last executing test programs:

2m14.892051045s ago: executing program 2 (id=393):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f00000008c0), 0x4)
bind$inet6(r3, &(0x7f00000001c0)={0xa, 0x4e20, 0x2000000, @ipv4={'\x00', '\xff\xff', @loopback}, 0xb851}, 0x1c)

2m14.851700859s ago: executing program 2 (id=395):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1000002, 0x0)
r2 = dup(r1)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x40542, 0x0)
ftruncate(r3, 0xee72)
sendfile(r2, r3, 0x0, 0x8040fffffffe)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000180)=0x19)

2m14.742537587s ago: executing program 2 (id=401):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}, [@printk={@ld}, @call={0x85, 0x0, 0x0, 0x7d}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r0}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r2}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

2m14.70176495s ago: executing program 2 (id=403):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x80000, 0x0)

2m14.667002633s ago: executing program 2 (id=404):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r1}, 0x10)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

2m14.561762642s ago: executing program 2 (id=408):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x18)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

2m14.537549104s ago: executing program 32 (id=408):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x18)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

1m56.562074583s ago: executing program 0 (id=906):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x482, 0x0)
r2 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f00000008c0), 0x4)
bind$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e20, 0x2000000, @ipv4={'\x00', '\xff\xff', @loopback}, 0xb851}, 0x1c)

1m56.467509561s ago: executing program 0 (id=899):
syz_io_uring_setup(0x7585, &(0x7f0000000140)={0x0, 0xafed, 0x3c00, 0x2, 0x261}, &(0x7f0000000000), 0x0)
r0 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfec9}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0xc, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x842a}})
io_uring_enter(r0, 0xdb4, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r0, 0x18, &(0x7f0000000040)={0x0, r0, 0x31, {0x5, 0x10001}, 0x6}, 0x1)

1m56.284020906s ago: executing program 0 (id=903):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000070018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r3}, &(0x7f0000000a00), &(0x7f0000000a40)=r2}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r3}, &(0x7f0000000880), &(0x7f00000008c0)=r2}, 0x20)

1m56.203826882s ago: executing program 0 (id=904):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f00000002c0)='./file0/file0/file0\x00', 0x0, 0x1adc51, 0x0)
umount2(&(0x7f0000000080)='./file0/file0\x00', 0x2)

1m56.128385728s ago: executing program 0 (id=908):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1, 0x0, 0x104}, 0x18)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
fdatasync(r2)

1m55.922692225s ago: executing program 0 (id=913):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x409}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
close_range(r0, 0xffffffffffffffff, 0x0)

1m55.907034266s ago: executing program 33 (id=913):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x409}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
close_range(r0, 0xffffffffffffffff, 0x0)

1m30.5145503s ago: executing program 4 (id=1727):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}, @TCA_RATE={0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x48801}, 0x0)

1m30.493343182s ago: executing program 4 (id=1729):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r1=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r1, 0x2, 0x6}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

1m30.319857216s ago: executing program 4 (id=1733):
syz_clone(0x40800000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
syz_clone(0x60002080, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8982, &(0x7f0000000080))

1m29.788473178s ago: executing program 4 (id=1741):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
write(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='freezer.state\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

1m29.533943398s ago: executing program 4 (id=1749):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xfe)
ftruncate(r1, 0x2008002)
sendfile(r0, r1, 0x0, 0x80000001)

1m29.346969164s ago: executing program 4 (id=1757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

1m29.312163636s ago: executing program 34 (id=1757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

1m13.051723789s ago: executing program 3 (id=2155):
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17f}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x3}, 0x18)
creat(&(0x7f00000002c0)='./file0\x00', 0xecf86c37d53049cc)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000004c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)=[0x0], 0x0, 0x8001, 0x1, 0x1}}, 0x40)

1m12.953047897s ago: executing program 3 (id=2158):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x100000001)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e20, @dev}, 0x10)
close(r0)

1m12.920503899s ago: executing program 3 (id=2160):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x4)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r3, 0x402, 0xd)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)

1m12.880007872s ago: executing program 3 (id=2162):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101017, 0x0)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

1m12.836948366s ago: executing program 3 (id=2164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x29)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r3}, 0x10)
r4 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}})

1m12.597317285s ago: executing program 3 (id=2168):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r3, 0x800448d4, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1m12.596957305s ago: executing program 35 (id=2168):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r3, 0x800448d4, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

4.48846832s ago: executing program 8 (id=4233):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f00000001c0)='cdg\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000340)='dctcp\x00', 0x6)

4.469326072s ago: executing program 8 (id=4235):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, 0x0, 0x0)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, 0x0)
r2 = getpgrp(0x0)
r3 = syz_pidfd_open(r2, 0x0)
r4 = pidfd_getfd(r3, r3, 0x0)
setns(r4, 0x14020000)

4.444548484s ago: executing program 8 (id=4236):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
r3 = inotify_init()
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000000c0)={0x0, 0x0, 0x0, 'queue0\x00', 0x4})
close_range(r3, 0xffffffffffffffff, 0x0)

4.401270977s ago: executing program 8 (id=4239):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(0x0, r0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x2, &(0x7f0000000000)=0x3, 0x4)
getsockopt$inet6_buf(r2, 0x29, 0x6, &(0x7f0000000100)=""/92, &(0x7f00000001c0)=0x11)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)={0x68, r1, 0x1, 0x0, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0x8, 0xc, 0x0, 0x1, [{0x4}]}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x5}]}]}, 0x68}}, 0x0)
r3 = memfd_secret(0x80000)
fstatfs(r3, &(0x7f0000000c00)=""/4096)
sendmsg$nl_route(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=@bridge_getneigh={0xa4, 0x1e, 0x4, 0x70bd2c, 0x25dfdbfe, {0x7, 0x0, 0x0, 0x0, 0x62880, 0x8}, [@IFLA_EVENT={0x8, 0x2c, 0x2}, @IFLA_IFNAME={0x14, 0x3, 'batadv_slave_0\x00'}, @IFLA_AF_SPEC={0x58, 0x1a, 0x0, 0x1, [@AF_MPLS={0x4}, @AF_INET={0x48, 0x2, 0x0, 0x1, {0x44, 0x1, 0x0, 0x1, [{0x8, 0x1b, 0x0, 0x0, 0x49ff}, {0x8, 0x8, 0x0, 0x0, 0x8}, {0x8, 0x13, 0x0, 0x0, 0x4}, {0x8, 0x6, 0x0, 0x0, 0xb0}, {0x8, 0x19, 0x0, 0x0, 0xfffffff8}, {0x8, 0xb, 0x0, 0x0, 0xad7}, {0x8, 0x11, 0x0, 0x0, 0x3}, {0x8, 0x8, 0x0, 0x0, 0x7}]}}, @AF_MPLS={0x4}, @AF_MPLS={0x4}]}, @IFLA_MTU={0x8}, @IFLA_LINKMODE={0x5}]}, 0xa4}, 0x1, 0x0, 0x0, 0x44800}, 0x40080)

4.372763109s ago: executing program 8 (id=4241):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x18)
r1 = socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0xfffffffc}, 0x10)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2, 0x4}, 0x10)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r3, 0xffffffffffffffff, 0x0)

4.281554907s ago: executing program 8 (id=4244):
r0 = socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x401, 0x28, 0xffffffffffffffff, 0xc}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r1)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000540)={0x0, 0xa1ff, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

1.764942318s ago: executing program 6 (id=4279):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xc, 0x4, 0x4, 0x7, 0x0, r0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r2, &(0x7f0000000080), 0x0}, 0x20)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0))
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ff000000850000007200000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sendmsg$unix(r3, &(0x7f0000000380)={&(0x7f0000000040)=@abs={0x2, 0x0, 0x4e23}, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000100)="e4753e97fdeb8829a1e2b06ab93927088164723fb5de69a3b0358c1d5f6b7a8ccbc0eb0fae7eb7021a22e2cdad0d1e786876ba64c4a99a1cc7b84eb6660d4a33700bc25f7099208a7830a8680a", 0x4d}, {&(0x7f00000002c0)="51bc167a9f2a319542", 0x9}, {&(0x7f0000000300)="3046172f51ef37e2da10793edbfa89", 0xf}], 0x3, 0x0, 0x0, 0x81}, 0x4000000)

1.718746852s ago: executing program 6 (id=4284):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x80)
fchdir(r1)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r2 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x114df, 0x0, 0x1, 0x89}, &(0x7f00000003c0)=<r3=>0x0, &(0x7f0000000200)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r2, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

1.536321786s ago: executing program 6 (id=4292):
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000e80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
sendmmsg$inet(r1, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x7e1f, 0x0}, 0xee0000b0}, {{0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000001100)="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", 0xc3}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="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", 0x9fd}], 0x3}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001700)="a6", 0x1}], 0x300}}], 0x3, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0xff00000000000000}, 0x400}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)

1.512289529s ago: executing program 6 (id=4294):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)

1.152807357s ago: executing program 7 (id=4301):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000008000000000000000018110000", @ANYRES32=r1], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10)
sendfile(r0, r0, 0x0, 0x800000009)

1.021197788s ago: executing program 7 (id=4302):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x8, 0x4, &(0x7f0000000240)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000040)='syzkaller\x00', 0x4000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, 0x94)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r2, 0x545c, 0x200000000000000)

563.436404ms ago: executing program 5 (id=4303):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
close(0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
pipe2(&(0x7f0000000040)={0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x7, 0x7ffc, 0xcc, 0x0, 0xffffffffffffffff, 0x8000c}, 0x50)

563.156284ms ago: executing program 6 (id=4304):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000003, 0x13, r1, 0x0)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='mm_page_free\x00', r2, 0x0, 0x20006}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

472.437112ms ago: executing program 5 (id=4305):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000007c0)=<r2=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x2}, 0x18)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r0, 0x4d10, 0x2, 0x2, 0x0, 0x0)

447.923754ms ago: executing program 6 (id=4306):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2041, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49de, 0x0, 0xfffc, 0xbfff, 0x19, "ec28a144f13d7607"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
syz_usb_connect$uac1(0x3, 0x71, &(0x7f0000000280)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x4, 0xa0, 0x9, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0xfff7, 0x7}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0xff, 0xc8, 0x3, {0x7, 0x25, 0x1, 0x0, 0x4, 0x5}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x50, 0x5, 0x9, 0x41, {0x7, 0x25, 0x1, 0x82, 0xfe, 0x7}}}}}}}]}}, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x10, "0062ba5d8200"})
r1 = syz_open_pts(r0, 0x20800)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x44)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x44)

358.610621ms ago: executing program 5 (id=4309):
r0 = socket(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x100, 0x7}, 0x2202, 0x10000, 0x0, 0x9, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x3548, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x70, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x40, 0x2, [@TCA_BASIC_EMATCHES={0x3c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{}, {0x0, 0x0, 0x1}}}, @TCF_EM_META={0x1c, 0x2, 0x0, 0x0, {{0x0, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc}, @TCA_EM_META_LVALUE={0x4}]}}]}]}]}}]}, 0x70}}, 0x0)

314.527444ms ago: executing program 1 (id=4311):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003380)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000006cfa000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080)=0x14)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000240)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000f00030001332564aaee7b1d58b9a64411f6bbf44d", 0x39}], 0x1)
close(r2)

255.251449ms ago: executing program 5 (id=4312):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1000}, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r3}, 0x38)

253.990139ms ago: executing program 1 (id=4313):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)

224.486342ms ago: executing program 5 (id=4314):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00'}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r4, r1, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000180)=ANY=[], 0x0)

206.926163ms ago: executing program 1 (id=4315):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000001300)=@gcm_256={{0x304}, "67c3f71b0f188109", "2c9e910757c2725dd5795f705ac44b9d43498e33fe93a0c9001c5c65f7107d0d", "ddfb00", "5a3e2c1b40238e79"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000280)=@gcm_256={{0x304}, "54164ace030000f5", "faad50724acb18aba4e3bc654d684ad9c694f3e96ca4b72643dd3689727968e9", "5cb6d03a", "29a78ab9b0a4e8ae"}, 0x38)

198.973554ms ago: executing program 5 (id=4316):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000000}, 0x94)
r1 = gettid()
r2 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r2, &(0x7f0000003c40)=[{{0x0, 0x0, 0x0}, 0x80000000}], 0x1, 0x60010002, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000300))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x18)

187.893435ms ago: executing program 1 (id=4317):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x34, 0x0, &(0x7f00000001c0)="00001dde73622c5e2fe73c522108002164a9a74b4fefdeec0804bd63a997935f1e140e1e9d2f0c664f139a6147a2bfaa195c94ac", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x50)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006000000000000000000380000000000000000191bda0000200001000000000280000000000003"], 0x69)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

165.241877ms ago: executing program 1 (id=4318):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0009}]})
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x0)

145.320568ms ago: executing program 1 (id=4319):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r2}, 0x10)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

86.481853ms ago: executing program 7 (id=4320):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = perf_event_open(&(0x7f0000000fc0)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x3, 0x4, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000180)='cpu>=0||!')

