last executing test programs:

49.101533916s ago: executing program 3 (id=608):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffff5)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x10003, 0x2, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
recvmsg$unix(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)=""/254, 0xfe}], 0x1}, 0x20)
sendmmsg(r3, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000)

48.238552873s ago: executing program 3 (id=618):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = getpgrp(0x0)
r4 = syz_pidfd_open(r3, 0x0)
fsetxattr$trusted_overlay_nlink(r4, &(0x7f00000018c0), 0x0, 0x0, 0x3)

48.238291723s ago: executing program 3 (id=619):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)="7800000018002507b9409b14ffff00000204be04020506050e020409430009003f000c00100000000d0085a168d0bf46d32345653600648d", 0x38, 0x0, 0x0, 0x0)
sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="d9cc2f70a222cd881811ca1c43eb1e964dfec7504882841d450bd90f3720171260f583cfe3e013f8ee80f10780b46ac3925d76a09e6f90af410daf076f3ca156f2ef95b45dc4ae3b75def461e0f09c161927d91a12383f0a49b1fd9985849ab6c239f8d25fc1b5466d9f451bb61b7e978cba253a145ad5003208eab395d88f744bb8585c8c0f4a62dcabdb6f477f1410e461fec637bcefa59cfadf769b5761e4c6f267ccd2564b2299a60151a3552c89ba4055aadb3611614b0f3a97eb3560d93bef3d6167665541dbf85b6e8ba2e8e505d9a50b07537b1bf5b1ae35c1c83894622312537ed74164b4df9ff8fb189026df55a6", 0xf3, 0x0, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)

48.205839404s ago: executing program 3 (id=621):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$eJzs3W1rZFcdAPD/vcmk2d3UTFVkLdgWW9ktujNJY9so0lYQfVVQ6/s1JpMQMsmEzKRuQtEsfgBBRAU/gG8EP4Ag+xFEWND3oqKI7upL3St35kbzMJMMySSzTn4/OJlz7sP5n3PJ3LkPh3sDuLJeioh3ImIsIl6NiOlielqk2OukfLnHjz5YzFMSWfbe35JIimn7deXl8Yi4Uaw2GRFf/0rEt5LjcZs7u2sL9XptqyhXW+ub1ebO7p3V9YWV2kptY25u9o35N+dfn5/JCufqZzki3vrSn370/Z99+a1ffebbv7/7l9vfyZv1hY912h0Ri+cK0EOn7lJ7W+zLt9HWRQQbkrw/pbFhtwIAgH7kx/gfjohPto//p2OsfTQHAAAAjJLs7an4VxKRAQAAACMrjYipSNJKMRZgKtK0UumM4f1oXE/rjWbr08uN7Y2lfF5EOUrp8mq9NlOMFS5HKcnLs8UY2/3ya0fKcxHxXET8cPpau1xZbNSXhn3xAwAAAK6IGy8ePv//53TazgMAAAAjptyzAAAAAIwKp/wAAAAw+pz/AwAAwEj76rvv5inbf4/30vs722uN9+8s1ZprlfXtxcpiY2uzstJorLSf2bd+Wn31RmPzs7Gxfa/aqjVb1ebO7t31xvZG6+7qoVdgAwAAAJfouRcf/C6JiL3PX2unKJ4DCHDIH4fdAGCQxobdAGBoxofdAGBoSqcuYQ8Boy45Zf7xwTuda4Xx64tpDwAAMHi3Pn78/v9EMe/0awPA/zNjfQDg6nF3D66u0llHAN4cdEuAYflQ5+OZXvN7Pryjj/v/nWsMWXamhgEAAAMz1U5JWimO06ciTSuViGfbrwUoJcur9dpMcX7w2+nSM3l5tr1mcuqYYQAAAAAAAAAAAAAAAAAAAAAAAACgI8uSyAAAAICRFpH+OWk/zT/i1vQrU4evDhx569dP3/vxvYVWa2s2YiL5+3Q+aSIiWj8ppr+WeSUAAAAAPAU65+nF5+ywWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAqHn86IPF/XSZcf/6xYgod4s/HpPtz8koRcT1fyQxfmC9JCLGBhB/735E3OwWP4knWZaVi1Z0i3/tguOX25ume/w0Im4MID5cZQ/y/c873b5/abzU/uz+/Rsv0nn13v+l/93/jfXY/zx7pNzL8w9/Ue0Z/37E8+Pd9z/78ZNO/EMh8sLLffbxm9/Y3e0640CV3eIfjFVtrW9Wmzu7d1bXF1ZqK7WNubnZN+bfnH99fqa6vFqvFX+7hvnBJ3755KT+X+8Rv3y4/8e2/yt99T6Lfz+89+gjnUKpW/zbL3f//b3ZI35a/PZ9qsjn82/t5/c6+YNe+PlvXjip/0s9+j95Sv9v99X/+NyrX/veH7rOObY1AIDL0NzZXVuo12tbJ2Qm+1jmkjNvPx3NGGAmno5mDCuTfbfz/3i+es65+rFMdp7Vx2MAzZg49j0di7NWmETs5XX1+Q8JAACMmP8d9J90BwkAAAAAAAAAAAAAAAAAAAC4SGd8LNlkRPS98NGYe8PpKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAif4TAAD//4RX0Xo=")
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x6510, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x12024, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
syz_clone(0x0, &(0x7f0000000300)="18c7ad77532760fae8ee922b02edc12e04703095b8bc0565fad82116c2ca8232b31f6d7f33473c7f3efdfdda83fdf4ea467f53c9f71b9a8c3687ce1d860ac02174310d", 0x43, &(0x7f0000000380), &(0x7f0000000440), &(0x7f0000000480)="719de1e2f4d44052b8cbb9e58044d6f18be9d8f25408ea2319d7f15a714b248b5343225860d4b6279e8f")
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x1000)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f00000003c0)="8df5863a27", 0x8600}], 0x1, 0x7a00, 0x0, 0x3)
clock_adjtime(0x6, &(0x7f00000000c0)={0xffffffff, 0x8cf9608000000000, 0x9, 0x8, 0x7, 0x9, 0x3d8d, 0x3, 0x709, 0x80, 0x0, 0x7, 0x40, 0x1000, 0x2, 0x8, 0x6, 0x40, 0x9, 0x8, 0xa, 0x7, 0x6, 0x8001, 0x0, 0x1})

47.933041336s ago: executing program 3 (id=627):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$packet(0x11, 0x2, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x18, r2, 0x1, 0x81}, 0x14)
sendmmsg(r0, &(0x7f000000c340)=[{{0x0, 0x0, 0x0}}], 0x1, 0x810)

45.343724327s ago: executing program 3 (id=683):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000046, &(0x7f0000000240)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@bsdgroups}, {@jqfmt_vfsv1}, {@nolazytime}, {@noblock_validity}, {@grpjquota}, {@jqfmt_vfsv1}, {@errors_remount}]}, 0x11, 0x565, &(0x7f0000000440)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x50, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
pwritev2(r3, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)

45.343523357s ago: executing program 32 (id=683):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000046, &(0x7f0000000240)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@bsdgroups}, {@jqfmt_vfsv1}, {@nolazytime}, {@noblock_validity}, {@grpjquota}, {@jqfmt_vfsv1}, {@errors_remount}]}, 0x11, 0x565, &(0x7f0000000440)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x50, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
pwritev2(r3, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)

34.568004296s ago: executing program 4 (id=919):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48a}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

34.533961078s ago: executing program 4 (id=920):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$kcm(0x2d, 0x2, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0xffff}}}, 0x24}}, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='8', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

34.48336338s ago: executing program 4 (id=922):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
dup(0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r2}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r3}, 0x18)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f00000002c0)={0x28, 0x0, 0x2710, @local}, 0x10)

34.446856701s ago: executing program 4 (id=923):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_usb_connect$uac1(0x0, 0xad, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000640), 0x1, 0x5b3, &(0x7f0000000680)="$eJzs3V9oJHcdAPDvbnavNnd6rdTqVdtLrbZn/2wuSTm8WpB71PZK7Z8nT86Q7OWObLIxu8EmtZBShAqehOqTPikIKj6cCAriQ0Gsj4JvSqlgEeUgFEtR9NSVmd099swmuTR/hst8PjDJzG9m8/vOfvnOzvxudi6A3BpKfhQiDkXEaxFxuL147QZD7V8rY5fOJ1MhWq2n3yqk270wdul8d9Pu6w4mP4oRH0p+/TriYHltv43FpenxWq0631kebs7MDTcWlx66MDM+VZ2qzo6OjZw4Pnpi5MTJHdvXHz7/ymffeP7xKxdXB7//+pGj/0jiPdRZ17sfO2UohjrvSTk+2ruiEPHpne4sIwMRUYqID2QdCFt25ndff7abv3Ja/4djIF2KGBw78/bhuPho1jECu6eVWm/tQAvYzwqRdQRANrqf9Mn1b3faq3OP6f1yEXwDWz3VvgB8oTO2s3I1/6UodrYp79L1/dG/RgxF8/5Ln7n7q8kUuzQOw/qWX4x0oG5t/RfSsbFbOtvdExHHIuJjEfHxiLg3Iu7bZt/PfCHJ/x+/2dsm/3vrevP/iYioRMT9EfFARDwYEQ9ts+/bTyf5P/jF3jb5z487Ppd1BGTpty9nHQHp8f94qdTv+F/c5t++e5P1rfTfFZff7G1z/M+Pp57OOgKy9MSJrCMgS995K+sIePVU+2Ju7ed/MW7v2S6Z/2D7UjGOJOfuEfHhiPhIRNwZEXdFxNHu/UTX6SuPJdtXqr1taz//i5e3s39sbPVUxKM993at9OS/45aBztJ70/GAcuHchVr1eES8Lx0TKt+ULI9s0MfXln/1WL/2H9+Z5P9TT3TH/5Ip6b87FtiJ43LppmtfNzneHN/uftO2+mLEHaV++S907gRq39fXiojhd9nHS8d+8pt+7Z98Ksn/vQ9unH92U+u77XHcfvnvKmx8f+ZwejwY7h4V1nopbrvYr/3JK0n+3/yD/Gcnqf/BjfOfHv+v3q/b2HofpZXL3+jbPpPk/8+/fDfH/wOFZ9IAD3TanhtvNudHIg4UHl/bPrr1mPer7vvRfb+S/B+7p//n//s7r0ne0KSy/xMR/42If0bEvyLiSkT8OyL+FhFvb9DnL1555Of92seeTfL/l9fUf3aS/E9uUv+Fa+p/6zPfvuvkl/v1/YPvJfkfrGxe/w+nwRzrtDj/29z1JijrOAEAAAAAAADYGcX0GXiFYuXqfLFYqbSf4XdbDBZr9UbzgXP1hdnJ6HwftFzs3ul1uOd+0JHOd0W7y6P/tzwWEbdGxMsDN6fLlYl6bTLrnYecOhTxxk+/NHHg4Dr1n3h9IOsogd2Q1P+5bw0sJ/PvqHPIlaT+f/TOTPq9LPUP+aL+Ib/UP+SX+of8Uv+QX+of8kv9Q36pf8gv9Q/51Vv/QD49efp0MrW6z/2crU9dmD4/d3L0eGVmYaIyUZ+fq0zV61PpN3ZmNv97tXp9buThWHhuuFltNIcbi0tnZ+oLs82z6XOjz1bLe7BPwOb+/qfP/+zWo6/+vhARy4/cnE7R8+xstQr7m0t/yK9S1gEAmXGODxQ2Wf+e9Vac2flYgL2x3f/jH7hx3XfE+D/klfF/yC/j/5BfzvEB4/+QP8b/Ib+q843FpenxWm3NTNaRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADkU2NxaXq8VqvOmzFjJncz/wsAAP//ylZHUg==")
mount$nfs(&(0x7f00000001c0)='..\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x85000, 0x0)

33.725916052s ago: executing program 4 (id=937):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fspick(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
bind$packet(r1, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
r3 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r3, 0x10c000)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0xe0, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x7d, 0x0, 0x1, 0x101, 0x0})

33.114028778s ago: executing program 4 (id=949):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000000c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x4c)
fallocate(r2, 0x20, 0x0, 0x8000)

33.07722954s ago: executing program 33 (id=949):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000000c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x4c)
fallocate(r2, 0x20, 0x0, 0x8000)

1.829713033s ago: executing program 6 (id=1556):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="341000003b0007010000000000000000017c000004"], 0x1034}}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7, 0x2a4, 0x8, 0x0, 0x4000000000000005})
ioctl$SG_BLKTRACETEARDOWN(r2, 0x1276, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.816046513s ago: executing program 0 (id=1557):
mkdirat(0xffffffffffffff9c, 0x0, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = gettid()
sendmsg$unix(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="a77e", 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r2, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)

1.745868996s ago: executing program 6 (id=1558):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x30, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x8}, [@IFLA_GROUP={0x8}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0xdd0e}]}, 0x30}}, 0x0)

1.745318906s ago: executing program 0 (id=1568):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
gettid()
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)
pipe2$9p(0x0, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
io_setup(0x2, &(0x7f0000000d40)=<r1=>0x0)
io_pgetevents(r1, 0x0, 0x0, 0x0, &(0x7f0000000e40)={0x0, 0x3938700}, 0x0)

1.608254202s ago: executing program 0 (id=1562):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x4c, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x8}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x44890}, 0x8840)

1.594643602s ago: executing program 0 (id=1564):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0xfffe, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000000080)='_', 0x1}], 0x1}, 0x865)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000240), 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
r3 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r3})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r3})

1.377985362s ago: executing program 0 (id=1577):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f00000001c0)="f1", 0x1)
sendfile(r2, r0, 0x0, 0x40001)
sendfile(r2, r1, 0x0, 0x7ffff000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1.194393199s ago: executing program 5 (id=1571):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x6, @remote, 0xfffffffc}}, 0x0, 0x0, 0x6, 0x0, "3f114438efdaca16d374b49a365be44d5e860ea3ba676c0b5047b80e2c3535d5bd9db3c8572560f4d1be5cd41f7716082ee3589f099942e6f1c395ddb8160381baadf27900"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x0, 0x20000000, @remote}}, 0x0, 0x0, 0x0, 0x0, "ddfd3b7ed7c6a1c172a987ae5ce3cafd64c9a736831a5912d606798fb75c9981c4b3ac0e06891ff18bc5543ed57215a3c45f9154dfa319e52a15a2b9acf80c07fb1a854dad742eef6187f2304844c296"}, 0xd8)
sendto$inet6(r0, 0x0, 0x0, 0x20004002, &(0x7f0000b63fe4)={0xa, 0x2, 0x80000000}, 0x1c)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
close(0x3)

