last executing test programs:

4m24.298579382s ago: executing program 0 (id=948):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000900)='kfree\x00', r0}, 0x18)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000003e000701fcf7fffffedbdf25017c00000c0004"], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

4m24.265117713s ago: executing program 0 (id=949):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e40)=ANY=[@ANYBLOB="0b00000005000000020000000200000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000160000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r0, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
shutdown(r0, 0x1)

4m24.237217463s ago: executing program 0 (id=950):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x18)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)

4m24.209393483s ago: executing program 0 (id=952):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$cgroup2(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000000), 0x81, 0x0)

4m24.165769654s ago: executing program 0 (id=954):
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r0}, 0x10)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

4m23.609123515s ago: executing program 0 (id=970):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newtfilter={0x5c, 0x2c, 0xd3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff3}, {}, {0x8, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffd}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x5, 0x40}}}]}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

4m23.609004845s ago: executing program 32 (id=970):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newtfilter={0x5c, 0x2c, 0xd3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff3}, {}, {0x8, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffd}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x5, 0x40}}}]}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

3m32.532616464s ago: executing program 4 (id=2869):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x6, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0x6}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x2}, 0x0, 0x0, r0)
r2 = add_key(&(0x7f0000000340)='dns_resolver\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="fb9c", 0xfffff, r1)
keyctl$read(0xb, r2, &(0x7f0000000300)=""/51, 0xfffffffffffffc2f)

3m32.477219265s ago: executing program 4 (id=2872):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000840)={[{@mblk_io_submit}, {@min_batch_time={'min_batch_time', 0x3d, 0xffd}}, {@nolazytime}, {@jqfmt_vfsold}, {@errors_remount}, {@minixdf}, {@errors_remount}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105942, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="160000000000000061b1000002"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000200)={r2, 0x0, &(0x7f0000001780)=""/4096}, 0x20)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600)

3m32.23436484s ago: executing program 4 (id=2876):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000040)='fib6_table_lookup\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
r2 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f0000000340)={0x0, {{0xa, 0x2, 0x0, @mcast1}}}, 0x88)

3m32.063084603s ago: executing program 4 (id=2877):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x800)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x20000, 0x0)
open_tree(r0, &(0x7f0000000640)='\x00', 0x89901)

3m32.047311623s ago: executing program 4 (id=2879):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
lsetxattr$security_ima(0x0, 0x0, 0x0, 0x0, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
kcmp(0x0, 0x0, 0x4, 0xffffffffffffffff, 0xffffffffffffffff)

3m31.960191335s ago: executing program 4 (id=2883):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x5e, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x1, 0xa}, 0x1184c, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)={0xa0000004})
epoll_wait(r2, &(0x7f0000004140)=[{}], 0x1, 0x200000)

3m31.960063165s ago: executing program 33 (id=2883):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x5e, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x1, 0xa}, 0x1184c, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)={0xa0000004})
epoll_wait(r2, &(0x7f0000004140)=[{}], 0x1, 0x200000)

3m21.960539629s ago: executing program 6 (id=3224):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x6, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2, 0x0, 0x5}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc}, 0x50)

3m21.765243472s ago: executing program 6 (id=3239):
r0 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

3m21.462606889s ago: executing program 6 (id=3240):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r1}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

3m21.38524719s ago: executing program 6 (id=3245):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x469, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x88000, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f200000002000000000900", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, 0x0, 0x0)

3m20.630487995s ago: executing program 6 (id=3254):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000980)='mm_page_free\x00', r1, 0x0, 0x1000000000000}, 0xf)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0x1}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r3, 0x18000000000002a0, 0x5ee, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

3m20.606048065s ago: executing program 6 (id=3255):
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000001300)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3m20.544909736s ago: executing program 34 (id=3255):
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000001300)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.979542292s ago: executing program 7 (id=9504):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x8000000000000002, &(0x7f0000000e80)={<r3=>0xffffffffffffffff}, 0x2, 0x8}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r3, 0x1}}, 0x18)

2.936337883s ago: executing program 7 (id=9505):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000002c0)='sched_kthread_work_queue_work\x00', r1}, 0x10)
socketpair(0xf, 0x3, 0x2, &(0x7f00000001c0))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})

2.889710223s ago: executing program 7 (id=9507):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
close(0x3)

2.864196204s ago: executing program 7 (id=9508):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x80000, 0x0)

2.839634785s ago: executing program 7 (id=9510):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0xc48}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
recvmsg(0xffffffffffffffff, 0x0, 0x40fd)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x401, 0x7, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000140)={r0, &(0x7f0000000140), &(0x7f00000002c0)=""/4095}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x4, &(0x7f0000001800)={{r0}, &(0x7f0000001780)=0x4, 0x0}, 0x20)

2.450424722s ago: executing program 7 (id=9518):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs\x00')
r3 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r3, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r3, 0x4)
close_range(r2, r3, 0x0)

2.434605573s ago: executing program 35 (id=9518):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs\x00')
r3 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r3, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r3, 0x4)
close_range(r2, r3, 0x0)

1.863624884s ago: executing program 3 (id=9535):
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xae, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ptrace(0x10, r0)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28})

1.723490556s ago: executing program 3 (id=9537):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioperm(0x9, 0x9, 0x7)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

1.681423717s ago: executing program 2 (id=9539):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r2, 0x5421, &(0x7f0000000080)=0xfffffffffbfffffe)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000003680)="86", 0x1}], 0x1)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0x44f0)

1.603797039s ago: executing program 1 (id=9540):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000540), &(0x7f0000000580)=r3}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r2, &(0x7f0000000780)}, 0x20)

1.577589619s ago: executing program 2 (id=9541):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0xfffffffd}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r2}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

1.577183859s ago: executing program 1 (id=9542):
setpgid(0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f00000005c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=@newlink={0x38, 0x10, 0x437, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, 0x40c89}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24004880}, 0x0)

1.51327399s ago: executing program 2 (id=9543):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}})

1.51315734s ago: executing program 1 (id=9544):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8e7}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000100)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffff8}, 0x18)
sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

1.493926221s ago: executing program 1 (id=9545):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = io_uring_setup(0x6b9e, &(0x7f0000000240)={0x0, 0xfffffffe, 0x800, 0x103fc, 0x4000159})
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x2b)
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4400, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)

1.471617611s ago: executing program 2 (id=9547):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48)
socket$kcm(0x2c, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000000)={r1, &(0x7f0000000140), &(0x7f0000000200)=""/221}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.441793332s ago: executing program 2 (id=9548):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x255b}, 0x18)
r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x29)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents64(r3, 0x0, 0x0)

1.404351532s ago: executing program 2 (id=9549):
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000002c0)='./file0\x00', 0x1000000, &(0x7f0000000000)={[{@nodots}, {@fat=@discard}, {@nodots}, {@nodots}, {@nodots}, {@fat=@discard}, {@nodots}, {@nodots}, {}]}, 0x1, 0x11f1, &(0x7f0000001240)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r1, &(0x7f0000000740)="cc", 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
sendfile(r1, r0, 0x0, 0x7ffff000)

1.383118833s ago: executing program 1 (id=9550):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
r2 = pidfd_getfd(r1, r1, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000480)=@assoc_value, 0x0)
setns(r2, 0x66020000)
mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)

890.605092ms ago: executing program 3 (id=9551):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0, 0x0, 0x1000}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x12000000, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601060000000000000000000000000900020073797a310000000005000100070000001c0007800c00018008000140ffffffff0c000280080001407f00"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)

820.047824ms ago: executing program 5 (id=9553):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x27}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r0, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10)
sendto$inet(r0, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)

772.175635ms ago: executing program 5 (id=9554):
r0 = openat$selinux_policy(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0x0)
openat$selinux_status(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000000041}, 0xc)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@private=0xa010100, @in=@rand_addr=0x64010102, 0x0, 0x0, 0x1, 0x0, 0xa}, {0x7, 0x9, 0x100000003, 0x2, 0x0, 0x0, 0xffffdffffffffffd}, {0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@empty, 0x0, 0x2b}, 0x0, @in=@broadcast, 0x0, 0x0, 0x1, 0x0, 0x102}}, 0xe8)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e21, 0x7, @loopback, 0xfcb}, 0x1c)

771.790685ms ago: executing program 3 (id=9555):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x1c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x44}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xc}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x1100000000000000)

657.276347ms ago: executing program 5 (id=9556):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
dup(0xffffffffffffffff)
socket(0x10, 0x803, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
memfd_create(0x0, 0x0)

657.053127ms ago: executing program 3 (id=9557):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000040)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0xfffffffe, 0x8}}]}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x34, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff1, 0x4}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}}, 0x0)

533.582419ms ago: executing program 3 (id=9558):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x81)
r1 = socket$caif_stream(0x25, 0x1, 0x1)
close(0x3)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

497.86816ms ago: executing program 5 (id=9559):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_sctp(0x2, 0x1, 0x84)
sched_getscheduler(0x0)

319.884893ms ago: executing program 8 (id=9520):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pipe(&(0x7f0000005880)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fsetxattr$security_selinux(r2, &(0x7f00000000c0), &(0x7f0000000040)='system_u:object_r:dhcp_state_t:s0\x00', 0x1e, 0x0)

319.291443ms ago: executing program 5 (id=9561):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r4, 0x5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20)
sendmsg$inet(r1, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

199.343706ms ago: executing program 1 (id=9562):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000280))
close_range(r0, 0xffffffffffffffff, 0x0)

41.102239ms ago: executing program 8 (id=9563):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000001c0)='cdg\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000340)='dctcp\x00', 0x6)

29.904909ms ago: executing program 8 (id=9564):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)='\'', 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0)

0s ago: executing program 5 (id=9565):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x891b, &(0x7f0000002280)={'team_slave_1\x00', {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r2=>0x0})
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000240))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}, @TCA_RATE={0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x48801}, 0x0)

kernel console output (not intermixed with test programs):

