last executing test programs:

7m9.607105739s ago: executing program 32 (id=69):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x5)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f00000000c0)={0xffffffd9, 0x103, 0x0, 0x20b, 0x2, "03f075f056f3a200f6ce60094800", 0x563, 0x1ff})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000100)=0x9)

6m59.942715441s ago: executing program 33 (id=466):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
accept(r0, 0x0, 0x0)
shutdown(r0, 0x0)

6m48.744126008s ago: executing program 34 (id=957):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r2, {0x0, 0x7}, {}, {0x9, 0x5}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0xffffffff}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x20048850)

6m31.236923164s ago: executing program 35 (id=1500):
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x88604, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x20000, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
pread64(r1, &(0x7f0000000200)=""/102400, 0x19000, 0x80000000000000)

6m29.988924127s ago: executing program 36 (id=1532):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x48801}, 0x0)

6m5.560152468s ago: executing program 37 (id=1831):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0x115}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[@ANYBLOB="54000000000801010000ffffe00000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x28040000)

6m3.671747398s ago: executing program 38 (id=1876):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r1)
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x40)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000001000010500000000fbdbdf2500000000", @ANYRES32=r2, @ANYBLOB="01600000000000001c0012800900010069706970000000000c00028008000100", @ANYRES32=r2], 0x3c}}, 0x84000)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c0000001000010400000000fedbdf2500000000", @ANYRES32=r2, @ANYBLOB="13ff010001a001001c0012800900010069706970000000000c0002800800010005"], 0x3c}}, 0x20004000)

6m2.555581336s ago: executing program 39 (id=1890):
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0x4, @empty}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0xffff, 0xb, @mcast2, 0x9}, 0x1c)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/icmp6\x00')
pread64(r2, &(0x7f0000000280)=""/208, 0xd0, 0x0)

6m0.832309009s ago: executing program 40 (id=1909):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/net\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@cgroup=r0, 0x11, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@fallback, 0x10, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

5m51.337636674s ago: executing program 41 (id=2268):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x2007, &(0x7f0000000980)=<r1=>0x0)
r2 = eventfd2(0x9, 0x0)
io_pgetevents(r1, 0x2, 0x2, &(0x7f0000000080)=[{}, {}], 0x0, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff}, 0x0, &(0x7f0000000240)={0x1f, 0x1, 0xfffffffffffffffd, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x4}, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r2}])

5m26.53690891s ago: executing program 42 (id=3108):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000900)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x9}, 0x18)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x5}, 0x2004c000)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a000000000000000800010001000000040004"], 0x24}}, 0x0)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)

4m20.975291063s ago: executing program 43 (id=5979):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
accept4$unix(r1, &(0x7f0000001480), &(0x7f0000001500)=0x6e, 0x800)

3m53.681299556s ago: executing program 44 (id=7013):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3m22.951354745s ago: executing program 45 (id=7722):
pipe2(&(0x7f0000000040), 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mremap(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffd000/0x3000)=nil)
mbind(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x8, 0x2)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)

3m3.054487353s ago: executing program 46 (id=8567):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r0, &(0x7f0000000280)=ANY=[], 0x20)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1, 0x0, 0x7}, 0x18)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x6, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

2m51.813607731s ago: executing program 7 (id=9376):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000d40)=@filter={'filter\x00', 0x2, 0x4, 0x4a8, 0xffffffff, 0x0, 0xf0, 0xf0, 0xfeffffff, 0xffffffff, 0x3d8, 0x3d8, 0x3d8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, [0xff, 0xff, 0x0, 0xffffff00], [], 'pimreg0\x00', 'bond_slave_0\x00', {}, {}, 0x6, 0x0, 0x3}, 0x2f2, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@dev={0xac, 0x14, 0x14, 0x1d}, 'caif0\x00', {0x7}}}}, {{@ipv6={@mcast1, @loopback, [], [0x0, 0x0, 0xffffffff], 'netdevsim0\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f6531877000001e770b689f173dfa40b58c10327e3121114449fd20ba2be6eb0cde72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0x1d0}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x602, 'system_u:object_r:boot_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x508)

2m51.787061723s ago: executing program 7 (id=9377):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10, 0x0}, 0x3000c085)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f0000000100)=r1, 0x4)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0xc000}, 0x4000)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="b8", 0x1}], 0x1, 0x0, 0x0, 0x10000000}, 0x92cd)

2m51.769210023s ago: executing program 7 (id=9379):
openat(0xffffffffffffff9c, 0x0, 0x40000, 0x120)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x207)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})

2m51.663844318s ago: executing program 7 (id=9383):
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bind$rds(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f00000017c0)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@mask_cswp={0x58, 0x114, 0x9, {{0x9, 0x660}, &(0x7f0000000180)=0x80000001, 0x0, 0x6, 0xd, 0x1, 0x3, 0x3a, 0x8}}], 0x58}, 0x0)

