last executing test programs:

2m36.46071061s ago: executing program 0 (id=721):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x6}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3d, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x2, 0x0, 0x7ffffdbd}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000001080)={0x1, &(0x7f00000001c0)=[{0x6, 0x3, 0x0, 0xf00}]})

2m36.43757887s ago: executing program 0 (id=722):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x38, r3, 0x1, 0xfffffffe, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}]}, 0x38}}, 0x0)

2m36.381212671s ago: executing program 0 (id=725):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_CREATE2(r2, 0x0, 0x8)

2m36.272157753s ago: executing program 0 (id=734):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

2m36.241423143s ago: executing program 0 (id=736):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x18)
r2 = io_uring_setup(0x3eee, &(0x7f0000000080)={0x0, 0x6d33, 0x1000, 0x0, 0x4000000})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

2m36.056250417s ago: executing program 0 (id=743):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xffffffff}, 0x18)
r2 = syz_io_uring_setup(0x3bc1, &(0x7f0000000780)={0x0, 0x942e, 0x10100, 0x2, 0x289}, &(0x7f0000000540)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd=r0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x1})
io_uring_enter(r2, 0x7ad0, 0x72, 0x0, 0x0, 0x0)

2m35.996529408s ago: executing program 32 (id=743):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xffffffff}, 0x18)
r2 = syz_io_uring_setup(0x3bc1, &(0x7f0000000780)={0x0, 0x942e, 0x10100, 0x2, 0x289}, &(0x7f0000000540)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd=r0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x1})
io_uring_enter(r2, 0x7ad0, 0x72, 0x0, 0x0, 0x0)

1m38.259427972s ago: executing program 1 (id=2746):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r0, &(0x7f0000000380)={0x2, 0x4e24, @local}, 0x10)
sendmmsg(r0, &(0x7f0000006140)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="65c6d96326a838047976a77611d4c4ecc94b3585c42786716ad7c93fd3a228e9a1cd93801f5b4033ea9ae2b561f18c2893aba2af73f86ac4a65917672e186b297cada86c7b329c4831efa7228c040c757e6ce437d7853ac2cca9605a2e18bf6553fac161511f4483dc8b5294583cc78cd79fb68fb57bd8697ac1639517070e92cd2d36932b0e26cf8fdd87e817f08f7d", 0x90}, {&(0x7f00000002c0)="b16b5d1ddcad4b5eedb9593060ada4a1778939f40388ef540871ce291c1010f3310edf7028093cf8709632cad4866d5e448d5385c80db3518564b1194247acfb3b463ee97c794123a991311e51e1790748a23c3301974b905bbd18b3e54cb3cc90c180fba7461df205130349d430083d2c66828f43a4f66e274175218e8e3f", 0x7f}], 0x2}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000002880)="13d0dc432d3d3391fafe26160c215d30a476f4ac80d634079b6b579bb04ade2653f8c0f6b1a55451ddad18f6d9a81e8bc2121377f7a87a5e076ea2c1e4b0094d472684241faf30ebff5e58a61ba1c2ce470b99036209", 0x56}], 0x1}}], 0x2, 0x4000)
close(r0)

1m38.180298484s ago: executing program 1 (id=2748):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
prlimit64(0x0, 0x2, &(0x7f0000000000)={0x40000004000000, 0x800000008000000}, 0x0)
brk(0x400000ffc000)

1m38.166987354s ago: executing program 1 (id=2751):
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffac, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000000)=@chain)

1m38.071903585s ago: executing program 1 (id=2754):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

1m37.992498256s ago: executing program 1 (id=2758):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13)
r1 = socket(0x10, 0x3, 0x0)
connect$netlink(r1, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x30, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

1m37.661294002s ago: executing program 1 (id=2764):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2, 0x0, 0x7}, 0x18)
ioctl$TIOCMIWAIT(r1, 0x5453, 0x7cb7562f2d67)

1m37.614298713s ago: executing program 33 (id=2764):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2, 0x0, 0x7}, 0x18)
ioctl$TIOCMIWAIT(r1, 0x5453, 0x7cb7562f2d67)

1m34.599683052s ago: executing program 2 (id=2859):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='mmap_lock_acquire_returned\x00', r0}, 0x18)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
futex(&(0x7f0000000000)=0x2, 0x5, 0x0, 0x0, 0xfffffffffffffffc, 0x2)

1m34.303789977s ago: executing program 2 (id=2851):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xff, 0x7ffc0002}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000001f00000000000000ea1f850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xec, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x50a, &(0x7f0000000200)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

1m34.065573831s ago: executing program 2 (id=2855):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x24, r1, 0x331, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}]}, 0x24}}, 0x0)

1m33.948727023s ago: executing program 2 (id=2857):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

1m33.852810384s ago: executing program 2 (id=2860):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r2, 0x0, 0x10002}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r0}, &(0x7f0000000680), &(0x7f00000006c0)=r1}, 0x20)
timerfd_settime(0xffffffffffffffff, 0x1, 0x0, 0x0)

1m33.533909329s ago: executing program 2 (id=2867):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)

1m33.48787229s ago: executing program 34 (id=2867):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)

55.172711207s ago: executing program 7 (id=4495):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x8000)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1}})
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})

55.172542907s ago: executing program 7 (id=4496):
r0 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})

55.084381988s ago: executing program 7 (id=4500):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r2, 0x209, 0x0, 0x25dfdbfb, {}, [@FOU_ATTR_PEER_V4={0x8, 0x8, @multicast1}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e20}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000040}, 0x800)

55.084252338s ago: executing program 7 (id=4501):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x519, &(0x7f0000000340)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x24)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x1b, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a0040000000000000000000f27c0000e8ff00", [0x0, 0xffffffffffffffff]})
write$evdev(r0, &(0x7f0000000880)=[{{0x77359400}, 0x12, 0x10, 0x1}], 0x18)

54.805294464s ago: executing program 7 (id=4512):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'geneve1\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f00000003c0)="1441c05465f0006fc8afa8e40800", 0xe, 0x4008000, &(0x7f00000000c0)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)

54.511907878s ago: executing program 7 (id=4525):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='mm_page_free\x00', r0}, 0x18)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f00007f8000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
setrlimit(0x9, &(0x7f0000000000))
io_setup(0x2004, &(0x7f0000000680))

54.494311908s ago: executing program 35 (id=4525):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='mm_page_free\x00', r0}, 0x18)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f00007f8000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
setrlimit(0x9, &(0x7f0000000000))
io_setup(0x2004, &(0x7f0000000680))

53.274668378s ago: executing program 5 (id=4560):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0x2000000000000126, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f0000000040)='T', 0x1, 0x8910, &(0x7f0000000280)={0xa, 0xfffc, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c)

53.17670751s ago: executing program 5 (id=4563):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
r2 = io_uring_setup(0x51d2, &(0x7f0000000400)={0x0, 0x631d, 0x1000, 0x1, 0x2d6})
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000002700)={0x1, 0x0, 0x0, &(0x7f0000000200)=[{0x0}], 0x0}, 0x20)

53.17633423s ago: executing program 5 (id=4565):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x6, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x80000000000}, 0x18)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="380100001000130700000000000000007f000001c22300830406dd7e40ab000000000000000000ac1e0101000000000000000000b41000"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414bb0000000000000000000000000000000032000000ac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e70000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000002000000020001036f0000000000000048000200656362286369706865725f6e756c6c290000"], 0x138}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

53.14512726s ago: executing program 5 (id=4568):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x519, &(0x7f0000000340)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x24)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x1b, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a0040000000000000000000f27c0000e8ff00", [0x0, 0xffffffffffffffff]})
write$evdev(r0, &(0x7f0000000880)=[{{0x77359400}, 0x12, 0x10, 0x1}], 0x18)

52.859508085s ago: executing program 5 (id=4576):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x10, 0x7fff0000}]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r1, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={<r2=>0xffffffffffffffff})
sendfile(r2, r1, 0x0, 0x578410e9)
close_range(r0, 0xffffffffffffffff, 0x0)

52.466895571s ago: executing program 5 (id=4584):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a2c000000180a05000000000000000000020000000900020073797a30000000000900010073797a300000000014000000110001"], 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)

52.398451662s ago: executing program 36 (id=4584):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a2c000000180a05000000000000000000020000000900020073797a30000000000900010073797a300000000014000000110001"], 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)

1.672173413s ago: executing program 9 (id=6686):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffd}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
setxattr$incfs_metadata(&(0x7f0000000800)='./cgroup\x00', &(0x7f0000000840), 0x0, 0x0, 0x1)
removexattr(&(0x7f0000000200)='./cgroup\x00', &(0x7f0000000240)=@known='user.incfs.metadata\x00')

1.438193326s ago: executing program 9 (id=6701):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x26e1, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x8901, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110c23003f)
write$cgroup_devices(r0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="80fd"], 0xa)

1.328722158s ago: executing program 9 (id=6695):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x1f00, 0xe, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x25c}}, 0x0)

833.773926ms ago: executing program 9 (id=6706):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
writev(r0, &(0x7f0000004340)=[{&(0x7f0000002080)="4f7f61bfe7ec271202403a540b524a03bda1e44111dd69d3924090d27ac2f6b2c654d94690a10a33d0", 0x29}], 0x1)

774.054457ms ago: executing program 9 (id=6710):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000380)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0x0, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./bus/file0\x00')

642.367079ms ago: executing program 3 (id=6713):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000540)={'syzkaller1\x00', @link_local})
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10, &(0x7f0000000680), 0xfe, 0x244, &(0x7f0000000400)="$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")
write$tun(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="034886dd09032800030020000000600000000004730081e949b93897bc3b0000000000007d01ff020000000000000000000000000001"], 0xfdef)

641.905459ms ago: executing program 9 (id=6714):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmsg(r1, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r2, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

547.385011ms ago: executing program 8 (id=6719):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000400), r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000feffffff850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x0, 0x20040}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x18, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, r2, 0x225, 0x78020}}}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4e3049499c8c8bad}, 0x0)

512.937922ms ago: executing program 4 (id=6720):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x7fffffffffffffff}, 0x18)
ioctl$VT_DISALLOCATE(r0, 0x5608)

463.213232ms ago: executing program 4 (id=6721):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r2, &(0x7f0000000140)="24000000010006", 0x7)

449.579972ms ago: executing program 6 (id=6722):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f00000001c0)=0x7f, 0x4)
close(r1)

419.830113ms ago: executing program 4 (id=6723):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$eJzs3U1sG2UaAOB3xvH2L9t0pV1pd9VDtYtUpKpO0h8onNorolKlHpC4lMhxoyhOHMUONFEO6b1C9IAA9VJucOAI4sABcUHiwpULiDNSRSOQmh7AyH9pm9jBKXWdxs8jjT3ffON5v2/G73hmNCMHMLCO1V7SiP9ExKUkYuShuqFoVh5rzLe+tpK/v7aST6JavfxzEklE3FtbybfmT5rvhyJiNSL+HRFfZSNOpFvjlpeWZyaKxcJCszxamZ0fLS8tn5yenZgqTBXmTr/40tlzZ86Onxrv3Pjszvp644ebb9/49pXbNz/+5Ohq/t2JJM7HcLPu4X48SY11ko3zm6af6UWwPkr63QAeS6aZ57VU+leMRKaZ9e1UR55q04Aeq+6LqO5Esrqj2YHdLNlZ/gN7Rus4oHb+2xoeOUDI9Pb4486FxglILe56c2jUDDWuTcT++rnJwV+SR85MauebR3rbNAbA6vWIGBsa2vr9T5rfv8c39iQaSE99eaGxobZu/3Rj/xNt9j/DrWunf1Fr/7e+Zf/3IH6mw/7vUpcxfnv9xw86xr8e8d+28ZON+Emb+GlEvNFl/FuvfX6uU131w4jj0T5+S7L99eHRq9PFwljjtW2ML44ffXm7/h/sEL9xzXZ//Wem3fqf77L/n3396f9Wt4n//P+33/7t1v+BiHiny/j/uPfRq53q7lxP7taOAna6/WvTbncZ/4Xzx77vUHWgy0UAAAAAAAAAAABtpPV72ZI0tzGeprlc4xnef8bBtFgqV05cLS3OTTbueTsS2bR1p9VIo5zUyuPN+3Fb5VObyqdb9xFnDtTLuXypONnnvgMAAAAAAAAAAAAAAAAAAMBucWjT8/+/ZurP/2/+u2pgr+r8l9/AXif/YXA9mv9JxL6+NQV4yvz+w8Cqyn8YXPIfBpf8h8El/2FwyX8YXPIfBpf8BwAAAAAAAAAAAAAAAAAAAAAAAACAnrh08WJtqN5fW8nXypNDS4szpTdPThbKM7nZxXwuX1qYz02VSlPFQi5fmv2z5RVLpfmxmFu8NloplCuj5aXlK7OlxbnKlenZianClUL2qfQKAAAAAAAAAAAAAAAAAAAAni3D9SFJcxGR1sfTNJeL+HtEHIlscnW6WBiLiMMR8V0mu69WHu93owEAAAAAAAAAAAAAAAAAAGCPKS8tz0wUi4WFARkZ2jLlm84zR8Tqk21GbYk7/lS2ua12yzp81kYObz9PJvrewt040ucdEwAAAAAAAAAAAAAAAAAADKAHD/12+4nfe9sgAAAAAAAAAAAAAAAAAAAAGEjpT0lE1IbjI88Nb679W7Keqb9HxFu3Lr93baJSWRivTb+7Mb3yfnP6qX60H+hWK09beQwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8UF5anpkoFgsLPRzpdx8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHscfAQAA//+aXtbd")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='Q', 0x1, 0x200980)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000000)=0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r1, r1, 0x0, 0xe0000000)

419.263693ms ago: executing program 8 (id=6733):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000002600000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000080)={0x1}, 0x8)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_GET_VERSION_NUM(r2, 0x2284, &(0x7f0000000080))

418.810013ms ago: executing program 3 (id=6724):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd700044000000040000000800090002"], 0x40}}, 0x0)