1.005876888s ago: executing program 2 (id=1573):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x5, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0x4000000}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="b73311bd7000000000000500"], 0x2c}}, 0x0)

1.005774188s ago: executing program 5 (id=1574):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
r0 = syz_io_uring_setup(0x74d, &(0x7f0000000100)={0x0, 0x59c2, 0x8, 0x1000, 0x5cc}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0xc, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1})
io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)

902.022202ms ago: executing program 5 (id=1576):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e0000000000000000001800028014000380"], 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)

869.870393ms ago: executing program 5 (id=1587):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0xb, 0x0, 0x100000}, 0x20)
r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
r4 = fsopen(&(0x7f0000000040)='sysfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x1, 0x0)

805.964716ms ago: executing program 2 (id=1578):
openat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
socket(0xa, 0x3, 0xff)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b78, &(0x7f0000000040)={0x0, 0xca72, 0xc000, 0x0, 0x20002fb})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x2, 0x9}}, 0x20)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

805.702606ms ago: executing program 5 (id=1579):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020047b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000020000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r3}, 0x18)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r4, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001)
sendmsg$inet6(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)="e5f1fddfe175759743a2d6055bef6ad67f4806ff6a", 0x15}], 0x1}, 0x20000044)

681.523712ms ago: executing program 5 (id=1580):
r0 = socket(0x8000000010, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000005700)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000005680), &(0x7f00000056c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1b, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000004}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r4}, 0x10)
write(r0, &(0x7f00000002c0)="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", 0xfc)

636.883314ms ago: executing program 2 (id=1591):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
r4 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000780), r4)
getsockname$packet(r4, &(0x7f0000000300)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r5, @ANYBLOB="0100000000000000240012000c000100627269646765000e140002000800070005"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x11, 0x8100, r5, 0x1, 0x0, 0x6, @local}, 0x14)

481.89301ms ago: executing program 2 (id=1582):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
fcntl$setlease(r0, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

427.832082ms ago: executing program 1 (id=1583):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x0)
sendto(r3, &(0x7f0000000000)="00c881d76049ac562e4e5094890b55e5ea113389145c57e7b3479bf3f2cf8ac5d94a71e37b8bc9f4e71c8b097042535f04d39b07b6e29be0a2734c7332f8", 0x3e, 0x0, 0x0, 0x0)
recvfrom(r2, &(0x7f00000001c0)=""/62, 0x3e, 0x10120, 0x0, 0x0)

416.005113ms ago: executing program 2 (id=1584):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00')

349.613196ms ago: executing program 2 (id=1585):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
close(0x3)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmsg$tipc(r3, &(0x7f0000001000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34000841}, 0x0)
recvmsg(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1, &(0x7f00000032c0)=""/4096, 0x1000}, 0x0)
sendmsg$tipc(r2, &(0x7f0000000b40)={0x0, 0x0, 0x0}, 0x0)

343.627096ms ago: executing program 1 (id=1597):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
r4 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000780), r4)
getsockname$packet(r4, &(0x7f0000000300)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="4400000010000104001007fb5c360dff9fe30000", @ANYRES32=r5, @ANYBLOB="0100000000000000240012000c000100627269646765000e140002000800070005"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x11, 0x8100, r5, 0x1, 0x0, 0x6, @local}, 0x14)

282.428818ms ago: executing program 6 (id=1586):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0a000000020000000200000004"], 0x2d)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f0000000300)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x19, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000a17000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bond0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x34, 0x24, 0xd0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r5, {0x0, 0x1}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)

239.47384ms ago: executing program 1 (id=1588):
r0 = socket$inet6(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000380)='neigh_update\x00', r2, 0x0, 0xfffffffffffffffe}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r3}, 0x10)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

239.06611ms ago: executing program 6 (id=1589):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r3, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f00000000c0)={'macsec0\x00', 0x400})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f00000002c0)={'veth0\x00', 0xe00})

215.263141ms ago: executing program 0 (id=1590):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
semop(0x0, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x2, &(0x7f0000000040)={[], [{@flag='rw'}]}, 0x1, 0xabf, &(0x7f00000008c0)="$eJzs3d1rHOe5APBnVh+WlJA4iY+TY5J47OBESRx5JZ3YmFyc2NJKVo4+DpIMMZxDHGK5GIumJC0kpmCbll41NIRSaAul5LJXgfSiuSm+ay971YtCG/oPlNArp7SdMjMraVfa1dqyLNnp7ydW8/W8XzOz82pXu/MG97Msy4rHFpfP/mInK8u95/T45x9/8kH+uH4teqMrXk5+FdEXEWlE9z+Kc6VnbHx+bqZDRpcjzkfEjYgkIvZEOW2jv2npfCQ/iAfXlm9E8tN4okWyvttsHB1l/Fvb7fMPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADuSWPj1epwEtNTs2dfT9srhgDfZPtKdp8Vo34nn3UqNone+lzfylDfT+xb27w//3U4niyXnixH/u6LKw/s3/vKY92VYnDxJIlNKrQj3n3/yuU3l5eX3qkv70nTno6J9tz1at2+3q0lm6zNTi3MTc2cmqylUwtz6cnjx6vHzkwspBPXI+LcwmJtJh2br51anJtPB8eeT4dPnhxNa0Pn5s7OTo4PTddWVp54qSeqx9PXhv63dmp+YW722GtDC2Nnpqanp2Yni5iRavX4SyPV6on8RPyfqcV0sXZqJk0vXlpeGu1UyTxouOWWpDlopFNOI9WRkeHhkf44/vLJl09Uq931FSPDKyuq68SGiN0/adluP7vlyF9u67Ub7lCl3v/HdEzFbJyN1yNt+TMW4zEfczHTYluylt9K/3/kWG3Tcsv+O5Lo61vt5Z9Y23wgiv7/6XLp6Xb9f5u6dv7JsjLnraZfbfm19+NKXI43YzmWYyneudMcs65YV7Mv18f8PcuyLeSc5nkebNwHd9z6NCajFrMxFQsxF1MxE6diMr7z57IFc5HGyTgex6Mab8SZmIiFSGMipmI6arEQ52IhFqNWnFFjMR+1NGIx5mI+0hiMsXg+0hiOk9Efo5FGLYbiXMzF2ZiNyRiPU0UuF+NSsd9HN6njatDwrQSNbBK0oTO/s/4/uxf/EmTLOv7pn2Vpw0sl2HVZvf/vbRuQrcwNju1YrQAAAIDt9J+/jYf2PfqbP0b0xFPF+/ITU9O16m5XCwAAANhGxcf1nswnPVlEPBVJi9f/lV2qHAAAALAtkuI7dklEDMTBcq78JlRX+BAAAAAAfEUU//9/Op8M5HMHI1m9E8r5FpEAAADAfajjPfbrL/uvbRLRF/V7WqYXyumFKw/s/2i1iGRgYmq6NjQ2N/3KcDxb3GWg+KbBhtzyQiKmpmtrNyM8NFBOB+pREf15jn15jsNDrwzHC3G43pDBZ/LJM4OrkUXtisiRMvK5MvK5TSJH88hbcG2r+xsA7gWHN/bHX2ZN99jv/BfCC3G0jDh6oDvvursPtOhZq2s9a/duNBQAWNV5jJ3miKsRxYAAjf3/f+Wv/5s79ab+/9G4+M985VIMxVvxdizHhThafNug+MRBU7n/92GZZmD1YwjVOBqHytiN7wY0xf7uRCWOdng/YKBhoJejkdXf3dgsNv4/YvTuHgQA2GGH2/TD7fr/IiJWPg5Y9v9HG17/x8bX/6vv5i/5SiEA3BNWR7Df1pmsq3HNbrcRAGimlwYAAAAAAAAAAAAAAAAAAAAAAAAAAIDtt623/e/bYvI/1cf1K9dk2z8eQeuZ/vo+WFlz9bb2xvV337/yUUQ0bqrkjbg7dS5qur05V7Yhnywidup47dxM7I3Y8l6NVpt6I+KuV75/O4r4sj5TPjcqm108zm66FQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgPtAEtG1cW1fVCL2REQ1Io7tRr3ulmu7XYGd99+NC8nNuBnvxUO7Vx0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK+m+v3/K1FOHyhXRXcl4khEnI+IbLfruJ1u7nYFtkn/FtM13P8/P+aRJdFdHvZIesbG5+dm8sNfjP1Q+fzjTz54vDn5nlstpwisrBtcol7C+tifP7gy90iRamB86d3L33z7G+n46ahEb9fpxYnp8ZnJ+VfXkuxPPo1Io3ysyOubP7595Ncftmj5p3lL16sMtCp3otg54xvLfbxVW9uVW2m9axpcWl4ayaMWa68vfuvrl95r2PRoHIp4ZjBisLmkr+WP1i2MQ9GzYV3v2mzyRfK95KH4UZwvjn++N5IsyQ/Rw0V1+y9eWl4aeuvt5Qtt6rQ3DkbEhYi+qKdvW6fVXX2wuJ60VJx1lZ681GoRlP/a16GNra2OcXFhJcfhNm14pDhlBupt6G1qQ6VNmWn7NhQ7vGG/rx7zpCFJWaPReo16o7lGj8WzLY50tiei/V54tsWR7ij5IvlDciZ+H99tGP+jkh//I1n7Z2dzFkei+UxpG1kpI4uWjzRueGN95F9+fEu1bzFMDbfv++WJX1dpuP7Xj9XWrkd968vJktbXo7qGEkfblNj6ebHu6rD+rGh/zS16pH3rUtSvPm0TlfXcV0a1qed/xIsR3Qeiacc213NDb/1i+ytKc/pX163PrhaTrT7/f5IMxl/jmvF/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAe18S0dVqfaWc7F1ZTiOy28h2T7sNlYHktuq33a6t/rrP7St+V5rWXe+cLLkZN7Ord6tSAAAAAAAAAOy00+Off/zJB/mj+H98180sq/9/P43ojoi9yQ/7Y3x+bqZDRj0R5yPiRj7f1y7ob1mpeW2eLh5cW74RkT289SYBAB38KwAA///RQ3c1")
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

201.160912ms ago: executing program 1 (id=1592):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x59, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

147.957474ms ago: executing program 1 (id=1593):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x0, 0x2}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x4}}, 0x10)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x20000003}}}, 0x10)
bind$tipc(r1, &(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x3, 0x3}}, 0x10)
bind$tipc(r0, 0x0, 0x0)

98.178386ms ago: executing program 1 (id=1604):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00')
writev(r0, &(0x7f0000000740)=[{&(0x7f0000000780)="11", 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)

48.124379ms ago: executing program 6 (id=1594):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newsa={0x158, 0x10, 0x413, 0x0, 0x25dfdbfb, {{@in=@multicast2, @in=@local, 0x0, 0x0, 0x4e24, 0x0, 0xa, 0x0, 0x20, 0x0, 0x0, 0xee00}, {@in=@dev={0xac, 0x14, 0x14, 0x10}, 0x10, 0x32}, @in=@dev, {0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x20000000008}, {0x0, 0x8, 0xcc}, {0xf6}, 0x0, 0x0, 0xa, 0x1, 0x1}, [@algo_aead={0x67, 0x12, {{'rfc4309(ccm(aes))\x00'}, 0xd8, 0x40, "f27cf4fa53454c104869d3e559eeaf0e897bbf8c7064043d73496d"}}]}, 0x158}}, 0x4000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff9}, 0x94)
r1 = socket(0x10, 0x80003, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r2, &(0x7f00000003c0)={0x7, 0x8, 0xfa00, {r3, 0xffe}}, 0x10)
socket(0x11, 0x3, 0x0)
close_range(r1, 0xffffffffffffffff, 0x1000000000000000)

0s ago: executing program 6 (id=1595):
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000000)={0xa0000001})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040)={0x2004})
epoll_wait(r3, &(0x7f00000000c0)=[{}], 0x1, 0x1fffc002)

kernel console output (not intermixed with test programs):

5] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.773860][ T4442] syzkaller0: entered promiscuous mode
[   54.779498][ T4442] syzkaller0: entered allmulticast mode
[   54.830902][ T4435] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.830981][ T4448] loop1: detected capacity change from 0 to 128
[   54.862392][ T4449] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=4449 comm=syz.0.365
[   54.892989][ T4451] veth2: entered promiscuous mode
[   54.898182][ T4451] veth2: entered allmulticast mode
[   54.914248][ T3946] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.936255][ T4453] loop1: detected capacity change from 0 to 256
[   54.957424][ T4453] FAT-fs (loop1): Directory bread(block 64) failed
[   54.969646][ T4453] FAT-fs (loop1): Directory bread(block 65) failed
[   54.974888][ T3946] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.984092][ T4453] FAT-fs (loop1): Directory bread(block 66) failed
[   54.991296][ T3946] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.999803][ T3946] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.005602][ T4453] FAT-fs (loop1): Directory bread(block 67) failed
[   55.027624][ T4453] FAT-fs (loop1): Directory bread(block 68) failed
[   55.036955][ T4453] FAT-fs (loop1): Directory bread(block 69) failed
[   55.043638][ T4453] FAT-fs (loop1): Directory bread(block 70) failed
[   55.050632][ T4453] FAT-fs (loop1): Directory bread(block 71) failed
[   55.057302][ T4453] FAT-fs (loop1): Directory bread(block 72) failed
[   55.063911][ T4453] FAT-fs (loop1): Directory bread(block 73) failed
[   55.094120][ T4453] syz.1.369: attempt to access beyond end of device
[   55.094120][ T4453] loop1: rw=2049, sector=1224, nr_sectors = 4 limit=256
[   55.108378][ T4453] syz.1.369: attempt to access beyond end of device
[   55.108378][ T4453] loop1: rw=34817, sector=1224, nr_sectors = 2 limit=256
[   55.148099][ T4461] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   55.591821][ T4464] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   55.607884][ T4465] netlink: 'syz.1.384': attribute type 12 has an invalid length.
[   55.673974][   T29] kauditd_printk_skb: 158 callbacks suppressed
[   55.673989][   T29] audit: type=1326 audit(55.646:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15be0f65e7 code=0x7ffc0000
[   55.716182][   T29] audit: type=1326 audit(55.646:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15be09b829 code=0x7ffc0000
[   55.738906][   T29] audit: type=1326 audit(55.646:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15be0f65e7 code=0x7ffc0000
[   55.761519][   T29] audit: type=1326 audit(55.646:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15be09b829 code=0x7ffc0000
[   55.783999][   T29] audit: type=1326 audit(55.646:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   55.806600][   T29] audit: type=1326 audit(55.646:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   55.829147][   T29] audit: type=1326 audit(55.646:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   55.852782][   T29] audit: type=1326 audit(55.646:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   55.875553][   T29] audit: type=1326 audit(55.646:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   55.898227][   T29] audit: type=1326 audit(55.646:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   55.956674][ T4477] netlink: 'syz.2.380': attribute type 17 has an invalid length.
[   55.964702][ T4477] netlink: 148 bytes leftover after parsing attributes in process `syz.2.380'.
[   56.125978][ T4494] netlink: 4 bytes leftover after parsing attributes in process `syz.4.387'.
[   56.146215][ T4494] bridge_slave_1: left allmulticast mode
[   56.152232][ T4494] bridge_slave_1: left promiscuous mode
[   56.158255][ T4494] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.206760][ T4494] bridge_slave_0: left allmulticast mode
[   56.212454][ T4494] bridge_slave_0: left promiscuous mode
[   56.218195][ T4494] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.311348][ T4505] netlink: 28 bytes leftover after parsing attributes in process `syz.1.401'.
[   56.320387][ T4505] netlink: 28 bytes leftover after parsing attributes in process `syz.1.401'.
[   56.687604][ T4533] syzkaller0: entered allmulticast mode
[   56.693481][ T4533] syzkaller0: entered promiscuous mode
[   56.701237][ T4533] syzkaller0 (unregistering): left allmulticast mode
[   56.708095][ T4533] syzkaller0 (unregistering): left promiscuous mode
[   56.722896][ T4536] netlink: 4 bytes leftover after parsing attributes in process `gtp'.
[   56.762567][ T4536] team1: entered promiscuous mode
[   56.767671][ T4536] team1: entered allmulticast mode
[   56.772880][ T4536] 8021q: adding VLAN 0 to HW filter on device team1
[   56.804307][ T4538] loop0: detected capacity change from 0 to 128
[   56.810927][ T4538] EXT4-fs: Ignoring removed nobh option
[   56.818557][ T4538] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   56.831515][ T4538] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   56.890082][ T4543] loop0: detected capacity change from 0 to 1024
[   56.926835][ T4543] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.175140][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.279546][ T4555] veth2: entered promiscuous mode
[   57.284788][ T4555] veth2: entered allmulticast mode
[   57.343629][ T4557] netlink: 12 bytes leftover after parsing attributes in process `syz.0.414'.
[   57.423826][ T4561] tipc: Started in network mode
[   57.428920][ T4561] tipc: Node identity 7e93ff9c44b, cluster identity 4711
[   57.436175][ T4561] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   57.443990][ T4560] tipc: Resetting bearer <eth:syzkaller0>
[   57.458209][ T4560] tipc: Disabling bearer <eth:syzkaller0>
[   57.630145][ T4577] loop3: detected capacity change from 0 to 1024
[   57.668609][ T4577] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.683795][ T4581] veth2: entered promiscuous mode
[   57.688923][ T4581] veth2: entered allmulticast mode
[   57.985125][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.537777][ T4601] netlink: 'syz.0.430': attribute type 13 has an invalid length.
[   58.604954][ T4601] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.605078][ T4607] loop3: detected capacity change from 0 to 128
[   58.612233][ T4601] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.670619][ T4601] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.686036][ T4601] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.707413][ T4607] syz.3.432: attempt to access beyond end of device
[   58.707413][ T4607] loop3: rw=2049, sector=145, nr_sectors = 16 limit=128
[   58.721182][ T4607] syz.3.432: attempt to access beyond end of device
[   58.721182][ T4607] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[   58.734839][ T4607] syz.3.432: attempt to access beyond end of device
[   58.734839][ T4607] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[   58.748386][ T4607] syz.3.432: attempt to access beyond end of device
[   58.748386][ T4607] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[   58.761913][ T4607] syz.3.432: attempt to access beyond end of device
[   58.761913][ T4607] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[   58.776256][ T4607] syz.3.432: attempt to access beyond end of device
[   58.776256][ T4607] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[   58.794498][ T4607] syz.3.432: attempt to access beyond end of device
[   58.794498][ T4607] loop3: rw=2049, sector=249, nr_sectors = 8 limit=128
[   58.808634][ T4607] syz.3.432: attempt to access beyond end of device
[   58.808634][ T4607] loop3: rw=2049, sector=265, nr_sectors = 8 limit=128
[   58.822648][ T4607] syz.3.432: attempt to access beyond end of device
[   58.822648][ T4607] loop3: rw=2049, sector=281, nr_sectors = 8 limit=128
[   58.836373][  T784] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.844912][ T4607] syz.3.432: attempt to access beyond end of device
[   58.844912][ T4607] loop3: rw=2049, sector=297, nr_sectors = 8 limit=128
[   58.845619][  T784] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.867895][  T784] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.896041][  T784] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.983472][ T4618] loop2: detected capacity change from 0 to 512
[   58.999065][ T4618] EXT4-fs: Ignoring removed i_version option
[   59.005113][ T4618] EXT4-fs: Ignoring removed bh option
[   59.037543][ T4618] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.129372][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.231130][ T4630] veth4: entered promiscuous mode
[   59.236425][ T4630] veth4: entered allmulticast mode
[   59.292227][ T4634] syz.2.441 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   59.341366][ T4637] netlink: 8 bytes leftover after parsing attributes in process `syz.3.442'.
[   59.431839][ T4648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4648 comm=syz.3.445
[   59.576895][ T4664] wireguard0: entered promiscuous mode
[   59.582693][ T4664] wireguard0: entered allmulticast mode
[   59.742034][ T4680] loop0: detected capacity change from 0 to 164
[   59.769025][ T4680] iso9660: Unknown parameter 'maprmal'
[   59.808289][ T4682] wireguard0: entered promiscuous mode
[   59.813842][ T4682] wireguard0: entered allmulticast mode
[   60.058327][ T4707] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.120988][ T4716] ip6gretap0: entered promiscuous mode
[   60.127356][ T4714] loop3: detected capacity change from 0 to 512
[   60.135291][ T4714] EXT4-fs: Ignoring removed i_version option
[   60.141494][ T4714] EXT4-fs: Ignoring removed bh option
[   60.149095][ T4707] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.160828][ T4716] netlink: 4 bytes leftover after parsing attributes in process `syz.0.475'.
[   60.169352][ T4714] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.184764][ T4716] ip6gretap0 (unregistering): left promiscuous mode
[   60.202016][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.227926][ T4707] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.308034][ T4707] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.404122][  T784] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.421331][  T784] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.433792][  T784] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.446389][  T784] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.512922][ T4728] loop2: detected capacity change from 0 to 2048
[   60.538588][ T4728] Alternate GPT is invalid, using primary GPT.
[   60.544990][ T4728]  loop2: p2 p3 p7
[   60.563999][ T3002] Alternate GPT is invalid, using primary GPT.
[   60.570522][ T3002]  loop2: p2 p3 p7
[   60.696597][   T29] kauditd_printk_skb: 287 callbacks suppressed
[   60.696655][   T29] audit: type=1400 audit(60.666:1102): avc:  denied  { bind } for  pid=4733 comm="syz.4.484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   60.775416][   T29] audit: type=1400 audit(60.706:1103): avc:  denied  { setopt } for  pid=4733 comm="syz.4.484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   60.795223][   T29] audit: type=1400 audit(60.716:1104): avc:  denied  { setopt } for  pid=4732 comm="syz.2.483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   60.813943][   T29] audit: type=1400 audit(60.716:1105): avc:  denied  { bind } for  pid=4732 comm="syz.2.483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   60.970034][ T3535] udevd[3535]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   60.970043][ T4310] udevd[4310]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   60.973059][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   61.012617][ T4310] udevd[4310]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   61.024147][ T3787] udevd[3787]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   61.035900][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   61.051177][ T3787] udevd[3787]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   61.051415][ T4310] udevd[4310]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   61.064658][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   61.088437][ T3787] udevd[3787]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   61.189595][   T29] audit: type=1400 audit(61.156:1106): avc:  denied  { mount } for  pid=4752 comm="syz.2.491" name="/" dev="configfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   61.211640][   T29] audit: type=1400 audit(61.156:1107): avc:  denied  { search } for  pid=4752 comm="syz.2.491" name="/" dev="configfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   61.232960][   T29] audit: type=1400 audit(61.156:1108): avc:  denied  { search } for  pid=4752 comm="syz.2.491" name="/" dev="configfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   61.254335][   T29] audit: type=1400 audit(61.156:1109): avc:  denied  { read open } for  pid=4752 comm="syz.2.491" path="/" dev="configfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   61.285005][ T4755] syzkaller1: entered promiscuous mode
[   61.290643][ T4755] syzkaller1: entered allmulticast mode
[   61.297797][   T29] audit: type=1400 audit(61.256:1110): avc:  denied  { create } for  pid=4754 comm="syz.0.492" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   61.316746][   T29] audit: type=1400 audit(61.256:1111): avc:  denied  { ioctl } for  pid=4754 comm="syz.0.492" path="socket:[13635]" dev="sockfs" ino=13635 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   61.388499][ T4759] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.397852][ T4759] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.430944][ T4757] syzkaller0: entered promiscuous mode
[   61.436481][ T4757] syzkaller0: entered allmulticast mode
[   61.479921][ T4764] loop0: detected capacity change from 0 to 2048
[   61.537937][ T4764] Alternate GPT is invalid, using primary GPT.
[   61.544292][ T4764]  loop0: p2 p3 p7
[   61.949943][ T4797] netlink: 24 bytes leftover after parsing attributes in process `syz.2.508'.
[   62.030648][ T4806] netlink: 332 bytes leftover after parsing attributes in process `syz.0.512'.
[   62.195053][ T4811] loop4: detected capacity change from 0 to 1024
[   62.205706][ T4811] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.515: Failed to acquire dquot type 0
[   62.221818][ T4811] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   62.237737][ T4811] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.515: corrupted inode contents
[   62.251532][ T4811] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #13: comm syz.4.515: mark_inode_dirty error
[   62.266637][ T4815] vhci_hcd: invalid port number 23
[   62.274293][ T4811] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.515: corrupted inode contents
[   62.307369][ T4811] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.515: mark_inode_dirty error
[   62.319864][ T4818] loop0: detected capacity change from 0 to 164
[   62.328027][ T4818] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   62.339908][ T4811] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.515: corrupted inode contents
[   62.353806][ T4818] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   62.362166][ T4811] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.515: mark_inode_dirty error
[   62.376781][ T4811] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.515: corrupted inode contents
[   62.386382][ T4818] Symlink component flag not implemented
[   62.394229][ T4818] Symlink component flag not implemented
[   62.400146][ T4819] veth0: entered promiscuous mode
[   62.401362][ T4818] Symlink component flag not implemented (7)
[   62.410973][ T4819] netlink: 4 bytes leftover after parsing attributes in process `syz.2.518'.
[   62.411280][ T4818] Symlink component flag not implemented (116)
[   62.426977][ T4811] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[   62.435722][ T4811] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #13: comm syz.4.515: corrupted inode contents
[   62.447909][ T4811] EXT4-fs error (device loop4): ext4_truncate:4637: inode #13: comm syz.4.515: mark_inode_dirty error
[   62.463105][ T4811] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[   62.472791][ T4811] EXT4-fs (loop4): 1 truncate cleaned up
[   62.479405][ T4811] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.596311][ T4840] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4840 comm=syz.3.524
[   62.699711][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.742350][ T4851] loop0: detected capacity change from 0 to 512
[   62.759284][ T4851] EXT4-fs: Ignoring removed i_version option
[   62.765466][ T4851] EXT4-fs: Ignoring removed bh option
[   62.765536][ T4854] loop1: detected capacity change from 0 to 128
[   62.801534][ T4851] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.818809][ T4845] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.831032][ T4852] netlink: 12 bytes leftover after parsing attributes in process `syz.4.529'.
[   62.895581][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.989644][ T4845] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.048676][ T4865] syzkaller0: entered allmulticast mode
[   63.061408][ T4863] syzkaller0: entered promiscuous mode
[   63.073619][ T4863] syzkaller0 (unregistering): left allmulticast mode
[   63.080410][ T4863] syzkaller0 (unregistering): left promiscuous mode
[   63.171398][ T4845] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.229575][ T4873] netlink: 'syz.1.537': attribute type 1 has an invalid length.
[   63.251455][ T4875] loop4: detected capacity change from 0 to 512
[   63.274623][ T4875] EXT4-fs (loop4): 1 orphan inode deleted
[   63.282643][ T4873] bond1: (slave veth7): Enslaving as an active interface with a down link
[   63.288665][ T4875] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.304063][ T3953] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:25: Failed to release dquot type 1