2m51.60736401s ago: executing program 7 (id=9388):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x5, 0x51c, &(0x7f0000000700)="$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")
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095000000"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000002c0)=0x20)

2m51.529410803s ago: executing program 7 (id=9396):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=r2, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=r2], 0x48}, 0x1, 0x0, 0x0, 0x48800}, 0x0)

2m37.128134247s ago: executing program 47 (id=9396):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=r2, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=r2], 0x48}, 0x1, 0x0, 0x0, 0x48800}, 0x0)

2m22.553753968s ago: executing program 0 (id=10461):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xf1, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000003c0)='mm_page_alloc\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=[{0x18, 0x110, 0x1, 'p'}], 0x18}, 0x0)

2m22.516528589s ago: executing program 0 (id=10463):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x20ffe, 0x0, 0x0, 0x40f00, 0xac, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe81, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000001, 0x31, 0xffffffffffffffff, 0xffffd000)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x1, 0x0)

2m22.346903197s ago: executing program 0 (id=10468):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x10, 0x3, 0x9)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f0000002100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [], {0x14}}, 0x28}}, 0x0)

2m22.26105671s ago: executing program 0 (id=10472):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r1, @ANYBLOB="140001000040000000000000000000000000000014000200fe8000000000000000000000000000aa140006"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

2m22.216051303s ago: executing program 0 (id=10474):
mkdir(&(0x7f0000001a80)='./file0\x00', 0xd2)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

2m22.189140363s ago: executing program 0 (id=10478):
pipe(0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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")
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x60005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
listxattr(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)

2m7.414413973s ago: executing program 48 (id=10478):
pipe(0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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")
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x60005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
listxattr(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)

2m2.956514152s ago: executing program 9 (id=10624):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e22, @rand_addr=0x1}, 0x2, 0x4}}, 0x26)
ioctl$PPPIOCGL2TPSTATS(r2, 0x8004745a, &(0x7f0000005280))

2m2.955826953s ago: executing program 9 (id=10626):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4024}, 0x4000010)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

2m2.951801123s ago: executing program 9 (id=10628):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r0, 0x0, 0x9}, 0x18)
r1 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
sendmmsg$inet6(r1, &(0x7f00000001c0)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x8, @empty, 0x9}, 0x1c, 0x0}}], 0x1, 0x80)

2m2.879576726s ago: executing program 9 (id=10632):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000000c40)={{0x80}, 'port0\x00', 0x41, 0xfe8ee28a1d9fac77, 0x5, 0x6, 0x2, 0x40, 0x3, 0x0, 0x6, 0x5})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r1}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0xc0a85320, &(0x7f00000007c0)={{0x80}, 'port0\x00', 0x3c, 0x141000, 0xd, 0x2, 0x107, 0x6, 0x5, 0x0, 0x0, 0x3})
close(r0)

2m2.840393287s ago: executing program 9 (id=10636):
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

2m2.78786843s ago: executing program 9 (id=10641):
prctl$PR_SET_NAME(0xf, &(0x7f0000001d00)='\x00-\x00\x1dz\xde\xe8>*\xf9z\x91\x93\xef\x9e\x97V+\xb9\rQ\x82\x80\f96\xae\x8c(\x00\xf2\x1e\xc9\xf4\xbbv\x9dK\xfb\fO.\r\x84&\xa4\x12vP\x9e*\xbe\x1dS\x97\xb5\xe9k\xeb\xdd\x9daX\x8c\x8c\xc0\x04`b\x10Lv3X\x18Q\x1b\xfd\xb3\xc0\x83q0n\x1e\x91\xdf\xd0 r$\xd0\x13k\xb7\x854\xafe]\xff\x145=\x90\x1bIa\x81\xa5.\xe0\x8b\"P\x1c\xd7\xa7\xde\xc0\xec\xdc\x93\xb4(\xd0>\xc6M\x17\xbd\x8c\xcf\x04_y\a\x16(u\xe0m\xa2\xbf\xd0\xfe\xea\x05\xbe\x04\x14u\x81\x15\xd3\x01\xd8x\b\xfe\x17\x8dL\xfd\xf6\"j/h\xbd\xbb\x8dr\x8eKP\b[Y\xf1\xc3\x15\xccv\xb7{b\x01Z\xe3\xe0$\xe4\x15\xdb\b@\\\xd6\xb1\xea\tX\xd3\xb9\xf2\r73\xf1\x82\xcc\x80SX\xeb\x84q\xf4\x8b\x18-\x93\xc3f\x0f\xde\xb4I\xab\x84\xf9\x05+\xe9\xc1q\x8d3+\xbc\xa37\xd3\xc4\xb9=\xcf!Y\x88\xf96+\'\x1fR7\xfa\xa6\xb8\fp\xda\x05\x14\xc4\xc6\x919\x9f}\x84\x1c\xf6\xc9yA*qf\x0eD\xc5\bu\xbc\xd7\xe3\xe82@\x9b\xe4&\xace\xbe\xb5\xe04\x91\xb6\xdc1t\xa9\xb3@-\xdb\xd1\x18\x13\x89G<N\xaf\xd7\xc3[\xca\xf7\b\xbb\'V\xad\xb02\xbd\xfb^\xbdmF(\x87\r\x9c0\f\x17')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x39}, 0x18)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)