pat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  238.023325][   T29] audit: type=1326 audit(237.933:8061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23870 comm="syz.3.6976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  238.046370][   T29] audit: type=1326 audit(237.933:8062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23870 comm="syz.3.6976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  238.069267][   T29] audit: type=1326 audit(237.963:8063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23875 comm="syz.3.6978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  238.092251][   T29] audit: type=1326 audit(237.963:8064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23875 comm="syz.3.6978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  238.115332][   T29] audit: type=1326 audit(237.963:8065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23875 comm="syz.3.6978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  238.138153][   T29] audit: type=1326 audit(237.963:8066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23875 comm="syz.3.6978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  238.183088][T23878] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6981'.
[  238.220892][T23890] 0ªX¹¦D: left allmulticast mode
[  238.274460][T23890] 8021q: adding VLAN 0 to HW filter on device bond0
[  238.300894][T23890] 8021q: adding VLAN 0 to HW filter on device team0
[  238.339435][T23890] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  239.007779][T23995] loop7: detected capacity change from 0 to 512
[  239.036875][T23995] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.057416][T17895] IPVS: starting estimator thread 0...
[  239.113742][T23995] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.145158][T24002] IPVS: using max 2112 ests per chain, 105600 per kthread
[  239.245973][T24027] netlink: 24 bytes leftover after parsing attributes in process `syz.7.7039'.
[  239.287362][T24045] netlink: 14 bytes leftover after parsing attributes in process `syz.2.7041'.
[  239.542814][T24081] netlink: 72 bytes leftover after parsing attributes in process `syz.1.7056'.
[  240.383746][T24176] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  240.425193][T24176] bond0: (slave team0): Releasing backup interface
[  240.437562][T24176] team0 (unregistering): Port device team_slave_0 removed
[  240.449190][T24176] team0 (unregistering): Port device team_slave_1 removed
[  240.458924][T24176] team0 (unregistering): Port device geneve1 removed
[  240.756224][T24252] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  240.788715][T24252] team0 (unregistering): Port device dummy0 removed
[  240.870019][T24293] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7105'.
[  240.967179][T24311] tipc: Started in network mode
[  240.972103][T24311] tipc: Node identity ac14140f, cluster identity 4711
[  240.991177][T24311] tipc: New replicast peer: 255.255.255.255
[  240.997416][T24311] tipc: Enabled bearer <udp:syz2>, priority 10
[  241.202912][T24339] netlink: 72 bytes leftover after parsing attributes in process `syz.7.7121'.
[  241.960040][T24412] sch_fq: defrate 4294967295 ignored.
[  242.114072][ T5342] tipc: Node number set to 2886997007
[  242.350136][T24449] netlink: 3 bytes leftover after parsing attributes in process `syz.7.7169'.
[  242.418997][T24447] netlink: 'syz.5.7167': attribute type 1 has an invalid length.
[  242.420162][T24449] batadv0: entered promiscuous mode
[  242.427651][T24447] netlink: 198116 bytes leftover after parsing attributes in process `syz.5.7167'.
[  242.431992][T24449] batadv0: entered allmulticast mode
[  242.809383][T24486] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7181'.
[  243.064870][T24506] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  243.388163][   T29] kauditd_printk_skb: 155 callbacks suppressed
[  243.388180][   T29] audit: type=1326 audit(243.363:8222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.438188][T24533] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7194'.
[  243.447444][   T29] audit: type=1326 audit(243.403:8223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.470474][   T29] audit: type=1326 audit(243.403:8224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.493509][   T29] audit: type=1326 audit(243.403:8225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.516485][   T29] audit: type=1326 audit(243.413:8226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.539462][   T29] audit: type=1326 audit(243.413:8227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.562363][   T29] audit: type=1326 audit(243.413:8228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.585425][   T29] audit: type=1326 audit(243.413:8229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.608318][   T29] audit: type=1326 audit(243.413:8230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  243.631200][   T29] audit: type=1326 audit(243.413:8231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24529 comm="syz.5.7193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  244.706073][T24600] __nla_validate_parse: 2 callbacks suppressed
[  244.706092][T24600] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7217'.
[  244.850739][T17895] IPVS: starting estimator thread 0...
[  244.893678][T24614] bridge0: entered allmulticast mode
[  244.944909][T24611] IPVS: using max 1872 ests per chain, 93600 per kthread
[  246.129264][T24684] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7246'.
[  246.423752][T24693] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7250'.
[  247.271644][T24774] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7293'.
[  247.418380][T24789] netlink: 7 bytes leftover after parsing attributes in process `syz.7.7286'.
[  247.435531][T24789] netlink: 7 bytes leftover after parsing attributes in process `syz.7.7286'.
[  247.501223][T24792] loop7: detected capacity change from 0 to 764
[  247.526555][T24792] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  247.535855][T24792] Symlink component flag not implemented
[  247.541926][T24792] Symlink component flag not implemented (7)
[  247.864432][T24814] wireguard0: entered promiscuous mode
[  247.869962][T24814] wireguard0: entered allmulticast mode
[  248.185839][T24839] sch_tbf: peakrate 64 is lower than or equals to rate 17038211371681383082 !
[  248.430831][T24858] 8021q: VLANs not supported on gre0
[  248.645068][T24869] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7319'.
[  248.654039][T24869] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7319'.
[  248.762539][T24889] wireguard0: entered promiscuous mode
[  248.768747][T24889] wireguard0: entered allmulticast mode
[  249.013844][   T29] kauditd_printk_skb: 59 callbacks suppressed
[  249.013861][   T29] audit: type=1400 audit(248.983:8291): avc:  denied  { watch watch_reads } for  pid=24912 comm="syz.7.7337" path="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1
[  249.047187][   T29] audit: type=1326 audit(249.023:8292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.071068][   T29] audit: type=1326 audit(249.023:8293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.095658][   T29] audit: type=1326 audit(249.023:8294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.118971][   T29] audit: type=1326 audit(249.023:8295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.142674][   T29] audit: type=1326 audit(249.023:8296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.166750][   T29] audit: type=1326 audit(249.073:8297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.189769][   T29] audit: type=1326 audit(249.073:8298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.213458][   T29] audit: type=1326 audit(249.073:8299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.237698][   T29] audit: type=1326 audit(249.103:8300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24916 comm="syz.5.7338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  249.440414][T24935] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7344'.
[  249.463778][T24935] team2: entered promiscuous mode
[  249.469001][T24935] team2: entered allmulticast mode
[  249.492138][T24971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7346'.
[  249.917480][T25008] __nla_validate_parse: 1 callbacks suppressed
[  249.917493][T25008] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7359'.
[  249.935232][T25008] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7359'.
[  250.400466][T25025] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7364'.
[  250.468172][T25032] loop7: detected capacity change from 0 to 2048
[  250.496280][T25032] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.516663][T25032] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.7367: bg 0: block 345: padding at end of block bitmap is not set
[  250.536532][T25041] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7369'.
[  250.545492][T25041] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7369'.
[  250.561214][ T3787] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 79 with max blocks 1 with error 28
[  250.573751][ T3787] EXT4-fs (loop7): This should not happen!! Data will be lost
[  250.573751][ T3787] 
[  250.583888][ T3787] EXT4-fs (loop7): Total free blocks count 0
[  250.590802][ T3787] EXT4-fs (loop7): Free/Dirty block details
[  250.596766][ T3787] EXT4-fs (loop7): free_blocks=0
[  250.601749][ T3787] EXT4-fs (loop7): dirty_blocks=16
[  250.607036][ T3787] EXT4-fs (loop7): Block reservation details
[  250.613043][ T3787] EXT4-fs (loop7): i_reserved_data_blocks=1
[  250.621880][T12765] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.797744][T25060] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  250.807580][T25060] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  250.817533][T25060] netdevsim netdevsim3 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  250.868507][T25060] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  250.878382][T25060] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  250.888279][T25060] netdevsim netdevsim3 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  250.936559][T25060] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  250.947309][T25060] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  250.957337][T25060] netdevsim netdevsim3 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  251.007169][T25060] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  251.017127][T25060] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  251.027265][T25060] netdevsim netdevsim3 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  251.097902][ T3795] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  251.106403][ T3795] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.114733][ T3795] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  251.150910][ T3795] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  251.159207][ T3795] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.167426][ T3795] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  251.204263][ T3795] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  251.212690][ T3795] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.220993][ T3795] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  251.284969][ T3795] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  251.293244][ T3795] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.301529][ T3795] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  251.354763][T25123] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7396'.
[  251.388581][T25123] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7396'.
[  251.447333][T25127] wireguard0: entered promiscuous mode
[  251.452939][T25127] wireguard0: entered allmulticast mode
[  251.666095][T25147] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25147 comm=syz.7.7402
[  251.691330][T25147] netlink: 12 bytes leftover after parsing attributes in process `syz.7.7402'.
[  251.849065][T25199] loop7: detected capacity change from 0 to 128
[  252.349593][T17896] hid_parser_main: 19 callbacks suppressed
[  252.349616][T17896] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  252.364651][T17896] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  252.489761][T25300] loop9: detected capacity change from 0 to 7
[  252.496189][T25300] Buffer I/O error on dev loop9, logical block 0, async page read
[  252.511775][T25300] Buffer I/O error on dev loop9, logical block 0, async page read
[  252.519693][T25300]  loop9: unable to read partition table
[  252.525565][T25300] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  252.525565][T25300] 
) failed (rc=-5)
[  252.570755][T25310] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  252.578016][T25310] IPv6: NLM_F_CREATE should be set when creating new route
[  252.695992][ T3418] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=3418 comm=kworker/0:3
[  252.710087][T25329] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  252.770024][T25344] loop7: detected capacity change from 0 to 128
[  252.832570][T25348] bio_check_eod: 12131 callbacks suppressed
[  252.832590][T25348] syz.7.7439: attempt to access beyond end of device
[  252.832590][T25348] loop7: rw=2049, sector=153, nr_sectors = 8 limit=128
[  252.852415][T25348] syz.7.7439: attempt to access beyond end of device
[  252.852415][T25348] loop7: rw=2049, sector=169, nr_sectors = 8 limit=128
[  252.867971][T25348] syz.7.7439: attempt to access beyond end of device
[  252.867971][T25348] loop7: rw=2049, sector=185, nr_sectors = 8 limit=128
[  252.882229][T25348] syz.7.7439: attempt to access beyond end of device
[  252.882229][T25348] loop7: rw=2049, sector=201, nr_sectors = 8 limit=128
[  252.897893][T25348] syz.7.7439: attempt to access beyond end of device
[  252.897893][T25348] loop7: rw=2049, sector=217, nr_sectors = 8 limit=128
[  252.911652][T25348] syz.7.7439: attempt to access beyond end of device
[  252.911652][T25348] loop7: rw=2049, sector=233, nr_sectors = 8 limit=128
[  252.938042][T25348] syz.7.7439: attempt to access beyond end of device
[  252.938042][T25348] loop7: rw=2049, sector=249, nr_sectors = 8 limit=128
[  252.953767][T25348] syz.7.7439: attempt to access beyond end of device
[  252.953767][T25348] loop7: rw=2049, sector=265, nr_sectors = 8 limit=128
[  252.968031][T25348] syz.7.7439: attempt to access beyond end of device
[  252.968031][T25348] loop7: rw=2049, sector=281, nr_sectors = 8 limit=128