69.702894ms ago: executing program 7 (id=4321):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41101, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='9p_client_res\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r2}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

19.544008ms ago: executing program 7 (id=4322):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x2f, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000240)='./file1\x00', 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000040)=0x4000, 0x4)
close_range(r2, 0xffffffffffffffff, 0x0)

0s ago: executing program 7 (id=4323):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f00000001c0)=0x400000001, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0xc6da5938055fb7fd, 0x20005}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x2054)
sendto$inet6(r0, 0x0, 0x2, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

T9852] loop6: detected capacity change from 0 to 1024
[  121.244028][ T9852] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.366400][ T9868] smc: net device bond0 applied user defined pnetid SYZ0
[  121.405129][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.418274][ T9868] smc: net device bond0 erased user defined pnetid SYZ0
[  121.700636][   T29] kauditd_printk_skb: 298 callbacks suppressed
[  121.700711][   T29] audit: type=1326 audit(121.660:7612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9887 comm="syz.7.2600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  121.755655][    C1] sd 0:0:1:0: [sda] tag#2048 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  121.766089][    C1] sd 0:0:1:0: [sda] tag#2048 CDB: Read(6) 08 00 0c 6a 08 48
[  121.786689][ T9892] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61 sclass=netlink_route_socket pid=9892 comm=syz.1.2602
[  121.797047][   T29] audit: type=1326 audit(121.700:7613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9887 comm="syz.7.2600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  121.822027][   T29] audit: type=1326 audit(121.700:7614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9887 comm="syz.7.2600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  121.832462][ T9892] sch_tbf: burst 2 is lower than device lo mtu (65550) !
[  121.844912][   T29] audit: type=1326 audit(121.700:7615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9887 comm="syz.7.2600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  121.844991][   T29] audit: type=1326 audit(121.700:7616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9887 comm="syz.7.2600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  121.897867][   T29] audit: type=1326 audit(121.700:7617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9887 comm="syz.7.2600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  121.920789][   T29] audit: type=1326 audit(121.700:7618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9887 comm="syz.7.2600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  121.959951][ T9897] loop7: detected capacity change from 0 to 1024
[  121.988297][ T9897] EXT4-fs: Ignoring removed oldalloc option
[  122.002842][ T9899] loop8: detected capacity change from 0 to 256
[  122.038095][ T9897] EXT4-fs (loop7): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  122.061860][ T9899] FAT-fs (loop8): Directory bread(block 64) failed
[  122.079016][ T9899] FAT-fs (loop8): Directory bread(block 65) failed
[  122.107001][ T9897] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.121184][ T9899] FAT-fs (loop8): Directory bread(block 66) failed
[  122.123867][   T29] audit: type=1326 audit(121.960:7619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9898 comm="syz.8.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28607ebe9 code=0x7ffc0000
[  122.151046][   T29] audit: type=1326 audit(121.960:7620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9898 comm="syz.8.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28607ebe9 code=0x7ffc0000
[  122.153495][ T9899] FAT-fs (loop8): Directory bread(block 67) failed
[  122.174294][   T29] audit: type=1326 audit(121.960:7621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9898 comm="syz.8.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff28607ebe9 code=0x7ffc0000
[  122.204413][ T9899] FAT-fs (loop8): Directory bread(block 68) failed
[  122.211428][ T9899] FAT-fs (loop8): Directory bread(block 69) failed
[  122.220347][ T9899] FAT-fs (loop8): Directory bread(block 70) failed
[  122.227352][ T9899] FAT-fs (loop8): Directory bread(block 71) failed
[  122.236674][ T9899] FAT-fs (loop8): Directory bread(block 72) failed
[  122.243477][ T9899] FAT-fs (loop8): Directory bread(block 73) failed
[  122.288816][ T9899] syz.8.2605: attempt to access beyond end of device
[  122.288816][ T9899] loop8: rw=0, sector=1192, nr_sectors = 4 limit=256
[  122.316344][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.510646][ T9938] IPv4: Oversized IP packet from 127.202.26.0
[  122.521818][ T9942] loop5: detected capacity change from 0 to 512
[  122.542339][ T9941] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2621'.
[  122.551382][ T9941] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2621'.
[  122.560400][ T9941] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2621'.
[  122.578336][ T9941] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2621'.
[  122.580400][ T9942] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.587494][ T9941] netlink: 'syz.7.2621': attribute type 6 has an invalid length.
[  122.685923][ T9960] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2633'.
[  122.736662][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.889340][ T9978] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2641'.
[  122.973405][ T9983] loop7: detected capacity change from 0 to 512
[  123.015083][ T9983] EXT4-fs (loop7): orphan cleanup on readonly fs
[  123.036463][ T9983] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.2643: bad orphan inode 13
[  123.065145][ T9983] ext4_test_bit(bit=12, block=18) = 1
[  123.070586][ T9983] is_bad_inode(inode)=0
[  123.074833][ T9983] NEXT_ORPHAN(inode)=2130706432
[  123.079698][ T9983] max_ino=32
[  123.083017][ T9983] i_nlink=1
[  123.140432][ T9983] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  123.178773][ T9995] loop6: detected capacity change from 0 to 512
[  123.187498][ T9983] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[  123.224157][ T9995] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.241402][ T9983] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  123.274433][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.356898][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.382225][T10015] netlink: 'syz.7.2657': attribute type 7 has an invalid length.
[  123.390136][T10015] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2657'.
[  123.808822][T10043] netlink: 'syz.6.2669': attribute type 3 has an invalid length.
[  123.816727][T10043] netlink: 'syz.6.2669': attribute type 1 has an invalid length.
[  123.824521][T10043] netlink: 60387 bytes leftover after parsing attributes in process `syz.6.2669'.
[  124.069317][T10074] wireguard0: entered promiscuous mode
[  124.075104][T10074] wireguard0: entered allmulticast mode
[  124.524539][T10106] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.579402][T10106] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.640007][T10106] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.690938][T10106] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.761142][ T4909] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.795988][ T4909] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.828000][ T4909] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.855209][ T4909] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.951718][T10145] IPVS: Error joining to the multicast group
[  124.973564][T10147] netdevsim netdevsim8 : renamed from netdevsim1 (while UP)
[  125.027664][T10151] loop6: detected capacity change from 0 to 2048
[  125.240846][T10167] loop8: detected capacity change from 0 to 512
[  125.256683][T10167] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  125.284967][T10167] EXT4-fs (loop8): 1 truncate cleaned up
[  125.295334][T10167] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.367033][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.536458][T10190] loop6: detected capacity change from 0 to 512
[  125.561347][T10190] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  125.586136][T10190] EXT4-fs (loop6): 1 truncate cleaned up
[  125.598987][T10190] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.716381][T10190] EXT4-fs (loop6): shut down requested (0)
[  125.795357][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.168668][T10226] syz_tun: entered allmulticast mode
[  126.181965][T10225] syz_tun: left allmulticast mode
[  126.239384][T10236] loop5: detected capacity change from 0 to 512
[  126.277433][T10236] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.363935][ T4929] dummy0: left promiscuous mode
[  126.370264][T10251] __nla_validate_parse: 9 callbacks suppressed
[  126.370283][T10251] netlink: 2028 bytes leftover after parsing attributes in process `syz.8.2749'.
[  126.370545][T10250] netlink: 100 bytes leftover after parsing attributes in process `syz.6.2752'.
[  126.376588][T10251] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2749'.
[  126.470341][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.956823][T10276] loop5: detected capacity change from 0 to 512
[  126.967233][T10276] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  126.977331][   T29] kauditd_printk_skb: 174 callbacks suppressed
[  126.977346][   T29] audit: type=1400 audit(126.930:7796): avc:  denied  { accept } for  pid=10277 comm="syz.7.2762" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  126.985371][T10275] loop6: detected capacity change from 0 to 512
[  127.003124][   T29] audit: type=1400 audit(126.950:7797): avc:  denied  { read } for  pid=10277 comm="syz.7.2762" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  127.029697][T10276] EXT4-fs (loop5): 1 truncate cleaned up
[  127.036103][T10276] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.037762][T10275] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.107927][T10275] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #2: comm syz.6.2770: corrupted inode contents
[  127.123122][   T29] audit: type=1326 audit(127.090:7798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10284 comm="syz.7.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  127.146855][   T29] audit: type=1326 audit(127.090:7799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10284 comm="syz.7.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  127.148788][T10275] EXT4-fs error (device loop6): ext4_dirty_inode:6538: inode #2: comm syz.6.2770: mark_inode_dirty error
[  127.170066][   T29] audit: type=1326 audit(127.090:7800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10284 comm="syz.7.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  127.170162][   T29] audit: type=1326 audit(127.090:7801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10284 comm="syz.7.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  127.170217][   T29] audit: type=1326 audit(127.090:7802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10284 comm="syz.7.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  127.170250][   T29] audit: type=1326 audit(127.090:7803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10284 comm="syz.7.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  127.258416][T10275] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #2: comm syz.6.2770: corrupted inode contents
[  127.273669][   T29] audit: type=1326 audit(127.090:7804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10284 comm="syz.7.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  127.273698][   T29] audit: type=1326 audit(127.090:7805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10284 comm="syz.7.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  127.313916][T10276] EXT4-fs (loop5): shut down requested (0)
[  127.338958][T10275] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #2: comm syz.6.2770: mark_inode_dirty error
[  127.416385][T10295] netlink: 96 bytes leftover after parsing attributes in process `syz.7.2769'.
[  127.431302][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.449519][T10298] loop9: detected capacity change from 0 to 7
[  127.451503][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.456186][T10298] Buffer I/O error on dev loop9, logical block 0, async page read
[  127.472717][T10298] Buffer I/O error on dev loop9, logical block 0, async page read
[  127.480727][T10298]  loop9: unable to read partition table
[  127.487211][T10298] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  127.487211][T10298] 
) failed (rc=-5)
[  127.705705][T10335] vlan2: entered allmulticast mode
[  127.710928][T10335] macvtap0: entered allmulticast mode
[  127.716360][T10335] veth0_macvtap: entered allmulticast mode
[  127.732369][T10336] serio: Serial port ptm0
[  127.846742][T10355] syzkaller1: entered promiscuous mode
[  127.852376][T10355] syzkaller1: entered allmulticast mode
[  127.943960][ T4929] dummy0: left promiscuous mode
[  128.052751][T10365] loop6: detected capacity change from 0 to 512
[  128.083146][T10365] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.2801: casefold flag without casefold feature
[  128.105865][T10369] loop8: detected capacity change from 0 to 1024
[  128.113168][T10369] EXT4-fs: Ignoring removed orlov option
[  128.118933][T10369] EXT4-fs: Ignoring removed mblk_io_submit option
[  128.127783][T10365] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.2801: couldn't read orphan inode 15 (err -117)
[  128.140078][T10369] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  128.152424][T10365] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.175904][T10369] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.235089][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.257496][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.297279][T10388] loop8: detected capacity change from 0 to 128
[  128.306084][T10388] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  128.352176][ T8836] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  128.368970][T10392] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2812'.
[  128.425793][T10400] loop8: detected capacity change from 0 to 2048
[  128.450130][T10400] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  128.580420][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  128.650060][ T3381] Process accounting resumed
[  128.793348][T10434] vlan2: entered allmulticast mode
[  128.798711][T10434] macvtap0: entered allmulticast mode
[  128.894049][T10443] syzkaller1: entered promiscuous mode
[  128.899847][T10443] syzkaller1: entered allmulticast mode
[  129.396580][T10462] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2842'.
[  129.631392][T10476] netlink: 'syz.7.2848': attribute type 1 has an invalid length.
[  129.783259][T10490] netlink: 'syz.6.2853': attribute type 27 has an invalid length.
[  129.797112][T10492] loop8: detected capacity change from 0 to 128
[  129.811888][T10492] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  129.827509][T10492] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  129.847293][T10490] $Hÿ: left promiscuous mode
[  129.852132][T10490] bond_slave_0: left promiscuous mode
[  129.857800][T10490] bond_slave_1: left promiscuous mode
[  129.863893][ T4924] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  129.887119][ T4944] netdevsim netdevsim6 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  129.905134][ T4944] netdevsim netdevsim6 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  129.920728][ T4944] netdevsim netdevsim6 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  129.939947][ T4944] netdevsim netdevsim6 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  130.148076][T10521] loop8: detected capacity change from 0 to 128