[   63.305604][ T4873] bond1: entered promiscuous mode
[   63.320808][ T4873] bond1: entered allmulticast mode
[   63.326272][ T4873] 8021q: adding VLAN 0 to HW filter on device bond1
[   63.368835][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.442538][ T4845] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.569776][  T784] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.578682][  T784] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.606185][   T52] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.622816][   T52] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.639098][ T4893] loop3: detected capacity change from 0 to 512
[   63.666161][ T4893] EXT4-fs: Ignoring removed i_version option
[   63.672248][ T4893] EXT4-fs: Ignoring removed bh option
[   63.705497][ T4893] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.724566][ T4899] netlink: 12 bytes leftover after parsing attributes in process `syz.4.546'.
[   63.789514][ T4905] netlink: 12 bytes leftover after parsing attributes in process `syz.0.550'.
[   63.807805][ T4907] No such timeout policy "syz0"
[   63.823028][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.839974][ T4909] loop1: detected capacity change from 0 to 512
[   63.850396][ T4909] EXT4-fs (loop1): blocks per group (255) and clusters per group (8192) inconsistent
[   63.892387][ T4916] loop3: detected capacity change from 0 to 164
[   64.037569][ T4924] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.091916][ T4924] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.137710][ T4924] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.217964][ T4924] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.244055][ T4941] loop0: detected capacity change from 0 to 512
[   64.260445][ T4941] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   64.286783][ T4941] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   64.321427][ T3314] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[   64.663775][ T4948] cgroup: fork rejected by pids controller in /syz0
[   64.953539][ T5421] syzkaller0: entered allmulticast mode
[   64.969967][ T5421] syzkaller0: entered promiscuous mode
[   64.977712][ T5421] syzkaller0 (unregistering): left allmulticast mode
[   64.984483][ T5421] syzkaller0 (unregistering): left promiscuous mode
[   65.108587][ T5641] netlink: 12 bytes leftover after parsing attributes in process `syz.2.571'.
[   65.143607][ T5641] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[   65.894093][ T5969] loop4: detected capacity change from 0 to 164
[   65.905884][ T5969] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   65.923408][ T5969] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   65.933990][ T5969] Symlink component flag not implemented
[   65.939833][ T5969] Symlink component flag not implemented
[   65.946296][ T5969] Symlink component flag not implemented (7)
[   65.952309][ T5969] Symlink component flag not implemented (116)
[   66.126336][   T29] kauditd_printk_skb: 410 callbacks suppressed
[   66.126353][   T29] audit: type=1400 audit(66.106:1518): avc:  denied  { mounton } for  pid=5979 comm="syz.1.588" path="/129/file0" dev="tmpfs" ino=686 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   66.221896][ T5986] netlink: 24 bytes leftover after parsing attributes in process `syz.2.589'.
[   66.240536][ T5986] sch_tbf: burst 88 is lower than device veth1 mtu (1514) !
[   66.261276][ T5988] loop4: detected capacity change from 0 to 1024
[   66.268773][ T5988] EXT4-fs: Ignoring removed orlov option
[   66.274526][ T5988] EXT4-fs: Ignoring removed orlov option
[   66.288803][   T29] audit: type=1400 audit(66.266:1519): avc:  denied  { listen } for  pid=5989 comm="syz.2.591" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   66.310320][   T29] audit: type=1400 audit(66.296:1520): avc:  denied  { accept } for  pid=5989 comm="syz.2.591" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   66.346785][   T29] audit: type=1326 audit(66.316:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5991 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   66.365236][ T5988] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.369676][   T29] audit: type=1326 audit(66.316:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5991 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   66.369708][   T29] audit: type=1326 audit(66.316:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5991 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   66.427512][   T29] audit: type=1326 audit(66.316:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5991 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   66.450254][   T29] audit: type=1326 audit(66.316:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5991 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   66.472966][   T29] audit: type=1326 audit(66.316:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5991 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   66.495867][   T29] audit: type=1326 audit(66.316:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5991 comm="syz.2.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   66.537735][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.615510][ T6005] loop2: detected capacity change from 0 to 164
[   66.628895][ T6005] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   66.643146][ T6005] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   66.651772][ T6005] Symlink component flag not implemented
[   66.657844][ T6005] Symlink component flag not implemented
[   66.663794][ T6005] Symlink component flag not implemented (7)
[   66.669862][ T6005] Symlink component flag not implemented (116)
[   66.807007][ T6013] syz_tun: entered allmulticast mode
[   66.853951][ T6017] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   66.877472][ T6017] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   66.944902][ T3926] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.979244][ T3926] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.997169][ T3926] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.012110][ T3926] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.321143][ T6037] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.362105][ T6037] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.424504][ T6037] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.550975][ T6037] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.696428][  T784] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.778752][ T3953] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.863702][ T3953] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.888589][ T6064] netlink: 12 bytes leftover after parsing attributes in process `syz.0.616'.
[   67.974148][  T784] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.051658][ T6074] loop3: detected capacity change from 0 to 512
[   68.068839][ T6077] bridge0: entered promiscuous mode
[   68.074153][ T6077] macsec1: entered promiscuous mode
[   68.087801][ T6077] bridge0: port 1(macsec1) entered blocking state
[   68.094351][ T6077] bridge0: port 1(macsec1) entered disabled state
[   68.127511][ T6074] EXT4-fs (loop3): 1 orphan inode deleted
[   68.136538][ T6077] macsec1: entered allmulticast mode
[   68.141937][ T6077] bridge0: entered allmulticast mode
[   68.148356][ T6074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.161029][ T3953] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:25: Failed to release dquot type 1
[   68.201811][ T6077] macsec1: left allmulticast mode
[   68.206910][ T6077] bridge0: left allmulticast mode
[   68.227270][ T6077] bridge0: left promiscuous mode
[   68.234705][ T6090] netlink: 'syz.2.623': attribute type 10 has an invalid length.
[   68.242592][ T6090] netlink: 2 bytes leftover after parsing attributes in process `syz.2.623'.
[   68.288492][ T3329] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.297475][ T6090] team0: entered promiscuous mode
[   68.364510][ T3329] EXT4-fs error (device loop3): ext4_empty_dir:3086: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.388559][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.389651][ T6086] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   68.400191][ T3329] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.417579][ T6099] syz_tun: entered allmulticast mode
[   68.481671][ T3329] EXT4-fs error (device loop3): ext4_empty_dir:3086: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.508746][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.512691][ T6111] netlink: 16 bytes leftover after parsing attributes in process `syz.0.635'.
[   68.520560][ T3329] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.550501][ T3329] EXT4-fs error (device loop3): ext4_empty_dir:3086: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.570030][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.581870][ T3329] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.603079][ T3329] EXT4-fs error (device loop3): ext4_empty_dir:3086: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.622137][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.638525][ T6116] bridge0: entered promiscuous mode
[   68.644275][ T6116] bridge0: left promiscuous mode
[   68.645032][ T3329] EXT4-fs error (device loop3): ext4_readdir:264: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[   68.670783][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.682852][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.700766][ T6120] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6120 comm=syz.4.638
[   68.723223][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.736306][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.754186][ T6124] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   68.776626][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   68.801194][ T3329] EXT4-fs warning (device loop3): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[   69.011410][ T6135] netlink: 24 bytes leftover after parsing attributes in process `syz.0.643'.
[   69.102448][ T6141] loop2: detected capacity change from 0 to 1024
[   69.109694][ T6141] EXT4-fs: inline encryption not supported
[   69.127539][ T6141] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.164020][ T6145] netlink: 28 bytes leftover after parsing attributes in process `syz.0.647'.
[   69.291503][ T6141] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[   69.306380][ T6141] EXT4-fs (loop2): Remounting filesystem read-only
[   69.328582][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.657672][ T6164] netlink: 12 bytes leftover after parsing attributes in process `syz.2.654'.
[   69.753886][ T6174] loop0: detected capacity change from 0 to 2048
[   69.828258][ T6183] loop4: detected capacity change from 0 to 512
[   69.841335][ T6183] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   69.863160][ T6183] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.892382][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.139391][ T6206] netlink: 399 bytes leftover after parsing attributes in process `syz.4.671'.
[   70.148805][ T6206] openvswitch: netlink: ufid size 36 bytes exceeds the range (1, 16)
[   70.252565][ T6215] loop4: detected capacity change from 0 to 128
[   70.359246][ T6215] bio_check_eod: 847 callbacks suppressed
[   70.359265][ T6215] syz.4.675: attempt to access beyond end of device
[   70.359265][ T6215] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128
[   70.378946][ T6215] syz.4.675: attempt to access beyond end of device
[   70.378946][ T6215] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[   70.393518][ T6215] syz.4.675: attempt to access beyond end of device
[   70.393518][ T6215] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[   70.407015][ T6215] syz.4.675: attempt to access beyond end of device
[   70.407015][ T6215] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[   70.422096][ T6215] syz.4.675: attempt to access beyond end of device
[   70.422096][ T6215] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[   70.433357][ T3926] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   70.435677][ T6215] syz.4.675: attempt to access beyond end of device
[   70.435677][ T6215] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[   70.485699][ T6215] syz.4.675: attempt to access beyond end of device
[   70.485699][ T6215] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[   70.500215][ T6215] syz.4.675: attempt to access beyond end of device
[   70.500215][ T6215] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[   70.502215][ T3926] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   70.513727][ T6215] syz.4.675: attempt to access beyond end of device
[   70.513727][ T6215] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[   70.513776][ T6215] syz.4.675: attempt to access beyond end of device
[   70.513776][ T6215] loop4: rw=2049, sector=297, nr_sectors = 8 limit=128
[   70.536232][ T3926] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   70.557876][ T3926] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   70.622499][ T6220] pim6reg1: entered promiscuous mode
[   70.627949][ T6220] pim6reg1: entered allmulticast mode
[   70.793424][ T6228] rdma_op ffff88811d153180 conn xmit_rdma 0000000000000000
[   70.818860][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.015610][ T6237] tipc: Started in network mode
[   71.020670][ T6237] tipc: Node identity 2e636fef393d, cluster identity 4711
[   71.027923][ T6237] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   71.056432][ T6236] tipc: Resetting bearer <eth:syzkaller0>
[   71.095519][ T6236] tipc: Disabling bearer <eth:syzkaller0>
[   71.101724][ T6251] loop2: detected capacity change from 0 to 512
[   71.108672][ T6251] EXT4-fs: Ignoring removed i_version option
[   71.128580][ T6253] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6253 comm=syz.1.689
[   71.147060][ T6251] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e000c018, mo2=0002]
[   71.155181][ T6251] System zones: 0-2, 18-18, 34-35
[   71.165874][ T6251] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.207696][   T29] kauditd_printk_skb: 883 callbacks suppressed
[   71.207711][   T29] audit: type=1326 audit(71.186:2410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.2.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e1e7ddf90 code=0x7ffc0000
[   71.245045][   T29] audit: type=1326 audit(71.186:2411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.2.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f8e1e7de497 code=0x7ffc0000
[   71.267724][   T29] audit: type=1326 audit(71.186:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.2.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e1e7ddf90 code=0x7ffc0000
[   71.290416][   T29] audit: type=1326 audit(71.186:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.2.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   71.313127][   T29] audit: type=1326 audit(71.186:2414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.2.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   71.335851][   T29] audit: type=1326 audit(71.186:2415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.2.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   71.358468][   T29] audit: type=1326 audit(71.216:2416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.2.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   71.381141][   T29] audit: type=1326 audit(71.216:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.2.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   71.404643][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.480909][ T6265] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   71.496691][ T6264] tipc: Resetting bearer <eth:syzkaller0>
[   71.512290][ T6264] tipc: Disabling bearer <eth:syzkaller0>
[   71.521466][ T6238] chnl_net:caif_netlink_parms(): no params data found
[   71.591010][ T6288] ip6gre1: entered allmulticast mode
[   71.596948][ T6283] loop4: detected capacity change from 0 to 2048
[   71.612424][ T6238] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.619651][ T6238] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.644519][ T6283] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.660159][ T6238] bridge_slave_0: entered allmulticast mode
[   71.666429][   T29] audit: type=1326 audit(71.636:2418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   71.667568][ T6294] loop1: detected capacity change from 0 to 512
[   71.689227][   T29] audit: type=1326 audit(71.636:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6293 comm="syz.1.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   71.698432][ T6238] bridge_slave_0: entered promiscuous mode
[   71.729458][ T6238] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.736900][ T6238] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.746916][ T6294] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a84ec018, mo2=0002]
[   71.755249][ T6238] bridge_slave_1: entered allmulticast mode
[   71.756220][ T6294] System zones: 0-2, 18-18, 34-35
[   71.761824][ T6238] bridge_slave_1: entered promiscuous mode
[   71.779648][ T6294] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.793494][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.815079][ T6238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   71.837210][ T6238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   71.866586][ T6238] team0: Port device team_slave_0 added
[   71.868838][ T6302] netlink: 24 bytes leftover after parsing attributes in process `syz.2.703'.
[   71.872324][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.909264][ T6238] team0: Port device team_slave_1 added
[   71.963906][ T6238] batman_adv: batadv0: Adding interface: batadv_slave_0
