff88814a753580 conn xmit_rdma 0000000000000000
[  189.829624][T19330] ALSA: seq fatal error: cannot create timer (-19)
[  190.062824][T19375] netlink: 92 bytes leftover after parsing attributes in process `syz.0.6872'.
[  190.072667][T19375] netem: unknown loss type 0
[  190.147314][T19388] loop6: detected capacity change from 0 to 512
[  190.192837][T19388] ext4 filesystem being mounted at /369/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  190.412713][T19423] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6888'.
[  190.422650][T19423] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6888'.
[  190.432446][T19423] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6888'.
[  190.459427][T19423] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6888'.
[  190.469200][T19423] netlink: 'syz.0.6888': attribute type 6 has an invalid length.
[  190.556914][T19439] netlink: 48 bytes leftover after parsing attributes in process `syz.3.6895'.
[  190.668316][T19456] program syz.6.6906 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  190.745523][T19463] lo speed is unknown, defaulting to 1000
[  190.798130][T19478] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.798390][T19476] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6915'.
[  190.819174][T19476] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6915'.
[  190.828791][T19463] lo speed is unknown, defaulting to 1000
[  190.837335][T19476] bridge0: port 4(vlan1) entered blocking state
[  190.843741][T19476] bridge0: port 4(vlan1) entered disabled state
[  190.850782][T19476] vlan1: entered allmulticast mode
[  190.855972][T19476] bridge0: entered allmulticast mode
[  190.861935][T19476] vlan1: left allmulticast mode
[  190.866837][T19476] bridge0: left allmulticast mode
[  190.882417][T19478] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.962390][T19478] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.985466][T19495] netlink: 9286 bytes leftover after parsing attributes in process `syz.7.6924'.
[  191.049626][T19478] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.105268][T19507] SELinux: failed to load policy
[  191.130738][T19511] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19511 comm=syz.7.6932
[  191.143462][T19511] netlink: 'syz.7.6932': attribute type 2 has an invalid length.
[  191.151317][T19511] netlink: 'syz.7.6932': attribute type 1 has an invalid length.
[  191.159676][T19511] netlink: 'syz.7.6932': attribute type 8 has an invalid length.
[  191.167422][T19511] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6932'.
[  191.186207][T17645] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  191.205923][T17645] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  191.214221][T19517] netlink: 7 bytes leftover after parsing attributes in process `syz.2.6935'.
[  191.225886][T17645] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  191.234589][T17645] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.281903][T19523] netem: unknown loss type 0
[  191.286626][T19523] netem: change failed
[  191.359633][T19529] lo speed is unknown, defaulting to 1000
[  191.444271][T19529] lo speed is unknown, defaulting to 1000
[  191.891070][T19585] loop3: detected capacity change from 0 to 128
[  191.960921][T19589] program syz.7.6966 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  192.051035][T19585] ==================================================================
[  192.059329][T19585] BUG: KCSAN: data-race in filemap_splice_read / filemap_splice_read
[  192.067517][T19585] 
[  192.069841][T19585] write to 0xffff8881554942e8 of 8 bytes by task 19590 on cpu 0:
[  192.077903][T19585]  filemap_splice_read+0x4f4/0x740
[  192.083022][T19585]  splice_direct_to_actor+0x26f/0x680
[  192.088395][T19585]  do_splice_direct+0xda/0x150
[  192.093170][T19585]  do_sendfile+0x380/0x650
[  192.097597][T19585]  __x64_sys_sendfile64+0x105/0x150
[  192.102805][T19585]  x64_sys_call+0x2bb0/0x2ff0
[  192.107498][T19585]  do_syscall_64+0xd2/0x200
[  192.112036][T19585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.118015][T19585] 
[  192.120329][T19585] write to 0xffff8881554942e8 of 8 bytes by task 19585 on cpu 1:
[  192.128043][T19585]  filemap_splice_read+0x4f4/0x740
[  192.133162][T19585]  splice_direct_to_actor+0x26f/0x680
[  192.138539][T19585]  do_splice_direct+0xda/0x150
[  192.143316][T19585]  do_sendfile+0x380/0x650
[  192.147744][T19585]  __x64_sys_sendfile64+0x105/0x150
[  192.152943][T19585]  x64_sys_call+0x2bb0/0x2ff0
[  192.157617][T19585]  do_syscall_64+0xd2/0x200
[  192.162128][T19585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.168018][T19585] 
[  192.170330][T19585] value changed: 0x0000000000000fcb -> 0x0000000000000fd8
[  192.177425][T19585] 
[  192.179749][T19585] Reported by Kernel Concurrency Sanitizer on:
[  192.185968][T19585] CPU: 1 UID: 0 PID: 19585 Comm: syz.3.6963 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  192.195870][T19585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  192.205926][T19585] ==================================================================
[  192.258228][T19585] syz.3.6963: attempt to access beyond end of device
[  192.258228][T19585] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  192.272310][T19585] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  192.281716][T19590] syz.3.6963: attempt to access beyond end of device
[  192.281716][T19590] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  192.295853][T19590] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  192.345804][   T29] kauditd_printk_skb: 343 callbacks suppressed
[  192.345829][   T29] audit: type=1400 audit(2000000020.995:7758): avc:  denied  { unmount } for  pid=3316 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1