387.228774ms ago: executing program 6 (id=6725):
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4600, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x40114df, 0x0, 0x1, 0x89}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r0, 0x3516, 0xaddf, 0x2, 0x0, 0x1517f)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)

304.676235ms ago: executing program 3 (id=6726):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r0, &(0x7f0000000000)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0x7, 0x0, 0x3, 0x7, 0x2, 0x3, 0x6, 0x32e, 0x38, 0x0, 0xe, 0x0, 0x20, 0x1, 0x5}, [{0x3, 0x8, 0xf3, 0x7f, 0x4, 0x200004, 0xc, 0x400}]}, 0x58)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x57, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000600)='kfree\x00', r1}, 0x18)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

304.376655ms ago: executing program 6 (id=6727):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000000)={[{@errors_remount}, {@nobh}]}, 0x1, 0x513, &(0x7f0000000380)="$eJzs3d9rY1kdAPDvvW1mOzNdk1WRdcF1cVc6i07Sbt3dIqLriz4tqOv7WNu0lCZNadJ1Whbt4H8ggoJPPvki+AcIwzz4B8jAgL6ID6KiiM7og6DOlSQ3TidN2rrTNp3m84HTnHPvzf2ec0NO7o/TewMYWy9FxFsRMRERr0ZEMZ+e5in2uqm93IP77y21UxJZ9s5fk0jyab11tcuTEXE1f9tURHztyxHfTA7Gbe7sri/WatWtvFxp1TcrzZ3d62v1xdXqanVjfn7ujYU3F15fmM1yT9TOUi/zky99/vanv/W7G3++9u12tT73kShEXztOUrfphc626Glvo63TCDYCE3l7CqOuCAAAx9Lex/9gRHyis/9fjInO3lyfiVHUDAAAADgp2Rem499JRAYAAABcWGlETEeSlvOxANORppfycwMfjitprdFsfWqlsb2x3J4XUYpCurJWq87mY4VLUUja5bl8jG2v/FpfeT4inouI7xcvd8rlpUZtecTnPgAAAGBcXO07/v9HMe3kjzbg/wQAAACA86s0tAAAAABcFA75AQAA4OLrP/6/PaJ6AAAAAKfiK2+/3U5Z7/nXy+/ubK833r2+XG2ul+vbS+WlxtZmebXRWO3cs69+1PpqjcbmZ2Jj+2alVW22Ks2d3Rv1xvZG68baY4/ABgAAAM7Qcx+/8+skIvY+e7mTIr8PIMBj/jDqCgAnaWLUFQBGxl28YXwVRl0BYOSSI+YbvAMAAE+/mY8evP7fe/6/cwNwsRnrAwDjx/V/GF8FIwBhrKUR8YFu9plhywy9/v/L40bJsoi7xf1TnF8EAICzNd1JSVrOjwOmI03L5YhnI9JSFJKVtVp1Nj8++FWx8Ey7PNd5Z3LkmGEAAAAAAAAAAAAAAAAAAAAAAAAAoCvLksgAAACACy0i/VPSuZt/xEzxlen+8wOXkn8W44954Ufv/ODmYqu1Ndee/rfOs7wuRUTrh/n014Y+PgwAAAA4acne0Fnd4/T8de5MawUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAGHhw/72lXjrLuH/5YkSUBsWfjKnO61QUIuLK35OY3Pe+JCImTiD+3q2IeH5Q/CQeZllWymvRHz+NiMunHL/U2TTD4189gfgwzu60+5+3Bn3/0nip8zr4+zeZpyc1vP9L88jPd/q5Qf3fswfWVh8Y44V7P6sMjX8r4oXJwf1Pr/9NhsR/+cDa/pVl2cEY3/j67u6w+NmPI2YG/v4kj8WqtOqblebO7vW1+uJqdbW6MT8/98bCmwuvL8xWVtZq1fzvwBjf+9jPHx7W/isD4v/2N93+97D2vzJspX3+c+/m/Q91s4VB8a+9PPD3dyqGxE/z375P5vn2/Jlefq+b3+/Fn9598bD2Lw/Z/kd9/teO2f5Xv/rd3x9zUQDgDDR3dtcXa7Xq1iGZqWMs8zRmfjF1Lqrxf2ay73Q/ufNSn/ebae+tPprSa9U5qNi+THZmsSbinDT5f5mRdksAAMApeLTTP+qaAAAAAAAAAAAAAAAAAAAAwPg6i9uJ9cfcG01TAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO9d8AAAD//ysA4A0=")

304.243805ms ago: executing program 3 (id=6728):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x180, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0x16c, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0xfffffdd6}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0xd4, 0x3, 0x0, 0x0, {{0x9}, {0x58, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x0, 0x3, {0x2, 0xea3, 0x7}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1d28}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7ff, 0xd8, 0x0, 0x9, 0x100000e0}}]}, {0x52, 0x6, "a06b1d1931f3579c6d7c5159238a286074602c3726c701f3c0d5382de62a6e8c4fb714fcd674c66cd306a4f78d3d05530609c9b04b7483bd084d70df8e77e6fbd503917aa0a6c737cef0ed021b60"}, {0xc}, {0x1, 0x8, {0x2, 0x2}}}}]}]}, 0x180}}, 0x0)

250.120176ms ago: executing program 8 (id=6729):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x80000}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18020000fcffffff00000000000000008500000041000000850000007d00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2111, 0x300, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

191.155687ms ago: executing program 4 (id=6730):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0xfffffffffffffffe}, 0x18)
close(r0)

164.114207ms ago: executing program 3 (id=6731):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x4d8, 0x0, 0x11, 0x148, 0x0, 0x0, 0x440, 0x2a8, 0x2a8, 0x440, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x88000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}, {0x0, 0x0, 0x81}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x538)

153.131087ms ago: executing program 8 (id=6732):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x7fffffffffffffff}, 0x18)
ioctl$VT_DISALLOCATE(r0, 0x5608)

112.417268ms ago: executing program 6 (id=6734):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r2, &(0x7f0000000140)="24000000010006", 0x7)

80.531559ms ago: executing program 4 (id=6735):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x1d}, 0x18)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000400)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x48}}], 0x30, 0x40014}, 0x0)

52.750109ms ago: executing program 3 (id=6736):
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
ppoll(&(0x7f0000000500)=[{r0}], 0x1, 0x0, 0x0, 0x0)

50.494329ms ago: executing program 4 (id=6737):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x26e1, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x8901, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110c23003f)
write$cgroup_devices(r0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="80fd"], 0xa)

42.028229ms ago: executing program 6 (id=6738):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
writev(r0, &(0x7f0000004340)=[{&(0x7f0000002080)="4f7f61bfe7ec271202403a540b524a03bda1e44111dd69d3924090d27ac2f6b2c654d94690a10a33d0", 0x29}], 0x1)

24.723039ms ago: executing program 8 (id=6739):
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x40001, 0x0)

18.588029ms ago: executing program 6 (id=6740):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x20044e, &(0x7f00000001c0)={[{@minixdf}, {@inlinecrypt}, {@inlinecrypt}, {@noblock_validity}, {@usrjquota}]}, 0x1, 0x454, &(0x7f0000000400)="$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")
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r1, 0x4b72, &(0x7f00000003c0)={0x1, 0x1, 0x4, 0x0, 0x34, &(0x7f0000000940)})

0s ago: executing program 8 (id=6741):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000140)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x25dfdbfd, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {0x0, 0x0, 0x0, 0xffffffff}, {0x3, 0x4, 0x20, 0x1000000}, {0x0, 0x2}, {0x0, 0x0, 0x0, 0x2}, {}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x7, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0)

kernel console output (not intermixed with test programs):