[   71.970985][ T6238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   71.997045][ T6238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.035712][ T6238] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.042746][ T6238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   72.069910][ T6238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.104178][ T6311] loop0: detected capacity change from 0 to 1024
[   72.113013][ T6311] EXT4-fs: Ignoring removed bh option
[   72.179624][ T6311] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.222554][ T6238] hsr_slave_0: entered promiscuous mode
[   72.239400][ T6238] hsr_slave_1: entered promiscuous mode
[   72.263864][ T6238] debugfs: 'hsr0' already exists in 'hsr'
[   72.269885][ T6238] Cannot create hsr debugfs directory
[   72.287304][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.317295][ T6321] syz_tun: entered allmulticast mode
[   72.350486][ T6321] dvmrp8: entered allmulticast mode
[   72.369388][ T6324] netlink: 'syz.4.712': attribute type 1 has an invalid length.
[   72.371460][ T6320] syz_tun: left allmulticast mode
[   72.377078][ T6324] netlink: 224 bytes leftover after parsing attributes in process `syz.4.712'.
[   72.460029][ T6238] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   72.470255][ T6238] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   72.489481][ T6238] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   72.511942][ T6332] netlink: 4 bytes leftover after parsing attributes in process `syz.0.714'.
[   72.524943][ T6238] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   72.535585][ T6332] netlink: 12 bytes leftover after parsing attributes in process `syz.0.714'.
[   72.656099][ T6238] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.684629][ T6238] 8021q: adding VLAN 0 to HW filter on device team0
[   72.701247][ T3953] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.708337][ T3953] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.736576][ T6355] sch_fq: defrate 0 ignored.
[   72.746499][ T6352] ALSA: seq fatal error: cannot create timer (-19)
[   72.761488][ T3953] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.768842][ T3953] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.871989][ T6238] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.875614][ T6370] loop2: detected capacity change from 0 to 2048
[   72.915596][ T6376] loop4: detected capacity change from 0 to 128
[   72.922560][ T6370] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.949361][ T6376] Buffer I/O error on dev loop4, logical block 79, lost async page write
[   72.958838][ T6376] Buffer I/O error on dev loop4, logical block 80, lost async page write
[   72.968157][ T6376] Buffer I/O error on dev loop4, logical block 83, lost async page write
[   72.976720][ T6376] Buffer I/O error on dev loop4, logical block 84, lost async page write
[   72.977643][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.995243][ T6376] Buffer I/O error on dev loop4, logical block 95, lost async page write
[   73.003910][ T6376] Buffer I/O error on dev loop4, logical block 96, lost async page write
[   73.035517][ T6376] Buffer I/O error on dev loop4, logical block 99, lost async page write
[   73.044361][ T6376] Buffer I/O error on dev loop4, logical block 100, lost async page write
[   73.053876][ T6376] Buffer I/O error on dev loop4, logical block 111, lost async page write
[   73.062784][ T6376] Buffer I/O error on dev loop4, logical block 112, lost async page write
[   73.087190][ T6238] veth0_vlan: entered promiscuous mode
[   73.095574][ T6238] veth1_vlan: entered promiscuous mode
[   73.112206][ T6238] veth0_macvtap: entered promiscuous mode
[   73.119600][ T6238] veth1_macvtap: entered promiscuous mode
[   73.131693][ T6238] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.142502][ T6238] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.154452][  T784] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.163845][  T784] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.175188][  T784] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.186738][  T784] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.353129][ T6403] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.388275][ T6403] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.439286][ T6403] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.485954][ T6403] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.568091][ T3954] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.583358][ T3954] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.611825][ T3954] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.625963][ T3954] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.695892][ T6419] syz_tun: entered allmulticast mode
[   73.716855][ T6419] dvmrp8: entered allmulticast mode
[   73.732468][ T6420] loop5: detected capacity change from 0 to 2048
[   73.741600][ T6418] syz_tun: left allmulticast mode
[   73.761393][ T6422] netlink: 12 bytes leftover after parsing attributes in process `syz.4.740'.
[   73.787149][ T6420] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.812419][ T6425] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   73.829352][ T6425] SELinux: failed to load policy
[   73.880738][ T6238] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.904841][ T6429] netlink: 176 bytes leftover after parsing attributes in process `syz.4.742'.
[   73.989264][ T6439] netlink: 28 bytes leftover after parsing attributes in process `syz.5.743'.
[   74.000982][ T6435] loop0: detected capacity change from 0 to 2048
[   74.047771][ T6435] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.105032][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.351058][ T6463] netlink: 'syz.5.755': attribute type 1 has an invalid length.
[   74.362012][ T6463] veth0: entered promiscuous mode
[   74.367247][ T6463] veth0: entered allmulticast mode
[   74.453545][ T6471] veth6: entered promiscuous mode
[   74.458708][ T6471] veth6: entered allmulticast mode
[   74.523361][ T6474] loop0: detected capacity change from 0 to 512
[   74.533274][ T6474] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   74.640577][ T6474] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.670512][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.684201][ T6483] netlink: 'syz.1.763': attribute type 1 has an invalid length.
[   74.700124][ T6483] bond2: entered promiscuous mode
[   74.705274][ T6483] bond2: entered allmulticast mode
[   74.711668][ T6483] 8021q: adding VLAN 0 to HW filter on device bond2
[   74.734384][ T6483] bond2: (slave gretap1): making interface the new active one
[   74.741943][ T6483] gretap1: entered promiscuous mode
[   74.747322][ T6483] gretap1: entered allmulticast mode
[   74.754422][ T6483] bond2: (slave gretap1): Enslaving as an active interface with an up link
[   74.802944][ T6486] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6486 comm=syz.4.765
[   74.927129][ T6483] vlan0: entered allmulticast mode
[   74.947355][ T6483] bond2: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[   75.016132][ T6496] IPv4: Oversized IP packet from 127.202.26.0
[   75.046606][ T6498] netlink: 'syz.0.770': attribute type 10 has an invalid length.
[   75.061659][ T6500] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   75.069402][ T6500] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   75.085514][ T6498] team0 (unregistering): Port device team_slave_1 removed
[   75.130483][ T6504] loop1: detected capacity change from 0 to 2048
[   75.173326][ T6504] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.344758][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.357557][ T6520] $Hÿ: renamed from bond0
[   75.384741][ T6520] $Hÿ: entered promiscuous mode
[   75.389860][ T6520] bond_slave_0: entered promiscuous mode
[   75.395608][ T6520] bond_slave_1: entered promiscuous mode
[   75.459533][ T6527] netlink: 12 bytes leftover after parsing attributes in process `syz.0.779'.
[   75.548620][ T6535] loop4: detected capacity change from 0 to 512
[   75.555599][ T6535] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   75.842589][ T6558] netlink: 44 bytes leftover after parsing attributes in process `syz.1.793'.
[   75.851652][ T6558] netlink: 4 bytes leftover after parsing attributes in process `syz.1.793'.
[   75.916133][ T6563] bond_slave_1: mtu less than device minimum
[   76.025818][ T6573] ip6gre1: entered allmulticast mode
[   76.238200][ T6585] loop2: detected capacity change from 0 to 8192
[   76.290521][ T6585]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   76.295773][ T6585] loop2: partition table partially beyond EOD, truncated
[   76.314410][ T6585] loop2: p1 start 100663296 is beyond EOD, truncated
[   76.321278][ T6585] loop2: p2 size 134217732 extends beyond EOD, truncated
[   76.341790][ T6585] loop2: p4 size 14876672 extends beyond EOD, truncated
[   76.350135][ T6585] loop2: p5 size 134217732 extends beyond EOD, truncated
[   76.365118][ T6585] loop2: p6 size 14876672 extends beyond EOD, truncated
[   76.545154][ T6597] netlink: 4 bytes leftover after parsing attributes in process `syz.5.809'.
[   76.558698][ T6597] netlink: 12 bytes leftover after parsing attributes in process `syz.5.809'.
[   76.599044][ T6602] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   76.606508][ T6602] IPv6: NLM_F_CREATE should be set when creating new route
[   76.613805][ T6602] IPv6: NLM_F_CREATE should be set when creating new route
[   76.621526][ T6602] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   76.855676][   T29] kauditd_printk_skb: 393 callbacks suppressed
[   76.855694][   T29] audit: type=1326 audit(76.826:2813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.893273][   T29] audit: type=1326 audit(76.846:2814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.915984][   T29] audit: type=1326 audit(76.866:2815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.916828][ T6609] loop4: detected capacity change from 0 to 512
[   76.938743][   T29] audit: type=1326 audit(76.866:2816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.967947][   T29] audit: type=1326 audit(76.866:2817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=145 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.967980][   T29] audit: type=1326 audit(76.866:2818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.968060][   T29] audit: type=1326 audit(76.866:2819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.968087][   T29] audit: type=1400 audit(76.866:2820): avc:  denied  { create } for  pid=6608 comm="syz.4.814" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   76.968111][   T29] audit: type=1326 audit(76.866:2821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.968138][   T29] audit: type=1326 audit(76.866:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6608 comm="syz.4.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d13ef749 code=0x7ffc0000
[   76.997390][ T6609] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   76.997435][ T6609] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.054761][ T6609] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.814: Allocating blocks 41-42 which overlap fs metadata
[   77.163838][ T6609] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.814: Allocating blocks 41-42 which overlap fs metadata
[   77.181192][ T6609] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.814: Failed to acquire dquot type 1
[   77.199806][ T6609] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[   77.215067][ T6609] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.814: corrupted inode contents
[   77.229173][ T6609] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #12: comm syz.4.814: mark_inode_dirty error
[   77.266961][ T6609] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.814: corrupted inode contents
[   77.280082][ T6609] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.814: mark_inode_dirty error
[   77.297038][ T6609] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.814: corrupted inode contents
[   77.320926][ T6609] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[   77.342919][ T6609] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.814: corrupted inode contents
[   77.364528][ T6609] EXT4-fs error (device loop4): ext4_truncate:4637: inode #12: comm syz.4.814: mark_inode_dirty error
[   77.395430][ T6609] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[   77.395853][ T6634] tipc: New replicast peer: 255.255.255.255
[   77.410575][ T6634] tipc: Enabled bearer <udp:s >, priority 10
[   77.462677][ T6609] EXT4-fs (loop4): 1 truncate cleaned up
[   77.464411][ T6642] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6642 comm=syz.0.828
[   77.483543][ T6609] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.516495][ T6643] tipc: Started in network mode
[   77.521493][ T6643] tipc: Node identity 16f0bf888253, cluster identity 4711
[   77.528776][ T6643] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   77.552986][ T6639] tipc: Resetting bearer <eth:syzkaller0>
[   77.561349][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.579393][ T6639] tipc: Disabling bearer <eth:syzkaller0>
[   77.598370][   T52] Bluetooth: hci0: Frame reassembly failed (-84)
[   77.636046][ T6650] netlink: 4 bytes leftover after parsing attributes in process `syz.5.830'.
[   77.650471][ T6650] team1: entered promiscuous mode
[   77.655607][ T6650] team1: entered allmulticast mode
[   77.661232][ T6650] 8021q: adding VLAN 0 to HW filter on device team1
[   77.717262][ T6658] bridge: RTM_NEWNEIGH with invalid ether address
[   77.753580][ T6660] loop2: detected capacity change from 0 to 2048
[   77.782897][ T6660] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.795586][ T6667] netlink: 4 bytes leftover after parsing attributes in process `syz.5.838'.
[   77.804829][ T6667] bridge_slave_1: left allmulticast mode
[   77.810569][ T6667] bridge_slave_1: left promiscuous mode
[   77.816401][ T6667] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.824620][ T6667] bridge_slave_0: left allmulticast mode
[   77.830604][ T6667] bridge_slave_0: left promiscuous mode
[   77.836426][ T6667] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.866104][ T6668] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   77.882271][ T6668] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[   77.894754][ T6668] EXT4-fs (loop2): This should not happen!! Data will be lost
[   77.894754][ T6668] 
[   77.904446][ T6668] EXT4-fs (loop2): Total free blocks count 0
[   77.910611][ T6668] EXT4-fs (loop2): Free/Dirty block details
[   77.916573][ T6668] EXT4-fs (loop2): free_blocks=2415919504
[   77.922323][ T6668] EXT4-fs (loop2): dirty_blocks=1296
[   77.927734][ T6668] EXT4-fs (loop2): Block reservation details
[   77.933720][ T6668] EXT4-fs (loop2): i_reserved_data_blocks=81
[   77.977661][ T6659] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1280 with max blocks 2 with error 28
[   78.027723][ T6675] loop2: detected capacity change from 0 to 128
[   78.067706][ T6675] bio_check_eod: 128 callbacks suppressed
[   78.067728][ T6675] syz.2.841: attempt to access beyond end of device
[   78.067728][ T6675] loop2: rw=0, sector=121, nr_sectors = 920 limit=128
[   78.390204][ T6698] loop0: detected capacity change from 0 to 8192
[   78.435583][ T3314] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[   78.443562][ T3314] FAT-fs (loop0): Filesystem has been set read-only
[   78.494747][ T6709] pim6reg1: entered promiscuous mode
[   78.500370][ T6709] pim6reg1: entered allmulticast mode
[   78.526116][ T3394] tipc: Node number set to 975437724
[   79.345041][ T6750] loop2: detected capacity change from 0 to 8192
[   79.388604][ T6750]  loop2: p1 p2 p3 p4
[   79.400575][ T6750] loop2: p3 start 331777 is beyond EOD, truncated
[   79.407103][ T6750] loop2: p4 size 262144 extends beyond EOD, truncated
[   79.527438][ T3306] udevd[3306]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   79.533518][ T6589] udevd[6589]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   79.537991][ T3787] udevd[3787]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   79.620751][ T6765] netlink: 'syz.2.877': attribute type 29 has an invalid length.
[   79.629562][ T6765] netlink: 'syz.2.877': attribute type 29 has an invalid length.
[   79.651453][ T6765] netlink: 500 bytes leftover after parsing attributes in process `syz.2.877'.
[   79.660890][ T6765] unsupported nla_type 66
[   79.666110][ T6646] Bluetooth: hci0: command 0x1003 tx timeout
[   79.672223][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   79.725128][ T6772] loop0: detected capacity change from 0 to 128
[   79.764451][ T6774] netlink: 8 bytes leftover after parsing attributes in process `syz.2.881'.
[   79.891239][ T4202] kworker/u8:66: attempt to access beyond end of device
[   79.891239][ T4202] loop0: rw=1, sector=145, nr_sectors = 16 limit=128
[   79.905039][ T4202] kworker/u8:66: attempt to access beyond end of device
[   79.905039][ T4202] loop0: rw=1, sector=169, nr_sectors = 8 limit=128
[   79.918835][ T4202] kworker/u8:66: attempt to access beyond end of device
[   79.918835][ T4202] loop0: rw=1, sector=185, nr_sectors = 8 limit=128
[   79.932333][ T4202] kworker/u8:66: attempt to access beyond end of device
[   79.932333][ T4202] loop0: rw=1, sector=201, nr_sectors = 8 limit=128
[   79.945960][ T4202] kworker/u8:66: attempt to access beyond end of device
[   79.945960][ T4202] loop0: rw=1, sector=217, nr_sectors = 8 limit=128
[   79.959836][ T4202] kworker/u8:66: attempt to access beyond end of device
[   79.959836][ T4202] loop0: rw=1, sector=233, nr_sectors = 8 limit=128
[   79.973381][ T4202] kworker/u8:66: attempt to access beyond end of device
[   79.973381][ T4202] loop0: rw=1, sector=249, nr_sectors = 8 limit=128
[   79.988128][ T4202] kworker/u8:66: attempt to access beyond end of device
[   79.988128][ T4202] loop0: rw=1, sector=265, nr_sectors = 8 limit=128
[   80.001715][ T4202] kworker/u8:66: attempt to access beyond end of device
[   80.001715][ T4202] loop0: rw=1, sector=281, nr_sectors = 8 limit=128
