last executing test programs:

2m6.61975212s ago: executing program 32 (id=822):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x52, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff6b, 0x0, 0x0, 0x0, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, 0xffffffffffffffff)

2m6.399072901s ago: executing program 2 (id=831):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000780)='kfree\x00', r2}, 0x18)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="31832abd70000000000019000000180001801400020065727370616e30"], 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886)

2m6.274605444s ago: executing program 2 (id=838):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f00000008c0)=';', 0x1)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x632a, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0xb2, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xfffffffc}, 0x1c, 0x0}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000007540)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001d40)}, 0x5}], 0x1, 0x12003, 0x0)

2m6.228112678s ago: executing program 2 (id=840):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x9, 0x4, 0x10000, 0x1, 0x12}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000007c0)={0x400000000000000, 0x0, &(0x7f0000000700)={&(0x7f0000000000)=ANY=[@ANYBLOB="020f000015000000000000000000000005000500000000000a00000000000000000000000000000000432e0000000000000000000000000008001200000002000000f1edc4ea00000600000000000000000000000000000000000000000000000000000000000000fc01000000000000000000000000810005000600000000000a00000000000000ff0200000000000000000000000000010000000000000000010018"], 0xa8}}, 0x40080)

2m6.089840422s ago: executing program 2 (id=843):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x181097, 0x0)

2m6.051413435s ago: executing program 0 (id=854):
socket$packet(0x11, 0x3, 0x300)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001600), 0x109344, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xf, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000100000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000800008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r2}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x1018}, './file0\x00'})

2m5.991727771s ago: executing program 0 (id=846):
r0 = io_uring_setup(0x4714, &(0x7f00000000c0)={0x0, 0x34f9, 0x1, 0x800, 0xc0})
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000080), 0xc)
read(r1, &(0x7f0000000180)=""/52, 0xfffffdef)
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2m5.954708775s ago: executing program 2 (id=848):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000f80)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r2=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x82, &(0x7f0000000300)={r2, 0x10, 0x4}, 0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000080)={r2, @in6={{0xa, 0x4e20, 0x10c9, @remote, 0x7}}, 0x4, 0x6, 0x6, 0x6, 0x8a}, 0x0)

2m5.919800258s ago: executing program 2 (id=849):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000440), 0xc2982)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000140)={0xffffffff, 0x0, 0x1, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
poll(&(0x7f0000000080)=[{r0, 0x20}], 0x1, 0xfbe)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000000c0)={0x2, @tick=0x7ffe, 0x7, {0x3, 0xbb}, 0x3d, 0x2, 0x9})

2m5.890765341s ago: executing program 33 (id=849):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000440), 0xc2982)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000140)={0xffffffff, 0x0, 0x1, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
poll(&(0x7f0000000080)=[{r0, 0x20}], 0x1, 0xfbe)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000000c0)={0x2, @tick=0x7ffe, 0x7, {0x3, 0xbb}, 0x3d, 0x2, 0x9})

2m5.80563754s ago: executing program 0 (id=855):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)={0x58, 0x2, 0x6, 0x401, 0xe4340000, 0x0, {0x0, 0x0, 0x5}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0xf0}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x44000}, 0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="48000000090601080000000000000000050000000900020073797a3100000000050001000700000020000780060004404e21050005000700ff0000000c000180080001400a"], 0x48}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x4, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x800)

2m5.742794726s ago: executing program 0 (id=856):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x181097, 0x0)

2m5.740168816s ago: executing program 0 (id=857):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x208a022, 0x0, 0x1, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0xa)

2m5.568617063s ago: executing program 0 (id=860):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000000000)="aa", 0xffe0, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)

2m5.566634793s ago: executing program 34 (id=860):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000000000)="aa", 0xffe0, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)

2m5.303675439s ago: executing program 1 (id=870):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000008000000004"], 0x50)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/mdstat\x00', 0x1800, 0x0)
r0 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x0, 0x40000333}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000100)=[{&(0x7f0000000240)=""/216, 0xd8}], 0x1})
io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0)

2m5.075051481s ago: executing program 1 (id=872):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0xf4f5}, 0x18)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x3}, {0x0}, &(0x7f0000000440)=[{&(0x7f0000000a00)=""/4096, 0x1000}], 0x1, 0x60, 0x4}}], 0x48, 0x8004}, 0x0)

2m5.037620075s ago: executing program 1 (id=874):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2, 0x0, 0x8}, 0x18)
pidfd_send_signal(0xffffffffffffffff, 0xe, 0x0, 0x0)

2m4.999520708s ago: executing program 1 (id=876):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x181097, 0x0)

2m4.972865131s ago: executing program 1 (id=877):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000180)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x0, &(0x7f0000000180)={[{@gid}, {@dmode={'dmode', 0x3d, 0x6}}, {@check_strict}, {@unhide}, {@nocompress}, {@overriderock}, {@showassoc}, {@session={'session', 0x3d, 0x2c}}]}, 0x1, 0x6a1, &(0x7f00000029c0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
setresuid(0x0, 0x0, 0x0)

2m4.663557691s ago: executing program 1 (id=879):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
writev(r3, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)

2m4.640525144s ago: executing program 35 (id=879):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
writev(r3, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)

1m47.908498735s ago: executing program 8 (id=1493):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
writev(r2, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)

1m47.832579532s ago: executing program 8 (id=1497):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_emit_ethernet(0xfdef, &(0x7f0000000a40)=ANY=[], 0x0)

1m47.827148353s ago: executing program 8 (id=1500):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x9}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1m47.44860624s ago: executing program 8 (id=1511):
syz_mount_image$iso9660(&(0x7f0000000500), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="6e6f636f6d70726573732c6d61703d61636f726e2c00fdca1d4dd700cdcfba40b45917e455455f7d0c174ec1e2add115f002b56dc081"], 0x3, 0x54c, &(0x7f0000000540)="$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")
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a80)=ANY=[], 0x44}}, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x20000000002, &(0x7f0000000040))
ptrace$cont(0x21, r0, 0x80000001, 0x4)

1m47.420898983s ago: executing program 8 (id=1515):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc4c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000020000380100000800c00018006000100d10300000c000080080003400000000214000000110001"], 0xb0}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

1m46.998600164s ago: executing program 8 (id=1531):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x18)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x40, 0x24, 0xd0f, 0x70bd26, 0x25dfdbfc, {0x60, 0x0, 0x0, r3, {0x0, 0xfff0}, {0xffff, 0xffff}, {0x14, 0xc}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x7, 0x2, @TCA_ETF_PARMS={0xffffff7f, 0x1, {0xffffffc0, 0xb, 0x1}}}}]}, 0x40}}, 0x0)

1m46.865450348s ago: executing program 36 (id=1531):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x18)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x40, 0x24, 0xd0f, 0x70bd26, 0x25dfdbfc, {0x60, 0x0, 0x0, r3, {0x0, 0xfff0}, {0xffff, 0xffff}, {0x14, 0xc}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x7, 0x2, @TCA_ETF_PARMS={0xffffff7f, 0x1, {0xffffffc0, 0xb, 0x1}}}}]}, 0x40}}, 0x0)

1m41.108541922s ago: executing program 6 (id=1667):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x2, 0xbf22, 0x1, 0xffffffffffffffff, 0xfffffffe}, 0x50)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r0, 0x0, 0xa002a0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x4, r0}, 0x38)

1m41.027537s ago: executing program 6 (id=1669):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1f0519, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x3}, 0x6025, 0x4005, 0xb, 0x3, 0x2, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$perf(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x4000011, r2, 0x0)

1m40.942970628s ago: executing program 6 (id=1675):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x25)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

1m40.871115395s ago: executing program 6 (id=1680):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x2301091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x261)

1m40.814806631s ago: executing program 6 (id=1684):
prlimit64(0x0, 0xb, &(0x7f0000000140), 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = syz_clone(0x1b200000, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r2, 0x4)

1m40.560223086s ago: executing program 6 (id=1697):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020047b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000020000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002e40)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="8b332ebd700000000000150000000c009900040000003a00000004001d"], 0x38}, 0x1, 0x0, 0x0, 0x4000800}, 0x40000)

1m40.478438044s ago: executing program 37 (id=1697):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020047b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000020000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002e40)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="8b332ebd700000000000150000000c009900040000003a00000004001d"], 0x38}, 0x1, 0x0, 0x0, 0x4000800}, 0x40000)

3.121099974s ago: executing program 3 (id=4592):
socket$kcm(0xa, 0x5, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
set_mempolicy(0x3, 0x0, 0x80000000)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0x511e36599023629, 0x100040, 0xe, 0x2, 0x2, 0x2, 0x0, 0x0, 0x5, 0x21})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0x40a85321, &(0x7f0000000580)={{0x80}, 'port0\x00', 0x71, 0x100c75, 0x7, 0x4, 0x1ff, 0x3, 0x800008, 0x0, 0x1})

3.000442226s ago: executing program 3 (id=4593):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1813000007000000eab4040000000000001000000000", @ANYRES32, @ANYBLOB="827400"/19, @ANYRES32, @ANYRES32], 0x50)
r0 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000800)=[0x4], 0x0, 0x0, 0x1, 0x1}}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r2, 0x58, &(0x7f00000002c0)}, 0x10)

2.973887718s ago: executing program 3 (id=4594):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x82044, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

2.532360311s ago: executing program 9 (id=4606):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000680)='kmem_cache_free\x00', r1}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
io_submit(0x0, 0x0, 0x0)

2.484125196s ago: executing program 9 (id=4607):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7e9, &(0x7f00000017c0)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)

2.135344701s ago: executing program 4 (id=4616):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xffffffffffffffff, 0x8000000000000000}, 0x0, 0x10000, 0x4, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0x9, 0x0)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000280)={r1, r0}, 0xc)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, 0xffffffffffffffff)

2.008428183s ago: executing program 4 (id=4618):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f0000000000), &(0x7f0000000180)=r1}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000007c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="a183000000000000000005000000080003"], 0x38}, 0x1, 0x0, 0x0, 0x24048014}, 0x24000040)

1.93013706s ago: executing program 4 (id=4620):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0xc, &(0x7f0000000040)=0xfffffffc, 0x4)
recvmmsg(r0, &(0x7f0000002b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002b00)=""/17, 0x11}, 0x100}], 0x1, 0x45833af92e4b38ff, 0x0)

1.551911177s ago: executing program 3 (id=4622):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x4, @mcast2, 0x5}, 0x1c)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000000111ff00000000000000000000000000000000ff0200000000000000000000000000014f194e20"], 0x4b)

1.547540188s ago: executing program 7 (id=4623):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000280), 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x111, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r1, 0x0, 0x0)
close_range(r1, r1, 0x0)

1.459923367s ago: executing program 7 (id=4624):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SG_GET_VERSION_NUM(r0, 0x2284, &(0x7f0000000080))

1.458957307s ago: executing program 9 (id=4625):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd9b, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000140)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x1, 0x0)
symlinkat(&(0x7f0000000400)='./file0/../file0\x00', r3, &(0x7f0000000080)='./file0\x00')

1.352454197s ago: executing program 7 (id=4626):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0x17, &(0x7f0000000080)=0xfffffffd, 0x4)
recvmmsg(r0, &(0x7f0000000340)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x45833af92e4b38ff, 0x0)

1.352031647s ago: executing program 7 (id=4627):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r4}, 0x18)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fedbdf25080000001800028014000380100001800400030008000100050000000c00018008000100", @ANYRES32=r2], 0x38}, 0x1, 0x0, 0x0, 0x4000814}, 0x0)

1.287768294s ago: executing program 3 (id=4628):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x18)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0x190da)

1.287147174s ago: executing program 7 (id=4638):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x54, 0x10, 0xffffff1f, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10000}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x2}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x7}, @IFLA_GRE_REMOTE={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x28}}]}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x54}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1.080691584s ago: executing program 9 (id=4629):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000000)=[{{0x0, 0x1, 0x0, 0x1}, {0x3}}, {{0x4, 0x1, 0x1, 0x1}, {0x1, 0x0, 0x1, 0x1}}], 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000100)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}], 0x8)

1.009452441s ago: executing program 7 (id=4630):
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000006c0)=ANY=[], 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x80b0, 0x4d, 0x800020, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xfff7ffffffffffff, 0xffffffffffffffff, 0x1)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000180)=0x14)

1.009206221s ago: executing program 9 (id=4631):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x8001}, 0x18)
r2 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
connect$llc(r2, &(0x7f00000000c0)={0x1a, 0x0, 0x2, 0x8, 0x20, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}}, 0x10)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='setgroups\x00')
close_range(r3, 0xffffffffffffffff, 0x0)

