last executing test programs:

2m50.984234629s ago: executing program 32 (id=470):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000000080)={0x0, 0x3000002, 0x10, 0x1b, 0x100, &(0x7f00000000c0)="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"})

2m28.471381422s ago: executing program 33 (id=1587):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f00000002c0)={@val={0x0, 0x6005}, @void, @eth={@multicast, @random="156345c73cf4", @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x26, 0x14, 0x68, 0x0, 0x7, 0x2f, 0x0, @private=0xa010101, @multicast1}}}}}}, 0x2a)

2m6.950570288s ago: executing program 34 (id=2433):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x200, 0x8204, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x1, @perf_config_ext={0x0, 0x8}, 0x0, 0x10000, 0x0, 0x9, 0x28, 0x20009, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/vmstat\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x49d, &(0x7f0000000080)={0x0, 0x79ae, 0x400, 0x7ffd, 0x32c}, &(0x7f0000000680)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x2007, @fd=r0, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r1, 0xfd0, 0x4c1, 0x43, 0x0, 0x0)

2m2.835754833s ago: executing program 35 (id=2586):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r0}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0xf}, 0x18)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_IOC_FAIL(r2, 0x4c80, 0xffffffffffffffb6)

1m53.803774081s ago: executing program 36 (id=2928):
r0 = epoll_create1(0x80000)
r1 = socket$unix(0x1, 0x1, 0x0)
close(r1)
socket$kcm(0x1e, 0x5, 0x0)
setsockopt$sock_int(r1, 0x1, 0x2e, &(0x7f0000000040)=0x81, 0x4)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0xa0028000})

1m29.770762074s ago: executing program 37 (id=3728):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbff, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x70bd26, 0x0, {0x2, 0x0, 0x80, 0x0, 0xff, 0x0, 0x0, 0x7, 0x2900}}, 0x1c}, 0x1, 0x0, 0x0, 0x4004}, 0x8c0)

1m29.669525804s ago: executing program 38 (id=3731):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x880, &(0x7f00000001c0)=ANY=[@ANYBLOB='shortname=lower,iocharset=iso8859-1,fmask=00000000000000000000066,uni_xlate=1,uni_xlate=0,fmask=00000000000000000000003,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=0,utf8=1,check=strict,nonumtail=0,rodir,errors=continue,shortname=lower,umaQk=00000000000000000000007,rodir,sys_immutable,\x00'], 0x4, 0x2dc, &(0x7f0000000bc0)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000180)=0xffff7b6e, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f00000001c0)=0x7, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000000200)=""/25, &(0x7f0000000280)=0x19)

1m29.623985958s ago: executing program 39 (id=3732):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x4}}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x20}}, 0x10, 0x0}, 0x0)

1m27.691258468s ago: executing program 40 (id=3735):
r0 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000002a5, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1m23.948214557s ago: executing program 5 (id=3755):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10)

1m23.920805489s ago: executing program 5 (id=3756):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f0000000080), 0x4)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)

1m23.902107141s ago: executing program 5 (id=3757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000000)={0x2a, 0x0, 0x2}, 0xc)
bind$qrtr(r2, &(0x7f00000000c0)={0x2a, 0x1}, 0xc)

1m23.880446953s ago: executing program 5 (id=3758):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='htcp', 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x12)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

1m23.787953872s ago: executing program 3 (id=3762):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x4, 0x8, 0xb, 0x2}, 0x50)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0xc, 0x80000000, 0x1, 0xffffffffffffffff, 0xfffffffc}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xd, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)

1m23.70031249s ago: executing program 3 (id=3766):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = socket$inet_sctp(0x2, 0x800000000000001, 0x84)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'hsr0\x00', 0x4}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r2, 0x0, 0x48c, &(0x7f00000003c0)={0x1, 'batadv_slave_0\x00', 0x2}, 0x18)

1m23.60312454s ago: executing program 3 (id=3771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000040)="fb", 0x1}], 0x1}, 0x40000)
recvmsg(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x40fd)

1m23.547349435s ago: executing program 3 (id=3774):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = eventfd2(0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc094, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x10000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
readv(r1, &(0x7f0000000500)=[{&(0x7f0000000000)=""/92, 0x5c}], 0x1)

1m23.426703007s ago: executing program 1 (id=3777):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000400)={0x2000200d})
waitid(0x0, 0x0, 0x0, 0xe, 0x0)
setpgid(r0, r0)

1m23.220284898s ago: executing program 1 (id=3781):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x4, 0x0, 0x0, 0x41000}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x8}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18)
syz_io_uring_setup(0x893, &(0x7f0000000140)={0x0, 0xaee4, 0x100, 0x1, 0x220}, &(0x7f0000000000), &(0x7f0000000340))

1m23.192063851s ago: executing program 1 (id=3782):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x2, 0xc}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000007290000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000f0400000000005f"], 0x0, 0x28}, 0x20)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x4, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, r2, 0x0, 0x1}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xc, 0x4, 0x4, 0x7, 0x0, r3, 0x3, '\x00', 0x0, r2, 0x3, 0x80}, 0x50)

1m23.174184502s ago: executing program 1 (id=3783):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @broadcast})
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000003c0)={0x0, {0x2, 0x4e20, @private=0xa010100}, {0x2, 0x4a24, @multicast1}, {0x2, 0x4e25, @rand_addr=0x64010102}, 0x1c4, 0x0, 0x0, 0x0, 0x2008, 0x0, 0x200003, 0x0, 0xb4})
write$tun(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc)

1m22.953865174s ago: executing program 5 (id=3786):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1809000000000000000000000001000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r1}, &(0x7f0000000540), &(0x7f0000000580)=r2}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r1, &(0x7f0000000780)}, 0x20)

1m22.291487819s ago: executing program 3 (id=3787):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='kfree\x00', r1, 0x0, 0x8}, 0x18)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, &(0x7f00000a2000)={0x1, &(0x7f0000f07000)=[{0x6}]}, 0x10)

1m22.290888089s ago: executing program 1 (id=3788):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
lsetxattr$security_selinux(&(0x7f0000000900)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000940), &(0x7f0000000980)='system_u:object_r:hugetlbfs_t:s0\x00', 0x21, 0x3)

1m22.200282838s ago: executing program 1 (id=3790):
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x208a022, 0x0, 0x2, 0x0, &(0x7f0000000080))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000a40)='./file0/../file0\x00', 0x0, 0x3cdc19, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000000c0), 0x401, 0x0)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x0)

1m22.200129818s ago: executing program 41 (id=3790):
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x208a022, 0x0, 0x2, 0x0, &(0x7f0000000080))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000a40)='./file0/../file0\x00', 0x0, 0x3cdc19, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000000c0), 0x401, 0x0)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x0)

1m21.107821475s ago: executing program 5 (id=3794):
r0 = socket$xdp(0x2c, 0x3, 0x0)
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x1000}, 0x20)

1m21.107727165s ago: executing program 42 (id=3794):
r0 = socket$xdp(0x2c, 0x3, 0x0)
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x1000}, 0x20)

1m21.098400596s ago: executing program 3 (id=3795):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000180)=0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x1)

1m21.098203617s ago: executing program 43 (id=3795):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000180)=0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x1)

42.136349907s ago: executing program 6 (id=5186):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000340), &(0x7f0000000300)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r2}, 0x10)
quotactl$Q_QUOTAON(0xffffffff80000201, 0x0, 0x0, 0x0)

42.096100651s ago: executing program 6 (id=5187):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020100000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a01010000000000000000020000000900020073797a31000000000900010073797a300000000054000380080002400000000840000380140001006272696467655f736c6176655f31000014000100776732000000000000000000000000001400010077673200000000000000000000000000080001"], 0xa8}}, 0x0)

41.912827089s ago: executing program 6 (id=5194):
sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000140)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2000001, 0x12, r0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000380)=ANY=[], 0x20)

41.861073594s ago: executing program 6 (id=5197):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1c5008, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x500, 0x40)
r1 = open_tree(r0, &(0x7f0000000300)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000040)='./file0/../file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x172)

41.823248648s ago: executing program 6 (id=5200):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000003c0f000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
preadv(r2, &(0x7f0000000000)=[{&(0x7f00000002c0)=""/219, 0xdb}], 0x1, 0x349f, 0x7)

41.439244606s ago: executing program 6 (id=5209):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0xfffffffffffffffc}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a808682b7fc4c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000020000380100000800c00018006000100d10300000c00008008000340000000023f0000000e0a010200000000000000000a0000000900010073797a31000000000900020073797a31"], 0xdc}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

41.403687259s ago: executing program 44 (id=5209):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0xfffffffffffffffc}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a808682b7fc4c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000020000380100000800c00018006000100d10300000c00008008000340000000023f0000000e0a010200000000000000000a0000000900010073797a31000000000900020073797a31"], 0xdc}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

5.155578473s ago: executing program 9 (id=6473):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
unshare(0x2040400)
r1 = fsopen(&(0x7f0000000400)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
unshare(0x2000400)
fsmount(r1, 0x0, 0x0)

5.141711525s ago: executing program 9 (id=6475):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x30044f1, &(0x7f0000000800)=ANY=[@ANYRES64, @ANYRES8, @ANYRES64, @ANYRES64], 0x0, 0x23e, &(0x7f0000000bc0)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r2, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty=0xffffff7f, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

5.006091668s ago: executing program 9 (id=6477):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x18, 0x7ffc1fff}]})
creat(&(0x7f0000000140)='./file0\x00', 0xd931d3864d39dcce)
removexattr(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)=@known='system.posix_acl_access\x00')

4.98617678s ago: executing program 9 (id=6479):
signalfd(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x20000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)

4.951081023s ago: executing program 9 (id=6480):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
setuid(0xee01)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000000000007910a800000000005500ffff000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x22e, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)

4.668288291s ago: executing program 9 (id=6489):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$kcm(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8946, &(0x7f0000000040)={'ipvlan0\x00', @random='\x00\x00\x00\x00\x00 '})

4.652233643s ago: executing program 45 (id=6489):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$kcm(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8946, &(0x7f0000000040)={'ipvlan0\x00', @random='\x00\x00\x00\x00\x00 '})

1.503432632s ago: executing program 0 (id=6532):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

1.012783161s ago: executing program 4 (id=6551):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40)
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0)

945.315057ms ago: executing program 4 (id=6555):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000142020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000e02800850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10)
io_setup(0x3, &(0x7f0000000340))

787.609283ms ago: executing program 4 (id=6560):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x124)

710.17285ms ago: executing program 4 (id=6562):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

636.554318ms ago: executing program 4 (id=6565):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/249, 0xf9}], 0x1}, 0x40000000)
close(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x810100, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1, 0x0, 0x0, 0x3}, 0x0)

596.575251ms ago: executing program 2 (id=6566):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x0)

519.108249ms ago: executing program 2 (id=6568):
r0 = socket(0x10, 0x2, 0x0)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0xffffffff}, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r1, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x10007ffffffff}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000001540)=@newtaction={0x18, 0x31, 0x829, 0x70bd25, 0x800, {}, [{0x4}]}, 0x22}, 0x1, 0x0, 0x0, 0x200080c1}, 0x4000880)

514.24076ms ago: executing program 4 (id=6570):
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000080)={0xffffffffffffffff, 0x0, {0x0, 0x0, 0x0, 0x20000000004, 0x0, 0x0, 0x3, 0x9, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7bed00000000c8b55c114c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3f409ff2176ff7be455cd4a5d83cd4a524bd3ffe70c0b2f7b6aa54cc50a1fcad31e831fa79a00", "67521c601a8ca5b07dcc141806c4fae403c9cf4e15a4246f00", [0xfffffffffffffce8, 0xa]}})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="001c86dd0700100000004000000060ec97000fc83c00fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe)

491.022292ms ago: executing program 2 (id=6571):
r0 = socket(0xa, 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0xe64, 0xff, @empty, 0x8e1726d}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0xe64, 0x3, @ipv4={'\x00', '\xff\xff', @empty}, 0x80000002}, 0x1c)
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)

476.276593ms ago: executing program 2 (id=6572):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r3}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000040), 0x200080, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_9p2000}]}})

431.371048ms ago: executing program 0 (id=6574):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = mq_open(&(0x7f0000002300)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xefhe\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+\xf7\xc6>n\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:i\x99\xcb\xb5\xd7\xac+\xcdW\xd4\xdc\xd1\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xb3\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xdf\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\x02\x00\x00\x00\x00\x00\x00\x00n\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xee\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\xfe\a^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\xda8\x9cQ\xd9\xac\x9e\xa4\x8d\x13\x8a-sN/\xbf`\xc6\x16\x06\x1e\b(CLPSX5N\xd4ZR\x87\x80J\xfe:\xc9\xf8\xd9\xc5\xa5|\x8dq\x8bq\\ka\xba\\\xe3|\xe8\xa2\xd9\x86hB\xb5\x1e\x8d?\xf7\xd3\x1c\xf5\xa9q\xcc\'E6\xd9FK\x8c\x86f*\xd6\xd9\x84\xf7!\x16\xf1^\xae\x14\xf8\"\xb6/h\xba\x88J\xf0\xbduM\xc4\xac\xfc\xd7\xf2\xfcB\xa2e\xf3Ed\xbc\xb9\x03^\xea\xd6\xeb\xd2\xc7\x89\x8a\xb7\xb1\xc6\xbe\x0e\xb77\xf7A\x92\x91\x02H\x90\xfe\xdb\xc4\x14~\x14\x1d\x1fz\x1f\x81\x89#q\x1en', 0x41, 0x1c5, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r2)

411.70757ms ago: executing program 0 (id=6576):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x6)
fchdir(r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file3\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0)

410.20207ms ago: executing program 7 (id=6577):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1fa)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010007000000001f00000000000a"], 0xec}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

392.683912ms ago: executing program 0 (id=6578):
socket$l2tp(0x2, 0x2, 0x73)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x1000000009, 0x640b9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0xa00, 0x81, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)