[   80.322960][ T6790] loop1: detected capacity change from 0 to 2048
[   80.439610][ T3306]  loop1: p2 < > p4
[   80.464855][ T3306] loop1: p4 size 262144 extends beyond EOD, truncated
[   80.506526][ T6790]  loop1: p2 < > p4
[   80.517337][ T6799] netlink: 'syz.5.893': attribute type 1 has an invalid length.
[   80.521797][ T6790] loop1: p4 size 262144 extends beyond EOD, truncated
[   80.559474][ T6801] loop4: detected capacity change from 0 to 512
[   80.572634][ T3002]  loop1: p2 < > p4
[   80.578914][ T3002] loop1: p4 size 262144 extends beyond EOD, truncated
[   80.613245][ T6589] printk: udevd: 5 output lines suppressed due to ratelimiting
[   80.979082][ T6818] loop4: detected capacity change from 0 to 1024
[   81.010635][ T6818] EXT4-fs: Ignoring removed orlov option
[   81.109290][ T6818] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.241082][ T6830] netlink: 4 bytes leftover after parsing attributes in process `syz.2.906'.
[   81.417360][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.466796][ T6844] netlink: 'syz.2.911': attribute type 29 has an invalid length.
[   81.477412][ T6844] netlink: 'syz.2.911': attribute type 29 has an invalid length.
[   81.789389][ T6870] loop4: detected capacity change from 0 to 512
[   81.809831][ T6870] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.957497][ T6874] hub 5-0:1.0: USB hub found
[   81.962438][ T6874] hub 5-0:1.0: 8 ports detected
[   82.019725][ T6878] bond_slave_1: mtu less than device minimum
[   82.164528][   T29] kauditd_printk_skb: 161 callbacks suppressed
[   82.164544][   T29] audit: type=1400 audit(82.136:2980): avc:  denied  { append } for  pid=6889 comm="syz.0.932" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   82.196144][   T29] audit: type=1326 audit(82.166:2981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.218935][   T29] audit: type=1326 audit(82.166:2982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.241637][   T29] audit: type=1326 audit(82.166:2983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.264419][   T29] audit: type=1326 audit(82.166:2984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.287176][   T29] audit: type=1326 audit(82.166:2985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.310001][   T29] audit: type=1326 audit(82.166:2986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.332729][   T29] audit: type=1326 audit(82.166:2987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.355284][   T29] audit: type=1326 audit(82.166:2988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.364476][ T6894] loop2: detected capacity change from 0 to 1024
[   82.378075][   T29] audit: type=1326 audit(82.166:2989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6889 comm="syz.0.932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[   82.385743][ T6894] EXT4-fs: Ignoring removed orlov option
[   82.430703][ T6896] loop0: detected capacity change from 0 to 128
[   82.495726][ T6894] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   82.557247][ T6894] bridge: RTM_NEWNEIGH with invalid ether address
[   82.606518][ T3321] syz_tun (unregistering): left allmulticast mode
[   82.631884][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   82.718909][ T3936] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.729400][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.761061][ T6913] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'.
[   82.778173][ T3936] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.850534][ T3936] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.907058][ T6923] syz_tun: entered allmulticast mode
[   82.917026][ T6922] syz_tun: left allmulticast mode
[   82.937054][ T3936] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.981134][ T6928] netlink: 24 bytes leftover after parsing attributes in process `syz.2.947'.
[   83.049337][ T6928] netlink: 4 bytes leftover after parsing attributes in process `syz.2.947'.
[   83.306050][ T6946] loop1: detected capacity change from 0 to 2048
[   83.408443][ T3936] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   83.418403][ T3936] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   83.427732][ T3936] bond0 (unregistering): Released all slaves
[   83.440421][ T6950] netlink: 'syz.0.962': attribute type 4 has an invalid length.
[   83.488988][ T3936] tipc: Left network mode
[   83.500693][ T3936] hsr_slave_0: left promiscuous mode
[   83.506725][ T3936] hsr_slave_1: left promiscuous mode
[   83.512539][ T3936] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.520162][ T3936] batman_adv: batadv0: Removing interface: batadv_slave_0
[   83.527825][ T3936] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   83.535275][ T3936] batman_adv: batadv0: Removing interface: batadv_slave_1
[   83.546038][ T3936] veth1_macvtap: left promiscuous mode
[   83.552004][ T3936] veth0_macvtap: left promiscuous mode
[   83.557602][ T3936] veth1_vlan: left promiscuous mode
[   83.562907][ T3936] veth0_vlan: left promiscuous mode
[   83.639703][ T3936] team0 (unregistering): Port device team_slave_1 removed
[   83.649572][ T3936] team0 (unregistering): Port device team_slave_0 removed
[   83.680664][ T6952] tipc: Started in network mode
[   83.685613][ T6952] tipc: Node identity ca6d30ae1c1b, cluster identity 4711
[   83.692840][ T6952] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   83.704456][ T3946] tipc: Resetting bearer <eth:syzkaller0>
[   83.719557][ T6951] tipc: Resetting bearer <eth:syzkaller0>
[   83.732426][ T6951] tipc: Disabling bearer <eth:syzkaller0>
[   83.786290][ T6939] chnl_net:caif_netlink_parms(): no params data found
[   83.824382][ T6939] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.831527][ T6939] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.839302][ T6939] bridge_slave_0: entered allmulticast mode
[   83.847074][ T6939] bridge_slave_0: entered promiscuous mode
[   83.859227][ T6939] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.866507][ T6939] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.873758][ T6939] bridge_slave_1: entered allmulticast mode
[   83.880269][ T6939] bridge_slave_1: entered promiscuous mode
[   83.886825][ T6985] pim6reg1: entered promiscuous mode
[   83.892168][ T6985] pim6reg1: entered allmulticast mode
[   83.914767][ T6939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   83.925330][ T6939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   83.945282][ T6939] team0: Port device team_slave_0 added
[   83.951775][ T6939] team0: Port device team_slave_1 added
[   83.969009][ T6939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.976144][ T6939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   84.002153][ T6939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.013598][ T6939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.020680][ T6939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   84.046638][ T6939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.079008][ T6939] hsr_slave_0: entered promiscuous mode
[   84.085246][ T6939] hsr_slave_1: entered promiscuous mode
[   84.089767][ T6990] loop2: detected capacity change from 0 to 2048
[   84.092286][ T6939] debugfs: 'hsr0' already exists in 'hsr'
[   84.103095][ T6939] Cannot create hsr debugfs directory
[   84.180669][ T6939] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   84.190732][ T6939] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   84.199887][ T6939] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   84.208575][ T6939] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   84.224020][ T6939] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.231359][ T6939] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.238899][ T6939] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.246014][ T6939] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.279513][ T6939] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.286932][ T7003] netlink: 'syz.1.968': attribute type 7 has an invalid length.
[   84.294642][ T7003] netlink: 8 bytes leftover after parsing attributes in process `syz.1.968'.
[   84.303843][ T3963] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.311988][ T3963] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.324414][ T6939] 8021q: adding VLAN 0 to HW filter on device team0
[   84.344844][ T3946] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.352052][ T3946] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.363036][ T3946] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.370286][ T3946] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.394623][ T6939] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   84.405137][ T6939] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   84.462015][ T6939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.602211][ T7035] batman_adv: batadv0: Removing interface: batadv_slave_0
[   84.611400][ T7035] batman_adv: batadv0: Removing interface: batadv_slave_1
[   84.633147][ T6939] veth0_vlan: entered promiscuous mode
[   84.641691][ T6939] veth1_vlan: entered promiscuous mode
[   84.659965][ T6939] veth0_macvtap: entered promiscuous mode
[   84.668022][ T6939] veth1_macvtap: entered promiscuous mode
[   84.680998][ T6939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.693981][ T6939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.715910][ T3936] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.731703][ T3936] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.747301][ T3936] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.757933][ T3936] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.924910][ T7047] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   84.935833][ T7047] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   84.975986][   T36] syz1: Port: 1 Link DOWN
[   84.980516][   T31] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   84.990589][   T31] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   84.999982][   T31] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   85.010008][   T31] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   85.070936][ T7056] netlink: 12 bytes leftover after parsing attributes in process `syz.2.983'.
[   85.115824][ T7060] team_slave_1: Caught tx_queue_len zero misconfig
[   85.371718][ T7065] wireguard0: entered promiscuous mode
[   85.377289][ T7065] wireguard0: entered allmulticast mode
[   85.415714][ T7069] macsec0: entered promiscuous mode
[   85.800464][ T7092] wg2: entered promiscuous mode
[   85.805491][ T7092] wg2: entered allmulticast mode
[   85.888351][ T7103] loop2: detected capacity change from 0 to 2048
[   85.956447][ T7103]  loop2: p1 p3 p4
[   85.971304][ T7103] loop2: p4 size 589824 extends beyond EOD, truncated
[   86.025415][ T7112] loop1: detected capacity change from 0 to 2048
[   86.070849][ T7112] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.147925][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.193569][ T7124] ref_ctr increment failed for inode: 0x4b offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff8881039cc500
[   86.937707][ T7152] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1025'.
[   86.953561][ T7152] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1025'.
[   87.119155][ T7156] loop6: detected capacity change from 0 to 512
[   87.140660][ T7156] EXT4-fs: dax option not supported
[   87.156257][ T7158] netlink: 'syz.2.1028': attribute type 29 has an invalid length.
[   87.165105][ T7158] netlink: 'syz.2.1028': attribute type 29 has an invalid length.
[   87.192050][ T7158] netlink: 500 bytes leftover after parsing attributes in process `syz.2.1028'.
[   87.230958][ T7162] loop6: detected capacity change from 0 to 1024
[   87.246503][ T7162] EXT4-fs: Ignoring removed orlov option
[   87.276183][ T7162] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   87.300013][ T7170] netlink: 'syz.2.1033': attribute type 1 has an invalid length.
[   87.307872][ T7170] netlink: 'syz.2.1033': attribute type 4 has an invalid length.
[   87.315617][ T7170] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.1033'.
[   87.349124][ T7162] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   87.373772][ T7162] EXT4-fs error (device loop6): ext4_map_blocks:814: inode #15: comm +“[@: lblock 0 mapped to illegal pblock 0 (length 4)
[   87.396574][ T7174] netlink: 'syz.2.1033': attribute type 1 has an invalid length.
[   87.404333][ T7174] netlink: 'syz.2.1033': attribute type 4 has an invalid length.
[   87.412227][ T7174] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.1033'.
[   87.412927][ T7162] EXT4-fs error (device loop6): ext4_ext_remove_space:2955: inode #15: comm +“[@: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[   87.470770][ T7178] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1036'.
[   87.480191][ T7180] netlink: 'syz.2.1037': attribute type 10 has an invalid length.
[   87.500912][ T7180] team0: left promiscuous mode
[   87.521302][ T7180] 8021q: adding VLAN 0 to HW filter on device team0
[   87.529092][ T7180] bond0: (slave team0): Enslaving as an active interface with an up link
[   87.549495][ T6939] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   87.572749][ T7180] siw: device registration error -23
[   87.610936][ T7192] netlink: 'syz.1.1042': attribute type 3 has an invalid length.
[   87.717925][   T29] kauditd_printk_skb: 135 callbacks suppressed
[   87.717943][   T29] audit: type=1400 audit(87.696:3125): avc:  denied  { setopt } for  pid=7203 comm="syz.5.1047" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   87.754193][ T7206] netlink: 'syz.1.1048': attribute type 1 has an invalid length.
[   87.800482][ T7206] 8021q: adding VLAN 0 to HW filter on device bond3
[   87.839562][ T7214] 8021q: adding VLAN 0 to HW filter on device bond3
[   87.861509][ T7214] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address
[   87.901796][ T7214] bond3: (slave vxcan3): Error -95 calling set_mac_address
[   88.076168][   T29] audit: type=1400 audit(88.046:3126): avc:  denied  { getopt } for  pid=7242 comm="syz.5.1063" lport=39280 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[   88.116447][ T7246] syzkaller0: entered allmulticast mode
[   88.122320][ T7246] syzkaller0: entered promiscuous mode
[   88.136663][ T7246] syzkaller0 (unregistering): left allmulticast mode
[   88.143489][ T7246] syzkaller0 (unregistering): left promiscuous mode
[   88.175947][ T7257] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.184834][ T7257] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.197415][ T7257] loop5: detected capacity change from 0 to 512
[   88.218224][ T7257] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.439053][   T29] audit: type=1326 audit(88.416:3127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.2.1069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   88.448976][ T7275] netlink: 'syz.6.1070': attribute type 1 has an invalid length.
[   88.469662][ T7275] netlink: 224 bytes leftover after parsing attributes in process `syz.6.1070'.
[   88.482726][   T29] audit: type=1326 audit(88.446:3128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.2.1069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   88.505471][   T29] audit: type=1326 audit(88.446:3129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.2.1069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   88.528306][   T29] audit: type=1326 audit(88.446:3130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.2.1069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   88.551049][   T29] audit: type=1326 audit(88.446:3131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.2.1069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   88.573798][   T29] audit: type=1326 audit(88.446:3132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.2.1069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   88.596585][   T29] audit: type=1326 audit(88.446:3133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.2.1069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   88.619374][   T29] audit: type=1326 audit(88.446:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7272 comm="syz.2.1069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e1e7df749 code=0x7ffc0000
[   88.761592][ T7288] sch_fq: defrate 0 ignored.
[   88.774342][ T6238] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.858280][ T7300] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   88.950713][ T7314] loop2: detected capacity change from 0 to 512
[   88.967738][ T7314] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   88.976699][ T7314] EXT4-fs (loop2): invalid journal inode
[   88.982551][ T7314] EXT4-fs (loop2): can't get journal size
[   88.992724][ T7317] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1083'.
[   89.001634][ T7317] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1083'.
[   89.003545][ T7314] EXT4-fs (loop2): 1 truncate cleaned up
[   89.033264][ T7314] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.427384][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.548727][ T7356] pim6reg: entered allmulticast mode
[   89.557862][ T7354] loop2: detected capacity change from 0 to 512
[   89.576973][ T7356] pim6reg: left allmulticast mode
[   89.595437][ T7354] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000101)
[   89.812081][ T7372] loop1: detected capacity change from 0 to 8192
[   89.923793][ T7387] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.944961][ T7387] 8021q: adding VLAN 0 to HW filter on device team0
[   89.955746][ T7387] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   90.703890][ T7439] loop5: detected capacity change from 0 to 512
[   90.713346][ T7439] EXT4-fs: Ignoring removed i_version option
[   90.737390][ T7439] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e000c018, mo2=0002]
[   90.745544][ T7439] System zones: 0-2, 18-18, 34-35
[   90.756622][ T7439] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.853676][ T7449] loop2: detected capacity change from 0 to 2048