(loop8): Total free blocks count 0
[  162.674575][T15967] EXT4-fs (loop8): Free/Dirty block details
[  162.680489][T15967] EXT4-fs (loop8): free_blocks=0
[  162.685487][T15967] EXT4-fs (loop8): dirty_blocks=2256
[  162.690797][T15967] EXT4-fs (loop8): Block reservation details
[  162.697577][T15967] EXT4-fs (loop8): i_reserved_data_blocks=2256
[  162.739150][   T37] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 204 with error 28
[  162.826802][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.834424][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.841877][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.850417][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.858007][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.865513][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.873054][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.880503][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.880533][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.895510][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903074][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903179][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903205][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903225][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903591][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903626][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903719][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903745][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903771][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903876][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903902][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903923][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903943][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903962][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.903986][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.904056][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.904081][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.904102][   T10] hid-generic 0000:0000:0800.000D: unknown main item tag 0x0
[  162.908691][   T10] hid-generic 0000:0000:0800.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  163.104772][T16018] xt_TPROXY: Can be used only with -p tcp or -p udp
[  163.121435][T16020] loop8: detected capacity change from 0 to 256
[  163.128462][T16020] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  163.240515][T16034] sctp: [Deprecated]: syz.3.4974 (pid 16034) Use of int in max_burst socket option deprecated.
[  163.240515][T16034] Use struct sctp_assoc_value instead
[  163.308051][   T29] kauditd_printk_skb: 308 callbacks suppressed
[  163.308110][   T29] audit: type=1400 audit(163.355:4816): avc:  denied  { read write } for  pid=16048 comm="+}[@" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  163.344458][   T29] audit: type=1400 audit(163.355:4817): avc:  denied  { open } for  pid=16048 comm="+}[@" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  163.366841][   T29] audit: type=1400 audit(163.355:4818): avc:  denied  { ioctl } for  pid=16048 comm="+}[@" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  163.401839][   T29] audit: type=1400 audit(163.415:4819): avc:  denied  { getopt } for  pid=16046 comm="syz.6.4979" lport=51 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  163.462957][   T29] audit: type=1326 audit(163.515:4820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16060 comm="syz.9.4984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  163.501283][   T29] audit: type=1326 audit(163.515:4821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16060 comm="syz.9.4984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  163.535923][   T29] audit: type=1326 audit(163.555:4822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16060 comm="syz.9.4984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  163.537270][T16063] netlink: 'syz.8.4985': attribute type 12 has an invalid length.
[  163.559807][   T29] audit: type=1326 audit(163.555:4823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16060 comm="syz.9.4984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  163.679029][   T29] audit: type=1400 audit(163.725:4824): avc:  denied  { write } for  pid=16075 comm="syz.8.4990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  163.729135][   T29] audit: type=1326 audit(163.765:4825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16079 comm="syz.6.4991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  163.907426][T16111] ipvlan2: entered promiscuous mode
[  163.914468][T16111] bridge0: port 2(ipvlan2) entered blocking state
[  163.921012][T16111] bridge0: port 2(ipvlan2) entered disabled state
[  163.930955][T16111] ipvlan2: entered allmulticast mode
[  163.936464][T16111] bridge0: entered allmulticast mode
[  163.944675][T16111] ipvlan2: left allmulticast mode
[  163.949880][T16111] bridge0: left allmulticast mode
[  163.984909][T16117] 9pnet_fd: Insufficient options for proto=fd
[  164.093465][T16133] vlan2: entered allmulticast mode
[  164.098642][T16133] bridge0: entered allmulticast mode
[  164.105435][T16133] batman_adv: batadv0: Adding interface: vlan2
[  164.111704][T16133] batman_adv: batadv0: The MTU of interface vlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.137751][T16133] batman_adv: batadv0: Interface activated: vlan2
[  164.169581][T16137] loop4: detected capacity change from 0 to 256
[  164.192925][T16137] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  164.266528][T16151] unsupported nlmsg_type 40
[  164.323581][T16165] block device autoloading is deprecated and will be removed.
[  164.331793][T16165] syz.4.5033: attempt to access beyond end of device
[  164.331793][T16165] md33: rw=2048, sector=0, nr_sectors = 8 limit=0
[  164.453639][T16178] usb usb6: usbfs: process 16178 (syz.6.5040) did not claim interface 0 before use
[  164.507867][T16191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:0c) already exists on: vlan2
[  164.517693][T16191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.537114][T16191] ipvlan2: entered promiscuous mode
[  164.547180][T16191] bridge0: port 3(ipvlan2) entered blocking state
[  164.553736][T16191] bridge0: port 3(ipvlan2) entered disabled state
[  164.560748][T16191] ipvlan2: entered allmulticast mode
[  164.566910][T16191] bridge0: entered allmulticast mode
[  164.574117][T16191] ipvlan2: left allmulticast mode
[  164.579395][T16191] bridge0: left allmulticast mode
[  164.609375][T16208] loop4: detected capacity change from 0 to 512
[  164.623619][T16208] EXT4-fs warning (device loop4): dx_probe:848: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  164.635253][T16208] EXT4-fs warning (device loop4): dx_probe:851: Enable large directory feature to access it
[  164.636812][T16210] ip6tnl1: entered promiscuous mode
[  164.645405][T16208] EXT4-fs warning (device loop4): dx_probe:936: inode #2: comm syz.4.5055: Corrupt directory, running e2fsck is recommended
[  164.650636][T16210] ip6tnl1: entered allmulticast mode
[  164.668562][T16208] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  164.678657][T16208] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.5055: corrupted in-inode xattr: invalid ea_ino
[  164.693303][T16208] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.5055: couldn't read orphan inode 15 (err -117)
[  164.706754][T16208] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.750975][T16208] EXT4-fs warning (device loop4): dx_probe:848: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  164.763173][T16208] EXT4-fs warning (device loop4): dx_probe:851: Enable large directory feature to access it
[  164.773304][T16208] EXT4-fs warning (device loop4): dx_probe:936: inode #2: comm syz.4.5055: Corrupt directory, running e2fsck is recommended
[  164.787633][T16208] EXT4-fs warning (device loop4): dx_probe:848: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  164.799839][T16208] EXT4-fs warning (device loop4): dx_probe:851: Enable large directory feature to access it
[  164.810243][T16208] EXT4-fs warning (device loop4): dx_probe:936: inode #2: comm syz.4.5055: Corrupt directory, running e2fsck is recommended
[  164.825579][T16208] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz.4.5055: path /980/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  164.847544][T16208] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 64: comm syz.4.5055: path /980/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  164.873597][T16222] loop9: detected capacity change from 0 to 256
[  164.880507][T16222] FAT-fs (loop9): bogus number of FAT sectors
[  164.886663][T16222] FAT-fs (loop9): Can't find a valid FAT filesystem
[  164.940770][T16228] ALSA: seq fatal error: cannot create timer (-19)
[  165.005936][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.089481][T16239] Falling back ldisc for ttyS3.
[  165.128328][T16260] netlink: 'syz.9.5077': attribute type 21 has an invalid length.
[  165.140901][T16262] loop8: detected capacity change from 0 to 512
[  165.149632][T16260] netlink: 'syz.9.5077': attribute type 1 has an invalid length.
[  165.172075][T16266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:0c) already exists on: vlan2
[  165.175750][T16262] EXT4-fs warning (device loop8): dx_probe:848: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  165.181792][T16266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.193277][T16262] EXT4-fs warning (device loop8): dx_probe:851: Enable large directory feature to access it
[  165.213370][T16262] EXT4-fs warning (device loop8): dx_probe:936: inode #2: comm syz.8.5078: Corrupt directory, running e2fsck is recommended
[  165.230469][T16266] vlan0: entered allmulticast mode
[  165.236331][T16266] bridge0: entered allmulticast mode
[  165.243434][T16262] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -117
[  165.252240][T16262] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.5078: corrupted in-inode xattr: invalid ea_ino
[  165.269852][T16262] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.5078: couldn't read orphan inode 15 (err -117)
[  165.284340][T16262] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.338904][T16262] EXT4-fs warning (device loop8): dx_probe:848: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  165.350613][T16262] EXT4-fs warning (device loop8): dx_probe:851: Enable large directory feature to access it
[  165.360875][T16262] EXT4-fs warning (device loop8): dx_probe:936: inode #2: comm syz.8.5078: Corrupt directory, running e2fsck is recommended
[  165.377261][T16262] EXT4-fs warning (device loop8): dx_probe:848: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  165.388987][T16262] EXT4-fs warning (device loop8): dx_probe:851: Enable large directory feature to access it
[  165.390577][T16281] loop6: detected capacity change from 0 to 512
[  165.399079][T16262] EXT4-fs warning (device loop8): dx_probe:936: inode #2: comm syz.8.5078: Corrupt directory, running e2fsck is recommended
[  165.399213][T16262] EXT4-fs error (device loop8): ext4_readdir:264: inode #2: block 3: comm syz.8.5078: path /102/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  165.439327][T16262] EXT4-fs error (device loop8): ext4_readdir:264: inode #2: block 64: comm syz.8.5078: path /102/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  165.484849][T16281] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.539255][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.559133][T16293] loop3: detected capacity change from 0 to 1024
[  165.569976][T16281] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.5086: Failed to acquire dquot type 0
[  165.583131][T16293] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.598836][T16295] __nla_validate_parse: 31 callbacks suppressed
[  165.598853][T16295] netlink: 36 bytes leftover after parsing attributes in process `syz.9.5093'.
[  165.618025][T16293] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  165.649032][T16299] loop8: detected capacity change from 0 to 8192
[  165.664527][T16293] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28
[  165.676958][T16293] EXT4-fs (loop3): This should not happen!! Data will be lost
[  165.676958][T16293] 
[  165.686727][T16293] EXT4-fs (loop3): Total free blocks count 0
[  165.692750][T16293] EXT4-fs (loop3): Free/Dirty block details
[  165.698696][T16293] EXT4-fs (loop3): free_blocks=20480
[  165.704134][T16293] EXT4-fs (loop3): dirty_blocks=496
[  165.709377][T16293] EXT4-fs (loop3): Block reservation details
[  165.715438][T16293] EXT4-fs (loop3): i_reserved_data_blocks=31
[  165.723184][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.779967][ T3415] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  165.875848][T16320] loop4: detected capacity change from 0 to 2048
[  165.912672][T16320]  loop4: p1 < > p4
[  165.920044][T16320] loop4: p4 size 8388608 extends beyond EOD, truncated
[  166.102599][T16351] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5117'.
[  166.114380][T16354] macsec1: entered allmulticast mode
[  166.210083][T16370] team_slave_0: entered promiscuous mode
[  166.215808][T16370] team_slave_1: entered promiscuous mode
[  166.248160][T16376] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5127'.
[  166.259144][T16370] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  166.271598][T16370] team0: Device macvtap1 is already an upper device of the team interface
[  166.289549][T16370] team_slave_0: left promiscuous mode
[  166.295079][T16370] team_slave_1: left promiscuous mode
[  166.324523][T16378] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:0c) already exists on: vlan2
[  166.334897][T16378] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.345464][T16384] 9pnet_fd: p9_fd_create_unix (16384): problem connecting socket: ./file1: -2
[  166.360404][T16378] ipvlan2: entered promiscuous mode
[  166.368898][T16378] bridge0: port 3(ipvlan2) entered blocking state
[  166.375491][T16378] bridge0: port 3(ipvlan2) entered disabled state
[  166.382265][T16378] ipvlan2: entered allmulticast mode
[  166.387586][T16378] bridge0: entered allmulticast mode
[  166.399325][T16378] ipvlan2: left allmulticast mode
[  166.404505][T16378] bridge0: left allmulticast mode
[  166.494691][T16390] loop9: detected capacity change from 0 to 8192
[  166.583600][T16401] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  166.633284][T16406] SELinux:  Context system_u:object_r:man_t:s0 is not valid (left unmapped).
[  166.718489][T16422] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:0c) already exists on: vlan2
[  166.728485][T16422] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.741350][T16422] ipvlan2: entered promiscuous mode
[  166.749847][T16422] bridge0: port 3(ipvlan2) entered blocking state
[  166.756610][T16422] bridge0: port 3(ipvlan2) entered disabled state
[  166.763668][T16422] ipvlan2: entered allmulticast mode
[  166.769604][T16422] ipvlan2: left allmulticast mode
[  167.268616][T16500] macsec1: entered allmulticast mode
[  167.330041][T16504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:0c) already exists on: vlan2
[  167.339829][T16504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.368590][T16504] ipvlan2: entered promiscuous mode
[  167.375819][T16504] bridge0: port 3(ipvlan2) entered blocking state
[  167.383043][T16504] bridge0: port 3(ipvlan2) entered disabled state
[  167.391888][T16504] ipvlan2: entered allmulticast mode
[  167.397238][T16504] bridge0: entered allmulticast mode
[  167.403954][T16504] ipvlan2: left allmulticast mode
[  167.409039][T16504] bridge0: left allmulticast mode
[  167.592614][T16520] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  167.650348][T16535] x_tables: ip_tables: udp match: only valid for protocol 17
[  167.710707][T16544] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  167.722446][T16546] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5182'.
[  167.732961][T16546] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5182'.
[  167.832877][T16556] hub 9-0:1.0: USB hub found
[  167.839566][T16556] hub 9-0:1.0: 8 ports detected
[  167.975884][T16579] loop6: detected capacity change from 0 to 8192
[  168.107268][T16600] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  168.153406][T16607] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5212'.
[  168.200515][T16614] loop3: detected capacity change from 0 to 128
[  168.237584][T16618] netlink: 596 bytes leftover after parsing attributes in process `syz.9.5215'.
[  168.276013][T16624] loop4: detected capacity change from 0 to 128
[  168.312390][T16624] FAT-fs (loop4): error, invalid FAT chain (i_pos 548, last_block 8)
[  168.320641][T16624] FAT-fs (loop4): Filesystem has been set read-only
[  168.338210][T16624] FAT-fs (loop4): error, corrupted file size (i_pos 548, 522)
[  168.402810][T16637] rdma_op ffff8881180c6580 conn xmit_rdma 0000000000000000
[  168.440179][   T29] kauditd_printk_skb: 599 callbacks suppressed
[  168.440196][   T29] audit: type=1326 audit(168.485:5423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16640 comm="syz.6.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  168.483956][   T29] audit: type=1326 audit(168.495:5424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16640 comm="syz.6.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  168.507040][   T29] audit: type=1326 audit(168.495:5425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16640 comm="syz.6.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  168.530169][   T29] audit: type=1326 audit(168.525:5426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16640 comm="syz.6.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  168.579306][   T29] audit: type=1400 audit(168.565:5427): avc:  denied  { read } for  pid=16642 comm="syz.3.5228" name="usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  168.602844][   T29] audit: type=1400 audit(168.565:5428): avc:  denied  { open } for  pid=16642 comm="syz.3.5228" path="/dev/usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  168.626265][   T29] audit: type=1326 audit(168.615:5429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16647 comm="syz.4.5231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb458d7e169 code=0x7ffc0000