[  130.164834][T10521] FAT-fs (loop8): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  130.257999][ T8836] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100)
[  130.265937][ T8836] FAT-fs (loop8): Filesystem has been set read-only
[  130.275276][ T8836] FAT-fs (loop8): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  130.317421][T10537] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.370455][T10537] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.415485][T10543] syz_tun: entered allmulticast mode
[  130.422935][T10542] syz_tun: left allmulticast mode
[  130.437704][T10544] loop5: detected capacity change from 0 to 2048
[  130.446510][T10537] netdevsim netdevsim8  (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.467888][T10544] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  130.494519][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  130.548570][T10537] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.612023][T10563] loop5: detected capacity change from 0 to 1024
[  130.630336][T10563] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.669053][ T4937] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  130.702735][ T4937] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  130.719239][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.756129][T10574] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.763450][T10574] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.826700][T10574] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  130.838427][T10574] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  130.876814][T10574] ip6gre1: left allmulticast mode
[  130.885412][ T4937] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  130.893676][ T4937] netdevsim netdevsim7 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  130.902547][ T4937] netdevsim netdevsim7 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  130.911638][T10589] netlink: 2028 bytes leftover after parsing attributes in process `syz.5.2892'.
[  130.920898][T10589] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2892'.
[  130.930096][ T4937] netdevsim netdevsim7 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  130.938930][ T4937] netdevsim netdevsim7 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  130.947458][ T4937] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.086946][T10609] tipc: Started in network mode
[  131.091900][T10609] tipc: Node identity ac14140f, cluster identity 4711
[  131.101486][T10609] tipc: New replicast peer: 255.255.255.255
[  131.107783][T10609] tipc: Enabled bearer <udp:syz2>, priority 10
[  131.116992][T10609] netlink: 340 bytes leftover after parsing attributes in process `syz.6.2901'.
[  131.207114][T10618] netlink: 'syz.1.2906': attribute type 27 has an invalid length.
[  131.325495][T10618] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.332811][T10618] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.344604][T10618] batman_adv: batadv0: Interface deactivated: dummy0
[  131.400204][T10618] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  131.410763][T10618] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  131.438124][T10618] team0: left promiscuous mode
[  131.442984][T10618] team0: left allmulticast mode
[  131.456357][T10618] vlan0: left allmulticast mode
[  131.486461][ T4937] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  131.525757][ T4937] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  131.571739][ T4937] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  131.601304][ T4937] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  131.944847][T10659] loop6: detected capacity change from 0 to 2048
[  131.988629][   T29] kauditd_printk_skb: 196 callbacks suppressed
[  131.988728][   T29] audit: type=1326 audit(131.910:8002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fecc144d550 code=0x7ffc0000
[  132.018326][   T29] audit: type=1326 audit(131.910:8003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fecc144e7eb code=0x7ffc0000
[  132.041271][   T29] audit: type=1326 audit(131.910:8004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fecc144d84a code=0x7ffc0000
[  132.064221][   T29] audit: type=1326 audit(131.910:8005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fecc144d84a code=0x7ffc0000
[  132.087181][   T29] audit: type=1326 audit(131.910:8006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fecc144d457 code=0x7ffc0000
[  132.110326][   T29] audit: type=1326 audit(131.910:8007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fecc145038a code=0x7ffc0000
[  132.143372][T10639] tipc: Node number set to 2886997007
[  132.164997][T10659] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  132.208313][   T29] audit: type=1326 audit(132.170:8008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fecc144d550 code=0x7ffc0000
[  132.231299][   T29] audit: type=1326 audit(132.170:8009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fecc144d937 code=0x7ffc0000
[  132.254588][   T29] audit: type=1326 audit(132.170:8010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fecc144d550 code=0x7ffc0000
[  132.277688][   T29] audit: type=1326 audit(132.170:8011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10658 comm="syz.6.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  132.301096][T10672] loop8: detected capacity change from 0 to 512
[  132.307857][T10672] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.314949][T10672] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  132.345054][T10672] EXT4-fs (loop8): 1 truncate cleaned up
[  132.351364][T10672] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.370122][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  132.742705][T10696] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2925'.
[  132.751990][T10696] unsupported nlmsg_type 40
[  133.137924][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.337651][T10737] tipc: Started in network mode
[  133.342643][T10737] tipc: Node identity ac141413, cluster identity 4711
[  133.349789][T10737] tipc: New replicast peer: 10.1.1.2
[  133.355190][T10737] tipc: Enabled bearer <udp:syz2>, priority 10
[  133.378317][T10739] serio: Serial port ptm0
[  134.117831][T10802] pimreg: entered allmulticast mode
[  134.123708][T10802] pimreg: left allmulticast mode
[  134.171604][T10646] kernel write not supported for file bpf-prog (pid: 10646 comm: kworker/0:11)
[  134.363886][T10646] tipc: Node number set to 2886997011
[  134.556573][T10829] loop8: detected capacity change from 0 to 1024
[  134.576643][T10829] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.616567][T10829] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4183: comm syz.8.2987: Allocating blocks 449-513 which overlap fs metadata
[  134.646179][T10828] EXT4-fs (loop8): pa ffff888106e9e9a0: logic 48, phys. 177, len 21
[  134.654434][T10828] EXT4-fs error (device loop8): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  134.721351][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.774563][T10844] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2993'.
[  134.793531][T10846] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2994'.
[  135.073847][T10863] loop7: detected capacity change from 0 to 2048
[  135.097420][T10863] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.139209][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.234878][T10884] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3011'.
[  135.251750][T10884] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3011'.
[  135.519068][T10920] bridge: RTM_NEWNEIGH with invalid ether address
[  135.754837][T10942] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3037'.
[  135.781300][T10945] veth0_to_team: entered promiscuous mode
[  135.790790][T10946] netlink: 'syz.8.3039': attribute type 3 has an invalid length.
[  136.156460][T10990] loop6: detected capacity change from 0 to 2048
[  136.280961][T10998] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3061'.
[  136.406241][T10990] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.986878][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.999802][T11031] serio: Serial port ptm0
[  137.036307][T11033] loop6: detected capacity change from 0 to 512
[  137.071683][T11038] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3077'.
[  137.081376][T11038] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  137.107903][T11033] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.136287][T11033] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #4: comm syz.6.3075: corrupted inode contents
[  137.150775][T11033] EXT4-fs error (device loop6): ext4_dirty_inode:6538: inode #4: comm syz.6.3075: mark_inode_dirty error
[  137.167269][T11033] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #4: comm syz.6.3075: corrupted inode contents
[  137.180271][T11033] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #4: comm syz.6.3075: mark_inode_dirty error
[  137.196871][T11033] __quota_error: 185 callbacks suppressed
[  137.196893][T11033] Quota error (device loop6): write_blk: dquota write failed
[  137.210318][T11033] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  137.220257][T11033] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm syz.6.3075: Failed to acquire dquot type 1
[  137.233266][T11042] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #4: comm syz.6.3075: corrupted inode contents
[  137.248418][   T29] audit: type=1326 audit(137.210:8197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11043 comm="syz.5.3078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  137.279500][T11042] EXT4-fs error (device loop6): ext4_dirty_inode:6538: inode #4: comm syz.6.3075: mark_inode_dirty error
[  137.291834][T11046] loop7: detected capacity change from 0 to 128
[  137.301165][   T29] audit: type=1326 audit(137.210:8198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11043 comm="syz.5.3078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  137.324329][   T29] audit: type=1326 audit(137.210:8199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11043 comm="syz.5.3078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  137.347494][   T29] audit: type=1326 audit(137.210:8200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11043 comm="syz.5.3078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  137.370499][   T29] audit: type=1326 audit(137.210:8201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11043 comm="syz.5.3078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  137.393419][   T29] audit: type=1326 audit(137.210:8202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11043 comm="syz.5.3078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  137.416608][   T29] audit: type=1326 audit(137.210:8203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11043 comm="syz.5.3078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  137.439737][   T29] audit: type=1326 audit(137.210:8204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11043 comm="syz.5.3078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  137.455924][T11046] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  137.464162][T11042] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #4: comm syz.6.3075: corrupted inode contents
[  137.487383][T11042] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #4: comm syz.6.3075: mark_inode_dirty error
[  137.511415][T11042] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm syz.6.3075: Failed to acquire dquot type 1
[  137.564752][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.598655][ T7832] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  137.627435][T11071] loop7: detected capacity change from 0 to 512
[  137.659496][T11070] loop6: detected capacity change from 0 to 1024
[  137.666271][T11071] EXT4-fs warning (device loop7): dx_probe:861: inode #2: comm syz.7.3088: dx entry: limit 0 != root limit 125
[  137.678147][T11071] EXT4-fs warning (device loop7): dx_probe:934: inode #2: comm syz.7.3088: Corrupt directory, running e2fsck is recommended
[  137.704385][T11070] EXT4-fs: inline encryption not supported
[  137.730755][T11070] EXT4-fs: Ignoring removed bh option
[  137.750066][T11071] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -117
[  137.763115][T11071] EXT4-fs error (device loop7): ext4_iget_extra_inode:5104: inode #15: comm syz.7.3088: corrupted in-inode xattr: invalid ea_ino
[  137.766673][T11070] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.799795][T11071] EXT4-fs (loop7): Remounting filesystem read-only
[  137.806859][T11071] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.829728][T11071] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000.
[  137.834337][T11085] loop5: detected capacity change from 0 to 2048
[  137.884422][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.897403][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.909609][T11085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.935912][T11097] loop6: detected capacity change from 0 to 128
[  137.965457][T11097] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  138.058826][ T5793] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  138.121182][T11109] netlink: 'syz.1.3105': attribute type 4 has an invalid length.
[  138.132621][T11109] netlink: 'syz.1.3105': attribute type 4 has an invalid length.
[  138.143581][T11111] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3102'.
[  138.152778][T11111] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3102'.
[  138.161807][T11111] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3102'.
[  138.176538][T11111] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3102'.
[  138.185552][T11111] netlink: 'syz.6.3102': attribute type 6 has an invalid length.
[  138.263453][T11122] $Hÿ: renamed from bond0
[  138.270058][T11122] $Hÿ: entered promiscuous mode
[  138.275297][T11122] bond_slave_0: entered promiscuous mode
[  138.281263][T11122] bond_slave_1: entered promiscuous mode
[  138.287170][T11122] batadv0: entered promiscuous mode
[  138.330490][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.346933][T11130] netlink: 'syz.1.3115': attribute type 10 has an invalid length.
[  138.355191][T11130] batman_adv: batadv0: Removing interface: dummy0
[  138.364452][T11130] dummy0: entered promiscuous mode
[  138.370346][T11130] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[  138.396184][T11133] loop5: detected capacity change from 0 to 512
[  138.432038][T11133] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.474305][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.590455][T11156] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3125'.
[  138.599524][T11156] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3125'.
[  138.608585][T11156] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3125'.
[  138.618093][T11156] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3125'.
[  138.667517][T11162] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3128'.
[  138.856612][T11182] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3136'.
[  139.392519][T11212] loop8: detected capacity change from 0 to 512
[  139.399399][T11212] EXT4-fs: Ignoring removed nobh option
[  139.405637][T11212] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  139.416626][T11212] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.3149: iget: bad i_size value: 38620345925642
[  139.429664][T11212] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.3149: couldn't read orphan inode 15 (err -117)
[  139.442367][T11212] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.467954][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.818161][T11244] sctp: [Deprecated]: syz.6.3164 (pid 11244) Use of struct sctp_assoc_value in delayed_ack socket option.
[  139.818161][T11244] Use struct sctp_sack_info instead