1m56.036135998s ago: executing program 4 (id=10824):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x82d, &(0x7f0000000280)={0x0, 0xcd1d, 0x10100, 0x1}, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x20, 0x0, @fd_index=0x5, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x1})
io_uring_enter(r0, 0x26c3, 0xdffffffb, 0x4c, 0x0, 0x0)

1m56.035519967s ago: executing program 4 (id=10826):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/pm_wakeup_irq', 0x0, 0x1a0)
r2 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
fadvise64(0xffffffffffffffff, 0x8, 0xffffffff, 0x2)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001600)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})

1m55.908677743s ago: executing program 4 (id=10829):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40})
pipe2(0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x7)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f00000001c0)="580000001400192340834b80040d8c560a067f0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000b0c10000000224e00000000", 0x58}], 0x1)

1m55.856301325s ago: executing program 4 (id=10831):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@noinit_itable}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x10, 0x0)
syz_mount_image$ext4(&(0x7f0000000600)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000280)={[{@nodioread_nolock}, {@user_xattr}, {@mblk_io_submit}, {@jqfmt_vfsv0}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x460, &(0x7f0000000dc0)="$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")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000000)='./file0\x00')

1m55.628510105s ago: executing program 4 (id=10834):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000005740)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r1 = gettid()
r2 = getpid()
rt_tgsigqueueinfo(r2, r1, 0xb, &(0x7f0000000000)={0x0, 0x0, 0x4})

1m55.408544295s ago: executing program 4 (id=10842):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=f'])

1m55.408309634s ago: executing program 49 (id=10842):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=f'])

1m48.47265769s ago: executing program 50 (id=10641):
prctl$PR_SET_NAME(0xf, &(0x7f0000001d00)='\x00-\x00\x1dz\xde\xe8>*\xf9z\x91\x93\xef\x9e\x97V+\xb9\rQ\x82\x80\f96\xae\x8c(\x00\xf2\x1e\xc9\xf4\xbbv\x9dK\xfb\fO.\r\x84&\xa4\x12vP\x9e*\xbe\x1dS\x97\xb5\xe9k\xeb\xdd\x9daX\x8c\x8c\xc0\x04`b\x10Lv3X\x18Q\x1b\xfd\xb3\xc0\x83q0n\x1e\x91\xdf\xd0 r$\xd0\x13k\xb7\x854\xafe]\xff\x145=\x90\x1bIa\x81\xa5.\xe0\x8b\"P\x1c\xd7\xa7\xde\xc0\xec\xdc\x93\xb4(\xd0>\xc6M\x17\xbd\x8c\xcf\x04_y\a\x16(u\xe0m\xa2\xbf\xd0\xfe\xea\x05\xbe\x04\x14u\x81\x15\xd3\x01\xd8x\b\xfe\x17\x8dL\xfd\xf6\"j/h\xbd\xbb\x8dr\x8eKP\b[Y\xf1\xc3\x15\xccv\xb7{b\x01Z\xe3\xe0$\xe4\x15\xdb\b@\\\xd6\xb1\xea\tX\xd3\xb9\xf2\r73\xf1\x82\xcc\x80SX\xeb\x84q\xf4\x8b\x18-\x93\xc3f\x0f\xde\xb4I\xab\x84\xf9\x05+\xe9\xc1q\x8d3+\xbc\xa37\xd3\xc4\xb9=\xcf!Y\x88\xf96+\'\x1fR7\xfa\xa6\xb8\fp\xda\x05\x14\xc4\xc6\x919\x9f}\x84\x1c\xf6\xc9yA*qf\x0eD\xc5\bu\xbc\xd7\xe3\xe82@\x9b\xe4&\xace\xbe\xb5\xe04\x91\xb6\xdc1t\xa9\xb3@-\xdb\xd1\x18\x13\x89G<N\xaf\xd7\xc3[\xca\xf7\b\xbb\'V\xad\xb02\xbd\xfb^\xbdmF(\x87\r\x9c0\f\x17')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x39}, 0x18)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)