390.849612ms ago: executing program 7 (id=6579):
r0 = socket(0x10, 0x3, 0x0)
connect$netlink(r0, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1}, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001500)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4010}, 0x8084)

373.056544ms ago: executing program 7 (id=6580):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
r2 = perf_event_open(0x0, 0x0, 0x2000000000000000, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, 0x0)

345.667256ms ago: executing program 2 (id=6582):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000080)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4}, 0x18)
recvmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c030000160001000000000000000000fc010000000000000000000000000000fe88000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000300000006"], 0x34c}}, 0x0)

300.60407ms ago: executing program 7 (id=6584):
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0x3284, 0x10100}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x100a}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x4, 0x0, 0xee688c89bc2c4228)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r0, 0x0, r5, 0x0, 0x80, 0x4)
write$UHID_SET_REPORT_REPLY(r1, &(0x7f0000000380)=ANY=[], 0x45)

281.214922ms ago: executing program 2 (id=6585):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

276.271193ms ago: executing program 0 (id=6587):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/pm_wakeup_irq', 0x0, 0xb)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000001600)={r2, 0x800, {0x2a00, 0x80010000, 0x0, 0xff, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09d0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})

251.593006ms ago: executing program 8 (id=6588):
r0 = epoll_create1(0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x1})
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000740)={<r2=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000380)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback, 0x8e9}, {0xa, 0x0, 0x0, @local}, r2}}, 0x48)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000080)={0xe000202b})

156.218785ms ago: executing program 7 (id=6589):
r0 = memfd_secret(0x80000)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
ftruncate(r0, 0x51a9497)
finit_module(r0, 0x0, 0x3)

155.970965ms ago: executing program 8 (id=6590):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='io_uring_register\x00', r1}, 0x18)
r2 = io_uring_setup(0x53b5, &(0x7f0000000280)={0x0, 0xbf6b, 0x1000, 0x2, 0x30f})
io_uring_register$IORING_REGISTER_RING_FDS(r2, 0x14, &(0x7f0000000000), 0x1)

155.820365ms ago: executing program 0 (id=6591):
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x84040, 0x41)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x2000300, 0xe, 0x0, &(0x7f0000000880)="63ec89f7b98675971c78cffba412", 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

155.588915ms ago: executing program 8 (id=6592):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000013c0)=ANY=[@ANYBLOB="140000005304"], 0x28}, 0x1, 0x0, 0x0, 0x64801}, 0x40000)

142.891666ms ago: executing program 8 (id=6593):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x3, 0x0, 0x7ffc1ffa}]})
creat(&(0x7f0000000000)='./file0\x00', 0x40)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)

122.343648ms ago: executing program 8 (id=6594):
openat(0xffffffffffffff9c, 0x0, 0x40, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x2800, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r3, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)

275.24µs ago: executing program 8 (id=6595):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r0, 0x2)
accept(r0, 0x0, 0x0)
accept4$vsock_stream(r0, 0x0, 0x0, 0x800)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)

0s ago: executing program 7 (id=6596):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000580)={0x0, 0xff7f, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000001000010400004000fedbdf2501f80000", @ANYRES32=0x0, @ANYBLOB="01020400000000002800128008000100736974001c00028008000200c6120001060008001900000005000a00fd000000080004000100010008000a00fa"], 0x58}}, 0x0)

kernel console output (not intermixed with test programs):