1.009041071s ago: executing program 3 (id=4632):
r0 = socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x2204806, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0xfa, 0x69f, &(0x7f0000000f00)="$eJzs3c9v2+Ydx/EP5V+yOwTFNhRBkB9PkhVwsEyR5MaBkQEtR1E2N0kUSHmwgQFF1thFEDndkg5YfOl82Q+gA3berZcddts/MKDn/he7bUCx3QZsBw4kRVmyRMlqHLdZ3y8jEUV++Txfkgq/oSU+EgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAkOXUyuWKpYbX2t4x+Zxa4DcnLE9bW9CtdOLW1H4lK/6jYlEX01kXv328+I34rxu6nD67rGL8UNTha2+8fv9b84Vs/QkJfRGatcFnzw8fP+h2956eInZOMzf/ZVLhFEGbbssLfa9pb7rGC32zsb5evrNVD03da7jhbthxm8YJ3ELHD8yqc8tUNjbWjFva9bdbmzW74WYz732vWi6vmx8upQdaUil0trxGw2ttJjHx4jjmnvn4J2mAazeN2X/U3VublmQcVMlbWBgIqk5rqVquViuVarWyfnfj7r1yeX5kRjlmlfs0EnHmL1q8Ys7u5A28oEJc//9mSQ0V1dK2dmTG/jiqKZCvZs7ynqz+v3nHndjvYP3PqvxF6e3e4ktK6v/V9NnVvPqfk4uRSVYYt8TKmT/bz0KSkdEzPdehHuuBuupqT0/PoG0jc+1MWjmHn025aslTKF+emrKTOaY3x2hD61pXWe9qS3WFMqrLU0OuQu0qVEdu8opyFMiVrY58BTJalaNbMqpoQxtak5Grknbla1stbaomW/+Oomhfj5L9vjYhR2VBlZyApcGg6oSW8ur/Tz9KX6e9+l+m/n9dpa+DpfThs0kxwFdA1Lv+n9G1l5MNAAAAAAB4Gazkt+9W8t79FUmR6l7DLeevsHie2QEAAAAAgLNgKVrSZVnx9b+kK7KmXP8DAAAAAIBXjpXcY2dJWkk+1G8d3wl1ml8CzJ1DigAAAAAA4AUld/5fXZSiZNCKa7Jmuv4HAAAAAACvgN8OjLE/n42xG2Vv6xckhe0l66//XFKwYB21d75jHdjxEvtgrpCEjHwCoFO/ZIV/SAfqTcbrXZSUPHPcy1avt94gmP1xBz/fnzbWvxWcSGBxbrCBEwlc6K1txT2vz/ee6WNdf3so9uFhQcmStJeVutdwS47fuF+RbV8odNydzi+ePPqlFPS3c/9Rd6/03gfdh0kuR/Gso4M4j4+ydP6y2Nt1w7kkD/1c/hulpCtjt3hZ9azL37WaK1bSbznb/jnZB4XjY5S7/cN96te6kR6zGytp7Mphf8T9ePuL8fZXSskhG9r6YME6zqJycsvHHYicLIpJFjfTmJurN9OHLL+4nYJV/O6cVC2NHoOhLKqDWUzfF9a/RvbFpCx6+2ItzuLTuKGcLNZmy2LkiADAl2U/GfUnufMvGcR8pO5m5SE7qX2hujO9ur8zXN0//GNcGdP/Xsz33puY2EtR8Rl91Urq0KKSE+v8pZEzerY19oWics7o5ReobnFffz7+DqRe2iNZ/CeKovuVpN/fn6iqn8QrfJLbb9hId/udDw9+lgyAH3t/7/29J9Xq2nr5rXL5blULyWb0HuZE7QEAjJj+HTtTI6y3dD2NuP7wH2+mU0MV75v9jxSU9J4+UFcPtZB9hcC18a2uDHwM4XZ61aqBq1bzxuv3l6WTsRXdzr2qS2rpQGy1H7ugbJXhSn0cu/aSjwIAAOfrxpQ6PL7+F4fq/22tphGrl8Zedw/X8t7Vcf+SPi+2Mj35d856bwAA8PXgBp9bK53fWEHgtd+tbGxU7M6WawLf+ZEJvNqma7xWxw2cLbu16Zp24Hd8x2+YdqAlr+aGJtxut/2gY+p+YNp+6O0k3/xuel/9HrpNu9XxnLDdcO3QNY7f6thOx9S80DHt7R80vHDLDZKVw7breHXPsTue3zKhvx04bsmY0HUHAr2a2+p4dS+ebJl24DXtYNf82G9sN11Tc0Mn8NodP20w68tr1f2gmTRbUjTzFx0CAPD/6Nnzw8cPut29pycnluNL83TOkXJiRicWxzTIGEEAAHzFHJfrGVYq9qc+jV5KVgAAAAAAAAAAAAAAAAAAAAAAYND0W/pmnFgYd7Og1J/z8wu9OfqVjm8xHGnH0lknNstEYda1slsiDh9/NiF4uT8n2/2DMUfntoF//4b0WjJH6Zz5ccHF/Has6X0tTzi4p5yYi3fQaYO/v5/u0dyYeOHYRUv9YzF/9v8c4oknf8pZFEVRNHn1peF9uDhpA4cn5iU9XXyBQ3D+5yIA5+t/AQAA//+xxzz3")
sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0207e80702"], 0x10}}, 0x40044)
r1 = socket$inet6(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in=@private=0xa010100, 0x4e68, 0x0, 0x0, 0x0, 0xa, 0x0, 0x100}, {0x0, 0x4, 0x0, 0x5000007ffffffc, 0x0, 0x9, 0x4, 0x3ff7}, {0x7fffffffffffffff, 0x1000000000, 0x8, 0x1f}, 0x0, 0x1, 0x1, 0x0, 0x3, 0x2}, {{@in=@empty, 0x0, 0x32}, 0x2, @in=@broadcast, 0x3505, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1}}, 0xe8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e24, 0x2, @empty, 0xfffffffc}, 0x1c)

918.53071ms ago: executing program 9 (id=4633):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x82044, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

918.36874ms ago: executing program 4 (id=4634):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
socket(0x25, 0x1, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000140), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="050000000109"], 0x80}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000005c0)=ANY=[@ANYRES16=r0], 0x48}}, 0x40800)

774.017524ms ago: executing program 4 (id=4635):
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x127d, &(0x7f00000011c0)="$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")
syz_mount_image$vfat(&(0x7f00000006c0), &(0x7f0000000280)='./bus\x00', 0xdb9303c4987113b7, 0x0, 0x1, 0x0, &(0x7f0000000080))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x37)
chdir(&(0x7f0000001180)='./bus\x00')
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)

488.233892ms ago: executing program 4 (id=4636):
futex(&(0x7f000000cffc)=0x1, 0xd, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x1, 0xd, 0x1, 0x0, 0x0, 0x2)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002040)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

313.320479ms ago: executing program 5 (id=4637):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f00000000c0)={0x1d, r2}, 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r0, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000004000/0x4000)=nil)
sendmsg$can_bcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2, 0x0, 0x0, 0x8084}, 0x0)

274.340243ms ago: executing program 5 (id=4639):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x9, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="8b33000000000000000005000000080003"], 0x28}}, 0x0)

170.683343ms ago: executing program 5 (id=4640):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000002240)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000015c0)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000640)='U', 0xfdef}], 0x1}, 0x3)

150.005135ms ago: executing program 5 (id=4641):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xf0, 0x6, 0x40, 0x3, 0x0, 0x4000000000, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x100882, 0x7ff, 0x6, 0x3, 0x0, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0xb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))

96.33335ms ago: executing program 5 (id=4642):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000002000000000000000100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000100000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0902000000000000000001"], 0x38}}, 0x0)

0s ago: executing program 5 (id=4643):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000240), r2)
sendmsg$SEG6_CMD_SETHMAC(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="871000000000000000000100000008000300000001000500060000000000050005"], 0x30}, 0x1, 0x0, 0x0, 0x400c4}, 0x8808)

kernel console output (not intermixed with test programs):