1m44.430876332s ago: executing program 8 (id=11183):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r0}, &(0x7f00000000c0), &(0x7f0000000140)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1m44.403635053s ago: executing program 8 (id=11184):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x70, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2f}, @NFTA_SET_EXPRESSIONS={0x2c, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x106}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xb8}}, 0x20050800)

1m44.382245034s ago: executing program 8 (id=11185):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0xffb2)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000ac0)=@ccm_128={{0x304}, "5c000002010400", "ccaa54dbfef3216ec09b63757e98ed63", "cde21de0", "bcad0b2f6d5df9b2"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x4, &(0x7f0000000100)=@gcm_128={{0x7}, "a103e87121185f5b", "3469b58aab534832066b0e8dfd57575b", "a5838230", "c780b3ecb9c69e6c"}, 0x28)

1m44.339204746s ago: executing program 8 (id=11188):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4, 0x2}, {0xc}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xfffffffffffffffe}}}]}, {0x25}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0)

1m44.308668048s ago: executing program 8 (id=11189):
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

1m44.277848398s ago: executing program 8 (id=11204):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x2)
readv(r1, &(0x7f0000000600)=[{&(0x7f00000002c0)=""/135, 0x87}], 0x1)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x2)

1m29.050234877s ago: executing program 51 (id=11204):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x2)
readv(r1, &(0x7f0000000600)=[{&(0x7f00000002c0)=""/135, 0x87}], 0x1)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x2)

1.907711609s ago: executing program 1 (id=14700):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x18)
setresuid(0x0, 0xee00, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
quotactl_fd$Q_GETQUOTA(0xffffffffffffffff, 0xffffffff80000702, 0x0, 0x0)

1.89039084s ago: executing program 1 (id=14701):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
syz_clone3(&(0x7f0000000080)={0x801400, &(0x7f0000000040)=<r1=>0xffffffffffffffff, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x84, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
sendto$inet(r0, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r0, 0xda90)
accept4(r0, 0x0, 0x0, 0x0)

1.752514636s ago: executing program 3 (id=14703):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001ec0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x2, @mcast1, 0x9}, 0x1c)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x32)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

1.734575197s ago: executing program 3 (id=14705):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x4}, 0x18)
r2 = socket$key(0xf, 0x3, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f0000000380)={[], [{@uid_gt}]}, 0xff, 0x531, &(0x7f0000000640)="$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")
sendmsg$key(r2, &(0x7f0000000400)={0x10000000, 0x0, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYBLOB="020e0080150000000000000000000000030005000000000002004e24ac1e00010000000000000000030006003c000000020000fc34000000000000000000000001001800000000000800120000000200fcffffff000000000600330000000000000000000000eafffd8000000000000000000000000000aa000000000000000000000000000000000400"], 0xa8}}, 0x2)

1.218473869s ago: executing program 3 (id=14718):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='mm_lru_insertion\x00', r2}, 0x18)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r3, &(0x7f0000000200), 0x43451)

1.154042812s ago: executing program 3 (id=14722):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r2, &(0x7f0000000a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000500)=""/18, 0x12, 0x3, 0x4, 0x0, 0x0, 0xc04}}, 0x120)
readv(r2, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x1)
write$UHID_DESTROY(r2, 0x0, 0x0)

1.053411546s ago: executing program 1 (id=14728):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000004c0), 0xce, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fsetxattr$security_selinux(r2, &(0x7f00000000c0), &(0x7f0000000040)='system_u:object_r:dhcp_state_t:s0\x00', 0x1e, 0x0)

972.298569ms ago: executing program 1 (id=14731):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

971.822519ms ago: executing program 2 (id=14732):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff27)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r1}, 0x18)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
recvmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)

936.504781ms ago: executing program 2 (id=14733):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000009c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef289a630182700008"], 0xffdd)

907.145412ms ago: executing program 3 (id=14734):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000100)=0x9, 0x4)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x300000a, 0x12, r0, 0x852ac000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x397, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0xffffffff, @loopback, 0xbf}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000280)=0x6c, 0x4)
recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002000)=""/4111, 0x100f}, 0x80000000}], 0x1, 0x40002000, 0x0)

861.835654ms ago: executing program 3 (id=14735):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x4, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
r1 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r2)
sendmsg$TIPC_NL_MEDIA_GET(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000440)={0x20, r3, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20040040}, 0x20000000)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000000c0)=0xfd)

771.079448ms ago: executing program 2 (id=14737):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="d0000000", @ANYRES16=r3, @ANYBLOB="01002bbd7000fcdbdf2511"], 0xd0}, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)

