last executing test programs:

1m40.354469755s ago: executing program 2 (id=1277):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x6, 0x2c0, &(0x7f0000000900)="$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")
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000440)={0x0, 0x9}, 0x8)
bind$inet6(r0, &(0x7f00000004c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x79, &(0x7f0000000080)=ANY=[], 0x8)
sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000002c0)="ec75d081fc", 0x5}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

1m39.479045479s ago: executing program 2 (id=1311):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

1m39.330429201s ago: executing program 2 (id=1313):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1}, &(0x7f00000002c0), &(0x7f0000000340)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0180000000000000000001000000000000000b00000000030014"], 0x28}}, 0x0)

1m39.231485282s ago: executing program 2 (id=1314):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f00000000c0)='./file0/../file0/../file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0/../file0\x00')
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f0000000600)='./file0/../file0/../file0/../file0\x00')

1m38.949617927s ago: executing program 2 (id=1326):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r4, 0x5, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

1m38.72731981s ago: executing program 2 (id=1319):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)

1m38.70877073s ago: executing program 32 (id=1319):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)

1m20.629559953s ago: executing program 1 (id=1889):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
setgid(0x0)
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x0)
io_getevents(0x0, 0x2, 0x0, 0x0, 0x0)

1m20.584904654s ago: executing program 1 (id=1879):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
sync()
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r2)
sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)={0x1c, r3, 0x1, 0x0, 0x0, {{}, {0x0, 0x6}}}, 0x1c}}, 0x0)

1m20.485057425s ago: executing program 1 (id=1880):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xf60, 0x4}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
setrlimit(0x40000000000008, &(0x7f0000000000))
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

1m20.365356477s ago: executing program 1 (id=1885):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x12b)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='configfs\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
move_mount(r0, &(0x7f0000000080)='./file0/file0\x00', r0, &(0x7f0000000040)='./file0/../file0\x00', 0x0)

1m20.337337497s ago: executing program 1 (id=1890):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000340)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0)

1m20.337083768s ago: executing program 1 (id=1891):
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbbdffffc}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r0, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x5}, 0x18)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r0, 0x47f6, 0x0, 0x2, 0x0, 0x0)

1m20.305527168s ago: executing program 33 (id=1891):
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbbdffffc}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r0, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x5}, 0x18)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r0, 0x47f6, 0x0, 0x2, 0x0, 0x0)

46.753211494s ago: executing program 0 (id=2870):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r2}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6, 0x0, 0x0, 0x0, 0x0, r2})

46.733962864s ago: executing program 0 (id=2873):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
close(r2)

46.685261395s ago: executing program 0 (id=2875):
openat(0xffffffffffffff9c, 0x0, 0x141042, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001b00)=@newqdisc={0x94, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}]}, 0x94}}, 0x0)

46.617115836s ago: executing program 0 (id=2878):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000240)='./file0/../file0/file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000100)='./file0/../file0/file0\x00', 0x0, 0x80000, 0x0)
umount2(&(0x7f00000001c0)='./file0/../file0\x00', 0x3)

46.616383226s ago: executing program 0 (id=2880):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'team_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e000000004000028006000100000ffe00340003800c0001000ffe0000000000000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32=r3, @ANYBLOB="080003"], 0x80}}, 0x8000)

46.534569717s ago: executing program 0 (id=2883):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$inet6(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

46.534207228s ago: executing program 34 (id=2883):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$inet6(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

46.227853132s ago: executing program 4 (id=2901):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
unshare(0x2c060000)
r2 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x7fff, 0x40024e}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x6, 0x0, r2, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r2, 0x627, 0x4c1, 0x43, 0x0, 0x0)

46.077528974s ago: executing program 4 (id=2904):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000640)="980bcfe393059bae3f648ed47a483be27024e4dd506130bdfbcd2df1d38ec7fa1c341ccb083d3ff79d5bc4d28e2a61cc95e5c91b2b508136985bd117c1dff44ccbd4ab6f", 0x44}], 0x1)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x4c2103a2)

46.023624155s ago: executing program 4 (id=2905):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
lseek(0xffffffffffffffff, 0x1000000, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f00000003c0)='./file2\x00', 0x800000, &(0x7f0000000080)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$eJzs3U9rI2UcB/Bf2vTv2qbquroL4oNeFCFue/DkpcguiAWl2gUVhFmbamialCYUIuLWkyfBlyHq0ZsgvoFevHgWBJFePO5BHGmT1aZJu7ptU5HP5zIPzzzfeWYyzMCE+TF7L32+sb7WLK9lrRgpFKK4ORbFuylSjMRodOzEc7d+/OnJN956+9XFpaUbyyndXHxz/sWU0uxT373z0ddPf9+6dOub2W8nYnfu3b3fFn7evbJ7de+Pr6LaTNVmqjdaKUu3G41WdrtWSavV5no5pddrlaxZSdV6s7LVs36t1tjcbKesvjozvblVaTZTVm+n9Uo7tQqptdVO2ftZtZ7K5XKamQ5OY+XLu3meR+T5WIxHnuf5VEzHpXgoZmI2SjEXD8cj8WhcjsfiSjweT8TVg1EXvd8AAAAAAAAAAAAAAAAAAADw/3Kf+v+C+n8AAAAAAAAAAAAAAAAAAAA4f0fr/4sRvv8PAAAAAAAAAAAAAAAAAAAAQ3af7/8fqf9/Xv0/AAAAAAAAAAAAAAAAAAAAnIfJzmI5pcmIjU+3V7ZXOstO/+JaVKMWlbgepfg9Dqr/Ozrtm68s3bieDszFCxt3uvk72yujvfn5sVLMFQbm5zv51JufiOnD+YUoxeXB8y8MzE/Gs8/s5z/p5MtRih/ei0bUYjWi0D36g/zH8ym9/NrSVG/+2v64Y42e82kBAACAs1ROf+l/ft/pDhq4vrOq+3yeuiMLJ/w/cOT5vBjXihd11NzTbH+4ntVqla0HbIwfv53x0225r1GIiCwO98xO/7K8P/mZTfGgjdGhTjp28phTnNMo/gd+zDNo/PrFoZ7JGO7sI91LIqvt3z//WSp28vxcd2zgxThxUur4e0ZhCPclhuPvk37RewIAAAAAAAAAAMC/MfDtv6mI6Hsf8IO+nnuvh/fG+7d8/OyfDeEIAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/mQHjgUAAAAAhPlbp9GxAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFcBAAD///ME0UM=")
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0185879, &(0x7f00000004c0)={0x0, 0xfffffbffffffffff, 0x3ffffd, 0x2, 0x0, 0x0, 0x2401})

46.015370895s ago: executing program 4 (id=2906):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000240)='./file0/../file0/file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000100)='./file0/../file0/file0\x00', 0x0, 0x80000, 0x0)
umount2(&(0x7f00000001c0)='./file0/../file0\x00', 0x3)

45.977530166s ago: executing program 4 (id=2908):
socket$inet6(0xa, 0x80002, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000040)={[{@errors_remount}, {@abort}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x2, 0x44a, &(0x7f0000000400)="$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")

45.951733446s ago: executing program 4 (id=2910):
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
socket$kcm(0x1e, 0x1, 0x0)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x127)
sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f0000001540)=@tipc, 0x80, 0x0}, 0x0)

45.915972577s ago: executing program 35 (id=2910):
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
socket$kcm(0x1e, 0x1, 0x0)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x127)
sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f0000001540)=@tipc, 0x80, 0x0}, 0x0)

38.955158702s ago: executing program 8 (id=3112):
syz_io_uring_setup(0x3c0c, 0x0, 0x0, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r2, 0x0, 0x80000}, 0x18)
sendto$inet(r0, 0x0, 0x0, 0x200087fd, &(0x7f00000000c0)={0x2, 0x4e23, @loopback}, 0x10)
close(r0)

38.951681572s ago: executing program 8 (id=3114):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000080)=0x9, 0x4)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffff00, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=""/176, 0xb0}}], 0x1, 0x0, 0x0)

38.930827252s ago: executing program 8 (id=3116):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000140), 0x1, 0x4fa, &(0x7f0000000ac0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
fallocate(r1, 0x0, 0xffff, 0x8009)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x5}}, 0x20)
write$cgroup_int(r2, &(0x7f0000000380)=0x3c, 0xfcb5)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000000c0)={0x0, r2, 0x18, 0x0, 0x0, 0xffffffffffff8001})

38.834281523s ago: executing program 8 (id=3119):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

38.790883174s ago: executing program 8 (id=3120):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
rt_sigpending(0x0, 0x0)
syz_read_part_table(0x60d, &(0x7f0000002200)="$eJzs3D9olHcYB/DvJbmcUTAdnFxqHDoJRXE0Q5XkqlgIp1IIDvYfIs0UIXDSw5Q4tBkUM0jHLlK4DhonYwYnRaFzEQeLkMGlYBepHXLl7l6SOyjF0oRS/HyGe353PDzf94F3/V34XxtIuTi1Kp3y/qd/298a3TzP50xzYvJ4q9VqnU5KOZtyxsq7l5MMpX9q9icZ7plz8/udq9/+9mG5+fTUq/fOPVgc2JhZyTtJdvU2Z+SvHqXyzzZlO9wafzi6cGW2erX9pdpYW/84uf1yorZycnFp+UT52Oft3y8nj4r+7osxkoup51K+zCdDbxz19eax1Jc/386vj194Um2sfdd8fnB9b3Xw7vkjr/etXrt/KJlrR0yl87JvGv6Xi/fkL/Tkz41dn15qHD1wZ8+Nw/V7j2svBn9vdRWR5a3JBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABge9xqf1yZrV6tj194Um2sffPzTx/dfjlRWzm5uLR8YvjYs6LvUVGHinox9VxKOclMZvJFZt88crrUmz/+cHRhI/+Pncnzg+t7q82754+8nly9dv9Qp6uUqXYZ2IqN+/XnN9bmxq5PLzWOHriz58bh+r3HtReD3b6ZSj7rrJuksvWPAQAAAAAAAAAAAAAAAAAAwFtuYvL4vqkPaqeTUs7uSPLrV51b9q3KyI/p3Lzv2l/UZ5Vkd5KbO7r/BdB8eurV8LkHi78Ul+LnU8l8kl0/rJxJ3t3IudwfW96czH/pzwAAAP//gTiR5w==")

38.607381827s ago: executing program 8 (id=3125):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028"], 0xec}}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

38.599510747s ago: executing program 36 (id=3125):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028"], 0xec}}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

1.742747974s ago: executing program 6 (id=4033):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0xb9}, &(0x7f0000000100)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0)
readv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/173, 0xad}], 0x1)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000540)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000001a80)="5c85d5e0e4d6", 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat$tun(0xffffffffffffff9c, 0x0, 0x24000, 0x0)
socket$packet(0x11, 0x2, 0x300)
write$tun(r4, &(0x7f0000000080)=ANY=[], 0x23)

1.483319777s ago: executing program 5 (id=4037):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r2, &(0x7f0000000380)={0x2, 0x4e25, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x10)
sendmmsg(r2, &(0x7f0000006140)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="65c6d96326a838047976a77611d4c4ecc94b3585c42786716ad7c93fd3a228e9a1cd93801f5b4033ea9ae2b561f18c2893aba2af73f86ac4a65917672e186b297cada86c7b329c4831efa7228c040c757e6ce437d7853ac2cca9605a2e18bf6553fac161511f4483dc8b5294583cc78cd79fb68fb57bd8697ac1639517070e92cd2d36932b0e26cf8fdd87e817f08f7d", 0x90}, {&(0x7f00000002c0)="b16b5d1ddcad4b5eedb9593060ada4a1778939f40388ef540871ce291c1010f3310edf7028093cf8709632cad4866d5e448d5385c80db3518564b1194247acfb3b463ee97c794123a991311e51e1790748a23c3301974b905bbd18b3e54cb3cc90c180fba7461df205130349d430083d2c66828f43a4f66e274175218e8e3f", 0x7f}], 0x2}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000002880)="13d0dc432d3d3391fafe26160c215d30a476f4ac80d634079b6b579bb04ade2653f8c0f6b1a55451ddad18f6d9a81e8bc2121377f7a87a5e076ea2c1e4b0094d472684241faf30ebff5e58a61ba1c2ce470b99036209", 0x56}], 0x1}}], 0x2, 0x4000)
close(r2)

1.482451728s ago: executing program 5 (id=4038):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000280), &(0x7f0000000840)=r1}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYRESDEC], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20008000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x4, 0x7, 0x7ffc1ff3}]})
mincore(&(0x7f0000ffc000/0x3000)=nil, 0x3000, &(0x7f00000001c0)=""/152)

1.481522137s ago: executing program 5 (id=4039):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=ANY=[@ANYBLOB="4c000000100039042cbd7000eaffffff000003e4", @ANYRES32=0x0, @ANYBLOB="83000400100000002c00128008000100736974002000028014000b00fe8000040000000000000000000000aa08000300e0"], 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)