[  139.876982][T11248] netlink: 'syz.6.3166': attribute type 4 has an invalid length.
[  139.887738][T11248] netlink: 'syz.6.3166': attribute type 4 has an invalid length.
[  140.962217][T11319] netlink: 'syz.7.3199': attribute type 10 has an invalid length.
[  140.993296][T11325] loop8: detected capacity change from 0 to 128
[  141.008788][T11325] FAT-fs (loop8): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  141.036038][T11325] FAT-fs (loop8): FAT read failed (blocknr 32)
[  141.561435][T11400] loop6: detected capacity change from 0 to 128
[  141.571774][T11400] FAT-fs (loop6): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  141.597252][T11400] FAT-fs (loop6): FAT read failed (blocknr 32)
[  141.614723][T11410] netlink: 'syz.5.3220': attribute type 10 has an invalid length.
[  141.623163][T11410] bond2: (slave dummy0): Releasing active interface
[  141.636183][T11410] team0: Port device dummy0 added
[  141.865716][T11451] netlink: 'syz.6.3224': attribute type 30 has an invalid length.
[  142.091487][T11483] pim6reg: entered allmulticast mode
[  142.107971][T11483] bridge0: entered allmulticast mode
[  142.227473][   T29] kauditd_printk_skb: 257 callbacks suppressed
[  142.227488][   T29] audit: type=1400 audit(142.190:8457): avc:  denied  { create } for  pid=11502 comm="syz.7.3233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  142.319176][   T29] audit: type=1400 audit(142.220:8458): avc:  denied  { bind } for  pid=11502 comm="syz.7.3233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  142.338233][   T29] audit: type=1400 audit(142.230:8459): avc:  denied  { listen } for  pid=11502 comm="syz.7.3233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  142.357443][   T29] audit: type=1400 audit(142.230:8460): avc:  denied  { connect } for  pid=11502 comm="syz.7.3233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  142.376686][   T29] audit: type=1400 audit(142.240:8461): avc:  denied  { write } for  pid=11502 comm="syz.7.3233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  142.432252][   T29] audit: type=1400 audit(142.370:8462): avc:  denied  { create } for  pid=11524 comm="syz.7.3235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  142.451420][   T29] audit: type=1400 audit(142.370:8463): avc:  denied  { bind } for  pid=11524 comm="syz.7.3235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  142.470325][   T29] audit: type=1400 audit(142.370:8464): avc:  denied  { setopt } for  pid=11524 comm="syz.7.3235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  142.489406][   T29] audit: type=1400 audit(142.370:8465): avc:  denied  { write } for  pid=11524 comm="syz.7.3235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  142.508732][   T29] audit: type=1400 audit(142.390:8466): avc:  denied  { read } for  pid=11526 comm="syz.7.3236" dev="nsfs" ino=4026532853 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  142.816455][T11550] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  142.824292][T11550] batman_adv: batadv0: Removing interface: batadv_slave_0
[  142.831954][T11550] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  142.839495][T11550] batman_adv: batadv0: Removing interface: batadv_slave_1
[  143.015160][T11558] loop6: detected capacity change from 0 to 4096
[  143.029007][T11558] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.109195][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.294775][T11575] __nla_validate_parse: 7 callbacks suppressed
[  143.294797][T11575] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3256'.
[  143.311187][T11575] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3256'.
[  143.327190][T11576] loop8: detected capacity change from 0 to 512
[  143.337269][T11578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3258'.
[  143.349348][T11576] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.3257: corrupted in-inode xattr: overlapping e_value 
[  143.364292][T11576] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.3257: couldn't read orphan inode 15 (err -117)
[  143.381529][T11576] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.446826][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.458403][T11585] tipc: New replicast peer: 255.255.255.255
[  143.464660][T11585] tipc: Enabled bearer <udp:syz2>, priority 10
[  143.587718][T11606] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11606 comm=syz.6.3271
[  143.617691][T11608] bridge0: port 3(syz_tun) entered blocking state
[  143.624274][T11608] bridge0: port 3(syz_tun) entered disabled state
[  143.631483][T11608] syz_tun: entered allmulticast mode
[  143.637619][T11608] syz_tun: entered promiscuous mode
[  143.646833][T11608] syz_tun: left allmulticast mode
[  143.652060][T11608] syz_tun: left promiscuous mode
[  143.657313][T11608] bridge0: port 3(syz_tun) entered disabled state
[  143.666387][T11608] bridge_slave_0: left allmulticast mode
[  143.672090][T11608] bridge_slave_0: left promiscuous mode
[  143.677904][T11608] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.691467][T11608] bridge_slave_1: left allmulticast mode
[  143.697312][T11608] bridge_slave_1: left promiscuous mode
[  143.703136][T11608] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.713037][T11608] $Hÿ: (slave bond_slave_0): Releasing backup interface
[  143.721913][T11608] $Hÿ: (slave bond_slave_1): Releasing backup interface
[  143.731314][T11608] team0: Port device team_slave_0 removed
[  143.738394][T11608] team0: Port device team_slave_1 removed
[  143.744611][T11608] batman_adv: batadv0: Removing interface: batadv_slave_0
[  143.753049][T11608] bond1: (slave veth5): Releasing active interface
[  143.761904][T11611] netlink: 'syz.1.3273': attribute type 3 has an invalid length.
[  143.771567][T11611] netlink: 'syz.1.3273': attribute type 3 has an invalid length.
[  143.816615][T11625] loop5: detected capacity change from 0 to 512
[  143.836337][T11625] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.886596][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.172385][T11644] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3285'.
[  144.248836][T11650] netlink: 'syz.5.3288': attribute type 1 has an invalid length.
[  144.256712][T11650] netlink: 'syz.5.3288': attribute type 4 has an invalid length.
[  144.264504][T11650] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.3288'.
[  144.274967][T11650] netlink: 'syz.5.3288': attribute type 1 has an invalid length.
[  144.282796][T11650] netlink: 'syz.5.3288': attribute type 4 has an invalid length.
[  144.290988][T11650] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.3288'.
[  144.368089][T11658] loop5: detected capacity change from 0 to 512
[  144.376289][T11658] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  144.388532][T11658] EXT4-fs (loop5): 1 truncate cleaned up
[  144.396203][T11658] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.410382][T11658] sg_write: data in/out 11329/120 bytes for SCSI command 0x0-- guessing data in;
[  144.410382][T11658]    program syz.5.3292 not setting count and/or reply_len properly
[  144.438714][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.866806][T11708] loop7: detected capacity change from 0 to 512
[  144.888973][T11708] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.910951][T11708] EXT4-fs error (device loop7): ext4_empty_dir:3080: inode #12: comm syz.7.3312: Directory hole found for htree leaf block 0
[  144.949026][T11708] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  144.998687][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.086268][T11737] loop6: detected capacity change from 0 to 1024
[  145.112650][T11737] EXT4-fs: Ignoring removed nomblk_io_submit option
[  145.146576][T11737] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.284166][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.448248][T11756] loop7: detected capacity change from 0 to 1024
[  145.455496][T11756] EXT4-fs: inline encryption not supported
[  145.461709][T11756] EXT4-fs: Ignoring removed bh option
[  145.477890][T11756] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.550363][T11766] pim6reg: left allmulticast mode
[  145.555690][T11766] bridge0: left allmulticast mode
[  145.575639][T11756] EXT4-fs error (device loop7): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  145.591923][T11756] EXT4-fs (loop7): Remounting filesystem read-only
[  145.626446][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.796447][T11785] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3344'.
[  146.027085][T11806] netlink: 'syz.6.3354': attribute type 3 has an invalid length.
[  146.074715][T11806] netlink: 'syz.6.3354': attribute type 3 has an invalid length.
[  146.467388][T11841] loop5: detected capacity change from 0 to 1024
[  146.492194][T11841] EXT4-fs: Ignoring removed bh option
[  146.536771][T11841] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.625407][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.736616][T11868] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3379'.
[  146.766732][T11868] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.088808][T11911] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11911 comm=syz.7.3387
[  147.455020][   T29] kauditd_printk_skb: 129 callbacks suppressed
[  147.455038][   T29] audit: type=1400 audit(147.420:8596): avc:  denied  { bind } for  pid=11933 comm="syz.1.3391" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  147.688605][   T29] audit: type=1400 audit(147.650:8597): avc:  denied  { accept } for  pid=11964 comm="syz.6.3392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.761115][   T29] audit: type=1400 audit(147.650:8598): avc:  denied  { read } for  pid=11964 comm="syz.6.3392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.780250][   T29] audit: type=1400 audit(147.720:8599): avc:  denied  { write } for  pid=11968 comm="syz.1.3393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  147.936823][T11989] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3399'.
[  147.955636][T11989] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3399'.
[  148.073188][T11994] loop6: detected capacity change from 0 to 164
[  148.079971][   T29] audit: type=1326 audit(148.030:8600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11993 comm="syz.6.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  148.102977][   T29] audit: type=1326 audit(148.030:8601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11993 comm="syz.6.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  148.126030][   T29] audit: type=1326 audit(148.030:8602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11993 comm="syz.6.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  148.149034][   T29] audit: type=1326 audit(148.030:8603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11993 comm="syz.6.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  148.172252][   T29] audit: type=1326 audit(148.030:8604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11993 comm="syz.6.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  148.195263][   T29] audit: type=1326 audit(148.030:8605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11993 comm="syz.6.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  148.297412][T11994] Unable to read rock-ridge attributes
[  148.324586][T11994] Unable to read rock-ridge attributes
[  148.415866][T11994] iso9660: Corrupted directory entry in block 4 of inode 1792
[  148.577912][T12017] loop7: detected capacity change from 0 to 512
[  148.597324][T12017] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.613593][T12017] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.3408: corrupted inode contents
[  148.627800][T12017] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #2: comm syz.7.3408: mark_inode_dirty error
[  148.641515][T12017] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.3408: corrupted inode contents
[  148.667042][T12017] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.3408: corrupted inode contents
[  148.682534][T12027] __nla_validate_parse: 2 callbacks suppressed
[  148.682551][T12027] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3414'.
[  148.699300][T12017] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #2: comm syz.7.3408: mark_inode_dirty error
[  148.728018][T12017] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.3408: corrupted inode contents
[  148.742305][T12017] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #2: comm syz.7.3408: mark_inode_dirty error
[  148.757246][T12017] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #2: comm syz.7.3408: corrupted inode contents
[  148.770709][T12017] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #2: comm syz.7.3408: mark_inode_dirty error
[  148.813254][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.982801][T12041] netlink: 104 bytes leftover after parsing attributes in process `syz.7.3420'.
[  149.067408][T12049] loop7: detected capacity change from 0 to 512
[  149.082651][T12049] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  149.105238][T12051] loop5: detected capacity change from 0 to 512
[  149.116779][T12051] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  149.117383][T12049] EXT4-fs (loop7): 1 truncate cleaned up
[  149.132459][T12049] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.151793][T12049] sg_write: data in/out 11329/120 bytes for SCSI command 0x0-- guessing data in;
[  149.151793][T12049]    program syz.7.3424 not setting count and/or reply_len properly
[  149.171639][T12051] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.3425: Failed to acquire dquot type 1
[  149.194944][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.205673][T12051] EXT4-fs (loop5): 1 truncate cleaned up
[  149.211767][T12051] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.246962][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.403954][T12074] loop8: detected capacity change from 0 to 1024
[  149.410766][T12074] EXT4-fs: inline encryption not supported
[  149.416730][T12074] EXT4-fs: Ignoring removed bh option
[  149.467194][T12074] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.558314][T12074] EXT4-fs error (device loop8): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  149.580669][T12074] EXT4-fs (loop8): Remounting filesystem read-only
[  149.624207][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.683340][T12083] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3437'.
[  149.698058][T12084] netlink: 96 bytes leftover after parsing attributes in process `syz.8.3436'.
[  149.837076][T12098] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3445'.
[  150.135694][T12114] loop7: detected capacity change from 0 to 1024
[  150.142626][T12114] EXT4-fs: Ignoring removed orlov option
[  150.166514][T12114] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.187607][T12114] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.3453: bg 0: block 88: padding at end of block bitmap is not set
[  150.217417][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.247662][T12122] loop7: detected capacity change from 0 to 1024
[  150.262338][T12122] EXT4-fs: Ignoring removed bh option
[  150.288892][T12122] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.365216][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.565874][T12137] loop6: detected capacity change from 0 to 512
[  150.652488][T12137] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  150.719978][T12146] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3464'.
[  150.741212][T12137] EXT4-fs (loop6): mount failed
[  150.760290][T12148] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3465'.
[  150.821556][T12152] netlink: 204 bytes leftover after parsing attributes in process `syz.8.3467'.
[  150.830736][T12152] netlink: 72 bytes leftover after parsing attributes in process `syz.8.3467'.
[  150.887636][T12152] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3467'.
[  151.087856][T12169] bridge0: entered promiscuous mode