2
[  116.364151][ T9695] EXT4-fs (loop5): Block reservation details
[  116.370243][ T9695] EXT4-fs (loop5): i_reserved_data_blocks=2
[  116.414220][ T5841] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  116.468948][ T9712] netlink: 17 bytes leftover after parsing attributes in process `syz.3.2525'.
[  116.514833][ T9716] SELinux: failed to load policy
[  116.586586][ T9730] loop9: detected capacity change from 0 to 512
[  116.600740][ T9730] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  116.609563][ T9730] EXT4-fs (loop9): feature flags set on rev 0 fs, running e2fsck is recommended
[  116.626049][ T9732] hub 6-0:1.0: USB hub found
[  116.635352][ T9732] hub 6-0:1.0: 8 ports detected
[  116.643953][ T9730] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:4215: comm syz.9.2536: Allocating blocks 41-42 which overlap fs metadata
[  116.665323][ T9737] hub 6-0:1.0: USB hub found
[  116.670269][ T9727] loop5: detected capacity change from 0 to 8192
[  116.673097][ T9730] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:4215: comm syz.9.2536: Allocating blocks 41-42 which overlap fs metadata
[  116.687327][ T9737] hub 6-0:1.0: 8 ports detected
[  116.694710][ T9730] EXT4-fs error (device loop9): ext4_acquire_dquot:6986: comm syz.9.2536: Failed to acquire dquot type 1
[  116.707387][ T9730] EXT4-fs error (device loop9): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  116.738859][ T9727] FAT-fs (loop5): error, clusters badly computed (2 != 1)
[  116.746655][ T9727] FAT-fs (loop5): Filesystem has been set read-only
[  116.766450][ T9730] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #12: comm syz.9.2536: corrupted inode contents
[  116.778759][ T9730] EXT4-fs error (device loop9): ext4_dirty_inode:6502: inode #12: comm syz.9.2536: mark_inode_dirty error
[  116.791463][ T9730] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #12: comm syz.9.2536: corrupted inode contents
[  116.807228][ T9730] EXT4-fs error (device loop9): __ext4_ext_dirty:206: inode #12: comm syz.9.2536: mark_inode_dirty error
[  116.834221][ T9730] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #12: comm syz.9.2536: corrupted inode contents
[  116.877238][ T9730] EXT4-fs error (device loop9) in ext4_orphan_del:303: Corrupt filesystem
[  116.895197][ T9730] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #12: comm syz.9.2536: corrupted inode contents
[  116.910035][ T9730] EXT4-fs error (device loop9): ext4_truncate:4635: inode #12: comm syz.9.2536: mark_inode_dirty error
[  116.923214][ T9730] EXT4-fs error (device loop9) in ext4_process_orphan:345: Corrupt filesystem
[  116.944841][ T9730] EXT4-fs (loop9): 1 truncate cleaned up
[  116.952504][ T9730] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.989237][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.031818][ T9768] netlink: 'syz.3.2555': attribute type 7 has an invalid length.
[  117.040156][ T9769] random: crng reseeded on system resumption
[  117.047094][ T9769] Restarting kernel threads ...
[  117.052319][ T9769] Done restarting kernel threads.
[  117.081821][ T9765] hub 6-0:1.0: USB hub found
[  117.100634][ T9765] hub 6-0:1.0: 8 ports detected
[  117.146223][ T9773] 0ªî{X¹¦: left allmulticast mode
[  117.182202][ T9773] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.189680][ T9773] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.224317][ T9785] netlink: 9286 bytes leftover after parsing attributes in process `syz.5.2562'.
[  117.282200][ T9773] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  117.296368][ T9773] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  117.401103][ T9796] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2567'.
[  117.414653][ T5875] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  117.429394][ T5875] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.445211][ T5875] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  117.454582][ T5875] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.483749][ T5875] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  117.492920][ T5875] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.536861][ T5875] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  117.545978][ T5875] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.701319][ T9820] loop5: detected capacity change from 0 to 512
[  117.707962][ T1917] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  117.733328][ T9820] EXT4-fs (loop5): 1 orphan inode deleted
[  117.739952][ T9820] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.753486][ T5875] EXT4-fs error (device loop5): ext4_release_dquot:7022: comm kworker/u8:53: Failed to release dquot type 1
[  117.794479][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.142393][ T9861] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2593'.
[  118.155559][ T9863] netlink: 268 bytes leftover after parsing attributes in process `syz.7.2595'.
[  118.162823][ T9861] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2593'.
[  118.382668][ T9897] hub 6-0:1.0: USB hub found
[  118.392198][ T9897] hub 6-0:1.0: 8 ports detected
[  118.471075][ T9921] loop7: detected capacity change from 0 to 512
[  118.490445][ T9921] EXT4-fs (loop7): 1 orphan inode deleted
[  118.502453][ T9921] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.515569][ T2134] EXT4-fs error (device loop7): ext4_release_dquot:7022: comm kworker/u8:11: Failed to release dquot type 1
[  118.561601][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.653258][ T9946] lo speed is unknown, defaulting to 1000
[  119.078685][T10004] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  119.090644][T10003] IPVS: stopping master sync thread 10004 ...
[  119.166125][T10014] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  119.929397][T10091] loop7: detected capacity change from 0 to 256
[  119.936320][T10091] vfat: Unknown parameter 'y¶ðâ߸2{RÜÒK¬e¯ö寳¡‰o¨–ÑV ¸-æ†iAvùë|‡CK3�€„u¹—E><È»µL®0xffffffffffffffff'
[  119.989656][T10093] 9p: Bad value for 'rfdno'
[  120.113737][   T29] kauditd_printk_skb: 236 callbacks suppressed
[  120.113753][   T29] audit: type=1400 audit(632.109:3164): avc:  denied  { ioctl } for  pid=10098 comm="syz.7.2641" path="socket:[29100]" dev="sockfs" ino=29100 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  120.431784][ T3413] hid_parser_main: 21 callbacks suppressed
[  120.431805][ T3413] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x4
[  120.446950][ T3413] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x2
[  120.471712][ T3413] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x3
[  120.508923][ T3413] hid-generic 0000:3000000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  120.750847][   T29] audit: type=1326 audit(632.749:3165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  120.774821][   T29] audit: type=1326 audit(632.749:3166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  120.860678][   T29] audit: type=1326 audit(632.809:3167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  120.886175][   T29] audit: type=1326 audit(632.809:3168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  120.909445][   T29] audit: type=1326 audit(632.809:3169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  120.933007][   T29] audit: type=1326 audit(632.809:3170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  120.956303][   T29] audit: type=1326 audit(632.809:3171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  120.979355][   T29] audit: type=1326 audit(632.809:3172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  121.002415][   T29] audit: type=1326 audit(632.809:3173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10166 comm="syz.7.2679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  121.114940][T10184] loop5: detected capacity change from 0 to 1024
[  121.151454][T10184] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.208968][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.245337][T10196] random: crng reseeded on system resumption
[  121.304399][ T5880] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  121.315663][T10203] loop9: detected capacity change from 0 to 1024
[  121.335139][T10203] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  121.348909][T10203] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  121.387741][T10203] JBD2: no valid journal superblock found
[  121.393526][T10203] EXT4-fs (loop9): Could not load journal inode
[  122.037728][T10251] lo speed is unknown, defaulting to 1000
[  122.460193][ T5875] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  122.553257][T10297] random: crng reseeded on system resumption
[  122.747509][T10308] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2727'.
[  123.048610][T10260] syz.5.2705 (10260) used greatest stack depth: 6384 bytes left
[  123.128373][T10319] netlink: 84 bytes leftover after parsing attributes in process `syz.4.2732'.
[  123.138861][T10319] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  123.217907][T10330] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  123.295753][T10332] lo speed is unknown, defaulting to 1000
[  123.304242][T10336] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2739'.
[  123.345907][T10336] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  123.430917][T10351] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[  123.474624][T10354] smc: net device hsr0 applied user defined pnetid SYZ0
[  123.504923][T10354] smc: net device hsr0 erased user defined pnetid SYZ0
[  124.012864][T10438] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2772'.
[  124.022731][T10438] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2772'.
[  124.065422][T10425] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2767'.
[  124.074607][T10425] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  124.093949][T10444] netlink: 256 bytes leftover after parsing attributes in process `syz.7.2773'.
[  124.277643][T10475] loop3: detected capacity change from 0 to 1024
[  124.313929][T10475] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.351555][T10475] netlink: 'syz.3.2783': attribute type 1 has an invalid length.
[  124.392776][ T7633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.659728][T10535] vhci_hcd vhci_hcd.4: invalid port number 146
[  124.666075][T10535] vhci_hcd vhci_hcd.4: default hub control req: 0006 v0302 i0092 l0
[  124.757202][T10550] netlink: 256 bytes leftover after parsing attributes in process `syz.4.2806'.
[  124.799708][T10556] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2807'.
[  125.364450][   T29] kauditd_printk_skb: 261 callbacks suppressed
[  125.364536][   T29] audit: type=1400 audit(637.359:3435): avc:  denied  { firmware_load } for  pid=10598 comm="syz.3.2815" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  125.526895][   T29] audit: type=1400 audit(637.519:3436): avc:  denied  { ioctl } for  pid=10615 comm="syz.3.2817" path="socket:[30260]" dev="sockfs" ino=30260 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  125.551907][   T29] audit: type=1400 audit(637.519:3437): avc:  denied  { create } for  pid=10615 comm="syz.3.2817" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  125.571182][   T29] audit: type=1400 audit(637.519:3438): avc:  denied  { ioctl } for  pid=10615 comm="syz.3.2817" path="socket:[30263]" dev="sockfs" ino=30263 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  125.680646][   T29] audit: type=1326 audit(637.619:3439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10617 comm="syz.3.2818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  125.681422][T10621] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  125.703705][   T29] audit: type=1326 audit(637.619:3440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10617 comm="syz.3.2818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  125.703749][   T29] audit: type=1326 audit(637.619:3441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10617 comm="syz.3.2818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  125.703829][   T29] audit: type=1326 audit(637.629:3442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10617 comm="syz.3.2818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  125.703868][   T29] audit: type=1326 audit(637.629:3443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10617 comm="syz.3.2818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  125.703967][   T29] audit: type=1326 audit(637.629:3444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10617 comm="syz.3.2818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  125.834660][T10621] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  126.295116][T10658] loop4: detected capacity change from 0 to 512
[  126.303707][T10658] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  126.327644][T10658] EXT4-fs (loop4): 1 truncate cleaned up
[  126.333914][T10658] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.424939][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.494130][T10663] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10663 comm=syz.7.2826
[  126.854197][T10718] smc: net device hsr0 applied user defined pnetid SYZ2
[  126.862518][T10718] smc: net device hsr0 erased user defined pnetid SYZ2
[  127.049450][T10735] serio: Serial port ptm0
[  127.059570][T10734] loop4: detected capacity change from 0 to 2048
[  127.098449][T10734]  loop4: p1 < > p4
[  127.107791][T10734] loop4: p4 size 8388608 extends beyond EOD, truncated
[  127.743435][T10774] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2876'.
[  127.765806][T10770] loop4: detected capacity change from 0 to 8192
[  127.772599][T10774] IPVS: Error connecting to the multicast addr
[  127.812245][T10780] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  127.947037][ T3413] usb usb8-port1: attempt power cycle
[  127.959654][T10800] loop7: detected capacity change from 0 to 512
[  127.966529][T10800] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.990674][T10800] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  128.011278][T10800] EXT4-fs (loop7): 1 truncate cleaned up
[  128.022474][T10800] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.051483][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.115401][T10822] loop7: detected capacity change from 0 to 512
[  128.122764][T10822] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  128.149616][T10822] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.167263][T10822] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #18: comm syz.7.2898: corrupted inode contents
[  128.181326][T10822] EXT4-fs error (device loop7): ext4_dirty_inode:6502: inode #18: comm syz.7.2898: mark_inode_dirty error
[  128.194013][T10822] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #18: comm syz.7.2898: corrupted inode contents
[  128.206619][T10822] EXT4-fs error (device loop7): ext4_xattr_delete_inode:3000: inode #18: comm syz.7.2898: mark_inode_dirty error
[  128.220660][T10822] EXT4-fs error (device loop7): ext4_xattr_delete_inode:3003: inode #18: comm syz.7.2898: mark inode dirty (error -117)
[  128.234042][T10822] EXT4-fs warning (device loop7): ext4_evict_inode:273: xattr delete (err -117)
[  128.259329][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.282697][T10833] vlan2: entered allmulticast mode
[  128.472212][T10862] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2914'.
[  128.489407][T10862] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2914'.
[  128.666349][T10881] loop7: detected capacity change from 0 to 256
[  128.673823][T10881] vfat: Unknown parameter 'codepag¢ès‘³¼]¯e'
[  129.453025][T10897] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2930'.
[  129.581258][T10910] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  129.759097][T10925] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2944'.
[  129.768659][T10925] netlink: 'syz.7.2944': attribute type 7 has an invalid length.
[  129.776812][T10925] netlink: 'syz.7.2944': attribute type 8 has an invalid length.
[  129.784964][T10925] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2944'.
[  129.795166][ T3413] usb usb8-port1: unable to enumerate USB device
[  129.805680][T10927] loop5: detected capacity change from 0 to 1024
[  129.813581][T10927] EXT4-fs: Ignoring removed mblk_io_submit option
[  129.848776][T10927] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.162745][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.285823][T10962] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2958'.
[  130.294902][T10962] netlink: 'syz.5.2958': attribute type 7 has an invalid length.
[  130.302701][T10962] netlink: 'syz.5.2958': attribute type 8 has an invalid length.
[  130.310471][T10962] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2958'.
[  130.372760][   T29] kauditd_printk_skb: 106 callbacks suppressed
[  130.372831][   T29] audit: type=1326 audit(642.369:3551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10952 comm="syz.4.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  130.404622][T10968] SELinux: failed to load policy
[  130.422022][   T29] audit: type=1400 audit(642.399:3552): avc:  denied  { load_policy } for  pid=10967 comm="syz.5.2961" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  130.443825][   T29] audit: type=1326 audit(642.409:3553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10952 comm="syz.4.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  130.467322][   T29] audit: type=1326 audit(642.409:3554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10952 comm="syz.4.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  130.491338][   T29] audit: type=1326 audit(642.409:3555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10952 comm="syz.4.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  130.514810][   T29] audit: type=1326 audit(642.409:3556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10952 comm="syz.4.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  130.538923][   T29] audit: type=1326 audit(642.409:3557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10952 comm="syz.4.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  130.561828][   T29] audit: type=1326 audit(642.409:3558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10952 comm="syz.4.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  130.586132][   T29] audit: type=1326 audit(642.409:3559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10952 comm="syz.4.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  130.712757][   T29] audit: type=1400 audit(642.709:3560): avc:  denied  { write } for  pid=10985 comm="syz.5.2969" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  130.810058][T10990] loop9: detected capacity change from 0 to 128