1.362816739s ago: executing program 5 (id=4042):
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)

1.266392921s ago: executing program 5 (id=4046):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300))
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="9400000013004f0a000200"/20, @ANYRES32=r2, @ANYBLOB="00000000000000000800cfffecc507006c001a8054000a80140007"], 0x94}}, 0x20008841)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x8001, 0xd)

819.499148ms ago: executing program 9 (id=4059):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x10000, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f00000002c0), &(0x7f0000000380)=r3}, 0x20)
listen(r1, 0x3)

818.766558ms ago: executing program 6 (id=4061):
symlink(&(0x7f0000000780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
creat(0x0, 0x16)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000600001e95"], &(0x7f0000000bc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1b, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r2}, &(0x7f0000000400), &(0x7f0000000440)=r1}, 0x20)

805.839978ms ago: executing program 6 (id=4063):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
close_range(r1, 0xffffffffffffffff, 0x10000000000000)

784.370778ms ago: executing program 6 (id=4064):
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001d00)={&(0x7f00000017c0)={0x2, 0x0, @private=0xa010101}, 0x10, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

774.184838ms ago: executing program 9 (id=4065):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e}}, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
sync()
flock(0xffffffffffffffff, 0x9d77734ed0a70dd1)
sync()
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x3, 0x0, 0x6, 0x1, 0x0, 0x18}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_usb_connect$cdc_ecm(0x2, 0x5a, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000202505a1a4400000000101090248ef0001000000090400001602020000052406000005240000000d240f01000000000000ddffff03240209"], 0x0)

699.630739ms ago: executing program 6 (id=4067):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
lsetxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600, 0x0, 0x2000]}}], 0xffc8)
tkill(0x0, 0x12)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)

699.304219ms ago: executing program 7 (id=4068):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000200)='kfree_skb\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r2}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, 0x0}, 0x0)

606.960771ms ago: executing program 7 (id=4069):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x8000}, 0x18)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000180)="1a", 0x1, 0x40, &(0x7f0000000200)={0xa, 0x4e23, 0x2, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000080)="0e", 0x1, 0x2404084c, 0x0, 0x0)
shutdown(r1, 0x1)
sendto$inet6(r1, &(0x7f0000000040)="93", 0x34000, 0x0, 0x0, 0x44)

471.006913ms ago: executing program 3 (id=4072):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = epoll_create1(0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x200000c0}, 0x40)
close_range(r2, 0xffffffffffffffff, 0x0)

453.565733ms ago: executing program 3 (id=4073):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x0, 0x96f0, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"/544]}, 0x298)

437.251423ms ago: executing program 6 (id=4074):
syz_usb_connect$cdc_ncm(0x4, 0xd1, &(0x7f0000000040)=ANY=[@ANYBLOB="12011003020000182505a1a44000010203010902bf0002010650000900000000020d0000052406000108"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0xd, &(0x7f0000000000)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}}], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x405, @void, @value}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="450a000000ff03ffc311a400100100001800"/29], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000000)=0x7f, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x20000001, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @mcast1}, 0x1c)

397.826814ms ago: executing program 3 (id=4075):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
creat(&(0x7f0000000040)='./file0\x00', 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x1a, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffffffffffc, 0x0, 0x19, '\x00', 0x0, 0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)

397.382684ms ago: executing program 3 (id=4076):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000000c00)=ANY=[@ANYRES8=0x0, @ANYRES16=0x0, @ANYRESDEC, @ANYBLOB="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", @ANYRESOCT=0x0, @ANYBLOB="c1d142dcdf1a78de088933cd217f0d2fbddabe353b5924e5ec5d568431b17b0ec0c889176aac2b9910a53462d0d2529ec4f67d112491babdfff550aa985a1468fa0afe9ac81e7ed0e6997e06bdbcbe3d0954c0a5dda6d28349bb96fb554a3362ce66a741aba6d863964020ac75e62bf7cd4910b7fcd4e44e8e54b111545bd84d7c7ab36b4049517f8a313e647fd153c709494e2785f902cc180f3d595ebb5f47ed5e314d1cf7ea40609561b0abc8a506fd7178e0b8ecbdcc59", @ANYBLOB="efb1cce45fac75b55c0a22aa86d715acecca0aa979b4d29fac76f08179aeaec3fd68428e2f1296ca209611505e1fc08510692ff2dcd9de8a1df6030afb9044fa0d877fdccd18f46ca6dab0921ca87bf4fe9938c4c0414ffa9949c19bda4184863abff03f769cb830b618ee918ecb072791fb01219fd39ccf42386b70d9ab5d9d8a0c5e038a3648371eda36c90e24e82b8e174ecd4a06b755bffd232f4a6dff5d554719f2eaa6b4774d605ab0cb1fb6cce7f95e4a922a07025071ab5564e1e37f507def4b0697a5f6da355cf0c0c1b561fdd734c2c6fb1d340994660ebbff88f2ee39ddb3af7fe80b967ef82da422f756e688ec941aff97", @ANYRES16, @ANYRES16=0x0, @ANYRESDEC], 0x1, 0x2f4, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2, 0x0, 0x400000000}, 0x18)
fdatasync(r0)

378.550174ms ago: executing program 7 (id=4077):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x21004a, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}})
creat(&(0x7f00000000c0)='./file0\x00', 0x48)

328.143495ms ago: executing program 7 (id=4078):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f00000001c0)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000600)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000380)=0x7ffd)
ioctl$PPPIOCSPASS(r3, 0x40107447, &(0x7f0000000180)={0x20, 0x0})

311.884295ms ago: executing program 5 (id=4079):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000000), 0xffffff6a)
r1 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000040)=<r2=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000003680)='sched_switch\x00', r3}, 0x10)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a00001a}])

269.433596ms ago: executing program 7 (id=4080):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x1c, 0x12, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x120}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa8}}, 0x20050800)

179.117757ms ago: executing program 7 (id=4081):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x5}, 0x18)

85.006529ms ago: executing program 3 (id=4082):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000540), 0x440, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000003c0)=0x1)

84.380659ms ago: executing program 9 (id=4083):
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00')
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

31.50253ms ago: executing program 9 (id=4084):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001180)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0x1a400000}, 0x18)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
gettid()
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$TIOCMIWAIT(r1, 0x5453, 0x7cb7562f2d67)

30.872099ms ago: executing program 9 (id=4085):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r2, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r4}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

695.31µs ago: executing program 9 (id=4086):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000580), r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$kcm(0x29, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fgetxattr(0xffffffffffffffff, &(0x7f0000000980)=@known='security.selinux\x00', 0x0, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

0s ago: executing program 3 (id=4087):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000280)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x437, 0x10, 0x25dfdbff, {0x0, 0x0, 0x0, r3, 0x54583, 0x1}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmmsg$inet(r0, &(0x7f0000000640)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @empty}}}], 0x20}}], 0x1, 0x80)

kernel console output (not intermixed with test programs):