[  252.981743][T25348] syz.7.7439: attempt to access beyond end of device
[  252.981743][T25348] loop7: rw=2049, sector=297, nr_sectors = 8 limit=128
[  253.163614][T25361] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7444'.
[  253.194816][T25347] Set syz1 is full, maxelem 65536 reached
[  253.201147][T25361] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7444'.
[  253.411663][T25380] wireguard0: entered promiscuous mode
[  253.417289][T25380] wireguard0: entered allmulticast mode
[  253.566697][T25400] loop5: detected capacity change from 0 to 128
[  254.141924][   T29] kauditd_printk_skb: 94 callbacks suppressed
[  254.141940][   T29] audit: type=1326 audit(254.113:8395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.197196][   T29] audit: type=1326 audit(254.153:8396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.220138][   T29] audit: type=1326 audit(254.153:8397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.240803][T25407] Set syz1 is full, maxelem 65536 reached
[  254.243370][   T29] audit: type=1326 audit(254.153:8398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.272051][   T29] audit: type=1326 audit(254.153:8399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.294966][   T29] audit: type=1326 audit(254.153:8400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.317909][   T29] audit: type=1326 audit(254.153:8401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.340968][   T29] audit: type=1326 audit(254.153:8402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.363775][   T29] audit: type=1326 audit(254.153:8403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.386735][   T29] audit: type=1326 audit(254.153:8404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25423 comm="syz.1.7464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  254.503647][T25440] syzkaller0: entered allmulticast mode
[  254.529489][T25440] syzkaller0 (unregistering): left allmulticast mode
[  254.540961][ T5342] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=5342 comm=kworker/1:10
[  254.559384][T25446] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  254.771818][T25472] loop5: detected capacity change from 0 to 764
[  254.799415][T25472] rock: directory entry would overflow storage
[  254.805666][T25472] rock: sig=0x4f50, size=4, remaining=3
[  254.811295][T25472] iso9660: Corrupted directory entry in block 6 of inode 1792
[  254.897929][T25453] Set syz1 is full, maxelem 65536 reached
[  254.984578][T25471] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  254.994450][T25471] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.005026][T25471] netdevsim netdevsim3 eth3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  255.046003][T25471] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  255.055924][T25471] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.066560][T25471] netdevsim netdevsim3 eth2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  255.085490][T17895] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=17895 comm=kworker/0:15
[  255.100006][T25496] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  255.115471][T25471] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  255.126025][T25471] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.135874][T25471] netdevsim netdevsim3 eth1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  255.199116][T25511] loop5: detected capacity change from 0 to 1024
[  255.206021][T25511] EXT4-fs: Ignoring removed orlov option
[  255.211689][T25511] EXT4-fs: Ignoring removed nomblk_io_submit option
[  255.221051][T25471] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  255.230924][T25471] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.234399][T25511] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  255.240774][T25471] netdevsim netdevsim3 eth0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  255.322923][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.362243][ T3776] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  255.371513][ T3776] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.379783][ T3776] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  255.411534][ T3776] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  255.419989][ T3776] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.429003][ T3776] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  255.487075][ T3776] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  255.495380][ T3776] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.503653][ T3776] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  255.559987][ T3776] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  255.568280][ T3776] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.577234][ T3776] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  255.653289][T25546] __nla_validate_parse: 3 callbacks suppressed
[  255.653312][T25546] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7501'.
[  255.702954][T25546] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7501'.
[  255.735886][T25562] netlink: 'syz.7.7502': attribute type 10 has an invalid length.
[  255.743753][T25562] netlink: 40 bytes leftover after parsing attributes in process `syz.7.7502'.
[  255.773309][T25562] dummy0: entered promiscuous mode
[  255.800113][T25562] bond0: (slave dummy0): Releasing backup interface
[  255.820621][T25562] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  256.096587][T25595] wireguard0: entered promiscuous mode
[  256.102105][T25595] wireguard0: entered allmulticast mode
[  256.257822][T25609] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7517'.
[  256.274492][T25609] netlink: 12 bytes leftover after parsing attributes in process `syz.7.7517'.
[  256.405336][T25619] loop7: detected capacity change from 0 to 764
[  256.417960][T25619] rock: directory entry would overflow storage
[  256.424205][T25619] rock: sig=0x4f50, size=4, remaining=3
[  256.429772][T25619] iso9660: Corrupted directory entry in block 6 of inode 1792
[  256.580294][T25629] loop7: detected capacity change from 0 to 164
[  256.596283][T25629] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  256.607646][T25629] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  256.659209][T25634] netlink: 'syz.3.7527': attribute type 21 has an invalid length.
[  256.667277][T25638] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7528'.
[  256.676383][T25638] netlink: 'syz.7.7528': attribute type 7 has an invalid length.
[  256.684237][T25638] netlink: 'syz.7.7528': attribute type 8 has an invalid length.
[  256.692009][T25638] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7528'.
[  256.851738][T25651] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7535'.
[  256.964363][   T10] Process accounting resumed
[  257.038785][T25678] sctp: [Deprecated]: syz.7.7545 (pid 25678) Use of int in max_burst socket option.
[  257.038785][T25678] Use struct sctp_assoc_value instead
[  257.062233][T25682] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7548'.
[  257.123226][T25700] veth1_to_bond: entered allmulticast mode
[  257.139988][T25700] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7549'.
[  257.158739][T25700] bond0: (slave bond_slave_1): Releasing backup interface
[  257.171269][T25700] veth1_to_bond (unregistering): left allmulticast mode
[  257.396865][T25745] bridge0: port 1(batadv0) entered blocking state
[  257.403416][T25745] bridge0: port 1(batadv0) entered disabled state
[  257.435102][T25745] batadv0: entered allmulticast mode
[  257.441036][T25745] batadv0: entered promiscuous mode
[  257.661562][T25768] sctp: [Deprecated]: syz.2.7574 (pid 25768) Use of int in max_burst socket option.
[  257.661562][T25768] Use struct sctp_assoc_value instead
[  257.722649][T25772] netlink: 'syz.3.7576': attribute type 30 has an invalid length.
[  257.905503][ T3816] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  257.914811][ T3816] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  257.935161][T25810] xfrm1: entered allmulticast mode
[  258.159848][T25842] loop5: detected capacity change from 0 to 128
[  258.196469][T25842] bio_check_eod: 73 callbacks suppressed
[  258.196485][T25842] syz.5.7599: attempt to access beyond end of device
[  258.196485][T25842] loop5: rw=2049, sector=138, nr_sectors = 8 limit=128
[  258.219470][T25842] syz.5.7599: attempt to access beyond end of device
[  258.219470][T25842] loop5: rw=2049, sector=138, nr_sectors = 2 limit=128
[  258.233739][T25842] Buffer I/O error on dev loop5, logical block 69, lost async page write
[  258.302823][T25856] ip6gre3: entered allmulticast mode
[  258.396264][T25862] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25862 comm=syz.1.7607
[  258.545931][T25888] veth1_to_bond: entered allmulticast mode
[  258.569691][T25888] veth1_to_bond (unregistering): left allmulticast mode
[  258.581159][T25890] wireguard0: entered promiscuous mode
[  258.587540][T25890] wireguard0: entered allmulticast mode
[  258.886791][T25918] netlink: 'syz.2.7627': attribute type 13 has an invalid length.
[  258.897870][T25918] 0ªî{X¹¦: refused to change device tx_queue_len
[  258.904767][T25918] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  259.327596][T25944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  259.336464][T25944] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  259.345391][T25944] netlink: 'syz.7.7636': attribute type 13 has an invalid length.
[  259.668362][   T29] kauditd_printk_skb: 123 callbacks suppressed
[  259.668395][   T29] audit: type=1326 audit(259.645:8528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.703891][   T29] audit: type=1326 audit(259.645:8529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.728076][   T29] audit: type=1326 audit(259.685:8530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.751459][   T29] audit: type=1326 audit(259.685:8531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.775152][   T29] audit: type=1326 audit(259.685:8532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.798299][   T29] audit: type=1326 audit(259.685:8533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.822001][   T29] audit: type=1326 audit(259.685:8534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.845876][   T29] audit: type=1326 audit(259.685:8535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.868913][   T29] audit: type=1326 audit(259.685:8536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  259.892531][   T29] audit: type=1326 audit(259.685:8537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25958 comm="syz.5.7640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  260.381734][T26005] netlink: 'syz.2.7661': attribute type 2 has an invalid length.
[  260.502013][T26011] vxlan0: entered promiscuous mode
[  260.511181][ T3776] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  260.523005][ T3776] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  260.535834][ T3776] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  260.554066][ T3816] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  261.107075][T26025] loop7: detected capacity change from 0 to 512
[  261.115983][T26025] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  261.125526][T26025] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #15: comm syz.7.7667: iget: bad i_size value: 360287970189639680
[  261.139443][T26025] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.7667: couldn't read orphan inode 15 (err -117)
[  261.154595][T26025] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.181102][T26025] bond0: (slave bond_slave_0): Releasing backup interface
[  261.194621][T26025] team0: Port device team_slave_0 removed
[  261.207962][T26025] team0: Port device team_slave_1 removed
[  261.215820][T26025] batadv0: left allmulticast mode
[  261.220918][T26025] batadv0: left promiscuous mode
[  261.226208][T26025] bridge0: port 1(batadv0) entered disabled state
[  261.249278][T12765] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.300907][T26043] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3)
[  261.307566][T26043] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  261.315203][T26043] vhci_hcd vhci_hcd.0: Device attached
[  261.357593][T26043] vhci_hcd vhci_hcd.0: pdev(7) rhport(1) sockfd(8)
[  261.364252][T26043] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  261.371910][T26043] vhci_hcd vhci_hcd.0: Device attached
[  261.395198][T26044] vhci_hcd: connection closed
[  261.395538][ T3778] vhci_hcd: stop threads
[  261.400273][T26057] vhci_hcd: connection closed
[  261.404709][ T3778] vhci_hcd: release socket
[  261.414775][ T3778] vhci_hcd: disconnect device
[  261.432062][ T3778] vhci_hcd: stop threads
[  261.436414][ T3778] vhci_hcd: release socket
[  261.440850][ T3778] vhci_hcd: disconnect device
[  261.660844][T26099] __nla_validate_parse: 4 callbacks suppressed
[  261.660942][T26099] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7683'.
[  261.809370][T26109] gtp0: entered promiscuous mode
[  261.843037][T26113] netlink: 'syz.5.7690': attribute type 2 has an invalid length.
[  262.150691][T26144] netlink: 'syz.1.7703': attribute type 2 has an invalid length.
[  262.283539][T26148] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7705'.
[  262.344790][T26151] loop5: detected capacity change from 0 to 128
[  262.459738][T26151] syz.5.7706: attempt to access beyond end of device
[  262.459738][T26151] loop5: rw=0, sector=121, nr_sectors = 920 limit=128
[  263.108063][T26148] Set syz1 is full, maxelem 65536 reached
[  263.242268][T26170] vlan3: entered allmulticast mode
[  263.264151][T26170] dummy0: entered allmulticast mode
[  263.950184][T26214] netlink: 76 bytes leftover after parsing attributes in process `syz.3.7730'.
[  264.132054][T26235] Set syz1 is full, maxelem 65536 reached
[  264.217486][T26245] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7744'.
[  264.272856][T26247] netlink: 'syz.2.7745': attribute type 1 has an invalid length.
[  264.288512][T26247] 8021q: adding VLAN 0 to HW filter on device bond0
[  264.349865][T26288] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7749'.
[  264.385472][T26292] netlink: 'syz.1.7751': attribute type 12 has an invalid length.
[  264.473301][T26301] netlink: 'syz.1.7751': attribute type 12 has an invalid length.
[  264.527963][T26308] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7758'.