[  151.099454][T12169] bridge0: port 3(macsec1) entered blocking state
[  151.106056][T12169] bridge0: port 3(macsec1) entered disabled state
[  151.115954][T12169] macsec1: entered allmulticast mode
[  151.121336][T12169] bridge0: entered allmulticast mode
[  151.129359][T12169] macsec1: left allmulticast mode
[  151.134962][T12169] bridge0: left allmulticast mode
[  151.188300][T12169] bridge0: left promiscuous mode
[  151.348128][T12182] netlink: 'syz.8.3481': attribute type 4 has an invalid length.
[  151.458408][T12185] pimreg: entered allmulticast mode
[  151.482090][T12185] pimreg: left allmulticast mode
[  151.719857][T12230] bridge0: port 3(syz_tun) entered blocking state
[  151.726466][T12230] bridge0: port 3(syz_tun) entered disabled state
[  151.742342][T12230] syz_tun: entered allmulticast mode
[  151.750143][T12230] syz_tun: entered promiscuous mode
[  151.756094][T12230] bridge0: port 3(syz_tun) entered blocking state
[  151.762852][T12230] bridge0: port 3(syz_tun) entered forwarding state
[  151.779384][T12230] syz_tun: left allmulticast mode
[  151.784788][T12230] syz_tun: left promiscuous mode
[  151.790211][T12230] bridge0: port 3(syz_tun) entered disabled state
[  151.807341][T12230] team0: Port device dummy0 removed
[  151.820069][T12230] bridge_slave_0: left allmulticast mode
[  151.826643][T12230] bridge_slave_0: left promiscuous mode
[  151.832378][T12230] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.842030][T12230] bridge_slave_1: left allmulticast mode
[  151.848044][T12230] bridge_slave_1: left promiscuous mode
[  151.853957][T12230] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.863873][T12230] bond0: (slave bond_slave_0): Releasing backup interface
[  151.881781][T12230] bond0: (slave bond_slave_1): Releasing backup interface
[  151.897039][T12230] team0: Port device team_slave_0 removed
[  151.906669][T12230] team0: Port device team_slave_1 removed
[  151.923997][T12230] bond1: (slave veth3): Releasing active interface
[  151.935136][T12230] bond2: (slave veth7): Releasing active interface
[  152.031389][T12249] loop6: detected capacity change from 0 to 1024
[  152.046710][T12249] EXT4-fs: Ignoring removed bh option
[  152.072891][T12249] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  152.111627][T12252] loop8: detected capacity change from 0 to 8192
[  152.119452][T12252] msdos: Unknown parameter 'A'
[  152.153766][T12259] loop5: detected capacity change from 0 to 512
[  152.160892][T12259] EXT4-fs: Ignoring removed nobh option
[  152.195069][T12259] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.3515: corrupted inode contents
[  152.207507][T12259] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #3: comm syz.5.3515: mark_inode_dirty error
[  152.220395][T12259] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.3515: corrupted inode contents
[  152.233181][T12259] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #3: comm syz.5.3515: mark_inode_dirty error
[  152.256577][T12259] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.3515: Failed to acquire dquot type 0
[  152.270123][T12267] IPv6: Can't replace route, no match found
[  152.277073][T12259] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.3515: corrupted inode contents
[  152.303871][T12259] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #16: comm syz.5.3515: mark_inode_dirty error
[  152.322178][T12259] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.3515: corrupted inode contents
[  152.336554][T12259] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.3515: mark_inode_dirty error
[  152.363292][T12259] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.3515: corrupted inode contents
[  152.378729][T12259] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  152.388228][T12259] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.3515: corrupted inode contents
[  152.405175][T12259] EXT4-fs error (device loop5): ext4_truncate:4666: inode #16: comm syz.5.3515: mark_inode_dirty error
[  152.418331][T12259] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  152.429102][T12259] EXT4-fs (loop5): 1 truncate cleaned up
[  152.435658][T12259] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.481491][T12280] netem: change failed
[  152.503084][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.536572][   T29] kauditd_printk_skb: 203 callbacks suppressed
[  152.536590][   T29] audit: type=1400 audit(152.500:8804): avc:  denied  { listen } for  pid=12287 comm="syz.5.3527" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  152.585944][   T29] audit: type=1400 audit(152.500:8805): avc:  denied  { accept } for  pid=12287 comm="syz.5.3527" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  152.614222][   T29] audit: type=1400 audit(152.570:8806): avc:  denied  { shutdown } for  pid=12287 comm="syz.5.3527" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  152.650135][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  152.778036][   T29] audit: type=1326 audit(152.730:8807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.1.3534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  152.801146][   T29] audit: type=1326 audit(152.730:8808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.1.3534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  152.824230][   T29] audit: type=1326 audit(152.730:8809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.1.3534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  152.847161][   T29] audit: type=1326 audit(152.730:8810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.1.3534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  152.870091][   T29] audit: type=1326 audit(152.730:8811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.1.3534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  152.893240][   T29] audit: type=1326 audit(152.730:8812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.1.3534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  152.908258][T12311] syzkaller0: entered allmulticast mode
[  152.916159][   T29] audit: type=1326 audit(152.730:8813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12304 comm="syz.1.3534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  152.975272][T12311] syzkaller0 (unregistering): left allmulticast mode
[  153.059011][T12314] netlink: 'syz.6.3539': attribute type 4 has an invalid length.
[  153.180202][T12316] loop5: detected capacity change from 0 to 512
[  153.263446][T12337] loop6: detected capacity change from 0 to 128
[  153.303074][T12316] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #3: comm syz.5.3540: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  153.356478][T12316] EXT4-fs error (device loop5): ext4_quota_enable:7131: comm syz.5.3540: Bad quota inode: 3, type: 0
[  153.398642][T12343] SELinux: ebitmap: truncated map
[  153.404115][T12316] EXT4-fs warning (device loop5): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  153.462400][T12343] SELinux: failed to load policy
[  153.478934][T12316] EXT4-fs (loop5): mount failed
[  153.966280][T12368] __nla_validate_parse: 3 callbacks suppressed
[  153.966301][T12368] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3562'.
[  153.981639][T12368] netlink: 'syz.5.3562': attribute type 11 has an invalid length.
[  154.014884][T12368] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3562'.
[  154.024541][T12368] netlink: 'syz.5.3562': attribute type 11 has an invalid length.
[  154.087758][T12370] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  154.094459][T12370] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  154.102349][T12370] vhci_hcd vhci_hcd.0: Device attached
[  154.373856][T10644] usb 12-1: SetAddress Request (2) to port 0
[  154.380071][T10644] usb 12-1: new SuperSpeed USB device number 2 using vhci_hcd
[  154.389818][T12418] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3573'.
[  154.402219][ T4906] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  154.409144][T12418] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3573'.
[  154.417945][ T4906] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  154.438290][ T4906] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  154.449260][ T4906] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  154.542274][T12433] bridge0: port 3(syz_tun) entered blocking state
[  154.548902][T12433] bridge0: port 3(syz_tun) entered disabled state
[  154.557495][T12433] syz_tun: entered allmulticast mode
[  154.563664][T12433] syz_tun: entered promiscuous mode
[  154.569748][T12433] bridge0: port 3(syz_tun) entered blocking state
[  154.576345][T12433] bridge0: port 3(syz_tun) entered forwarding state
[  154.592255][T12440] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3580'.
[  154.595290][T12433] syz_tun: left allmulticast mode
[  154.606419][T12433] syz_tun: left promiscuous mode
[  154.611935][T12433] bridge0: port 3(syz_tun) entered disabled state
[  154.638232][T12433] bond1: (slave dummy0): Releasing active interface
[  154.652220][T12448] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3580'.
[  154.668536][T12433] bridge_slave_0: left allmulticast mode
[  154.674301][T12433] bridge_slave_0: left promiscuous mode
[  154.680080][T12433] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.767714][T12433] bridge_slave_1: left allmulticast mode
[  154.773440][T12433] bridge_slave_1: left promiscuous mode
[  154.779339][T12433] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.790085][T12433] bond0: (slave bond_slave_0): Releasing backup interface
[  154.804509][T12433] bond0: (slave bond_slave_1): Releasing backup interface
[  154.847762][T12433] team0: Port device team_slave_0 removed
[  154.858349][T12433] team0: Port device team_slave_1 removed
[  154.917161][T12433] bond1: (slave veth5): Releasing active interface
[  155.013324][T12483] loop7: detected capacity change from 0 to 2048
[  155.034450][T12483]  loop7: p1 < > p4
[  155.039684][T12483] loop7: p4 size 8388608 extends beyond EOD, truncated
[  155.125687][T12505] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3589'.
[  155.385804][T12549] netlink: 'syz.7.3594': attribute type 3 has an invalid length.
[  155.509027][T12567] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3598'.
[  155.674506][T12371] vhci_hcd: connection reset by peer
[  155.680436][ T4910] vhci_hcd: stop threads
[  155.684858][ T4910] vhci_hcd: release socket
[  155.690002][ T4910] vhci_hcd: disconnect device
[  155.699322][T12593] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3606'.
[  155.848092][T12599] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3609'.
[  156.498430][T12634] loop8: detected capacity change from 0 to 4096
[  156.509165][T12634] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.547678][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.576898][T12640] loop8: detected capacity change from 0 to 128
[  156.586173][T12640] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  156.634274][ T8836] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  156.738294][T12658] netem: incorrect ge model size
[  156.743546][T12658] netem: change failed
[  156.898268][T12662] loop8: detected capacity change from 0 to 512
[  156.954296][T12662] EXT4-fs error (device loop8): ext4_ext_check_inode:523: inode #3: comm syz.8.3636: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  156.955689][T12676] syz.6.3642: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  156.988630][T12676] CPU: 0 UID: 0 PID: 12676 Comm: syz.6.3642 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  156.988666][T12676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  156.988682][T12676] Call Trace:
[  156.988692][T12676]  <TASK>
[  156.988700][T12676]  __dump_stack+0x1d/0x30
[  156.988722][T12676]  dump_stack_lvl+0xe8/0x140
[  156.988747][T12676]  dump_stack+0x15/0x1b
[  156.988769][T12676]  warn_alloc+0x12b/0x1a0
[  156.988811][T12676]  ? __pfx_min_vruntime_cb_rotate+0x10/0x10
[  156.988887][T12676]  __vmalloc_node_range_noprof+0x9c/0xe00
[  156.988931][T12676]  ? probe_sched_wakeup+0x85/0xa0
[  156.988964][T12676]  ? ttwu_do_activate+0x1d0/0x210
[  156.989039][T12676]  ? __rcu_read_unlock+0x4f/0x70
[  156.989067][T12676]  ? avc_has_perm_noaudit+0x1b1/0x200
[  156.989100][T12676]  ? should_fail_ex+0x30/0x280
[  156.989125][T12676]  ? xskq_create+0x36/0xe0
[  156.989220][T12676]  vmalloc_user_noprof+0x7d/0xb0
[  156.989262][T12676]  ? xskq_create+0x80/0xe0
[  156.989301][T12676]  xskq_create+0x80/0xe0
[  156.989355][T12676]  xsk_init_queue+0x95/0xf0
[  156.989394][T12676]  xsk_setsockopt+0x477/0x640
[  156.989444][T12676]  ? __pfx_xsk_setsockopt+0x10/0x10
[  156.989556][T12676]  __sys_setsockopt+0x184/0x200
[  156.989585][T12676]  __x64_sys_setsockopt+0x64/0x80
[  156.989654][T12676]  x64_sys_call+0x20ec/0x2ff0
[  156.989757][T12676]  do_syscall_64+0xd2/0x200
[  156.989792][T12676]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  156.989824][T12676]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  156.989856][T12676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.989917][T12676] RIP: 0033:0x7fecc144ebe9
[  156.989934][T12676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.989989][T12676] RSP: 002b:00007fecbfeb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  156.990014][T12676] RAX: ffffffffffffffda RBX: 00007fecc1675fa0 RCX: 00007fecc144ebe9
[  156.990030][T12676] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000006
[  156.990046][T12676] RBP: 00007fecc14d1e19 R08: 0000000000000004 R09: 0000000000000000
[  156.990059][T12676] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  156.990073][T12676] R13: 00007fecc1676038 R14: 00007fecc1675fa0 R15: 00007ffde203c338
[  156.990097][T12676]  </TASK>
[  156.990135][T12676] Mem-Info:
[  157.118591][T12662] EXT4-fs error (device loop8): ext4_quota_enable:7131: comm syz.8.3636: Bad quota inode: 3, type: 0
[  157.118961][T12676] active_anon:35537 inactive_anon:14 isolated_anon:0
[  157.118961][T12676]  active_file:27109 inactive_file:2501 isolated_file:0
[  157.118961][T12676]  unevictable:0 dirty:301 writeback:0
[  157.118961][T12676]  slab_reclaimable:3559 slab_unreclaimable:34777
[  157.118961][T12676]  mapped:31845 shmem:19898 pagetables:1276
[  157.118961][T12676]  sec_pagetables:0 bounce:0
[  157.118961][T12676]  kernel_misc_reclaimable:0
[  157.118961][T12676]  free:1837892 free_pcp:2306 free_cma:0
[  157.119058][T12676] Node 0 active_anon:142148kB inactive_anon:56kB active_file:108436kB inactive_file:10004kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:127380kB dirty:1204kB writeback:0kB shmem:79592kB kernel_stack:4576kB pagetables:5104kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  157.136863][T12662] EXT4-fs warning (device loop8): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  157.141723][T12676] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  157.141890][T12676] lowmem_reserve[]: 0 2883 7862 7862
[  157.141925][T12676] Node 0 DMA32 free:2949196kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2952828kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[  157.142006][T12676] lowmem_reserve[]: 0 0 4978 4978
[  157.142048][T12676] Node 0 Normal free:4387012kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:142148kB inactive_anon:56kB active_file:108436kB inactive_file:10004kB unevictable:0kB writepending:1204kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:5592kB local_pcp:3464kB free_cma:0kB
[  157.142151][T12676] lowmem_reserve[]: 0 0 0 0
[  157.142222][T12676] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 
[  157.163307][T12662] EXT4-fs (loop8): mount failed
[  157.167988][T12676] 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  157.168136][T12676] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 3*16kB (M) 2*32kB (M) 3*64kB (M) 4*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949196kB
[  157.168442][T12676] Node 0 Normal: 553*4kB (UME) 848*8kB (UM) 794*16kB 