T3670] vhci_hcd: stop threads
[  116.140218][ T9881] vhci_hcd: connection closed
[  116.144672][ T3670] vhci_hcd: release socket
[  116.149316][ T9877] vhci_hcd: connection closed
[  116.153858][ T3670] vhci_hcd: disconnect device
[  116.158491][ T3391] vhci_hcd: vhci_device speed not set
[  116.191402][ T3670] vhci_hcd: stop threads
[  116.195764][ T3670] vhci_hcd: release socket
[  116.200196][ T3670] vhci_hcd: disconnect device
[  116.206022][ T3670] vhci_hcd: stop threads
[  116.210364][ T3670] vhci_hcd: release socket
[  116.214848][ T3670] vhci_hcd: disconnect device
[  116.220049][ T3670] vhci_hcd: stop threads
[  116.224348][ T3670] vhci_hcd: release socket
[  116.228838][ T3670] vhci_hcd: disconnect device
[  116.234733][ T3670] vhci_hcd: stop threads
[  116.239049][ T3670] vhci_hcd: release socket
[  116.243480][ T3670] vhci_hcd: disconnect device
[  116.248395][ T3391] usb 11-1: new low-speed USB device number 2 using vhci_hcd
[  116.249278][ T3670] vhci_hcd: stop threads
[  116.255813][ T3391] usb 11-1: enqueue for inactive port 0
[  116.260039][ T3670] vhci_hcd: release socket
[  116.265577][ T3391] usb 11-1: enqueue for inactive port 0
[  116.265593][ T3391] usb 11-1: enqueue for inactive port 0
[  116.281278][ T3670] vhci_hcd: disconnect device
[  116.352472][ T3391] vhci_hcd: vhci_device speed not set
[  116.747361][   T29] kauditd_printk_skb: 156 callbacks suppressed
[  116.747377][   T29] audit: type=1326 audit(2000000035.865:2609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9885 comm="syz.3.2631" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f60ab46e969 code=0x0
[  116.751677][ T9892] loop6: detected capacity change from 0 to 512
[  116.783271][ T9892] EXT4-fs: Ignoring removed nobh option
[  116.790159][ T9892] EXT4-fs error (device loop6): ext4_orphan_get:1393: inode #15: comm syz.6.2632: iget: bad i_size value: 38620345925642
[  116.804284][ T9892] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.2632: couldn't read orphan inode 15 (err -117)
[  116.817077][   T29] audit: type=1400 audit(2000000035.939:2610): avc:  denied  { lock } for  pid=9885 comm="syz.3.2631" path="socket:[30100]" dev="sockfs" ino=30100 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  116.844733][   T29] audit: type=1326 audit(2000000035.967:2611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9896 comm="syz.5.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  116.856571][ T9892] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.868162][   T29] audit: type=1326 audit(2000000035.967:2612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9896 comm="syz.5.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  116.868479][   T29] audit: type=1326 audit(2000000035.995:2613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9896 comm="syz.5.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  116.903926][ T9892] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.2632: bg 0: block 5: invalid block bitmap
[  116.928508][   T29] audit: type=1326 audit(2000000036.024:2614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9896 comm="syz.5.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  116.963496][   T29] audit: type=1326 audit(2000000036.024:2615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9896 comm="syz.5.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  116.997742][   T29] audit: type=1326 audit(2000000036.080:2616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9896 comm="syz.5.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  117.021403][   T29] audit: type=1326 audit(2000000036.080:2617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9896 comm="syz.5.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  117.044834][   T29] audit: type=1326 audit(2000000036.080:2618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9896 comm="syz.5.2633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  117.070512][ T8048] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.182390][ T9909] SELinux: failed to load policy
[  117.233527][ T9913] SELinux: ebitmap: truncated map
[  117.240523][ T9913] SELinux: failed to load policy
[  117.337415][ T9922] loop5: detected capacity change from 0 to 128
[  117.363307][ T9924] loop5: detected capacity change from 0 to 128
[  117.393056][ T9926] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2646'.
[  117.566272][ T9709] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.584217][ T9709] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.597115][ T9709] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.609451][ T9709] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.647546][ T9950] loop4: detected capacity change from 0 to 1024
[  117.654285][ T9950] EXT4-fs: Ignoring removed oldalloc option
[  117.664867][ T9950] EXT4-fs: Ignoring removed nomblk_io_submit option
[  117.681929][ T9950] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.730008][ T8182] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.843159][ T9978] loop5: detected capacity change from 0 to 128
[  117.927339][ T9986] loop5: detected capacity change from 0 to 128
[  117.957777][ T9989] loop6: detected capacity change from 0 to 1024
[  117.967594][ T9986] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.990800][ T9989] EXT4-fs: Ignoring removed oldalloc option
[  117.996561][ T9986] ext4 filesystem being mounted at /298/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  118.056580][ T9989] EXT4-fs: Ignoring removed nomblk_io_submit option
[  118.081672][ T6666] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.092632][ T9989] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.139686][ T8048] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.168059][T10009] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2682'.
[  118.183857][T10009] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2682'.
[  118.364944][T10004] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  118.374258][T10004] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  118.821705][ T1031] usb 1-1: enqueue for inactive port 0
[  118.827365][ T1031] usb 1-1: enqueue for inactive port 0
[  118.907173][ T1031] vhci_hcd: vhci_device speed not set
[  118.934130][T10064] atomic_op ffff888119a4ed28 conn xmit_atomic 0000000000000000
[  119.128318][T10080] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2715'.
[  119.597194][T10110] SELinux: failed to load policy
[  119.831423][T10115] loop6: detected capacity change from 0 to 2048
[  119.893266][T10115]  loop6: p1 < > p4
[  119.909447][T10115] loop6: p4 size 8388608 extends beyond EOD, truncated
[  119.949963][T10128] netlink: 'syz.0.2736': attribute type 4 has an invalid length.
[  119.967563][T10128] netlink: 'syz.0.2736': attribute type 4 has an invalid length.
[  119.979176][T10128] lo: left promiscuous mode
[  119.983758][T10128] lo: left allmulticast mode
[  120.118940][T10149] loop6: detected capacity change from 0 to 128
[  120.129340][T10149] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  120.159138][T10149] ext4 filesystem being mounted at /180/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  120.206807][T10154] loop3: detected capacity change from 0 to 512
[  120.227632][T10154] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.253584][T10154] ext4 filesystem being mounted at /567/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  120.263687][T10159] loop5: detected capacity change from 0 to 2048
[  120.273282][ T8048] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  120.278842][T10154] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2747'.
[  120.316469][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.331233][T10159]  loop5: p1 < > p4
[  120.337251][T10159] loop5: p4 size 8388608 extends beyond EOD, truncated
[  120.452446][T10170] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2753'.
[  120.482681][T10176] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  120.495890][T10176] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  120.601257][T10170] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2753'.
[  120.710839][T10194] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2764'.
[  120.999623][T10215] loop5: detected capacity change from 0 to 2048
[  121.006396][T10215] msdos: Unknown parameter '��������184467440737095516150xffffffffffffffff'
[  121.024564][T10217] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2775'.
[  121.198386][T10237] ALSA: seq fatal error: cannot create timer (-19)
[  121.239126][T10245] __nla_validate_parse: 1 callbacks suppressed
[  121.239157][T10245] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2779'.
[  121.265141][T10247] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2783'.
[  121.320818][T10249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2785'.
[  121.437242][T10262] netlink: 'syz.5.2792': attribute type 10 has an invalid length.
[  121.445164][T10262] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2792'.
[  121.461002][T10262] dummy0: entered promiscuous mode
[  121.468217][T10262] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  121.538544][T10274] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2797'.
[  121.558407][T10274] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  121.565849][T10274] batman_adv: batadv0: Removing interface: batadv_slave_0
[  121.585814][T10274] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  121.593294][T10274] batman_adv: batadv0: Removing interface: batadv_slave_1
[  121.645114][T10282] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2799'.
[  121.654724][T10282] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2799'.
[  121.770509][T10297] loop5: detected capacity change from 0 to 1024
[  121.773314][T10301] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2804'.
[  121.796341][T10292] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2804'.
[  121.806072][T10299] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2803'.
[  121.816500][T10297] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.847040][T10297] EXT4-fs: Ignoring sb option on remount
[  121.852782][T10297] EXT4-fs: Ignoring removed orlov option
[  121.899345][T10309] syzkaller1: entered promiscuous mode
[  121.904994][T10309] syzkaller1: entered allmulticast mode
[  121.911091][T10297] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[  121.931424][T10311] loop4: detected capacity change from 0 to 2048
[  121.939330][T10297] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  121.956939][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.966736][T10311]  loop4: p1 < > p4
[  121.971283][T10311] loop4: p4 size 8388608 extends beyond EOD, truncated
[  121.987865][T10313] xt_hashlimit: max too large, truncated to 1048576
[  122.032236][T10319] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.049001][T10319] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.151106][   T29] kauditd_printk_skb: 331 callbacks suppressed
[  122.151120][   T29] audit: type=1326 audit(2000000040.926:2950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10329 comm="syz.6.2819" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f799627e969 code=0x0
[  122.222020][T10334] bridge0: entered promiscuous mode
[  122.233322][T10334] bridge0: port 1(macsec1) entered blocking state
[  122.239854][T10334] bridge0: port 1(macsec1) entered disabled state
[  122.258416][T10334] macsec1: entered allmulticast mode
[  122.263781][T10334] bridge0: entered allmulticast mode
[  122.291547][T10334] macsec1: left allmulticast mode
[  122.296709][T10334] bridge0: left allmulticast mode
[  122.315211][T10334] bridge0: left promiscuous mode
[  122.375400][T10343] loop3: detected capacity change from 0 to 1024
[  122.382482][T10343] EXT4-fs: Ignoring removed nobh option
[  122.394228][T10343] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.418129][   T29] audit: type=1400 audit(2000000041.178:2951): avc:  denied  { write } for  pid=10342 comm="syz.3.2823" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  122.472312][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.062888][T10379] netlink: 'syz.5.2833': attribute type 4 has an invalid length.
[  123.081516][T10379] netlink: 'syz.5.2833': attribute type 4 has an invalid length.
[  123.094908][T10382] loop3: detected capacity change from 0 to 512
[  123.108366][T10382] EXT4-fs: Ignoring removed oldalloc option
[  123.132759][T10382] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.2836: Parent and EA inode have the same ino 15
[  123.162329][T10382] EXT4-fs (loop3): Remounting filesystem read-only
[  123.168979][T10382] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  123.199370][T10382] EXT4-fs (loop3): 1 orphan inode deleted
[  123.207206][T10382] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.219831][T10382] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.297036][   T29] audit: type=1326 audit(2000000042.002:2952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.3.2847" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f60ab46e969 code=0x0
[  123.334759][   T29] audit: type=1326 audit(2000000042.039:2953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10408 comm="syz.5.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  123.339479][T10407] xt_hashlimit: max too large, truncated to 1048576
[  123.358375][   T29] audit: type=1326 audit(2000000042.039:2954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10408 comm="syz.5.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  123.412339][   T29] audit: type=1326 audit(2000000042.086:2955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10408 comm="syz.5.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  123.435856][   T29] audit: type=1326 audit(2000000042.086:2956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10408 comm="syz.5.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  123.459498][   T29] audit: type=1326 audit(2000000042.086:2957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10408 comm="syz.5.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  123.483201][   T29] audit: type=1326 audit(2000000042.086:2958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10408 comm="syz.5.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  123.506709][   T29] audit: type=1326 audit(2000000042.086:2959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10408 comm="syz.5.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  123.668363][T10430] xt_CT: You must specify a L4 protocol and not use inversions on it
[  123.778708][T10432] SELinux: failed to load policy
[  123.844771][T10445] loop4: detected capacity change from 0 to 512
[  123.852561][T10445] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  123.884091][T10445] EXT4-fs (loop4): 1 truncate cleaned up
[  123.890390][T10445] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.953074][ T8182] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.061815][T10460] SELinux: ebitmap: truncated map
[  124.073826][T10460] SELinux: failed to load policy
[  124.087340][T10470] xt_hashlimit: max too large, truncated to 1048576
[  124.125527][T10472] vhci_hcd: default hub control req: 600c v0001 i0000 l0
[  124.141225][T10482] netlink: 'syz.6.2882': attribute type 4 has an invalid length.
[  124.151523][T10482] netlink: 'syz.6.2882': attribute type 4 has an invalid length.
[  124.161688][ T3647] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.189978][ T3647] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.243255][ T3647] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.309967][ T3647] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.697538][T10541] loop4: detected capacity change from 0 to 8192
[  124.802836][ T3647] tipc: Left network mode
[  124.832146][T10551] syzkaller1: entered promiscuous mode
[  124.837782][T10551] syzkaller1: entered allmulticast mode
[  124.915154][ T3647] hsr_slave_0: left promiscuous mode
[  124.920794][ T3647] hsr_slave_1: left promiscuous mode
[  124.928961][ T3647] veth1_macvtap: left promiscuous mode
[  124.934457][ T3647] veth0_macvtap: left promiscuous mode
[  124.940711][ T3647] veth1_vlan: left promiscuous mode
[  124.945956][ T3647] veth0_vlan: left promiscuous mode
[  125.155586][T10496] chnl_net:caif_netlink_parms(): no params data found
[  125.228088][T10496] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.235350][T10496] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.246547][T10496] bridge_slave_0: entered allmulticast mode
[  125.253165][T10496] bridge_slave_0: entered promiscuous mode
[  125.264977][T10496] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.272230][T10496] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.279534][T10496] bridge_slave_1: entered allmulticast mode
[  125.286196][T10496] bridge_slave_1: entered promiscuous mode
[  125.329682][T10496] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  125.346539][T10585] loop5: detected capacity change from 0 to 512
[  125.353536][T10585] EXT4-fs: Ignoring removed oldalloc option
[  125.362426][T10496] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  125.376155][T10585] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.2920: Parent and EA inode have the same ino 15
[  125.388700][T10585] EXT4-fs (loop5): Remounting filesystem read-only
[  125.395278][T10585] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  125.405536][T10585] EXT4-fs (loop5): 1 orphan inode deleted
[  125.411986][T10585] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.418102][T10496] team0: Port device team_slave_0 added
[  125.425669][T10585] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.440594][T10496] team0: Port device team_slave_1 added
[  125.467815][T10496] batman_adv: batadv0: Adding interface: batadv_slave_0