[  264.538257][T26308] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7758'.
[  264.697423][   T29] kauditd_printk_skb: 148 callbacks suppressed
[  264.697440][   T29] audit: type=1326 audit(264.675:8686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  264.738298][   T29] audit: type=1326 audit(264.675:8687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  264.761985][   T29] audit: type=1326 audit(264.675:8688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc3a7a9d510 code=0x7ffc0000
[  264.785133][   T29] audit: type=1326 audit(264.675:8689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  264.808751][   T29] audit: type=1326 audit(264.675:8690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  264.831714][   T29] audit: type=1326 audit(264.675:8691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc3a7a9d510 code=0x7ffc0000
[  264.855262][   T29] audit: type=1326 audit(264.675:8692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  264.878211][   T29] audit: type=1326 audit(264.675:8693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc3a7aa0ac7 code=0x7ffc0000
[  264.901549][   T29] audit: type=1326 audit(264.675:8694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fc3a7aa0a3c code=0x7ffc0000
[  264.924965][   T29] audit: type=1326 audit(264.675:8695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26322 comm="syz.3.7765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fc3a7aa0974 code=0x7ffc0000
[  265.183538][T26351] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7769'.
[  265.351593][T26376] netlink: 104 bytes leftover after parsing attributes in process `syz.5.7786'.
[  265.377106][T26381] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7788'.
[  265.490686][T26416] wg2: left promiscuous mode
[  265.495387][T26416] wg2: left allmulticast mode
[  265.510507][T26416] wg2: entered promiscuous mode
[  265.516198][T26416] wg2: entered allmulticast mode
[  265.536930][T26420] vlan3: entered allmulticast mode
[  265.545269][T26424] netlink: 'syz.7.7797': attribute type 11 has an invalid length.
[  265.567802][T26424] netlink: 'syz.7.7797': attribute type 11 has an invalid length.
[  265.582326][T26434] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=26434 comm=syz.5.7798
[  265.715486][T26465] batadv_slave_0: left promiscuous mode
[  265.808230][T26474] netlink: 'syz.1.7811': attribute type 30 has an invalid length.
[  266.015933][T26522] vxcan1: entered allmulticast mode
[  266.258914][T26557] IPVS: Error connecting to the multicast addr
[  267.149793][T26669] sch_tbf: peakrate 64 is lower than or equals to rate 17038211371681383082 !
[  267.222498][T26679] netlink: 'syz.5.7889': attribute type 12 has an invalid length.
[  267.411211][T26705] __nla_validate_parse: 10 callbacks suppressed
[  267.411231][T26705] netlink: 92 bytes leftover after parsing attributes in process `syz.5.7901'.
[  267.594296][T26610] 9pnet_fd: p9_fd_create_tcp (26610): problem connecting socket to 127.0.0.1
[  267.825636][T26773] loop9: detected capacity change from 0 to 7
[  267.853023][T26773] Buffer I/O error on dev loop9, logical block 0, async page read
[  267.871306][T26773] Buffer I/O error on dev loop9, logical block 0, async page read
[  267.879337][T26773]  loop9: unable to read partition table
[  267.900220][T26773] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  267.900220][T26773] 
) failed (rc=-5)
[  267.955984][T26779] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  267.971108][T26779] tipc: Disabling bearer <eth:syzkaller0>
[  268.060411][T26790] netlink: 'syz.2.7924': attribute type 27 has an invalid length.
[  268.098860][T26794] netlink: 104 bytes leftover after parsing attributes in process `syz.1.7926'.
[  268.142642][T26790] wg2: left promiscuous mode
[  268.147419][T26790] wg2: left allmulticast mode
[  268.177684][T26790] geneve0: left allmulticast mode
[  268.186813][T26790] ip6gre1: left allmulticast mode
[  268.207350][T26790] geneve2: left promiscuous mode
[  268.215067][T26802] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7929'.
[  268.251233][ T3776] netdevsim netdevsim2 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  268.259713][ T3776] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  268.294650][ T3776] netdevsim netdevsim2 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  268.303098][ T3776] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  268.351919][ T3776] netdevsim netdevsim2 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  268.360396][ T3776] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  268.407280][ T3776] netdevsim netdevsim2 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  268.415821][ T3776] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  268.497064][T26824] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7939'.
[  268.824384][T26855] netlink: 24 bytes leftover after parsing attributes in process `syz.7.7947'.
[  269.015003][T26885] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7953'.
[  269.158608][T26910] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7960'.
[  269.352996][T26949] netlink: 24 bytes leftover after parsing attributes in process `syz.7.7964'.
[  269.503214][T26974] pim6reg: entered allmulticast mode
[  269.544030][T26974] bridge0: entered allmulticast mode
[  269.999076][T27008] SELinux:  Context system_u:object_r:ping_exec_t:s0 is not valid (left unmapped).
[  270.009824][   T29] kauditd_printk_skb: 172 callbacks suppressed
[  270.009839][   T29] audit: type=1400 audit(269.985:8868): avc:  denied  { relabelto } for  pid=27007 comm="syz.2.7985" name="UNIX" dev="sockfs" ino=62687 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=unix_stream_socket permissive=1 trawcon="system_u:object_r:ping_exec_t:s0"
[  270.165003][T27015] vlan3: entered allmulticast mode
[  270.379632][T27032] netlink: 'syz.3.7993': attribute type 1 has an invalid length.
[  270.454358][T27032] 8021q: adding VLAN 0 to HW filter on device bond5
[  270.599794][T27082] lo speed is unknown, defaulting to 1000
[  270.614995][T27082] lo speed is unknown, defaulting to 1000
[  270.635240][T27082] lo speed is unknown, defaulting to 1000
[  270.649005][T27082] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  270.676781][T27089] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8004'.
[  270.677551][T27082] lo speed is unknown, defaulting to 1000
[  270.693184][T27082] lo speed is unknown, defaulting to 1000
[  270.699787][T27082] lo speed is unknown, defaulting to 1000
[  270.711168][T27082] lo speed is unknown, defaulting to 1000
[  270.737738][T27082] lo speed is unknown, defaulting to 1000
[  270.762491][T27082] lo speed is unknown, defaulting to 1000
[  270.789614][T27082] lo speed is unknown, defaulting to 1000
[  270.802416][T27082] lo speed is unknown, defaulting to 1000
[  270.941332][   T29] audit: type=1400 audit(270.915:8869): avc:  denied  { read } for  pid=27138 comm="syz.7.8023" name="file0" dev="tmpfs" ino=4526 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  271.005390][T27146] 
: (slave gretap1): Releasing active interface
[  271.037835][T27146] bond1: (slave gretap2): Releasing active interface
[  271.064708][T27146] bond2: (slave bridge2): Releasing active interface
[  271.345851][T27195] netlink: 32 bytes leftover after parsing attributes in process `syz.5.8021'.
[  271.499223][T27203] siw: device registration error -23
[  271.583757][T27208] bond0: (slave dummy0): Releasing backup interface
[  271.610079][T27208] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  271.617364][T27208] batman_adv: batadv0: Removing interface: veth1_vlan
[  271.651696][T27208] team0: Port device geneve1 removed
[  271.675714][T27208] bond4: (slave geneve2): Releasing active interface
[  271.728484][ T3810] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  271.737029][ T3810] netdevsim netdevsim3 eth0: unset [1, 1] type 2 family 0 port 20000 - 0
[  271.748448][T27218] vlan0: entered allmulticast mode
[  271.780137][ T3810] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  271.788650][ T3810] netdevsim netdevsim3 eth1: unset [1, 1] type 2 family 0 port 20000 - 0
[  271.798472][ T3810] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  271.806926][ T3810] netdevsim netdevsim3 eth2: unset [1, 1] type 2 family 0 port 20000 - 0
[  271.815804][ T3782] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  271.824257][ T3782] netdevsim netdevsim3 eth3: unset [1, 1] type 2 family 0 port 20000 - 0
[  271.959220][   T29] audit: type=1326 audit(271.935:8870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.8041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  271.959889][T27242] loop7: detected capacity change from 0 to 8192
[  271.982218][   T29] audit: type=1326 audit(271.935:8871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.8041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  272.054759][   T29] audit: type=1326 audit(271.965:8872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.8041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  272.077869][   T29] audit: type=1326 audit(271.965:8873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.8041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  272.100874][   T29] audit: type=1326 audit(271.965:8874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.8041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  272.123804][   T29] audit: type=1326 audit(271.995:8875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.8041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  272.146819][   T29] audit: type=1326 audit(271.995:8876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.8041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  272.169804][   T29] audit: type=1326 audit(271.995:8877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.8041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  272.194333][T27251] raw_sendmsg: syz.3.8043 forgot to set AF_INET. Fix it!
[  272.227398][T27242]  loop7: p1 p2 p3 p4
[  272.234245][T27242] loop7: p2 start 151000334 is beyond EOD, truncated
[  272.241004][T27242] loop7: p3 start 331777 is beyond EOD, truncated
[  272.248290][T27242] loop7: p4 size 263168 extends beyond EOD, truncated
[  272.272492][T27264] netlink: 'syz.2.8047': attribute type 3 has an invalid length.
[  272.302917][T27268] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  272.383443][T27268] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  272.445407][T27268] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  272.505453][T27268] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  272.553296][T27308] loop5: detected capacity change from 0 to 8192
[  272.569833][ T3776] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  272.578472][T27308]  loop5: p1 p2 p3 p4
[  272.583763][T27308] loop5: p2 start 151000334 is beyond EOD, truncated
[  272.590632][T27308] loop5: p3 start 331777 is beyond EOD, truncated
[  272.597210][T27308] loop5: p4 size 263168 extends beyond EOD, truncated
[  272.613977][ T3776] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  272.622353][ T3776] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  272.631731][ T3776] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  272.774956][T27333] __nla_validate_parse: 2 callbacks suppressed
[  272.774973][T27333] netlink: 56 bytes leftover after parsing attributes in process `syz.7.8066'.
[  272.848220][T27345] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  272.875901][T27347] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  272.917171][T27345] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  272.996203][T27345] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  273.056919][T27345] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  273.294751][T27384] wg2: entered promiscuous mode
[  273.299681][T27384] wg2: entered allmulticast mode
[  273.567620][T27414] wg2: entered promiscuous mode
[  273.572634][T27414] wg2: entered allmulticast mode
[  273.592748][T27416] sch_fq: defrate 0 ignored.
[  273.844748][T27446] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8105'.
[  273.862675][T27448] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8106'.
[  273.872606][T27448] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8106'.
[  273.883420][T27450] netlink: 56 bytes leftover after parsing attributes in process `syz.5.8107'.
[  274.106098][T27475] netem: incorrect ge model size
[  274.111281][T27475] netem: change failed
[  274.362029][T27516] loop5: detected capacity change from 0 to 512
[  274.371272][T27516] ------------[ cut here ]------------
[  274.377340][T27516] EA inode 11 i_nlink=2
[  274.377661][T27516] WARNING: CPU: 1 PID: 27516 at fs/ext4/xattr.c:1053 ext4_xattr_inode_update_ref+0x3d4/0x3f0
[  274.392153][T27516] Modules linked in:
[  274.396181][T27516] CPU: 1 UID: 0 PID: 27516 Comm: syz.5.8135 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  274.408245][T27516] Tainted: [W]=WARN
[  274.412051][T27516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  274.422138][T27516] RIP: 0010:ext4_xattr_inode_update_ref+0x3d4/0x3f0
[  274.428879][T27516] Code: 90 49 8d 7e 40 e8 fc fe b7 ff 4d 8b 6e 40 4c 89 e7 e8 10 fa b7 ff 41 8b 56 48 48 c7 c7 c9 a4 54 86 4c 89 ee e8 bd e3 66 ff 90 <0f> 0b 90 90 e9 58 fe ff ff e8 ce a1 ad 03 66 66 66 66 66 2e 0f 1f
[  274.449326][T27516] RSP: 0018:ffffc90002ef75f0 EFLAGS: 00010246
[  274.455430][T27516] RAX: b28889a8110f3700 RBX: ffff88810bd3b5c8 RCX: 0000000000080000
[  274.463416][T27516] RDX: ffffc90001c31000 RSI: 0000000000003f05 RDI: 0000000000003f06
[  274.471427][T27516] RBP: 0000000000000002 R08: 0001c90002ef746f R09: 0000000000000000
[  274.480011][T27516] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff88810bd3b578
[  274.488061][T27516] R13: 000000000000000b R14: ffff88810bd3b530 R15: 0000000000000001
[  274.496097][T27516] FS:  00007f44d220f6c0(0000) GS:ffff8882aef40000(0000) knlGS:0000000000000000
[  274.505776][T27516] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  274.512391][T27516] CR2: 00007f44d3791fe0 CR3: 000000012ed1a000 CR4: 00000000003506f0
[  274.520428][T27516] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  274.528446][T27516] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  274.537037][T27516] Call Trace:
[  274.540333][T27516]  <TASK>
[  274.543293][T27516]  ext4_xattr_set_entry+0x77f/0x1020
[  274.548734][T27516]  ext4_xattr_ibody_set+0x184/0x3c0
[  274.554004][T27516]  ext4_expand_extra_isize_ea+0xcb6/0x11f0