716.15413ms ago: executing program 2 (id=14738):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x69, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000580)='$\x00\x19y\x01\xff\xb4\x9e\x95oQE\xc9\x1f|\bZ\xf44\x7f)\x03c\x9a\x85\x01V\xb8p+\x84\xfb\xe6?\x88\xe9\x98Y\x0e\xd5P\xa2\xcc\x01*\xcd%v!\x82\xf1\xaaB\x04-\x88\xeb-q8\x03\xadO\xa0F\xc5Z\x0f\xee\x94\xfcy\xa5\xa4L\xa1\xd7g\x9d\xd2m5r\xef\xe1\xd1\x87\x1aM\xa6\xa8\xa2\xef\xb0\x9e\xa9d\xee\xacl\x9c\xcb\x03\x17\xbbG\x15\xba3\xa5r<]T\xc6R\x03\xee#\x0f\x88\xc4\xd3\x02\xd1 @\r\x1cc\xe4|\x13H\xc2\x1fq\x88\xdd\x98\xe1~\xb0\xedK\x17x\v\x9b\xaa\xb4\a\xb6\x8b\x9e*=\x8f\x05\x8b\x88\xc9\x12\xa6\x8fs\x98\xf1\xfe\xcdX\xce,AD\xd2v\xf4\xe5\xd3\xf3\xf1TY\x1c\x8a\x98\xf8\xcf6\xc3>]l\xdaQ\xac\n{)\xc9\x95\xb4\x12j}8\x03\xba&\xe8p\xe8\xf0\xa4\xa6e\xbc\xef\x93%/x\x19\xaa\xb5\x97\x98A\\\x91\x9a \xa8\xf8a\xd8\x97\x1eR\xaf\xc8\x9f', 0x0)
read$ptp(r2, &(0x7f0000000280)=""/176, 0xb0)

671.569022ms ago: executing program 2 (id=14740):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000003c0)='writeback_bdi_register\x00', r2}, 0x18)
r3 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})

535.109238ms ago: executing program 2 (id=14744):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r1, &(0x7f0000000a00)="c7885a8f24f458bed72116", 0xb)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)
syz_clone(0x4000, &(0x7f00000001c0)="b0c4dc345846be585bf5b5590398bdef9afdcc0aea", 0x15, &(0x7f0000000200), &(0x7f0000000280), &(0x7f0000000640)="309b418c2ff6ecdc2325525eb0f919ed1e740654d86989c6c6078bc1da5e22f1aba91544f7a3d49c85c63c4ecbc0126032a428edf3f02782f9be1f36d8f276bf565a2ae3422f772cb62ad7b776582306ae5c8544501f942375553298fbdf44ff5954bdb9599b50228be204d9fa3a366c83a7")

497.84284ms ago: executing program 6 (id=14745):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000000008001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))

497.3366ms ago: executing program 6 (id=14746):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010328bd7000fedbdf251c0000000c00018008000100", @ANYRES32=r4], 0x20}}, 0x10)

347.178086ms ago: executing program 6 (id=14747):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x19, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x68, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000004c0)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x4e20, 0x7, @mcast2, 0x3}, r1}}, 0x48)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x2, 0x5}}, 0x20)

300.080147ms ago: executing program 5 (id=14748):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
close_range(r0, r1, 0x0)