[  125.474900][T10496] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.500918][T10496] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  125.532802][T10496] batman_adv: batadv0: Adding interface: batadv_slave_1
[  125.539830][T10496] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.565975][T10496] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  125.608806][T10496] hsr_slave_0: entered promiscuous mode
[  125.615109][T10496] hsr_slave_1: entered promiscuous mode
[  125.684201][T10553] chnl_net:caif_netlink_parms(): no params data found
[  125.721894][T10604] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  125.771906][T10553] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.778999][T10553] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.786483][T10553] bridge_slave_0: entered allmulticast mode
[  125.792902][T10553] bridge_slave_0: entered promiscuous mode
[  125.805613][T10553] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.813413][T10553] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.821357][T10553] bridge_slave_1: entered allmulticast mode
[  125.828436][T10553] bridge_slave_1: entered promiscuous mode
[  125.856529][T10553] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  125.869465][T10553] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  125.901293][T10496] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  125.911586][T10553] team0: Port device team_slave_0 added
[  125.918468][T10553] team0: Port device team_slave_1 added
[  125.924777][T10496] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  125.949154][T10496] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  125.964337][T10496] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  125.973764][T10553] batman_adv: batadv0: Adding interface: batadv_slave_0
[  125.980736][T10553] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.007024][T10553] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  126.019271][T10553] batman_adv: batadv0: Adding interface: batadv_slave_1
[  126.026271][T10553] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.052335][T10553] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  126.104054][T10553] hsr_slave_0: entered promiscuous mode
[  126.110133][T10553] hsr_slave_1: entered promiscuous mode
[  126.116202][T10553] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  126.123925][T10553] Cannot create hsr debugfs directory
[  126.156579][T10496] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.181806][T10496] 8021q: adding VLAN 0 to HW filter on device team0
[  126.218081][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.225197][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.253189][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.260308][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.306655][T10553] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  126.316022][T10553] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  126.326299][T10553] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  126.335310][T10553] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  126.370513][T10496] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.384709][T10553] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.399599][T10553] 8021q: adding VLAN 0 to HW filter on device team0
[  126.412081][ T3684] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.419188][ T3684] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.433608][ T3647] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.440728][ T3647] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.512400][T10553] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.536989][T10496] veth0_vlan: entered promiscuous mode
[  126.545653][T10496] veth1_vlan: entered promiscuous mode
[  126.563746][T10496] veth0_macvtap: entered promiscuous mode
[  126.572184][T10496] veth1_macvtap: entered promiscuous mode
[  126.584021][T10496] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.596944][T10496] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.605721][T10496] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.614551][T10496] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.623359][T10496] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.632151][T10496] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.707380][T10673] __nla_validate_parse: 5 callbacks suppressed
[  126.707395][T10673] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2946'.
[  126.728929][T10673] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2946'.
[  126.734559][T10553] veth0_vlan: entered promiscuous mode
[  126.753439][T10553] veth1_vlan: entered promiscuous mode
[  126.773067][T10553] veth0_macvtap: entered promiscuous mode
[  126.781400][T10553] veth1_macvtap: entered promiscuous mode
[  126.795069][T10553] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.808100][T10553] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.818363][T10553] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.827127][T10553] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.836012][T10553] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.844962][T10553] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.893217][T10682] hub 9-0:1.0: USB hub found
[  126.904774][T10680] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2950'.
[  126.908729][T10682] hub 9-0:1.0: 8 ports detected
[  126.983425][T10688] hub 9-0:1.0: USB hub found
[  126.999863][T10688] hub 9-0:1.0: 8 ports detected
[  127.098792][T10702] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2959'.
[  127.185014][T10717] netlink: 420 bytes leftover after parsing attributes in process `syz.6.2955'.
[  127.194989][T10717] netlink: 104 bytes leftover after parsing attributes in process `syz.6.2955'.
[  127.270995][T10732] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2962'.
[  127.321282][T10738] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2965'.
[  127.395937][T10750] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.404528][T10750] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.455891][T10753] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2972'.
[  127.508971][   T29] kauditd_printk_skb: 241 callbacks suppressed
[  127.508988][   T29] audit: type=1326 audit(2000000045.940:3201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10665 comm="syz.7.2884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  127.511180][T10753] loop5: detected capacity change from 0 to 1024
[  127.522168][   T29] audit: type=1326 audit(2000000045.949:3202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10665 comm="syz.7.2884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  127.540103][T10753] EXT4-fs: Ignoring removed bh option
[  127.569755][   T29] audit: type=1326 audit(2000000045.978:3203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10665 comm="syz.7.2884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  127.574117][T10753] EXT4-fs: Ignoring removed mblk_io_submit option
[  127.597620][   T29] audit: type=1326 audit(2000000045.987:3204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10665 comm="syz.7.2884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  127.604002][T10753] EXT4-fs: Ignoring removed oldalloc option
[  127.642925][T10753] ext4: Bad value for 'mb_optimize_scan'
[  127.674623][ T3670] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.713893][   T29] audit: type=1326 audit(2000000046.127:3205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10756 comm="syz.5.2974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  127.737504][   T29] audit: type=1326 audit(2000000046.127:3206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10756 comm="syz.5.2974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  127.769967][   T29] audit: type=1326 audit(2000000046.183:3207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10756 comm="syz.5.2974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  127.793584][   T29] audit: type=1326 audit(2000000046.183:3208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10756 comm="syz.5.2974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  127.797263][T10757] loop5: detected capacity change from 0 to 2048
[  127.817235][   T29] audit: type=1326 audit(2000000046.183:3209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10756 comm="syz.5.2974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  127.817270][   T29] audit: type=1326 audit(2000000046.183:3210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10756 comm="syz.5.2974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6311ce969 code=0x7ffc0000
[  127.819165][ T3670] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.909003][T10757]  loop5: p1 < > p4
[  127.913708][T10757] loop5: p4 size 8388608 extends beyond EOD, truncated
[  127.922738][ T3670] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.984628][ T3670] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.201641][ T3670] hsr_slave_0: left promiscuous mode
[  128.207717][ T3670] hsr_slave_1: left promiscuous mode
[  128.216954][ T3670] veth1_macvtap: left promiscuous mode
[  128.225734][ T3670] veth0_macvtap: left promiscuous mode
[  128.236624][ T3670] veth1_vlan: left promiscuous mode
[  128.241131][T10788] loop8: detected capacity change from 0 to 164
[  128.246846][ T3670] veth0_vlan: left promiscuous mode
[  128.333243][ T3670] team0 (unregistering): Port device team_slave_1 removed
[  128.351081][ T3670] team0 (unregistering): Port device team_slave_0 removed
[  129.107066][T10846] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3015'.
[  129.116274][T10848] loop8: detected capacity change from 0 to 2048
[  129.116598][ T3390] usb usb8-port2: attempt power cycle
[  129.138407][T10848] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.154439][T10848] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000.
[  129.166227][T10853] netlink: 'syz.5.3018': attribute type 10 has an invalid length.
[  129.177736][T10853] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.186920][T10853] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.200697][T10853] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.209633][T10853] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.231444][T10853] team0: Port device geneve1 added
[  129.240999][T10553] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.465056][T10866] loop5: detected capacity change from 0 to 164
[  129.622630][T10884] xt_hashlimit: max too large, truncated to 1048576
[  129.872120][T10909] loop5: detected capacity change from 0 to 4096
[  129.886097][T10909] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.929749][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.956912][T10922] syzkaller0: entered promiscuous mode
[  129.962640][T10922] syzkaller0: entered allmulticast mode
[  129.979220][T10922] PF_CAN: dropped non conform CAN FD skbuff: dev type 280, len 65487
[  129.980836][T10924] loop3: detected capacity change from 0 to 128
[  129.996077][T10926] netlink: 'syz.5.3049': attribute type 11 has an invalid length.
[  130.088826][T10936] loop3: detected capacity change from 0 to 1024
[  130.095957][T10936] EXT4-fs: Ignoring removed nomblk_io_submit option
[  130.105566][T10936] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.128500][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.187493][T10945] 9p: Unknown uid 00000000004294967295
[  130.322192][T10964] wireguard0: entered promiscuous mode
[  130.327826][T10964] wireguard0: entered allmulticast mode
[  130.591521][T10994] loop3: detected capacity change from 0 to 512
[  130.598511][T10994] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  130.610885][T10994] EXT4-fs (loop3): 1 truncate cleaned up
[  130.618379][T10994] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.698740][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.038221][T11021] loop5: detected capacity change from 0 to 512
[  131.051212][T11022] loop6: detected capacity change from 0 to 2048
[  131.052775][T11021] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  131.083265][T11021] EXT4-fs (loop5): 1 truncate cleaned up
[  131.089727][T11021] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.093764][T11022]  loop6: p1 < > p4
[  131.107940][T11022] loop6: p4 size 8388608 extends beyond EOD, truncated
[  131.140925][ T3390] usb usb8-port2: unable to enumerate USB device
[  131.313180][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.403929][T11036] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  131.412505][T11036] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  131.740019][T11058] 9p: Unknown uid 00000000004294967295
[  131.810833][T11072] loop8: detected capacity change from 0 to 512
[  131.822510][T11072] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.836863][T11072] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  131.902250][T10553] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.031907][T11090] loop5: detected capacity change from 0 to 512
[  132.038633][T11090] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.045420][T11090] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  132.056894][T11090] EXT4-fs (loop5): 1 truncate cleaned up
[  132.062852][T11090] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.084703][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.109199][   T51] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.186661][   T51] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.229310][   T51] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.282308][   T51] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.357279][T11115] syzkaller0: entered promiscuous mode
[  132.362801][T11115] syzkaller0: entered allmulticast mode
[  132.371402][   T51] bridge_slave_1: left allmulticast mode
[  132.377181][   T51] bridge_slave_1: left promiscuous mode
[  132.382913][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.390713][   T51] bridge_slave_0: left allmulticast mode
[  132.396369][   T51] bridge_slave_0: left promiscuous mode
[  132.402118][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.474210][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  132.484166][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  132.494788][   T51] bond0 (unregistering): Released all slaves
[  132.548221][T11099] chnl_net:caif_netlink_parms(): no params data found
[  132.562963][   T51] hsr_slave_0: left promiscuous mode
[  132.568848][   T51] hsr_slave_1: left promiscuous mode
[  132.574664][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  132.582272][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  132.593762][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  132.601262][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  132.614804][   T51] veth1_macvtap: left promiscuous mode
[  132.620397][   T51] veth0_macvtap: left promiscuous mode
[  132.625963][   T51] veth1_vlan: left promiscuous mode
[  132.631351][   T51] veth0_vlan: left promiscuous mode
[  132.650765][T11131] netlink: 'syz.5.3136': attribute type 3 has an invalid length.
[  132.711582][T11133] loop3: detected capacity change from 0 to 1024
[  132.725300][T11135] loop5: detected capacity change from 0 to 512
[  132.732115][   T51] team0 (unregistering): Port device team_slave_1 removed
[  132.739504][T11133] ext4: Unknown parameter 'subj_user'
[  132.750772][   T51] team0 (unregistering): Port device team_slave_0 removed
[  132.756078][T11133] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  132.781572][T11135] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.814414][T11135] ext4 filesystem being mounted at /409/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.815583][T11143] loop7: detected capacity change from 0 to 512
[  132.843841][T11143] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  132.863898][   T29] kauditd_printk_skb: 345 callbacks suppressed
[  132.863915][   T29] audit: type=1400 audit(2000000050.945:3556): avc:  denied  { create } for  pid=11147 comm="syz.3.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  132.873263][T11150] __nla_validate_parse: 7 callbacks suppressed
[  132.873277][T11150] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3142'.
[  132.897874][   T29] audit: type=1400 audit(2000000050.964:3557): avc:  denied  { bind } for  pid=11149 comm="syz.6.3142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  132.907947][T11143] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.924198][   T29] audit: type=1400 audit(2000000050.964:3558): avc:  denied  { setopt } for  pid=11149 comm="syz.6.3142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  132.938646][T11143] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.956159][   T29] audit: type=1400 audit(2000000050.983:3559): avc:  denied  { setopt } for  pid=11147 comm="syz.3.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  132.956184][   T29] audit: type=1400 audit(2000000050.983:3560): avc:  denied  { write } for  pid=11147 comm="syz.3.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  133.001848][T11143] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  133.025155][   T29] audit: type=1400 audit(2000000051.085:3561): avc:  denied  { read } for  pid=11147 comm="syz.3.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  133.061125][T11099] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.063949][T10496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.068292][T11099] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.084676][T11099] bridge_slave_0: entered allmulticast mode
[  133.091336][T11099] bridge_slave_0: entered promiscuous mode