[  130.810312][    C0] hrtimer: interrupt took 59824 ns
[  130.827840][T10990] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  130.900649][ T7184] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  131.039276][T11002] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  131.057688][T11002] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  131.074544][T11007] loop4: detected capacity change from 0 to 512
[  131.103036][T11007] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  131.134407][T11007] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.192044][T11007] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #18: comm syz.4.2977: corrupted inode contents
[  131.205625][T11013] loop5: detected capacity change from 0 to 512
[  131.244911][T11007] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #18: comm syz.4.2977: mark_inode_dirty error
[  131.299470][T11007] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #18: comm syz.4.2977: corrupted inode contents
[  131.344799][T11007] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3000: inode #18: comm syz.4.2977: mark_inode_dirty error
[  131.361762][T11018] netlink: 96 bytes leftover after parsing attributes in process `ÿ'.
[  131.377160][T11007] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3003: inode #18: comm syz.4.2977: mark inode dirty (error -117)
[  131.411184][T11007] EXT4-fs warning (device loop4): ext4_evict_inode:273: xattr delete (err -117)
[  131.477620][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.823192][   T10] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  131.831286][T11038] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  131.860088][   T10] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  131.875236][T11038] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  132.263575][T11060] lo speed is unknown, defaulting to 1000
[  132.755738][T11094] netlink: 1347 bytes leftover after parsing attributes in process `syz.3.3013'.
[  132.800122][T11100] sd 0:0:1:0: device reset
[  132.825992][T11104] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3017'.
[  132.896628][T11116] loop3: detected capacity change from 0 to 1024
[  132.905897][T11112] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  132.914458][T11116] EXT4-fs: Ignoring removed nomblk_io_submit option
[  132.921174][T11112] vhci_hcd vhci_hcd.2: invalid port number 96
[  132.927457][T11112] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  132.936182][T11116] EXT4-fs: Ignoring removed nobh option
[  132.956404][T11116] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.990591][ T7633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.044155][T11134] Falling back ldisc for ptm0.
[  133.190591][T11149] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  133.198116][T11149] vhci_hcd vhci_hcd.2: invalid port number 96
[  133.204219][T11149] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  133.264910][T11164] loop3: detected capacity change from 0 to 512
[  133.271925][T11164] EXT4-fs: Ignoring removed oldalloc option
[  133.279694][T11164] EXT4-fs error (device loop3): __ext4_iget:5426: inode #11: block 1: comm syz.3.3044: invalid block
[  133.291428][T11164] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.3044: couldn't read orphan inode 11 (err -117)
[  133.304250][T11164] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.322542][T11164] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  133.341851][ T7633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.449593][T11176] syz_tun: entered promiscuous mode
[  133.455144][T11176] syz_tun: refused to change device tx_queue_len
[  133.469277][T11178] loop3: detected capacity change from 0 to 512
[  133.714923][T11213] loop7: detected capacity change from 0 to 512
[  134.025448][T11232] sd 0:0:1:0: device reset
[  134.480121][T11247] Falling back ldisc for ptm0.
[  134.528418][T11253] __nla_validate_parse: 5 callbacks suppressed
[  134.528439][T11253] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  134.655752][T11259] atomic_op ffff88810b39f528 conn xmit_atomic 0000000000000000
[  134.680006][T11257] loop9: detected capacity change from 0 to 4096
[  134.690190][T11257] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.841329][T11279] tap0: tun_chr_ioctl cmd 1074025675
[  134.846716][T11279] tap0: persist disabled
[  134.878852][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.041331][T11309] xt_CT: You must specify a L4 protocol and not use inversions on it
[  135.067284][T11311] netlink: 'syz.4.3114': attribute type 1 has an invalid length.
[  135.075168][T11311] netlink: 'syz.4.3114': attribute type 2 has an invalid length.
[  135.108500][T11317] rdma_op ffff88810b39e180 conn xmit_rdma 0000000000000000
[  135.123855][T11287] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  135.147077][T11287] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  135.225722][T11319] lo speed is unknown, defaulting to 1000
[  135.320037][T11336] loop9: detected capacity change from 0 to 512
[  135.351314][T11336] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.3125: bg 0: block 248: padding at end of block bitmap is not set
[  135.384162][T11336] __quota_error: 152 callbacks suppressed
[  135.384183][T11336] Quota error (device loop9): write_blk: dquota write failed
[  135.398576][T11336] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota
[  135.408972][T11336] EXT4-fs error (device loop9): ext4_acquire_dquot:6986: comm syz.9.3125: Failed to acquire dquot type 1
[  135.422383][T11336] EXT4-fs (loop9): 1 truncate cleaned up
[  135.431666][T11336] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.467918][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.491712][   T29] audit: type=1400 audit(647.489:3713): avc:  denied  { name_bind } for  pid=11354 comm="syz.3.3134" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  135.537936][   T29] audit: type=1400 audit(647.529:3714): avc:  denied  { create } for  pid=11357 comm="syz.5.3135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  135.557248][   T29] audit: type=1400 audit(647.529:3715): avc:  denied  { listen } for  pid=11357 comm="syz.5.3135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  135.576386][   T29] audit: type=1400 audit(647.529:3716): avc:  denied  { connect } for  pid=11357 comm="syz.5.3135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  135.626515][   T29] audit: type=1326 audit(647.619:3717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11367 comm="syz.3.3139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  135.723319][T11372] tipc: New replicast peer: 255.255.255.255
[  135.729638][T11372] tipc: Enabled bearer <udp:sy>, priority 10
[  135.741702][   T29] audit: type=1326 audit(647.649:3718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11367 comm="syz.3.3139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  135.764988][   T29] audit: type=1326 audit(647.649:3719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11367 comm="syz.3.3139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90c2faf749 code=0x7ffc0000
[  135.879161][   T29] audit: type=1400 audit(647.879:3720): avc:  denied  { unlink } for  pid=5501 comm="syz-executor" name="file0" dev="tmpfs" ino=2487 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  136.016722][T11401] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3153'.
[  136.027249][T11401] syz_tun: refused to change device tx_queue_len
[  136.110782][T11413] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3159'.
[  136.119768][T11413] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3159'.
[  136.128771][T11413] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3159'.
[  136.137676][T11413] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3159'.
[  136.153245][T11413] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3159'.
[  136.207944][ T5599] kernel write not supported for file bpf-map (pid: 5599 comm: kworker/1:7)
[  136.404473][T11453] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11453 comm=syz.5.3176
[  136.418178][T11453] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=11453 comm=syz.5.3176
[  136.487300][ T5880] Bluetooth: hci0: Frame reassembly failed (-84)
[  136.564807][T11473] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  136.574124][T11473] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  137.488649][T11526] netlink: 'syz.5.3210': attribute type 4 has an invalid length.
[  137.508563][T11526] netlink: 'syz.5.3210': attribute type 4 has an invalid length.
[  137.526383][ T3413] lo speed is unknown, defaulting to 1000
[  137.533183][ T3413] syz1: Port: 1 Link ACTIVE
[  137.576979][ T3426] lo speed is unknown, defaulting to 1000
[  137.680263][T11536] program syz.4.3215 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  137.718361][T11540] netlink: 'syz.7.3216': attribute type 83 has an invalid length.
[  137.736324][T11539] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11539 comm=syz.5.3217
[  137.750195][T11539] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=11539 comm=syz.5.3217
[  137.922625][T11561] loop7: detected capacity change from 0 to 1024
[  137.943372][T11561] EXT4-fs: inline encryption not supported
[  137.998037][T11561] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.028615][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.209417][T11602] futex_wake_op: syz.4.3245 tries to shift op by -3; fix this program
[  138.236346][T11608] smc: ib device syz1 ibport 1 applied user defined pnetid SYZ0
[  138.302688][T11620] loop7: detected capacity change from 0 to 128
[  138.322351][T11620] vfat: Unknown parameter 'debur'
[  138.387448][T11634] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3262'.
[  138.490558][T11652] loop4: detected capacity change from 0 to 2048
[  138.505019][T11656] loop7: detected capacity change from 0 to 512
[  138.514920][T11652] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.527253][T11656] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  138.535995][T11656] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  138.545360][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  138.552005][ T3513] Bluetooth: hci0: command 0x1003 tx timeout
[  138.580087][T11656] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4215: comm syz.7.3272: Allocating blocks 41-42 which overlap fs metadata
[  138.607496][T11656] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4215: comm syz.7.3272: Allocating blocks 41-42 which overlap fs metadata
[  138.624051][T11656] EXT4-fs error (device loop7): ext4_acquire_dquot:6986: comm syz.7.3272: Failed to acquire dquot type 1
[  138.636898][T11656] EXT4-fs error (device loop7): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  138.652647][T11656] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #12: comm syz.7.3272: corrupted inode contents
[  138.653926][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.674693][T11656] EXT4-fs error (device loop7): ext4_dirty_inode:6502: inode #12: comm syz.7.3272: mark_inode_dirty error
[  138.693609][T11666] loop5: detected capacity change from 0 to 512
[  138.702202][T11656] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #12: comm syz.7.3272: corrupted inode contents
[  138.716684][T11656] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #12: comm syz.7.3272: mark_inode_dirty error
[  138.739362][T11666] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.752521][T11656] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #12: comm syz.7.3272: corrupted inode contents
[  138.766514][T11656] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[  138.775687][T11656] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #12: comm syz.7.3272: corrupted inode contents
[  138.791652][T11656] EXT4-fs error (device loop7): ext4_truncate:4635: inode #12: comm syz.7.3272: mark_inode_dirty error
[  138.803338][T11656] EXT4-fs error (device loop7) in ext4_process_orphan:345: Corrupt filesystem
[  138.812646][T11656] EXT4-fs (loop7): 1 truncate cleaned up
[  138.827561][T11656] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.842799][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.877920][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.916238][T11684] ip6gre2: entered promiscuous mode
[  138.922538][T11684] ip6gre2: entered allmulticast mode
[  138.933184][ T5883] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  138.941248][ T5883] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  138.952425][T11684] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  138.960697][ T3426] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  138.969223][T11691] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3285'.
[  139.090305][T11711] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3293'.
[  139.431001][T11734] loop5: detected capacity change from 0 to 1024
[  139.438993][T11734] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  139.448245][T11713] loop3: detected capacity change from 0 to 2048
[  139.459615][T11713] EXT4-fs: Ignoring removed mblk_io_submit option
[  139.466704][T11734] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #11: comm syz.5.3303: iget: bogus i_mode (1)
[  139.478732][T11734] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.3303: couldn't read orphan inode 11 (err -117)
[  139.491479][T11734] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.518646][T11713] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.536566][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.564028][T11713] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.3294: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  139.589317][T11742] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  139.602927][T11741] IPVS: stopping master sync thread 11742 ...
[  139.609174][ T3426] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  139.649595][T11744] ip6erspan0: entered promiscuous mode
[  139.663132][ T7633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.816932][ T3426] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  139.886049][T11765] syzkaller1: entered promiscuous mode
[  139.891718][T11765] syzkaller1: entered allmulticast mode
[  140.090871][T11798] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3330'.
[  140.110337][T11794] SELinux: failed to load policy
[  140.177034][T11807] xt_policy: output policy not valid in PREROUTING and INPUT
[  140.204000][T11813] syzkaller1: entered promiscuous mode
[  140.209602][T11813] syzkaller1: entered allmulticast mode
[  140.360266][T11834] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  140.933155][T11867] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3358'.
[  141.036296][   T29] kauditd_printk_skb: 218 callbacks suppressed
[  141.036314][   T29] audit: type=1400 audit(653.029:3935): avc:  denied  { wake_alarm } for  pid=11869 comm="syz.4.3359" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  141.320284][   T29] audit: type=1326 audit(653.319:3936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.7.3361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  141.363721][   T29] audit: type=1326 audit(653.339:3937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.7.3361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  141.495108][   T29] audit: type=1326 audit(653.489:3938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.7.3361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  141.601400][   T29] audit: type=1326 audit(653.489:3939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11876 comm="syz.7.3361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  141.602724][   T29] audit: type=1326 audit(653.599:3940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11882 comm="syz.7.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  141.604871][   T29] audit: type=1326 audit(653.599:3941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11882 comm="syz.7.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  141.606346][   T29] audit: type=1326 audit(653.599:3942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11882 comm="syz.7.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  141.607746][   T29] audit: type=1326 audit(653.599:3943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11882 comm="syz.7.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  141.632034][   T29] audit: type=1326 audit(653.609:3944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11882 comm="syz.7.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  142.225160][T11913] ip6gre1: entered promiscuous mode
[  142.325812][T11916] lo speed is unknown, defaulting to 1000
[  142.343074][T11919] atomic_op ffff88811a386d28 conn xmit_atomic 0000000000000000
[  142.448663][T11923] netlink: 'syz.9.3383': attribute type 7 has an invalid length.
[  142.459385][T11925] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3384'.
[  142.483845][T11925] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  142.487238][T11923] netlink: 'syz.9.3383': attribute type 7 has an invalid length.
[  142.549265][T11927] sd 0:0:1:0: device reset
[  142.571533][T11929] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3386'.
[  142.605157][T11933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3388'.
[  142.616877][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  142.791341][T11947] netlink: 'syz.3.3393': attribute type 15 has an invalid length.
[  143.007821][T11966] netlink: 'syz.4.3402': attribute type 1 has an invalid length.
[  143.077626][T11978] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  143.087173][T11978] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.201438][T11987] netlink: 'syz.5.3409': attribute type 13 has an invalid length.
[  143.294320][   T10] lo speed is unknown, defaulting to 1000
[  143.300160][   T10] syz1: Port: 1 Link DOWN
[  143.305043][   T10] lo speed is unknown, defaulting to 1000