[  157.340346][T12679] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  157.352918][T12676] (UME) 544*32kB (UME) 384*64kB (UME) 192*128kB (UME) 106*256kB (UM) 75*512kB (UM) 78*1024kB (UME) 44*2048kB (UM) 992*4096kB (UM) = 4387012kB
[  157.495105][T12676] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  157.504491][T12676] 46709 total pagecache pages
[  157.509416][T12676] 20 pages in swap cache
[  157.513710][T12676] Free swap  = 124908kB
[  157.517910][T12676] Total swap = 124996kB
[  157.522082][T12676] 2097051 pages RAM
[  157.525963][T12676] 0 pages HighMem/MovableOnly
[  157.530669][T12676] 80444 pages reserved
[  157.536894][T12679] tipc: Disabling bearer <eth:syzkaller0>
[  157.558071][T12680] veth1_to_bridge: entered promiscuous mode
[  157.573160][T12680] veth1_to_bridge: left promiscuous mode
[  157.665813][T12702] ªªªªªª: renamed from bond_slave_0
[  157.747851][   T29] kauditd_printk_skb: 530 callbacks suppressed
[  157.747866][   T29] audit: type=1400 audit(157.710:9344): avc:  denied  { create } for  pid=12713 comm="syz.5.3658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  157.801882][   T29] audit: type=1400 audit(157.740:9345): avc:  denied  { sys_admin } for  pid=12713 comm="syz.5.3658" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  157.917372][   T29] audit: type=1326 audit(157.870:9346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12728 comm="syz.7.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  157.940466][   T29] audit: type=1326 audit(157.870:9347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12728 comm="syz.7.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  157.963652][   T29] audit: type=1326 audit(157.870:9348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12728 comm="syz.7.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  157.986797][   T29] audit: type=1326 audit(157.870:9349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12728 comm="syz.7.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  158.010032][   T29] audit: type=1326 audit(157.870:9350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12728 comm="syz.7.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  158.067507][T12712] loop6: detected capacity change from 0 to 512
[  158.167030][T12712] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #3: comm syz.6.3660: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  158.188890][T12712] EXT4-fs error (device loop6): ext4_quota_enable:7131: comm syz.6.3660: Bad quota inode: 3, type: 0
[  158.212029][T12712] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  158.237792][T12712] EXT4-fs (loop6): mount failed
[  158.244018][   T29] audit: type=1326 audit(158.200:9351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12755 comm="syz.5.3677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  158.250012][T12747] SELinux: failed to load policy
[  158.268667][   T29] audit: type=1326 audit(158.200:9352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12755 comm="syz.5.3677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  158.297884][   T29] audit: type=1326 audit(158.210:9353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12755 comm="syz.5.3677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  158.450512][T12775] serio: Serial port ptm0
[  158.464305][T12772] SELinux:  Context @ is not valid (left unmapped).
[  158.497913][T12780] loop5: detected capacity change from 0 to 1764
[  158.573452][T12786] loop6: detected capacity change from 0 to 1024
[  158.580719][T12786] EXT4-fs: Ignoring removed nomblk_io_submit option
[  158.596040][T12786] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.625846][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.674381][T12798] loop7: detected capacity change from 0 to 2048
[  158.685852][T12798] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.699669][T12798] EXT4-fs (loop7): shut down requested (1)
[  158.721034][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.724887][T12806] loop6: detected capacity change from 0 to 1024
[  158.736924][T12806] EXT4-fs: Ignoring removed bh option
[  158.742521][T12806] EXT4-fs: inline encryption not supported
[  158.748931][T12806] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  158.760079][T12806] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  158.770308][T12806] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 2: comm syz.6.3706: lblock 2 mapped to illegal pblock 2 (length 1)
[  158.785623][T12806] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 48: comm syz.6.3706: lblock 0 mapped to illegal pblock 48 (length 1)
[  158.800276][T12806] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm syz.6.3706: Failed to acquire dquot type 0
[  158.812963][T12806] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  158.822649][T12806] EXT4-fs error (device loop6): ext4_evict_inode:254: inode #11: comm syz.6.3706: mark_inode_dirty error
[  158.834361][T12806] EXT4-fs warning (device loop6): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  158.844800][T12806] EXT4-fs (loop6): 1 orphan inode deleted
[  158.851177][T12806] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.865141][ T4927] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:45: lblock 1 mapped to illegal pblock 1 (length 1)
[  158.881830][T12811] netlink: 'syz.1.3698': attribute type 1 has an invalid length.
[  158.890541][ T4927] EXT4-fs error (device loop6): ext4_release_dquot:6973: comm kworker/u8:45: Failed to release dquot type 0
[  158.910766][T12809] loop7: detected capacity change from 0 to 512
[  158.919356][T12806] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 48: comm syz.6.3706: lblock 0 mapped to illegal pblock 48 (length 1)
[  158.953868][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.981569][T12809] EXT4-fs error (device loop7): ext4_ext_check_inode:523: inode #3: comm syz.7.3697: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  159.006179][T12809] EXT4-fs error (device loop7): ext4_quota_enable:7131: comm syz.7.3697: Bad quota inode: 3, type: 0
[  159.020288][T12809] EXT4-fs warning (device loop7): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  159.040502][T12809] EXT4-fs (loop7): mount failed
[  159.142547][T12824] __nla_validate_parse: 5 callbacks suppressed
[  159.142634][T12824] netlink: 340 bytes leftover after parsing attributes in process `syz.6.3703'.
[  159.296560][T12842] netlink: 29 bytes leftover after parsing attributes in process `syz.6.3714'.
[  159.503855][T10644] usb 12-1: device descriptor read/8, error -110
[  159.613993][T10644] usb 12-1: new SuperSpeed USB device number 2 using vhci_hcd
[  159.633843][T10644] usb 12-1: enqueue for inactive port 0
[  159.641871][T10644] usb 12-1: enqueue for inactive port 0
[  159.654566][T12879] smc: net device bond0 applied user defined pnetid SYZ0
[  159.657324][T10644] usb 12-1: enqueue for inactive port 0
[  159.672003][T12879] smc: net device bond0 erased user defined pnetid SYZ0
[  159.783218][T12887] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  159.792234][T12887] tipc: Disabling bearer <eth:syzkaller0>
[  159.827157][T12889] pimreg: entered allmulticast mode
[  159.836625][T12889] pimreg: left allmulticast mode
[  159.863259][T12892] loop5: detected capacity change from 0 to 128
[  159.886964][T12892] ipip0: entered promiscuous mode
[  159.953182][T12898] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3736'.
[  160.224930][T12911] loop5: detected capacity change from 0 to 2048
[  160.263889][T12915] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3744'.
[  160.541843][T12937] loop6: detected capacity change from 0 to 164
[  160.550821][T12937] syz.6.3751: attempt to access beyond end of device
[  160.550821][T12937] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  160.565710][T12937] syz.6.3751: attempt to access beyond end of device
[  160.565710][T12937] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  160.644921][T12946] loop8: detected capacity change from 0 to 128
[  160.707333][T10644] usb usb12-port1: attempt power cycle
[  161.046457][T12987] netlink: 120 bytes leftover after parsing attributes in process `syz.6.3771'.
[  161.246478][T13008] netlink: 14 bytes leftover after parsing attributes in process `syz.6.3782'.
[  161.269710][T13008] hsr_slave_0: left promiscuous mode
[  161.292028][T13008] hsr_slave_1: left promiscuous mode
[  161.323748][T13006] loop8: detected capacity change from 0 to 512
[  161.336968][T13020] netlink: 120 bytes leftover after parsing attributes in process `syz.7.3788'.
[  161.434670][T13006] EXT4-fs error (device loop8): ext4_ext_check_inode:523: inode #3: comm syz.8.3781: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  161.472889][T13006] EXT4-fs error (device loop8): ext4_quota_enable:7131: comm syz.8.3781: Bad quota inode: 3, type: 0
[  161.504169][T13006] EXT4-fs warning (device loop8): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  161.526512][T13006] EXT4-fs (loop8): mount failed
[  161.568057][T13038] netlink: 'syz.1.3794': attribute type 12 has an invalid length.
[  161.756400][T13062] loop6: detected capacity change from 0 to 512
[  161.763375][T13062] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  161.778769][T13062] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #16: comm syz.6.3805: invalid indirect mapped block 4294967295 (level 0)
[  161.795225][T13062] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #16: comm syz.6.3805: invalid indirect mapped block 4294967295 (level 1)
[  161.826557][T13062] EXT4-fs (loop6): 1 orphan inode deleted
[  161.832799][T13062] EXT4-fs (loop6): 1 truncate cleaned up
[  161.849123][T13067] loop8: detected capacity change from 0 to 2048
[  161.885557][T13067] EXT4-fs (loop8): shut down requested (1)
[  161.925628][T13075] pim6reg1: entered promiscuous mode
[  161.931135][T13075] pim6reg1: entered allmulticast mode
[  161.938050][T13073] loop6: detected capacity change from 0 to 8192
[  162.016621][T13078] loop6: detected capacity change from 0 to 512
[  162.016733][T13080] loop8: detected capacity change from 0 to 1024
[  162.030114][T13080] EXT4-fs: Ignoring removed bh option
[  162.034194][T13078] EXT4-fs: Ignoring removed nobh option
[  162.035749][T13080] EXT4-fs: inline encryption not supported
[  162.049199][T13080] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  162.060620][T13080] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  162.072646][T13078] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #3: comm syz.6.3821: corrupted inode contents
[  162.085681][T13078] EXT4-fs error (device loop6): ext4_dirty_inode:6538: inode #3: comm syz.6.3821: mark_inode_dirty error
[  162.097474][T13080] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 2: comm syz.8.3822: lblock 2 mapped to illegal pblock 2 (length 1)
[  162.112525][T13080] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 48: comm syz.8.3822: lblock 0 mapped to illegal pblock 48 (length 1)
[  162.125175][T13078] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #3: comm syz.6.3821: corrupted inode contents
[  162.127502][T13080] EXT4-fs error (device loop8): ext4_acquire_dquot:6937: comm syz.8.3822: Failed to acquire dquot type 0
[  162.145147][T13078] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #3: comm syz.6.3821: mark_inode_dirty error
[  162.162289][T13078] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm syz.6.3821: Failed to acquire dquot type 0
[  162.162690][T13080] EXT4-fs error (device loop8) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  162.176112][T13078] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.3821: corrupted inode contents
[  162.183565][T13080] EXT4-fs error (device loop8): ext4_evict_inode:254: inode #11: comm syz.8.3822: mark_inode_dirty error
[  162.197180][T13078] EXT4-fs error (device loop6): ext4_dirty_inode:6538: inode #16: comm syz.6.3821: mark_inode_dirty error
[  162.206910][T13080] EXT4-fs warning (device loop8): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  162.219249][T13078] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.3821: corrupted inode contents
[  162.228489][T13080] EXT4-fs (loop8): 1 orphan inode deleted
[  162.241500][T13078] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #16: comm syz.6.3821: mark_inode_dirty error
[  162.257765][T13078] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.3821: corrupted inode contents
[  162.258580][ T4950] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:66: lblock 1 mapped to illegal pblock 1 (length 1)
[  162.285249][ T4950] EXT4-fs error (device loop8): ext4_release_dquot:6973: comm kworker/u8:66: Failed to release dquot type 0
[  162.289902][T13078] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  162.305834][T13078] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.3821: corrupted inode contents
[  162.318650][T13078] EXT4-fs error (device loop6): ext4_truncate:4666: inode #16: comm syz.6.3821: mark_inode_dirty error
[  162.332229][T13078] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  162.341607][T13078] EXT4-fs (loop6): 1 truncate cleaned up
[  162.347832][T13080] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 48: comm syz.8.3822: lblock 0 mapped to illegal pblock 48 (length 1)
[  162.455472][T13105] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3820'.
[  162.464940][T13102] loop7: detected capacity change from 0 to 2048
[  162.485277][T13110] ipip0: entered promiscuous mode
[  162.585399][T13122] openvswitch: netlink: Message has 6 unknown bytes.
[  162.604401][T10644] usb usb12-port1: unable to enumerate USB device
[  162.941356][T13132] SELinux: security_context_str_to_sid (ÿÿ) failed with errno=-22
[  162.944345][   T29] kauditd_printk_skb: 501 callbacks suppressed
[  162.944366][   T29] audit: type=1400 audit(162.900:9845): avc:  denied  { mounton } for  pid=13131 comm="syz.5.3833" path="/syzcgroup/cpu/syz5/cgroup.procs" dev="cgroup" ino=347 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[  163.299707][   T29] audit: type=1400 audit(163.260:9846): avc:  denied  { bind } for  pid=13139 comm="syz.8.3838" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  163.319712][   T29] audit: type=1400 audit(163.260:9847): avc:  denied  { map } for  pid=13139 comm="syz.8.3838" path="socket:[39830]" dev="sockfs" ino=39830 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  163.342836][   T29] audit: type=1400 audit(163.260:9848): avc:  denied  { read accept } for  pid=13139 comm="syz.8.3838" path="socket:[39830]" dev="sockfs" ino=39830 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  163.461918][T13151] loop6: detected capacity change from 0 to 1764
[  163.564713][T13156] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=13156 comm=syz.7.3844
[  163.577659][T13156] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=13156 comm=syz.7.3844
[  163.591233][   T29] audit: type=1400 audit(163.550:9849): avc:  denied  { audit_write } for  pid=13155 comm="syz.7.3844" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  163.708615][T13162] loop7: detected capacity change from 0 to 512
[  163.747380][T13167] serio: Serial port ptm0
[  164.160418][T13172] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3850'.
[  164.206900][   T29] audit: type=1400 audit(164.170:9850): avc:  denied  { override_creds } for  pid=13175 comm="syz.5.3852" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  164.766591][   T29] audit: type=1400 audit(164.730:9851): avc:  denied  { write } for  pid=13209 comm="syz.8.3866" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  164.810742][T13212] can0: slcan on ttyS3.
[  164.829863][   T29] audit: type=1326 audit(164.790:9852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13211 comm="syz.8.3867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28607ebe9 code=0x7ffc0000
[  164.852941][   T29] audit: type=1326 audit(164.790:9853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13211 comm="syz.8.3867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28607ebe9 code=0x7ffc0000