[  133.098551][T11099] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.105745][T11099] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.113179][T11099] bridge_slave_1: entered allmulticast mode
[  133.120274][T11099] bridge_slave_1: entered promiscuous mode
[  133.120721][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.177552][   T29] audit: type=1400 audit(2000000051.235:3562): avc:  denied  { mount } for  pid=11158 comm="syz.5.3145" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  133.202610][T11099] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  133.218012][T11099] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  133.235026][   T29] audit: type=1400 audit(2000000051.282:3563): avc:  denied  { unmount } for  pid=6666 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  133.279692][T11099] team0: Port device team_slave_0 added
[  133.284803][   T29] audit: type=1400 audit(2000000051.347:3564): avc:  denied  { write } for  pid=11164 comm="syz.6.3149" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  133.288755][T11099] team0: Port device team_slave_1 added
[  133.309427][   T29] audit: type=1400 audit(2000000051.347:3565): avc:  denied  { open } for  pid=11164 comm="syz.6.3149" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  133.322808][T11165] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  133.322808][T11165]    program syz.6.3149 not setting count and/or reply_len properly
[  133.382471][T11099] batman_adv: batadv0: Adding interface: batadv_slave_0
[  133.389490][T11099] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.415489][T11099] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  133.456233][T11099] batman_adv: batadv0: Adding interface: batadv_slave_1
[  133.463234][T11099] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.489351][T11099] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  133.547150][T11179] loop6: detected capacity change from 0 to 512
[  133.565330][T11179] EXT4-fs (loop6): 1 orphan inode deleted
[  133.571519][T11179] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.577201][T11099] hsr_slave_0: entered promiscuous mode
[  133.590536][ T3647] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:15: Failed to release dquot type 1
[  133.602369][T11179] ext4 filesystem being mounted at /262/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.603300][T11099] hsr_slave_1: entered promiscuous mode
[  133.622755][T11179] EXT4-fs error (device loop6): ext4_lookup:1787: inode #15: comm syz.6.3155: iget: bad i_size value: 360287970189639690
[  133.637248][T11179] EXT4-fs error (device loop6): ext4_lookup:1787: inode #15: comm syz.6.3155: iget: bad i_size value: 360287970189639690
[  133.651069][T11099] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  133.664658][T11099] Cannot create hsr debugfs directory
[  133.687346][ T8048] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.779095][T11099] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  133.808932][T11099] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  133.830370][T11099] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  133.843179][T11189] loop6: detected capacity change from 0 to 512
[  133.861946][T11099] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  133.885103][T11189] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.901425][T11189] ext4 filesystem being mounted at /264/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  133.914443][T11189] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.3158: corrupted inode contents
[  133.927243][T11195] loop5: detected capacity change from 0 to 2048
[  133.935573][T11189] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.3158: mark_inode_dirty error
[  133.951847][T11099] 8021q: adding VLAN 0 to HW filter on device bond0
[  133.963183][T11099] 8021q: adding VLAN 0 to HW filter on device team0
[  133.979965][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.987107][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[  134.001548][T11189] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.3158: corrupted inode contents
[  134.016243][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.023353][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  134.038540][T11195] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.054212][T11099] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  134.072435][T11189] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #2: comm syz.6.3158: mark_inode_dirty error
[  134.161503][ T8048] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.183985][T11216] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3165'.
[  134.194494][T11099] 8021q: adding VLAN 0 to HW filter on device batadv0
[  134.203508][T11216] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3165'.
[  134.281288][T11222] IPVS: Error connecting to the multicast addr
[  134.403595][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.476755][T11099] veth0_vlan: entered promiscuous mode
[  134.484743][T11099] veth1_vlan: entered promiscuous mode
[  134.512297][T11099] veth0_macvtap: entered promiscuous mode
[  134.519888][T11099] veth1_macvtap: entered promiscuous mode
[  134.547342][T11099] batman_adv: batadv0: Interface activated: batadv_slave_0
[  134.561178][T11099] batman_adv: batadv0: Interface activated: batadv_slave_1
[  134.571008][T11099] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.579894][T11099] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.588719][T11099] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.597526][T11099] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.994921][T11282] loop9: detected capacity change from 0 to 2048
[  135.008969][T11284] loop3: detected capacity change from 0 to 512
[  135.016575][T11284] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  135.017848][T11282] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.028396][T11284] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.050401][T11284] ext4 filesystem being mounted at /655/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.082661][T11284] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  135.111255][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.181934][T11099] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.185758][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x4
[  135.198765][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x2
[  135.206597][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.214474][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.222245][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.230188][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.237922][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.245619][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.253414][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.261088][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.268803][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.276523][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.284248][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.291903][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.299591][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.307281][ T1031] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0
[  135.316222][ T1031] hid-generic 0000:3000000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  135.571545][T11318] loop5: detected capacity change from 0 to 512
[  135.633913][T11318] EXT4-fs (loop5): 1 orphan inode deleted
[  135.640303][T11318] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.653069][ T3670] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:34: Failed to release dquot type 1
[  135.670293][T11318] ext4 filesystem being mounted at /416/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.714105][T11318] EXT4-fs error (device loop5): ext4_lookup:1787: inode #15: comm syz.5.3194: iget: bad i_size value: 360287970189639690
[  135.753473][T11318] EXT4-fs error (device loop5): ext4_lookup:1787: inode #15: comm syz.5.3194: iget: bad i_size value: 360287970189639690
[  135.816323][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.881159][T11327] loop6: detected capacity change from 0 to 2048
[  135.894697][T11327] EXT4-fs: Ignoring removed i_version option
[  135.915743][T11327] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.940805][T11327] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.960874][T11327] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3198: bg 0: block 345: padding at end of block bitmap is not set
[  135.976177][T11327] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  135.988868][T11327] EXT4-fs (loop6): This should not happen!! Data will be lost
[  135.988868][T11327] 
[  136.027179][ T8048] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.045845][T11342] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3203'.
[  136.055511][T11342] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3203'.
[  136.279865][T11364] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  136.288946][T11364] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  136.480019][T11382] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3217'.
[  136.489769][T11382] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3217'.
[  136.664885][T11389] loop3: detected capacity change from 0 to 2048
[  136.671646][T11389] ext4: Unknown parameter 'noacl'
[  136.902808][T11396] loop5: detected capacity change from 0 to 512
[  136.932808][T11396] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.008540][T11402] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3224'.
[  137.017646][T11402] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3224'.
[  137.026648][T11402] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3224'.
[  137.037016][T11396] ext4 filesystem being mounted at /419/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  137.063213][T11402] netlink: 'syz.9.3224': attribute type 6 has an invalid length.
[  137.090447][T11396] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.3222: corrupted inode contents
[  137.134874][T11396] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm syz.5.3222: mark_inode_dirty error
[  137.160897][T11396] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.3222: corrupted inode contents
[  137.202600][T11396] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.3222: mark_inode_dirty error
[  137.245414][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.657188][T11435] loop3: detected capacity change from 0 to 512
[  137.684134][T11435] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.716560][T11435] ext4 filesystem being mounted at /664/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  137.755631][T11435] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.3239: corrupted inode contents
[  137.787567][T11435] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.3239: mark_inode_dirty error
[  137.812816][T11435] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.3239: corrupted inode contents
[  137.826283][T11435] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.3239: mark_inode_dirty error
[  137.839734][T11447] netlink: 'syz.6.3243': attribute type 10 has an invalid length.
[  137.847782][T11447] ipvlan0: entered allmulticast mode
[  137.853144][T11447] veth0_vlan: entered allmulticast mode
[  137.885835][T11447] team0: Device ipvlan0 failed to register rx_handler
[  137.909883][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.951526][T11457] loop3: detected capacity change from 0 to 512
[  138.003097][T11457] EXT4-fs (loop3): 1 orphan inode deleted
[  138.011893][T11457] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.024832][ T3670] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:34: Failed to release dquot type 1
[  138.052861][T11457] ext4 filesystem being mounted at /665/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.084193][T11457] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.3244: iget: bad i_size value: 360287970189639690
[  138.107604][T11457] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.3244: iget: bad i_size value: 360287970189639690
[  138.139462][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.315425][   T29] kauditd_printk_skb: 94 callbacks suppressed
[  138.315441][   T29] audit: type=1400 audit(2000000056.053:3657): avc:  denied  { mounton } for  pid=11489 comm="syz.3.3261" path="/669/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1
[  138.394313][   T29] audit: type=1400 audit(2000000056.119:3658): avc:  denied  { unmount } for  pid=3321 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  138.424999][T11500] loop9: detected capacity change from 0 to 128
[  138.474007][T11496] loop7: detected capacity change from 0 to 2048
[  138.475870][T11500] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  138.481665][T11496] EXT4-fs: Ignoring removed i_version option
[  138.504620][T11500] ext4 filesystem being mounted at /16/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  138.529827][T11496] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.530236][T11500] __nla_validate_parse: 2 callbacks suppressed
[  138.530249][T11500] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3265'.
[  138.548275][T11496] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.557312][T11509] syzkaller1: entered promiscuous mode
[  138.572979][T11509] syzkaller1: entered allmulticast mode
[  138.579396][T11500] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.593738][T11500] batman_adv: batadv0: Removing interface: batadv_slave_1
[  138.624603][T11496] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.3264: bg 0: block 345: padding at end of block bitmap is not set
[  138.639270][T11496] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  138.651804][T11496] EXT4-fs (loop7): This should not happen!! Data will be lost
[  138.651804][T11496] 
[  138.676746][T10496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.704925][T11099] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  138.739872][T11517] loop9: detected capacity change from 0 to 1024
[  138.747670][T11513] loop7: detected capacity change from 0 to 8192
[  138.763842][   T29] audit: type=1400 audit(2000000056.465:3659): avc:  denied  { mount } for  pid=11512 comm="syz.7.3271" name="/" dev="loop7" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  138.769538][T11517] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.843835][   T29] audit: type=1400 audit(2000000056.530:3660): avc:  denied  { unmount } for  pid=10496 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  138.877278][T11099] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.948164][   T29] audit: type=1400 audit(2000000056.642:3661): avc:  denied  { mount } for  pid=11528 comm="syz.5.3275" name="/" dev="ramfs" ino=39157 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  139.226048][   T29] audit: type=1400 audit(2000000056.895:3662): avc:  denied  { connect } for  pid=11540 comm="syz.7.3290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  139.273233][T11546] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  139.376206][T11553] loop6: detected capacity change from 0 to 2048
[  139.410973][T11553] EXT4-fs: Ignoring removed bh option
[  139.452407][T11553] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.465822][   T29] audit: type=1400 audit(2000000057.101:3663): avc:  denied  { read } for  pid=11557 comm="syz.3.3287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  139.576206][   T29] audit: type=1400 audit(2000000057.232:3664): avc:  denied  { map } for  pid=11552 comm="syz.6.3285" path="/289/file1/file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  139.631378][T11552] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  139.658902][T11552] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  139.671171][T11552] EXT4-fs (loop6): This should not happen!! Data will be lost
[  139.671171][T11552] 
[  139.680840][T11552] EXT4-fs (loop6): Total free blocks count 0
[  139.686843][T11552] EXT4-fs (loop6): Free/Dirty block details
[  139.693089][T11552] EXT4-fs (loop6): free_blocks=2415919104
[  139.698935][T11552] EXT4-fs (loop6): dirty_blocks=1264
[  139.704248][T11552] EXT4-fs (loop6): Block reservation details
[  139.710450][T11552] EXT4-fs (loop6): i_reserved_data_blocks=79
[  139.752612][   T29] audit: type=1400 audit(2000000057.400:3665): avc:  denied  { create } for  pid=11563 comm="syz.3.3288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  139.791719][   T29] audit: type=1400 audit(2000000057.419:3666): avc:  denied  { connect } for  pid=11563 comm="syz.3.3288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  139.834742][T11562] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  140.306553][T11567] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3291'.
[  140.315644][T11567] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3291'.
[  140.761177][ T3391] Process accounting resumed
[  140.924274][T11636] loop5: detected capacity change from 0 to 1024
[  141.040817][T11636] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.129571][T11646] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  141.156299][T11648] loop3: detected capacity change from 0 to 164
[  141.193507][T11650] program syz.7.3319 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  141.208242][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.230253][T11648] bio_check_eod: 6 callbacks suppressed
[  141.230321][T11648] syz.3.3318: attempt to access beyond end of device
[  141.230321][T11648] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  141.282147][T11648] syz.3.3318: attempt to access beyond end of device
[  141.282147][T11648] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  141.459624][T11665] loop3: detected capacity change from 0 to 8192