[  168.650215][   T29] audit: type=1326 audit(168.615:5430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16647 comm="syz.4.5231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb458d7e169 code=0x7ffc0000
[  168.674734][   T29] audit: type=1326 audit(168.615:5431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16647 comm="syz.4.5231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fb458d7e169 code=0x7ffc0000
[  168.697560][   T29] audit: type=1326 audit(168.615:5432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16647 comm="syz.4.5231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb458d7e169 code=0x7ffc0000
[  168.827304][T16666] netlink: 'syz.4.5236': attribute type 3 has an invalid length.
[  168.835254][T16666] netlink: 'syz.4.5236': attribute type 4 has an invalid length.
[  168.843078][T16666] netlink: 9067 bytes leftover after parsing attributes in process `syz.4.5236'.
[  168.963319][T16677] xt_hashlimit: size too large, truncated to 1048576
[  168.980863][T16679] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5244'.
[  168.981428][T16670] infiniband syz!: set down
[  168.994467][T16670] infiniband syz!: added team_slave_0
[  169.000472][T16679] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  169.089623][T16670] RDS/IB: syz!: added
[  169.098747][T16670] smc: adding ib device syz! with port count 1
[  169.116590][T16670] smc:    ib device syz! port 1 has pnetid 
[  169.515834][T16720] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5262'.
[  169.595675][T16734] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  169.627226][T16739] xt_hashlimit: size too large, truncated to 1048576
[  169.699487][T16749] loop6: detected capacity change from 0 to 512
[  169.794295][T16749] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.874820][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.158127][T16772] loop6: detected capacity change from 0 to 1024
[  170.196001][T16776] netlink: 'syz.4.5284': attribute type 1 has an invalid length.
[  170.207427][T16774] bridge0: entered promiscuous mode
[  170.215161][T16772] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.231193][T16774] macvlan2: entered promiscuous mode
[  170.239084][T16774] bridge0: port 3(macvlan2) entered blocking state
[  170.245775][T16774] bridge0: port 3(macvlan2) entered disabled state
[  170.313458][T16774] macvlan2: entered allmulticast mode
[  170.318916][T16774] bridge0: entered allmulticast mode
[  170.346097][T16784] loop4: detected capacity change from 0 to 1024
[  170.365291][T16774] macvlan2: left allmulticast mode
[  170.370468][T16774] bridge0: left allmulticast mode
[  170.378419][T16784] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  170.388596][T16784] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  170.402812][T16774] bridge0: left promiscuous mode
[  170.423467][T16784] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: inode #32: comm syz.4.5286: iget: special inode unallocated
[  170.452863][T16784] EXT4-fs (loop4): Remounting filesystem read-only
[  170.459660][T16784] EXT4-fs (loop4): no journal found
[  170.465592][T16784] EXT4-fs (loop4): can't get journal size
[  170.472584][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.544319][T16784] EXT4-fs (loop4): failed to initialize system zone (-117)
[  170.562864][T16784] EXT4-fs (loop4): mount failed
[  170.737289][T16821] loop4: detected capacity change from 0 to 512
[  170.753627][T16821] EXT4-fs error (device loop4): ext4_orphan_get:1390: inode #15: comm syz.4.5304: casefold flag without casefold feature
[  170.767086][T16821] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.5304: couldn't read orphan inode 15 (err -117)
[  170.784965][T16821] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.816573][T16832] loop8: detected capacity change from 0 to 1024
[  170.823600][T16834] SELinux: failed to load policy
[  170.829752][T16832] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  170.850485][T16832] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  170.890654][T16832] EXT4-fs error (device loop8): ext4_get_journal_inode:5798: inode #32: comm syz.8.5307: iget: special inode unallocated
[  170.916758][T16832] EXT4-fs (loop8): Remounting filesystem read-only
[  170.923372][T16832] EXT4-fs (loop8): no journal found
[  170.928754][T16832] EXT4-fs (loop8): can't get journal size
[  170.968912][T16832] EXT4-fs (loop8): failed to initialize system zone (-117)
[  170.976537][T16832] EXT4-fs (loop8): mount failed
[  171.060020][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.128913][T16862] loop8: detected capacity change from 0 to 128
[  171.135903][T16862] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  171.138997][T16757] nci: nci_rsp_packet: unknown rsp opcode 0x23f
[  171.149162][T16862] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  171.434824][T16870] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  171.453555][T16872] __nla_validate_parse: 4 callbacks suppressed
[  171.453575][T16872] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5320'.
[  171.474774][T16872] bond2: entered promiscuous mode
[  171.479841][T16872] bond2: entered allmulticast mode
[  171.486020][T16872] 8021q: adding VLAN 0 to HW filter on device bond2
[  171.736123][T16909] loop3: detected capacity change from 0 to 256
[  171.742861][T16909] vfat: Unknown parameter '��18446744073709551615'
[  171.873539][T16918] loop3: detected capacity change from 0 to 8192
[  171.898465][T16916] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF
[  171.907743][T16916] FAT-fs (loop3): Filesystem has been set read-only
[  171.973582][T16930] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5349'.
[  171.982787][T16930] IPVS: Error joining to the multicast group
[  172.098704][T16937] loop6: detected capacity change from 0 to 128
[  172.109497][T16937] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  172.142745][T10605] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  172.159917][T16943] batadv0 speed is unknown, defaulting to 1000
[  172.168293][T16943] batadv0 speed is unknown, defaulting to 1000
[  172.175434][T16943] batadv0 speed is unknown, defaulting to 1000
[  172.187768][T16943] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  172.200845][T16943] batadv0 speed is unknown, defaulting to 1000
[  172.210785][T16943] batadv0 speed is unknown, defaulting to 1000
[  172.217443][T16943] batadv0 speed is unknown, defaulting to 1000
[  172.225382][T16943] batadv0 speed is unknown, defaulting to 1000
[  172.227882][T16949] loop6: detected capacity change from 0 to 1024
[  172.232432][T16943] batadv0 speed is unknown, defaulting to 1000
[  172.270227][T16955] netlink: 36 bytes leftover after parsing attributes in process `syz.9.5360'.
[  172.280758][T16949] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.298984][T16949] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.5358: bg 0: block 88: padding at end of block bitmap is not set
[  172.343706][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.395506][T16966] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5365'.
[  172.552562][T16987] loop9: detected capacity change from 0 to 512
[  172.571275][T16987] EXT4-fs error (device loop9): ext4_orphan_get:1390: inode #15: comm syz.9.5374: casefold flag without casefold feature
[  172.588515][T16987] EXT4-fs error (device loop9): ext4_orphan_get:1395: comm syz.9.5374: couldn't read orphan inode 15 (err -117)
[  172.602045][T16987] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.622594][T16995] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16995 comm=syz.6.5377
[  172.635325][T16995] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16995 comm=syz.6.5377
[  172.782347][T17011] netlink: 'syz.8.5385': attribute type 6 has an invalid length.
[  172.790180][T17011] netlink: 100 bytes leftover after parsing attributes in process `syz.8.5385'.
[  172.860270][T17019] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5389'.
[  172.871131][T15122] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.884339][T17019] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5389'.
[  172.898572][T17021] vlan2: entered allmulticast mode
[  172.937598][T17031] loop6: detected capacity change from 0 to 128
[  172.955974][T17026] loop9: detected capacity change from 0 to 1764
[  172.972129][T17033] netlink: 96 bytes leftover after parsing attributes in process `syz.4.5396'.
[  172.982009][T17031] syz.6.5395: attempt to access beyond end of device
[  172.982009][T17031] loop6: rw=0, sector=121, nr_sectors = 120 limit=128
[  173.018582][T17035] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  173.033448][T16435] kworker/u8:23: attempt to access beyond end of device
[  173.033448][T16435] loop6: rw=1, sector=241, nr_sectors = 800 limit=128
[  173.066836][T17040] loop8: detected capacity change from 0 to 2048
[  173.083685][T17040] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.103192][T17045] program syz.3.5402 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.163969][T17051] netlink: 'syz.3.5405': attribute type 3 has an invalid length.
[  173.183827][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.262817][T17063] loop9: detected capacity change from 0 to 512
[  173.269924][T17063] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  173.347761][T17077] loop6: detected capacity change from 0 to 512
[  173.366645][T17077] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.398033][T17077] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #2: comm syz.6.5415: corrupted inode contents
[  173.413082][T16757] nci: nci_rsp_packet: unknown rsp opcode 0x23f
[  173.424034][T17077] EXT4-fs error (device loop6): ext4_dirty_inode:6103: inode #2: comm syz.6.5415: mark_inode_dirty error
[  173.428806][T17084] loop3: detected capacity change from 0 to 1024
[  173.438514][T17077] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #2: comm syz.6.5415: corrupted inode contents
[  173.442667][T17084] EXT4-fs: Ignoring removed bh option
[  173.459812][T17077] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #2: comm syz.6.5415: mark_inode_dirty error
[  173.477019][T17084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.498270][   T29] kauditd_printk_skb: 222 callbacks suppressed
[  173.498285][   T29] audit: type=1400 audit(173.545:5655): avc:  denied  { append } for  pid=17083 comm="syz.3.5418" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  173.536629][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.557911][T10921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.567444][T17093] vti0: entered promiscuous mode
[  173.614395][   T29] audit: type=1326 audit(173.665:5656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17100 comm="syz.6.5424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.637391][   T29] audit: type=1326 audit(173.665:5657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17100 comm="syz.6.5424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.662838][   T29] audit: type=1326 audit(173.665:5658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17100 comm="syz.6.5424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.685823][   T29] audit: type=1326 audit(173.665:5659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17100 comm="syz.6.5424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.708886][   T29] audit: type=1326 audit(173.695:5660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17100 comm="syz.6.5424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.738075][   T29] audit: type=1326 audit(173.785:5661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17104 comm="syz.6.5426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.761071][   T29] audit: type=1326 audit(173.785:5662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17104 comm="syz.6.5426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.784219][   T29] audit: type=1326 audit(173.785:5663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17104 comm="syz.6.5426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.807204][   T29] audit: type=1326 audit(173.785:5664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17104 comm="syz.6.5426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3733e169 code=0x7ffc0000
[  173.855046][T17115] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5429'.
[  174.138865][T17138] loop8: detected capacity change from 0 to 512
[  174.153275][T17138] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  174.198752][T17144] netlink: 24 bytes leftover after parsing attributes in process `syz.9.5441'.
[  174.221966][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  174.260411][T17143] batadv0 speed is unknown, defaulting to 1000
[  174.816808][T17169] loop3: detected capacity change from 0 to 128
[  174.823938][T17169] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  174.836062][T17169] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  175.166855][T16436] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  175.232101][T16436] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  175.273592][T16436] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  175.322577][T16436] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  175.376070][T17223] batadv0 speed is unknown, defaulting to 1000
[  175.394671][T16436] dummy0: left allmulticast mode
[  175.399810][T16436] bridge0: port 1(dummy0) entered disabled state
[  175.468934][    C0] IPv4: Oversized IP packet from 127.0.0.1
[  175.481542][T16436] bond0 (unregistering): Released all slaves
[  175.498488][T16436] bond1 (unregistering): Released all slaves
[  175.507122][T16436] bond2 (unregistering): Released all slaves
[  175.547161][T16436] tipc: Left network mode
[  175.576313][T17223] chnl_net:caif_netlink_parms(): no params data found
[  175.628137][T16436] hsr_slave_0: left promiscuous mode
[  175.634373][T16436] hsr_slave_1: left promiscuous mode
[  175.700130][T16462] smc: removing ib device syz!
[  175.728070][T17270] loop8: detected capacity change from 0 to 164
[  175.737694][T17270] iso9660: Corrupted directory entry in block 4 of inode 1792
[  175.788524][T17223] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.796064][T17223] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.829225][T17223] bridge_slave_0: entered allmulticast mode
[  175.848932][T17223] bridge_slave_0: entered promiscuous mode
[  175.852081][T17223] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.852176][T17223] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.858140][T17223] bridge_slave_1: entered allmulticast mode
[  175.866216][T17223] bridge_slave_1: entered promiscuous mode
[  175.954496][T17223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  175.967990][T17223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  176.001305][T17292] loop9: detected capacity change from 0 to 128
[  176.009099][T17292] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  176.022656][T17223] team0: Port device team_slave_0 added
[  176.029373][T17223] team0: Port device team_slave_1 added
[  176.036410][T17292] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  176.070057][T17296] sd 0:0:1:0: device reset
[  176.078514][T17223] batman_adv: batadv0: Adding interface: batadv_slave_0
[  176.085769][T17223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.111872][T17223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  176.127588][T17302] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  176.135842][T17302] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  176.144206][T17302] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  176.152438][T17302] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  176.161123][T17302] vxlan0: entered promiscuous mode
[  176.167854][T17223] batman_adv: batadv0: Adding interface: batadv_slave_1
[  176.174974][T17223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.201090][T17223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  176.232512][T17223] hsr_slave_0: entered promiscuous mode
[  176.238853][T17223] hsr_slave_1: entered promiscuous mode
[  176.246000][T17223] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  176.253960][T17223] Cannot create hsr debugfs directory
[  176.377548][T17315] loop8: detected capacity change from 0 to 2048
[  176.384812][T17315] EXT4-fs (loop8): couldn't mount as ext2 due to feature incompatibilities
[  176.399642][T17315] netlink: 'syz.8.5514': attribute type 4 has an invalid length.
[  176.516716][T17223] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  176.525869][T17223] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  176.535629][T17223] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  176.544660][T17223] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  176.582027][T17223] 8021q: adding VLAN 0 to HW filter on device bond0
[  176.596285][T17223] 8021q: adding VLAN 0 to HW filter on device team0
[  176.606224][T16435] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.613426][T16435] bridge0: port 1(bridge_slave_0) entered forwarding state
[  176.625993][T16436] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.633125][T16436] bridge0: port 2(bridge_slave_1) entered forwarding state
[  176.650529][T17328] loop3: detected capacity change from 0 to 164
[  176.665254][T17328] iso9660: Corrupted directory entry in block 4 of inode 1792
[  176.674697][T17223] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  176.735710][T17338] __nla_validate_parse: 4 callbacks suppressed
[  176.735730][T17338] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5521'.
[  176.739921][T17223] 8021q: adding VLAN 0 to HW filter on device batadv0
[  176.878987][T17364] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5532'.
[  176.906184][T17223] veth0_vlan: entered promiscuous mode
[  176.916762][T17223] veth1_vlan: entered promiscuous mode
[  176.944794][T17223] veth0_macvtap: entered promiscuous mode
[  176.952842][T17223] veth1_macvtap: entered promiscuous mode