t permissive=1
[  162.628139][T19855] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4156'.
[  162.644062][T19851] loop6: detected capacity change from 0 to 512
[  162.655143][T19857] loop7: detected capacity change from 0 to 1024
[  162.669209][T19853] bridge0: entered promiscuous mode
[  162.675113][T19853] macsec0: entered promiscuous mode
[  162.676938][T19851] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.681581][T19853] bridge0: port 3(macsec0) entered blocking state
[  162.699472][T19853] bridge0: port 3(macsec0) entered disabled state
[  162.706540][T19853] macsec0: entered allmulticast mode
[  162.711854][T19853] bridge0: entered allmulticast mode
[  162.716418][T19851] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.727860][T19853] macsec0: left allmulticast mode
[  162.729682][T19857] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.732935][T19853] bridge0: left allmulticast mode
[  162.750370][T19853] bridge0: left promiscuous mode
[  162.777719][T19851] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  162.778459][   T29] audit: type=1400 audit(1761355427.823:6396): avc:  denied  { remount } for  pid=19850 comm="syz.6.4155" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  162.811984][T19851] EXT4-fs (loop6): changing journal_checksum during remount not supported; ignoring
[  162.876674][T19851] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000.
[  162.958514][T17645] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.210811][T19922] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4174'.
[  163.233127][T19922] hsr_slave_1 (unregistering): left promiscuous mode
[  163.280945][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.281684][T19932] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4178'.
[  163.299531][T19932] IPVS: Error connecting to the multicast addr
[  163.447246][T19962] SELinux: failed to load policy
[  163.482399][T19972] loop9: detected capacity change from 0 to 512
[  163.491539][T19972] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.504258][T19972] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.528714][T19960] Falling back ldisc for ttyS3.
[  163.533950][T19972] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  163.559474][T19972] EXT4-fs (loop9): changing journal_checksum during remount not supported; ignoring
[  163.589797][   T29] audit: type=1326 audit(1761355428.581:6397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19982 comm="syz.7.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4cd39a5e67 code=0x7ffc0000
[  163.613689][   T29] audit: type=1326 audit(1761355428.581:6398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19982 comm="syz.7.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4cd394b099 code=0x7ffc0000
[  163.619097][T19986] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=20 sclass=netlink_audit_socket pid=19986 comm=syz.6.4199
[  163.637165][   T29] audit: type=1326 audit(1761355428.581:6399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19982 comm="syz.7.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4cd39a5e67 code=0x7ffc0000
[  163.668224][T19972] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000.
[  163.731460][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.743322][T19995] $H�: renamed from bond0 (while UP)
[  163.754810][T19995] $H�: entered promiscuous mode
[  163.759944][T19995] bond_slave_0: entered promiscuous mode
[  163.765781][T19995] bond_slave_1: entered promiscuous mode
[  163.840409][T20013] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4212'.
[  164.148414][T20062] netlink: 'syz.7.4236': attribute type 39 has an invalid length.
[  164.428372][T20094] netlink: 'syz.7.4247': attribute type 1 has an invalid length.
[  164.568886][T20105] netlink: 240 bytes leftover after parsing attributes in process `syz.9.4248'.
[  164.625426][T20115] loop7: detected capacity change from 0 to 164
[  164.648070][T20115] rock: directory entry would overflow storage
[  164.654432][T20115] rock: sig=0x4f50, size=4, remaining=3
[  164.660103][T20115] iso9660: Corrupted directory entry in block 4 of inode 1792
[  164.729651][T20135] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4265'.
[  164.738869][T20135] netlink: 'syz.9.4265': attribute type 1 has an invalid length.
[  164.781320][T20143] SELinux: failed to load policy
[  164.833560][T20151] 0�X���: renamed from caif0
[  164.842146][T20151] 0�X���: entered allmulticast mode
[  164.847640][T20151] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  165.159035][T20211] __nla_validate_parse: 3 callbacks suppressed
[  165.159062][T20211] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4297'.
[  165.174989][T20211] IPVS: Error connecting to the multicast addr
[  165.359641][T20219] netlink: 'syz.0.4301': attribute type 39 has an invalid length.
[  165.394050][T20227] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4302'.
[  165.403393][T20227] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4302'.
[  165.505962][T20243] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4310'.
[  165.515138][T20243] IPVS: Error connecting to the multicast addr
[  165.597618][T20256] SELinux: failed to load policy
[  165.783109][T20278] netlink: 132 bytes leftover after parsing attributes in process `syz.6.4327'.
[  165.880676][T20287] Falling back ldisc for ttyS3.
[  165.918054][T20303] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4335'.
[  165.936838][T20303] IPVS: Error connecting to the multicast addr
[  166.099595][T20331] loop9: detected capacity change from 0 to 1024
[  166.122068][T20331] EXT4-fs: Ignoring removed mblk_io_submit option
[  166.140110][T20331] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  166.163257][T20331] EXT4-fs error (device loop9): ext4_orphan_get:1418: comm syz.9.4350: bad orphan inode 11
[  166.180127][T20331] ext4_test_bit(bit=10, block=4) = 1
[  166.185471][T20331] is_bad_inode(inode)=0
[  166.189650][T20331] NEXT_ORPHAN(inode)=3254779904
[  166.194550][T20331] max_ino=32
[  166.197844][T20331] i_nlink=0
[  166.204055][T20331] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 2: comm syz.9.4350: lblock 2 mapped to illegal pblock 2 (length 1)
[  166.218894][T20331] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 48: comm syz.9.4350: lblock 0 mapped to illegal pblock 48 (length 1)
[  166.234498][T20331] EXT4-fs error (device loop9): ext4_acquire_dquot:6945: comm syz.9.4350: Failed to acquire dquot type 0
[  166.247713][T20331] EXT4-fs error (device loop9) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  166.257740][T20331] EXT4-fs error (device loop9): ext4_evict_inode:254: inode #11: comm syz.9.4350: mark_inode_dirty error
[  166.269859][T20331] EXT4-fs warning (device loop9): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  166.280901][T20331] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.320376][T20360] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4358'.
[  166.327859][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.359850][T17303] EXT4-fs error (device loop9): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  166.372981][T17303] EXT4-fs error (device loop9) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  166.382773][T17303] EXT4-fs error (device loop9): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  166.532696][T20380] loop6: detected capacity change from 0 to 1024
[  166.543152][T20380] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  166.589444][T20380] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.4365: Invalid block bitmap block 0 in block_group 0
[  166.614086][T20380] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.4365: Failed to acquire dquot type 0
[  166.626401][T20380] EXT4-fs error (device loop6): ext4_free_blocks:6706: comm syz.6.4365: Freeing blocks not in datazone - block = 0, count = 4096
[  166.642612][T20380] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4365: Invalid inode bitmap blk 0 in block_group 0
[  166.656019][T20380] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem
[  166.664713][ T9409] EXT4-fs error (device loop6): ext4_release_dquot:6981: comm kworker/u8:45: Failed to release dquot type 0
[  166.666455][T20380] EXT4-fs (loop6): 1 orphan inode deleted
[  166.677680][T20412] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  166.682779][T20380] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.695918][T20414] IPv6: NLM_F_CREATE should be specified when creating new route
[  166.727863][T17645] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.820191][T20430] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4381'.
[  166.830014][T20430] bridge_slave_1: left allmulticast mode
[  166.835722][T20430] bridge_slave_1: left promiscuous mode
[  166.841415][T20430] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.853860][T20430] bridge_slave_0: left allmulticast mode
[  166.859587][T20430] bridge_slave_0: left promiscuous mode
[  166.865296][T20430] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.917915][T20435] netlink: 244 bytes leftover after parsing attributes in process `syz.9.4382'.
[  167.021358][T20468] netlink: 'syz.0.4394': attribute type 27 has an invalid length.
[  167.115657][T20490] loop2: detected capacity change from 0 to 512
[  167.157380][T20490] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  167.174859][T20490] EXT4-fs (loop2): orphan cleanup on readonly fs
[  167.188668][T20490] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  167.203744][T20490] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  167.211059][T20490] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4401: bg 0: block 40: padding at end of block bitmap is not set
[  167.225537][T20490] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  167.237063][T20490] EXT4-fs (loop2): 1 truncate cleaned up
[  167.244266][T20490] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  167.289578][T15879] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.432448][   T29] kauditd_printk_skb: 221 callbacks suppressed
[  167.432466][   T29] audit: type=1400 audit(1761355432.183:6615): avc:  denied  { write } for  pid=20517 comm="syz.2.4411" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  167.529800][T20530] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4424'.
[  167.616449][   T29] audit: type=1326 audit(1761355432.342:6617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20550 comm="syz.6.4420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb8d69efc9 code=0x7ffc0000
[  167.640343][   T29] audit: type=1326 audit(1761355432.342:6618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20550 comm="syz.6.4420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb8d69efc9 code=0x7ffc0000
[  167.663885][   T29] audit: type=1326 audit(1761355432.332:6616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20548 comm="syz.9.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e4a0defc9 code=0x7ffc0000
[  167.687779][   T29] audit: type=1326 audit(1761355432.342:6619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20548 comm="syz.9.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e4a0defc9 code=0x7ffc0000
[  167.688804][T20553] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  167.711884][   T29] audit: type=1326 audit(1761355432.342:6620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20548 comm="syz.9.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e4a0defc9 code=0x7ffc0000
[  167.742661][   T29] audit: type=1326 audit(1761355432.342:6621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20548 comm="syz.9.4421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e4a0defc9 code=0x7ffc0000
[  167.767937][   T29] audit: type=1326 audit(1761355432.342:6622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20550 comm="syz.6.4420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb8d69efc9 code=0x7ffc0000
[  167.791809][   T29] audit: type=1326 audit(1761355432.342:6623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20550 comm="syz.6.4420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb8d69efc9 code=0x7ffc0000
[  167.815544][   T29] audit: type=1326 audit(1761355432.342:6624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20550 comm="syz.6.4420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb8d69efc9 code=0x7ffc0000
[  167.895934][T20564] program syz.2.4429 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  167.926404][T20569] netlink: 'syz.7.4428': attribute type 16 has an invalid length.
[  168.089733][T20594] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.148084][T20609] lo speed is unknown, defaulting to 1000
[  168.153940][T20609] lo speed is unknown, defaulting to 1000
[  168.163661][T20605] hub 6-0:1.0: USB hub found
[  168.169847][T20605] hub 6-0:1.0: 8 ports detected
[  168.175690][T20594] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.196819][T20609] lo speed is unknown, defaulting to 1000
[  168.205294][T20609] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  168.221156][T20609] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  168.238590][T20609] lo speed is unknown, defaulting to 1000
[  168.255762][T20609] lo speed is unknown, defaulting to 1000
[  168.271890][T20609] lo speed is unknown, defaulting to 1000
[  168.285764][T20594] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.314914][T20609] lo speed is unknown, defaulting to 1000
[  168.322580][T20609] lo speed is unknown, defaulting to 1000
[  168.328868][T20609] lo speed is unknown, defaulting to 1000
[  168.363609][T20594] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.417679][T20651] batman_adv: batadv0: adding TT local entry 06:e1:05:00:07:00 to non-existent VLAN 768
[  168.433855][ T9409] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.448542][ T9432] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.469017][ T9432] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.477968][T20660] loop2: detected capacity change from 0 to 512
[  168.486548][T20660] EXT4-fs (loop2): orphan cleanup on readonly fs
[  168.493582][T20660] EXT4-fs warning (device loop2): ext4_xattr_inode_get:560: inode #11: comm syz.2.4462: EA inode hash validation failed
[  168.517472][ T9432] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.527152][T20660] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  168.542488][T20660] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.4462: corrupted inode contents
[  168.559042][T20660] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #15: comm syz.2.4462: mark_inode_dirty error
[  168.570937][T20660] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.4462: corrupted inode contents
[  168.583373][T20660] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2996: inode #15: comm syz.2.4462: mark_inode_dirty error
[  168.598389][T20660] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2999: inode #15: comm syz.2.4462: mark inode dirty (error -117)
[  168.611261][T20660] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[  168.621063][T20660] EXT4-fs (loop2): 1 orphan inode deleted
[  168.627594][T20660] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  168.651713][T15879] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.825388][T20678] program syz.9.4467 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.865886][T20679] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[  168.879680][T20679] bond1: (slave wireguard0): Error -95 calling set_mac_address
[  168.890037][T20723] netlink: 'syz.2.4472': attribute type 16 has an invalid length.
[  169.397256][T20764] hub 6-0:1.0: USB hub found
[  169.405910][T20764] hub 6-0:1.0: 8 ports detected
[  170.101469][T20851] siw: device registration error -23
[  170.194378][T20865] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[  170.205611][T20865] bond1: (slave wireguard0): Error -95 calling set_mac_address
[  170.242475][T20907] loop6: detected capacity change from 0 to 256
[  170.382157][T20926] siw: device registration error -23
[  170.452377][T20936] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  170.464941][T20936] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  170.477864][T20936] bond0: (slave ipvlan2): Error -95 calling set_mac_address
[  170.493400][T20940] bridge_slave_1: left allmulticast mode
[  170.499453][T20940] bridge_slave_1: left promiscuous mode
[  170.505222][T20940] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.513462][T20940] bridge_slave_0: left promiscuous mode
[  170.519309][T20940] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.571588][T20948] loop9: detected capacity change from 0 to 256
[  170.609752][T20957] __nla_validate_parse: 7 callbacks suppressed
[  170.609771][T20957] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4549'.
[  170.642776][T20957] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[  170.657587][T20957] bond1: (slave wireguard0): Error -95 calling set_mac_address
[  170.888959][T21032] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4564'.
[  170.960845][T21043] netdevsim netdevsim9: loading /lib/firmware/. failed with error -22
[  170.969196][T21043] netdevsim netdevsim9: Direct firmware load for . failed with error -22
[  171.013323][T21053] loop9: detected capacity change from 0 to 4096
[  171.034801][T21053] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.102432][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.116827][T21066] netlink: 44 bytes leftover after parsing attributes in process `syz.7.4577'.
[  171.192783][T21079] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  171.201015][T21079] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  171.287751][T21098] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  171.320513][T21099] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4590'.
[  171.332561][T21099] bridge_slave_1: left allmulticast mode
[  171.338437][T21099] bridge_slave_1: left promiscuous mode
[  171.344372][T21099] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.371853][T21099] bridge_slave_0: left promiscuous mode
[  171.377858][T21099] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.427894][T21118] ref_ctr_offset mismatch. inode: 0x3e0 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  171.665025][T21156] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4614'.
[  171.714148][T21156] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[  171.742095][T21156] bond1: (slave wireguard0): Error -95 calling set_mac_address
[  171.770203][T21207] SELinux:  Context system_u:object_r:useradd_exec_t:s0 is not valid (left unmapped).
[  171.791053][T21209] loop6: detected capacity change from 0 to 4096