[  141.674430][T11681] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  141.847336][T11691] loop3: detected capacity change from 0 to 512
[  141.879589][T11691] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  141.894891][T11691] EXT4-fs (loop3): mount failed
[  141.937693][ T3392] Process accounting resumed
[  142.079373][T11705] syzkaller1: entered promiscuous mode
[  142.085062][T11705] syzkaller1: entered allmulticast mode
[  142.178020][T11708] Falling back ldisc for ttyS3.
[  142.204076][T11718] loop3: detected capacity change from 0 to 512
[  142.216999][T11718] journal_path: Non-blockdev passed as './bus'
[  142.223265][T11718] EXT4-fs: error: could not find journal device path
[  142.237560][T11720] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3346'.
[  142.253545][T11720] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3346'.
[  142.270148][T11720] netlink: 2 bytes leftover after parsing attributes in process `syz.7.3346'.
[  142.325688][T11731] netlink: 'syz.7.3351': attribute type 12 has an invalid length.
[  142.455977][T11744] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  142.535470][T11753] loop5: detected capacity change from 0 to 8192
[  142.581149][T11755] netlink: 344 bytes leftover after parsing attributes in process `syz.9.3361'.
[  142.661057][T11762] loop7: detected capacity change from 0 to 2048
[  142.686205][T11762] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.755032][T11772] syz!: rxe_newlink: already configured on team_slave_0
[  142.764000][T11775] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  142.841371][T11780] gtp0: entered promiscuous mode
[  142.848564][T11778] loop6: detected capacity change from 0 to 1024
[  142.874532][T11785] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  142.891751][T11778] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.949462][T10496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.956643][T11798] loop5: detected capacity change from 0 to 164
[  142.970895][T11798] syz.5.3376: attempt to access beyond end of device
[  142.970895][T11798] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  142.985010][T11798] syz.5.3376: attempt to access beyond end of device
[  142.985010][T11798] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  143.016837][ T8048] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.385222][T11831] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  143.480257][T11841] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3387'.
[  143.528889][T11846] netlink: 'syz.3.3392': attribute type 12 has an invalid length.
[  144.210301][T11867] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3399'.
[  144.254106][T11865] netlink: 9 bytes leftover after parsing attributes in process `syz.5.3398'.
[  144.270061][   T29] kauditd_printk_skb: 118 callbacks suppressed
[  144.270075][   T29] audit: type=1326 audit(2000000061.619:3784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.9.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce4edae969 code=0x7ffc0000
[  144.283827][T11865] 0��{X��: entered promiscuous mode
[  144.306420][T11865] 0��{X��: left allmulticast mode
[  144.318733][   T29] audit: type=1326 audit(2000000061.657:3785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.9.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fce4edae969 code=0x7ffc0000
[  144.342377][   T29] audit: type=1326 audit(2000000061.657:3786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.9.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce4edae969 code=0x7ffc0000
[  144.366054][   T29] audit: type=1326 audit(2000000061.657:3787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.9.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fce4edae969 code=0x7ffc0000
[  144.389470][   T29] audit: type=1326 audit(2000000061.657:3788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.9.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce4edae969 code=0x7ffc0000
[  144.413129][   T29] audit: type=1326 audit(2000000061.657:3789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.9.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fce4edae969 code=0x7ffc0000
[  144.436582][   T29] audit: type=1326 audit(2000000061.657:3790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11870 comm="syz.9.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce4edae969 code=0x7ffc0000
[  144.630806][T11879] loop9: detected capacity change from 0 to 164
[  144.638380][T11877] loop3: detected capacity change from 0 to 2048
[  144.650446][   T29] audit: type=1400 audit(2000000061.975:3791): avc:  denied  { tracepoint } for  pid=11880 comm="syz.5.3406" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  144.676281][T11879] ISOFS: unable to read i-node block
[  144.681678][T11879] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  144.682281][   T29] audit: type=1400 audit(2000000062.003:3792): avc:  denied  { write } for  pid=11881 comm="syz.7.3405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  144.731516][T11877] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.851091][T11895] loop9: detected capacity change from 0 to 164
[  144.906117][T11897] loop7: detected capacity change from 0 to 8192
[  144.923815][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.046836][   T29] audit: type=1400 audit(2000000062.349:3793): avc:  denied  { setopt } for  pid=11910 comm="syz.6.3421" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  145.425181][T11952] loop3: detected capacity change from 0 to 164
[  145.466140][T11952] syz.3.3434: attempt to access beyond end of device
[  145.466140][T11952] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  145.483313][T11952] syz.3.3434: attempt to access beyond end of device
[  145.483313][T11952] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  145.497776][T11954] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3436'.
[  145.557602][T11965] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.572833][T11965] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  145.586671][T11969] loop3: detected capacity change from 0 to 164
[  145.627910][T11977] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3446'.
[  145.639344][T11974] netlink: 9 bytes leftover after parsing attributes in process `syz.7.3454'.
[  145.666237][T11976] loop6: detected capacity change from 0 to 2048
[  145.678431][T11974] gretap0: entered promiscuous mode
[  145.705609][T11977] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3446'.
[  145.730099][T11976] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.867994][T11985] loop3: detected capacity change from 0 to 1024
[  145.878696][T11985] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  145.889672][T11985] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  145.908213][T11985] JBD2: no valid journal superblock found
[  145.914044][T11985] EXT4-fs (loop3): Could not load journal inode
[  145.937355][T11985] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  145.968360][ T8048] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.043807][T12002] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3455'.
[  146.224680][T12016] loop5: detected capacity change from 0 to 512
[  146.235141][T12016] ext3: Bad value for 'debug_want_extra_isize'
[  146.371155][T12030] netlink: 27 bytes leftover after parsing attributes in process `syz.6.3468'.
[  146.440305][T12035] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3470'.
[  146.454639][T12035] hsr_slave_0: left promiscuous mode
[  146.461975][T12035] hsr_slave_1: left promiscuous mode
[  146.523409][T12044] loop6: detected capacity change from 0 to 128
[  146.541867][T12044] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  146.568666][T12044] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  146.568851][T12050] tipc: Failed to remove unknown binding: 66,1,1/0:181072154/181072156
[  146.602425][T12050] tipc: Failed to remove unknown binding: 66,1,1/0:181072154/181072156
[  146.611381][T12050] tipc: Failed to remove unknown binding: 66,1,1/0:181072154/181072156
[  146.621321][T12044] netlink: 'syz.6.3474': attribute type 13 has an invalid length.
[  147.048033][T12053] loop3: detected capacity change from 0 to 164
[  147.086493][T12053] ISOFS: unable to read i-node block
[  147.091822][T12053] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  147.283060][ T3584] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  147.284956][T12077] loop3: detected capacity change from 0 to 2048
[  147.298577][T12077] EXT4-fs: Ignoring removed i_version option
[  147.305088][ T3584] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  147.321630][T12077] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.334156][T12077] ext4 filesystem being mounted at /711/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.375520][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.542807][T12091] lo: left promiscuous mode
[  147.547429][T12091] lo: left allmulticast mode
[  147.560149][T12091] ip6gre1: left allmulticast mode
[  147.613962][T12093] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.627416][T12093] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  147.747121][T12099] loop3: detected capacity change from 0 to 1024
[  147.760729][T12099] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.776128][T12099] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  147.792080][T12099] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  147.804327][T12099] EXT4-fs (loop3): This should not happen!! Data will be lost
[  147.804327][T12099] 
[  147.814081][T12099] EXT4-fs (loop3): Total free blocks count 0
[  147.820087][T12099] EXT4-fs (loop3): Free/Dirty block details
[  147.826005][T12099] EXT4-fs (loop3): free_blocks=68451041280
[  147.831842][T12099] EXT4-fs (loop3): dirty_blocks=80
[  147.836980][T12099] EXT4-fs (loop3): Block reservation details
[  147.842999][T12099] EXT4-fs (loop3): i_reserved_data_blocks=5
[  147.850912][T12102] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  148.267865][T12129] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.3507'.
[  148.350527][T12135] loop3: detected capacity change from 0 to 259
[  148.419961][T12149] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  148.429327][T12149] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.414704][T12189] loop5: detected capacity change from 0 to 1024
[  149.427115][T12189] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  149.438065][T12189] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  149.489962][T12189] JBD2: no valid journal superblock found
[  149.495748][T12189] EXT4-fs (loop5): Could not load journal inode
[  149.505344][T12198] loop9: detected capacity change from 0 to 128
[  149.531999][T12198] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  149.569045][ T3670] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  149.578591][T12189] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  149.669174][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.677021][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.684794][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.692664][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.697455][   T29] kauditd_printk_skb: 60 callbacks suppressed
[  149.697470][   T29] audit: type=1326 audit(2000000066.699:3854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.700994][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.706499][   T29] audit: type=1326 audit(2000000066.699:3855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.729960][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.737708][   T29] audit: type=1326 audit(2000000066.699:3856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.761131][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.768849][   T29] audit: type=1326 audit(2000000066.699:3857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.792864][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.800419][   T29] audit: type=1326 audit(2000000066.699:3858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.823798][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.831532][   T29] audit: type=1326 audit(2000000066.699:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.855079][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.862763][   T29] audit: type=1326 audit(2000000066.699:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.886251][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.893900][   T29] audit: type=1326 audit(2000000066.699:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.917337][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.925030][   T29] audit: type=1326 audit(2000000066.699:3862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.948501][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.948526][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.948648][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  149.956281][   T29] audit: type=1326 audit(2000000066.699:3863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12223 comm="syz.7.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  149.979719][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.034704][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.042465][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.050246][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.058027][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.065782][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.065902][T12226] loop5: detected capacity change from 0 to 512
[  150.073544][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.073572][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.095386][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.103209][ T3391] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  150.119166][ T3391] hid-generic 0000:0000:20000000.000C: hidraw0: <UNKNOWN> HID v0.01 Device [syz0] on syz1
[  150.160605][T12226] EXT4-fs (loop5): too many log groups per flexible block group
[  150.168402][T12226] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  150.176086][T12226] EXT4-fs (loop5): mount failed
[  150.373853][T12256] wg2: entered promiscuous mode
[  150.378964][T12256] wg2: entered allmulticast mode
[  150.457855][T12203] Set syz1 is full, maxelem 65536 reached
[  150.548443][T12284] loop9: detected capacity change from 0 to 512
[  150.555512][T12284] EXT4-fs: Ignoring removed nobh option
[  150.571847][T12284] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -13
[  150.593761][T12284] EXT4-fs error (device loop9): ext4_clear_blocks:876: inode #13: comm syz.9.3544: attempt to clear invalid blocks 2 len 1
[  150.607525][T12284] EXT4-fs (loop9): Remounting filesystem read-only
[  150.622573][T12284] EXT4-fs (loop9): 1 truncate cleaned up
[  150.628711][T12284] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.680053][T11099] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.689219][T12300] loop7: detected capacity change from 0 to 1024
[  150.699042][T12305] $H�: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  150.711520][T12305] $H�: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  150.726090][T12305] $H�: (slave ipvlan2): Error -95 calling set_mac_address
[  150.736855][T12300] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  150.747811][T12300] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  150.769050][T12300] JBD2: no valid journal superblock found
[  150.774945][T12300] EXT4-fs (loop7): Could not load journal inode
[  150.882887][T12300] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  151.140309][T12376] ref_ctr increment failed for inode: 0x18c offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88811941a840
[  151.152728][T12375] uprobe: syz.9.3563:12375 failed to unregister, leaking uprobe
[  151.340557][T12383] loop9: detected capacity change from 0 to 1024
[  151.347958][T12383] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  151.359045][T12383] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  151.371294][T12383] JBD2: no valid journal superblock found
[  151.377057][T12383] EXT4-fs (loop9): Could not load journal inode
[  151.388309][T12383] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  151.523720][T12401] __nla_validate_parse: 1 callbacks suppressed
[  151.523737][T12401] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3574'.
[  151.732508][T12409] loop9: detected capacity change from 0 to 512
[  151.740394][T12409] EXT4-fs (loop9): VFS: Can't find ext4 filesystem
[  151.773844][ T3390] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  151.791295][ T3390] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  151.945536][T12420] ref_ctr increment failed for inode: 0xa4f offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88810005d640
[  152.027751][T12418] uprobe: syz.5.3582:12418 failed to unregister, leaking uprobe
[  152.477536][T12469] netlink: 'syz.5.3604': attribute type 16 has an invalid length.
[  152.485450][T12469] netlink: 'syz.5.3604': attribute type 17 has an invalid length.
[  152.521434][T12469] 8021q: adding VLAN 0 to HW filter on device $H�
[  152.544964][T12469] 8021q: adding VLAN 0 to HW filter on device team0
[  152.591823][T12469] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  152.814835][T12472] Set syz1 is full, maxelem 65536 reached
[  152.821016][T12492] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3612'.
[  152.833453][T12492] hsr_slave_1 (unregistering): left promiscuous mode
[  152.949488][T12506] loop6: detected capacity change from 0 to 2048
[  152.956658][T12506] EXT4-fs: Ignoring removed i_version option
[  152.962730][T12506] ext4: Unknown parameter 'obj_role'
[  153.082369][T12529] loop9: detected capacity change from 0 to 256