[  176.966137][T17223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.976860][T17223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.986923][T17223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.998636][T17223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.008493][T17223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.018915][T17223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.029426][T17223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.039985][T17223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.051898][T17223] batman_adv: batadv0: Interface activated: batadv_slave_0
[  177.063348][T17223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.073813][T17223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.084351][T17223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.094902][T17223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.104767][T17223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.115765][T17223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.125675][T17223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.136232][T17223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.148727][T17223] batman_adv: batadv0: Interface activated: batadv_slave_1
[  177.159891][T17223] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  177.168762][T17223] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  177.177670][T17223] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  177.186439][T17223] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  177.251764][T17388] loop3: detected capacity change from 0 to 128
[  177.252255][T17386] loop6: detected capacity change from 0 to 1024
[  177.260523][T17388] FAT-fs (loop3): bogus number of reserved sectors
[  177.271135][T17388] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  177.280438][T17388] FAT-fs (loop3): Can't find a valid FAT filesystem
[  177.288583][T17386] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  177.308338][T17386] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.363021][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.498867][T17405] xt_hashlimit: size too large, truncated to 1048576
[  177.602432][T17415] loop4: detected capacity change from 0 to 512
[  177.808526][T17447] netlink: 'syz.4.5564': attribute type 21 has an invalid length.
[  177.879202][T17458] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  177.890733][T17457] IPVS: stopping master sync thread 17458 ...
[  177.967558][T17468] IPv6: Can't replace route, no match found
[  178.001220][T17472] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5577'.
[  178.012424][T17472] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5577'.
[  178.039458][T17476] loop6: detected capacity change from 0 to 164
[  178.047947][T17476] Unable to read rock-ridge attributes
[  178.057582][T17476] Unable to read rock-ridge attributes
[  178.169181][T17498] netlink: 20 bytes leftover after parsing attributes in process `syz.9.5590'.
[  178.181584][T17498] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  178.188924][T17498] IPv6: NLM_F_CREATE should be set when creating new route
[  178.196202][T17498] IPv6: NLM_F_CREATE should be set when creating new route
[  178.202476][T17499] SELinux: failed to load policy
[  178.247280][T17506] netlink: 'syz.6.5594': attribute type 13 has an invalid length.
[  178.267480][T17508] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  178.276492][T17508] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  178.300098][T17506] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  178.383662][T17519] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5600'.
[  178.457085][T17529] loop3: detected capacity change from 0 to 1024
[  178.471524][T17529] EXT4-fs: Ignoring removed orlov option
[  178.477425][T17529] EXT4-fs: Ignoring removed nomblk_io_submit option
[  178.508213][T17535] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5607'.
[  178.518348][T17529] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.535534][   T29] kauditd_printk_skb: 186 callbacks suppressed
[  178.535550][   T29] audit: type=1400 audit(178.585:5851): avc:  denied  { mount } for  pid=17528 comm="syz.3.5605" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  178.563847][   T29] audit: type=1400 audit(178.585:5852): avc:  denied  { write } for  pid=17528 comm="syz.3.5605" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  178.585043][   T29] audit: type=1400 audit(178.585:5853): avc:  denied  { add_name } for  pid=17528 comm="syz.3.5605" name="memory.events.local" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  178.602079][T17535] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5607'.
[  178.607481][   T29] audit: type=1400 audit(178.585:5854): avc:  denied  { create } for  pid=17528 comm="syz.3.5605" name="memory.events.local" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  178.637212][   T29] audit: type=1400 audit(178.625:5855): avc:  denied  { read append open } for  pid=17528 comm="syz.3.5605" path="/516/file1/memory.events.local" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  178.662561][   T29] audit: type=1400 audit(178.675:5856): avc:  denied  { map } for  pid=17528 comm="syz.3.5605" path="/516/file1/memory.events.local" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  178.685968][   T29] audit: type=1400 audit(178.675:5857): avc:  denied  { write } for  pid=17528 comm="syz.3.5605" path="/516/file1/memory.events.local" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  178.688940][T17535] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5607'.
[  178.730322][   T29] audit: type=1400 audit(178.775:5858): avc:  denied  { unmount } for  pid=10921 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  178.755378][T10921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.774643][   T29] audit: type=1326 audit(178.825:5859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17538 comm="syz.8.5609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86b093e169 code=0x7ffc0000
[  178.822884][   T29] audit: type=1326 audit(178.865:5860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17538 comm="syz.8.5609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f86b093e169 code=0x7ffc0000
[  178.880221][T17548] loop6: detected capacity change from 0 to 256
[  178.898800][T17548] FAT-fs (loop6): bogus number of FAT sectors
[  178.905725][T17548] FAT-fs (loop6): Can't find a valid FAT filesystem
[  178.983434][T17559] IPVS: stopping master sync thread 17562 ...
[  178.989645][T17562] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  179.098690][T17576] 9pnet: p9_errstr2errno: server reported unknown error 3
[  179.180552][T17582] SELinux: failed to load policy
[  179.378570][T17617] netlink: 32 bytes leftover after parsing attributes in process `syz.9.5645'.
[  179.387802][T17617] netem: unknown loss type 13
[  179.392557][T17617] netem: change failed
[  179.457592][T17626] sd 0:0:1:0: device reset
[  179.800725][T17679] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.815196][T17681] loop6: detected capacity change from 0 to 512
[  179.822673][T17679] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.843390][T17681] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.5673: bg 0: block 248: padding at end of block bitmap is not set
[  179.859208][T17681] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.5673: Failed to acquire dquot type 1
[  179.872296][T17681] EXT4-fs (loop6): 1 truncate cleaned up
[  179.878529][T17681] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.917080][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.954357][T17698] loop8: detected capacity change from 0 to 256
[  179.961453][T17698] FAT-fs (loop8): bogus number of FAT sectors
[  179.967587][T17698] FAT-fs (loop8): Can't find a valid FAT filesystem
[  180.220040][T17730] loop3: detected capacity change from 0 to 256
[  180.227351][T17730] FAT-fs (loop3): bogus number of FAT sectors
[  180.233663][T17730] FAT-fs (loop3): Can't find a valid FAT filesystem
[  180.329668][T17742] loop6: detected capacity change from 0 to 1024
[  180.347677][T17742] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.5699: Failed to acquire dquot type 0
[  180.362915][T17742] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  180.409840][T17742] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #13: comm syz.6.5699: corrupted inode contents
[  180.441567][T17742] EXT4-fs error (device loop6): ext4_dirty_inode:6103: inode #13: comm syz.6.5699: mark_inode_dirty error
[  180.467487][T17742] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #13: comm syz.6.5699: corrupted inode contents
[  180.481543][T17742] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #13: comm syz.6.5699: mark_inode_dirty error
[  180.498797][T17742] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #13: comm syz.6.5699: corrupted inode contents
[  180.512984][T17742] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  180.522017][T17742] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #13: comm syz.6.5699: corrupted inode contents
[  180.535234][T17742] EXT4-fs error (device loop6): ext4_truncate:4255: inode #13: comm syz.6.5699: mark_inode_dirty error
[  180.563169][T17742] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  180.589171][T17742] EXT4-fs (loop6): 1 truncate cleaned up
[  180.597911][T17742] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.655038][T17742] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.5699: Failed to acquire dquot type 0
[  180.674215][T17742] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  180.702648][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.753518][T17773] ip6gretap0: entered promiscuous mode
[  180.759055][T17773] ip6gretap0: entered allmulticast mode
[  180.872904][T17792] netlink: 'syz.4.5722': attribute type 13 has an invalid length.
[  180.917869][T17792] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  181.006715][T17801] rdma_op ffff88810fc1a580 conn xmit_rdma 0000000000000000
[  181.070398][T17816] SELinux:  policydb version 0 does not match my version range 15-34
[  181.081148][T17816] SELinux: failed to load policy
[  181.123169][T17825] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  181.123337][T17822] IPVS: stopping master sync thread 17825 ...
[  181.224362][T17835] loop8: detected capacity change from 0 to 1024
[  181.283964][T17835] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.400606][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.606123][T17848] loop4: detected capacity change from 0 to 1024
[  181.618901][T17848] EXT4-fs: Ignoring removed orlov option
[  181.624739][T17848] EXT4-fs: Ignoring removed nomblk_io_submit option
[  181.673988][T17848] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.823105][T17856] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  181.839635][T17856] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  181.851526][T17223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.962841][T17871] SELinux: security_context_str_to_sid (��) failed with errno=-22
[  182.153590][T17900] loop4: detected capacity change from 0 to 1024
[  182.170144][T17900] EXT4-fs: Ignoring removed mblk_io_submit option
[  182.177526][T17900] EXT4-fs: Ignoring removed nomblk_io_submit option
[  182.220018][T17900] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.254925][T17223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.293470][T17921] batadv0 speed is unknown, defaulting to 1000
[  182.393806][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.401386][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.408917][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.416419][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.424497][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.432122][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.439809][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.447247][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.455398][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.462998][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.470730][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.478161][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.486228][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.493721][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.501144][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.508691][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.516819][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.524269][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.531695][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.539177][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.547429][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.554860][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.562335][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.569782][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.577942][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.578404][T17938] __nla_validate_parse: 3 callbacks suppressed
[  182.578421][T17938] netlink: 3 bytes leftover after parsing attributes in process `syz.3.5788'.
[  182.585420][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.601743][T17938] 0�X���: renamed from caif0
[  182.608549][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.619822][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.627293][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.635591][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.643026][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.650428][   T36] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  182.663208][T17938] 0�X���: entered allmulticast mode
[  182.668475][T17938] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  182.688046][   T36] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  182.745057][T17941] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  182.751630][T17941] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  182.759418][T17941] vhci_hcd vhci_hcd.0: Device attached
[  182.780149][T17945] vhci_hcd: connection closed
[  182.780321][T16435] vhci_hcd: stop threads
[  182.790250][T16435] vhci_hcd: release socket
[  182.794821][T16435] vhci_hcd: disconnect device
[  182.803467][T17948] netlink: 'syz.6.5793': attribute type 21 has an invalid length.
[  182.812411][T17948] netlink: 164 bytes leftover after parsing attributes in process `syz.6.5793'.
[  182.865934][T17961] loop6: detected capacity change from 0 to 1024
[  182.878760][T17963] SELinux: syz.8.5800 (17963) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  182.895472][T17965] loop3: detected capacity change from 0 to 512
[  182.928983][T17961] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.942750][T17965] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.088448][T17990] netlink: 'syz.8.5810': attribute type 21 has an invalid length.
[  183.110364][ T3371] IPVS: starting estimator thread 0...
[  183.134882][T17990] netlink: 164 bytes leftover after parsing attributes in process `syz.8.5810'.
[  183.157533][T18005] xt_hashlimit: max too large, truncated to 1048576
[  183.196461][T18011] loop3: detected capacity change from 0 to 1024
[  183.201367][T17995] IPVS: using max 2016 ests per chain, 100800 per kthread
[  183.250011][T18019] loop6: detected capacity change from 0 to 128
[  183.281998][T18025] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5827'.
[  183.382727][T16757] kworker/u8:64: attempt to access beyond end of device
[  183.382727][T16757] loop6: rw=1, sector=145, nr_sectors = 34 limit=128
[  183.557320][   T29] kauditd_printk_skb: 368 callbacks suppressed
[  183.557336][   T29] audit: type=1400 audit(183.605:6223): avc:  denied  { create } for  pid=18070 comm="syz.6.5858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  183.558405][T18073] loop4: detected capacity change from 0 to 128
[  183.590089][   T29] audit: type=1400 audit(183.635:6224): avc:  denied  { bind } for  pid=18070 comm="syz.6.5858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  183.620325][   T29] audit: type=1400 audit(183.635:6225): avc:  denied  { write } for  pid=18070 comm="syz.6.5858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  183.649598][   T29] audit: type=1400 audit(183.695:6226): avc:  denied  { execmem } for  pid=18075 comm="syz.6.5849" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  183.678861][   T29] audit: type=1400 audit(183.725:6227): avc:  denied  { setopt } for  pid=18047 comm="syz.8.5839" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  183.720941][T16436] kworker/u8:24: attempt to access beyond end of device
[  183.720941][T16436] loop4: rw=1, sector=145, nr_sectors = 34 limit=128
[  183.736395][T18067] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  183.760870][   T29] audit: type=1400 audit(183.805:6228): avc:  denied  { create } for  pid=18077 comm="syz.4.5850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  183.780434][   T29] audit: type=1400 audit(183.805:6229): avc:  denied  { write } for  pid=18077 comm="syz.4.5850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  183.801157][T18067] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  183.845197][   T29] audit: type=1400 audit(183.855:6230): avc:  denied  { read } for  pid=18080 comm="syz.4.5851" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  183.867501][   T29] audit: type=1400 audit(183.855:6231): avc:  denied  { open } for  pid=18080 comm="syz.4.5851" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  183.891025][   T29] audit: type=1400 audit(183.855:6232): avc:  denied  { ioctl } for  pid=18080 comm="syz.4.5851" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  183.940026][T18085] loop4: detected capacity change from 0 to 1024
[  183.947739][T18085] EXT4-fs: Ignoring removed mblk_io_submit option
[  183.954695][T18085] EXT4-fs: Ignoring removed nobh option
[  183.960335][T18085] EXT4-fs: Ignoring removed bh option
[  183.986689][T18085] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.5853: Allocating blocks 385-513 which overlap fs metadata
[  184.014942][T18085] EXT4-fs (loop4): pa ffff8881065bb540: logic 16, phys. 129, len 24