[  274.559862][T27516]  __ext4_expand_extra_isize+0x246/0x280
[  274.566098][T27516]  __ext4_mark_inode_dirty+0x29d/0x3f0
[  274.571596][T27516]  ext4_evict_inode+0x80e/0xd90
[  274.576506][T27516]  ? __pfx_ext4_evict_inode+0x10/0x10
[  274.581893][T27516]  evict+0x2e3/0x550
[  274.585848][T27516]  ? __dquot_initialize+0x146/0x7c0
[  274.591104][T27516]  iput+0x447/0x5b0
[  274.595535][T27516]  ext4_process_orphan+0x1a9/0x1c0
[  274.600752][T27516]  ext4_orphan_cleanup+0x6a8/0xa00
[  274.605920][T27516]  ext4_fill_super+0x3260/0x35d0
[  274.610994][T27516]  ? set_blocksize+0x1a8/0x310
[  274.615844][T27516]  ? sb_set_blocksize+0xe3/0x100
[  274.620799][T27516]  ? setup_bdev_super+0x30e/0x370
[  274.626418][T27516]  ? __pfx_ext4_fill_super+0x10/0x10
[  274.631803][T27516]  get_tree_bdev_flags+0x291/0x300
[  274.636958][T27516]  ? __pfx_ext4_fill_super+0x10/0x10
[  274.642335][T27516]  get_tree_bdev+0x1f/0x30
[  274.646849][T27516]  ext4_get_tree+0x1c/0x30
[  274.651308][T27516]  vfs_get_tree+0x54/0x1d0
[  274.656448][T27516]  do_new_mount+0x207/0x5e0
[  274.660997][T27516]  ? security_capable+0x83/0x90
[  274.665918][T27516]  path_mount+0x4a4/0xb20
[  274.670312][T27516]  ? user_path_at+0x109/0x130
[  274.675093][T27516]  __se_sys_mount+0x28f/0x2e0
[  274.679843][T27516]  __x64_sys_mount+0x67/0x80
[  274.685186][T27516]  x64_sys_call+0x2b4d/0x2ff0
[  274.689911][T27516]  do_syscall_64+0xd2/0x200
[  274.694455][T27516]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  274.700529][T27516]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  274.706375][T27516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.712331][T27516] RIP: 0033:0x7f44d37b034a
[  274.717426][T27516] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.737206][T27516] RSP: 002b:00007f44d220ee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  274.746184][T27516] RAX: ffffffffffffffda RBX: 00007f44d220eef0 RCX: 00007f44d37b034a
[  274.754200][T27516] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f44d220eeb0
[  274.762176][T27516] RBP: 0000200000000180 R08: 00007f44d220eef0 R09: 0000000000800700
[  274.770180][T27516] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  274.778735][T27516] R13: 00007f44d220eeb0 R14: 0000000000000473 R15: 0000200000000680
[  274.786790][T27516]  </TASK>
[  274.789818][T27516] ---[ end trace 0000000000000000 ]---
[  274.797565][T27516] EXT4-fs (loop5): 1 orphan inode deleted
[  274.803549][T27516] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  274.828298][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.858003][T27523] bond7: entered promiscuous mode
[  274.863125][T27523] bond7: entered allmulticast mode
[  274.868693][T27523] 8021q: adding VLAN 0 to HW filter on device bond7
[  274.877919][T27523] bond7 (unregistering): Released all slaves
[  274.920253][ T3439] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  274.931551][  T122] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  274.945502][  T122] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  274.960427][  T122] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  275.012370][T27604] netlink: 'syz.3.8140': attribute type 83 has an invalid length.
[  275.180884][T27622] netlink: 'syz.1.8148': attribute type 4 has an invalid length.
[  275.202462][T27622] netlink: 'syz.1.8148': attribute type 4 has an invalid length.
[  275.224415][T27628] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8151'.
[  275.248247][T27628] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8151'.
[  275.262602][T27632] loop5: detected capacity change from 0 to 512
[  275.293305][T27632] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  275.313422][   T29] kauditd_printk_skb: 58 callbacks suppressed
[  275.313441][   T29] audit: type=1400 audit(275.285:8936): avc:  denied  { mounton } for  pid=27631 comm="syz.5.8154" path="/1415/file1/bus" dev="loop5" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  275.353156][   T29] audit: type=1400 audit(275.325:8937): avc:  denied  { rmdir } for  pid=5896 comm="syz-executor" name="lost+found" dev="loop5" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  275.376802][   T29] audit: type=1400 audit(275.325:8938): avc:  denied  { unlink } for  pid=5896 comm="syz-executor" name="file1" dev="loop5" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  275.399343][   T29] audit: type=1400 audit(275.355:8939): avc:  denied  { unlink } for  pid=5896 comm="syz-executor" name="bus" dev="loop5" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  275.422594][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.443517][T27653] netlink: 3 bytes leftover after parsing attributes in process `syz.2.8160'.
[  275.461356][   T29] audit: type=1326 audit(275.435:8940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27656 comm="syz.5.8159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  275.462888][T27653] batadv0: entered promiscuous mode
[  275.485201][   T29] audit: type=1326 audit(275.435:8941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27656 comm="syz.5.8159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  275.489584][T27653] batadv0: entered allmulticast mode
[  275.516914][   T29] audit: type=1326 audit(275.495:8942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27656 comm="syz.5.8159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  275.540925][   T29] audit: type=1326 audit(275.495:8943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27656 comm="syz.5.8159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  275.563962][   T29] audit: type=1326 audit(275.495:8944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27656 comm="syz.5.8159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  275.587921][   T29] audit: type=1326 audit(275.495:8945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27656 comm="syz.5.8159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  275.781210][T27686] netem: incorrect ge model size
[  275.786274][T27686] netem: change failed
[  277.074670][T27762] netlink: 16 bytes leftover after parsing attributes in process `syz.7.8191'.
[  277.320945][T27787] loop5: detected capacity change from 0 to 512
[  277.346883][T27787] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  277.372153][T27787] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  277.432943][T27787] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.8199: corrupted xattr block 19: overlapping e_value 
[  277.464690][T27787] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  277.473817][T27787] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.8199: corrupted xattr block 19: overlapping e_value 
[  277.508304][T27787] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  277.518602][T27787] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.8199: corrupted xattr block 19: overlapping e_value 
[  277.571746][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.740369][T27833] netlink: 28 bytes leftover after parsing attributes in process `syz.7.8216'.
[  277.915429][T27850] loop5: detected capacity change from 0 to 1024
[  277.955823][T27850] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.042036][T27850] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  278.151618][T27850] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[  278.164208][T27850] EXT4-fs (loop5): This should not happen!! Data will be lost
[  278.164208][T27850] 
[  278.173872][T27850] EXT4-fs (loop5): Total free blocks count 0
[  278.179917][T27850] EXT4-fs (loop5): Free/Dirty block details
[  278.184439][T27876] vlan3: entered allmulticast mode
[  278.185916][T27850] EXT4-fs (loop5): free_blocks=20480
[  278.192945][T27876] dummy0: entered allmulticast mode
[  278.196369][T27850] EXT4-fs (loop5): dirty_blocks=96
[  278.206719][T27850] EXT4-fs (loop5): Block reservation details
[  278.212717][T27850] EXT4-fs (loop5): i_reserved_data_blocks=6
[  278.332920][ T3804] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  278.333856][T27888] netlink: 32 bytes leftover after parsing attributes in process `syz.7.8229'.
[  278.411433][T27896] ref_ctr_offset mismatch. inode: 0x20b4 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8
[  278.472070][T27902] netlink: 'syz.2.8236': attribute type 4 has an invalid length.
[  278.492366][T27902] netlink: 'syz.2.8236': attribute type 4 has an invalid length.
[  278.632435][T27929] loop7: detected capacity change from 0 to 512
[  278.656057][T27929] EXT4-fs (loop7): 1 orphan inode deleted
[  278.663584][T27929] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.699669][T12765] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.766503][T27956] netlink: 'syz.5.8252': attribute type 4 has an invalid length.
[  278.812762][T27956] netlink: 'syz.5.8252': attribute type 4 has an invalid length.
[  278.900495][T27973] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8257'.
[  278.946255][T27973] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8257'.
[  278.959668][T27975] loop7: detected capacity change from 0 to 128
[  279.188718][T28001] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8265'.
[  279.237193][T28003] netlink: zone id is out of range
[  279.251621][T28003] netlink: zone id is out of range
[  279.268718][T28003] netlink: zone id is out of range
[  279.273877][T28003] netlink: zone id is out of range
[  279.317932][T28003] netlink: zone id is out of range
[  279.336350][T28003] netlink: zone id is out of range
[  279.351435][T28003] netlink: zone id is out of range
[  279.371154][T28003] netlink: zone id is out of range
[  279.386948][T28003] netlink: zone id is out of range
[  279.399834][T28003] netlink: zone id is out of range
[  279.423120][T28018] vlan2: entered allmulticast mode
[  279.455478][T28018] dummy0: entered allmulticast mode
[  279.642101][T28035] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8271'.
[  279.654072][T28035] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8271'.
[  279.680132][T28037] loop7: detected capacity change from 0 to 2048
[  279.706071][T28037] EXT4-fs (loop7): failed to initialize system zone (-117)
[  279.713472][T28037] EXT4-fs (loop7): mount failed
[  280.098524][T28088] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8290'.
[  280.301271][T28100] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  280.321370][   T29] kauditd_printk_skb: 340 callbacks suppressed
[  280.321443][   T29] audit: type=1326 audit(280.295:9286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f21a49e5b67 code=0x7ffc0000
[  280.352041][   T29] audit: type=1326 audit(280.295:9287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21a498ada9 code=0x7ffc0000
[  280.375532][   T29] audit: type=1326 audit(280.295:9288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  280.398554][   T29] audit: type=1326 audit(280.335:9289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f21a49e5b67 code=0x7ffc0000
[  280.422079][   T29] audit: type=1326 audit(280.335:9290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21a498ada9 code=0x7ffc0000
[  280.445688][   T29] audit: type=1326 audit(280.335:9291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  280.468867][   T29] audit: type=1326 audit(280.335:9292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f21a49e5b67 code=0x7ffc0000
[  280.492526][   T29] audit: type=1326 audit(280.335:9293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21a498ada9 code=0x7ffc0000
[  280.516135][   T29] audit: type=1326 audit(280.335:9294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f21a49eeba9 code=0x7ffc0000
[  280.539493][   T29] audit: type=1326 audit(280.335:9295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28078 comm="syz.1.8286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f21a49e5b67 code=0x7ffc0000
[  280.540268][T28100] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  280.605748][T28100] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  280.655698][T28100] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  280.764429][ T3782] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  280.790480][ T3782] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  280.819024][ T3782] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  280.842026][ T3782] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  281.471578][T28181] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8321'.
[  282.425688][T28231] lo speed is unknown, defaulting to 1000
[  282.460720][T28254] sctp: [Deprecated]: syz.7.8343 (pid 28254) Use of struct sctp_assoc_value in delayed_ack socket option.
[  282.460720][T28254] Use struct sctp_sack_info instead
[  282.523068][T28261] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8344'.
[  282.838700][T28314] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  283.080968][T28323] lo speed is unknown, defaulting to 1000
[  283.199284][T28328] lo speed is unknown, defaulting to 1000
[  283.212903][T28345] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  283.466076][T28393] bridge0: port 1(macsec1) entered blocking state
[  283.472649][T28393] bridge0: port 1(macsec1) entered disabled state
[  283.517209][T28393] macsec1: entered allmulticast mode
[  283.522639][T28393] bridge0: entered allmulticast mode
[  283.546287][T28393] macsec1: left allmulticast mode
[  283.551391][T28393] bridge0: left allmulticast mode
[  283.604547][T28411] netlink: 96 bytes leftover after parsing attributes in process `syz.3.8382'.
[  283.652871][T28417] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8384'.
[  283.863177][T28442] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=28442 comm=syz.5.8389
[  284.209753][T28477] netlink: 96 bytes leftover after parsing attributes in process `syz.1.8404'.
[  284.488661][T28496] lo speed is unknown, defaulting to 1000
[  284.577583][T28537] netlink: 20 bytes leftover after parsing attributes in process `syz.7.8419'.
[  284.612969][T28539] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8421'.
[  284.624850][T28539] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8421'.
[  284.989720][T28600] net_ratelimit: 1 callbacks suppressed
[  284.989751][T28600] openvswitch: netlink: Message has 6 unknown bytes.
[  285.137682][T28616] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8442'.
[  285.169914][T28622] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8443'.
[  285.216501][   T29] kauditd_printk_skb: 343 callbacks suppressed