[  153.225669][T12537] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3634'.
[  153.469526][T12552] loop3: detected capacity change from 0 to 1024
[  153.488492][T12552] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.513517][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.529030][T12523] Set syz1 is full, maxelem 65536 reached
[  153.538851][T12557] netlink: 'syz.3.3642': attribute type 4 has an invalid length.
[  153.676066][T12580] loop3: detected capacity change from 0 to 1024
[  153.685773][T12580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.723416][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.738758][T12585] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(5)
[  153.745365][T12585] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  153.753892][T12585] vhci_hcd vhci_hcd.0: Device attached
[  153.771626][T12586] vhci_hcd: connection closed
[  153.771781][ T3684] vhci_hcd: stop threads
[  153.781546][ T3684] vhci_hcd: release socket
[  153.785977][ T3684] vhci_hcd: disconnect device
[  153.800044][T12589] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3656'.
[  153.983052][T12591] chnl_net:caif_netlink_parms(): no params data found
[  154.033812][T12591] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.041085][T12591] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.048775][T12591] bridge_slave_0: entered allmulticast mode
[  154.056242][T12591] bridge_slave_0: entered promiscuous mode
[  154.063186][T12591] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.070383][T12591] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.077773][T12591] bridge_slave_1: entered allmulticast mode
[  154.084428][T12591] bridge_slave_1: entered promiscuous mode
[  154.156271][T12591] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.167597][T12591] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.197386][T12591] team0: Port device team_slave_0 added
[  154.216388][T12591] team0: Port device team_slave_1 added
[  154.225014][T12622] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3665'.
[  154.303161][ T3647] team0 (unregistering): Port device team_slave_1 removed
[  154.314187][ T3647] team0 (unregistering): Port device team_slave_0 removed
[  154.353502][T12591] batman_adv: batadv0: Adding interface: batadv_slave_0
[  154.360508][T12591] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.386561][T12591] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.403838][T12591] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.410893][T12591] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.437045][T12591] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.459262][T12639] loop7: detected capacity change from 0 to 1024
[  154.471989][T12639] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.473792][T12591] hsr_slave_0: entered promiscuous mode
[  154.489971][T12639] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000.
[  154.490320][T12591] hsr_slave_1: entered promiscuous mode
[  154.514610][T12591] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  154.523485][T10496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.533359][T12591] Cannot create hsr debugfs directory
[  154.607772][T12648] loop7: detected capacity change from 0 to 512
[  154.632314][T12648] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.645519][T12648] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.882739][T12591] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  154.901817][T12591] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  154.921300][T12591] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  154.943852][T12591] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  154.990459][T12591] 8021q: adding VLAN 0 to HW filter on device bond0
[  155.005685][T12591] 8021q: adding VLAN 0 to HW filter on device team0
[  155.015272][ T3687] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.022397][ T3687] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.034434][ T3651] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.041689][ T3651] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.050523][   T29] kauditd_printk_skb: 619 callbacks suppressed
[  155.050536][   T29] audit: type=1326 audit(2000000071.704:4483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f60ab465927 code=0x7ffc0000
[  155.080162][   T29] audit: type=1326 audit(2000000071.704:4484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f60ab40ab39 code=0x7ffc0000
[  155.103689][   T29] audit: type=1326 audit(2000000071.704:4485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f60ab46e969 code=0x7ffc0000
[  155.128749][   T29] audit: type=1326 audit(2000000071.779:4486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f60ab465927 code=0x7ffc0000
[  155.152307][   T29] audit: type=1326 audit(2000000071.779:4487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f60ab40ab39 code=0x7ffc0000
[  155.157752][T12591] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  155.175793][   T29] audit: type=1326 audit(2000000071.779:4488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f60ab46e969 code=0x7ffc0000
[  155.187450][   T29] audit: type=1326 audit(2000000071.779:4489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f60ab465927 code=0x7ffc0000
[  155.233128][   T29] audit: type=1326 audit(2000000071.779:4490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f60ab40ab39 code=0x7ffc0000
[  155.256738][   T29] audit: type=1326 audit(2000000071.779:4491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f60ab46e969 code=0x7ffc0000
[  155.276706][T12591] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.280121][   T29] audit: type=1326 audit(2000000071.789:4492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12694 comm="syz.3.3678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f60ab465927 code=0x7ffc0000
[  155.403767][T12741] 8021q: adding VLAN 0 to HW filter on device batadv1
[  155.413116][T12741] team0: Port device batadv1 added
[  155.474249][T12591] veth0_vlan: entered promiscuous mode
[  155.487642][T12591] veth1_vlan: entered promiscuous mode
[  155.508928][T12591] veth0_macvtap: entered promiscuous mode
[  155.516499][T12591] veth1_macvtap: entered promiscuous mode
[  155.530005][T12591] batman_adv: batadv0: Interface activated: batadv_slave_0
[  155.543664][T12591] batman_adv: batadv0: Interface activated: batadv_slave_1
[  155.554235][T12591] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.563086][T12591] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.571867][T12591] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.580608][T12591] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.885239][T12804] loop3: detected capacity change from 0 to 2048
[  155.893591][T12804] EXT4-fs: Ignoring removed i_version option
[  155.899731][T12804] ext4: Unknown parameter 'obj_role'
[  155.970644][T12814] loop3: detected capacity change from 0 to 164
[  155.979710][T12814] syz.3.3688: attempt to access beyond end of device
[  155.979710][T12814] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  155.993853][T12814] syz.3.3688: attempt to access beyond end of device
[  155.993853][T12814] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  156.073937][T12818] pim6reg1: entered promiscuous mode
[  156.079313][T12818] pim6reg1: entered allmulticast mode
[  156.471150][   T23] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  156.483577][T12839] loop3: detected capacity change from 0 to 1024
[  156.492661][   T23] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  156.527864][T12848] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3705'.
[  156.541626][T12847] pim6reg1: entered promiscuous mode
[  156.547145][T12847] pim6reg1: entered allmulticast mode
[  156.581441][T12850] loop5: detected capacity change from 0 to 256
[  156.588948][T12850] FAT-fs (loop5): bogus number of FAT sectors
[  156.595294][T12850] FAT-fs (loop5): Can't find a valid FAT filesystem
[  156.654376][T12856] netlink: 'syz.3.3709': attribute type 5 has an invalid length.
[  156.662265][T12856] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3709'.
[  156.691176][T12859] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3710'.
[  156.704533][T12863] loop5: detected capacity change from 0 to 164
[  156.714168][T12863] syz.5.3711: attempt to access beyond end of device
[  156.714168][T12863] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  156.728261][T12863] syz.5.3711: attempt to access beyond end of device
[  156.728261][T12863] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  156.747507][ T1031] usb usb8-port2: attempt power cycle
[  156.785440][T12868] vcan0: entered allmulticast mode
[  156.792351][T12868] vcan0: left allmulticast mode
[  156.820792][T12873] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3716'.
[  156.991781][T12892] netlink: 'syz.9.3720': attribute type 10 has an invalid length.
[  156.999746][T12892] netlink: 40 bytes leftover after parsing attributes in process `syz.9.3720'.
[  157.009621][T12892] batman_adv: batadv0: Adding interface: vlan0
[  157.015949][T12892] batman_adv: batadv0: The MTU of interface vlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  157.041925][T12892] batman_adv: batadv0: Interface activated: vlan0
[  157.066340][T12894] pim6reg1: entered promiscuous mode
[  157.071770][T12894] pim6reg1: entered allmulticast mode
[  157.328218][T12906] loop9: detected capacity change from 0 to 128
[  157.425858][T12905] syz.9.3726: attempt to access beyond end of device
[  157.425858][T12905] loop9: rw=2049, sector=145, nr_sectors = 896 limit=128
[  157.446051][T12905] syz.9.3726: attempt to access beyond end of device
[  157.446051][T12905] loop9: rw=524288, sector=145, nr_sectors = 224 limit=128
[  157.460077][T12905] syz.9.3726: attempt to access beyond end of device
[  157.460077][T12905] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[  157.473449][T12905] syz.9.3726: attempt to access beyond end of device
[  157.473449][T12905] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[  157.486813][T12905] syz.9.3726: attempt to access beyond end of device
[  157.486813][T12905] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[  157.752680][T12916] vhci_hcd: invalid port number 94
[  157.757884][T12916] vhci_hcd: default hub control req: 0017 v007f i005e l0
[  157.831962][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  157.839563][T12924] loop6: detected capacity change from 0 to 1024
[  157.840966][   T23] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  157.962653][T12932] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3735'.
[  157.975765][T12932] xfrm1: entered promiscuous mode
[  157.981134][T12932] xfrm1: entered allmulticast mode
[  158.028098][T12936] SELinux: failed to load policy
[  158.048420][T12938] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3739'.
[  158.059800][T12938] ip6gre2: entered allmulticast mode
[  158.218400][ T3584] Process accounting resumed
[  158.381699][T12968] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3753'.
[  158.443488][T12974] netlink: 'syz.5.3757': attribute type 11 has an invalid length.
[  158.543379][T12984] loop9: detected capacity change from 0 to 1024
[  158.550101][T12984] EXT4-fs: Ignoring removed i_version option
[  158.556406][T12984] EXT4-fs: Ignoring removed mblk_io_submit option
[  158.562911][T12984] EXT4-fs: Ignoring removed nobh option
[  158.568542][T12984] EXT4-fs: Ignoring removed bh option
[  158.576395][T12984] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.600691][T11099] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.735574][ T1031] usb usb8-port2: unable to enumerate USB device
[  158.742111][T12648] usb usb8: usbfs: process 12648 (syz.7.3675) did not claim interface 0 before use
[  158.759185][T10496] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.844175][T13005] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.920717][T13005] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.985182][T13005] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.045106][T13005] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.057114][T13015] netlink: 'syz.5.3775': attribute type 10 has an invalid length.
[  159.064954][T13015] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3775'.
[  159.082399][T13015] team0: entered promiscuous mode
[  159.087731][T13015] team_slave_0: entered promiscuous mode
[  159.093630][T13015] team_slave_1: entered promiscuous mode
[  159.099473][T13015] geneve1: entered promiscuous mode
[  159.104799][T13015] batadv1: entered promiscuous mode
[  159.136375][T13018] all: renamed from lo (while UP)
[  159.165957][T13005] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  159.196430][T13005] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  159.226956][T13005] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  159.244340][T13005] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.253813][T13026] netlink: 96 bytes leftover after parsing attributes in process `syz.6.3780'.
[  159.280160][T13026] netlink: 96 bytes leftover after parsing attributes in process `syz.6.3780'.
[  159.490509][T13041] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3787'.
[  159.531941][T13041] hsr_slave_0: left promiscuous mode
[  159.553568][T13041] hsr_slave_1: left promiscuous mode
[  159.776712][T13060] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27745 sclass=netlink_route_socket pid=13060 comm=syz.6.3789
[  159.831271][T13063] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13063 comm=syz.6.3793
[  159.872854][T13069] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3796'.
[  159.882806][T13069] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3796'.
[  160.030510][T13081] all: renamed from lo (while UP)
[  160.194143][T13094] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  160.251791][T13094] tipc: Resetting bearer <eth:syzkaller0>
[  160.261694][T13093] tipc: Disabling bearer <eth:syzkaller0>
[  160.289009][T13098] loop3: detected capacity change from 0 to 1764
[  160.374145][T13107] loop6: detected capacity change from 0 to 512
[  160.399296][T13107] EXT4-fs (loop6): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  160.415947][T13107] netlink: 'syz.6.3814': attribute type 2 has an invalid length.
[  160.423784][T13107] netlink: 'syz.6.3814': attribute type 1 has an invalid length.
[  160.451692][T13113] all: renamed from lo
[  160.455882][   T29] kauditd_printk_skb: 268 callbacks suppressed
[  160.455897][   T29] audit: type=1400 audit(2000000076.756:4761): avc:  denied  { write } for  pid=13112 comm="syz.5.3817" name="tcp" dev="proc" ino=4026533410 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  160.498269][T12591] EXT4-fs (loop6): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  160.557942][T13124] IPVS: Error connecting to the multicast addr
[  160.716565][   T36] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  160.739986][   T36] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  160.757891][T13143] loop7: detected capacity change from 0 to 512
[  160.767026][T13143] EXT4-fs (loop7): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  160.783552][T13143] netlink: 'syz.7.3830': attribute type 2 has an invalid length.
[  160.791385][T13143] netlink: 'syz.7.3830': attribute type 1 has an invalid length.
[  160.836076][T13150] all: renamed from lo (while UP)
[  160.967412][T13179] loop9: detected capacity change from 0 to 2048
[  161.446479][ T3687] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  161.463265][ T3687] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  161.475815][ T3687] EXT4-fs (loop9): This should not happen!! Data will be lost
[  161.475815][ T3687] 
[  161.485586][ T3687] EXT4-fs (loop9): Total free blocks count 0
[  161.491679][ T3687] EXT4-fs (loop9): Free/Dirty block details
[  161.497721][ T3687] EXT4-fs (loop9): free_blocks=2415919504
[  161.503568][ T3687] EXT4-fs (loop9): dirty_blocks=16400
[  161.509004][ T3687] EXT4-fs (loop9): Block reservation details
[  161.515025][ T3687] EXT4-fs (loop9): i_reserved_data_blocks=1025
[  161.549563][ T3687] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  161.562559][ T3687] EXT4-fs (loop9): This should not happen!! Data will be lost
[  161.562559][ T3687] 
[  161.668199][T13285] hsr_slave_0: left promiscuous mode
[  161.737116][   T29] audit: type=1400 audit(2000000077.963:4762): avc:  denied  { read } for  pid=13292 comm="syz.5.3844" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  161.761711][   T29] audit: type=1400 audit(2000000077.963:4763): avc:  denied  { open } for  pid=13292 comm="syz.5.3844" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  161.827212][   T29] audit: type=1326 audit(2000000078.047:4764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13297 comm="syz.9.3838" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fce4edae969 code=0x0
[  161.828264][T13293] team_slave_0: left promiscuous mode
[  161.856178][T13293] team0 (unregistering): Port device team_slave_0 removed
[  161.863640][T13293] team_slave_1: left promiscuous mode
[  161.869815][T13293] team0 (unregistering): Port device team_slave_1 removed
[  161.877388][T13293] geneve1: left promiscuous mode
[  161.883357][T13293] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  161.891815][T13293] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  161.900234][T13293] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  161.908749][T13293] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  161.930746][T13293] team0 (unregistering): Port device geneve1 removed