[  184.023038][T18085] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  184.045283][T18085] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  184.057651][T18085] EXT4-fs (loop4): This should not happen!! Data will be lost
[  184.057651][T18085] 
[  184.068404][T18085] EXT4-fs (loop4): Total free blocks count 0
[  184.074458][T18085] EXT4-fs (loop4): Free/Dirty block details
[  184.080474][T18085] EXT4-fs (loop4): free_blocks=128
[  184.085670][T18085] EXT4-fs (loop4): dirty_blocks=0
[  184.090707][T18085] EXT4-fs (loop4): Block reservation details
[  184.097345][T18085] EXT4-fs (loop4): i_reserved_data_blocks=0
[  184.103825][T18097] atomic_op ffff888136c22528 conn xmit_atomic 0000000000000000
[  184.142000][T18100] loop9: detected capacity change from 0 to 256
[  184.169415][T18107] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5862'.
[  184.180038][T18100] FAT-fs (loop9): codepage cp857 not found
[  184.222502][T18113] netlink: 76 bytes leftover after parsing attributes in process `syz.6.5865'.
[  184.356152][T18128] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  184.371228][T18128] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  184.896494][T18166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:0c) already exists on: vlan2
[  184.906395][T18166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.923263][T18166] ipvlan2: entered promiscuous mode
[  184.928701][T18166] ipvlan2: entered allmulticast mode
[  184.934116][T18166] bridge0: entered allmulticast mode
[  184.954750][T18166] batman_adv: batadv0: Adding interface: ipvlan2
[  184.961153][T18166] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.989216][T18166] batman_adv: batadv0: Interface activated: ipvlan2
[  185.019241][T18174] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  185.157357][T18195] batadv0 speed is unknown, defaulting to 1000
[  185.226671][T18204] atomic_op ffff88813cf00928 conn xmit_atomic 0000000000000000
[  185.241516][T18205] netlink: 16402 bytes leftover after parsing attributes in process `syz.8.5908'.
[  185.260630][T18201] netlink: 16402 bytes leftover after parsing attributes in process `syz.8.5908'.
[  185.287484][T18207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:0c) already exists on: vlan2
[  185.297588][T18207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.307815][T18207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:0c) already exists on: ipvlan2
[  185.317685][T18207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.340354][T18207] ipvlan2: entered promiscuous mode
[  185.345685][T18207] ipvlan2: entered allmulticast mode
[  185.351093][T18207] bridge0: entered allmulticast mode
[  185.359422][T18207] batman_adv: batadv0: Adding interface: ipvlan2
[  185.365937][T18207] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.393619][T18207] batman_adv: batadv0: Interface activated: ipvlan2
[  185.503109][T18223] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  185.509802][T18223] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  185.517531][T18223] vhci_hcd vhci_hcd.0: Device attached
[  185.554127][T18224] usbip_core: unknown command
[  185.558891][T18224] vhci_hcd: unknown pdu 0
[  185.563310][T18224] usbip_core: unknown command
[  185.568243][T16757] vhci_hcd: stop threads
[  185.572573][T16757] vhci_hcd: release socket
[  185.577108][T16757] vhci_hcd: disconnect device
[  185.732564][T18243] dvmrp5: entered allmulticast mode
[  185.738722][T18243] dvmrp5: left allmulticast mode
[  185.829349][T18251] ALSA: seq fatal error: cannot create timer (-22)
[  186.037027][T18265] loop4: detected capacity change from 0 to 2048
[  186.043986][T18265] EXT4-fs: Ignoring removed bh option
[  186.061837][T18265] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  186.076899][T18265] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  186.089262][T18265] EXT4-fs (loop4): This should not happen!! Data will be lost
[  186.089262][T18265] 
[  186.099181][T18265] EXT4-fs (loop4): Total free blocks count 0
[  186.105237][T18265] EXT4-fs (loop4): Free/Dirty block details
[  186.106055][T18270] loop3: detected capacity change from 0 to 1024
[  186.111181][T18265] EXT4-fs (loop4): free_blocks=2415919104
[  186.111200][T18265] EXT4-fs (loop4): dirty_blocks=48
[  186.111215][T18265] EXT4-fs (loop4): Block reservation details
[  186.111227][T18265] EXT4-fs (loop4): i_reserved_data_blocks=3
[  186.142285][T18270] EXT4-fs: Ignoring removed mblk_io_submit option
[  186.148816][T18270] EXT4-fs: Ignoring removed nobh option
[  186.154415][T18270] EXT4-fs: Ignoring removed bh option
[  186.178931][T18270] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.5938: Allocating blocks 385-513 which overlap fs metadata
[  186.196100][T18270] EXT4-fs (loop3): pa ffff8881065bb5b0: logic 16, phys. 129, len 24
[  186.204259][T18270] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  186.216326][T18270] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  186.228684][T18270] EXT4-fs (loop3): This should not happen!! Data will be lost
[  186.228684][T18270] 
[  186.238488][T18270] EXT4-fs (loop3): Total free blocks count 0
[  186.244560][T18270] EXT4-fs (loop3): Free/Dirty block details
[  186.250468][T18270] EXT4-fs (loop3): free_blocks=128
[  186.255657][T18270] EXT4-fs (loop3): dirty_blocks=0
[  186.260750][T18270] EXT4-fs (loop3): Block reservation details
[  186.266780][T18270] EXT4-fs (loop3): i_reserved_data_blocks=0
[  186.549419][T18292] vlan3: entered allmulticast mode
[  186.715528][T18299] loop8: detected capacity change from 0 to 512
[  186.724772][T18299] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  186.750343][T18299] EXT4-fs (loop8): 1 truncate cleaned up
[  186.998456][T18320] ALSA: seq fatal error: cannot create timer (-22)
[  187.160943][T18343] loop9: detected capacity change from 0 to 1024
[  187.170197][T18344] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5972'.
[  187.182027][T18343] EXT4-fs error (device loop9): ext4_acquire_dquot:6935: comm syz.9.5971: Failed to acquire dquot type 0
[  187.195438][T18343] EXT4-fs error (device loop9): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  187.219820][T18344] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5972'.
[  187.226476][T18343] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #13: comm syz.9.5971: corrupted inode contents
[  187.253645][T18343] EXT4-fs error (device loop9): ext4_dirty_inode:6103: inode #13: comm syz.9.5971: mark_inode_dirty error
[  187.269451][T18349] ALSA: seq fatal error: cannot create timer (-22)
[  187.271266][T18343] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #13: comm syz.9.5971: corrupted inode contents
[  187.291154][T18343] EXT4-fs error (device loop9): __ext4_ext_dirty:207: inode #13: comm syz.9.5971: mark_inode_dirty error
[  187.306944][T18343] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #13: comm syz.9.5971: corrupted inode contents
[  187.319479][T18343] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem
[  187.344442][T18343] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #13: comm syz.9.5971: corrupted inode contents
[  187.369285][T18343] EXT4-fs error (device loop9): ext4_truncate:4255: inode #13: comm syz.9.5971: mark_inode_dirty error
[  187.393373][T18343] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem
[  187.416973][T18343] EXT4-fs (loop9): 1 truncate cleaned up
[  187.472730][T18343] EXT4-fs error (device loop9): ext4_acquire_dquot:6935: comm syz.9.5971: Failed to acquire dquot type 0
[  187.486733][T18343] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  187.490117][T18377] syz.8.5986: attempt to access beyond end of device
[  187.490117][T18377] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  187.546402][T18384] loop6: detected capacity change from 0 to 1024
[  187.554055][T18384] EXT4-fs: Ignoring removed mblk_io_submit option
[  187.560616][T18383] batadv_slave_1: entered promiscuous mode
[  187.566606][T18384] EXT4-fs: Ignoring removed nobh option
[  187.572260][T18384] EXT4-fs: Ignoring removed bh option
[  187.572969][T18381] batadv_slave_1: left promiscuous mode
[  187.594185][T18388] SELinux:  Context 
 is not valid (left unmapped).
[  187.614523][T18384] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.5989: Allocating blocks 385-513 which overlap fs metadata
[  187.646039][T18384] EXT4-fs (loop6): pa ffff88810659b9a0: logic 16, phys. 129, len 24
[  187.654178][T18384] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  187.670141][T18384] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  187.682433][T18384] EXT4-fs (loop6): This should not happen!! Data will be lost
[  187.682433][T18384] 
[  187.692776][T18384] EXT4-fs (loop6): Total free blocks count 0
[  187.694386][T18396] loop9: detected capacity change from 0 to 512
[  187.698775][T18384] EXT4-fs (loop6): Free/Dirty block details
[  187.710952][T18384] EXT4-fs (loop6): free_blocks=128
[  187.716156][T18384] EXT4-fs (loop6): dirty_blocks=0
[  187.721863][T18384] EXT4-fs (loop6): Block reservation details
[  187.727855][T18384] EXT4-fs (loop6): i_reserved_data_blocks=0
[  187.734156][T18396] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  187.744452][T18402] loop8: detected capacity change from 0 to 2048
[  187.752294][T18402] EXT4-fs: Ignoring removed bh option
[  187.785113][T18402] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  187.805511][T18402] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  187.818787][T18402] EXT4-fs (loop8): This should not happen!! Data will be lost
[  187.818787][T18402] 
[  187.828577][T18402] EXT4-fs (loop8): Total free blocks count 0
[  187.834610][T18402] EXT4-fs (loop8): Free/Dirty block details
[  187.840526][T18402] EXT4-fs (loop8): free_blocks=2415919104
[  187.846979][T18402] EXT4-fs (loop8): dirty_blocks=48
[  187.852311][T18402] EXT4-fs (loop8): Block reservation details
[  187.858378][T18402] EXT4-fs (loop8): i_reserved_data_blocks=3
[  187.867467][T18396] EXT4-fs (loop9): 1 truncate cleaned up
[  188.118864][T18432] loop9: detected capacity change from 0 to 1024
[  188.126676][T18432] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.133709][T18432] EXT4-fs: Ignoring removed nobh option
[  188.139309][T18432] EXT4-fs: Ignoring removed bh option
[  188.164921][T18432] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:4113: comm syz.9.6009: Allocating blocks 385-513 which overlap fs metadata
[  188.185405][T18432] EXT4-fs (loop9): pa ffff88810659ba80: logic 16, phys. 129, len 24
[  188.193656][T18432] EXT4-fs error (device loop9): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  188.205201][T18432] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  188.217545][T18432] EXT4-fs (loop9): This should not happen!! Data will be lost
[  188.217545][T18432] 
[  188.227245][T18432] EXT4-fs (loop9): Total free blocks count 0
[  188.233364][T18432] EXT4-fs (loop9): Free/Dirty block details
[  188.239358][T18432] EXT4-fs (loop9): free_blocks=128
[  188.244517][T18432] EXT4-fs (loop9): dirty_blocks=0
[  188.249563][T18432] EXT4-fs (loop9): Block reservation details
[  188.255597][T18432] EXT4-fs (loop9): i_reserved_data_blocks=0
[  188.569019][   T29] kauditd_printk_skb: 434 callbacks suppressed
[  188.569034][   T29] audit: type=1400 audit(188.615:6663): avc:  denied  { create } for  pid=18475 comm="syz.6.6027" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  188.625148][   T29] audit: type=1400 audit(188.645:6664): avc:  denied  { write } for  pid=18475 comm="syz.6.6027" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  188.676753][   T29] audit: type=1400 audit(188.705:6665): avc:  denied  { write } for  pid=18477 comm="syz.3.6029" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  188.708567][   T29] audit: type=1400 audit(188.755:6666): avc:  denied  { name_bind } for  pid=18479 comm="syz.6.6030" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  188.729959][   T29] audit: type=1400 audit(188.755:6667): avc:  denied  { mac_admin } for  pid=18481 comm="syz.8.6028" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  188.799706][   T29] audit: type=1400 audit(188.845:6668): avc:  denied  { create } for  pid=18488 comm="syz.6.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  188.842157][   T29] audit: type=1400 audit(188.875:6669): avc:  denied  { setopt } for  pid=18488 comm="syz.6.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  188.909737][T18493] SELinux: failed to load policy
[  188.916893][   T29] audit: type=1400 audit(188.895:6670): avc:  denied  { write } for  pid=18488 comm="syz.6.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  188.935951][   T29] audit: type=1400 audit(188.895:6671): avc:  denied  { connect } for  pid=18488 comm="syz.6.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  188.955084][   T29] audit: type=1400 audit(188.895:6672): avc:  denied  { name_connect } for  pid=18488 comm="syz.6.6034" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  189.113657][T18514] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  189.127861][T18514] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  189.233385][T18530] loop8: detected capacity change from 0 to 512
[  189.240410][T18530] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  189.253606][T18530] EXT4-fs (loop8): 1 truncate cleaned up
[  189.259812][T18530] EXT4-fs mount: 22 callbacks suppressed
[  189.259829][T18530] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.324723][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.709477][T18554] loop6: detected capacity change from 0 to 2048
[  189.716379][T18554] EXT4-fs: Ignoring removed bh option
[  189.732530][T18554] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.759131][T18554] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  189.776385][T18554] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  189.789378][T18554] EXT4-fs (loop6): This should not happen!! Data will be lost
[  189.789378][T18554] 
[  189.799074][T18554] EXT4-fs (loop6): Total free blocks count 0
[  189.805127][T18554] EXT4-fs (loop6): Free/Dirty block details
[  189.811028][T18554] EXT4-fs (loop6): free_blocks=2415919104
[  189.816809][T18554] EXT4-fs (loop6): dirty_blocks=48
[  189.822588][T18554] EXT4-fs (loop6): Block reservation details
[  189.828808][T18554] EXT4-fs (loop6): i_reserved_data_blocks=3
[  189.859069][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.883917][T18559] netem: change failed
[  189.907412][T18561] netlink: 108 bytes leftover after parsing attributes in process `syz.6.6063'.
[  189.916636][T18561] netlink: 108 bytes leftover after parsing attributes in process `syz.6.6063'.
[  189.925724][T18561] netlink: 108 bytes leftover after parsing attributes in process `syz.6.6063'.
[  190.053587][T18573] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6069'.
[  190.207770][T18593] netlink: 24 bytes leftover after parsing attributes in process `syz.9.6078'.
[  190.227407][T18596] smc: net device bond0 applied user defined pnetid SYZ2
[  190.235018][T18596] smc: net device bond0 erased user defined pnetid SYZ2
[  190.341328][T18613] loop9: detected capacity change from 0 to 164
[  190.372816][T18613] syz.9.6088: attempt to access beyond end of device
[  190.372816][T18613] loop9: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  190.395607][T18613] syz.9.6088: attempt to access beyond end of device
[  190.395607][T18613] loop9: rw=0, sector=263328, nr_sectors = 4 limit=164
[  190.395837][T18620] tipc: Started in network mode
[  190.415283][T18620] tipc: Node identity 4, cluster identity 4711
[  190.421978][T18620] tipc: Node number set to 4
[  190.464326][T18623] loop9: detected capacity change from 0 to 2048
[  190.482258][T18627] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6094'.
[  190.507542][T18623]  loop9: p1 < > p4
[  190.516177][T18623] loop9: p4 size 8388608 extends beyond EOD, truncated
[  190.620014][T18644] netlink: 140 bytes leftover after parsing attributes in process `syz.3.6102'.
[  190.632812][T18644] netlink: 140 bytes leftover after parsing attributes in process `syz.3.6102'.
[  190.978374][T18682] loop8: detected capacity change from 0 to 512
[  191.056112][T18682] EXT4-fs (loop8): 1 orphan inode deleted
[  191.074484][T18699] netlink: 'syz.4.6125': attribute type 3 has an invalid length.
[  191.091466][T16445] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:31: Failed to release dquot type 1
[  191.093547][T18682] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.260587][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.447065][T18733] loop9: detected capacity change from 0 to 8192
[  191.468994][T18739] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6145'.
[  191.556624][T18751] loop9: detected capacity change from 0 to 512
[  191.566433][T18751] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  191.585621][T18751] EXT4-fs (loop9): 1 truncate cleaned up
[  191.597414][T18751] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.621713][T18751] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.638198][T18755] vhci_hcd: invalid port number 224
[  191.679150][T18767] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6157'.
[  191.704761][T18769] batadv0 speed is unknown, defaulting to 1000
[  191.799108][T18775] loop8: detected capacity change from 0 to 1024
[  191.820795][T18775] EXT4-fs error (device loop8): ext4_acquire_dquot:6935: comm syz.8.6160: Failed to acquire dquot type 0
[  191.851257][T18775] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  191.875447][T18775] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #13: comm syz.8.6160: corrupted inode contents
[  191.887929][T18775] EXT4-fs error (device loop8): ext4_dirty_inode:6103: inode #13: comm syz.8.6160: mark_inode_dirty error
[  191.921315][T18775] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #13: comm syz.8.6160: corrupted inode contents
[  191.941726][T18775] EXT4-fs error (device loop8): __ext4_ext_dirty:207: inode #13: comm syz.8.6160: mark_inode_dirty error
[  191.973170][T18775] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #13: comm syz.8.6160: corrupted inode contents