247.45266ms ago: executing program 6 (id=14749):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
syz_mount_image$iso9660(&(0x7f0000000340), &(0x7f0000000c80)='./file1\x00', 0x1004491, &(0x7f0000000000)=ANY=[], 0x2, 0x845, &(0x7f0000001a40)="$eJzs3U9oHOfZAPBnFMmSZeIvfN9HPmMcZ2znA5s6yq6UKBU5pNvVSJ5E2hW7q2JTQhJiOTWRk5AQ0pjS2JekLS2lpx7TXEMugRZaCi300PZUaA699BAI5NKSlhZKS2lR2dldW/9W8h9ZTtPfb/G+s+888877zo7n0aw0swEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARFKdLpXKSczltcXTaX/V6UZ9fov5vfZ+uqbYYr0RSftfjIzEgU7Vgf+9Ovvu9tPRONR5dShG2sVIXNx3912P/M/gQG/5LTp0o470nzW0+kUScSkiGYxYXl566RZ0ZBd948fdiZFrXuRvK+3n2ayWN+v5fGU2S/NmPZ2anCw9cGqmmc7kc1nzTLOVzafVRlZp1Rvp8eqJtDw1NZFmY2fqi7XZ6crcSK/y4fvHS6XJ9LGxhazSaNZrDzw21hyOfG4ur80WMeOlV6Md83B7R3w8b6WtrDKfpufOLy9NbNfVdlB5Tc3wmh3n0H13ffTKh38+v9TeIfs1knR3zPFyeXy8PPnQ1EMPl0qD46XxtRWldeJKRAwMRTviluy03F77Nqkb7O4xG2ZErPzXDh294eYMdPN/zEUetViM05FGGgPF89XHUFRjOhpRj/n2698MrZu/If///wN/+NVW612d/3tZ/sDV2QejyP+HO68O98v/G3qxA4/Bfq3W3u30ZnXdy/FaXIzn4ulYjuVYipfWL7Vn/RKbPK4l5qYfw51yYGdbnY0sapFHM5LIYz4qRU1a1NQjjamYjMkoxZNxKmaiGWnMRB5zkUUzzkQzWpEVe1Q1GpFFJVpRj0akcTyqcSLSKMdUTMVEpJHFWJyJeixGLWZjOipFK+fifLHdJ9b16+6vPvWjZ3/90Vvt6StB5S0GklyKiH0fRPxpi6AN6f468n87YqC7d+9KTmKXjGz7rq6duyPHbdgJK0X+H7zd3QAAAABuoaT49D2JiKG4p5iayeeyL97ubgEAAAA7qPi75kPtYqg9dU8k7fP/0iaR70cM73r3AAAAgB2QFNfYJRExGvd2pnqXS232IQAAAADwb6j4/f/hdjEa8XpR4fwfAAAAPmW+1u8e+x/uKe6xOxrNheHkJ3+MRmMoubxw+r7kQqUdV7lwR2e5bvGFKy22Zg4m+7uNFMXk4MV9SUQMVrNDSe/ul//oXkvwcfvpnysrK73F+93rP+l0IOJAbNqB2LoDxav4ZhzpxBw52ynP9uZ01jI6k89lY9X63CPlpPvhSOuV589/OYrhf702vz+Jc+eXl8aeeWH5bLExLrdbuXyhe3v4pLdUROeCii36stK7muKezUc8VFyI0V3vaGe9pdVvQPdusgNbjz9Zvc434mgn5uhopxxdO/6R9jrLY4+Uo1LZP9DKTrdeWVk1+m4vyldHPtwbbXId78IbcawTc+z4sU6xSS/G1/Ti+Y29GF+9/a9tW1xzL9468vrpv/y8nmQT2/Vi4iZ7AXC7nCvu+nM1C+0tstDfVzraCW1d4t/bS1vXc5Q7d/WnjL3d6FW5bjB62f3KWtIbye5vxPFOzPGDxYF18OAmeaW0yRH9xfMv/qJ7RH/wne9+74nDv3xvXV6PuLT/GnvxTpzoxHSL+O+f9cmx7TF/a11Wfbu9xNsX+mXV5tx48urwxFASl4rXF+8/f+HpZ5eeXXp+fHxisvRgqfTQeAwVPyp0iz49lXkA/rNt9x07733lSmi/b+FJHtzmrDoZ7P1JwVg8Ey/EcpyNk8XVBhFx7+atjq76M4ST25y1jsb3f9CZUY6T25xbXm13fH3s8LEk+sROrNpi//edovjrrXg3AGB3HN0mDydxV+e2P6/e2V1iXcQdSXJy9Xn3lyLiYL+c287lJ4ovzr1ydhz9Ystr+vm7bvnZ3dgoAPAplzU+TkZbbyaNRr7wZHlqqlxpncrSRr36eNrIp2ezNK+1skb1VKU2m6ULjXqrXu19dDydNdPm4sJCvdFKZ+qNdKHezE8X3/yedr/6vZnNV2qtvNpcmMsqzSyt1mutSrWVTufNarqw+Pm5vHkqaxQLNxeyaj6TVyutvF5Lm/XFRjUbS3u/Y+gG5tNZrZXP5NlQmtfShUY+X2lcbs9enM/S6axZbeQLrXqnwd668trM/sZ80ezYxuH/fje3NQB8Urz82sXnnl5eXnrpxiZ+ey3Bt3uMAMBasjQAAAAAAAAAAAAAAHzybbxcr117XRcCDsUNXz748nC0J/be6OLtiSe6I7mJqxi3mBiMHW5w64nPvNsZzE40uLGdoV7Nndtd97m3eE8vd2v2dDfxLm2EnZx46tFHn7t4OSKKmmTwyuZtb4vXD5z6IIve6LZoZ8P/lD199vl4c3/Enh9+u1PzuU1i7oh2N3Z4pO/3Bnh9i68kW/zH39XDEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABck38FAAD//6cCQ0U=")
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r0, &(0x7f0000000200)=ANY=[], 0xff2e)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

217.562312ms ago: executing program 1 (id=14750):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

172.452163ms ago: executing program 5 (id=14751):
unshare(0x22020600)
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000600)={0xa0000013})
ppoll(&(0x7f0000000040)=[{r2, 0x1}], 0x1, 0x0, 0x0, 0x0)