[  161.940131][   T29] audit: type=1326 audit(2000000078.150:4765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13301 comm="syz.7.3846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  161.944011][T13293] batadv1: left promiscuous mode
[  161.966729][   T29] audit: type=1326 audit(2000000078.178:4766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13301 comm="syz.7.3846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  161.992222][   T29] audit: type=1326 audit(2000000078.178:4767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13301 comm="syz.7.3846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  162.015886][   T29] audit: type=1326 audit(2000000078.178:4768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13301 comm="syz.7.3846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  162.039391][   T29] audit: type=1326 audit(2000000078.178:4769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13301 comm="syz.7.3846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  162.063025][   T29] audit: type=1326 audit(2000000078.178:4770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13301 comm="syz.7.3846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  162.091265][T13293] team0 (unregistering): Port device batadv1 removed
[  162.542119][T13326] netlink: 'syz.3.3854': attribute type 10 has an invalid length.
[  162.549986][T13326] __nla_validate_parse: 5 callbacks suppressed
[  162.550003][T13326] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3854'.
[  162.565549][T13326] dummy0: entered promiscuous mode
[  162.571420][T13326] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  162.756284][T13336] netlink: 'syz.3.3858': attribute type 10 has an invalid length.
[  162.764175][T13336] netlink: 'syz.3.3858': attribute type 19 has an invalid length.
[  162.772293][T13336] netlink: 156 bytes leftover after parsing attributes in process `syz.3.3858'.
[  162.786335][T13337] loop9: detected capacity change from 0 to 2048
[  162.880032][T13337] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  162.907740][T13337] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1998 with error 28
[  162.920368][T13337] EXT4-fs (loop9): This should not happen!! Data will be lost
[  162.920368][T13337] 
[  162.930092][T13337] EXT4-fs (loop9): Total free blocks count 0
[  162.936131][T13337] EXT4-fs (loop9): Free/Dirty block details
[  162.942039][T13337] EXT4-fs (loop9): free_blocks=2415919104
[  162.948085][T13337] EXT4-fs (loop9): dirty_blocks=2000
[  162.953496][T13337] EXT4-fs (loop9): Block reservation details
[  162.959532][T13337] EXT4-fs (loop9): i_reserved_data_blocks=125
[  162.965285][T13351] loop7: detected capacity change from 0 to 512
[  162.972745][T13351] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  163.063110][T13359] loop7: detected capacity change from 0 to 1024
[  163.071622][T13359] EXT4-fs: Ignoring removed i_version option
[  163.077798][T13361] loop6: detected capacity change from 0 to 1024
[  163.092457][T13361] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.3867: Allocating blocks 497-513 which overlap fs metadata
[  163.111509][T13361] EXT4-fs (loop6): pa ffff88810662f690: logic 16, phys. 145, len 23
[  163.119699][T13361] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  163.131904][T13361] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  163.144172][T13361] EXT4-fs (loop6): This should not happen!! Data will be lost
[  163.144172][T13361] 
[  163.153904][T13361] EXT4-fs (loop6): Total free blocks count 0
[  163.160026][T13361] EXT4-fs (loop6): Free/Dirty block details
[  163.165979][T13361] EXT4-fs (loop6): free_blocks=16
[  163.171052][T13361] EXT4-fs (loop6): dirty_blocks=0
[  163.176137][T13361] EXT4-fs (loop6): Block reservation details
[  163.182160][T13361] EXT4-fs (loop6): i_reserved_data_blocks=0
[  163.232769][T13370] xt_hashlimit: max too large, truncated to 1048576
[  163.300077][T13382] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3874'.
[  163.432475][T13401] loop5: detected capacity change from 0 to 1024
[  163.467706][T13401] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4113: comm syz.5.3883: Allocating blocks 497-513 which overlap fs metadata
[  163.509428][T13401] EXT4-fs (loop5): pa ffff88810662f690: logic 16, phys. 145, len 23
[  163.517586][T13401] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  163.535368][T13409] xt_hashlimit: max too large, truncated to 1048576
[  163.575198][T13401] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  163.587562][T13401] EXT4-fs (loop5): This should not happen!! Data will be lost
[  163.587562][T13401] 
[  163.597344][T13401] EXT4-fs (loop5): Total free blocks count 0
[  163.603381][T13401] EXT4-fs (loop5): Free/Dirty block details
[  163.609294][T13401] EXT4-fs (loop5): free_blocks=16
[  163.614367][T13401] EXT4-fs (loop5): dirty_blocks=0
[  163.619465][T13401] EXT4-fs (loop5): Block reservation details
[  163.625478][T13401] EXT4-fs (loop5): i_reserved_data_blocks=0
[  163.662790][T13417] bridge: RTM_NEWNEIGH with invalid ether address
[  163.726313][T13419] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[  163.787122][T13430] loop6: detected capacity change from 0 to 512
[  163.793745][T13431] loop7: detected capacity change from 0 to 128
[  163.805933][T13430] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.909594][T13445] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  163.960030][T13413] syz.7.3888: attempt to access beyond end of device
[  163.960030][T13413] loop7: rw=2049, sector=145, nr_sectors = 896 limit=128
[  163.980633][T13413] syz.7.3888: attempt to access beyond end of device
[  163.980633][T13413] loop7: rw=524288, sector=145, nr_sectors = 224 limit=128
[  163.994878][T13413] syz.7.3888: attempt to access beyond end of device
[  163.994878][T13413] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  164.008522][T13413] syz.7.3888: attempt to access beyond end of device
[  164.008522][T13413] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  164.021847][T13413] syz.7.3888: attempt to access beyond end of device
[  164.021847][T13413] loop7: rw=0, sector=145, nr_sectors = 8 limit=128
[  164.902621][T13479] batman_adv: batadv0: Adding interface: dummy0
[  164.908983][T13479] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.937096][T13479] batman_adv: batadv0: Interface activated: dummy0
[  164.964189][T13479] batadv0: mtu less than device minimum
[  164.970371][T13479] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  164.981127][T13479] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  164.992108][T13479] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  165.002865][T13479] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  165.013570][T13479] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  165.024371][T13479] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  165.035323][T13479] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  165.087882][T13489] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  165.087882][T13489]    program syz.5.3920 not setting count and/or reply_len properly
[  165.281558][T13515] sit0: entered allmulticast mode
[  165.292403][T13515] sit0: entered promiscuous mode
[  165.324413][T13516] netlink: 2028 bytes leftover after parsing attributes in process `syz.5.3926'.
[  165.333651][T13516] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3926'.
[  165.397480][T13521] 9pnet: p9_errstr2errno: server reported unknown error �@�L��	O�!��L�8iHѡ
[  165.476756][T13529] netlink: 'syz.9.3936': attribute type 13 has an invalid length.
[  165.572823][T13529] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.580246][T13529] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.662752][T13529] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  165.711289][T13529] batman_adv: batadv0: Interface deactivated: vlan0
[  165.764284][T13529] netdevsim netdevsim9 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.772887][T13529] netdevsim netdevsim9 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.781471][T13529] netdevsim netdevsim9 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.789953][T13529] netdevsim netdevsim9 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  166.086786][   T29] kauditd_printk_skb: 370 callbacks suppressed
[  166.086804][   T29] audit: type=1326 audit(2000000082.032:5141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.117081][   T29] audit: type=1326 audit(2000000082.032:5142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.141016][   T29] audit: type=1326 audit(2000000082.032:5143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.164870][   T29] audit: type=1326 audit(2000000082.032:5144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.188850][   T29] audit: type=1326 audit(2000000082.032:5145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.212677][   T29] audit: type=1326 audit(2000000082.032:5146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.236578][   T29] audit: type=1326 audit(2000000082.032:5147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.260219][   T29] audit: type=1326 audit(2000000082.032:5148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.283796][   T29] audit: type=1326 audit(2000000082.032:5149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.307283][   T29] audit: type=1326 audit(2000000082.032:5150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13584 comm="syz.7.3951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f98b447e969 code=0x7ffc0000
[  166.336734][T13581] loop9: detected capacity change from 0 to 512
[  166.359149][T13581] EXT4-fs warning (device loop9): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  166.386320][T13581] EXT4-fs (loop9): mount failed
[  166.439269][T13600] loop6: detected capacity change from 0 to 1024
[  166.488213][T13600] EXT4-fs mount: 15 callbacks suppressed
[  166.488236][T13600] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.525856][T12591] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.605873][T13621] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3966'.
[  166.615287][T13621] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3966'.
[  166.648546][T13625] lo speed is unknown, defaulting to 1000
[  166.654836][T13625] lo speed is unknown, defaulting to 1000
[  166.660257][T13627] loop5: detected capacity change from 0 to 128
[  166.663130][T13625] lo speed is unknown, defaulting to 1000
[  166.667369][T13627] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  166.674689][T13625] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  166.693869][T13627] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  166.707945][T13625] lo speed is unknown, defaulting to 1000
[  166.716174][T13625] lo speed is unknown, defaulting to 1000
[  166.723291][T13625] lo speed is unknown, defaulting to 1000
[  166.729335][T13625] lo speed is unknown, defaulting to 1000
[  166.737249][T13631] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3971'.
[  166.737328][T13625] lo speed is unknown, defaulting to 1000
[  166.828136][ T3647] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  166.966624][T13636] netlink: 'syz.6.3973': attribute type 21 has an invalid length.
[  167.336735][T13675] loop6: detected capacity change from 0 to 1024
[  167.363845][T13675] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.435580][T12591] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.881161][T13771] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.890786][T13771] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  169.511912][T13814] loop3: detected capacity change from 0 to 512
[  169.518885][T13814] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  169.528006][T13814] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  169.538845][T13814] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  169.548341][T13814] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  169.556608][T13814] System zones: 0-2, 18-18, 34-34
[  169.565087][T13814] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.4048: iget: bad i_size value: 360287970189639680
[  169.585070][T13814] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.4048: couldn't read orphan inode 15 (err -117)
[  169.605337][T13814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.650444][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.689823][T13829] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4046'.
[  169.698913][T13829] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4046'.
[  169.808495][T13840] loop9: detected capacity change from 0 to 512
[  169.816940][T13840] EXT4-fs error (device loop9): ext4_orphan_get:1393: inode #15: comm syz.9.4057: casefold flag without casefold feature
[  169.829909][T13840] EXT4-fs error (device loop9): ext4_orphan_get:1398: comm syz.9.4057: couldn't read orphan inode 15 (err -117)
[  169.843749][T13840] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.870208][T11099] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.887811][T13846] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4060'.
[  170.041712][T13862] loop6: detected capacity change from 0 to 2048
[  170.042095][T13857] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  170.058827][T13857] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  170.076270][T13862] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.302320][T12591] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.340375][T13884] loop3: detected capacity change from 0 to 128
[  170.431265][T13884] syz.3.4076: attempt to access beyond end of device
[  170.431265][T13884] loop3: rw=2049, sector=145, nr_sectors = 8 limit=128
[  170.449070][T13884] syz.3.4076: attempt to access beyond end of device
[  170.449070][T13884] loop3: rw=2049, sector=161, nr_sectors = 8 limit=128
[  170.464005][T13884] syz.3.4076: attempt to access beyond end of device
[  170.464005][T13884] loop3: rw=2049, sector=177, nr_sectors = 8 limit=128
[  170.477981][T13884] syz.3.4076: attempt to access beyond end of device
[  170.477981][T13884] loop3: rw=2049, sector=193, nr_sectors = 8 limit=128
[  170.479501][T13892] loop5: detected capacity change from 0 to 8192
[  170.491674][T13884] syz.3.4076: attempt to access beyond end of device
[  170.491674][T13884] loop3: rw=2049, sector=209, nr_sectors = 8 limit=128
[  170.511590][T13884] syz.3.4076: attempt to access beyond end of device
[  170.511590][T13884] loop3: rw=2049, sector=225, nr_sectors = 8 limit=128
[  170.555752][T13884] syz.3.4076: attempt to access beyond end of device
[  170.555752][T13884] loop3: rw=2049, sector=241, nr_sectors = 8 limit=128
[  170.573769][T13884] syz.3.4076: attempt to access beyond end of device
[  170.573769][T13884] loop3: rw=2049, sector=257, nr_sectors = 8 limit=128
[  170.590932][T13884] syz.3.4076: attempt to access beyond end of device
[  170.590932][T13884] loop3: rw=2049, sector=273, nr_sectors = 8 limit=128
[  170.606529][T13884] syz.3.4076: attempt to access beyond end of device
[  170.606529][T13884] loop3: rw=2049, sector=289, nr_sectors = 8 limit=128
[  170.738388][T13897] ==================================================================
[  170.746513][T13897] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs
[  170.753636][T13897] 
[  170.755961][T13897] write to 0xffff88817441a64c of 2 bytes by task 13892 on cpu 0:
[  170.763683][T13897]  fat16_ent_put+0x28/0x60
[  170.768118][T13897]  fat_alloc_clusters+0x4d1/0xa80
[  170.773166][T13897]  fat_get_block+0x258/0x5e0
[  170.777768][T13897]  __block_write_begin_int+0x3fd/0xf90
[  170.780237][T13909] lo speed is unknown, defaulting to 1000
[  170.783263][T13897]  cont_write_begin+0x5fc/0x970
[  170.783288][T13897]  fat_write_begin+0x4f/0xe0
[  170.783316][T13897]  generic_perform_write+0x181/0x490
[  170.783338][T13897]  __generic_file_write_iter+0x9e/0x120
[  170.783358][T13897]  generic_file_write_iter+0x8d/0x2f0
[  170.814740][T13897]  vfs_write+0x4a0/0x8e0
[  170.818996][T13897]  ksys_write+0xda/0x1a0
[  170.823250][T13897]  __x64_sys_write+0x40/0x50
[  170.827849][T13897]  x64_sys_call+0x2cdd/0x2fb0
[  170.832524][T13897]  do_syscall_64+0xd2/0x200
[  170.837032][T13897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.842927][T13897] 
[  170.845411][T13897] read to 0xffff88817441a600 of 512 bytes by task 13897 on cpu 1:
[  170.854148][T13897]  fat_mirror_bhs+0x1df/0x320
[  170.858866][T13897]  fat_alloc_clusters+0x98b/0xa80
[  170.864094][T13897]  fat_get_block+0x258/0x5e0
[  170.868715][T13897]  __block_write_begin_int+0x3fd/0xf90
[  170.874191][T13897]  cont_write_begin+0x5fc/0x970
[  170.879052][T13897]  fat_write_begin+0x4f/0xe0
[  170.883648][T13897]  generic_perform_write+0x181/0x490
[  170.888935][T13897]  __generic_file_write_iter+0x9e/0x120
[  170.894480][T13897]  generic_file_write_iter+0x8d/0x2f0
[  170.899851][T13897]  aio_write+0x2e5/0x410
[  170.904095][T13897]  io_submit_one+0xacd/0x11d0
[  170.908768][T13897]  __se_sys_io_submit+0xfb/0x280
[  170.913717][T13897]  __x64_sys_io_submit+0x43/0x50
[  170.918667][T13897]  x64_sys_call+0xfc4/0x2fb0
[  170.923258][T13897]  do_syscall_64+0xd2/0x200
[  170.927851][T13897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.933749][T13897] 
[  170.936068][T13897] Reported by Kernel Concurrency Sanitizer on:
[  170.942223][T13897] CPU: 1 UID: 0 PID: 13897 Comm: syz.5.4079 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[  170.954377][T13897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  170.964518][T13897] ==================================================================
[  171.435865][   T29] kauditd_printk_skb: 186 callbacks suppressed
[  171.435880][   T29] audit: type=1326 audit(2000000087.038:5336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13895 comm="syz.7.4081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f98b447e969 code=0x7ffc0000