[  171.801199][T21209] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.830664][T17645] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.849878][T21221] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4626'.
[  171.867301][T21223] netlink: 80 bytes leftover after parsing attributes in process `+}[@'.
[  171.883561][T21225] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4627'.
[  171.925644][T21229] xt_connbytes: Forcing CT accounting to be enabled
[  171.932647][T21229] set match dimension is over the limit!
[  171.986023][T21241] ref_ctr_offset mismatch. inode: 0x320 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  172.022985][T21243] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=21243 comm=syz.2.4636
[  172.035703][T21243] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=21243 comm=syz.2.4636
[  172.211095][T21263] xt_connbytes: Forcing CT accounting to be enabled
[  172.218276][T21263] Cannot find set identified by id 0 to match
[  172.276752][T21273] rdma_op ffff888131bef580 conn xmit_rdma 0000000000000000
[  172.305056][T21276] IPv6: Can't replace route, no match found
[  172.489221][T21299] xt_connbytes: Forcing CT accounting to be enabled
[  172.509089][T21299] set match dimension is over the limit!
[  172.552580][T21309] IPv6: Can't replace route, no match found
[  172.600305][T21315] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4665'.
[  172.612169][T21316] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=21316 comm=syz.0.4666
[  172.624837][T21316] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=21316 comm=syz.0.4666
[  172.648807][T21315] bond0: (slave wireguard0): The slave device specified does not support setting the MAC address
[  172.670414][T21315] bond0: (slave wireguard0): Error -95 calling set_mac_address
[  172.845805][   T29] kauditd_printk_skb: 680 callbacks suppressed
[  172.845823][   T29] audit: type=1326 audit(1761355437.244:7305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.845857][   T29] audit: type=1326 audit(1761355437.244:7306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.852377][   T29] audit: type=1326 audit(1761355437.244:7307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.877041][   T29] audit: type=1326 audit(1761355437.281:7308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.900860][   T29] audit: type=1326 audit(1761355437.281:7309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.900898][   T29] audit: type=1326 audit(1761355437.281:7310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.900928][   T29] audit: type=1326 audit(1761355437.281:7311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.901002][   T29] audit: type=1326 audit(1761355437.281:7312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.901027][   T29] audit: type=1326 audit(1761355437.281:7313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  172.901100][   T29] audit: type=1326 audit(1761355437.281:7314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21374 comm="syz.7.4676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  173.117235][T21381] netlink: 64 bytes leftover after parsing attributes in process `syz.7.4678'.
[  173.247526][T21395] loop7: detected capacity change from 0 to 512
[  173.300303][T21400] bond2: (slave wireguard0): The slave device specified does not support setting the MAC address
[  173.301737][T21400] bond2: (slave wireguard0): Error -95 calling set_mac_address
[  173.312179][T21395] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.334763][T21395] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.357963][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.698629][T21457] x_tables: unsorted entry at hook 1
[  173.710523][T21455] hub 9-0:1.0: USB hub found
[  173.716819][T21455] hub 9-0:1.0: 8 ports detected
[  174.083892][T21513] syz_tun: entered allmulticast mode
[  174.091928][T21509] syz_tun: left allmulticast mode
[  174.204910][T21537] loop2: detected capacity change from 0 to 512
[  174.232101][T21537] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.249777][T21537] ext4 filesystem being mounted at /231/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.289122][T21541] bond2: (slave wireguard0): The slave device specified does not support setting the MAC address
[  174.308552][T21541] bond2: (slave wireguard0): Error -95 calling set_mac_address
[  174.319753][T21585] syz_tun: entered allmulticast mode
[  174.327609][T21584] syz_tun: left allmulticast mode
[  174.345149][T15879] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.367745][T21596] netlink: 'syz.2.4730': attribute type 6 has an invalid length.
[  175.750809][T21622] loop2: detected capacity change from 0 to 164
[  175.778403][T21622] syz.2.4752: attempt to access beyond end of device
[  175.778403][T21622] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  175.837108][T21622] syz.2.4752: attempt to access beyond end of device
[  175.837108][T21622] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  175.853833][T21637] netlink: 'syz.6.4747': attribute type 6 has an invalid length.
[  175.929985][T21643] netlink: 'syz.7.4750': attribute type 4 has an invalid length.
[  176.010664][T21647] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  176.060692][T21656] ALSA: seq fatal error: cannot create timer (-19)
[  176.223792][T21665] __nla_validate_parse: 11 callbacks suppressed
[  176.223812][T21665] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4762'.
[  176.239452][T21665] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4762'.
[  176.248502][T21665] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4762'.
[  176.259950][T21665] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4762'.
[  176.259973][T21665] netlink: 'syz.9.4762': attribute type 6 has an invalid length.
[  176.300518][T21673] loop9: detected capacity change from 0 to 164
[  176.308561][T21673] syz.9.4764: attempt to access beyond end of device
[  176.308561][T21673] loop9: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  176.308606][T21673] syz.9.4764: attempt to access beyond end of device
[  176.308606][T21673] loop9: rw=0, sector=263328, nr_sectors = 4 limit=164
[  176.523025][T21696] ALSA: seq fatal error: cannot create timer (-19)
[  176.544532][T21702] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  176.622272][T21716] sch_tbf: peakrate 9 is lower than or equals to rate 6829859379779001161 !
[  177.054376][T21736] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=21736 comm=syz.9.4795
[  177.067355][T21737] ALSA: seq fatal error: cannot create timer (-19)
[  177.425179][T21787] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=21787 comm=syz.6.4804
[  178.201061][   T29] kauditd_printk_skb: 1998 callbacks suppressed
[  178.201076][   T29] audit: type=1326 audit(1761355442.249:9313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7c9c0b5e67 code=0x7ffc0000
[  178.248195][   T29] audit: type=1326 audit(1761355442.296:9314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7c9c05b099 code=0x7ffc0000
[  178.271720][   T29] audit: type=1326 audit(1761355442.296:9315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7c9c0b5e67 code=0x7ffc0000
[  178.295838][   T29] audit: type=1326 audit(1761355442.296:9316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7c9c05b099 code=0x7ffc0000
[  178.319399][   T29] audit: type=1326 audit(1761355442.296:9317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  178.343536][   T29] audit: type=1326 audit(1761355442.296:9318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7c9c0b5e67 code=0x7ffc0000
[  178.366980][   T29] audit: type=1326 audit(1761355442.296:9319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7c9c05b099 code=0x7ffc0000
[  178.390592][   T29] audit: type=1326 audit(1761355442.296:9320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  178.415842][   T29] audit: type=1326 audit(1761355442.371:9321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7c9c0b5e67 code=0x7ffc0000
[  178.439303][   T29] audit: type=1326 audit(1761355442.371:9322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21791 comm="syz.2.4807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7c9c05b099 code=0x7ffc0000
[  178.517614][T21823] Invalid ELF header magic: != ELF
[  178.559268][T21830] loop9: detected capacity change from 0 to 512
[  178.567800][T21830] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e01c, mo2=0002]
[  178.575812][T21830] System zones: 1-12
[  178.580093][T21830] EXT4-fs error (device loop9): dx_probe:791: inode #2: comm syz.9.4825: Directory hole found for htree index block 0
[  178.608824][T21830] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -117
[  178.621447][T21830] EXT4-fs error (device loop9): dx_probe:791: inode #2: comm syz.9.4825: Directory hole found for htree index block 0
[  178.634840][T21830] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -117
[  178.644038][T21830] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.670988][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.822193][T21855] kernel read not supported for file /!selinuxwk1�m�9ɞ*T����#j����Y��mV�vm(p�-QZ#�{�� (pid: 21855 comm: syz.9.4832)
[  178.999204][T21863] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=21863 comm=syz.9.4836
[  179.011823][T21863] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=21863 comm=syz.9.4836
[  179.105526][T21871] x_tables: duplicate underflow at hook 1
[  179.180638][T21884] loop6: detected capacity change from 0 to 512
[  179.202188][T21884] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.218338][T21884] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.242590][T21895] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=21895 comm=syz.2.4849
[  179.255236][T21895] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=21895 comm=syz.2.4849
[  179.284348][T17645] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.319493][T21901] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  179.398709][T21919] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  179.398709][T21919]    program +j�@ not setting count and/or reply_len properly
[  179.461564][T21926] loop2: detected capacity change from 0 to 1024
[  179.469307][T21926] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  179.480307][T21926] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  179.490934][T21926] JBD2: no valid journal superblock found
[  179.496823][T21926] EXT4-fs (loop2): Could not load journal inode
[  179.508825][T21926] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  179.538098][T21934] netlink: 96 bytes leftover after parsing attributes in process `syz.9.4865'.
[  179.568185][T21940] loop2: detected capacity change from 0 to 512
[  179.578488][T21940] EXT4-fs (loop2): orphan cleanup on readonly fs
[  179.585810][T21940] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.4868: corrupted inode contents
[  179.603101][T21940] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[  179.616710][T21940] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.4868: corrupted inode contents
[  179.631103][T21940] EXT4-fs error (device loop2): ext4_evict_inode:302: inode #15: comm syz.2.4868: mark_inode_dirty error
[  179.644077][T21940] EXT4-fs (loop2): 1 orphan inode deleted
[  179.652143][T21940] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  179.679503][T15879] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.750392][T21968] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  179.795500][T21974] lo speed is unknown, defaulting to 1000
[  179.812333][T21980] loop9: detected capacity change from 0 to 512
[  179.833562][T21980] EXT4-fs (loop9): orphan cleanup on readonly fs
[  179.842561][T22003] SELinux:  policydb version 0 does not match my version range 15-35
[  179.851019][T21980] EXT4-fs error (device loop9): ext4_do_update_inode:5632: inode #15: comm syz.9.4883: corrupted inode contents
[  179.863693][T21980] EXT4-fs error (device loop9) in ext4_orphan_del:301: Corrupt filesystem
[  179.865697][T22003] SELinux: failed to load policy
[  179.872613][T21980] EXT4-fs error (device loop9): ext4_do_update_inode:5632: inode #15: comm syz.9.4883: corrupted inode contents
[  179.882389][T22007] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  179.882389][T22007]    program +j�@ not setting count and/or reply_len properly
[  179.889548][T21980] EXT4-fs error (device loop9): ext4_evict_inode:302: inode #15: comm syz.9.4883: mark_inode_dirty error
[  179.931547][T21980] EXT4-fs (loop9): 1 orphan inode deleted
[  179.938070][T21980] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  179.983787][T22012] loop6: detected capacity change from 0 to 512
[  179.992936][T22012] EXT4-fs: Ignoring removed nobh option
[  179.999145][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.028451][T22012] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #3: comm syz.6.4888: corrupted inode contents
[  180.049793][T22012] EXT4-fs (loop6): Remounting filesystem read-only
[  180.058772][T22012] EXT4-fs (loop6): 1 truncate cleaned up
[  180.067136][T22012] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.080737][T22012] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.092430][T22012] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.180375][T22034] netlink: 128 bytes leftover after parsing attributes in process `syz.9.4903'.
[  180.253934][T22052] loop9: detected capacity change from 0 to 1024
[  180.261536][T22052] EXT4-fs: Ignoring removed bh option
[  180.266990][T22052] EXT4-fs: Ignoring removed nobh option
[  180.272728][T22052] EXT4-fs: inline encryption not supported
[  180.299032][T22055] loop7: detected capacity change from 0 to 2048
[  180.306551][T22052] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  180.318301][T22052] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  180.327555][T22052] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 2: comm syz.9.4899: lblock 2 mapped to illegal pblock 2 (length 1)
[  180.342326][T22055]  loop7: p1 < > p4
[  180.342566][T22052] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 48: comm syz.9.4899: lblock 0 mapped to illegal pblock 48 (length 1)
[  180.347264][T22055] loop7: p4 size 8388608 extends beyond EOD, truncated
[  180.361200][T22052] EXT4-fs error (device loop9): ext4_acquire_dquot:6945: comm syz.9.4899: Failed to acquire dquot type 0
[  180.380473][T22052] EXT4-fs error (device loop9) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  180.390169][T22052] EXT4-fs error (device loop9): ext4_evict_inode:254: inode #11: comm syz.9.4899: mark_inode_dirty error
[  180.401987][T22052] EXT4-fs warning (device loop9): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  180.414113][T22052] EXT4-fs (loop9): 1 orphan inode deleted
[  180.420498][T22052] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.433372][ T9393] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:32: lblock 1 mapped to illegal pblock 1 (length 1)
[  180.452491][T22052] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000.
[  180.461094][ T9393] EXT4-fs error (device loop9): ext4_release_dquot:6981: comm kworker/u8:32: Failed to release dquot type 0
[  180.488843][T22078] loop7: detected capacity change from 0 to 128
[  180.505033][T22078] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  180.518129][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.518751][T22078] ext4 filesystem being mounted at /196/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  180.529081][T17303] EXT4-fs error (device loop9): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  180.572479][T17303] EXT4-fs error (device loop9) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  180.582014][T17303] EXT4-fs error (device loop9): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  180.620885][T17643] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  180.759621][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  180.765744][ T3569] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  181.006668][T22130] blktrace: Concurrent blktraces are not allowed on sg0
[  181.074452][T22136] blktrace: Concurrent blktraces are not allowed on sg0
[  181.387806][  T383] Bluetooth: hci0: Frame reassembly failed (-84)
[  181.543153][T22188] loop2: detected capacity change from 0 to 512
[  181.564421][T22188] EXT4-fs: Ignoring removed nobh option
[  181.660677][T22188] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #3: comm syz.2.4948: corrupted inode contents
[  181.672718][T22188] EXT4-fs (loop2): Remounting filesystem read-only
[  181.680263][T22188] EXT4-fs (loop2): 1 truncate cleaned up
[  181.686533][T22188] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.700959][T22188] ext4 filesystem being mounted at /261/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.721175][T22188] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.782222][ T3456] Bluetooth: hci1: Frame reassembly failed (-84)
[  182.003892][T22251] loop7: detected capacity change from 0 to 512
[  182.031447][T22251] EXT4-fs: Ignoring removed nobh option
[  182.070518][T22251] EXT4-fs error (device loop7): ext4_do_update_inode:5632: inode #3: comm syz.7.4968: corrupted inode contents
[  182.096014][T22251] EXT4-fs (loop7): Remounting filesystem read-only
[  182.114865][T22251] EXT4-fs (loop7): 1 truncate cleaned up
[  182.129141][T22251] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.157642][T22251] ext4 filesystem being mounted at /212/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.175044][T22251] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.483174][T22290] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  182.490701][T22290] vhci_hcd: invalid port number 96
[  182.495892][T22290] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  182.554370][T22294] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  182.562377][T22294] SELinux: failed to load policy
[  182.633538][T22248] syz.6.4967 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  182.647766][T22248] CPU: 0 UID: 0 PID: 22248 Comm: syz.6.4967 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  182.647826][T22248] Tainted: [W]=WARN
[  182.647833][T22248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  182.647851][T22248] Call Trace:
[  182.647859][T22248]  <TASK>
[  182.647867][T22248]  __dump_stack+0x1d/0x30
[  182.647893][T22248]  dump_stack_lvl+0xe8/0x140
[  182.647919][T22248]  dump_stack+0x15/0x1b
[  182.647943][T22248]  dump_header+0x81/0x220
[  182.647987][T22248]  oom_kill_process+0x342/0x400
[  182.648022][T22248]  out_of_memory+0x979/0xb80
[  182.648055][T22248]  try_charge_memcg+0x610/0xa10
[  182.648095][T22248]  obj_cgroup_charge_pages+0xa6/0x150