[  164.877646][   T29] audit: type=1326 audit(164.790:9854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13211 comm="syz.8.3867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff28607ebe9 code=0x7ffc0000
[  164.943343][T13222] wg2: left promiscuous mode
[  164.948169][T13222] wg2: left allmulticast mode
[  164.958832][T13222] wg2: entered promiscuous mode
[  164.963940][T13222] wg2: entered allmulticast mode
[  164.969275][T13211] can0 (unregistered): slcan off ttyS3.
[  165.083700][T13241] loop8: detected capacity change from 0 to 128
[  165.092751][T13241] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100)
[  165.100651][T13241] FAT-fs (loop8): Filesystem has been set read-only
[  165.107645][T13241] syz.8.3881: attempt to access beyond end of device
[  165.107645][T13241] loop8: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  165.122172][T13241] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100)
[  165.130135][T13241] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100)
[  165.141558][T13241] syz.8.3881: attempt to access beyond end of device
[  165.141558][T13241] loop8: rw=0, sector=2065, nr_sectors = 8 limit=128
[  165.157410][T13241] syz.8.3881: attempt to access beyond end of device
[  165.157410][T13241] loop8: rw=0, sector=2065, nr_sectors = 8 limit=128
[  165.315210][T13261] loop6: detected capacity change from 0 to 164
[  165.336258][T13261] rock: directory entry would overflow storage
[  165.342550][T13261] rock: sig=0x66, size=4, remaining=3
[  165.353103][T13265] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3900'.
[  165.414493][T13269] loop5: detected capacity change from 0 to 1024
[  165.432990][T13269] EXT4-fs: Ignoring removed bh option
[  165.439992][T13269] EXT4-fs: inline encryption not supported
[  165.457230][T13269] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  165.484531][T13269] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  165.493606][T13269] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 2: comm syz.5.3891: lblock 2 mapped to illegal pblock 2 (length 1)
[  165.507888][T13269] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 48: comm syz.5.3891: lblock 0 mapped to illegal pblock 48 (length 1)
[  165.523820][T13269] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.3891: Failed to acquire dquot type 0
[  165.559793][T13269] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  165.571982][T13269] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.3891: mark_inode_dirty error
[  165.589735][T13269] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  165.608669][T13269] EXT4-fs (loop5): 1 orphan inode deleted
[  165.615021][T13269] EXT4-fs mount: 18 callbacks suppressed
[  165.615040][T13269] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.633385][ T4910] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:28: lblock 1 mapped to illegal pblock 1 (length 1)
[  165.705034][ T4910] EXT4-fs error (device loop5): ext4_release_dquot:6973: comm kworker/u8:28: Failed to release dquot type 0
[  165.719373][T13269] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 48: comm syz.5.3891: lblock 0 mapped to illegal pblock 48 (length 1)
[  165.770767][T13289] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3899'.
[  165.780479][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.800046][T13289] ip6gre2: entered allmulticast mode
[  165.866382][T13295] netlink: 'syz.8.3904': attribute type 2 has an invalid length.
[  165.874270][T13295] netlink: 'syz.8.3904': attribute type 1 has an invalid length.
[  165.882022][T13295] netlink: 199820 bytes leftover after parsing attributes in process `syz.8.3904'.
[  165.978964][T13306] loop8: detected capacity change from 0 to 512
[  165.995832][T13306] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  166.019425][T13306] EXT4-fs (loop8): 1 truncate cleaned up
[  166.032322][T13306] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.133433][T13313] loop6: detected capacity change from 0 to 8192
[  166.146544][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.311323][T13322] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3912'.
[  166.605239][T13336] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3918'.
[  166.756802][T13350] loop5: detected capacity change from 0 to 512
[  166.766310][T13350] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  166.777919][T13350] EXT4-fs (loop5): 1 truncate cleaned up
[  166.784522][T13350] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.845490][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.944716][T13371] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3935'.
[  166.969193][T13371] team1: entered promiscuous mode
[  166.974393][T13371] team1: entered allmulticast mode
[  167.034859][T13381] loop6: detected capacity change from 0 to 512
[  167.042055][T13381] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  167.051668][T13381] EXT4-fs (loop6): 1 truncate cleaned up
[  167.058017][T13381] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.107527][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.265276][T13404] loop7: detected capacity change from 0 to 8192
[  167.305754][T13406] loop8: detected capacity change from 0 to 2048
[  167.369823][T13406]  loop8: p1 < > p4 < >
[  167.502272][T13422] sch_fq: defrate 4294967295 ignored.
[  167.890681][T13444] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3965'.
[  167.905048][T13444] team1: entered promiscuous mode
[  167.910147][T13444] team1: entered allmulticast mode
[  167.955419][   T29] kauditd_printk_skb: 259 callbacks suppressed
[  167.955438][   T29] audit: type=1326 audit(167.910:10110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13447 comm="syz.1.3967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  167.984916][   T29] audit: type=1326 audit(167.910:10111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13447 comm="syz.1.3967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  168.008116][   T29] audit: type=1326 audit(167.910:10112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13447 comm="syz.1.3967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d2860ebe9 code=0x7ffc0000
[  168.137591][T13457] netlink: 'syz.7.3970': attribute type 1 has an invalid length.
[  168.151249][T13457] bond1: entered promiscuous mode
[  168.157329][T13457] 8021q: adding VLAN 0 to HW filter on device bond1
[  168.171511][T13457] netlink: 3 bytes leftover after parsing attributes in process `syz.7.3970'.
[  168.183436][T13457] batadv1: entered promiscuous mode
[  168.188768][T13457] batadv1: entered allmulticast mode
[  168.195346][T13457] 8021q: adding VLAN 0 to HW filter on device batadv1
[  168.204042][T13457] bond1: (slave batadv1): making interface the new active one
[  168.212375][T13457] bond1: (slave batadv1): Enslaving as an active interface with an up link
[  168.222491][T13461] netlink: 3 bytes leftover after parsing attributes in process `syz.7.3970'.
[  168.234738][T13461] batadv2: entered promiscuous mode
[  168.239999][T13461] batadv2: entered allmulticast mode
[  168.246195][T13461] 8021q: adding VLAN 0 to HW filter on device batadv2
[  168.254659][T13461] bond1: (slave batadv2): Enslaving as an active interface with an up link
[  168.379578][T13472] pim6reg1: entered promiscuous mode
[  168.435406][T13478] loop8: detected capacity change from 0 to 1024
[  168.443490][   T29] audit: type=1326 audit(168.400:10113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13479 comm="syz.7.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  168.447768][T13480] loop7: detected capacity change from 0 to 512
[  168.466645][   T29] audit: type=1326 audit(168.400:10114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13479 comm="syz.7.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  168.466702][   T29] audit: type=1326 audit(168.400:10115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13479 comm="syz.7.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  168.466730][   T29] audit: type=1326 audit(168.400:10116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13479 comm="syz.7.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  168.466772][   T29] audit: type=1326 audit(168.400:10117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13479 comm="syz.7.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  168.497209][T13478] EXT4-fs: Ignoring removed oldalloc option
[  168.519296][   T29] audit: type=1326 audit(168.400:10118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13479 comm="syz.7.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  168.544563][T13478] EXT4-fs (loop8): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  168.565591][   T29] audit: type=1326 audit(168.400:10119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13479 comm="syz.7.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f9e79ebe9 code=0x7ffc0000
[  168.629385][T13480] EXT4-fs (loop7): too many log groups per flexible block group
[  168.637536][T13480] EXT4-fs (loop7): failed to initialize mballoc (-12)
[  168.645068][T13480] EXT4-fs (loop7): mount failed
[  168.651593][T13478] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.688834][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.761716][T13500] loop8: detected capacity change from 0 to 512
[  168.772051][T13500] EXT4-fs (loop8): external journal device major/minor numbers have changed
[  168.816948][T13500] EXT4-fs (loop8): failed to open journal device unknown-block(11,131) -6
[  168.981760][T13513] loop5: detected capacity change from 0 to 128
[  169.060309][T13518] syz.5.3991: attempt to access beyond end of device
[  169.060309][T13518] loop5: rw=2049, sector=145, nr_sectors = 8 limit=128
[  169.081314][T13518] syz.5.3991: attempt to access beyond end of device
[  169.081314][T13518] loop5: rw=2049, sector=161, nr_sectors = 8 limit=128
[  169.095879][T13518] syz.5.3991: attempt to access beyond end of device
[  169.095879][T13518] loop5: rw=2049, sector=177, nr_sectors = 24 limit=128
[  169.110896][T13518] syz.5.3991: attempt to access beyond end of device
[  169.110896][T13518] loop5: rw=2049, sector=209, nr_sectors = 8 limit=128
[  169.135981][T13518] syz.5.3991: attempt to access beyond end of device
[  169.135981][T13518] loop5: rw=2049, sector=225, nr_sectors = 8 limit=128
[  169.151790][T13518] syz.5.3991: attempt to access beyond end of device
[  169.151790][T13518] loop5: rw=2049, sector=241, nr_sectors = 8 limit=128
[  169.167640][T13518] syz.5.3991: attempt to access beyond end of device
[  169.167640][T13518] loop5: rw=2049, sector=257, nr_sectors = 8 limit=128
[  169.181341][T13518] syz.5.3991: attempt to access beyond end of device
[  169.181341][T13518] loop5: rw=2049, sector=273, nr_sectors = 8 limit=128
[  169.195244][T13518] syz.5.3991: attempt to access beyond end of device
[  169.195244][T13518] loop5: rw=2049, sector=289, nr_sectors = 9 limit=128
[  169.382103][T13541] loop8: detected capacity change from 0 to 512
[  169.400119][T13541] EXT4-fs: Ignoring removed oldalloc option
[  169.410703][T13541] EXT4-fs (loop8): 1 truncate cleaned up
[  169.418140][T13541] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.475256][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.858501][T13587] loop5: detected capacity change from 0 to 2048
[  169.894725][T13587]  loop5: p1 < > p4 < >
[  170.085240][T13612] loop5: detected capacity change from 0 to 512
[  170.092279][T13612] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  170.104170][T13612] EXT4-fs (loop5): 1 truncate cleaned up
[  170.110314][T13612] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.206930][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.302876][T13623] batman_adv: batadv0: Removing interface: batadv_slave_0
[  170.312161][T13623] batman_adv: batadv0: Removing interface: batadv_slave_1
[  170.321055][T13623] $Hÿ: (slave batadv0): Releasing backup interface
[  170.334302][T13623] batadv0 (unregistering): left promiscuous mode
[  170.411168][T13629] __nla_validate_parse: 1 callbacks suppressed
[  170.411183][T13629] netlink: 2036 bytes leftover after parsing attributes in process `syz.5.4037'.
[  170.426695][T13629] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4037'.
[  170.455200][T13631] netlink: 'syz.1.4038': attribute type 10 has an invalid length.
[  170.468223][T13631] $Hÿ: (slave dummy0): Releasing backup interface
[  170.476332][T13631] dummy0: left promiscuous mode
[  170.675411][T13646] SELinux: failed to load policy
[  170.705935][T13652] loop6: detected capacity change from 0 to 512
[  170.713244][T13652] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  170.724529][T13652] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[  170.732672][T13652] System zones: 1-12
[  170.737010][T13652] EXT4-fs (loop6): orphan cleanup on readonly fs
[  170.743982][T13652] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.4049: bg 0: block 361: padding at end of block bitmap is not set
[  170.758674][T13652] EXT4-fs (loop6): Remounting filesystem read-only
[  170.765396][T13652] EXT4-fs (loop6): 1 truncate cleaned up
[  170.771465][T13652] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  170.855821][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  171.051323][T13669] netlink: 248 bytes leftover after parsing attributes in process `syz.7.4055'.
[  171.116570][T13678] netlink: 'syz.6.4058': attribute type 1 has an invalid length.
[  171.130198][T13678] bond0: entered promiscuous mode
[  171.135709][T13678] 8021q: adding VLAN 0 to HW filter on device bond0
[  171.148395][T13678] netlink: 3 bytes leftover after parsing attributes in process `syz.6.4058'.
[  171.160799][T13678] batadv1: entered promiscuous mode
[  171.166264][T13678] batadv1: entered allmulticast mode
[  171.172667][T13678] 8021q: adding VLAN 0 to HW filter on device batadv1
[  171.182982][T13678] bond0: (slave batadv1): making interface the new active one
[  171.191329][T13678] bond0: (slave batadv1): Enslaving as an active interface with an up link
[  171.201108][T13682] netlink: 3 bytes leftover after parsing attributes in process `syz.6.4058'.
[  171.214073][T13682] batadv2: entered promiscuous mode
[  171.219336][T13682] batadv2: entered allmulticast mode
[  171.225227][T13682] 8021q: adding VLAN 0 to HW filter on device batadv2
[  171.234802][T13682] bond0: (slave batadv2): Enslaving as an active interface with an up link
[  171.412062][T13699] veth0_to_team: entered promiscuous mode
[  171.454456][T13705] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4060'.
[  171.561786][T13715] veth0_vlan: entered allmulticast mode
[  171.581804][T13715] ÿÿÿÿÿÿ: renamed from vlan1
[  171.606359][T13721] netlink: 'syz.8.4074': attribute type 1 has an invalid length.
[  171.620392][T13721] bond2: entered promiscuous mode
[  171.625748][T13721] 8021q: adding VLAN 0 to HW filter on device bond2
[  171.640905][T13721] netlink: 3 bytes leftover after parsing attributes in process `syz.8.4074'.
[  171.653211][T13721] batadv0: entered promiscuous mode
[  171.658596][T13721] batadv0: entered allmulticast mode
[  171.665331][T13721] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.673756][T13721] bond2: (slave batadv0): making interface the new active one
[  171.682089][T13721] bond2: (slave batadv0): Enslaving as an active interface with an up link
[  171.692281][T13723] netlink: 3 bytes leftover after parsing attributes in process `syz.8.4074'.
[  171.706413][T13723] batadv1: entered promiscuous mode
[  171.711929][T13723] batadv1: entered allmulticast mode
[  171.720662][T13723] 8021q: adding VLAN 0 to HW filter on device batadv1
[  171.727736][T13725] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(4)
[  171.734335][T13725] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  171.742312][T13725] vhci_hcd vhci_hcd.0: Device attached
[  171.748142][T13723] bond2: (slave batadv1): Enslaving as an active interface with an up link
[  171.837616][T13745] loop5: detected capacity change from 0 to 512