172.093723ms ago: executing program 6 (id=14752):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a4c0000000e0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000200003801c0000800c000180060001"], 0x74}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

151.949854ms ago: executing program 1 (id=14753):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r2, 0x400455c8, 0x0)

131.225325ms ago: executing program 5 (id=14754):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x12, 0x8, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x10021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, &(0x7f0000000040)}, 0x20)

36.529689ms ago: executing program 6 (id=14755):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xfff3}}}, 0x24}}, 0x0)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000000)={@remote}, 0x19)

36.118019ms ago: executing program 5 (id=14756):
r0 = syz_io_uring_setup(0x4172, &(0x7f0000000780)={0x0, 0x4f5c, 0x10100, 0x0, 0x14c}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00'}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x9c, 0xb, 0x0, 0xffffffffffffffff, 0x327}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r0, 0x567, 0x0, 0x0, 0x0, 0x0)

33.379669ms ago: executing program 5 (id=14757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001bc0)=ANY=[@ANYBLOB="10000000040000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r3}, &(0x7f0000000a00), &(0x7f0000000a40)=r2}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r3}, &(0x7f0000000880), &(0x7f00000008c0)=r2}, 0x20)

0s ago: executing program 5 (id=14758):
r0 = creat(&(0x7f0000000140)='./file0\x00', 0x106)
close(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
shutdown(r1, 0x0)
recvmmsg(r1, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000001200), 0x9, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

kernel console output (not intermixed with test programs):