[  182.648152][T22248]  __memcg_kmem_charge_page+0x9f/0x170
[  182.648176][T22248]  __alloc_frozen_pages_noprof+0x188/0x360
[  182.648220][T22248]  alloc_pages_mpol+0xb3/0x260
[  182.648342][T22248]  alloc_pages_noprof+0x90/0x130
[  182.648383][T22248]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  182.648451][T22248]  __kvmalloc_node_noprof+0x483/0x670
[  182.648518][T22248]  ? ip_set_alloc+0x24/0x30
[  182.648610][T22248]  ? ip_set_alloc+0x24/0x30
[  182.648641][T22248]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  182.648680][T22248]  ip_set_alloc+0x24/0x30
[  182.648770][T22248]  hash_netiface_create+0x282/0x740
[  182.648806][T22248]  ? __pfx_hash_netiface_create+0x10/0x10
[  182.648902][T22248]  ip_set_create+0x3cc/0x970
[  182.648938][T22248]  ? __nla_parse+0x40/0x60
[  182.648969][T22248]  nfnetlink_rcv_msg+0x4c6/0x590
[  182.649029][T22248]  netlink_rcv_skb+0x123/0x220
[  182.649143][T22248]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  182.649188][T22248]  nfnetlink_rcv+0x167/0x16c0
[  182.649213][T22248]  ? kmem_cache_free+0xe4/0x3d0
[  182.649249][T22248]  ? __kfree_skb+0x109/0x150
[  182.649352][T22248]  ? nlmon_xmit+0x4f/0x60
[  182.649379][T22248]  ? consume_skb+0x49/0x150
[  182.649411][T22248]  ? nlmon_xmit+0x4f/0x60
[  182.649435][T22248]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  182.649488][T22248]  ? __dev_queue_xmit+0x1200/0x2000
[  182.649561][T22248]  ? __dev_queue_xmit+0x182/0x2000
[  182.649597][T22248]  ? __pte_offset_map_lock+0x1d4/0x230
[  182.649638][T22248]  ? ref_tracker_free+0x37d/0x3e0
[  182.649710][T22248]  ? __netlink_deliver_tap+0x4dc/0x500
[  182.649753][T22248]  netlink_unicast+0x5c0/0x690
[  182.649861][T22248]  netlink_sendmsg+0x58b/0x6b0
[  182.649881][T22248]  ? __pfx_netlink_sendmsg+0x10/0x10
[  182.649901][T22248]  __sock_sendmsg+0x145/0x180
[  182.649934][T22248]  ____sys_sendmsg+0x31e/0x4e0
[  182.650017][T22248]  ___sys_sendmsg+0x17b/0x1d0
[  182.650104][T22248]  __x64_sys_sendmsg+0xd4/0x160
[  182.650154][T22248]  x64_sys_call+0x191e/0x3000
[  182.650225][T22248]  do_syscall_64+0xd2/0x200
[  182.650245][T22248]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  182.650275][T22248]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  182.650307][T22248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.650394][T22248] RIP: 0033:0x7fbb8d69efc9
[  182.650413][T22248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.650443][T22248] RSP: 002b:00007fbb8c0ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  182.650541][T22248] RAX: ffffffffffffffda RBX: 00007fbb8d8f5fa0 RCX: 00007fbb8d69efc9
[  182.650556][T22248] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  182.650571][T22248] RBP: 00007fbb8d721f91 R08: 0000000000000000 R09: 0000000000000000
[  182.650659][T22248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  182.650710][T22248] R13: 00007fbb8d8f6038 R14: 00007fbb8d8f5fa0 R15: 00007ffe80d648f8
[  182.650731][T22248]  </TASK>
[  182.650740][T22248] memory: usage 307200kB, limit 307200kB, failcnt 109
[  182.682134][T22300] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4984'.
[  182.682768][T22248] memory+swap: usage 307456kB, limit 9007199254740988kB, failcnt 0
[  183.027338][T22248] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[  183.034632][T22248] Memory cgroup stats for /syz6:
[  183.034918][T22248] cache 0
[  183.042942][T22248] rss 4096
[  183.046004][T22248] shmem 0
[  183.049004][T22248] mapped_file 0
[  183.052471][T22248] dirty 0
[  183.055410][T22248] writeback 0
[  183.058739][T22248] workingset_refault_anon 34
[  183.063420][T22248] workingset_refault_file 0
[  183.067947][T22248] swap 262144
[  183.071264][T22248] swapcached 8192
[  183.074951][T22248] pgpgin 96038
[  183.078354][T22248] pgpgout 96036
[  183.081912][T22248] pgfault 122625
[  183.085493][T22248] pgmajfault 5
[  183.088959][T22248] inactive_anon 4096
[  183.092980][T22248] active_anon 4096
[  183.096744][T22248] inactive_file 0
[  183.100420][T22248] active_file 0
[  183.103917][T22248] unevictable 0
[  183.107366][T22248] hierarchical_memory_limit 314572800
[  183.112756][T22248] hierarchical_memsw_limit 9223372036854771712
[  183.118900][T22248] total_cache 0
[  183.122404][T22248] total_rss 4096
[  183.125950][T22248] total_shmem 0
[  183.129478][T22248] total_mapped_file 0
[  183.133484][T22248] total_dirty 0
[  183.136939][T22248] total_writeback 0
[  183.140817][T22248] total_workingset_refault_anon 34
[  183.145988][T22248] total_workingset_refault_file 0
[  183.151055][T22248] total_swap 262144
[  183.154896][T22248] total_swapcached 8192
[  183.159122][T22248] total_pgpgin 96038
[  183.163019][T22248] total_pgpgout 96036
[  183.167049][T22248] total_pgfault 122625
[  183.171154][T22248] total_pgmajfault 5
[  183.175238][T22248] total_inactive_anon 4096
[  183.179655][T22248] total_active_anon 4096
[  183.183889][T22248] total_inactive_file 0
[  183.188182][T22248] total_active_file 0
[  183.192189][T22248] total_unevictable 0
[  183.196186][T22248] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz6,mems_allowed=0,oom_memcg=/syz6,task_memcg=/syz6,task=syz.6.4967,pid=22247,uid=0
[  183.211228][T22248] Memory cgroup out of memory: Killed process 22247 (syz.6.4967) total-vm:93824kB, anon-rss:1264kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  183.390863][T22315] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4990'.
[  183.545182][T22337] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.4995'.
[  183.555046][T22331] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.4995'.
[  183.566361][T22336] netlink: 132 bytes leftover after parsing attributes in process `syz.7.4998'.
[  183.581251][ T3569] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  183.582271][T22224] Bluetooth: hci0: command 0x1003 tx timeout
[  183.632602][   T29] kauditd_printk_skb: 352 callbacks suppressed
[  183.632618][   T29] audit: type=1400 audit(1761355447.329:9666): avc:  denied  { wake_alarm } for  pid=22346 comm="syz.7.5002" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  183.634867][T22349] loop6: detected capacity change from 0 to 512
[  183.679167][T22349] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.691804][T22349] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.706204][   T29] audit: type=1400 audit(1761355447.404:9667): avc:  denied  { write } for  pid=22348 comm="syz.6.5004" name="file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  183.732369][T22349] Quota error (device loop6): write_blk: dquota write failed
[  183.739959][T22349] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[  183.749940][   T29] audit: type=1400 audit(1761355447.432:9668): avc:  denied  { setattr } for  pid=22348 comm="syz.6.5004" name="file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  183.772504][T22349] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.5004: Failed to acquire dquot type 1
[  183.796070][T17645] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.854333][T22369] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5011'.
[  183.863489][T22369] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5011'.
[  183.888543][T22369] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5011'.
[  183.897651][T22369] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5011'.
[  183.923313][   T44] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  183.925609][T22369] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5011'.
[  183.978156][   T29] audit: type=1400 audit(1761355447.666:9669): avc:  denied  { name_bind } for  pid=22383 comm="syz.7.5016" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  184.139723][T22393] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  184.147100][T22393] vhci_hcd: invalid port number 96
[  184.152331][T22393] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  184.177368][   T29] audit: type=1400 audit(1761355447.843:9670): avc:  denied  { create } for  pid=22394 comm="syz.7.5030" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  184.200338][   T29] audit: type=1400 audit(1761355447.843:9671): avc:  denied  { write } for  pid=22394 comm="syz.7.5030" path="socket:[51176]" dev="sockfs" ino=51176 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  184.424882][   T29] audit: type=1326 audit(1761355448.077:9672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22410 comm="syz.7.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  184.448538][   T29] audit: type=1326 audit(1761355448.077:9673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22410 comm="syz.7.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  184.568977][T22424] vhci_hcd: default hub control req: 400c v5000 i0007 l0
[  184.725490][ T9409] Bluetooth: hci1: Frame reassembly failed (-84)
[  184.742642][T22458] vhci_hcd: default hub control req: 400c v5000 i0007 l0
[  185.804568][ T3569] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  185.804677][T22224] Bluetooth: hci0: command 0x1003 tx timeout
[  185.843886][T22537] SELinux: security_context_str_to_sid (s) failed with errno=-22
[  186.052391][T22574] loop9: detected capacity change from 0 to 2048
[  186.093562][T22574]  loop9: p1 < > p4
[  186.098210][T22574] loop9: p4 size 8388608 extends beyond EOD, truncated
[  186.152547][T22594] pimreg: entered allmulticast mode
[  186.158737][T22594] pimreg: left allmulticast mode
[  186.916747][   T44] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  187.280429][T22662] SELinux: security_context_str_to_sid (s) failed with errno=-22
[  188.447244][T22771] SELinux: security_context_str_to_sid () failed with errno=-22
[  188.498412][T22779] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  188.893888][T22824] sd 0:0:1:0: device reset
[  189.102208][   T29] kauditd_printk_skb: 172 callbacks suppressed
[  189.102225][   T29] audit: type=1400 audit(1761355458.501:9846): avc:  denied  { compute_member } for  pid=22836 comm="syz.9.5202" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  189.224332][T22854] sd 0:0:1:0: device reset
[  189.262543][T22857] loop9: detected capacity change from 0 to 512
[  189.290186][T22857] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.307403][T22857] ext4 filesystem being mounted at /280/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.329521][T22857] Quota error (device loop9): write_blk: dquota write failed
[  189.337101][T22857] Quota error (device loop9): qtree_write_dquot: Error -28 occurred while creating quota
[  189.347140][T22857] EXT4-fs error (device loop9): ext4_acquire_dquot:6945: comm syz.9.5201: Failed to acquire dquot type 1
[  189.513597][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.550204][T22873] __nla_validate_parse: 15 callbacks suppressed
[  189.550222][T22873] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5205'.
[  189.608377][  T383] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.632141][T22879] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5210'.
[  189.649726][  T155] netdevsim netdevsim9 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  189.659166][T22879] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5210'.
[  189.669346][  T383] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.680723][  T155] netdevsim netdevsim9 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  189.693201][ T9432] netdevsim netdevsim9 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  189.712553][  T383] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.734743][ T9432] netdevsim netdevsim9 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  189.746444][T22890] xt_hashlimit: max too large, truncated to 1048576
[  189.757657][   T29] audit: type=1400 audit(1761355459.215:9847): avc:  denied  { mounton } for  pid=22893 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  189.781301][  T383] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.782899][T22890] Cannot find add_set index 0 as target
[  189.988160][T22928] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  190.008293][  T383] bond0 (unregistering): Released all slaves
[  190.019920][  T383] bond1 (unregistering): Released all slaves
[  190.029669][  T383] bond2 (unregistering): Released all slaves
[  190.076131][  T383] hsr_slave_0: left promiscuous mode
[  190.103380][  T383] veth1_macvtap: left promiscuous mode
[  190.109008][  T383] veth0_macvtap: left promiscuous mode
[  190.122997][T22944] SELinux: failed to load policy
[  190.128946][  T383] veth1_vlan: left promiscuous mode
[  190.134592][  T383] veth0_vlan: left promiscuous mode
[  190.216567][T22952] loop7: detected capacity change from 0 to 512
[  190.224226][T22952] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  190.238446][T22952] EXT4-fs warning (device loop7): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  190.257130][T22952] EXT4-fs (loop7): 1 truncate cleaned up
[  190.263724][T22952] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.276894][   T29] audit: type=1400 audit(1761355459.771:9848): avc:  denied  { bind } for  pid=22957 comm="syz.2.5235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  190.323258][   T29] audit: type=1400 audit(1761355459.792:9849): avc:  denied  { read append } for  pid=22951 comm="syz.7.5233" path="/265/file2/memory.events" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  190.347516][   T29] audit: type=1400 audit(1761355459.792:9850): avc:  denied  { map } for  pid=22951 comm="syz.7.5233" path="/265/file2/memory.events" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  190.349541][T22893] lo speed is unknown, defaulting to 1000
[  190.411973][   T29] audit: type=1326 audit(1761355459.908:9851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22969 comm="syz.0.5241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  190.435601][   T29] audit: type=1326 audit(1761355459.908:9852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22969 comm="syz.0.5241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  190.459187][   T29] audit: type=1326 audit(1761355459.908:9853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22969 comm="syz.0.5241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  190.483261][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.524735][T23071] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5242'.
[  190.575916][T22893] chnl_net:caif_netlink_parms(): no params data found
[  190.675232][T22893] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.682344][T22893] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.722602][T22893] bridge_slave_0: entered allmulticast mode
[  190.740502][T22893] bridge_slave_0: entered promiscuous mode
[  190.761992][T22893] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.769131][T22893] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.779199][T22893] bridge_slave_1: entered allmulticast mode
[  190.786133][T22893] bridge_slave_1: entered promiscuous mode
[  190.837987][T22893] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.847326][T23169] syzkaller1: entered promiscuous mode
[  190.852915][T23169] syzkaller1: entered allmulticast mode
[  190.872103][T22893] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.881883][T23177] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=23177 comm=syz.9.5254
[  190.894619][T23177] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=23177 comm=syz.9.5254
[  190.932100][T23179] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5253'.
[  190.942215][T22893] team0: Port device team_slave_0 added
[  190.949515][T22893] team0: Port device team_slave_1 added
[  190.966029][T23179] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5253'.
[  190.985722][ T9432] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  190.996794][T22893] batman_adv: batadv0: Adding interface: batadv_slave_0
[  191.003796][T22893] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  191.029920][T22893] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  191.058605][ T9432] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  191.072104][T22893] batman_adv: batadv0: Adding interface: batadv_slave_1
[  191.079177][T22893] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  191.105211][T22893] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.119834][ T9432] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  191.143473][T23242] xt_hashlimit: max too large, truncated to 1048576
[  191.159262][T23242] Cannot find add_set index 0 as target
[  191.164881][ T9432] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  191.176455][T22893] hsr_slave_0: entered promiscuous mode
[  191.186666][T22893] hsr_slave_1: entered promiscuous mode
[  191.193496][T22893] debugfs: 'hsr0' already exists in 'hsr'
[  191.199297][T22893] Cannot create hsr debugfs directory
[  191.244397][T23291] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5263'.
[  191.253327][T23291] netlink: 348 bytes leftover after parsing attributes in process `syz.9.5263'.
[  191.262481][T23291] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5263'.
[  191.271404][T23291] netlink: 348 bytes leftover after parsing attributes in process `syz.9.5263'.
[  191.370640][T23293] lo speed is unknown, defaulting to 1000
[  191.426873][T23371] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  191.580275][T23406] SELinux: failed to load policy
[  191.636308][T23418] netlink: 'syz.0.5294': attribute type 1 has an invalid length.
[  191.661182][T23418] bond2: (slave bridge0): making interface the new active one
[  191.669146][T23418] bond2: (slave bridge0): Enslaving as an active interface with an up link
[  191.792036][T22893] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  191.810038][T22893] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  191.829880][T22893] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  191.839291][T22893] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  191.871667][T23497] loop9: detected capacity change from 0 to 1024
[  191.879443][T23497] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  191.890464][T23497] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  191.892618][T22893] 8021q: adding VLAN 0 to HW filter on device bond0
[  191.908874][T23497] JBD2: no valid journal superblock found
[  191.914704][T23497] EXT4-fs (loop9): Could not load journal inode
[  191.924423][T22893] 8021q: adding VLAN 0 to HW filter on device team0
[  191.926463][T23497] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  191.941736][ T9432] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.948827][ T9432] bridge0: port 1(bridge_slave_0) entered forwarding state