[  191.990342][T18775] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem
[  192.000813][T18775] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #13: comm syz.8.6160: corrupted inode contents
[  192.017390][T18775] EXT4-fs error (device loop8): ext4_truncate:4255: inode #13: comm syz.8.6160: mark_inode_dirty error
[  192.029019][T18775] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem
[  192.039620][T18775] EXT4-fs (loop8): 1 truncate cleaned up
[  192.046748][T18775] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.066513][T18775] EXT4-fs error (device loop8): ext4_acquire_dquot:6935: comm syz.8.6160: Failed to acquire dquot type 0
[  192.082259][T18775] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  192.105609][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.420539][T18826] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  192.428524][T18824] tipc: Started in network mode
[  192.433680][T18824] tipc: Node identity ac14140f, cluster identity 4711
[  192.449521][T18824] tipc: New replicast peer: 10.1.1.2
[  192.455031][T18824] tipc: Enabled bearer <udp:syz0>, priority 10
[  192.468128][T18829] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  192.491883][T18833] lo: entered promiscuous mode
[  192.496712][T18833] lo: entered allmulticast mode
[  192.658015][T18852] loop6: detected capacity change from 0 to 256
[  192.954833][T18878] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  193.376264][T18933] netlink: 'syz.3.6232': attribute type 298 has an invalid length.
[  193.480760][T18951] loop4: detected capacity change from 0 to 256
[  193.571881][ T1039] tipc: Node number set to 2886997007
[  193.611910][   T29] kauditd_printk_skb: 232 callbacks suppressed
[  193.611926][   T29] audit: type=1400 audit(2000000001.130:6900): avc:  denied  { kexec_image_load } for  pid=18966 comm="syz.4.6248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  193.619013][T18944] loop6: detected capacity change from 0 to 512
[  193.673060][T18944] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.678043][   T29] audit: type=1326 audit(2000000001.170:6901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.709315][   T29] audit: type=1326 audit(2000000001.170:6902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.716979][T18944] ext4 filesystem being mounted at /755/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  193.732850][   T29] audit: type=1326 audit(2000000001.170:6903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.732888][   T29] audit: type=1326 audit(2000000001.170:6904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.732979][   T29] audit: type=1326 audit(2000000001.170:6905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.733008][   T29] audit: type=1326 audit(2000000001.170:6906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.733039][   T29] audit: type=1326 audit(2000000001.170:6907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.733101][   T29] audit: type=1326 audit(2000000001.170:6908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.733128][   T29] audit: type=1326 audit(2000000001.180:6909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18968 comm="syz.3.6249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffba5c6e169 code=0x7ffc0000
[  193.948313][T18976] sd 0:0:1:0: device reset
[  194.046414][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.071150][T18983] rdma_op ffff888118fa3d80 conn xmit_rdma 0000000000000000
[  194.122157][T18987] usb usb8: usbfs: process 18987 (syz.6.6255) did not claim interface 0 before use
[  194.284312][T19015] loop4: detected capacity change from 0 to 512
[  194.293373][T19015] EXT4-fs (loop4): blocks per group (71) and clusters per group (20800) inconsistent
[  194.512647][T19027] loop4: detected capacity change from 0 to 128
[  194.532215][T19027] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  194.557290][T19027] ext4 filesystem being mounted at /121/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  194.648742][T19046] loop3: detected capacity change from 0 to 128
[  194.667116][T19046] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  194.691430][T19046] ext4 filesystem being mounted at /666/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  194.726482][T17223] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  194.769930][T10921] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  194.806029][T19061] loop3: detected capacity change from 0 to 1024
[  194.824524][T19061] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.850254][T19061] ext4 filesystem being mounted at /667/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.867736][T19061] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.6290: bg 0: block 393: padding at end of block bitmap is not set
[  194.883558][T19061] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117
[  194.897054][T19061] EXT4-fs (loop3): This should not happen!! Data will be lost
[  194.897054][T19061] 
[  194.927187][T10921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.005619][T19076] __nla_validate_parse: 7 callbacks suppressed
[  195.005635][T19076] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6296'.
[  195.040330][T19078] binfmt_misc: register: failed to install interpreter file ./file2
[  195.245701][T19097] ������: renamed from vlan1 (while UP)
[  195.292045][T19104] SELinux: syz.3.6309 (19104) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  195.312386][T19105] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6310'.
[  195.321463][T19105] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6310'.
[  195.332866][T19107] program  is using a deprecated SCSI ioctl, please convert it to SG_IO
[  195.474244][T19128] netlink: 'syz.3.6321': attribute type 1 has an invalid length.
[  195.510794][T19134] netlink: 'syz.9.6324': attribute type 6 has an invalid length.
[  195.551859][T19138] netlink: 272 bytes leftover after parsing attributes in process `syz.9.6326'.
[  195.600084][T19148] loop8: detected capacity change from 0 to 164
[  195.675347][T19159] loop4: detected capacity change from 0 to 512
[  195.696633][T19163] netlink: 'syz.3.6337': attribute type 6 has an invalid length.
[  195.717488][T19159] EXT4-fs (loop4): 1 orphan inode deleted
[  195.731413][T16448] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:34: Failed to release dquot type 1
[  195.731468][T19159] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.758873][T19159] ext4 filesystem being mounted at /126/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.763652][T19165] netlink: 'syz.8.6338': attribute type 1 has an invalid length.
[  195.789431][T19170] netlink: 272 bytes leftover after parsing attributes in process `syz.6.6340'.
[  195.819109][T19175] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 8 prio class 0
[  195.828702][T19175] Buffer I/O error on dev loop7, logical block 0, lost async page write
[  195.837142][T19175] Buffer I/O error on dev loop7, logical block 1, lost async page write
[  195.846329][T19175] Buffer I/O error on dev loop7, logical block 2, lost async page write
[  195.854862][T19175] Buffer I/O error on dev loop7, logical block 3, lost async page write
[  195.863237][T19175] Buffer I/O error on dev loop7, logical block 4, lost async page write
[  195.872331][T19175] Buffer I/O error on dev loop7, logical block 5, lost async page write
[  195.880682][T19175] Buffer I/O error on dev loop7, logical block 6, lost async page write
[  195.889165][T19175] Buffer I/O error on dev loop7, logical block 7, lost async page write
[  195.918674][T17223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.016718][T19193] syz_tun: entered allmulticast mode
[  196.022000][T19199] netlink: 12 bytes leftover after parsing attributes in process `syz.9.6354'.
[  196.095580][T19208] loop8: detected capacity change from 0 to 512
[  196.103376][T19208] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  196.114681][T19208] EXT4-fs (loop8): 1 truncate cleaned up
[  196.120804][T19208] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.147442][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.168097][T19211] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6360'.
[  196.264275][T19225] ������: renamed from vlan1 (while UP)
[  196.403987][T19237] xt_hashlimit: max too large, truncated to 1048576
[  196.429301][T19239] atomic_op ffff888131d17d28 conn xmit_atomic 0000000000000000
[  196.491522][T19248] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6376'.
[  196.506913][T19246] loop9: detected capacity change from 0 to 164
[  196.652447][T19265] loop7: detected capacity change from 0 to 16384
[  196.717953][T19265] I/O error, dev loop7, sector 6144 op 0x0:(READ) flags 0x80700 phys_seg 9 prio class 0
[  196.738254][T19265] I/O error, dev loop7, sector 6400 op 0x0:(READ) flags 0x80700 phys_seg 20 prio class 0
[  196.753618][T19265] I/O error, dev loop7, sector 6144 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  196.763081][T19265] Buffer I/O error on dev loop7, logical block 768, async page read
[  196.772405][T19276] syz_tun: entered allmulticast mode
[  196.792596][T19264] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  196.803172][T19264] Buffer I/O error on dev loop7, logical block 0, lost async page write
[  196.816044][T19282] atomic_op ffff888131d15d28 conn xmit_atomic 0000000000000000
[  196.826661][T19264] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  196.841902][T19264] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  196.856142][T19264] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  196.875248][T19264] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  196.890774][T19264] I/O error, dev loop7, sector 5120 op 0x1:(WRITE) flags 0x800 phys_seg 128 prio class 0
[  196.913090][T19288] SELinux: failed to load policy
[  196.992679][T19302] loop3: detected capacity change from 0 to 512
[  197.022223][T19302] EXT4-fs (loop3): 1 orphan inode deleted
[  197.028576][T19302] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.045381][T16494] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:60: Failed to release dquot type 1
[  197.055991][T19302] ext4 filesystem being mounted at /700/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.099811][T10921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.236133][T19327] loop7: detected capacity change from 0 to 16384
[  197.272009][T19326] SELinux: failed to load policy
[  197.498916][T19349] smc: net device bond0 applied user defined pnetid SYZ2
[  197.506514][T19349] smc: net device bond0 erased user defined pnetid SYZ2
[  197.630835][T19358] SELinux: failed to load policy
[  197.666678][T19365] loop6: detected capacity change from 0 to 512
[  197.673684][T19365] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  197.684801][T19365] EXT4-fs (loop6): 1 truncate cleaned up
[  197.690909][T19365] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.711884][T19370] loop7: detected capacity change from 0 to 16384
[  197.785098][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.832113][T19380] loop6: detected capacity change from 0 to 2048
[  197.872425][T19380]  loop6: p1 < > p4
[  197.877361][T19380] loop6: p4 size 8388608 extends beyond EOD, truncated
[  198.043530][T19404] loop8: detected capacity change from 0 to 164
[  198.055338][T19404] syz.8.6446: attempt to access beyond end of device
[  198.055338][T19404] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  198.069521][T19404] syz.8.6446: attempt to access beyond end of device
[  198.069521][T19404] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  198.119565][T19417] loop7: detected capacity change from 0 to 16384
[  198.141896][T19415] 9pnet: Could not find request transport: r
[  198.197300][T19425] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  198.228617][T19427] loop9: detected capacity change from 0 to 5
[  198.238698][T19427]  loop9: unable to read partition table
[  198.247059][T19427] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  198.247059][T19427] 
U�������) failed (rc=-5)
[  198.299852][T19431] loop3: detected capacity change from 0 to 512
[  198.313436][T19431] EXT4-fs: Ignoring removed oldalloc option
[  198.326161][T19431] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  198.338007][T19431] EXT4-fs (loop3): 1 truncate cleaned up
[  198.344156][T19431] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.369684][T19438] loop6: detected capacity change from 0 to 164
[  198.383972][T19438] wg1: attempt to access beyond end of device
[  198.383972][T19438] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  198.400330][T19438] wg1: attempt to access beyond end of device
[  198.400330][T19438] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  198.438293][T10921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.458393][T19443] loop4: detected capacity change from 0 to 164
[  198.468248][T19443] syz.4.6462: attempt to access beyond end of device
[  198.468248][T19443] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  198.484261][T19443] syz.4.6462: attempt to access beyond end of device
[  198.484261][T19443] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  198.663930][   T29] kauditd_printk_skb: 338 callbacks suppressed
[  198.663947][   T29] audit: type=1400 audit(2000000006.180:7246): avc:  denied  { create } for  pid=19462 comm="syz.8.6470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  198.678190][T19463] team0: No ports can be present during mode change
[  198.704740][T19467] netlink: 'syz.3.6475': attribute type 3 has an invalid length.
[  198.720372][   T29] audit: type=1400 audit(2000000006.190:7247): avc:  denied  { write } for  pid=19462 comm="syz.8.6470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  198.741422][T19463] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6470'.
[  198.750811][   T29] audit: type=1400 audit(2000000006.190:7248): avc:  denied  { read } for  pid=19462 comm="syz.8.6470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  198.771875][   T29] audit: type=1400 audit(2000000006.190:7249): avc:  denied  { ioctl } for  pid=19462 comm="syz.8.6470" path="socket:[54823]" dev="sockfs" ino=54823 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  198.797773][   T29] audit: type=1400 audit(2000000006.210:7250): avc:  denied  { allowed } for  pid=19464 comm="syz.6.6474" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  198.817779][   T29] audit: type=1400 audit(2000000006.210:7251): avc:  denied  { create } for  pid=19464 comm="syz.6.6474" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  198.839233][   T29] audit: type=1400 audit(2000000006.210:7252): avc:  denied  { map } for  pid=19464 comm="syz.6.6474" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=55545 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  198.864025][   T29] audit: type=1400 audit(2000000006.210:7253): avc:  denied  { read write } for  pid=19464 comm="syz.6.6474" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=55545 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  198.893039][T19463] team0 (unregistering): Port device team_slave_0 removed
[  198.902033][T19463] team0 (unregistering): Port device team_slave_1 removed
[  198.931571][   T29] audit: type=1400 audit(2000000006.440:7254): avc:  denied  { execmem } for  pid=19473 comm="syz.3.6478" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  198.966432][T19476] batadv0 speed is unknown, defaulting to 1000
[  199.134317][   T29] audit: type=1400 audit(2000000006.650:7255): avc:  denied  { create } for  pid=19475 comm="syz.3.6480" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  199.221838][T19492] loop7: detected capacity change from 0 to 16384
[  199.342137][T19502] loop9: detected capacity change from 0 to 512
[  199.358727][T19502] EXT4-fs error (device loop9): ext4_orphan_get:1390: inode #15: comm syz.9.6490: casefold flag without casefold feature
[  199.391166][T19502] EXT4-fs error (device loop9): ext4_orphan_get:1395: comm syz.9.6490: couldn't read orphan inode 15 (err -117)
[  199.404434][T19502] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.432948][T19498] loop8: detected capacity change from 0 to 8192
[  199.466943][T19508] loop4: detected capacity change from 0 to 512
[  199.475837][T15122] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.499937][T19511] IPv6: Can't replace route, no match found
[  199.513102][T19508] EXT4-fs (loop4): 1 orphan inode deleted
[  199.531540][T16418] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:10: Failed to release dquot type 1
[  199.550310][T19508] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.572044][T19508] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.603980][T19523] netlink: 12 bytes leftover after parsing attributes in process `syz.9.6511'.
[  199.625661][T17223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.674278][T19533] loop4: detected capacity change from 0 to 512
[  199.675996][T19537] loop8: detected capacity change from 0 to 164
[  199.680977][T19533] EXT4-fs: Ignoring removed oldalloc option
[  199.697443][T19533] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  199.720717][T19537] wg1: attempt to access beyond end of device
[  199.720717][T19537] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  199.739141][T19537] wg1: attempt to access beyond end of device
[  199.739141][T19537] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  199.756334][T19533] EXT4-fs (loop4): 1 truncate cleaned up
[  199.763020][T19545] vhci_hcd: invalid port number 224
[  199.770036][T19533] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.846329][T17223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.867162][T19559] loop3: detected capacity change from 0 to 512
[  199.886809][T19559] EXT4-fs (loop3): 1 orphan inode deleted
[  199.901173][T16448] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:34: Failed to release dquot type 1
[  199.905455][T19559] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.928128][T19559] ext4 filesystem being mounted at /721/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.007364][T10921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.064208][T19571] loop4: detected capacity change from 0 to 8192