[   90.884398][ T7449] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.037997][ T7449] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.445780][ T7472] pim6reg1: entered promiscuous mode
[   91.451252][ T7472] pim6reg1: entered allmulticast mode
[   91.496809][ T6238] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.801949][ T7512] 8021q: adding VLAN 0 to HW filter on device bond1
[   91.823824][ T7512] 8021q: adding VLAN 0 to HW filter on device batadv1
[   91.834075][ T7512] bond1: (slave batadv1): making interface the new active one
[   91.842922][ T7512] bond1: (slave batadv1): Enslaving as an active interface with an up link
[   91.854199][ T7517] team0 (unregistering): Port device team_slave_0 removed
[   91.868284][ T7517] team0 (unregistering): Port device team_slave_1 removed
[   91.971044][ T7528] __nla_validate_parse: 8 callbacks suppressed
[   91.971067][ T7528] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1167'.
[   91.995373][ T7525] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.004685][ T7525] 8021q: adding VLAN 0 to HW filter on device team0
[   92.015033][ T7525] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   92.032497][ T7528] bridge_slave_1: left allmulticast mode
[   92.038211][ T7528] bridge_slave_1: left promiscuous mode
[   92.044073][ T7528] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.052411][ T7528] bridge_slave_0: left allmulticast mode
[   92.058187][ T7528] bridge_slave_0: left promiscuous mode
[   92.063852][ T7528] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.284307][ T7548] tipc: Started in network mode
[   92.289332][ T7548] tipc: Node identity 3655fbfa241e, cluster identity 4711
[   92.296562][ T7548] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   92.304209][ T7547] tipc: Resetting bearer <eth:syzkaller0>
[   92.310769][ T7554] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1190'.
[   92.326691][ T7547] tipc: Disabling bearer <eth:syzkaller0>
[   92.336301][ T7554] bridge_slave_1: left allmulticast mode
[   92.341996][ T7554] bridge_slave_1: left promiscuous mode
[   92.347984][ T7554] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.367770][ T7554] bridge_slave_0: left allmulticast mode
[   92.373496][ T7554] bridge_slave_0: left promiscuous mode
[   92.379299][ T7554] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.408048][ T7558] loop5: detected capacity change from 0 to 8192
[   92.681572][ T7591] siw: device registration error -23
[   92.727847][   T29] kauditd_printk_skb: 671 callbacks suppressed
[   92.727864][   T29] audit: type=1326 audit(92.706:3806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15be0f65e7 code=0x7ffc0000
[   92.786198][   T29] audit: type=1326 audit(92.746:3807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15be09b829 code=0x7ffc0000
[   92.808904][   T29] audit: type=1326 audit(92.746:3808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15be0f65e7 code=0x7ffc0000
[   92.831612][   T29] audit: type=1326 audit(92.746:3809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15be09b829 code=0x7ffc0000
[   92.854339][   T29] audit: type=1326 audit(92.746:3810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   92.877334][   T29] audit: type=1326 audit(92.746:3811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15be0f65e7 code=0x7ffc0000
[   92.899998][   T29] audit: type=1326 audit(92.746:3812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15be09b829 code=0x7ffc0000
[   92.922662][   T29] audit: type=1326 audit(92.746:3813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[   92.945411][   T29] audit: type=1326 audit(92.756:3814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15be0f65e7 code=0x7ffc0000
[   92.968093][   T29] audit: type=1326 audit(92.756:3815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7535 comm="syz.1.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15be09b829 code=0x7ffc0000
[   93.058439][ T7607] validate_nla: 2 callbacks suppressed
[   93.058462][ T7607] netlink: 'syz.2.1203': attribute type 1 has an invalid length.
[   93.084331][ T7607] 8021q: adding VLAN 0 to HW filter on device bond1
[   93.103177][ T7607] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.112523][ T7607] bond1: (slave batadv0): making interface the new active one
[   93.121497][ T7607] bond1: (slave batadv0): Enslaving as an active interface with an up link
[   93.473521][ T7630] $Hÿ: renamed from bond0 (while UP)
[   93.480743][ T7630] $Hÿ: entered promiscuous mode
[   93.485808][ T7630] bond_slave_0: entered promiscuous mode
[   93.491863][ T7630] bond_slave_1: entered promiscuous mode
[   93.542941][ T7636] loop1: detected capacity change from 0 to 512
[   93.549799][ T7636] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   93.611349][ T7642] bond_slave_1: mtu less than device minimum
[   94.016773][ T7668] loop1: detected capacity change from 0 to 512
[   94.024813][ T7668] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   94.035503][ T7668] EXT4-fs (loop1): invalid journal inode
[   94.050732][ T7668] EXT4-fs (loop1): can't get journal size
[   94.075244][ T7668] EXT4-fs (loop1): 1 truncate cleaned up
[   94.089534][ T7668] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.557775][ T7688] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   94.565047][ T7688] IPv6: NLM_F_CREATE should be set when creating new route
[   94.572283][ T7688] IPv6: NLM_F_CREATE should be set when creating new route
[   94.590234][ T7688] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   94.598412][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.748667][ T7709] ip6gre3: entered allmulticast mode
[   94.785511][ T7714] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1239'.
[   94.797692][ T7714] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1239'.
[   94.986345][ T7731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1246'.
[   95.002570][ T7731] team1: entered promiscuous mode
[   95.007744][ T7731] team1: entered allmulticast mode
[   95.013218][ T7731] 8021q: adding VLAN 0 to HW filter on device team1
[   95.249004][ T7754] loop2: detected capacity change from 0 to 512
[   95.267118][ T7754] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   95.275941][ T7754] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   95.297885][ T7754] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.1258: Allocating blocks 41-42 which overlap fs metadata
[   95.312266][ T7754] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.1258: Allocating blocks 41-42 which overlap fs metadata
[   95.327912][ T7754] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1258: Failed to acquire dquot type 1
[   95.339662][ T7763] loop5: detected capacity change from 0 to 2048
[   95.339664][ T7754] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[   95.361264][ T7754] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #12: comm syz.2.1258: corrupted inode contents
[   95.373456][ T7754] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #12: comm syz.2.1258: mark_inode_dirty error
[   95.377647][ T7763] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.385282][ T7754] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #12: comm syz.2.1258: corrupted inode contents
[   95.409014][ T7754] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.1258: mark_inode_dirty error
[   95.420689][ T7754] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #12: comm syz.2.1258: corrupted inode contents
[   95.433514][ T7754] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[   95.446183][ T7754] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #12: comm syz.2.1258: corrupted inode contents
[   95.466186][ T7754] EXT4-fs error (device loop2): ext4_truncate:4637: inode #12: comm syz.2.1258: mark_inode_dirty error
[   95.486300][ T7754] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[   95.495671][ T7754] EXT4-fs (loop2): 1 truncate cleaned up
[   95.501939][ T7754] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.535592][ T7768] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   95.550544][ T7768] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[   95.562853][ T7768] EXT4-fs (loop5): This should not happen!! Data will be lost
[   95.562853][ T7768] 
[   95.572564][ T7768] EXT4-fs (loop5): Total free blocks count 0
[   95.578642][ T7768] EXT4-fs (loop5): Free/Dirty block details
[   95.584616][ T7768] EXT4-fs (loop5): free_blocks=2415919504
[   95.590387][ T7768] EXT4-fs (loop5): dirty_blocks=1296
[   95.595695][ T7768] EXT4-fs (loop5): Block reservation details
[   95.601748][ T7768] EXT4-fs (loop5): i_reserved_data_blocks=91
[   95.631047][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.669306][ T7762] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 1600 with max blocks 2 with error 28
[   95.704068][ T7780] tipc: New replicast peer: 255.255.255.255
[   95.710503][ T7780] tipc: Enabled bearer <udp:s >, priority 10
[   95.806867][ T7792] loop1: detected capacity change from 0 to 2048
[   95.852695][ T7792] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.962301][ T7801] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   95.985393][ T7801] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[   95.997985][ T7801] EXT4-fs (loop1): This should not happen!! Data will be lost
[   95.997985][ T7801] 
[   96.007790][ T7801] EXT4-fs (loop1): Total free blocks count 0
[   96.013932][ T7801] EXT4-fs (loop1): Free/Dirty block details
[   96.020295][ T7801] EXT4-fs (loop1): free_blocks=2415919504
[   96.026043][ T7801] EXT4-fs (loop1): dirty_blocks=112
[   96.031278][ T7801] EXT4-fs (loop1): Block reservation details
[   96.037448][ T7801] EXT4-fs (loop1): i_reserved_data_blocks=7
[   96.064663][ T7812] netlink: 'syz.5.1277': attribute type 29 has an invalid length.
[   96.074477][ T7812] netlink: 'syz.5.1277': attribute type 29 has an invalid length.
[   96.093156][ T7812] netlink: 500 bytes leftover after parsing attributes in process `syz.5.1277'.
[   96.102416][ T7814] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   96.145609][ T7789] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 736 with max blocks 2 with error 28
[   96.163008][ T7817] tipc: New replicast peer: 255.255.255.255
[   96.169337][ T7817] tipc: Enabled bearer <udp:s >, priority 10
[   96.229016][ T7822] netlink: 'syz.0.1282': attribute type 10 has an invalid length.
[   96.368801][ T7830] netlink: 'syz.2.1286': attribute type 3 has an invalid length.
[   96.519570][ T7844] netlink: 'syz.0.1290': attribute type 1 has an invalid length.
[   96.527560][ T7844] netlink: 'syz.0.1290': attribute type 4 has an invalid length.
[   96.535307][ T7844] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.1290'.
[   96.545424][ T7844] netlink: 'syz.0.1290': attribute type 1 has an invalid length.
[   96.553377][ T7844] netlink: 'syz.0.1290': attribute type 4 has an invalid length.
[   96.561253][ T7844] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.1290'.
[   96.609405][ T7849] netlink: 'syz.0.1292': attribute type 29 has an invalid length.
[   96.623690][ T7849] netlink: 500 bytes leftover after parsing attributes in process `syz.0.1292'.
[   96.836111][ T3374] tipc: Node number set to 518496429
[   96.967991][ T7861] loop6: detected capacity change from 0 to 2048
[   96.997462][ T7861] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.041515][ T6939] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.124123][ T7873] loop6: detected capacity change from 0 to 128
[   97.184797][ T7878] netlink: 500 bytes leftover after parsing attributes in process `syz.1.1302'.
[   97.242683][ T3979] bio_check_eod: 92 callbacks suppressed
[   97.242702][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.242702][ T3979] loop6: rw=1, sector=145, nr_sectors = 16 limit=128
[   97.262527][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.262527][ T3979] loop6: rw=1, sector=169, nr_sectors = 8 limit=128
[   97.286735][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.286735][ T3979] loop6: rw=1, sector=185, nr_sectors = 8 limit=128
[   97.300405][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.300405][ T3979] loop6: rw=1, sector=201, nr_sectors = 8 limit=128
[   97.314072][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.314072][ T3979] loop6: rw=1, sector=217, nr_sectors = 8 limit=128
[   97.327861][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.327861][ T3979] loop6: rw=1, sector=233, nr_sectors = 8 limit=128
[   97.376263][ T3374] tipc: Node number set to 3598069934
[   97.382166][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.382166][ T3979] loop6: rw=1, sector=249, nr_sectors = 8 limit=128
[   97.395717][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.395717][ T3979] loop6: rw=1, sector=265, nr_sectors = 8 limit=128
[   97.409364][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.409364][ T3979] loop6: rw=1, sector=281, nr_sectors = 8 limit=128
[   97.424807][ T3979] kworker/u8:49: attempt to access beyond end of device
[   97.424807][ T3979] loop6: rw=1, sector=297, nr_sectors = 8 limit=128
[   97.525273][ T7894] loop6: detected capacity change from 0 to 2048
[   97.586460][ T7894]  loop6: p2 < > p4
[   97.599637][ T7894] loop6: p4 size 262144 extends beyond EOD, truncated
[   97.672425][ T7905] loop6: detected capacity change from 0 to 2048
[   97.735297][ T7905] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.738536][ T7906] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   97.833670][ T7900] tipc: Resetting bearer <eth:syzkaller0>
[   97.849281][ T7900] tipc: Disabling bearer <eth:syzkaller0>
[   97.889268][ T7910] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   97.917971][ T7910] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[   97.930459][ T7910] EXT4-fs (loop6): This should not happen!! Data will be lost
[   97.930459][ T7910] 
[   97.931812][ T7912] loop5: detected capacity change from 0 to 512
[   97.940257][ T7910] EXT4-fs (loop6): Total free blocks count 0
[   97.952613][ T7910] EXT4-fs (loop6): Free/Dirty block details
[   97.958693][ T7910] EXT4-fs (loop6): free_blocks=2415919504
[   97.964592][ T7910] EXT4-fs (loop6): dirty_blocks=112
[   97.969990][ T7910] EXT4-fs (loop6): Block reservation details
[   97.975992][ T7910] EXT4-fs (loop6): i_reserved_data_blocks=7
[   98.090965][ T7904] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 96 with max blocks 32 with error 28
[   98.201340][ T7917] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1320'.
[   98.773018][   T29] kauditd_printk_skb: 459 callbacks suppressed
[   98.773043][   T29] audit: type=1326 audit(98.746:4271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   98.894595][   T29] audit: type=1326 audit(98.786:4272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   98.917496][   T29] audit: type=1326 audit(98.786:4273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   98.940394][   T29] audit: type=1326 audit(98.786:4274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   98.963427][   T29] audit: type=1326 audit(98.796:4275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   98.986447][   T29] audit: type=1326 audit(98.796:4276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   99.009000][   T29] audit: type=1326 audit(98.796:4277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   99.031925][   T29] audit: type=1326 audit(98.796:4278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   99.054483][   T29] audit: type=1326 audit(98.796:4279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   99.077240][   T29] audit: type=1326 audit(98.796:4280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7936 comm="syz.5.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[   99.201622][ T7949] loop5: detected capacity change from 0 to 8192
[   99.246699][ T7949]  loop5: p1 < > p2 p3 < p5 p6 > p4
[   99.251982][ T7949] loop5: partition table partially beyond EOD, truncated
[   99.304153][ T7949] loop5: p1 start 100663296 is beyond EOD, truncated
[   99.310920][ T7949] loop5: p2 size 134217732 extends beyond EOD, truncated
[   99.320045][ T7949] loop5: p4 size 14876672 extends beyond EOD, truncated
[   99.404572][ T7949] loop5: p5 size 134217732 extends beyond EOD, truncated
[   99.445105][ T7949] loop5: p6 size 14876672 extends beyond EOD, truncated
[   99.759680][ T7959] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   99.767196][ T7959] vhci_hcd: invalid port number 96
[   99.772336][ T7959] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   99.916239][ T7963] hub 5-0:1.0: USB hub found
[   99.933457][ T7963] hub 5-0:1.0: 8 ports detected
[  100.010117][ T7969] validate_nla: 3 callbacks suppressed
[  100.010136][ T7969] netlink: 'syz.6.1340': attribute type 29 has an invalid length.
[  100.031753][ T7969] netlink: 'syz.6.1340': attribute type 29 has an invalid length.
[  100.233498][ T7976] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1344'.
[  100.294628][ T7983] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1345'.
[  100.334726][ T7983] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1345'.
[  100.561343][ T7995] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  100.579556][ T7995] vhci_hcd: invalid port number 96
[  100.584723][ T7995] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  103.381063][ T8027] Set syz1 is full, maxelem 65536 reached
[  103.602648][ T8045] loop6: detected capacity change from 0 to 1024
[  103.612758][ T8045] EXT4-fs: Ignoring removed orlov option
[  103.694326][ T8045] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.900065][   T29] kauditd_printk_skb: 19 callbacks suppressed