[  143.378498][T11999] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  143.387946][T11999] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.403134][T11996] SELinux: ebitmap: truncated map
[  143.409169][T11996] SELinux: failed to load policy
[  143.545590][T12013] loop7: detected capacity change from 0 to 2048
[  143.591031][T12013] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.639577][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.659791][T12021] loop5: detected capacity change from 0 to 128
[  143.672550][T12021] syz.5.3426: attempt to access beyond end of device
[  143.672550][T12021] loop5: rw=2049, sector=154, nr_sectors = 8 limit=128
[  143.687514][T12021] syz.5.3426: attempt to access beyond end of device
[  143.687514][T12021] loop5: rw=8390657, sector=160, nr_sectors = 2 limit=128
[  143.701286][T12021] Buffer I/O error on dev loop5, logical block 80, lost async page write
[  143.711428][T12021] syz.5.3426: attempt to access beyond end of device
[  143.711428][T12021] loop5: rw=2049, sector=162, nr_sectors = 8 limit=128
[  143.732421][T12025] syz.5.3426: attempt to access beyond end of device
[  143.732421][T12025] loop5: rw=8912896, sector=154, nr_sectors = 16 limit=128
[  143.757047][T12025] syz.5.3426: attempt to access beyond end of device
[  143.757047][T12025] loop5: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  143.781081][T12025] syz.5.3426: attempt to access beyond end of device
[  143.781081][T12025] loop5: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  143.804328][T12025] syz.5.3426: attempt to access beyond end of device
[  143.804328][T12025] loop5: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  143.818600][T12025] syz.5.3426: attempt to access beyond end of device
[  143.818600][T12025] loop5: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  143.834260][T12025] syz.5.3426: attempt to access beyond end of device
[  143.834260][T12025] loop5: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  143.849683][T12025] syz.5.3426: attempt to access beyond end of device
[  143.849683][T12025] loop5: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  144.615936][T12065] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3445'.
[  144.926233][T12095] loop3: detected capacity change from 0 to 512
[  144.934467][T12095] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  144.949605][T12095] EXT4-fs (loop3): 1 truncate cleaned up
[  144.956064][T12095] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.975422][ T5841] Bluetooth: hci0: Frame reassembly failed (-84)
[  144.993457][ T7633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.104758][T12108] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  145.134726][T12110] netlink: 27 bytes leftover after parsing attributes in process `syz.3.3461'.
[  145.223469][T12118] netlink: 'syz.3.3465': attribute type 1 has an invalid length.
[  145.232684][T12118] netlink: 'syz.3.3465': attribute type 4 has an invalid length.
[  145.240483][T12118] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.3465'.
[  145.470571][T12125] netlink: 'syz.3.3468': attribute type 15 has an invalid length.
[  145.478509][T12125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3468'.
[  145.487756][T12125] netlink: 'syz.3.3468': attribute type 15 has an invalid length.
[  145.495640][T12125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3468'.
[  145.572897][T12137] loop3: detected capacity change from 0 to 128
[  145.768402][T12153] netlink: 332 bytes leftover after parsing attributes in process `syz.7.3480'.
[  145.881066][T12141] loop9: detected capacity change from 0 to 2048
[  145.888149][T12141] EXT4-fs: Ignoring removed mblk_io_submit option
[  145.901324][T12141] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.969135][T12141] EXT4-fs error (device loop9): ext4_find_extent:939: inode #2: comm syz.9.3476: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  146.035943][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.141164][   T29] kauditd_printk_skb: 731 callbacks suppressed
[  146.141184][   T29] audit: type=1400 audit(658.139:4676): avc:  denied  { connect } for  pid=12166 comm="syz.9.3484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  146.220778][   T29] audit: type=1326 audit(658.219:4677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12171 comm="syz.7.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  146.245249][   T29] audit: type=1326 audit(658.219:4678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12171 comm="syz.7.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  146.269738][   T29] audit: type=1326 audit(658.219:4679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12171 comm="syz.7.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  146.293090][   T29] audit: type=1326 audit(658.219:4680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12171 comm="syz.7.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  146.317349][   T29] audit: type=1326 audit(658.219:4681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12171 comm="syz.7.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  146.396601][   T29] audit: type=1400 audit(658.219:4682): avc:  denied  { write } for  pid=12173 comm="syz.9.3487" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  146.559247][   T29] audit: type=1400 audit(658.559:4683): avc:  denied  { read append } for  pid=12182 comm="syz.7.3490" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  146.559949][T12183] random: crng reseeded on system resumption
[  146.588924][   T29] audit: type=1400 audit(658.559:4684): avc:  denied  { ioctl } for  pid=12182 comm="syz.7.3490" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  146.911141][   T29] audit: type=1404 audit(658.909:4685): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  147.016874][ T3513] Bluetooth: hci0: command 0x1003 tx timeout
[  147.016891][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  147.104217][T12203] netlink: 'syz.9.3501': attribute type 1 has an invalid length.
[  147.165680][T12210] SELinux: failed to load policy
[  147.231773][T12220] netlink: 3 bytes leftover after parsing attributes in process `syz.7.3508'.
[  147.254727][T12220] 1ªX¹¦À: renamed from 
60ªX¹¦À
[  147.263831][T12220] 1ªX¹¦À: entered allmulticast mode
[  147.269690][T12220] A link change request failed with some changes committed already. Interface 
61ªX¹¦À may have been left with an inconsistent configuration, please check.
[  147.290186][T12222] lo speed is unknown, defaulting to 1000
[  147.361800][T12229] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3513'.
[  147.450234][T12242] netlink: 76 bytes leftover after parsing attributes in process `syz.5.3518'.
[  147.534743][T12248] xt_CT: No such helper "pptp"
[  147.679226][T12275] loop7: detected capacity change from 0 to 256
[  147.699495][T12275] FAT-fs (loop7): error, fat_free_clusters: deleting FAT entry beyond EOF
[  147.708213][T12275] FAT-fs (loop7): Filesystem has been set read-only
[  147.722182][T12276] lo speed is unknown, defaulting to 1000
[  147.829322][T12281] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3529'.
[  147.950459][ T5878] Bluetooth: hci0: Frame reassembly failed (-84)
[  148.539136][T12319] loop7: detected capacity change from 0 to 2048
[  148.546471][T12319] EXT4-fs: Ignoring removed mblk_io_submit option
[  148.549996][T12330] loop5: detected capacity change from 0 to 1024
[  148.560277][T12330] EXT4-fs: Ignoring removed nobh option
[  148.566000][T12330] EXT4-fs: Ignoring removed bh option
[  148.575479][T12319] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.605171][T12330] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.632303][T12319] EXT4-fs error (device loop7): ext4_find_extent:939: inode #2: comm syz.7.3547: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  148.671261][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.689029][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.758120][T12342] lo speed is unknown, defaulting to 1000
[  149.844669][T12373] loop9: detected capacity change from 0 to 8192
[  149.942867][T12380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3572'.
[  149.976851][ T3513] Bluetooth: hci0: command 0x1003 tx timeout
[  149.979102][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  150.136844][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  150.148979][T12393] lo speed is unknown, defaulting to 1000
[  150.802484][T12442] ref_ctr_offset mismatch. inode: 0x7db offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x300000018
[  150.873825][T12448] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  150.881369][T12448] IPv6: NLM_F_CREATE should be set when creating new route
[  150.889863][T12448] IPv6: NLM_F_CREATE should be set when creating new route
[  150.914086][T12449] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3602'.
[  150.993875][T12455] dummy0: left allmulticast mode
[  150.999042][T12455] dummy0: left promiscuous mode
[  151.004817][T12455] bridge0: port 3(dummy0) entered disabled state
[  151.012612][T12455] bridge_slave_0: left allmulticast mode
[  151.020275][T12455] bridge_slave_0: left promiscuous mode
[  151.026259][T12455] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.035661][T12455] bridge_slave_1: left allmulticast mode
[  151.041538][T12455] bridge_slave_1: left promiscuous mode
[  151.048962][T12455] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.058369][T12455] bond0: (slave bond_slave_0): Releasing backup interface
[  151.067817][T12455] bond0: (slave bond_slave_1): Releasing backup interface
[  151.078287][T12455] team0: Port device team_slave_0 removed
[  151.089428][T12455] team0: Port device team_slave_1 removed
[  151.097401][T12455] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.108819][T12455] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.119008][T12455] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  151.172188][T12457] sch_tbf: burst 22 is lower than device lo mtu (11337746) !
[  151.229448][   T29] kauditd_printk_skb: 171 callbacks suppressed
[  151.229466][   T29] audit: type=1400 audit(663.219:4857): avc:  granted  { setsecparam } for  pid=12458 comm="syz.5.3609" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  151.536674][T12474] loop7: detected capacity change from 0 to 1024
[  151.545867][T12476] IPv6: NLM_F_CREATE should be specified when creating new route
[  151.574098][T12474] EXT4-fs: Ignoring removed mblk_io_submit option
[  151.618396][T12474] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.662233][   T29] audit: type=1400 audit(663.649:4858): avc:  denied  { mounton } for  pid=12463 comm="syz.9.3607" path="/proc/817/task" dev="proc" ino=35797 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  151.879100][   T29] audit: type=1400 audit(663.689:4859): avc:  denied  { mount } for  pid=12463 comm="syz.9.3607" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  151.901718][   T29] audit: type=1400 audit(663.699:4860): avc:  denied  { write } for  pid=12473 comm="syz.7.3614" name="file1" dev="loop7" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  151.923785][   T29] audit: type=1400 audit(663.699:4861): avc:  denied  { open } for  pid=12473 comm="syz.7.3614" name="file1" dev="loop7" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  151.941371][T12486] loop5: detected capacity change from 0 to 512
[  151.948360][   T29] audit: type=1400 audit(663.829:4862): avc:  denied  { read } for  pid=12473 comm="syz.7.3614" name="file1" dev="loop7" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  151.973735][   T29] audit: type=1400 audit(663.829:4863): avc:  denied  { ioctl } for  pid=12473 comm="syz.7.3614" path="/603/file1/file1" dev="loop7" ino=15 ioctlcmd=0x5828 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  151.998866][   T29] audit: type=1400 audit(663.839:4864): avc:  denied  { create } for  pid=12482 comm="syz.5.3617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  152.020183][   T29] audit: type=1400 audit(663.849:4865): avc:  denied  { write } for  pid=12482 comm="syz.5.3617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  152.047111][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.078114][T12486] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.108579][T12490] loop7: detected capacity change from 0 to 512
[  152.117891][T12486] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.3618: corrupted xattr block 6: invalid header
[  152.134350][T12490] EXT4-fs (loop7): 1 truncate cleaned up
[  152.144144][T12465] loop9: detected capacity change from 0 to 32768
[  152.150934][T12486] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=12
[  152.163929][T12490] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.195748][T12486] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.3618: corrupted xattr block 6: invalid header
[  152.207345][   T29] audit: type=1400 audit(664.209:4866): avc:  denied  { add_name } for  pid=12489 comm="syz.7.3619" name="cgroup.controllers" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  152.232131][T12465]  loop9: p1 p3 < >
[  152.232723][T12486] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=12
[  152.248057][T12486] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.3618: corrupted xattr block 6: invalid header
[  152.261769][T12486] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=12
[  152.270976][T12486] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.3618: corrupted xattr block 6: invalid header
[  152.284341][T12486] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=12
[  152.293760][T12486] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.3618: corrupted xattr block 6: invalid header
[  152.323364][T12486] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=12
[  152.333407][T12486] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #12: comm syz.5.3618: corrupted xattr block 6: invalid header
[  152.352694][T12490] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.3619: bg 0: block 465: padding at end of block bitmap is not set
[  152.402615][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.426452][T12490] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 432 with error 117
[  152.441272][T12490] EXT4-fs (loop7): This should not happen!! Data will be lost
[  152.441272][T12490] 
[  152.474830][T12495] loop5: detected capacity change from 0 to 512
[  152.528172][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.008131][ T5878] nci: nci_rf_intf_activated_ntf_packet: unsupported rf_interface 0xa1
[  153.040505][T12525] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3633'.
[  153.049512][T12525] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3633'.
[  153.187035][T12540] netlink: 'syz.5.3640': attribute type 3 has an invalid length.
[  153.376454][T12553] loop7: detected capacity change from 0 to 1024
[  153.395473][T12553] EXT4-fs: Ignoring removed bh option
[  153.402145][T12553] EXT4-fs: inline encryption not supported
[  153.411258][T12553] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  153.440508][T12553] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  153.467950][T12557] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  153.476375][T12553] EXT4-fs error (device loop7): ext4_map_blocks:783: inode #3: block 2: comm syz.7.3646: lblock 2 mapped to illegal pblock 2 (length 1)
[  153.507081][T12557] vhci_hcd vhci_hcd.2: invalid port number 96
[  153.514230][T12557] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  153.533927][T12553] EXT4-fs error (device loop7): ext4_map_blocks:783: inode #3: block 48: comm syz.7.3646: lblock 0 mapped to illegal pblock 48 (length 1)
[  153.591456][T12562] lo: entered allmulticast mode
[  153.617236][T12553] EXT4-fs error (device loop7): ext4_acquire_dquot:6986: comm syz.7.3646: Failed to acquire dquot type 0
[  153.650471][T12562] team0: entered promiscuous mode
[  153.655799][T12562] team_slave_0: entered promiscuous mode
[  153.661678][T12562] team_slave_1: entered promiscuous mode
[  153.669336][T12553] EXT4-fs error (device loop7) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  153.680124][T12553] EXT4-fs error (device loop7): ext4_evict_inode:253: inode #11: comm syz.7.3646: mark_inode_dirty error
[  153.701836][T12553] EXT4-fs warning (device loop7): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  153.736862][T12572] lo: entered promiscuous mode
[  153.743640][T12553] EXT4-fs (loop7): 1 orphan inode deleted
[  153.751715][T12561] lo: left promiscuous mode
[  153.756493][T12561] team0: left promiscuous mode
[  153.759510][ T5872] EXT4-fs error (device loop7): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:51: lblock 1 mapped to illegal pblock 1 (length 1)
[  153.761540][T12561] team_slave_0: left promiscuous mode
[  153.777506][T12553] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.782087][T12561] team_slave_1: left promiscuous mode
[  153.799905][T12561] lo: left allmulticast mode
[  153.814517][ T5872] EXT4-fs error (device loop7): ext4_release_dquot:7022: comm kworker/u8:51: Failed to release dquot type 0
[  153.838161][T12553] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.858390][T12553] EXT4-fs error (device loop7): __ext4_get_inode_loc:4830: comm syz.7.3646: Invalid inode table block 1 in block_group 0
[  153.888612][T12553] EXT4-fs error (device loop7) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  153.905830][T12553] EXT4-fs error (device loop7): ext4_quota_off:7270: inode #3: comm syz.7.3646: mark_inode_dirty error
[  153.925374][T12581] netlink: 19 bytes leftover after parsing attributes in process `syz.4.3658'.
[  154.055538][T12591] serio: Serial port ttyS3
[  154.178199][T12609] netlink: 'syz.5.3673': attribute type 29 has an invalid length.
[  154.219866][T12609] netlink: 'syz.5.3673': attribute type 29 has an invalid length.
[  154.238613][T12609] netlink: 500 bytes leftover after parsing attributes in process `syz.5.3673'.
[  154.376597][T12629] loop7: detected capacity change from 0 to 1024
[  154.409734][T12629] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.467001][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.539593][T12648] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3690'.