[  285.216598][   T29] audit: type=1326 audit(1053.302:9639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc3a7a95b67 code=0x7ffc0000
[  285.246735][   T29] audit: type=1326 audit(1053.302:9640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc3a7a3ada9 code=0x7ffc0000
[  285.270415][   T29] audit: type=1326 audit(1053.302:9641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  285.323081][   T29] audit: type=1326 audit(1053.365:9642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc3a7a95b67 code=0x7ffc0000
[  285.346776][   T29] audit: type=1326 audit(1053.365:9643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc3a7a3ada9 code=0x7ffc0000
[  285.355256][T28628] sctp: [Deprecated]: syz.2.8446 (pid 28628) Use of struct sctp_assoc_value in delayed_ack socket option.
[  285.355256][T28628] Use struct sctp_sack_info instead
[  285.369905][   T29] audit: type=1326 audit(1053.365:9644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  285.409899][   T29] audit: type=1326 audit(1053.365:9645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc3a7a95b67 code=0x7ffc0000
[  285.433450][   T29] audit: type=1326 audit(1053.365:9646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc3a7a3ada9 code=0x7ffc0000
[  285.456384][   T29] audit: type=1326 audit(1053.365:9647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  285.480107][   T29] audit: type=1326 audit(1053.365:9648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28549 comm="syz.3.8427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc3a7a95b67 code=0x7ffc0000
[  285.591337][T28638] sch_tbf: burst 19869 is lower than device lo mtu (11337746) !
[  285.604277][T28639] ./file0: Can't lookup blockdev
[  286.367984][T28701] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8474'.
[  286.377966][T28701] bond0: (slave bond_slave_1): Releasing backup interface
[  286.662769][T28725] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8476'.
[  286.684759][T28726] sctp: [Deprecated]: syz.1.8481 (pid 28726) Use of struct sctp_assoc_value in delayed_ack socket option.
[  286.684759][T28726] Use struct sctp_sack_info instead
[  286.840312][T28734] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  286.919329][T28734] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  286.995058][T28734] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  287.028274][T28767] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  287.053708][T28734] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  287.109664][ T3805] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  287.130926][ T3805] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  287.153450][ T3805] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  287.208787][ T3805] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  287.649448][T28874] netlink: 'syz.5.8523': attribute type 39 has an invalid length.
[  287.756655][T28900] netlink: 'syz.7.8530': attribute type 1 has an invalid length.
[  287.789862][T28900] 8021q: adding VLAN 0 to HW filter on device bond3
[  287.813792][T28900] bond3 (unregistering): Released all slaves
[  288.109860][T29000] atomic_op ffff88813078a528 conn xmit_atomic 0000000000000000
[  288.380731][T29037] sch_tbf: burst 19869 is lower than device lo mtu (65550) !
[  289.035433][T29151] team_slave_0: entered promiscuous mode
[  289.043169][T29151] ipvlan0: entered promiscuous mode
[  289.048996][T29151] ipvlan0: left promiscuous mode
[  289.058497][T29151] team_slave_0: left promiscuous mode
[  289.120272][T29157] __nla_validate_parse: 4 callbacks suppressed
[  289.120292][T29157] netlink: 15119 bytes leftover after parsing attributes in process `syz.2.8561'.
[  289.190339][T29160] netlink: 184 bytes leftover after parsing attributes in process `syz.2.8562'.
[  289.206023][T29160] xt_socket: unknown flags 0xd0
[  289.240368][T29166] block device autoloading is deprecated and will be removed.
[  289.328894][T29189] netlink: 'syz.1.8574': attribute type 39 has an invalid length.
[  289.358754][T29197] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8576'.
[  289.375672][T29197] netlink: 'syz.2.8576': attribute type 1 has an invalid length.
[  289.482741][T29210] IPVS: Error connecting to the multicast addr
[  289.593474][T29232] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8586'.
[  289.706227][T29249] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  289.769776][T29263] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8597'.
[  289.784978][T29263] IPVS: Unknown mcast interface: vcan0
[  289.915433][T29277] loop5: detected capacity change from 0 to 1024
[  289.950503][T29277] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  290.015821][T29277] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.8604: Allocating blocks 449-513 which overlap fs metadata
[  290.074466][T29276] EXT4-fs (loop5): pa ffff88810722a3f0: logic 48, phys. 177, len 21
[  290.082569][T29276] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  290.127298][T29290] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8606'.
[  290.136375][T29290] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8606'.
[  290.153432][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.269475][T29307] netlink: 'syz.3.8613': attribute type 39 has an invalid length.
[  290.422849][   T29] kauditd_printk_skb: 98 callbacks suppressed
[  290.422866][   T29] audit: type=1326 audit(1058.772:9747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29322 comm="syz.5.8627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  290.477739][T29326] loop5: detected capacity change from 0 to 512
[  290.496449][T29326] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  290.528855][T29326] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.546119][T29326] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.8627: corrupted xattr block 19: overlapping e_value 
[  290.561473][T29326] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  290.570935][T29326] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.8627: corrupted xattr block 19: overlapping e_value 
[  290.586385][T29326] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  290.613948][T29326] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.8627: corrupted xattr block 19: overlapping e_value 
[  290.628472][   T29] audit: type=1326 audit(1058.950:9748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29322 comm="syz.5.8627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  290.651623][   T29] audit: type=1326 audit(1058.950:9749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29322 comm="syz.5.8627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  290.674668][   T29] audit: type=1326 audit(1058.950:9750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29322 comm="syz.5.8627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  290.710927][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.756670][   T29] audit: type=1400 audit(1059.118:9751): avc:  denied  { read } for  pid=29333 comm="syz.7.8620" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  290.779284][   T29] audit: type=1400 audit(1059.118:9752): avc:  denied  { open } for  pid=29333 comm="syz.7.8620" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  291.015625][T29366] loop5: detected capacity change from 0 to 512
[  291.054610][T29366] EXT4-fs (loop5): orphan cleanup on readonly fs
[  291.074801][T29366] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.8631: bad orphan inode 13
[  291.113132][T29366] ext4_test_bit(bit=12, block=18) = 1
[  291.114346][   T29] audit: type=1326 audit(1059.496:9753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29378 comm="syz.7.8636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  291.118714][T29366] is_bad_inode(inode)=0
[  291.146650][T29366] NEXT_ORPHAN(inode)=2130706432
[  291.151509][T29366] max_ino=32
[  291.154766][T29366] i_nlink=1
[  291.164464][   T29] audit: type=1326 audit(1059.549:9754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29378 comm="syz.7.8636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  291.187585][   T29] audit: type=1326 audit(1059.549:9755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29378 comm="syz.7.8636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  291.210681][   T29] audit: type=1326 audit(1059.549:9756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29378 comm="syz.7.8636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  291.241607][T29366] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  291.273464][T29387] loop7: detected capacity change from 0 to 512
[  291.290439][T29387] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.304245][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.400288][T29402] hub 6-0:1.0: USB hub found
[  291.406332][T29402] hub 6-0:1.0: 8 ports detected
[  291.413521][T12765] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.433733][T29409] loop7: detected capacity change from 0 to 128
[  291.607138][T29424] loop5: detected capacity change from 0 to 512
[  291.614667][T29424] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  291.634677][T29424] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.8650: Failed to acquire dquot type 1
[  291.647095][T29424] EXT4-fs (loop5): 1 truncate cleaned up
[  291.654950][T29424] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.683594][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.068820][T29452] futex_wake_op: syz.7.8660 tries to shift op by 144; fix this program
[  292.098847][T29458] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8662'.
[  292.154058][T29468] netlink: 96 bytes leftover after parsing attributes in process `syz.7.8665'.
[  292.334138][T29497] loop7: detected capacity change from 0 to 512
[  292.341964][T29497] EXT4-fs (loop7): blocks per group (255) and clusters per group (8192) inconsistent
[  292.639676][T29535] netlink: 'syz.1.8689': attribute type 1 has an invalid length.
[  292.649972][T29534] macvtap2: entered allmulticast mode
[  292.655491][T29534] bridge0: entered allmulticast mode
[  292.683497][T29534] bridge0: port 1(macvtap2) entered blocking state
[  292.690233][T29534] bridge0: port 1(macvtap2) entered disabled state
[  292.700205][T29534] bridge0: left allmulticast mode
[  292.921169][T29571] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  292.996227][T29571] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  293.053175][T29571] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  293.114045][T29571] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  293.196077][T29604] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  293.233306][ T3797] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  293.256584][ T3797] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  293.276753][ T3797] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  293.325750][ T3797] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  293.614496][ T5342] kernel write not supported for file bpf-prog (pid: 5342 comm: kworker/1:10)
[  293.758541][T29669] netlink: 'syz.1.8727': attribute type 1 has an invalid length.
[  293.767259][T29669] netlink: 'syz.1.8727': attribute type 4 has an invalid length.
[  293.798671][T29669] netlink: 'syz.1.8727': attribute type 1 has an invalid length.
[  293.806534][T29669] netlink: 'syz.1.8727': attribute type 4 has an invalid length.
[  294.174083][T29713] loop7: detected capacity change from 0 to 1024
[  294.195619][T29713] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  294.283197][T12765] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  294.417863][T29743] netlink: 'syz.2.8753': attribute type 39 has an invalid length.
[  295.188811][T29777] 9pnet: p9_errstr2errno: server reported unknown error 
[  295.228364][T29781] __nla_validate_parse: 6 callbacks suppressed
[  295.228382][T29781] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8767'.
[  295.362412][T29800] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8773'.
[  295.730430][T29814] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=29814 comm=syz.7.8778
[  295.750987][T29800] Set syz1 is full, maxelem 65536 reached
[  296.072367][   T29] kauditd_printk_skb: 345 callbacks suppressed
[  296.072382][   T29] audit: type=1326 audit(1064.704:10100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.105188][   T29] audit: type=1326 audit(1064.735:10101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.140944][   T29] audit: type=1326 audit(1064.735:10102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.164870][   T29] audit: type=1326 audit(1064.735:10103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.188738][   T29] audit: type=1326 audit(1064.735:10104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.211942][   T29] audit: type=1326 audit(1064.735:10105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.235653][   T29] audit: type=1326 audit(1064.735:10106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.258882][   T29] audit: type=1326 audit(1064.735:10107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.282777][   T29] audit: type=1326 audit(1064.735:10108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.306212][   T29] audit: type=1326 audit(1064.735:10109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29847 comm="syz.3.8791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  296.518830][T29869] pimreg: entered allmulticast mode
[  296.533500][T29869] pimreg: left allmulticast mode
[  296.636116][T29886] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8806'.
[  296.815411][T29914] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  296.866829][T29914] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  296.903457][T29929] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8819'.
[  296.915779][T29929] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8819'.
[  296.986517][T29914] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  297.036975][T29950] loop7: detected capacity change from 0 to 2048
[  297.091063][T29914] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  297.103186][T29950] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  297.140212][T29965] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8831'.
[  297.191171][ T3797] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  297.214648][T29950] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  297.238755][ T3797] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  297.259438][ T3797] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  297.269448][T29950] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 544 with error 28