[  171.858054][T13745] EXT4-fs (loop5): external journal device major/minor numbers have changed
[  171.903515][T13745] EXT4-fs (loop5): failed to open journal device unknown-block(11,131) -6
[  172.013861][ T3427] usb 16-1: SetAddress Request (2) to port 0
[  172.021165][ T3427] usb 16-1: new SuperSpeed USB device number 2 using vhci_hcd
[  172.426650][T13846] loop6: detected capacity change from 0 to 128
[  172.436602][T13846] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  172.448805][T13846] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  172.472327][T13850] bond0: entered promiscuous mode
[  172.477569][T13850] bond0: entered allmulticast mode
[  172.483067][ T4910] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  172.483222][T13850] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.501942][T13850] bond0 (unregistering): Released all slaves
[  172.620763][T13873] loop6: detected capacity change from 0 to 512
[  172.639774][T13873] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.673438][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.869815][T13923] loop8: detected capacity change from 0 to 256
[  172.976953][   T29] kauditd_printk_skb: 194 callbacks suppressed
[  172.976969][   T29] audit: type=1400 audit(172.940:10314): avc:  denied  { mount } for  pid=13937 comm="syz.8.4124" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  173.046175][   T29] audit: type=1400 audit(173.010:10315): avc:  denied  { unmount } for  pid=8836 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  173.176606][   T29] audit: type=1400 audit(173.140:10316): avc:  denied  { mounton } for  pid=13964 comm="syz.8.4127" path="/441/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1
[  173.296965][T13726] vhci_hcd: connection reset by peer
[  173.306549][ T4927] vhci_hcd: stop threads
[  173.310862][ T4927] vhci_hcd: release socket
[  173.315347][ T4927] vhci_hcd: disconnect device
[  173.331225][   T29] audit: type=1400 audit(173.290:10317): avc:  denied  { mount } for  pid=13982 comm="syz.5.4130" name="/" dev="configfs" ino=793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  173.383723][   T29] audit: type=1400 audit(173.340:10318): avc:  denied  { search } for  pid=13982 comm="syz.5.4130" name="/" dev="configfs" ino=793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  173.405585][   T29] audit: type=1400 audit(173.340:10319): avc:  denied  { search } for  pid=13982 comm="syz.5.4130" name="/" dev="configfs" ino=793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  173.427590][   T29] audit: type=1400 audit(173.340:10320): avc:  denied  { read open } for  pid=13982 comm="syz.5.4130" path="/" dev="configfs" ino=793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  173.678617][T13998] loop5: detected capacity change from 0 to 1024
[  173.685729][T13998] EXT4-fs: Ignoring removed bh option
[  173.699899][T13998] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  173.717845][T14002] netlink: 256 bytes leftover after parsing attributes in process `syz.8.4137'.
[  173.755548][ T4492] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  173.853855][T14011] loop8: detected capacity change from 0 to 1024
[  173.876429][T14011] EXT4-fs: Ignoring removed orlov option
[  173.919626][T14011] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.940265][T14020] loop7: detected capacity change from 0 to 512
[  173.998739][T14020] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.038848][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.056427][T14029] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4147'.
[  174.078134][T14028] loop5: detected capacity change from 0 to 512
[  174.096045][T14028] EXT4-fs: Ignoring removed orlov option
[  174.122767][   T29] audit: type=1326 audit(174.080:10321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14035 comm="syz.6.4150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  174.145847][   T29] audit: type=1326 audit(174.080:10322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14035 comm="syz.6.4150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  174.170980][T14028] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  174.193922][T14028] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  174.219969][T14028] EXT4-fs (loop5): 1 orphan inode deleted
[  174.231237][T14028] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.263084][   T29] audit: type=1326 audit(174.140:10323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14035 comm="syz.6.4150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fecc144ebe9 code=0x7ffc0000
[  174.286460][T14039] loop7: detected capacity change from 0 to 8192
[  174.297055][T14028] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.491217][ T8836] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.682759][T14084] hugetlbfs: syz.5.4172 (14084): Using mlock ulimits for SHM_HUGETLB is obsolete
[  174.707932][T14087] loop6: detected capacity change from 0 to 512
[  174.722949][T14091] vlan3: entered allmulticast mode
[  174.728459][T14091] dummy0: entered allmulticast mode
[  174.751156][T14087] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.940893][ T5793] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.008371][T14115] wg2: entered promiscuous mode
[  175.013307][T14115] wg2: entered allmulticast mode
[  175.860316][T14170] __nla_validate_parse: 4 callbacks suppressed
[  175.860338][T14170] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4205'.
[  175.879833][T14173] netlink: 20 bytes leftover after parsing attributes in process `syz.8.4207'.
[  175.906784][T14175] veth0_vlan: entered allmulticast mode
[  175.931474][T14178] loop7: detected capacity change from 0 to 512
[  175.939313][T14178] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  175.950165][T14175] ªªªªªª: renamed from vlan0
[  175.957200][T14178] EXT4-fs (loop7): 1 truncate cleaned up
[  175.973484][T14178] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.999615][T14188] loop5: detected capacity change from 0 to 128
[  176.009364][T14178] ./file0: Can't lookup blockdev
[  176.019249][T14188] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  176.031077][T14188] System zones: 1-3, 19-19, 35-36
[  176.044275][T14188] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  176.061690][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.085449][ T4492] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  176.241290][T14216] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4221'.
[  176.250657][T14216] netem: change failed
[  176.277946][T14200] netlink: 96 bytes leftover after parsing attributes in process `syz.7.4216'.
[  176.519330][T14257] loop7: detected capacity change from 0 to 1024
[  176.538115][T14257] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.593393][ T4906] EXT4-fs error (device loop7): ext4_map_blocks:814: inode #15: block 1: comm kworker/u8:24: lblock 1 mapped to illegal pblock 1 (length 15)
[  176.610287][ T4906] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  176.622965][ T4906] EXT4-fs (loop7): This should not happen!! Data will be lost
[  176.622965][ T4906] 
[  176.634957][ T4906] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  176.650330][ T4906] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 28
[  176.663017][ T4906] EXT4-fs (loop7): This should not happen!! Data will be lost
[  176.663017][ T4906] 
[  176.672817][ T4906] EXT4-fs (loop7): Total free blocks count 0
[  176.679070][ T4906] EXT4-fs (loop7): Free/Dirty block details
[  176.685132][ T4906] EXT4-fs (loop7): free_blocks=4293918720
[  176.690870][ T4906] EXT4-fs (loop7): dirty_blocks=16
[  176.696731][ T4906] EXT4-fs (loop7): Block reservation details
[  176.708501][T14277] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.756695][T14277] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.817166][T14277] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.885726][T14277] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.946878][ T4906] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  176.965763][ T4906] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  176.984122][ T4906] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  177.093871][ T3427] usb 16-1: device descriptor read/8, error -110
[  177.140076][T14324] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(4)
[  177.146772][T14324] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  177.154742][T14324] vhci_hcd vhci_hcd.0: Device attached
[  177.190467][T14333] vlan1: entered allmulticast mode
[  177.205876][ T3427] usb 16-1: new SuperSpeed USB device number 2 using vhci_hcd
[  177.213598][T14333] dummy0: entered allmulticast mode
[  177.230931][ T3427] usb 16-1: enqueue for inactive port 0
[  177.246536][ T3427] usb 16-1: enqueue for inactive port 0
[  177.257178][ T3427] usb 16-1: enqueue for inactive port 0
[  177.423856][T10638] usb 14-1: SetAddress Request (2) to port 0
[  177.437542][T10638] usb 14-1: new SuperSpeed USB device number 2 using vhci_hcd
[  178.274218][ T3427] usb usb16-port1: attempt power cycle
[  178.446586][T14325] vhci_hcd: connection reset by peer
[  178.453855][ T4906] vhci_hcd: stop threads
[  178.458195][ T4906] vhci_hcd: release socket
[  178.462817][ T4906] vhci_hcd: disconnect device
[  178.555411][T14279] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.635322][T14279] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.686007][T14279] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.701167][T14489] netlink: 92 bytes leftover after parsing attributes in process `syz.7.4265'.
[  178.769445][T14499] syzkaller0: entered allmulticast mode
[  178.776488][T14499] syzkaller0: entered promiscuous mode
[  178.782177][   T29] kauditd_printk_skb: 78 callbacks suppressed
[  178.782195][   T29] audit: type=1400 audit(178.740:10402): avc:  denied  { listen } for  pid=14502 comm="syz.1.4268" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  178.808119][   T29] audit: type=1400 audit(178.740:10403): avc:  denied  { accept } for  pid=14502 comm="syz.1.4268" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  178.829933][T14499] syzkaller0 (unregistering): left allmulticast mode
[  178.836747][T14499] syzkaller0 (unregistering): left promiscuous mode
[  178.857266][   T29] audit: type=1326 audit(178.820:10404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14504 comm="syz.5.4269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  178.881268][   T29] audit: type=1326 audit(178.820:10405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14504 comm="syz.5.4269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  178.905153][   T29] audit: type=1326 audit(178.820:10406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14504 comm="syz.5.4269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  178.928197][   T29] audit: type=1326 audit(178.820:10407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14504 comm="syz.5.4269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  178.951379][   T29] audit: type=1326 audit(178.820:10408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14504 comm="syz.5.4269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  178.974591][   T29] audit: type=1326 audit(178.820:10409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14504 comm="syz.5.4269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  178.997977][   T29] audit: type=1326 audit(178.820:10410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14504 comm="syz.5.4269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  179.021139][   T29] audit: type=1326 audit(178.820:10411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14504 comm="syz.5.4269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87b417ebe9 code=0x7ffc0000
[  179.064538][T14509] netlink: 80 bytes leftover after parsing attributes in process `syz.6.4270'.
[  179.235967][T14538] sch_fq: defrate 0 ignored.
[  179.813551][T14627] loop7: detected capacity change from 0 to 1024
[  179.840573][T14627] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.876329][T14627] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4183: comm syz.7.4301: Allocating blocks 449-513 which overlap fs metadata
[  179.901066][T14625] EXT4-fs (loop7): pa ffff88810570f5b0: logic 48, phys. 177, len 21
[  179.909214][T14625] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  179.935600][ T7832] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.184183][ T3427] usb usb16-port1: unable to enumerate USB device
[  180.565828][T14732] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.583747][T14732] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  180.603462][T14738] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4309'.
[  180.613318][T14738] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4309'.
[  180.647190][T14744] netlink: 5 bytes leftover after parsing attributes in process `syz.1.4311'.
[  180.656555][T14744] 0ªî{X¹¦: renamed from gretap0
[  180.663504][T14744] 0ªî{X¹¦: entered allmulticast mode
[  180.669645][T14744] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  181.176303][T14765] ==================================================================
[  181.184440][T14765] BUG: KCSAN: data-race in atime_needs_update / inode_update_timestamps
[  181.192834][T14765] 
[  181.195176][T14765] write to 0xffff88811c8ac6c4 of 4 bytes by task 14769 on cpu 1:
[  181.202921][T14765]  inode_update_timestamps+0x147/0x270
[  181.208513][T14765]  file_update_time+0x20e/0x2b0
[  181.213572][T14765]  shmem_file_write_iter+0x9c/0xf0
[  181.218723][T14765]  iter_file_splice_write+0x663/0xa60
[  181.224381][T14765]  direct_splice_actor+0x153/0x2a0
[  181.229525][T14765]  splice_direct_to_actor+0x30f/0x680
[  181.234923][T14765]  do_splice_direct+0xda/0x150
[  181.239720][T14765]  do_sendfile+0x380/0x650
[  181.244676][T14765]  __x64_sys_sendfile64+0x105/0x150
[  181.249910][T14765]  x64_sys_call+0x2bb0/0x2ff0
[  181.254707][T14765]  do_syscall_64+0xd2/0x200
[  181.259259][T14765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.265176][T14765] 
[  181.267520][T14765] read to 0xffff88811c8ac6c4 of 4 bytes by task 14765 on cpu 0:
[  181.275158][T14765]  atime_needs_update+0x2a8/0x3e0
[  181.280223][T14765]  touch_atime+0x4a/0x340
[  181.284588][T14765]  shmem_file_read_iter+0x477/0x540
[  181.289818][T14765]  copy_splice_read+0x442/0x660
[  181.294702][T14765]  splice_direct_to_actor+0x290/0x680
[  181.300100][T14765]  do_splice_direct+0xda/0x150
[  181.304899][T14765]  do_sendfile+0x380/0x650
[  181.309525][T14765]  __x64_sys_sendfile64+0x105/0x150
[  181.314758][T14765]  x64_sys_call+0x2bb0/0x2ff0
[  181.319470][T14765]  do_syscall_64+0xd2/0x200
[  181.323993][T14765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.329928][T14765] 
[  181.332261][T14765] value changed: 0x07c68084 -> 0x085f1704
[  181.337986][T14765] 
[  181.340355][T14765] Reported by Kernel Concurrency Sanitizer on:
[  181.346517][T14765] CPU: 0 UID: 0 PID: 14765 Comm: syz.1.4319 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  181.356354][T14765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  181.366533][T14765] ==================================================================
[  181.484458][ T4927] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  181.503039][ T4927] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  181.519764][ T4927] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  181.536449][ T4937] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  182.533872][T10638] usb 14-1: device descriptor read/8, error -110
[  182.643854][T10638] usb 14-1: new SuperSpeed USB device number 2 using vhci_hcd
[  182.663856][T10638] usb 14-1: enqueue for inactive port 0
[  182.669469][T10638] usb 14-1: enqueue for inactive port 0
[  182.675078][T10638] usb 14-1: enqueue for inactive port 0
[  183.704097][T10638] usb usb14-port1: attempt power cycle
[  185.554120][T10638] usb usb14-port1: unable to enumerate USB device