[  154.549585][T12648] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3690'.
[  154.559322][T12648] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3690'.
[  154.568294][T12648] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3690'.
[  154.655008][T12658] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3692'.
[  154.728703][T12670] loop3: detected capacity change from 0 to 128
[  154.882287][T12690] netlink: 'syz.7.3708': attribute type 12 has an invalid length.
[  155.012702][T12697] netlink: 'syz.4.3710': attribute type 1 has an invalid length.
[  155.046123][T12697] 8021q: adding VLAN 0 to HW filter on device bond1
[  155.206387][T12710] loop4: detected capacity change from 0 to 512
[  155.228705][T12710] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  155.258503][T12710] EXT4-fs (loop4): mount failed
[  155.675779][T12728] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  155.781025][T12744] xt_CT: You must specify a L4 protocol and not use inversions on it
[  155.817794][T12746] loop3: detected capacity change from 0 to 764
[  155.853613][ T5839] Bluetooth: hci0: Frame reassembly failed (-84)
[  155.915723][T12757] netlink: 'syz.9.3733': attribute type 21 has an invalid length.
[  155.931922][T12757] __nla_validate_parse: 3 callbacks suppressed
[  155.931947][T12757] netlink: 132 bytes leftover after parsing attributes in process `syz.9.3733'.
[  155.948051][T12757] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3733'.
[  155.962696][T12759] loop3: detected capacity change from 0 to 128
[  155.980816][T12759] FAT-fs (loop3): Directory bread(block 414) failed
[  156.016198][T12759] FAT-fs (loop3): Directory bread(block 415) failed
[  156.032739][T12759] FAT-fs (loop3): Directory bread(block 416) failed
[  156.052993][T12759] FAT-fs (loop3): Directory bread(block 417) failed
[  156.081026][T12759] FAT-fs (loop3): Directory bread(block 418) failed
[  156.103421][T12759] FAT-fs (loop3): Directory bread(block 419) failed
[  156.115067][T12765] loop9: detected capacity change from 0 to 1024
[  156.132632][T12759] FAT-fs (loop3): Directory bread(block 420) failed
[  156.158550][T12759] FAT-fs (loop3): Directory bread(block 421) failed
[  156.185879][T12759] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3734'.
[  156.249795][   T29] kauditd_printk_skb: 206 callbacks suppressed
[  156.249811][   T29] audit: type=1400 audit(668.239:5069): avc:  denied  { write } for  pid=12769 comm="syz.9.3739" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  156.302418][   T29] audit: type=1326 audit(668.289:5070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12774 comm="syz.7.3742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.412691][T12782] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3745'.
[  156.431128][T12786] netlink: 'syz.3.3747': attribute type 30 has an invalid length.
[  156.442565][T12785] netlink: 256 bytes leftover after parsing attributes in process `ÿ'.
[  156.482291][   T29] audit: type=1326 audit(668.479:5071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12790 comm="syz.7.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.506018][   T29] audit: type=1326 audit(668.479:5072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12790 comm="syz.7.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.529251][   T29] audit: type=1326 audit(668.489:5073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12790 comm="syz.7.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.553493][   T29] audit: type=1326 audit(668.489:5074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12790 comm="syz.7.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.576827][   T29] audit: type=1326 audit(668.489:5075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12790 comm="syz.7.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.600068][   T29] audit: type=1326 audit(668.489:5076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12790 comm="syz.7.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.623561][   T29] audit: type=1326 audit(668.489:5077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12790 comm="syz.7.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.646666][   T29] audit: type=1326 audit(668.489:5078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12790 comm="syz.7.3749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  156.792459][T12811] netlink: 176 bytes leftover after parsing attributes in process `syz.7.3758'.
[  156.878891][T12824] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3763'.
[  156.897308][T12824] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3763'.
[  156.910724][T12826] loop9: detected capacity change from 0 to 1024
[  156.929602][T12826] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  156.940700][T12826] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  156.978039][T12825] lo speed is unknown, defaulting to 1000
[  156.985093][T12826] JBD2: no valid journal superblock found
[  156.991044][T12826] EXT4-fs (loop9): Could not load journal inode
[  157.019977][T12833] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3767'.
[  157.029054][T12833] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3767'.
[  157.047591][T12826] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  157.292694][T12835] loop5: detected capacity change from 0 to 32768
[  157.357112][T12835]  loop5: p1 p3 < >
[  157.447394][T12862] loop3: detected capacity change from 0 to 512
[  157.458115][T12862] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  157.505587][T12862] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002]
[  157.517594][T12862] System zones: 1-12
[  157.522588][T12862] EXT4-fs (loop3): 1 truncate cleaned up
[  157.528825][T12862] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.549491][T12872] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  157.589146][T12872] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  157.601037][T12874] smc: net device bond0 applied user defined pnetid SYZ0
[  157.620210][T12874] smc: net device bond0 erased user defined pnetid SYZ0
[  157.636524][T12874] smc: ib device syz1 ibport 1 erased user defined pnetid SYZ0
[  157.648727][ T7633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.706177][T12877] lo speed is unknown, defaulting to 1000
[  157.897398][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  159.100685][T12934] netem: incorrect gi model size
[  159.105705][T12934] netem: change failed
[  159.351909][T12941] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  159.657223][ T3543] Bluetooth: hci1: command 0x1003 tx timeout
[  159.663418][ T3513] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  160.105784][T12987] netlink: 'syz.3.3836': attribute type 13 has an invalid length.
[  160.192003][T12990] lo speed is unknown, defaulting to 1000
[  160.552118][T13014] netem: incorrect gi model size
[  160.557237][T13014] netem: change failed
[  160.579118][T12996] loop9: detected capacity change from 0 to 32768
[  160.627264][T12996]  loop9: p1 p3 < >
[  160.801546][T13030] loop5: detected capacity change from 0 to 8192
[  160.970360][T13044] netem: incorrect gi model size
[  160.975476][T13044] netem: change failed
[  161.050458][T13048] loop5: detected capacity change from 0 to 512
[  161.066566][T13048] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  161.089367][T13048] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002]
[  161.106383][T13048] System zones: 1-12
[  161.118157][T13048] EXT4-fs (loop5): 1 truncate cleaned up
[  161.128893][T13048] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.191092][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.307312][T13062] ref_ctr_offset mismatch. inode: 0x7d7 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x300000018
[  161.370391][T13064] lo speed is unknown, defaulting to 1000
[  161.417254][T13068] loop4: detected capacity change from 0 to 128
[  161.454306][T13068] bio_check_eod: 19266 callbacks suppressed
[  161.454325][T13068] syz.4.3869: attempt to access beyond end of device
[  161.454325][T13068] loop4: rw=2049, sector=154, nr_sectors = 8 limit=128
[  161.475434][T13057] loop7: detected capacity change from 0 to 32768
[  161.482773][T13068] syz.4.3869: attempt to access beyond end of device
[  161.482773][T13068] loop4: rw=8390657, sector=160, nr_sectors = 2 limit=128
[  161.496771][T13068] Buffer I/O error on dev loop4, logical block 80, lost async page write
[  161.510649][T13068] syz.4.3869: attempt to access beyond end of device
[  161.510649][T13068] loop4: rw=8912896, sector=154, nr_sectors = 8 limit=128
[  161.524514][T13068] syz.4.3869: attempt to access beyond end of device
[  161.524514][T13068] loop4: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  161.539037][T13068] syz.4.3869: attempt to access beyond end of device
[  161.539037][T13068] loop4: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  161.553490][T13057]  loop7: p1 p3 < >
[  161.557913][T13068] syz.4.3869: attempt to access beyond end of device
[  161.557913][T13068] loop4: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  161.572815][T13068] syz.4.3869: attempt to access beyond end of device
[  161.572815][T13068] loop4: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  161.587697][T13068] syz.4.3869: attempt to access beyond end of device
[  161.587697][T13068] loop4: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  161.611767][T13068] syz.4.3869: attempt to access beyond end of device
[  161.611767][T13068] loop4: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  161.626938][T13068] syz.4.3869: attempt to access beyond end of device
[  161.626938][T13068] loop4: rw=8388608, sector=154, nr_sectors = 8 limit=128
[  161.830034][T13079] loop7: detected capacity change from 0 to 8192
[  161.906874][   T23] page_pool_release_retry() stalled pool shutdown: id 77, 1 inflight 60 sec
[  162.090499][   T29] kauditd_printk_skb: 78 callbacks suppressed
[  162.090515][   T29] audit: type=1400 audit(674.089:5157): avc:  denied  { create } for  pid=13085 comm="syz.3.3875" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1
[  162.160960][   T29] audit: type=1400 audit(674.159:5158): avc:  denied  { mount } for  pid=13087 comm="syz.3.3877" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  162.203949][   T29] audit: type=1400 audit(674.189:5159): avc:  denied  { relabelto } for  pid=13087 comm="syz.3.3877" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:ppp_device_t:s0"
[  162.230447][   T29] audit: type=1400 audit(674.189:5160): avc:  denied  { associate } for  pid=13087 comm="syz.3.3877" name="/" dev="cgroup2" ino=1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:ppp_device_t:s0"
[  162.259104][   T29] audit: type=1400 audit(674.199:5161): avc:  denied  { unmount } for  pid=7633 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  162.326265][T13099] __nla_validate_parse: 10 callbacks suppressed
[  162.326283][T13099] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3882'.
[  162.457099][   T29] audit: type=1400 audit(674.459:5162): avc:  denied  { ioctl } for  pid=13112 comm="syz.7.3888" path="/dev/input/event2" dev="devtmpfs" ino=245 ioctlcmd=0x4592 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  162.521617][   T29] audit: type=1400 audit(674.519:5163): avc:  denied  { bind } for  pid=13118 comm="syz.5.3892" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  162.569012][   T29] audit: type=1400 audit(674.569:5164): avc:  denied  { ioctl } for  pid=13118 comm="syz.5.3892" path="socket:[38470]" dev="sockfs" ino=38470 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  162.594832][T13120] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3892'.
[  162.668194][   T29] audit: type=1400 audit(674.669:5165): avc:  denied  { setopt } for  pid=13127 comm="syz.5.3896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  162.701139][   T29] audit: type=1400 audit(674.689:5166): avc:  denied  { write } for  pid=13127 comm="syz.5.3896" path="socket:[38488]" dev="sockfs" ino=38488 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  162.738443][T13133] all: renamed from team_slave_0
[  162.766715][T13135] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3899'.
[  162.789886][T13138] loop5: detected capacity change from 0 to 128
[  162.876515][ T3413] IPVS: starting estimator thread 0...
[  162.906935][T13158] netlink: 'syz.4.3909': attribute type 1 has an invalid length.
[  162.922454][T13158] 8021q: adding VLAN 0 to HW filter on device bond2
[  162.962561][T13158] bond2: (slave gretap1): making interface the new active one
[  162.967061][T13156] IPVS: using max 1776 ests per chain, 88800 per kthread
[  162.987534][T13158] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  163.075953][T13173] netlink: 'syz.7.3917': attribute type 12 has an invalid length.
[  163.117675][T13167] SELinux: failed to load policy
[  163.224348][T13189] random: crng reseeded on system resumption
[  163.375592][T13201] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3928'.
[  163.397972][T13201] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3928'.
[  163.549528][T13210] bridge_slave_0: left allmulticast mode
[  163.555682][T13210] bridge_slave_0: left promiscuous mode
[  163.561500][T13210] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.580981][T13210] bridge_slave_1: left allmulticast mode
[  163.587793][T13210] bridge_slave_1: left promiscuous mode
[  163.593692][T13210] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.604745][T13210] bond0: (slave bond_slave_0): Releasing backup interface
[  163.621670][T13215] sd 0:0:1:0: device reset
[  163.629135][T13210] bond0: (slave bond_slave_1): Releasing backup interface
[  163.655932][T13210] team0: Port device team_slave_0 removed
[  163.681268][T13210] team0: Port device team_slave_1 removed
[  163.699205][T13210] batman_adv: batadv0: Removing interface: batadv_slave_0
[  163.708333][T13210] batman_adv: batadv0: Removing interface: batadv_slave_1
[  163.721029][T13210] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  163.970707][T13257] bridge_slave_0: left promiscuous mode
[  163.976594][T13257] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.989014][T13257] bridge_slave_1: left allmulticast mode
[  163.994723][T13257] bridge_slave_1: left promiscuous mode
[  164.000497][T13257] bridge0: port 2(bridge_slave_1) entered disabled state
[  164.020691][ T5839] nci: nci_rf_intf_activated_ntf_packet: unsupported rf_interface 0xa1
[  164.035018][T13257] bond0: (slave bond_slave_0): Releasing backup interface
[  164.048317][T13257] bond0: (slave bond_slave_1): Releasing backup interface
[  164.063280][T13257] team0: Port device team_slave_0 removed
[  164.071973][T13257] team0: Port device team_slave_1 removed
[  164.078218][T13263] SELinux: failed to load policy
[  164.084618][T13257] batman_adv: batadv0: Removing interface: batadv_slave_0
[  164.101142][T13257] batman_adv: batadv0: Removing interface: batadv_slave_1
[  164.119857][T13257] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  164.182202][T13269] loop3: detected capacity change from 0 to 1024
[  164.236070][T13269] EXT4-fs: Ignoring removed bh option
[  164.262016][T13269] EXT4-fs: inline encryption not supported
[  164.282612][T13269] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  164.327527][T13269] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  164.337888][T13269] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 2: comm syz.3.3956: lblock 2 mapped to illegal pblock 2 (length 1)
[  164.366964][T13269] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 48: comm syz.3.3956: lblock 0 mapped to illegal pblock 48 (length 1)
[  164.431050][T13269] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.3956: Failed to acquire dquot type 0
[  164.468764][T13269] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  164.535717][T13269] EXT4-fs error (device loop3): ext4_evict_inode:253: inode #11: comm syz.3.3956: mark_inode_dirty error
[  164.554685][T13291] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3963'.
[  164.573711][T13269] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  164.599755][T13291] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3963'.
[  164.625244][T13269] EXT4-fs (loop3): 1 orphan inode deleted
[  164.636868][   T65] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  164.675573][T13269] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.698435][   T65] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:5: Failed to release dquot type 0
[  164.726497][T13297] rdma_op ffff88814d770180 conn xmit_rdma 0000000000000000
[  164.737798][T13269] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.774948][T13269] EXT4-fs error (device loop3): __ext4_get_inode_loc:4830: comm syz.3.3956: Invalid inode table block 1 in block_group 0
[  164.833857][T13269] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  164.874450][T13269] EXT4-fs error (device loop3): ext4_quota_off:7270: inode #3: comm syz.3.3956: mark_inode_dirty error
[  164.941606][T13321] loop7: detected capacity change from 0 to 512
[  164.982753][T13325] loop5: detected capacity change from 0 to 256
[  165.005813][T13321] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.030237][T13325] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  165.103391][T13321] EXT4-fs error (device loop7): ext4_xattr_block_get:597: inode #12: comm syz.7.3976: corrupted xattr block 6: invalid header
[  165.121072][T13331] sch_tbf: peakrate 7 is lower than or equals to rate 19 !
[  165.187087][T13321] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop7 ino=12
[  165.215482][T13321] EXT4-fs error (device loop7): ext4_xattr_block_get:597: inode #12: comm syz.7.3976: corrupted xattr block 6: invalid header
[  165.240831][T13321] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop7 ino=12
[  165.268885][T13321] EXT4-fs error (device loop7): ext4_xattr_block_get:597: inode #12: comm syz.7.3976: corrupted xattr block 6: invalid header
[  165.298066][T13342] gretap0: entered promiscuous mode
[  165.303796][T13321] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop7 ino=12
[  165.313231][ T5841] nci: nci_rf_intf_activated_ntf_packet: unsupported rf_interface 0xa1
[  165.314855][T13342] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3985'.