[  297.281966][T29950] EXT4-fs (loop7): This should not happen!! Data will be lost
[  297.281966][T29950] 
[  297.291638][T29950] EXT4-fs (loop7): Total free blocks count 0
[  297.297637][T29950] EXT4-fs (loop7): Free/Dirty block details
[  297.303657][T29950] EXT4-fs (loop7): free_blocks=2415919104
[  297.309419][T29950] EXT4-fs (loop7): dirty_blocks=560
[  297.314635][T29950] EXT4-fs (loop7): Block reservation details
[  297.320664][T29950] EXT4-fs (loop7): i_reserved_data_blocks=35
[  297.329030][ T3797] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  297.397700][T12765] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  297.472611][T29990] netlink: 36 bytes leftover after parsing attributes in process `syz.3.8837'.
[  298.201289][T30067] ref_ctr_offset mismatch. inode: 0x2397 offset: 0x0 ref_ctr_offset(old): 0x18 ref_ctr_offset(new): 0x0
[  298.274870][T30081] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8873'.
[  298.414298][T30116] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8880'.
[  298.460100][T30121] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8879'.
[  298.494012][T30125] loop5: detected capacity change from 0 to 512
[  298.506110][T30125] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  298.528756][T30125] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.8884: Failed to acquire dquot type 1
[  298.547584][T30125] EXT4-fs (loop5): 1 truncate cleaned up
[  298.566323][T30125] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  298.597782][T30125] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.211243][T30197] loop5: detected capacity change from 0 to 2048
[  299.272529][T30197] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  299.342341][T30197] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  299.358537][T30197] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 806 with error 28
[  299.370958][T30197] EXT4-fs (loop5): This should not happen!! Data will be lost
[  299.370958][T30197] 
[  299.380718][T30197] EXT4-fs (loop5): Total free blocks count 0
[  299.386830][T30197] EXT4-fs (loop5): Free/Dirty block details
[  299.392738][T30197] EXT4-fs (loop5): free_blocks=2415919104
[  299.398491][T30197] EXT4-fs (loop5): dirty_blocks=816
[  299.403750][T30197] EXT4-fs (loop5): Block reservation details
[  299.409794][T30197] EXT4-fs (loop5): i_reserved_data_blocks=51
[  299.453414][T30208] netlink: 'syz.2.8910': attribute type 6 has an invalid length.
[  299.512967][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  299.615624][T30225] netlink: 'syz.1.8916': attribute type 13 has an invalid length.
[  299.743199][T30231] sit0: entered allmulticast mode
[  299.762628][T30231] sit0: entered promiscuous mode
[  300.221396][T30263] __nla_validate_parse: 6 callbacks suppressed
[  300.221413][T30263] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8930'.
[  300.539963][T30299] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8941'.
[  300.655781][T30310] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  300.933627][   T29] kauditd_printk_skb: 324 callbacks suppressed
[  300.933690][   T29] audit: type=1400 audit(1069.807:10432): avc:  denied  { watch watch_reads } for  pid=30321 comm="syz.1.8949" path="/bus" dev="sysfs" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[  301.081193][   T29] audit: type=1400 audit(1069.964:10433): avc:  denied  { override_creds } for  pid=30325 comm="syz.1.8951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  301.317866][T30336] block device autoloading is deprecated and will be removed.
[  301.468318][T30348] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  301.617031][T30350] SELinux: ebitmap: truncated map
[  301.634834][T30350] SELinux: failed to load policy
[  301.722861][T30368] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8970'.
[  301.750380][T30368] netem: change failed
[  301.957501][T30381] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  301.998599][   T29] audit: type=1326 audit(1070.919:10434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30387 comm="syz.3.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  302.010313][T30392] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8981'.
[  302.021872][   T29] audit: type=1326 audit(1070.919:10435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30387 comm="syz.3.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  302.021971][   T29] audit: type=1326 audit(1070.919:10436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30387 comm="syz.3.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  302.022004][   T29] audit: type=1326 audit(1070.919:10437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30387 comm="syz.3.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  302.022042][   T29] audit: type=1326 audit(1070.919:10438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30387 comm="syz.3.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  302.022114][   T29] audit: type=1326 audit(1070.919:10439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30387 comm="syz.3.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  302.022151][   T29] audit: type=1326 audit(1070.919:10440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30387 comm="syz.3.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  302.189931][T30396] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8981'.
[  302.200535][   T29] audit: type=1326 audit(1071.119:10441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30387 comm="syz.3.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3a7a9eba9 code=0x7ffc0000
[  302.255144][T30408] IPVS: rr: FWM 3 0x00000003 - no destination available
[  302.287322][T30416] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8990'.
[  302.315398][T30419] netlink: 'syz.2.8991': attribute type 4 has an invalid length.
[  302.337073][T30419] netlink: 'syz.2.8991': attribute type 4 has an invalid length.
[  302.366339][T30416] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8990'.
[  302.571285][T30447] netlink: 24 bytes leftover after parsing attributes in process `syz.7.9004'.
[  302.857906][T30502] netlink: 24 bytes leftover after parsing attributes in process `syz.1.9015'.
[  302.947800][T30502] netlink: 'syz.1.9015': attribute type 2 has an invalid length.
[  303.517554][T30540] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9026'.
[  304.283463][T30598] loop5: detected capacity change from 0 to 512
[  304.312843][T30598] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  304.347514][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.347074][T30669] tipc: Started in network mode
[  305.352202][T30669] tipc: Node identity ac14140f, cluster identity 4711
[  305.359205][T30669] tipc: New replicast peer: 255.255.255.83
[  305.365061][T30669] tipc: Enabled bearer <udp:£>, priority 10
[  305.446598][T30677] __nla_validate_parse: 4 callbacks suppressed
[  305.446680][T30677] netlink: 96 bytes leftover after parsing attributes in process `syz.5.9071'.
[  305.692294][T30700] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9083'.
[  305.701422][   T29] kauditd_printk_skb: 130 callbacks suppressed
[  305.701442][   T29] audit: type=1326 audit(1074.804:10572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f44d37a5b67 code=0x7ffc0000
[  305.730585][   T29] audit: type=1326 audit(1074.804:10573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44d374ada9 code=0x7ffc0000
[  305.753603][   T29] audit: type=1326 audit(1074.804:10574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  305.844936][   T29] audit: type=1326 audit(1074.815:10575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f44d37a5b67 code=0x7ffc0000
[  305.868776][   T29] audit: type=1326 audit(1074.815:10576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44d374ada9 code=0x7ffc0000
[  305.892549][   T29] audit: type=1326 audit(1074.815:10577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  305.915616][   T29] audit: type=1326 audit(1074.825:10578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f44d37a5b67 code=0x7ffc0000
[  305.939360][   T29] audit: type=1326 audit(1074.825:10579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44d374ada9 code=0x7ffc0000
[  305.962448][   T29] audit: type=1326 audit(1074.825:10580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  305.986381][   T29] audit: type=1326 audit(1074.836:10581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30689 comm="syz.5.9077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f44d37a5b67 code=0x7ffc0000
[  306.169698][T30725] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9091'.
[  306.187443][T30725] 8021q: adding VLAN 0 to HW filter on device bond3
[  306.201152][T30725] vlan2: entered allmulticast mode
[  306.206414][T30725] bond3: entered allmulticast mode
[  306.224885][T30710] lo speed is unknown, defaulting to 1000
[  306.425115][ T5342] tipc: Node number set to 2886997007
[  306.468063][T30803] SELinux: failed to load policy
[  306.698560][T30832] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=30832 comm=syz.5.9111
[  306.705413][T30822] lo speed is unknown, defaulting to 1000
[  306.884135][T30865] loop5: detected capacity change from 0 to 1024
[  306.892747][T30865] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  306.903843][T30865] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  306.934392][T30865] JBD2: no valid journal superblock found
[  306.940889][T30865] EXT4-fs (loop5): Could not load journal inode
[  306.953498][T30865] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  306.988017][T30871] syzkaller0: refused to change device tx_queue_len
[  307.069872][T30884] loop5: detected capacity change from 0 to 128
[  307.079915][T30884] syz.5.9123: attempt to access beyond end of device
[  307.079915][T30884] loop5: rw=0, sector=2072, nr_sectors = 1 limit=128
[  307.312415][T30906] netlink: 280 bytes leftover after parsing attributes in process `syz.2.9132'.
[  307.378368][T30900] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  307.378368][T30900]    program syz.5.9129 not setting count and/or reply_len properly
[  307.496058][T30920] netlink: 16186 bytes leftover after parsing attributes in process `syz.5.9137'.
[  308.095998][T30975] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9163'.
[  308.172322][T30984] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  310.473180][   T29] kauditd_printk_skb: 689 callbacks suppressed
[  310.473228][   T29] audit: type=1326 audit(1079.823:11271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0a4a415b67 code=0x7ffc0000
[  310.507006][   T29] audit: type=1326 audit(1079.823:11272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0a4a3bada9 code=0x7ffc0000
[  310.530979][   T29] audit: type=1326 audit(1079.865:11273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0a4a415b67 code=0x7ffc0000
[  310.553982][   T29] audit: type=1326 audit(1079.865:11274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0a4a3bada9 code=0x7ffc0000
[  310.578146][   T29] audit: type=1326 audit(1079.865:11275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f0a4a41eba9 code=0x7ffc0000
[  310.709775][   T29] audit: type=1326 audit(1079.970:11276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0a4a415b67 code=0x7ffc0000
[  310.733664][   T29] audit: type=1326 audit(1079.970:11277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0a4a3bada9 code=0x7ffc0000
[  310.756652][   T29] audit: type=1326 audit(1079.970:11278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f0a4a41eba9 code=0x7ffc0000
[  310.780492][   T29] audit: type=1326 audit(1079.980:11279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f0a4a415b67 code=0x7ffc0000
[  310.803535][   T29] audit: type=1326 audit(1079.980:11280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31052 comm="syz.2.9191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f0a4a3bada9 code=0x7ffc0000
[  310.934253][T31081] netlink: '+}[@': attribute type 13 has an invalid length.
[  311.326400][ T3802] netdevsim netdevsim3 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  311.351091][ T3802] netdevsim netdevsim3 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  311.391997][ T3802] netdevsim netdevsim3 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  311.403029][T31097] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9210'.
[  311.414694][ T3802] netdevsim netdevsim3 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  311.495203][T31097] 8021q: adding VLAN 0 to HW filter on device bond3
[  311.573674][T31104] vlan3: entered allmulticast mode
[  311.578880][T31104] bond3: entered allmulticast mode
[  312.173361][T31175] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9227'.
[  312.185498][T31177] netlink: 'syz.1.9229': attribute type 2 has an invalid length.
[  312.193950][T31177] netlink: 'syz.1.9229': attribute type 9 has an invalid length.
[  312.201911][T31177] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.9229'.
[  312.764721][T31207] netlink: 132 bytes leftover after parsing attributes in process `syz.1.9232'.
[  312.999622][T31216] netlink: 100 bytes leftover after parsing attributes in process `syz.2.9245'.
[  313.586336][T31242] netlink: 96 bytes leftover after parsing attributes in process `syz.3.9258'.
[  313.603346][T31244] loop7: detected capacity change from 0 to 164
[  313.618465][T31244] syz.7.9260: attempt to access beyond end of device
[  313.618465][T31244] loop7: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  313.632752][T31244] syz.7.9260: attempt to access beyond end of device
[  313.632752][T31244] loop7: rw=0, sector=263328, nr_sectors = 4 limit=164
[  313.789374][ T5342] kernel write not supported for file bpf-prog (pid: 5342 comm: kworker/1:10)
[  314.284200][T31305] tipc: New replicast peer: 255.255.255.83
[  314.290152][T31305] tipc: Enabled bearer <udp:£>, priority 10
[  314.901446][T31335] veth15: entered promiscuous mode
[  315.623800][   T29] kauditd_printk_skb: 109 callbacks suppressed
[  315.623817][   T29] audit: type=1326 audit(1085.230:11390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  315.674575][   T29] audit: type=1326 audit(1085.230:11391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  315.698438][   T29] audit: type=1326 audit(1085.230:11392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  315.708034][T31400] loop5: detected capacity change from 0 to 1024