[  191.958124][ T9432] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.965318][ T9432] bridge0: port 2(bridge_slave_1) entered forwarding state
[  192.039214][T22893] 8021q: adding VLAN 0 to HW filter on device batadv0
[  192.169059][T22893] veth0_vlan: entered promiscuous mode
[  192.177363][T22893] veth1_vlan: entered promiscuous mode
[  192.194131][T22893] veth0_macvtap: entered promiscuous mode
[  192.201690][T22893] veth1_macvtap: entered promiscuous mode
[  192.213079][T22893] batman_adv: batadv0: Interface activated: batadv_slave_0
[  192.225878][T22893] batman_adv: batadv0: Interface activated: batadv_slave_1
[  192.237816][ T9426] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  192.246775][ T9426] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  192.255792][ T9426] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  192.276610][ T9426] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  192.385163][T23556] loop7: detected capacity change from 0 to 512
[  192.392689][T23556] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  192.413499][T23556] EXT4-fs (loop7): 1 truncate cleaned up
[  192.420008][T23556] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.493018][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.708651][T23605] netlink: 'syz.0.5334': attribute type 1 has an invalid length.
[  192.779255][T23625] loop7: detected capacity change from 0 to 256
[  192.800109][T23625] FAT-fs (loop7): Directory bread(block 64) failed
[  192.816383][T23625] FAT-fs (loop7): Directory bread(block 65) failed
[  192.823321][T23625] FAT-fs (loop7): Directory bread(block 66) failed
[  192.830214][T23625] FAT-fs (loop7): Directory bread(block 67) failed
[  192.842995][T23625] FAT-fs (loop7): Directory bread(block 68) failed
[  192.849909][T23625] FAT-fs (loop7): Directory bread(block 69) failed
[  192.856893][T23625] FAT-fs (loop7): Directory bread(block 70) failed
[  192.864041][T23625] FAT-fs (loop7): Directory bread(block 71) failed
[  192.870749][T23625] FAT-fs (loop7): Directory bread(block 72) failed
[  192.878081][T23625] FAT-fs (loop7): Directory bread(block 73) failed
[  192.918630][T23625] syz.7.5340: attempt to access beyond end of device
[  192.918630][T23625] loop7: rw=2049, sector=1224, nr_sectors = 8 limit=256
[  192.947554][T23625] syz.7.5340: attempt to access beyond end of device
[  192.947554][T23625] loop7: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  192.952297][T23645] netlink: 'syz.8.5349': attribute type 1 has an invalid length.
[  192.961292][T23625] Buffer I/O error on dev loop7, logical block 306, lost async page write
[  192.982015][T23645] batman_adv: batadv0: Adding interface: bridge1
[  192.988508][T23645] batman_adv: batadv0: The MTU of interface bridge1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  193.014025][T23645] batman_adv: batadv0: Not using interface bridge1 (retrying later): interface not active
[  193.026698][  T383] kworker/u8:5: attempt to access beyond end of device
[  193.026698][  T383] loop7: rw=1, sector=1224, nr_sectors = 4 limit=256
[  193.401223][T23724] netlink: 'syz.2.5382': attribute type 1 has an invalid length.
[  193.469829][T23741] loop9: detected capacity change from 0 to 256
[  193.487906][T23741] FAT-fs (loop9): Directory bread(block 64) failed
[  193.496670][T23741] FAT-fs (loop9): Directory bread(block 65) failed
[  193.503468][T23741] FAT-fs (loop9): Directory bread(block 66) failed
[  193.510570][T23741] FAT-fs (loop9): Directory bread(block 67) failed
[  193.517545][T23741] FAT-fs (loop9): Directory bread(block 68) failed
[  193.530231][T23741] FAT-fs (loop9): Directory bread(block 69) failed
[  193.536830][T23741] FAT-fs (loop9): Directory bread(block 70) failed
[  193.543489][T23741] FAT-fs (loop9): Directory bread(block 71) failed
[  193.550246][T23741] FAT-fs (loop9): Directory bread(block 72) failed
[  193.558504][T23741] FAT-fs (loop9): Directory bread(block 73) failed
[  193.595126][T23741] syz.9.5387: attempt to access beyond end of device
[  193.595126][T23741] loop9: rw=2049, sector=1224, nr_sectors = 8 limit=256
[  193.609899][T23741] syz.9.5387: attempt to access beyond end of device
[  193.609899][T23741] loop9: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  193.623474][T23741] Buffer I/O error on dev loop9, logical block 306, lost async page write
[  193.654276][  T155] kworker/u8:4: attempt to access beyond end of device
[  193.654276][  T155] loop9: rw=1, sector=1224, nr_sectors = 4 limit=256
[  193.962414][ T9409] Bluetooth: hci0: Frame reassembly failed (-84)
[  194.052361][T23803] loop7: detected capacity change from 0 to 1024
[  194.059929][T23803] EXT4-fs: Ignoring removed nomblk_io_submit option
[  194.075056][T23803] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.089591][   T29] kauditd_printk_skb: 117 callbacks suppressed
[  194.089609][   T29] audit: type=1400 audit(1761355463.761:9971): avc:  denied  { map } for  pid=23802 comm="syz.7.5411" path="/296/file1/file1" dev="loop7" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  194.120670][   T29] audit: type=1400 audit(1761355463.761:9972): avc:  denied  { execute } for  pid=23802 comm="syz.7.5411" path="/296/file1/file1" dev="loop7" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  194.216894][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.436659][   T29] audit: type=1326 audit(1761355464.129:9973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23749 comm="syz.2.5399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7fc00000
[  194.904433][   T29] audit: type=1400 audit(1761355464.622:9974): avc:  denied  { create } for  pid=23844 comm="syz.7.5425" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  194.932032][   T29] audit: type=1400 audit(1761355464.643:9975): avc:  denied  { connect } for  pid=23844 comm="syz.7.5425" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  194.959312][   T29] audit: type=1326 audit(1761355464.685:9976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23846 comm="syz.0.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  194.982983][   T29] audit: type=1326 audit(1761355464.685:9977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23846 comm="syz.0.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  195.023196][   T29] audit: type=1326 audit(1761355464.738:9978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23846 comm="syz.0.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  195.046779][   T29] audit: type=1326 audit(1761355464.738:9979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23846 comm="syz.0.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  195.110997][T23857] __nla_validate_parse: 32 callbacks suppressed
[  195.111016][T23857] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5432'.
[  195.137218][   T29] audit: type=1326 audit(1761355464.864:9980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23860 comm="syz.0.5434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  195.272181][T23881] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5443'.
[  195.324566][T23885] ip6gre1: entered allmulticast mode
[  195.567823][T23912] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5455'.
[  195.693401][ T3480] hid_parser_main: 55 callbacks suppressed
[  195.693437][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.706910][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.714498][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.722023][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.729499][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.736932][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.744421][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.751891][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.759505][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.767019][ T3480] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  195.775399][ T3480] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  195.828890][T23946] netlink: 'syz.0.5464': attribute type 10 has an invalid length.
[  195.836991][T23946] ipvlan0: entered allmulticast mode
[  195.842438][T23946] veth0_vlan: entered allmulticast mode
[  195.849066][T23946] team0: Device ipvlan0 failed to register rx_handler
[  195.887669][T23952] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5466'.
[  195.921153][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  195.927288][ T3569] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  195.976564][T23966] ip6gre1: entered allmulticast mode
[  196.063389][T23976] wireguard0: entered promiscuous mode
[  196.069188][T23976] wireguard0: entered allmulticast mode
[  196.237435][T23994] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5482'.
[  196.297261][T24004] ip6gre1: entered allmulticast mode
[  196.440040][  T383] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  197.059358][T24047] loop8: detected capacity change from 0 to 128
[  197.067502][T24047] FAT-fs (loop8): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  197.106430][T24055] loop8: detected capacity change from 0 to 1024
[  197.113514][T24055] EXT4-fs: Ignoring removed nomblk_io_submit option
[  197.131974][T24055] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.252799][T24070] pim6reg: entered allmulticast mode
[  197.260289][T24070] pim6reg: left allmulticast mode
[  197.386973][T24085] loop9: detected capacity change from 0 to 512
[  197.426314][T24085] EXT4-fs: Ignoring removed bh option
[  197.442544][T24085] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  197.493420][T24085] EXT4-fs (loop9): 1 truncate cleaned up
[  197.499548][T24085] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.525699][T22893] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.611751][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.808429][T24115] netlink: 76 bytes leftover after parsing attributes in process `syz.8.5522'.
[  198.132734][T10178] IPVS: starting estimator thread 0...
[  198.225880][T24154] IPVS: using max 2304 ests per chain, 115200 per kthread
[  198.388141][T24176] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5546'.
[  198.421152][T24176] hsr_slave_0: left promiscuous mode
[  198.429267][T24176] hsr_slave_1: left promiscuous mode
[  198.515666][T24184] netlink: 'syz.8.5550': attribute type 13 has an invalid length.
[  198.540413][T10184] IPVS: starting estimator thread 0...
[  198.626439][T24191] IPVS: using max 2304 ests per chain, 115200 per kthread
[  198.641647][T24184] bridge0: port 2(bridge_slave_1) entered disabled state
[  198.649049][T24184] bridge0: port 1(bridge_slave_0) entered disabled state
[  198.701253][T24184] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  198.712944][T24184] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  198.770506][  T383] netdevsim netdevsim8 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.780254][  T383] netdevsim netdevsim8 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.797729][  T383] netdevsim netdevsim8 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.827323][  T383] netdevsim netdevsim8 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.923163][   T29] kauditd_printk_skb: 58 callbacks suppressed
[  198.923240][   T29] audit: type=1326 audit(1761355468.843:10039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24214 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  198.975910][   T29] audit: type=1326 audit(1761355468.874:10040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24214 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  198.999508][   T29] audit: type=1326 audit(1761355468.895:10041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24214 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  199.023456][   T29] audit: type=1326 audit(1761355468.895:10042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24214 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  199.047332][   T29] audit: type=1326 audit(1761355468.895:10043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24218 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f7c9c0f1885 code=0x7ffc0000
[  199.129105][   T29] audit: type=1326 audit(1761355469.000:10044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24214 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  199.152767][   T29] audit: type=1326 audit(1761355469.000:10045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24214 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  199.176432][   T29] audit: type=1326 audit(1761355469.000:10046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24214 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  199.200297][   T29] audit: type=1326 audit(1761355469.053:10047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24218 comm="syz.2.5562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  199.249623][T24231] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5569'.
[  199.455772][T24247] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  199.500160][   T29] audit: type=1326 audit(1761355469.441:10048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24249 comm="syz.7.5578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  199.532527][T24258] program syz.0.5584 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  199.549240][T24261] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5579'.
[  199.558489][T24261] hsr_slave_0: left promiscuous mode
[  199.798193][T24290] loop7: detected capacity change from 0 to 512
[  199.839987][T24290] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  199.894498][T24290] EXT4-fs (loop7): 1 truncate cleaned up
[  199.900488][T24290] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.035859][T24307] __nla_validate_parse: 1 callbacks suppressed
[  200.035875][T24307] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5600'.
[  200.052673][T24307] hsr_slave_0: left promiscuous mode
[  200.064576][T24307] hsr_slave_1: left promiscuous mode
[  200.108538][T24315] netlink: 'syz.9.5602': attribute type 16 has an invalid length.
[  200.116551][T24315] netlink: 156 bytes leftover after parsing attributes in process `syz.9.5602'.
[  200.170934][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.247411][  T155] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  200.454301][T24346] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5609'.
[  200.473163][T24346] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5609'.
[  200.676978][T24367] vlan2: entered allmulticast mode
[  200.818363][T24390] netlink: 'syz.2.5628': attribute type 10 has an invalid length.
[  200.827934][T24390] ipvlan0: entered allmulticast mode
[  200.833283][T24390] veth0_vlan: entered allmulticast mode
[  200.840200][T24390] team0: Device ipvlan0 failed to register rx_handler
[  200.983270][T24413] 9pnet_fd: Insufficient options for proto=fd
[  201.042784][T24426] netlink: 'syz.0.5641': attribute type 10 has an invalid length.
[  201.051376][T24426] team0: Device ipvlan0 failed to register rx_handler
[  201.182539][T24446] loop9: detected capacity change from 0 to 1024
[  201.256766][T24465] netlink: 60 bytes leftover after parsing attributes in process `syz.2.5658'.
[  201.342119][T24475] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  201.350396][T24475] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  201.532588][T24497] SELinux: security_context_str_to_sid (s) failed with errno=-22
[  201.544871][T24499] netlink: 'syz.2.5674': attribute type 16 has an invalid length.
[  201.552898][T24499] netlink: 156 bytes leftover after parsing attributes in process `syz.2.5674'.
[  201.591673][T24506] vlan2: entered allmulticast mode
[  201.736057][T24536] ipvlan0: left allmulticast mode
[  201.741220][T24536] veth0_vlan: left allmulticast mode
[  201.768839][T24536] ip6gre1: left allmulticast mode
[  201.786987][T24545] vlan2: entered allmulticast mode
[  201.842623][T24557] loop9: detected capacity change from 0 to 512
[  201.858798][T24557] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2
[  201.867160][T24557] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2
[  201.882123][T24557] EXT4-fs (loop9): 1 truncate cleaned up
[  201.888380][T24557] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.910708][T24557] EXT4-fs error (device loop9): ext4_readdir:264: inode #2: block 4: comm syz.9.5697: path /370/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=131071, rec_len=65535, size=1024 fake=0
[  201.945061][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.000920][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  202.149475][T24613] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5713'.
[  202.274004][T24627] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5720'.
[  202.282904][T24627] netlink: 32 bytes leftover after parsing attributes in process `syz.8.5720'.
[  202.291950][T24627] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5720'.
[  202.440486][T24656] SELinux:  policydb version -2036594179 does not match my version range 15-35
[  202.449890][T24656] SELinux: failed to load policy
[  202.459708][T24660] loop8: detected capacity change from 0 to 512
[  202.469925][T24660] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -2
[  202.478161][T24660] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -2
[  202.486963][T24660] EXT4-fs (loop8): 1 truncate cleaned up
[  202.493826][T24660] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.526472][T24660] EXT4-fs error (device loop8): ext4_readdir:264: inode #2: block 4: comm syz.8.5734: path /55/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=131071, rec_len=65535, size=1024 fake=0
[  202.582473][T22893] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.693381][T24690] SELinux: failed to load policy
[  202.729856][T24702] loop7: detected capacity change from 0 to 512
[  202.757836][T24702] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[  202.765997][T24702] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2
[  202.774973][T24702] EXT4-fs (loop7): 1 truncate cleaned up
[  202.780984][T24702] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.796735][T24702] EXT4-fs error (device loop7): ext4_readdir:264: inode #2: block 4: comm syz.7.5753: path /373/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=131071, rec_len=65535, size=1024 fake=0
[  202.836031][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.872122][T24713] 0�X���: left allmulticast mode
[  202.905162][T24713] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  202.913640][T24758] vhci_hcd: invalid port number 23
[  202.918893][T24758] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  202.922915][T24713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  202.949930][T24713] ipvlan0: left allmulticast mode