[  165.330770][T13342] gretap0: left promiscuous mode
[  165.337162][T13321] EXT4-fs error (device loop7): ext4_xattr_block_get:597: inode #12: comm syz.7.3976: corrupted xattr block 6: invalid header
[  165.365280][T13321] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop7 ino=12
[  165.384618][T13321] EXT4-fs error (device loop7): ext4_xattr_block_get:597: inode #12: comm syz.7.3976: corrupted xattr block 6: invalid header
[  165.433549][T13321] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop7 ino=12
[  165.474576][T13321] EXT4-fs error (device loop7): ext4_xattr_block_get:597: inode #12: comm syz.7.3976: corrupted xattr block 6: invalid header
[  165.496892][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  165.527737][T13351] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.562038][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.579606][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.669260][T13358] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13358 comm=syz.9.3991
[  165.962420][T13384] netlink: 14593 bytes leftover after parsing attributes in process `syz.7.4003'.
[  165.990722][T13387] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4004'.
[  166.203543][   T65] nci: nci_rf_intf_activated_ntf_packet: unsupported rf_interface 0xa1
[  166.758553][T13451] set_capacity_and_notify: 1 callbacks suppressed
[  166.758589][T13451] loop4: detected capacity change from 0 to 512
[  166.776029][T13451] EXT4-fs (loop4): 1 truncate cleaned up
[  166.783788][T13451] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.897843][T13451] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4032: bg 0: block 465: padding at end of block bitmap is not set
[  166.967699][T13451] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1608 with error 117
[  166.980533][T13451] EXT4-fs (loop4): This should not happen!! Data will be lost
[  166.980533][T13451] 
[  167.122089][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.186829][ T3513] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  167.200036][   T29] kauditd_printk_skb: 135 callbacks suppressed
[  167.200055][   T29] audit: type=1400 audit(679.199:5299): avc:  denied  { read } for  pid=13484 comm="syz.9.4046" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  167.294590][   T29] audit: type=1400 audit(679.239:5300): avc:  denied  { mount } for  pid=13486 comm="syz.3.4047" name="/" dev="configfs" ino=2054 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  167.317921][   T29] audit: type=1400 audit(679.239:5301): avc:  denied  { search } for  pid=13486 comm="syz.3.4047" name="/" dev="configfs" ino=2054 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  167.340141][   T29] audit: type=1400 audit(679.239:5302): avc:  denied  { search } for  pid=13486 comm="syz.3.4047" name="/" dev="configfs" ino=2054 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  167.362912][   T29] audit: type=1400 audit(679.239:5303): avc:  denied  { read open } for  pid=13486 comm="syz.3.4047" path="/" dev="configfs" ino=2054 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  167.372704][T13502] loop9: detected capacity change from 0 to 512
[  167.385795][   T29] audit: type=1400 audit(679.279:5304): avc:  denied  { create } for  pid=13491 comm="syz.5.4049" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  167.412203][   T29] audit: type=1400 audit(679.279:5305): avc:  denied  { write } for  pid=13491 comm="syz.5.4049" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  167.455156][T13502] EXT4-fs (loop9): 1 truncate cleaned up
[  167.481086][T13502] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.494994][   T29] audit: type=1400 audit(679.489:5306): avc:  denied  { bind } for  pid=13514 comm="syz.4.4061" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  167.521729][   T65] Bluetooth: hci0: Frame reassembly failed (-84)
[  167.574432][T13502] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.4054: bg 0: block 465: padding at end of block bitmap is not set
[  167.611711][T13502] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1484 with error 117
[  167.624429][T13502] EXT4-fs (loop9): This should not happen!! Data will be lost
[  167.624429][T13502] 
[  167.688848][   T29] audit: type=1326 audit(679.689:5307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13533 comm="syz.7.4069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  167.713133][   T29] audit: type=1326 audit(679.689:5308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13533 comm="syz.7.4069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  167.820077][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.837899][T13545] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4074'.
[  167.847321][T13545] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4074'.
[  167.881546][T13547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  167.906965][T13547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.936325][T13547] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4072'.
[  167.988756][T13534] loop3: detected capacity change from 0 to 32768
[  168.027229][T13534]  loop3: p1 p3 < >
[  168.129165][T13571] loop3: detected capacity change from 0 to 512
[  168.139201][T13571] EXT4-fs (loop3): 1 truncate cleaned up
[  168.145519][T13571] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.221838][T13571] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4083: bg 0: block 465: padding at end of block bitmap is not set
[  168.239076][T13571] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[  168.252559][T13571] EXT4-fs (loop3): This should not happen!! Data will be lost
[  168.252559][T13571] 
[  168.263066][T13583] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13583 comm=syz.7.4086
[  168.287296][ T5857] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 548 with error 28
[  168.300013][ T5857] EXT4-fs (loop3): This should not happen!! Data will be lost
[  168.300013][ T5857] 
[  168.309728][ T5857] EXT4-fs (loop3): Total free blocks count 0
[  168.315796][ T5857] EXT4-fs (loop3): Free/Dirty block details
[  168.321913][ T5857] EXT4-fs (loop3): free_blocks=0
[  168.326907][ T5857] EXT4-fs (loop3): dirty_blocks=552
[  168.332193][ T5857] EXT4-fs (loop3): Block reservation details
[  168.397770][T13591] loop7: detected capacity change from 0 to 512
[  168.408364][T13591] EXT4-fs warning (device loop7): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  168.424143][T13591] EXT4-fs (loop7): mount failed
[  168.433796][T13595] netlink: 'syz.4.4092': attribute type 3 has an invalid length.
[  168.660267][T13627] loop7: detected capacity change from 0 to 512
[  168.667380][T13627] EXT4-fs: Ignoring removed i_version option
[  168.674742][T13627] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.4108: bg 0: block 131: padding at end of block bitmap is not set
[  168.693711][T13627] EXT4-fs (loop7): Remounting filesystem read-only
[  168.707716][T13627] EXT4-fs (loop7): 1 truncate cleaned up
[  168.714061][T13627] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.737875][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.576854][ T3513] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  169.577415][ T3543] Bluetooth: hci0: command 0x1003 tx timeout
[  169.616025][T13644] loop5: detected capacity change from 0 to 512
[  169.624468][T13644] EXT4-fs (loop5): 1 truncate cleaned up
[  169.630898][T13643] pimreg: entered allmulticast mode
[  169.637678][T13644] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.650333][T13643] pimreg: left allmulticast mode
[  169.688674][T13649] loop9: detected capacity change from 0 to 128
[  169.726195][T13644] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4110: bg 0: block 465: padding at end of block bitmap is not set
[  169.741102][T13644] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[  169.754750][T13644] EXT4-fs (loop5): This should not happen!! Data will be lost
[  169.754750][T13644] 
[  169.776116][T13655] loop3: detected capacity change from 0 to 128
[  169.808542][T13652] SELinux: failed to load policy
[  169.816435][T13657] loop9: detected capacity change from 0 to 1024
[  169.851012][T13657] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.900339][T13665] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4124'.
[  169.932913][ T5857] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 140 with error 28
[  169.945753][ T5857] EXT4-fs (loop5): This should not happen!! Data will be lost
[  169.945753][ T5857] 
[  169.955702][ T5857] EXT4-fs (loop5): Total free blocks count 0
[  169.962948][ T5857] EXT4-fs (loop5): Free/Dirty block details
[  169.968905][ T5857] EXT4-fs (loop5): free_blocks=0
[  169.973882][ T5857] EXT4-fs (loop5): dirty_blocks=144
[  169.979308][ T5857] EXT4-fs (loop5): Block reservation details
[  170.018917][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.240079][T13698] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4137'.
[  170.249405][T13698] netlink: 108 bytes leftover after parsing attributes in process `syz.7.4137'.
[  170.260778][T13698] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4137'.
[  170.270232][T13698] netlink: 108 bytes leftover after parsing attributes in process `syz.7.4137'.
[  170.279436][T13698] netlink: 84 bytes leftover after parsing attributes in process `syz.7.4137'.
[  170.632859][T13715] netlink: 'syz.4.4144': attribute type 298 has an invalid length.
[  170.861530][T13723] rdma_op ffff888104839180 conn xmit_rdma 0000000000000000
[  171.055983][T13736] EXT4-fs (loop7): 1 truncate cleaned up
[  171.062103][T13736] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.168619][T13736] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.4153: bg 0: block 465: padding at end of block bitmap is not set
[  171.251158][T13736] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 512 with error 117
[  171.264238][T13736] EXT4-fs (loop7): This should not happen!! Data will be lost
[  171.264238][T13736] 
[  171.385492][T13754] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4162'.
[  171.423981][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.525831][T13769] smc: net device ip6gretap0 applied user defined pnetid SYZ2
[  171.537008][T13769] smc: net device ip6gretap0 erased user defined pnetid SYZ2
[  171.802745][T13801] smc: net device ip6gretap0 applied user defined pnetid SYZ2
[  171.829604][T13801] smc: net device ip6gretap0 erased user defined pnetid SYZ2
[  171.899050][T13816] set_capacity_and_notify: 2 callbacks suppressed
[  171.899069][T13816] loop5: detected capacity change from 0 to 1024
[  171.927155][T13816] EXT4-fs: Ignoring removed orlov option
[  171.940960][T13816] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.878427][T13848] netlink: 'syz.9.4203': attribute type 3 has an invalid length.
[  172.896715][T13849] loop3: detected capacity change from 0 to 1024
[  172.942883][T13849] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  172.994010][   T29] kauditd_printk_skb: 100 callbacks suppressed
[  172.994027][   T29] audit: type=1400 audit(684.989:5408): avc:  denied  { setopt } for  pid=13856 comm="syz.7.4208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  173.020762][T13849] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #11: comm syz.3.4205: iget: bogus i_mode (1)
[  173.035353][ T5402] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.050686][T13849] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4205: couldn't read orphan inode 11 (err -117)
[  173.083915][T13849] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.099950][   T29] audit: type=1400 audit(685.039:5409): avc:  denied  { bind } for  pid=13856 comm="syz.7.4208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  173.146031][ T7633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.179340][   T29] audit: type=1326 audit(685.179:5410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13868 comm="syz.7.4215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  173.214168][   T29] audit: type=1326 audit(685.199:5411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13868 comm="syz.7.4215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  173.238182][   T29] audit: type=1326 audit(685.199:5412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13868 comm="syz.7.4215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35eecff749 code=0x7ffc0000
[  173.288203][T13876] netlink: 'syz.7.4216': attribute type 3 has an invalid length.
[  173.299502][   T29] audit: type=1400 audit(685.299:5413): avc:  denied  { watch } for  pid=13878 comm="syz.3.4218" path="/444/file0" dev="tmpfs" ino=2296 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  173.367890][   T29] audit: type=1400 audit(685.359:5414): avc:  denied  { mounton } for  pid=13886 comm="syz.3.4222" path="mnt:[4026532691]" dev="nsfs" ino=4026532691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  173.410449][T13894] __nla_validate_parse: 2 callbacks suppressed
[  173.410501][T13894] netlink: 104 bytes leftover after parsing attributes in process `syz.4.4226'.
[  173.496191][T13901] loop4: detected capacity change from 0 to 1024
[  173.503971][T13901] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  173.515691][T13901] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #11: comm syz.4.4228: iget: bogus i_mode (1)
[  173.527438][T13901] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.4228: couldn't read orphan inode 11 (err -117)
[  173.545873][T13901] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.584899][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.725195][T13925] loop4: detected capacity change from 0 to 1024
[  173.738905][T13925] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.837478][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.928543][   T29] audit: type=1400 audit(685.919:5415): avc:  denied  { lock } for  pid=13934 comm="syz.4.4242" path="socket:[41335]" dev="sockfs" ino=41335 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  174.015715][T13939] lo speed is unknown, defaulting to 1000
[  174.361386][ T3413] IPVS: starting estimator thread 0...
[  174.467862][T13950] IPVS: using max 1728 ests per chain, 86400 per kthread
[  174.642242][   T29] audit: type=1400 audit(686.639:5416): avc:  denied  { connect } for  pid=13964 comm="syz.7.4264" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  174.661586][   T29] audit: type=1400 audit(686.639:5417): avc:  denied  { ioctl } for  pid=13964 comm="syz.7.4264" path="socket:[41425]" dev="sockfs" ino=41425 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  175.104597][T13986] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4263'.
[  175.113882][T13986] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4263'.
[  175.143577][T13991] loop9: detected capacity change from 0 to 1024
[  175.175759][T13991] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  175.220126][T13991] EXT4-fs error (device loop9): ext4_orphan_get:1391: inode #11: comm syz.9.4266: iget: bogus i_mode (1)
[  175.231953][T13991] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.4266: couldn't read orphan inode 11 (err -117)
[  175.244787][T13991] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.295367][T14010] loop3: detected capacity change from 0 to 128
[  175.310768][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.380075][T14017] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4276'.
[  175.459087][T14010] bio_check_eod: 14012 callbacks suppressed
[  175.459111][T14010] syz.3.4274: attempt to access beyond end of device
[  175.459111][T14010] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[  175.482898][T14010] syz.3.4274: attempt to access beyond end of device
[  175.482898][T14010] loop3: rw=2049, sector=185, nr_sectors = 16 limit=128
[  175.515102][T14010] syz.3.4274: attempt to access beyond end of device
[  175.515102][T14010] loop3: rw=2049, sector=209, nr_sectors = 8 limit=128
[  175.529811][T14010] syz.3.4274: attempt to access beyond end of device
[  175.529811][T14010] loop3: rw=2049, sector=225, nr_sectors = 8 limit=128
[  175.543770][T14010] syz.3.4274: attempt to access beyond end of device
[  175.543770][T14010] loop3: rw=2049, sector=241, nr_sectors = 8 limit=128
[  175.561049][T14010] syz.3.4274: attempt to access beyond end of device
[  175.561049][T14010] loop3: rw=2049, sector=257, nr_sectors = 8 limit=128
[  175.580392][T14010] syz.3.4274: attempt to access beyond end of device
[  175.580392][T14010] loop3: rw=2049, sector=273, nr_sectors = 8 limit=128
[  175.595348][T14010] syz.3.4274: attempt to access beyond end of device
[  175.595348][T14010] loop3: rw=2049, sector=289, nr_sectors = 8 limit=128
[  175.609179][T14010] syz.3.4274: attempt to access beyond end of device
[  175.609179][T14010] loop3: rw=2049, sector=305, nr_sectors = 8 limit=128
[  175.623860][T14010] syz.3.4274: attempt to access beyond end of device
[  175.623860][T14010] loop3: rw=2049, sector=321, nr_sectors = 8 limit=128
[  175.669122][T14034] SELinux: failed to load policy
[  175.762345][T14041] loop7: detected capacity change from 0 to 1024
[  175.778547][T14041] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  175.790853][T14041] EXT4-fs error (device loop7): ext4_orphan_get:1391: inode #11: comm syz.7.4287: iget: bogus i_mode (1)
[  175.802465][T14041] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.4287: couldn't read orphan inode 11 (err -117)
[  175.815662][T14041] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.843332][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.060059][T14064] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4295'.
[  176.106184][T14068] SELinux: failed to load policy
[  176.181733][T14074] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4298'.
[  176.283106][T14080] rdma_op ffff888104e76980 conn xmit_rdma 0000000000000000
[  176.654387][T14101] lo speed is unknown, defaulting to 1000
[  176.664396][T14103] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4309'.
[  176.692401][T14103] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4309'.
[  176.987076][T14115] sctp: [Deprecated]: syz.3.4314 (pid 14115) Use of int in maxseg socket option.
[  176.987076][T14115] Use struct sctp_assoc_value instead
[  177.001969][T14117] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4313'.