[  315.722476][   T29] audit: type=1326 audit(1085.230:11393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  315.752082][   T29] audit: type=1326 audit(1085.230:11394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  315.775475][   T29] audit: type=1326 audit(1085.230:11395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  315.799539][   T29] audit: type=1326 audit(1085.230:11396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000
[  315.823009][   T29] audit: type=1326 audit(1085.230:11397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  315.846970][   T29] audit: type=1326 audit(1085.240:11398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31395 comm="syz.5.9309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  315.870243][   T29] audit: type=1326 audit(1085.366:11399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31402 comm="syz.7.9311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  315.873575][T31400] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  315.916644][T31400] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.9310: Allocating blocks 385-513 which overlap fs metadata
[  315.934364][T31400] EXT4-fs (loop5): pa ffff8881072ec8c0: logic 16, phys. 129, len 24
[  315.942542][T31400] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  315.996576][T31416] ref_ctr increment failed for inode: 0x266e offset: 0xb ref_ctr_offset: 0x82 of mm: 0xffff88812ff46780
[  316.014795][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.032256][T31416] ref_ctr increment failed for inode: 0x266e offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff88812ff46780
[  316.058827][T31415] uprobe: syz.2.9313:31415 failed to unregister, leaking uprobe
[  316.130161][T31415] uprobe: syz.2.9313:31415 failed to unregister, leaking uprobe
[  316.293489][T31454] IPVS: Error connecting to the multicast addr
[  316.319720][ T5342] kernel write not supported for file /2566/loginuid (pid: 5342 comm: kworker/1:10)
[  316.413143][T31469] sctp: [Deprecated]: syz.7.9329 (pid 31469) Use of struct sctp_assoc_value in delayed_ack socket option.
[  316.413143][T31469] Use struct sctp_sack_info instead
[  316.585342][T31477] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9333'.
[  316.616209][T31477] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9333'.
[  317.458724][T31563] lo speed is unknown, defaulting to 1000
[  319.219951][T31668] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9395'.
[  319.587232][T31698] loop7: detected capacity change from 0 to 512
[  319.599096][T31698] EXT4-fs: Ignoring removed orlov option
[  319.615453][T31698] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  319.630976][T31698] EXT4-fs (loop7): 1 truncate cleaned up
[  319.638271][T31698] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.677458][T12765] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.850045][T31741] loop7: detected capacity change from 0 to 512
[  319.881328][T31741] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  319.931033][T31741] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.947452][T31741] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.179774][T31772] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9440'.
[  320.309123][T31784] rdma_op ffff8881195e0980 conn xmit_rdma 0000000000000000
[  320.349401][T31786] loop7: detected capacity change from 0 to 128
[  320.364175][T31786] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  320.396919][   T29] kauditd_printk_skb: 175 callbacks suppressed
[  320.396982][   T29] audit: type=1400 audit(1861.241:11575): avc:  denied  { create } for  pid=31782 comm="syz.7.9445" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  320.449806][T31794] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9449'.
[  320.459470][T31794] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9449'.
[  320.461521][T12765] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  320.486269][T31748] Set syz1 is full, maxelem 65536 reached
[  320.551127][   T29] audit: type=1326 audit(1861.409:11576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.574774][T31813] loop7: detected capacity change from 0 to 512
[  320.593557][T31813] EXT4-fs (loop7): too many log groups per flexible block group
[  320.602177][T31813] EXT4-fs (loop7): failed to initialize mballoc (-12)
[  320.622875][   T29] audit: type=1326 audit(1861.409:11577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.646706][   T29] audit: type=1326 audit(1861.409:11578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.669766][   T29] audit: type=1326 audit(1861.409:11579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.671424][T31813] EXT4-fs (loop7): mount failed
[  320.693965][   T29] audit: type=1326 audit(1861.409:11580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.721137][   T29] audit: type=1326 audit(1861.409:11581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.745357][   T29] audit: type=1326 audit(1861.409:11582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.769141][   T29] audit: type=1326 audit(1861.409:11583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.792501][   T29] audit: type=1326 audit(1861.409:11584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31812 comm="syz.7.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a49a0eba9 code=0x7ffc0000
[  320.794517][T31822] netlink: 32 bytes leftover after parsing attributes in process `syz.5.9456'.
[  320.827413][T31821] netlink: 'syz.3.9457': attribute type 30 has an invalid length.
[  321.682225][T31875] cgroup: Invalid name
[  321.692335][T31877] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9478'.
[  321.721296][T31847] Set syz1 is full, maxelem 65536 reached
[  321.865719][T31899] loop7: detected capacity change from 0 to 512
[  321.874542][T31899] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  321.899541][T31899] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.9488: bg 0: block 4: invalid block bitmap
[  321.918884][T31899] EXT4-fs (loop7): Remounting filesystem read-only
[  321.925933][T31899] EXT4-fs (loop7): 1 truncate cleaned up
[  321.935482][T31899] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.005099][T12765] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.027184][T31914] netlink: 60 bytes leftover after parsing attributes in process `syz.3.9491'.
[  322.036306][T31914] netlink: 60 bytes leftover after parsing attributes in process `syz.3.9491'.
[  322.097169][T31914] netlink: 60 bytes leftover after parsing attributes in process `syz.3.9491'.
[  322.106222][T31914] netlink: 60 bytes leftover after parsing attributes in process `syz.3.9491'.
[  322.180893][T31914] netlink: 60 bytes leftover after parsing attributes in process `syz.3.9491'.
[  322.190011][T31914] netlink: 60 bytes leftover after parsing attributes in process `syz.3.9491'.
[  322.708661][T31916] Set syz1 is full, maxelem 65536 reached
[  323.431526][T31978] lo speed is unknown, defaulting to 1000
[  323.463459][T32018] netlink: 24 bytes leftover after parsing attributes in process `syz.1.9527'.
[  323.619035][T31978] chnl_net:caif_netlink_parms(): no params data found
[  323.661152][T32141] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9530'.
[  323.670961][T32141] netlink: 'syz.2.9530': attribute type 7 has an invalid length.
[  323.678907][T32141] netlink: 'syz.2.9530': attribute type 8 has an invalid length.
[  323.686740][T32141] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9530'.
[  323.762375][T31978] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.769622][T31978] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.780173][T31978] bridge_slave_0: entered allmulticast mode
[  323.786863][T31978] bridge_slave_0: entered promiscuous mode
[  323.794462][T31978] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.801702][T31978] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.810047][T31978] bridge_slave_1: entered allmulticast mode
[  323.816932][T31978] bridge_slave_1: entered promiscuous mode
[  323.843232][T31978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  323.865515][T31978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  323.911861][T31978] team0: Port device team_slave_0 added
[  323.932423][T31978] team0: Port device team_slave_1 added
[  323.977941][T31978] batman_adv: batadv0: Adding interface: batadv_slave_0
[  323.984952][T31978] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  324.011043][T31978] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  324.023121][T31978] batman_adv: batadv0: Adding interface: batadv_slave_1
[  324.030277][T31978] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  324.056231][T31978] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  324.109288][T31978] hsr_slave_0: entered promiscuous mode
[  324.116089][T31978] hsr_slave_1: entered promiscuous mode
[  324.123241][T31978] debugfs: 'hsr0' already exists in 'hsr'
[  324.129113][T31978] Cannot create hsr debugfs directory
[  324.233818][T31978] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  324.246988][T31978] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  324.265148][T31978] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  324.274705][T31978] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  324.328255][T31978] 8021q: adding VLAN 0 to HW filter on device bond0
[  324.348191][T31978] 8021q: adding VLAN 0 to HW filter on device team0
[  324.368530][ T3805] bridge0: port 1(bridge_slave_0) entered blocking state
[  324.375703][ T3805] bridge0: port 1(bridge_slave_0) entered forwarding state
[  324.392654][ T3805] bridge0: port 2(bridge_slave_1) entered blocking state
[  324.399878][ T3805] bridge0: port 2(bridge_slave_1) entered forwarding state
[  324.432076][T31978] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  324.442627][T31978] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  324.456673][T32391] lo speed is unknown, defaulting to 1000
[  324.614692][T31978] 8021q: adding VLAN 0 to HW filter on device batadv0
[  324.916881][T32443] netlink: 'syz.3.9555': attribute type 30 has an invalid length.
[  324.933734][T31978] veth0_vlan: entered promiscuous mode
[  324.951306][T31978] veth1_vlan: entered promiscuous mode
[  324.963826][ T3779] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  324.985431][T32448] loop5: detected capacity change from 0 to 512
[  325.000003][ T3779] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  325.016304][T31978] veth0_macvtap: entered promiscuous mode
[  325.034050][ T3779] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  325.050429][T31978] veth1_macvtap: entered promiscuous mode
[  325.058198][T32448] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.085974][ T3779] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  325.115945][T31978] batman_adv: batadv0: Interface activated: batadv_slave_0
[  325.153771][T31978] batman_adv: batadv0: Interface activated: batadv_slave_1
[  325.177364][   T29] kauditd_printk_skb: 47 callbacks suppressed
[  325.177382][   T29] audit: type=1400 audit(1866.260:11632): avc:  denied  { create } for  pid=32457 comm="syz.3.9558" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  325.216312][ T5896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.238348][ T3771] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  325.258264][ T3771] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  325.268055][   T29] audit: type=1326 audit(1866.365:11633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.305082][ T3784] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  325.320160][ T3784] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  325.357132][   T29] audit: type=1326 audit(1866.386:11634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.380372][   T29] audit: type=1326 audit(1866.386:11635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.403538][   T29] audit: type=1326 audit(1866.386:11636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.426658][   T29] audit: type=1326 audit(1866.386:11637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.449792][   T29] audit: type=1326 audit(1866.386:11638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.473002][   T29] audit: type=1326 audit(1866.386:11639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.496088][   T29] audit: type=1326 audit(1866.386:11640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.519111][   T29] audit: type=1326 audit(1866.386:11641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32461 comm="syz.5.9559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44d37aeba9 code=0x7ffc0000
[  325.669017][T32383] ==================================================================
[  325.677169][T32383] BUG: KCSAN: data-race in shmem_file_splice_read / shmem_file_splice_read
[  325.685887][T32383] 
[  325.688235][T32383] write to 0xffff888118af18e8 of 8 bytes by task 32397 on cpu 1:
[  325.695972][T32383]  shmem_file_splice_read+0x470/0x600
[  325.701385][T32383]  splice_direct_to_actor+0x26f/0x680
[  325.706789][T32383]  do_splice_direct+0xda/0x150
[  325.711582][T32383]  do_sendfile+0x380/0x650
[  325.716037][T32383]  __x64_sys_sendfile64+0x105/0x150
[  325.721265][T32383]  x64_sys_call+0x2bb0/0x2ff0
[  325.725978][T32383]  do_syscall_64+0xd2/0x200
[  325.730532][T32383]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.736463][T32383] 
[  325.738806][T32383] write to 0xffff888118af18e8 of 8 bytes by task 32383 on cpu 0:
[  325.746552][T32383]  shmem_file_splice_read+0x470/0x600
[  325.751959][T32383]  splice_direct_to_actor+0x26f/0x680
[  325.757362][T32383]  do_splice_direct+0xda/0x150
[  325.762156][T32383]  do_sendfile+0x380/0x650
[  325.766608][T32383]  __x64_sys_sendfile64+0x105/0x150
[  325.771849][T32383]  x64_sys_call+0x2bb0/0x2ff0
[  325.776554][T32383]  do_syscall_64+0xd2/0x200
[  325.781105][T32383]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.787031][T32383] 
[  325.789367][T32383] value changed: 0x00000000000068fa -> 0x00000000000068fe
[  325.796499][T32383] 
[  325.798846][T32383] Reported by Kernel Concurrency Sanitizer on:
[  325.805021][T32383] CPU: 0 UID: 0 PID: 32383 Comm: syz.2.9549 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  325.816428][T32383] Tainted: [W]=WARN
[  325.820249][T32383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  325.830330][T32383] ==================================================================