[  202.955059][T24713] veth0_vlan: left allmulticast mode
[  202.965819][T24713] ip6gre1: left allmulticast mode
[  202.986619][T10178] lo speed is unknown, defaulting to 1000
[  202.992593][T10178] syz2: Port: 1 Link DOWN
[  203.008286][T24750] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.020955][ T9426] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  203.054809][ T9426] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  203.093420][ T9426] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  203.112724][T24803] pim6reg: entered allmulticast mode
[  203.128869][T24803] pim6reg: left allmulticast mode
[  203.172929][T24813] hub 9-0:1.0: USB hub found
[  203.177841][T24813] hub 9-0:1.0: 8 ports detected
[  203.810257][   T29] kauditd_printk_skb: 184 callbacks suppressed
[  203.810274][   T29] audit: type=1326 audit(1761355473.977:10233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  203.840346][   T29] audit: type=1326 audit(1761355473.977:10234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  203.864014][   T29] audit: type=1326 audit(1761355473.977:10235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  203.887922][   T29] audit: type=1326 audit(1761355473.977:10236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  203.911741][   T29] audit: type=1326 audit(1761355473.977:10237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  203.935414][   T29] audit: type=1326 audit(1761355473.977:10238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  203.959112][   T29] audit: type=1326 audit(1761355473.977:10239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  203.982791][   T29] audit: type=1326 audit(1761355473.977:10240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  204.006575][   T29] audit: type=1326 audit(1761355473.977:10241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  204.030223][   T29] audit: type=1326 audit(1761355473.977:10242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24891 comm="syz.0.5798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  204.380159][T24953] sd 0:0:1:0: device reset
[  204.488338][T24973] vhci_hcd: invalid port number 96
[  204.493546][T24973] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  204.628686][T25000] sd 0:0:1:0: device reset
[  204.794265][T25029] loop7: detected capacity change from 0 to 2048
[  204.867607][T25029]  loop7: p1 < > p4
[  204.872180][T25029] loop7: p4 size 8388608 extends beyond EOD, truncated
[  204.946866][T25060] sd 0:0:1:0: device reset
[  204.972096][T25063] __nla_validate_parse: 10 callbacks suppressed
[  204.972175][T25063] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5854'.
[  204.987449][T25063] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5854'.
[  204.989774][T25064] 9pnet_fd: Insufficient options for proto=fd
[  204.996430][T25063] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5854'.
[  205.128565][T25098] sd 0:0:1:0: device reset
[  205.175914][T25105] lo speed is unknown, defaulting to 1000
[  205.712132][T25195] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5896'.
[  206.356858][T25244] lo speed is unknown, defaulting to 1000
[  206.800640][T25334] lo speed is unknown, defaulting to 1000
[  206.999839][T25383] netlink: 176 bytes leftover after parsing attributes in process `syz.0.5954'.
[  207.081566][T25388] loop9: detected capacity change from 0 to 1024
[  207.088821][T25388] EXT4-fs: inline encryption not supported
[  207.094810][T25388] EXT4-fs: Ignoring removed i_version option
[  207.117034][T25392] lo speed is unknown, defaulting to 1000
[  207.138436][T25388] EXT4-fs (loop9): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  207.217117][T25388] ext4 filesystem being mounted at /432/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.364628][T17303] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  207.485046][T25478] 9pnet_fd: Insufficient options for proto=fd
[  207.491937][T25423] netlink: 'syz.7.5959': attribute type 4 has an invalid length.
[  207.499865][T25423] netlink: 152 bytes leftover after parsing attributes in process `syz.7.5959'.
[  207.530450][T25423] .`: renamed from $H�
[  207.863323][T25517] sg_write: data in/out 49276/1 bytes for SCSI command 0x1c-- guessing data in;
[  207.863323][T25517]    program syz.0.5984 not setting count and/or reply_len properly
[  207.974616][T25525] lo speed is unknown, defaulting to 1000
[  208.090662][T25575] lo speed is unknown, defaulting to 1000
[  208.266071][T25607] netlink: 96 bytes leftover after parsing attributes in process `syz.7.6009'.
[  208.327759][T25617] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6003'.
[  208.839077][   T29] kauditd_printk_skb: 235 callbacks suppressed
[  208.839095][   T29] audit: type=1326 audit(1761355479.258:10478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25631 comm="syz.8.6005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fa26efc9 code=0x7ffc0000
[  208.889458][   T29] audit: type=1326 audit(1761355479.258:10479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25631 comm="syz.8.6005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fa26efc9 code=0x7ffc0000
[  208.913125][   T29] audit: type=1326 audit(1761355479.258:10480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25631 comm="syz.8.6005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f50fa26efc9 code=0x7ffc0000
[  208.936727][   T29] audit: type=1326 audit(1761355479.258:10481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25631 comm="syz.8.6005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fa26efc9 code=0x7ffc0000
[  208.960356][   T29] audit: type=1326 audit(1761355479.258:10482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25631 comm="syz.8.6005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f50fa26efc9 code=0x7ffc0000
[  208.984189][   T29] audit: type=1326 audit(1761355479.258:10483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25631 comm="syz.8.6005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fa26efc9 code=0x7ffc0000
[  209.007834][   T29] audit: type=1326 audit(1761355479.258:10484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25631 comm="syz.8.6005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f50fa26efc9 code=0x7ffc0000
[  209.031647][   T29] audit: type=1326 audit(1761355479.258:10485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25631 comm="syz.8.6005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fa26efc9 code=0x7ffc0000
[  209.252249][T25660] lo speed is unknown, defaulting to 1000
[  209.371963][T25693] syzkaller1: entered promiscuous mode
[  209.377504][T25693] syzkaller1: entered allmulticast mode
[  209.416923][T25699] netlink: 96 bytes leftover after parsing attributes in process `syz.0.6025'.
[  209.523338][T25711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6030'.
[  209.535011][T25712] program syz.9.6029 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  209.544582][T25712] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  209.603268][T25716] loop7: detected capacity change from 0 to 1024
[  209.627369][T25716] EXT4-fs: inline encryption not supported
[  209.633325][T25716] EXT4-fs: Ignoring removed i_version option
[  209.644176][   T29] audit: type=1326 audit(1761355480.098:10486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25724 comm="syz.0.6034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  209.716759][   T29] audit: type=1326 audit(1761355480.129:10487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25724 comm="syz.0.6034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  209.772794][T25716] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  209.848537][T25743] lo speed is unknown, defaulting to 1000
[  209.854456][T25716] ext4 filesystem being mounted at /440/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.868392][T25750] netlink: 96 bytes leftover after parsing attributes in process `syz.8.6039'.
[  209.928242][T25764] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6043'.
[  209.977132][T25780] program syz.8.6044 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  210.009939][T25780] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  210.027217][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  210.132564][T25804] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  211.484408][T25814] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6058'.
[  211.613102][T25831] loop8: detected capacity change from 0 to 1024
[  211.622273][T25831] EXT4-fs: Ignoring removed orlov option
[  211.657542][T25831] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.895073][T22893] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.998881][T25815] netlink: 'syz.0.6057': attribute type 4 has an invalid length.
[  212.006658][T25815] netlink: 152 bytes leftover after parsing attributes in process `syz.0.6057'.
[  212.021012][T25870] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  212.028894][T25870] SELinux: failed to load policy
[  212.048074][T25815] .`: renamed from bond0
[  212.421314][T25890] lo speed is unknown, defaulting to 1000
[  212.453099][T25898] 9pnet_fd: Insufficient options for proto=fd
[  212.474802][T25916] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6087'.
[  212.755084][T25964] lo speed is unknown, defaulting to 1000
[  212.798167][T25989] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  212.886755][T25963] lo speed is unknown, defaulting to 1000
[  212.960702][T26019] netlink: 'syz.8.6112': attribute type 1 has an invalid length.
[  212.968516][T26019] netlink: 224 bytes leftover after parsing attributes in process `syz.8.6112'.
[  213.095587][T26043] program syz.9.6116 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  213.141537][T26047] 9pnet_fd: Insufficient options for proto=fd
[  213.322086][T26057] lo speed is unknown, defaulting to 1000
[  213.343567][T26066] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  213.400728][T26064] lo speed is unknown, defaulting to 1000
[  213.561059][T26059] netlink: 'syz.9.6122': attribute type 4 has an invalid length.
[  213.568936][T26059] netlink: 152 bytes leftover after parsing attributes in process `syz.9.6122'.
[  213.604365][T26059] .`: renamed from bond0 (while UP)
[  213.662576][   T29] kauditd_printk_skb: 42 callbacks suppressed
[  213.662594][   T29] audit: type=1326 audit(1761355484.308:10530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26133 comm="syz.0.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  213.741906][   T29] audit: type=1326 audit(1761355484.308:10531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26133 comm="syz.0.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  213.765644][   T29] audit: type=1326 audit(1761355484.350:10532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26133 comm="syz.0.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  213.789295][   T29] audit: type=1326 audit(1761355484.350:10533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26133 comm="syz.0.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  213.812921][   T29] audit: type=1326 audit(1761355484.361:10534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26137 comm="syz.2.6132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  213.836542][   T29] audit: type=1326 audit(1761355484.361:10535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26137 comm="syz.2.6132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  213.860186][   T29] audit: type=1326 audit(1761355484.361:10536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26137 comm="syz.2.6132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  213.883788][   T29] audit: type=1326 audit(1761355484.361:10537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26137 comm="syz.2.6132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  213.907635][   T29] audit: type=1326 audit(1761355484.361:10538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26137 comm="syz.2.6132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  213.931416][   T29] audit: type=1400 audit(1761355484.371:10539): avc:  denied  { create } for  pid=26139 comm="syz.0.6133" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  214.010321][T26148] loop7: detected capacity change from 0 to 512
[  214.010794][T26148] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  214.245347][T26182] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.255133][T26182] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.824858][T26198] Set syz1 is full, maxelem 65536 reached
[  214.853853][T26225] lo speed is unknown, defaulting to 1000
[  217.489490][T26273] lo speed is unknown, defaulting to 1000
[  217.628838][T26321] netlink: 'syz.2.6177': attribute type 4 has an invalid length.
[  217.636749][T26321] netlink: 152 bytes leftover after parsing attributes in process `syz.2.6177'.
[  217.666820][T26321] .`: renamed from bond0
[  217.864660][T26362] atomic_op ffff888102294128 conn xmit_atomic 0000000000000000
[  218.038933][T26404] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6215'.
[  218.054741][T26404] IPVS: Error connecting to the multicast addr
[  218.467241][T26464] netlink: 24 bytes leftover after parsing attributes in process `syz.9.6240'.
[  218.476481][T26464] IPVS: Error connecting to the multicast addr
[  218.613512][T26434] Set syz1 is full, maxelem 65536 reached
[  218.802330][   T29] kauditd_printk_skb: 99 callbacks suppressed
[  218.802348][   T29] audit: type=1326 audit(1761355489.715:10639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26506 comm="syz.0.6256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  218.832215][   T29] audit: type=1326 audit(1761355489.715:10640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26506 comm="syz.0.6256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  218.856019][   T29] audit: type=1326 audit(1761355489.715:10641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26506 comm="syz.0.6256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  218.893023][   T29] audit: type=1326 audit(1761355489.715:10642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26506 comm="syz.0.6256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  218.917003][   T29] audit: type=1326 audit(1761355489.715:10643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26506 comm="syz.0.6256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83142eefc9 code=0x7ffc0000
[  218.969266][T26525] atomic_op ffff888118a2bd28 conn xmit_atomic 0000000000000000
[  218.993080][T26529] loop9: detected capacity change from 0 to 128
[  219.002092][T26529] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  219.051231][T26529] FAT-fs (loop9): FAT read failed (blocknr 128)
[  219.114773][   T29] audit: type=1400 audit(1761355490.030:10644): avc:  denied  { create } for  pid=26554 comm="syz.9.6273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  219.134815][   T29] audit: type=1400 audit(1761355490.041:10645): avc:  denied  { sys_admin } for  pid=26554 comm="syz.9.6273" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  219.176544][   T29] audit: type=1400 audit(1761355490.104:10646): avc:  denied  { name_bind } for  pid=26560 comm="syz.2.6274" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  219.217929][T26565] atomic_op ffff888102294528 conn xmit_atomic 0000000000000000
[  219.348771][   T29] audit: type=1400 audit(1761355490.282:10647): avc:  denied  { accept } for  pid=26587 comm="syz.8.6285" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  219.373248][T26589] loop7: detected capacity change from 0 to 128
[  219.373425][T26592] loop8: detected capacity change from 0 to 256
[  219.397512][T26589] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  219.451322][T26589] FAT-fs (loop7): FAT read failed (blocknr 128)
[  219.471552][T26608] pim6reg1: entered promiscuous mode
[  219.476988][T26608] pim6reg1: entered allmulticast mode
[  220.000101][T26620] tipc: Started in network mode
[  220.005050][T26620] tipc: Node identity ac14140f, cluster identity 4711
[  220.012195][T26620] tipc: New replicast peer: 255.255.255.83
[  220.018207][T26620] tipc: Enabled bearer <udp:�>, priority 10
[  220.032368][T26630] atomic_op ffff888102294928 conn xmit_atomic 0000000000000000
[  220.128918][  T155] Bluetooth: hci0: Frame reassembly failed (-84)
[  221.084902][T10183] tipc: Node number set to 2886997007
[  222.056293][ T3569] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  222.056473][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  222.088385][   T29] audit: type=1326 audit(1761355493.159:10648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26655 comm="syz.2.6308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9c0befc9 code=0x7ffc0000
[  222.215457][T26670] netlink: 16 bytes leftover after parsing attributes in process `syz.9.6313'.
[  222.250384][T26676] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  222.377007][T26692] netlink: 'syz.8.6303': attribute type 4 has an invalid length.
[  222.384969][T26692] netlink: 152 bytes leftover after parsing attributes in process `syz.8.6303'.
[  222.413135][T26692] .`: renamed from bond0
[  222.762751][T26743] IPv6: addrconf: prefix option has invalid lifetime
[  222.845429][T26756] netlink: 444 bytes leftover after parsing attributes in process `syz.7.6354'.
[  222.864438][T26756] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6354'.
[  223.043390][T26792] atomic_op ffff88812b31d528 conn xmit_atomic 0000000000000000
[  223.078857][T26794] can0: slcan on ttyS3.
[  223.116817][T26794] can0 (unregistered): slcan off ttyS3.
[  223.132112][T26794] Falling back ldisc for ttyS3.
[  223.197831][T26810] serio: Serial port ptm0
[  223.297650][T26836] vhci_hcd: invalid port number 96
[  223.302923][T26836] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  223.527604][T26879] loop7: detected capacity change from 0 to 1024
[  223.544681][T26881] netlink: 80 bytes leftover after parsing attributes in process `syz.8.6391'.
[  223.569830][T26879] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.583316][   T29] kauditd_printk_skb: 142 callbacks suppressed