[  103.900091][   T29] audit: type=1326 audit(103.876:4300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  103.929294][   T29] audit: type=1326 audit(103.876:4301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  103.953560][   T29] audit: type=1326 audit(103.926:4302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  103.976511][   T29] audit: type=1326 audit(103.926:4303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  104.000277][   T29] audit: type=1326 audit(103.926:4304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  104.023105][   T29] audit: type=1326 audit(103.926:4305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  104.045985][   T29] audit: type=1326 audit(103.926:4306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  104.069030][   T29] audit: type=1326 audit(103.926:4307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  104.092059][   T29] audit: type=1326 audit(103.926:4308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  104.114962][   T29] audit: type=1326 audit(103.926:4309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8053 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  104.379207][ T8060] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1376'.
[  104.403012][ T6939] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.427251][ T8060] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1376'.
[  104.536778][ T8070] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1390'.
[  104.559515][ T8070] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1390'.
[  105.394456][ T8087] bond1: (slave batadv0): Releasing active interface
[  105.692198][ T8103] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1405'.
[  106.686732][ T8120] netlink: 'syz.0.1400': attribute type 29 has an invalid length.
[  106.706563][ T8120] netlink: 'syz.0.1400': attribute type 29 has an invalid length.
[  106.718623][ T8120] netlink: 500 bytes leftover after parsing attributes in process `syz.0.1400'.
[  106.748424][ T8125] netlink: 'syz.0.1404': attribute type 1 has an invalid length.
[  106.762882][ T8125] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.834843][ T8133] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1407'.
[  106.844627][ T8132] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.867599][ T8132] bond0: (slave vxcan3): The slave device specified does not support setting the MAC address
[  106.897452][ T8132] bond0: (slave vxcan3): Error -95 calling set_mac_address
[  106.920283][ T8135] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1407'.
[  107.947072][ T8141] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8141 comm=syz.1.1420
[  108.063449][ T8151] syzkaller0: entered allmulticast mode
[  108.075633][ T8151] syzkaller0: entered promiscuous mode
[  108.087820][ T8151] syzkaller0 (unregistering): left allmulticast mode
[  108.094552][ T8151] syzkaller0 (unregistering): left promiscuous mode
[  108.808882][ T8164] loop2: detected capacity change from 0 to 1024
[  108.826906][ T8164] EXT4-fs: Ignoring removed orlov option
[  108.834916][ T8166] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1422'.
[  108.845211][ T8166] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1422'.
[  108.845443][ T8164] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.966674][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  108.966691][   T29] audit: type=1326 audit(108.946:4324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.0.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[  108.995863][   T29] audit: type=1326 audit(108.946:4325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.0.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[  109.018768][   T29] audit: type=1326 audit(108.946:4326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.0.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[  109.041597][   T29] audit: type=1326 audit(108.946:4327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.0.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[  109.064539][   T29] audit: type=1326 audit(108.946:4328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.0.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[  109.087417][   T29] audit: type=1326 audit(108.946:4329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.0.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[  109.110232][   T29] audit: type=1326 audit(108.976:4330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.0.1426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028b12f749 code=0x7ffc0000
[  109.274282][ T8193] netlink: 'syz.1.1431': attribute type 1 has an invalid length.
[  109.353662][ T8193] bond4: entered promiscuous mode
[  109.358844][ T8193] bond4: entered allmulticast mode
[  109.364387][ T8193] 8021q: adding VLAN 0 to HW filter on device bond4
[  109.408300][ T8193] veth11: entered promiscuous mode
[  109.413653][ T8193] veth11: entered allmulticast mode
[  109.537663][ T8193] bond4: (slave veth11): Enslaving as a backup interface with a down link
[  109.552999][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.627430][ T8208] batadv_slave_1: Caught tx_queue_len zero misconfig
[  109.677833][ T8211] __nla_validate_parse: 1 callbacks suppressed
[  109.677852][ T8211] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1436'.
[  109.819901][   T29] audit: type=1400 audit(109.796:4331): avc:  denied  { read write } for  pid=8217 comm="syz.2.1440" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  109.843882][   T29] audit: type=1400 audit(109.796:4332): avc:  denied  { open } for  pid=8217 comm="syz.2.1440" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  109.950062][ T8234] netlink: 'syz.6.1446': attribute type 1 has an invalid length.
[  109.995627][ T8234] bond0: entered promiscuous mode
[  110.000737][ T8234] bond0: entered allmulticast mode
[  110.022267][ T8234] 8021q: adding VLAN 0 to HW filter on device bond0
[  110.078812][ T8245] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.087586][ T8245] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.099480][ T8245] loop2: detected capacity change from 0 to 512
[  110.106870][ T8241] veth3: entered promiscuous mode
[  110.112227][ T8241] veth3: entered allmulticast mode
[  110.186791][ T8241] bond0: (slave veth3): Enslaving as a backup interface with a down link
[  110.192480][ T8243] IPv4: Oversized IP packet from 127.202.26.0
[  110.281022][ T8249] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1451'.
[  110.299152][ T8245] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.368790][ T8256] loop6: detected capacity change from 0 to 1024
[  110.375574][ T8256] EXT4-fs: Ignoring removed oldalloc option
[  110.381571][ T8256] EXT4-fs: Ignoring removed bh option
[  110.412161][ T8256] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.539996][   T29] audit: type=1326 audit(110.506:4333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8268 comm="syz.1.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15be0ff749 code=0x7ffc0000
[  110.666803][ T8272] SELinux: failed to load policy
[  110.693178][ T8274] loop1: detected capacity change from 0 to 512
[  110.701723][ T8274] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000101)
[  110.741412][ T8279] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1458'.
[  110.777251][ T8283] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1464'.
[  110.875403][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.031395][ T8313] loop5: detected capacity change from 0 to 512
[  111.052683][ T8313] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000101)
[  111.141015][ T8326] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1476'.
[  111.441769][ T6939] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.538393][ T8365] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1477'.
[  111.547698][ T8365] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1477'.
[  111.556754][ T8365] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1477'.
[  111.866845][ T8421] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1485'.
[  111.895825][ T8428] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125
[  112.022023][ T8453] netlink: 'syz.5.1493': attribute type 10 has an invalid length.
[  112.038177][ T8453] netlink: 'syz.5.1493': attribute type 10 has an invalid length.
[  112.050586][ T8453] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  112.332662][ T8497] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1506'.
[  112.362833][ T8502] loop5: detected capacity change from 0 to 1024
[  112.406773][ T8502] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.449721][ T6238] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.600387][ T8538] netlink: 'syz.0.1508': attribute type 10 has an invalid length.
[  112.611084][ T8538] netlink: 'syz.0.1508': attribute type 10 has an invalid length.
[  112.620433][ T8538] dummy0: entered promiscuous mode
[  112.625897][ T8538] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[  112.793731][ T8555] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.806225][ T8555] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  113.735308][ T8622] loop5: detected capacity change from 0 to 1024
[  113.751009][ T8622] EXT4-fs: Ignoring removed orlov option
[  113.772673][ T8622] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.237997][ T6238] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.426899][   T29] kauditd_printk_skb: 109 callbacks suppressed
[  114.426914][   T29] audit: type=1400 audit(114.406:4443): avc:  denied  { ioctl } for  pid=8663 comm="syz.6.1556" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  114.537242][   T29] audit: type=1326 audit(114.506:4444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.560122][   T29] audit: type=1326 audit(114.506:4445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.666381][   T29] audit: type=1326 audit(114.526:4446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.689209][   T29] audit: type=1326 audit(114.526:4447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.712266][   T29] audit: type=1326 audit(114.526:4448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.735120][   T29] audit: type=1326 audit(114.526:4449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.758220][   T29] audit: type=1326 audit(114.526:4450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.781023][   T29] audit: type=1326 audit(114.526:4451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.804198][   T29] audit: type=1326 audit(114.536:4452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8678 comm="syz.5.1561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04e62cf749 code=0x7ffc0000
[  114.871328][ T8656] netlink: 'syz.2.1554': attribute type 12 has an invalid length.
[  115.245624][ T8712] __nla_validate_parse: 13 callbacks suppressed
[  115.245640][ T8712] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1573'.
[  115.439808][ T8718] loop1: detected capacity change from 0 to 1764
[  115.656322][ T8724] netlink: 'syz.2.1591': attribute type 7 has an invalid length.
[  115.664191][ T8724] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1591'.
[  115.900177][ T8746] netlink: 'syz.1.1597': attribute type 7 has an invalid length.
[  115.908100][ T8746] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1597'.
[  115.993419][ T8752] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1588'.
[  116.029328][ T8730] chnl_net:caif_netlink_parms(): no params data found
[  116.084286][ T8768] loop1: detected capacity change from 0 to 1024
[  116.091910][ T8768] EXT4-fs: Ignoring removed orlov option
[  116.098893][ T8730] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.100203][ T8768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.105989][ T8730] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.133288][ T8730] bridge_slave_0: entered allmulticast mode
[  116.140077][ T8730] bridge_slave_0: entered promiscuous mode
[  116.147854][ T8730] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.155017][ T8730] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.162628][ T8730] bridge_slave_1: entered allmulticast mode
[  116.170210][ T8730] bridge_slave_1: entered promiscuous mode
[  116.195655][ T8730] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  116.207397][ T8730] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  116.217687][ T8768] ==================================================================
[  116.225896][ T8768] BUG: KCSAN: data-race in filemap_read / filemap_read
[  116.232814][ T8768] 
[  116.235165][ T8768] read to 0xffff88811b65ab28 of 8 bytes by task 8774 on cpu 0:
[  116.242726][ T8768]  filemap_read+0x6f/0xa00
[  116.247184][ T8768]  generic_file_read_iter+0x79/0x330
[  116.252627][ T8768]  ext4_file_read_iter+0x1cc/0x290
[  116.257847][ T8768]  copy_splice_read+0x442/0x660
[  116.262718][ T8768]  splice_direct_to_actor+0x290/0x680
[  116.268105][ T8768]  do_splice_direct+0xda/0x150
[  116.272877][ T8768]  do_sendfile+0x380/0x650
[  116.277309][ T8768]  __x64_sys_sendfile64+0x105/0x150
[  116.282537][ T8768]  x64_sys_call+0x2bb4/0x3000
[  116.287229][ T8768]  do_syscall_64+0xd2/0x200
[  116.291744][ T8768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.297652][ T8768] 
[  116.299978][ T8768] write to 0xffff88811b65ab28 of 8 bytes by task 8768 on cpu 1:
[  116.307609][ T8768]  filemap_read+0x974/0xa00
[  116.312156][ T8768]  generic_file_read_iter+0x79/0x330
[  116.317456][ T8768]  ext4_file_read_iter+0x1cc/0x290
[  116.322564][ T8768]  copy_splice_read+0x442/0x660
[  116.327442][ T8768]  splice_direct_to_actor+0x290/0x680
[  116.333261][ T8768]  do_splice_direct+0xda/0x150
[  116.338043][ T8768]  do_sendfile+0x380/0x650
[  116.342489][ T8768]  __x64_sys_sendfile64+0x105/0x150
[  116.347709][ T8768]  x64_sys_call+0x2bb4/0x3000
[  116.352405][ T8768]  do_syscall_64+0xd2/0x200
[  116.356920][ T8768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.362828][ T8768] 
[  116.365160][ T8768] value changed: 0x00000000000000da -> 0x00000000000000db
[  116.372275][ T8768] 
[  116.374607][ T8768] Reported by Kernel Concurrency Sanitizer on:
[  116.380787][ T8768] CPU: 1 UID: 0 PID: 8768 Comm: syz.1.1604 Not tainted syzkaller #0 PREEMPT(voluntary) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  116.390509][ T8768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  116.400590][ T8768] ==================================================================
[  116.452912][ T8730] team0: Port device team_slave_0 added
[  116.469763][ T8730] team0: Port device team_slave_1 added
[  116.531376][ T8747] syz_tun (unregistering): left allmulticast mode
[  116.603486][ T3956] bridge_slave_1: left allmulticast mode
[  116.609191][ T3956] bridge_slave_1: left promiscuous mode
[  116.614844][ T3956] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.622803][ T3956] bridge_slave_0: left allmulticast mode
[  116.628702][ T3956] bridge_slave_0: left promiscuous mode
[  116.634370][ T3956] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.656763][ T8768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.697875][ T3956] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  116.707657][ T3956] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  116.717121][ T3956] bond0 (unregistering): Released all slaves
[  116.779853][ T3956] team0 (unregistering): Port device team_slave_1 removed
[  116.789484][ T3956] team0 (unregistering): Port device team_slave_0 removed
[  117.189517][ T3956] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.228735][ T3956] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.288762][ T3956] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.358475][ T3956] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.498756][ T3956] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  117.507608][ T3956] bond_slave_0: left promiscuous mode
[  117.514162][ T3956] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  117.523120][ T3956] bond_slave_1: left promiscuous mode
[  117.529836][ T3956] $Hÿ (unregistering): Released all slaves
[  117.538637][ T3956] bond1 (unregistering): (slave batadv1): Releasing active interface
[  117.547750][ T3956] bond1 (unregistering): Released all slaves
[  117.556247][ T3956] bond0 (unregistering): (slave veth3): Releasing backup interface
[  117.564378][ T3956] veth3: left promiscuous mode
[  117.569211][ T3956] veth3: left allmulticast mode
[  117.574865][ T3956] bond0 (unregistering): Released all slaves
[  117.607668][ T3956] tipc: Left network mode
[  117.613796][ T3956] hsr_slave_0: left promiscuous mode
[  117.619646][ T3956] hsr_slave_1: left promiscuous mode
[  117.625374][ T3956] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  117.632850][ T3956] batman_adv: batadv0: Removing interface: batadv_slave_0
[  117.640324][ T3956] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  117.647756][ T3956] batman_adv: batadv0: Removing interface: batadv_slave_1
[  117.657988][ T3956] veth1_macvtap: left promiscuous mode
[  117.663467][ T3956] veth0_macvtap: left promiscuous mode
[  117.714531][ T3956] team0 (unregistering): Port device team_slave_1 removed
[  117.724405][ T3956] team0 (unregistering): Port device team_slave_0 removed
[  119.061942][ T3956] bond2 (unregistering): (slave gretap1): Releasing active interface
[  119.070105][ T3956] gretap1 (unregistering): left promiscuous mode
[  119.076522][ T3956] gretap1 (unregistering): left allmulticast mode
[  119.086245][ T3956] dvmrp8 (unregistering): left allmulticast mode
[  119.337883][ T3956] bond0 (unregistering): Released all slaves
[  119.346874][ T3956] bond1 (unregistering): (slave veth7): Releasing active interface
[  119.355200][ T3956] bond1 (unregistering): Released all slaves
[  119.363303][ T3956] bond2 (unregistering): Released all slaves
[  119.371831][ T3956] bond3 (unregistering): Released all slaves
[  119.380291][ T3956] bond4 (unregistering): (slave veth11): Releasing backup interface
[  119.388627][ T3956] veth11: left promiscuous mode
[  119.393518][ T3956] veth11: left allmulticast mode
[  119.399150][ T3956] bond4 (unregistering): Released all slaves
[  119.488145][ T3956] tipc: Disabling bearer <udp:s >
[  119.493293][ T3956] tipc: Left network mode