[  200.229517][T19622] batadv0 speed is unknown, defaulting to 1000
[  200.247967][T19629] IPv6: NLM_F_CREATE should be specified when creating new route
[  200.379463][T19640] tipc: Started in network mode
[  200.384426][T19640] tipc: Node identity ac14140f, cluster identity 4711
[  200.397873][T19640] tipc: New replicast peer: 10.1.1.2
[  200.403389][T19640] tipc: Enabled bearer <udp:syz0>, priority 10
[  200.415747][T19652] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  200.548364][T19683] loop3: detected capacity change from 0 to 512
[  200.575639][T19683] EXT4-fs error (device loop3): ext4_orphan_get:1390: inode #15: comm syz.3.6537: casefold flag without casefold feature
[  200.599036][T19683] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.6537: couldn't read orphan inode 15 (err -117)
[  200.624461][T19683] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.658566][T10921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.693964][T19694] IPv6: Can't replace route, no match found
[  200.766829][T19705] lo: entered promiscuous mode
[  200.772403][T19705] lo: entered allmulticast mode
[  200.795554][T19711] loop6: detected capacity change from 0 to 512
[  200.802433][T19711] EXT4-fs: Ignoring removed orlov option
[  200.815154][T19713] loop4: detected capacity change from 0 to 128
[  200.834429][T19713] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  200.853375][T19713] ext4 filesystem being mounted at /176/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  200.857368][T19711] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.888634][T19713] EXT4-fs error (device loop4): __ext4_find_entry:1628: inode #2: comm syz.4.6553: checksumming directory block 0
[  200.924108][T19711] ext4 filesystem being mounted at /802/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.935408][T17223] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  200.977127][T19728] loop4: detected capacity change from 0 to 512
[  200.988974][T10605] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.004391][T19728] EXT4-fs error (device loop4): ext4_orphan_get:1390: inode #15: comm syz.4.6556: casefold flag without casefold feature
[  201.022804][T19728] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.6556: couldn't read orphan inode 15 (err -117)
[  201.036175][T19728] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.049840][T19738] batadv0 speed is unknown, defaulting to 1000
[  201.050263][T19732] IPv6: Can't replace route, no match found
[  201.093760][T17223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.322350][T19760] team0: No ports can be present during mode change
[  201.341584][T19760] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6573'.
[  201.367222][T19765] loop9: detected capacity change from 0 to 512
[  201.367671][T19760] team0 (unregistering): Port device team_slave_0 removed
[  201.384977][T19760] team0 (unregistering): Port device team_slave_1 removed
[  201.396992][T19765] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  201.406991][   T36] tipc: Node number set to 2886997007
[  201.432026][T19765] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  201.460542][T19765] EXT4-fs error (device loop9): ext4_iget_extra_inode:4693: inode #15: comm syz.9.6574: corrupted in-inode xattr: e_value size too large
[  201.482257][T19765] EXT4-fs error (device loop9): ext4_orphan_get:1395: comm syz.9.6574: couldn't read orphan inode 15 (err -117)
[  201.491563][T19774] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  201.503109][T19765] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.547671][T15122] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.579375][T19780] netlink: 'syz.9.6579': attribute type 1 has an invalid length.
[  201.587812][T19780] netlink: 28 bytes leftover after parsing attributes in process `syz.9.6579'.
[  201.757800][T19788] loop9: detected capacity change from 0 to 512
[  201.765132][T19788] EXT4-fs: Ignoring removed nobh option
[  201.799106][T19788] EXT4-fs error (device loop9): ext4_do_update_inode:5211: inode #16: comm syz.9.6594: corrupted inode contents
[  201.843219][T19788] EXT4-fs (loop9): Remounting filesystem read-only
[  201.849879][T19788] EXT4-fs (loop9): 1 truncate cleaned up
[  201.861201][T16428] EXT4-fs (loop9): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  201.871809][T16428] EXT4-fs (loop9): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  201.891378][T19788] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.914192][T19788] ext4 filesystem being mounted at /394/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  201.931100][T16428] EXT4-fs (loop9): Quota write (off=8, len=24) cancelled because transaction is not started
[  201.981845][T15122] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.134886][T19825] loop4: detected capacity change from 0 to 512
[  202.179603][T19825] EXT4-fs (loop4): 1 orphan inode deleted
[  202.190786][T19812] batadv0 speed is unknown, defaulting to 1000
[  202.197206][T19833] loop9: detected capacity change from 0 to 2048
[  202.206901][ T1087] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  202.220113][T19825] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.259037][T19825] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.267766][T19833] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  202.305449][T19833] ext4 filesystem being mounted at /398/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.320899][T17223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.389437][T15122] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.480448][T19859] loop8: detected capacity change from 0 to 512
[  202.508152][T19863] loop4: detected capacity change from 0 to 512
[  202.520145][T19866] loop9: detected capacity change from 0 to 512
[  202.527566][T19859] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.540680][T19859] ext4 filesystem being mounted at /404/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  202.552063][T19863] EXT4-fs: Ignoring removed orlov option
[  202.575665][T19866] EXT4-fs (loop9): 1 orphan inode deleted
[  202.583375][T19863] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.596749][T16416] EXT4-fs error (device loop9): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1
[  202.613941][T19866] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.631721][T19863] ext4 filesystem being mounted at /191/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  202.643154][T19866] ext4 filesystem being mounted at /400/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.695657][T15122] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.724000][T17223] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.819850][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.904071][T19899] loop6: detected capacity change from 0 to 512
[  202.913155][T19899] EXT4-fs (loop6): blocks per group (71) and clusters per group (20800) inconsistent
[  203.018574][T19912] loop3: detected capacity change from 0 to 512
[  203.072677][T19912] EXT4-fs (loop3): 1 orphan inode deleted
[  203.102071][ T1087] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[  203.120851][T19912] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.154065][T19912] ext4 filesystem being mounted at /753/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.199321][T10921] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.230205][T19938] loop3: detected capacity change from 0 to 512
[  203.251536][T19936] loop8: detected capacity change from 0 to 2048
[  203.258067][T19938] EXT4-fs (loop3): blocks per group (71) and clusters per group (20800) inconsistent
[  203.294203][T19936] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.331936][T19936] ext4 filesystem being mounted at /410/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.382184][T19955] loop4: detected capacity change from 0 to 128
[  203.397029][T19955] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.411637][T19958] veth1_to_bond: entered allmulticast mode
[  203.414462][T14958] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.419131][T19958] veth1_to_bond: entered promiscuous mode
[  203.432724][T19955] ext4 filesystem being mounted at /200/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  203.434534][T19958] veth1_to_bond: left promiscuous mode
[  203.470352][T19958] veth1_to_bond: left allmulticast mode
[  203.500009][T17223] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  203.619618][T19983] loop6: detected capacity change from 0 to 128
[  203.638111][T19989] loop8: detected capacity change from 0 to 512
[  203.648404][T19989] EXT4-fs (loop8): blocks per group (71) and clusters per group (20800) inconsistent
[  203.661111][T19983] ext4 filesystem being mounted at /827/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  203.759742][T20014] netlink: 202920 bytes leftover after parsing attributes in process `syz.4.6678'.
[  203.809495][T20021] batadv0 speed is unknown, defaulting to 1000
[  203.849407][T20029] loop4: detected capacity change from 0 to 2048
[  203.898512][T20029] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.117582][   T29] kauditd_printk_skb: 195 callbacks suppressed
[  204.117622][   T29] audit: type=1400 audit(2000000003.100:7440): avc:  denied  { mount } for  pid=20063 comm="syz.4.6675" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  204.359392][   T29] audit: type=1400 audit(2000000003.340:7441): avc:  denied  { create } for  pid=20107 comm="syz.9.6682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  204.379864][   T29] audit: type=1400 audit(2000000003.340:7442): avc:  denied  { connect } for  pid=20107 comm="syz.9.6682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  204.488996][   T29] audit: type=1326 audit(2000000003.470:7443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20116 comm="syz.9.6686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  204.512854][   T29] audit: type=1326 audit(2000000003.470:7444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20116 comm="syz.9.6686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  204.548139][   T29] audit: type=1326 audit(2000000003.500:7445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20116 comm="syz.9.6686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  204.571963][   T29] audit: type=1326 audit(2000000003.500:7446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20116 comm="syz.9.6686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  204.595654][   T29] audit: type=1326 audit(2000000003.500:7447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20116 comm="syz.9.6686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  204.619271][   T29] audit: type=1326 audit(2000000003.500:7448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20116 comm="syz.9.6686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  204.642901][   T29] audit: type=1326 audit(2000000003.500:7449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20116 comm="syz.9.6686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c749be169 code=0x7ffc0000
[  204.750489][T20131] loop8: detected capacity change from 0 to 128
[  204.760173][T20131] ext4 filesystem being mounted at /415/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  204.840571][T20140] batadv0 speed is unknown, defaulting to 1000
[  204.885330][T20145] veth1_to_bond: entered allmulticast mode
[  204.921724][T20147] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.6698'.
[  204.942082][T20145] veth1_to_bond: entered promiscuous mode
[  204.955616][T20145] veth1_to_bond: left promiscuous mode
[  204.961283][T20145] veth1_to_bond: left allmulticast mode
[  204.994814][T20150] loop3: detected capacity change from 0 to 512
[  205.015630][T20150] EXT4-fs: Ignoring removed nobh option
[  205.083655][T20150] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.6699: corrupted inode contents
[  205.103707][T20150] EXT4-fs (loop3): Remounting filesystem read-only
[  205.127119][T20150] EXT4-fs (loop3): 1 truncate cleaned up
[  205.133878][T20150] ext4 filesystem being mounted at /765/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.149617][T16447] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  205.160864][T16447] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  205.178701][T20160] loop8: detected capacity change from 0 to 1024
[  205.185661][T16447] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  205.214399][T20160] ext4 filesystem being mounted at /416/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.283383][T20142] batadv0 speed is unknown, defaulting to 1000
[  205.328314][T20160] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.6700: bg 0: block 393: padding at end of block bitmap is not set
[  205.358294][T20160] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117
[  205.371019][T20160] EXT4-fs (loop8): This should not happen!! Data will be lost
[  205.371019][T20160] 
[  205.442360][T20172] loop9: detected capacity change from 0 to 8192
[  205.493921][T20179] loop3: detected capacity change from 0 to 128
[  205.509173][T20182] loop4: detected capacity change from 0 to 512
[  205.510039][T20179] ext4 filesystem being mounted at /769/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  205.588070][T20182] ext4 filesystem being mounted at /214/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  205.739663][T20204] netlink: 36 bytes leftover after parsing attributes in process `syz.3.6724'.
[  205.747378][T20207] loop4: detected capacity change from 0 to 1024
[  205.769026][T20206] sd 0:0:1:0: device reset
[  205.792114][T20207] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.821598][T20207] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6723: bg 0: block 393: padding at end of block bitmap is not set
[  205.846348][T20216] loop6: detected capacity change from 0 to 512
[  205.853578][T20207] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117
[  205.866298][T20207] EXT4-fs (loop4): This should not happen!! Data will be lost
[  205.866298][T20207] 
[  205.867802][T20216] EXT4-fs: Ignoring removed nobh option
[  205.887437][T20218] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6728'.
[  205.896649][T20218] netlink: 108 bytes leftover after parsing attributes in process `syz.3.6728'.
[  205.906263][T20218] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6728'.
[  205.916130][T20218] netlink: 108 bytes leftover after parsing attributes in process `syz.3.6728'.
[  205.925247][T20218] netlink: 84 bytes leftover after parsing attributes in process `syz.3.6728'.
[  205.948002][T20216] EXT4-fs error (device loop6): ext4_do_update_inode:5211: inode #16: comm syz.6.6727: corrupted inode contents
[  205.970516][T20216] EXT4-fs (loop6): Remounting filesystem read-only
[  205.977680][T20216] EXT4-fs (loop6): 1 truncate cleaned up
[  205.978714][T20226] xt_hashlimit: max too large, truncated to 1048576
[  205.983852][T20216] ext4 filesystem being mounted at /844/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.002411][T16447] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  206.013731][T16447] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  206.029152][T16447] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started
[  206.120504][T20242] loop6: detected capacity change from 0 to 512
[  206.127519][T20242] EXT4-fs: inline encryption not supported
[  206.133436][T20242] EXT4-fs: inline encryption not supported
[  206.139804][T20242] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  206.154111][T20242] EXT4-fs (loop6): 1 truncate cleaned up
[  206.178127][    C1] ==================================================================
[  206.186268][    C1] BUG: KCSAN: data-race in do_sys_poll / pollwake
[  206.192680][    C1] 
[  206.194996][    C1] read to 0xffffc90004aebbd0 of 4 bytes by task 20234 on cpu 0:
[  206.202666][    C1]  do_sys_poll+0x9f1/0xc80
[  206.207082][    C1]  __se_sys_ppoll+0x1b5/0x1f0
[  206.211770][    C1]  __x64_sys_ppoll+0x67/0x80
[  206.216376][    C1]  x64_sys_call+0x2c89/0x2e10
[  206.221062][    C1]  do_syscall_64+0xc9/0x1a0
[  206.225566][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.231455][    C1] 
[  206.233775][    C1] write to 0xffffc90004aebbd0 of 4 bytes by interrupt on cpu 1:
[  206.241397][    C1]  pollwake+0xc1/0x110
[  206.245459][    C1]  __wake_up+0x65/0xb0
[  206.249536][    C1]  bpf_ringbuf_notify+0x22/0x30
[  206.254390][    C1]  irq_work_run+0xe1/0x2d0
[  206.258806][    C1]  __sysvec_irq_work+0x23/0x1a0
[  206.263663][    C1]  sysvec_irq_work+0x66/0x80
[  206.268257][    C1]  asm_sysvec_irq_work+0x1a/0x20
[  206.273199][    C1]  default_send_IPI_self+0x38/0x80
[  206.278315][    C1]  arch_irq_work_raise+0x48/0x50
[  206.283258][    C1]  __irq_work_queue_local+0x82/0x1d0
[  206.288560][    C1]  irq_work_queue+0x85/0x120
[  206.293148][    C1]  bpf_ringbuf_discard+0xcd/0xf0
[  206.298087][    C1]  bpf_prog_fe0ed97373b08409+0x47/0x4b
[  206.303550][    C1]  bpf_trace_run3+0x10e/0x1d0
[  206.308226][    C1]  __traceiter_kmem_cache_free+0x33/0x50
[  206.313859][    C1]  kmem_cache_free+0x243/0x2e0
[  206.318626][    C1]  unlink_anon_vmas+0x160/0x350
[  206.323476][    C1]  free_pgtables+0x2d1/0x430
[  206.328073][    C1]  exit_mmap+0x2fa/0x6e0
[  206.332330][    C1]  __mmput+0x28/0x1d0
[  206.336306][    C1]  mmput+0x4c/0x60
[  206.340034][    C1]  exit_mm+0xe4/0x190
[  206.344015][    C1]  do_exit+0x559/0x17e0
[  206.348170][    C1]  do_group_exit+0x142/0x150
[  206.352775][    C1]  __x64_sys_exit_group+0x1f/0x20
[  206.357817][    C1]  x64_sys_call+0x2e03/0x2e10
[  206.362493][    C1]  do_syscall_64+0xc9/0x1a0
[  206.366998][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.373061][    C1] 
[  206.375376][    C1] value changed: 0x00000001 -> 0x00000000
[  206.381084][    C1] 
[  206.383402][    C1] Reported by Kernel Concurrency Sanitizer on:
[  206.389558][    C1] CPU: 1 UID: 0 PID: 20241 Comm: syz.6.6740 Not tainted 6.15.0-rc3-syzkaller-00019-gbc3372351d0c #0 PREEMPT(voluntary) 
[  206.402175][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  206.412322][    C1] ==================================================================