[  223.583334][   T29] audit: type=1400 audit(1761355494.734:10791): avc:  denied  { mount } for  pid=26878 comm="syz.7.6389" name="/" dev="loop7" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  223.620025][   T29] audit: type=1400 audit(1761355494.765:10792): avc:  denied  { read } for  pid=26882 comm="syz.2.6390" path="socket:[65899]" dev="sockfs" ino=65899 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  223.705040][   T29] audit: type=1400 audit(1761355494.860:10793): avc:  denied  { mount } for  pid=26900 comm="syz.8.6396" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  223.727785][   T29] audit: type=1400 audit(1761355494.860:10794): avc:  denied  { unmount } for  pid=26900 comm="syz.8.6396" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  223.748080][   T29] audit: type=1400 audit(1761355494.860:10795): avc:  denied  { add_name } for  pid=26878 comm="syz.7.6389" name="cpuacct.usage_all" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  223.770256][   T29] audit: type=1400 audit(1761355494.860:10796): avc:  denied  { create } for  pid=26878 comm="syz.7.6389" name="cpuacct.usage_all" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  223.791772][   T29] audit: type=1400 audit(1761355494.860:10797): avc:  denied  { read append open } for  pid=26878 comm="syz.7.6389" path="/497/file1/cpuacct.usage_all" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  223.837709][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.850211][   T29] audit: type=1400 audit(1761355494.986:10798): avc:  denied  { unmount } for  pid=17643 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  223.871639][   T29] audit: type=1326 audit(1761355495.038:10799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26907 comm="syz.9.6398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e4a0defc9 code=0x7ffc0000
[  223.926803][   T29] audit: type=1326 audit(1761355495.038:10800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26907 comm="syz.9.6398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e4a0defc9 code=0x7ffc0000
[  223.970324][T26923] hub 9-0:1.0: USB hub found
[  223.981435][T26923] hub 9-0:1.0: 8 ports detected
[  224.085548][T26944] blktrace: Concurrent blktraces are not allowed on sg0
[  224.093789][T26945] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  224.362884][T26973] loop7: detected capacity change from 0 to 512
[  224.394678][T26973] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.410276][T26978] lo speed is unknown, defaulting to 1000
[  224.423990][T26973] ext4 filesystem being mounted at /503/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.453676][T26978] netlink: 'syz.2.6424': attribute type 6 has an invalid length.
[  224.523860][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.121379][T27068] xt_hashlimit: max too large, truncated to 1048576
[  225.136249][T27072] netlink: 'syz.7.6447': attribute type 12 has an invalid length.
[  225.329269][ T3415] page_pool_release_retry() stalled pool shutdown: id 125, 1 inflight 60 sec
[  225.396630][T27090] loop7: detected capacity change from 0 to 512
[  225.404218][T27090] EXT4-fs: Ignoring removed i_version option
[  225.410320][T27090] EXT4-fs: Ignoring removed bh option
[  225.421185][T27090] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.436446][T27090] ext4 filesystem being mounted at /515/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  225.477292][T17643] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.610691][T27110] netlink: 'syz.2.6463': attribute type 1 has an invalid length.
[  225.759772][T27115] netlink: 20 bytes leftover after parsing attributes in process `syz.8.6465'.
[  225.867911][T27125] rdma_op ffff8881040e7980 conn xmit_rdma 0000000000000000
[  225.927396][T27133] loop9: detected capacity change from 0 to 256
[  226.094878][T27135] ALSA: seq fatal error: cannot create timer (-19)
[  226.167683][T27153] netlink: 'syz.7.6482': attribute type 29 has an invalid length.
[  226.186750][T27153] netlink: 'syz.7.6482': attribute type 29 has an invalid length.
[  226.205986][T27153] netlink: 500 bytes leftover after parsing attributes in process `syz.7.6482'.
[  226.230176][T27156] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6481'.
[  226.355955][ T9409] netdevsim netdevsim9 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  226.366477][ T9409] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.450376][ T9409] netdevsim netdevsim9 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  226.460790][ T9409] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.557561][ T9409] netdevsim netdevsim9 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  226.568061][ T9409] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.645011][T27190] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  226.683890][ T9409] netdevsim netdevsim9 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  226.694328][ T9409] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.797496][T27183] lo speed is unknown, defaulting to 1000
[  226.813685][T27222] loop8: detected capacity change from 0 to 128
[  226.836092][T27222] FAT-fs (loop8): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  226.908583][ T9409] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[  226.918195][ T9409] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[  226.927711][ T9409] .` (unregistering): Released all slaves
[  226.936839][ T9409] bond1 (unregistering): Released all slaves
[  226.943417][ T9426] kworker/u8:58: attempt to access beyond end of device
[  226.943417][ T9426] loop8: rw=1, sector=169, nr_sectors = 8 limit=128
[  226.957082][ T9426] kworker/u8:58: attempt to access beyond end of device
[  226.957082][ T9426] loop8: rw=1, sector=185, nr_sectors = 16 limit=128
[  226.971855][ T9426] kworker/u8:58: attempt to access beyond end of device
[  226.971855][ T9426] loop8: rw=1, sector=209, nr_sectors = 8 limit=128
[  226.985466][ T9426] kworker/u8:58: attempt to access beyond end of device
[  226.985466][ T9426] loop8: rw=1, sector=225, nr_sectors = 8 limit=128
[  227.001392][ T9426] kworker/u8:58: attempt to access beyond end of device
[  227.001392][ T9426] loop8: rw=1, sector=241, nr_sectors = 8 limit=128
[  227.017600][ T9426] kworker/u8:58: attempt to access beyond end of device
[  227.017600][ T9426] loop8: rw=1, sector=257, nr_sectors = 8 limit=128
[  227.031786][ T9426] kworker/u8:58: attempt to access beyond end of device
[  227.031786][ T9426] loop8: rw=1, sector=273, nr_sectors = 8 limit=128
[  227.045344][ T9426] kworker/u8:58: attempt to access beyond end of device
[  227.045344][ T9426] loop8: rw=1, sector=289, nr_sectors = 8 limit=128
[  227.059134][ T9426] kworker/u8:58: attempt to access beyond end of device
[  227.059134][ T9426] loop8: rw=1, sector=305, nr_sectors = 8 limit=128
[  227.060615][T27183] chnl_net:caif_netlink_parms(): no params data found
[  227.072813][ T9426] kworker/u8:58: attempt to access beyond end of device
[  227.072813][ T9426] loop8: rw=1, sector=321, nr_sectors = 8 limit=128
[  227.095648][ T9426] FAT-fs (loop8): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  227.108116][ T9409] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  227.115673][ T9409] batman_adv: batadv0: Removing interface: batadv_slave_0
[  227.123304][ T9409] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  227.130701][ T9409] batman_adv: batadv0: Removing interface: batadv_slave_1
[  227.141137][ T9409] veth1_macvtap: left promiscuous mode
[  227.146725][ T9409] veth0_macvtap: left promiscuous mode
[  227.152311][ T9409] veth1_vlan: left promiscuous mode
[  227.157599][ T9409] veth0_vlan: left promiscuous mode
[  227.212020][ T9409] team0 (unregistering): Port device team_slave_1 removed
[  227.222630][ T9409] team0 (unregistering): Port device team_slave_0 removed
[  227.274267][T27183] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.281446][T27183] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.288674][T27183] bridge_slave_0: entered allmulticast mode
[  227.295301][T27183] bridge_slave_0: entered promiscuous mode
[  227.302178][T27183] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.309335][T27183] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.316642][T27183] bridge_slave_1: entered allmulticast mode
[  227.323204][T27183] bridge_slave_1: entered promiscuous mode
[  227.342896][T27183] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  227.353482][T27183] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  227.374056][T27183] team0: Port device team_slave_0 added
[  227.380688][T27183] team0: Port device team_slave_1 added
[  227.397575][T27183] batman_adv: batadv0: Adding interface: batadv_slave_0
[  227.404614][T27183] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  227.430748][T27183] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  227.442129][T27183] batman_adv: batadv0: Adding interface: batadv_slave_1
[  227.449220][T27183] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  227.475274][T27183] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  227.503249][T27183] hsr_slave_0: entered promiscuous mode
[  227.509678][T27183] hsr_slave_1: entered promiscuous mode
[  227.515887][T27183] debugfs: 'hsr0' already exists in 'hsr'
[  227.521635][T27183] Cannot create hsr debugfs directory
[  227.577880][ T9409] IPVS: stop unused estimator thread 0...
[  227.796213][T27183] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  227.805115][T27183] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  227.813878][T27183] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  227.822863][T27183] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  227.838702][T27183] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.845783][T27183] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.853060][T27183] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.860124][T27183] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.887160][T27183] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.897454][ T9409] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.905581][ T9409] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.919039][T27183] 8021q: adding VLAN 0 to HW filter on device team0
[  227.929629][  T155] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.936734][  T155] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.947310][  T155] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.954514][  T155] bridge0: port 2(bridge_slave_1) entered forwarding state
[  228.017480][T27183] 8021q: adding VLAN 0 to HW filter on device batadv0
[  228.120033][T27183] veth0_vlan: entered promiscuous mode
[  228.127825][T27183] veth1_vlan: entered promiscuous mode
[  228.142403][T27183] veth0_macvtap: entered promiscuous mode
[  228.150510][T27183] veth1_macvtap: entered promiscuous mode
[  228.162071][T27183] batman_adv: batadv0: Interface activated: batadv_slave_0
[  228.173690][T27183] batman_adv: batadv0: Interface activated: batadv_slave_1
[  228.184114][ T9409] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  228.193270][ T9409] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  228.202643][ T9409] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  228.213139][ T9409] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  228.263718][T27594] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6518'.
[  228.316045][ T9432] nci: nci_rsp_packet: unknown rsp opcode 0x73a
[  228.353307][   T29] kauditd_printk_skb: 279 callbacks suppressed
[  228.353322][   T29] audit: type=1326 audit(1761355499.742:11080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.415567][   T29] audit: type=1326 audit(1761355499.742:11081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.439296][   T29] audit: type=1326 audit(1761355499.742:11082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.463098][   T29] audit: type=1326 audit(1761355499.742:11083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.463180][T10179] kernel read not supported for file inotify (pid: 10179 comm: kworker/0:9)
[  228.495539][   T29] audit: type=1326 audit(1761355499.742:11084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.519175][   T29] audit: type=1326 audit(1761355499.742:11085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.542871][   T29] audit: type=1326 audit(1761355499.742:11086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.566554][   T29] audit: type=1326 audit(1761355499.742:11087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.590355][   T29] audit: type=1326 audit(1761355499.773:11088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cd39e1885 code=0x7ffc0000
[  228.614094][   T29] audit: type=1326 audit(1761355499.773:11089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27585 comm="syz.7.6516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd39aefc9 code=0x7ffc0000
[  228.639483][T27616] netlink: 'syz.8.6508': attribute type 12 has an invalid length.
[  228.659272][T27631] sd 0:0:1:0: device reset
[  228.800081][T27650] xt_hashlimit: max too large, truncated to 1048576
[  230.101628][T27708] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  230.101628][T27708]    program syz.8.6554 not setting count and/or reply_len properly
[  230.306406][T27721] SELinux:  Context system_u:object_r:audit_spool_t:s0 is not valid (left unmapped).
[  230.399431][T27702] Set syz1 is full, maxelem 65536 reached
[  230.460809][T27727] netlink: 'syz.8.6563': attribute type 2 has an invalid length.
[  230.563573][T27745] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  230.563573][T27745]    program syz.7.6569 not setting count and/or reply_len properly
[  230.715186][T27787] netlink: 'syz.2.6582': attribute type 29 has an invalid length.
[  230.725196][T27787] netlink: 'syz.2.6582': attribute type 29 has an invalid length.
[  230.734148][T27787] netlink: 500 bytes leftover after parsing attributes in process `syz.2.6582'.
[  230.787702][T27797] loop9: detected capacity change from 0 to 7
[  230.806750][T27797] Buffer I/O error on dev loop9, logical block 0, async page read
[  230.814863][T27797] Buffer I/O error on dev loop9, logical block 0, async page read
[  230.822752][T27797]  loop9: unable to read partition table
[  230.828840][T27797] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ���
[  230.828840][T27797] 
) failed (rc=-5)
[  230.941907][T27821] tipc: Started in network mode
[  230.947054][T27821] tipc: Node identity ac14140f, cluster identity 4711
[  230.974762][T27821] tipc: New replicast peer: 255.255.255.255
[  230.980940][T27821] tipc: Enabled bearer <udp:syz2>, priority 10
[  231.034087][T27824] IPv6: sit1: Disabled Multicast RS
[  231.039694][T27791] ==================================================================
[  231.047814][T27791] BUG: KCSAN: data-race in touch_atime / touch_atime
[  231.054551][T27791] 
[  231.056889][T27791] write to 0xffff88810410f540 of 4 bytes by task 27807 on cpu 0:
[  231.064623][T27791]  touch_atime+0x1e8/0x340
[  231.069157][T27791]  shmem_file_read_iter+0x477/0x540
[  231.074472][T27791]  copy_splice_read+0x442/0x660
[  231.079436][T27791]  splice_direct_to_actor+0x290/0x680
[  231.084855][T27791]  do_splice_direct+0xda/0x150
[  231.089646][T27791]  do_sendfile+0x380/0x650
[  231.094183][T27791]  __x64_sys_sendfile64+0x105/0x150
[  231.099407][T27791]  x64_sys_call+0x2bb4/0x3000
[  231.104099][T27791]  do_syscall_64+0xd2/0x200
[  231.108614][T27791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.114520][T27791] 
[  231.116846][T27791] read to 0xffff88810410f540 of 4 bytes by task 27791 on cpu 1:
[  231.124566][T27791]  touch_atime+0x194/0x340
[  231.129022][T27791]  shmem_file_read_iter+0x477/0x540
[  231.134243][T27791]  copy_splice_read+0x442/0x660
[  231.139101][T27791]  splice_direct_to_actor+0x290/0x680
[  231.144486][T27791]  do_splice_direct+0xda/0x150
[  231.149395][T27791]  do_sendfile+0x380/0x650
[  231.153835][T27791]  __x64_sys_sendfile64+0x105/0x150
[  231.159051][T27791]  x64_sys_call+0x2bb4/0x3000
[  231.163745][T27791]  do_syscall_64+0xd2/0x200
[  231.168256][T27791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.174164][T27791] 
[  231.176492][T27791] value changed: 0x21272b54 -> 0x21c75fde
[  231.182317][T27791] 
[  231.184648][T27791] Reported by Kernel Concurrency Sanitizer on:
[  231.190814][T27791] CPU: 1 UID: 0 PID: 27791 Comm: syz.2.6585 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  231.202212][T27791] Tainted: [W]=WARN
[  231.206019][T27791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  231.216085][T27791] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  231.232359][T27824] sit1: entered allmulticast mode
[  231.666804][ T9393] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[  231.676054][ T9393] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[  231.685046][ T9393] .` (unregistering): Released all slaves
[  231.693322][ T9393] bond1 (unregistering): Released all slaves
[  231.701337][ T9393] bond2 (unregistering): Released all slaves
[  231.735224][ T9393] tipc: Left network mode
[  231.742262][ T9393] batman_adv: batadv0: Removing interface: batadv_slave_0
[  231.750275][ T9393] batman_adv: batadv0: Removing interface: batadv_slave_1
[  231.780220][ T9393] team0 (unregistering): Port device team_slave_1 removed
[  231.789617][ T9393] team0 (unregistering): Port device team_slave_0 removed
[  232.047588][T10178] tipc: Node number set to 2886997007
[  232.193300][ T9393] IPVS: stop unused estimator thread 0...
[  232.270323][ T9393] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.299891][ T9393] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.355570][ T9393] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.402747][ T9393] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.462974][ T9393] bridge_slave_1: left allmulticast mode
[  232.468670][ T9393] bridge_slave_1: left promiscuous mode
[  232.474405][ T9393] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.482172][ T9393] bridge_slave_0: left allmulticast mode
[  232.487888][ T9393] bridge_slave_0: left promiscuous mode
[  232.493556][ T9393] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.583611][ T9393] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  232.593489][ T9393] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  232.603201][ T9393] bond0 (unregistering): Released all slaves
[  232.661036][ T9393] hsr_slave_0: left promiscuous mode
[  232.666877][ T9393] hsr_slave_1: left promiscuous mode
[  232.672715][ T9393] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  232.680123][ T9393] batman_adv: batadv0: Removing interface: batadv_slave_0
[  232.687690][ T9393] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  232.695093][ T9393] batman_adv: batadv0: Removing interface: batadv_slave_1
[  232.705770][ T9393] veth1_macvtap: left promiscuous mode
[  232.711432][ T9393] veth0_macvtap: left promiscuous mode
[  232.717187][ T9393] veth1_vlan: left promiscuous mode
[  232.722702][ T9393] veth0_vlan: left promiscuous mode
[  232.782935][ T9393] team0 (unregistering): Port device team_slave_1 removed
[  232.794308][ T9393] team0 (unregistering): Port device team_slave_0 removed