[  177.195696][T14125] macvtap0: refused to change device tx_queue_len
[  177.257904][T14128] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4319'.
[  177.601934][T14172] loop7: detected capacity change from 0 to 128
[  178.121747][T14231] gretap0: entered promiscuous mode
[  178.138492][T14231] gretap0: left promiscuous mode
[  178.179698][T14236] loop9: detected capacity change from 0 to 128
[  178.271734][T14242] loop4: detected capacity change from 0 to 512
[  178.286109][T14242] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  178.298215][T14242] EXT4-fs (loop4): orphan cleanup on readonly fs
[  178.305087][T14242] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  178.320616][T14242] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  178.327728][T14242] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #13: comm syz.4.4372: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  178.346089][T14242] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.4372: couldn't read orphan inode 13 (err -117)
[  178.359042][T14242] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  178.375045][T14242] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  178.389259][T14242] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  178.408004][T14242] EXT4-fs warning (device loop4): ext4_enable_quotas:7221: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  178.443122][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.592438][   T29] kauditd_printk_skb: 53 callbacks suppressed
[  178.592455][   T29] audit: type=1326 audit(690.589:5471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.632177][T14255] loop4: detected capacity change from 0 to 512
[  178.651832][   T29] audit: type=1326 audit(690.619:5472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.676561][   T29] audit: type=1326 audit(690.619:5473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.701131][   T29] audit: type=1326 audit(690.619:5474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.724167][   T29] audit: type=1326 audit(690.619:5475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.748534][   T29] audit: type=1326 audit(690.619:5476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.771612][   T29] audit: type=1326 audit(690.619:5477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.795554][   T29] audit: type=1326 audit(690.619:5478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.819462][   T29] audit: type=1326 audit(690.619:5479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.842382][   T29] audit: type=1326 audit(690.629:5480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14254 comm="syz.4.4375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe731adf749 code=0x7ffc0000
[  178.877663][T14255] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.925921][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.122440][ T2134] Bluetooth: hci0: Frame reassembly failed (-84)
[  179.161397][T14291] loop7: detected capacity change from 0 to 512
[  179.178757][T14291] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.213564][ T5501] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.266643][T14304] loop4: detected capacity change from 0 to 128
[  179.427531][T14312] netlink: 'syz.4.4399': attribute type 4 has an invalid length.
[  179.659115][T14339] loop4: detected capacity change from 0 to 1024
[  179.666137][T14339] EXT4-fs: Ignoring removed mblk_io_submit option
[  179.673609][T14339] EXT4-fs: Ignoring removed nomblk_io_submit option
[  179.688325][T14339] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.718401][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.889514][T14363] loop3: detected capacity change from 0 to 256
[  179.897072][T14363] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  180.198389][T14389] loop3: detected capacity change from 0 to 128
[  180.539400][T14402] __nla_validate_parse: 7 callbacks suppressed
[  180.539421][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.554830][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.589769][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.613865][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.622944][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.635549][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.664295][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.673356][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.683258][T14402] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4441'.
[  180.717169][T14409] loop9: detected capacity change from 0 to 256
[  180.724617][T14409] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  180.899592][T14421] SELinux:  policydb table sizes (1752392040,745564474) do not match mine (8,7)
[  180.923317][T14421] SELinux: failed to load policy
[  180.999504][T14432] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  181.027868][T14432] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4451'.
[  181.158771][ T3379] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  181.166896][ T3379] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  181.176875][ T3513] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  181.193346][T14446] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  181.205797][T14445] IPVS: stopping master sync thread 14446 ...
[  181.872818][T14473] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  182.089442][T14484] syz_tun: refused to change device tx_queue_len
[  183.117358][ T3426] usb usb8-port1: attempt power cycle
[  183.170690][T14545] set_capacity_and_notify: 1 callbacks suppressed
[  183.170707][T14545] loop9: detected capacity change from 0 to 512
[  183.184117][T14545] EXT4-fs: Ignoring removed i_version option
[  183.193988][T14545] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.4497: bg 0: block 131: padding at end of block bitmap is not set
[  183.209514][T14545] EXT4-fs (loop9): Remounting filesystem read-only
[  183.235315][T14545] EXT4-fs (loop9): 1 truncate cleaned up
[  183.242059][T14545] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.268650][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.363049][T14567] netlink: 'syz.3.4507': attribute type 4 has an invalid length.
[  183.437491][T14580] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  183.491348][T14586] loop7: detected capacity change from 0 to 256
[  183.565049][T14586] bio_check_eod: 530 callbacks suppressed
[  183.565125][T14586] syz.7.4516: attempt to access beyond end of device
[  183.565125][T14586] loop7: rw=2049, sector=256, nr_sectors = 32 limit=256
[  183.598628][T14586] syz.7.4516: attempt to access beyond end of device
[  183.598628][T14586] loop7: rw=2049, sector=352, nr_sectors = 36 limit=256
[  183.647921][T14595] syz.7.4516: attempt to access beyond end of device
[  183.647921][T14595] loop7: rw=34817, sector=261, nr_sectors = 27 limit=256
[  183.662064][T14595] syz.7.4516: attempt to access beyond end of device
[  183.662064][T14595] loop7: rw=8423425, sector=352, nr_sectors = 5 limit=256
[  183.681238][T14595] syz.7.4516: attempt to access beyond end of device
[  183.681238][T14595] loop7: rw=34817, sector=261, nr_sectors = 27 limit=256
[  183.695031][T14595] syz.7.4516: attempt to access beyond end of device
[  183.695031][T14595] loop7: rw=8423425, sector=352, nr_sectors = 5 limit=256
[  183.747622][T14603] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  183.756400][T14603] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  183.781139][ T5829] Bluetooth: hci0: Frame reassembly failed (-84)
[  184.303571][   T29] kauditd_printk_skb: 136 callbacks suppressed
[  184.303591][   T29] audit: type=1326 audit(696.299:5617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.333536][   T29] audit: type=1326 audit(696.299:5618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.356791][   T29] audit: type=1326 audit(696.299:5619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.380227][   T29] audit: type=1326 audit(696.299:5620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.403402][   T29] audit: type=1326 audit(696.299:5621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.426498][   T29] audit: type=1326 audit(696.299:5622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.449685][   T29] audit: type=1326 audit(696.299:5623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.472818][   T29] audit: type=1326 audit(696.299:5624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.495868][   T29] audit: type=1326 audit(696.309:5625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.519526][   T29] audit: type=1326 audit(696.309:5626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14613 comm="syz.9.4528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee749cf749 code=0x7ffc0000
[  184.960964][ T3426] usb usb8-port1: unable to enumerate USB device
[  185.101473][T14672] IPv6: NLM_F_CREATE should be specified when creating new route
[  185.125105][T14674] loop4: detected capacity change from 0 to 128
[  185.516432][T14701] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.525230][T14701] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  185.582478][T14713] loop7: detected capacity change from 0 to 128
[  185.604263][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x0
[  185.613151][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x0
[  185.620997][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x0
[  185.630383][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x0
[  185.639283][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x0
[  185.647178][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x0
[  185.654968][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x1
[  185.662866][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x0
[  185.671635][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: unknown main item tag 0x0
[  185.680427][ T3426] hid-generic 0000:0000:FFFFFFFC.000A: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  185.816854][ T3513] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  185.826394][T14724] loop4: detected capacity change from 0 to 1024
[  185.834900][T14724] EXT4-fs: Ignoring removed orlov option
[  185.850378][T14724] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.073044][T14731] __nla_validate_parse: 4 callbacks suppressed
[  186.073058][T14731] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4579'.
[  186.088580][T14731] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4579'.
[  186.150046][T14733] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.157349][T14733] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.696155][T14738] netlink: 'syz.3.4582': attribute type 1 has an invalid length.
[  186.702217][T14733] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  186.713074][T14733] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  186.810911][ T7324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.869779][T14738] 8021q: adding VLAN 0 to HW filter on device bond2
[  186.884739][T14739] bond2: (slave gretap0): making interface the new active one
[  186.893176][T14739] bond2: (slave gretap0): Enslaving as an active interface with an up link
[  186.902771][ T5882] netdevsim netdevsim9 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  186.911888][ T5882] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  186.923052][ T5882] netdevsim netdevsim9 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  186.932109][ T5882] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  186.972824][ T5882] netdevsim netdevsim9 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  186.981841][ T5882] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  186.991937][ T5882] netdevsim netdevsim9 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  187.001035][ T5882] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  187.018839][T14748] loop9: detected capacity change from 0 to 128
[  187.035692][T14752] loop5: detected capacity change from 0 to 128
[  187.199630][T14758] loop9: detected capacity change from 0 to 128
[  188.208935][T14778] loop3: detected capacity change from 0 to 1024
[  188.248161][T14778] EXT4-fs: Ignoring removed orlov option
[  188.288890][T14778] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.479703][T14789] dvmrp1: entered allmulticast mode
[  188.515882][T14789] dvmrp1: left allmulticast mode
[  188.673640][T14797] loop9: detected capacity change from 0 to 2048
[  188.692448][T14797] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  188.711257][T14801] loop5: detected capacity change from 0 to 128
[  188.727926][T14801] syz.5.4609: attempt to access beyond end of device
[  188.727926][T14801] loop5: rw=2049, sector=138, nr_sectors = 2 limit=128
[  188.940101][ T3513] Bluetooth: hci0: command 0x1003 tx timeout
[  188.946569][ T3543] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  188.993690][T14811] SELinux: failed to load policy
[  189.124759][T14823] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4618'.
[  189.210955][T14797] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  189.228501][T14797] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  189.241054][T14797] EXT4-fs (loop9): This should not happen!! Data will be lost
[  189.241054][T14797] 
[  189.250846][T14797] EXT4-fs (loop9): Total free blocks count 0
[  189.256929][T14797] EXT4-fs (loop9): Free/Dirty block details
[  189.262861][T14797] EXT4-fs (loop9): free_blocks=2415919104
[  189.268715][T14797] EXT4-fs (loop9): dirty_blocks=8208
[  189.274101][T14797] EXT4-fs (loop9): Block reservation details
[  189.280132][T14797] EXT4-fs (loop9): i_reserved_data_blocks=513
[  189.588310][ T7633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.672040][ T5856] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  189.687901][T14835] sd 0:0:1:0: device reset
[  189.850221][T14843] netlink: 'syz.7.4638': attribute type 1 has an invalid length.
[  189.938729][T14843] 8021q: adding VLAN 0 to HW filter on device bond2
[  189.971779][T14847] bond2: (slave gretap1): making interface the new active one
[  190.029632][T14847] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  190.057252][T14846] SELinux: failed to load policy
[  190.135770][T14855] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  190.149335][T14856] loop3: detected capacity change from 0 to 164
[  190.166641][T14855] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  190.233585][T14864] loop9: detected capacity change from 0 to 1024
[  190.252762][T14864] EXT4-fs: Ignoring removed orlov option
[  190.284829][T14864] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.530398][T14882] loop4: detected capacity change from 0 to 8192
[  190.875348][T14914] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4639'.
[  191.071476][T14928] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4642'.
[  191.162299][T14935] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4643'.
[  191.214466][T14879] ==================================================================
[  191.222626][T14879] BUG: KCSAN: data-race in __writeback_single_inode / xas_set_mark
[  191.230660][T14879] 
[  191.233037][T14879] write to 0xffff88811a4c0b5c of 4 bytes by task 14864 on cpu 0:
[  191.241128][T14879]  xas_set_mark+0x12b/0x140
[  191.245912][T14879]  __folio_start_writeback+0x155/0x340
[  191.251607][T14879]  ext4_bio_write_folio+0x5ad/0x9f0
[  191.257039][T14879]  mpage_process_page_bufs+0x4a1/0x620
[  191.262625][T14879]  mpage_prepare_extent_to_map+0x7a3/0xc20
[  191.268574][T14879]  ext4_do_writepages+0x9f6/0x27e0
[  191.273820][T14879]  ext4_writepages+0x179/0x300
[  191.278623][T14879]  do_writepages+0x1c6/0x310
[  191.283266][T14879]  file_write_and_wait_range+0x156/0x2c0
[  191.288937][T14879]  generic_buffers_fsync_noflush+0x45/0x130
[  191.294949][T14879]  ext4_sync_file+0x1ab/0x690
[  191.299646][T14879]  vfs_fsync_range+0x10d/0x130
[  191.304478][T14879]  ext4_buffered_write_iter+0x34f/0x3c0
[  191.310181][T14879]  ext4_file_write_iter+0x387/0xf60
[  191.315713][T14879]  iter_file_splice_write+0x66b/0xa20
[  191.321115][T14879]  direct_splice_actor+0x156/0x2a0
[  191.326247][T14879]  splice_direct_to_actor+0x312/0x680
[  191.331718][T14879]  do_splice_direct+0xda/0x150
[  191.336616][T14879]  do_sendfile+0x380/0x650
[  191.341055][T14879]  __x64_sys_sendfile64+0x105/0x150
[  191.346294][T14879]  x64_sys_call+0x2db1/0x3000
[  191.351028][T14879]  do_syscall_64+0xca/0x2b0
[  191.355563][T14879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.361468][T14879] 
[  191.363806][T14879] read to 0xffff88811a4c0b5c of 4 bytes by task 14879 on cpu 1:
[  191.371645][T14879]  __writeback_single_inode+0x201/0x7c0
[  191.377229][T14879]  writeback_single_inode+0x16d/0x3f0
[  191.382653][T14879]  sync_inode_metadata+0x5b/0x90
[  191.387805][T14879]  generic_buffers_fsync_noflush+0xee/0x130
[  191.393732][T14879]  ext4_sync_file+0x1ab/0x690
[  191.398627][T14879]  vfs_fsync_range+0x10d/0x130
[  191.403950][T14879]  ext4_buffered_write_iter+0x34f/0x3c0
[  191.409532][T14879]  ext4_file_write_iter+0x387/0xf60
[  191.414769][T14879]  iter_file_splice_write+0x66b/0xa20
[  191.420236][T14879]  direct_splice_actor+0x156/0x2a0
[  191.425367][T14879]  splice_direct_to_actor+0x312/0x680
[  191.430764][T14879]  do_splice_direct+0xda/0x150
[  191.435549][T14879]  do_sendfile+0x380/0x650
[  191.439995][T14879]  __x64_sys_sendfile64+0x105/0x150
[  191.445299][T14879]  x64_sys_call+0x2db1/0x3000
[  191.450076][T14879]  do_syscall_64+0xca/0x2b0
[  191.454620][T14879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.460551][T14879] 
[  191.462896][T14879] value changed: 0x0a000021 -> 0x00000021
[  191.468625][T14879] 
[  191.470969][T14879] Reported by Kernel Concurrency Sanitizer on:
[  191.477245][T14879] CPU: 1 UID: 0 PID: 14879 Comm: syz.9.4633 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  191.487098][T14879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  191.497172][T14879] ==================================================================
[  191.549611][ T7184] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.296811][ T3513] Bluetooth: hci0: command 0x1003 tx timeout
[  192.301451][ T3543] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  196.226835][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!