ring orphan list.
[  392.807312][ T6080] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.831632][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.427484][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  393.427721][ T4063] Bluetooth: hci0: command 0x1003 tx timeout
[  393.458019][ T6086] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[  393.465252][   T29] audit: type=1326 audit(924.402:14793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.2.11828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  393.488281][   T29] audit: type=1326 audit(924.402:14794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.2.11828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  393.511290][   T29] audit: type=1326 audit(924.402:14795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.2.11828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  393.534491][   T29] audit: type=1326 audit(924.402:14796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.2.11828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  393.557684][   T29] audit: type=1326 audit(924.402:14797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.2.11828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  393.580885][   T29] audit: type=1326 audit(924.402:14798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.2.11828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  393.603942][   T29] audit: type=1326 audit(924.402:14799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.2.11828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  393.627085][   T29] audit: type=1326 audit(924.402:14800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.2.11828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  394.577800][ T6150] sch_fq: defrate 4294967295 ignored.
[  394.625606][ T6159] netlink: 'syz.1.11864': attribute type 5 has an invalid length.
[  394.630441][ T6155] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  394.669432][ T6164] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  394.768789][ T6185] sch_fq: defrate 4294967295 ignored.
[  394.886444][ T6206] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  395.006279][ T6236] block device autoloading is deprecated and will be removed.
[  395.131188][ T6264] $Hÿ: (slave dummy0): Releasing backup interface
[  395.139238][ T6264] dummy0: left promiscuous mode
[  395.146485][ T6264] batman_adv: batadv0: Adding interface: dummy0
[  395.152833][ T6264] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  395.178070][ T6264] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  395.219729][ T6275] netlink: 4 bytes leftover after parsing attributes in process `syz.5.11914'.
[  395.237599][ T6277] netlink: 'syz.6.11915': attribute type 1 has an invalid length.
[  395.288189][ T6285] IPv6: Can't replace route, no match found
[  395.310447][ T6289] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  395.463289][ T6322] netlink: 24 bytes leftover after parsing attributes in process `syz.6.11936'.
[  395.578648][ T6348] SELinux: failed to load policy
[  395.581462][ T6347] ip6gre1: entered promiscuous mode
[  395.588945][ T6347] ip6gre1: entered allmulticast mode
[  395.750370][ T6382] 9pnet: Could not find request transport: f
[  396.303888][ T6442] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11990'.
[  396.313905][ T6442] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11990'.
[  396.403798][ T6447] openvswitch: netlink: EtherType 0 is less than min 600
[  396.729948][ T6487] loop1: detected capacity change from 0 to 512
[  396.754085][ T6487] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  396.798003][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.855048][ T6495] af_packet: tpacket_rcv: packet too big, clamped from 54 to 4294967286. macoff=82
[  396.918464][ T6503] netlink: 96 bytes leftover after parsing attributes in process `syz.1.12017'.
[  396.977957][ T6511] sd 0:0:1:0: device reset
[  397.274668][ T6545] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12036'.
[  397.310051][ T6545] 8021q: adding VLAN 0 to HW filter on device bond1
[  397.349009][ T6555] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  397.353684][   T29] kauditd_printk_skb: 290 callbacks suppressed
[  397.353701][   T29] audit: type=1326 audit(1184.491:15091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.388194][   T29] audit: type=1326 audit(1184.533:15092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.397390][ T6545] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12036'.
[  397.454704][   T29] audit: type=1326 audit(1184.596:15093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.478811][   T29] audit: type=1326 audit(1184.627:15094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.484014][ T6545] bond1 (unregistering): (slave gretap1): Releasing backup interface
[  397.502037][   T29] audit: type=1326 audit(1184.627:15095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.534658][   T29] audit: type=1326 audit(1184.680:15096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.562174][   T29] audit: type=1326 audit(1184.711:15097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.585404][   T29] audit: type=1326 audit(1184.711:15098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.609743][ T6545] bond1 (unregistering): Released all slaves
[  397.616324][ T6570] serio: Serial port ttyS3
[  397.619537][   T29] audit: type=1326 audit(1184.764:15099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.643913][   T29] audit: type=1326 audit(1184.764:15100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6559 comm="syz.3.12042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  397.899935][ T6598] SELinux: failed to load policy
[  398.056380][ T6630] atomic_op ffff8881027a3d28 conn xmit_atomic 0000000000000000
[  398.582853][ T6647] Process accounting resumed
[  398.852406][ T6689] netlink: 36 bytes leftover after parsing attributes in process `syz.1.12100'.
[  398.883971][ T6691] netlink: 'syz.5.12101': attribute type 12 has an invalid length.
[  399.135134][ T6722] pim6reg1: entered promiscuous mode
[  399.140494][ T6722] pim6reg1: entered allmulticast mode
[  399.361276][ T6746] netlink: 'syz.5.12126': attribute type 5 has an invalid length.
[  400.244231][ T6781] atomic_op ffff88810bb81128 conn xmit_atomic 0000000000000000
[  400.637505][ T6835] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  400.647041][ T6835] vhci_hcd: invalid port number 96
[  400.652209][ T6835] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  401.068631][ T6896] netlink: 12 bytes leftover after parsing attributes in process `syz.1.12194'.
[  401.085030][ T6896] 8021q: adding VLAN 0 to HW filter on device bond1
[  401.106566][ T6896] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  401.121796][ T6896] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12194'.
[  401.134566][ T6896] bond1 (unregistering): (slave gretap1): Releasing backup interface
[  401.144302][ T6896] bond1 (unregistering): Released all slaves
[  401.436480][ T6907] serio: Serial port ttyS3
[  402.205616][ T6931] ip6_vti0 speed is unknown, defaulting to 1000
[  402.257923][ T6936] Cannot find set identified by id 0 to match
[  402.376756][ T6948] sd 0:0:1:0: device reset
[  402.424159][ T6961] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12231'.
[  402.434861][ T6961] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12231'.
[  402.465723][   T29] kauditd_printk_skb: 98 callbacks suppressed
[  402.465738][   T29] audit: type=1326 audit(1189.855:15199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6962 comm="syz.3.12214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.514566][   T29] audit: type=1326 audit(1189.876:15200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6962 comm="syz.3.12214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.537627][   T29] audit: type=1326 audit(1189.876:15201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6962 comm="syz.3.12214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.560835][   T29] audit: type=1326 audit(1189.876:15202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6962 comm="syz.3.12214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.603481][ T6971] usb usb1: check_ctrlrecip: process 6971 (syz.1.12226) requesting ep 01 but needs 81
[  402.613232][ T6971] usb usb1: usbfs: process 6971 (syz.1.12226) did not claim interface 0 before use
[  402.753629][   T29] audit: type=1326 audit(1190.149:15203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6981 comm="syz.3.12229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.776815][   T29] audit: type=1326 audit(1190.149:15204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6981 comm="syz.3.12229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.799901][   T29] audit: type=1326 audit(1190.149:15205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6981 comm="syz.3.12229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.823041][   T29] audit: type=1326 audit(1190.149:15206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6981 comm="syz.3.12229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.846102][   T29] audit: type=1326 audit(1190.149:15207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6981 comm="syz.3.12229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.869135][   T29] audit: type=1326 audit(1190.149:15208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6981 comm="syz.3.12229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  402.962056][ T6996] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12236'.
[  402.977597][ T6996] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12236'.
[  403.177987][ T7036] ip6gre1: entered promiscuous mode
[  403.183294][ T7036] ip6gre1: entered allmulticast mode
[  403.316170][ T7058] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12264'.
[  403.327326][ T7058] netlink: 4 bytes leftover after parsing attributes in process `syz.5.12264'.
[  403.615534][ T7085] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  403.643347][ T7091] sd 0:0:1:0: device reset
[  403.698579][ T7101] loop1: detected capacity change from 0 to 512
[  403.707365][ T7101] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  403.718973][ T7101] EXT4-fs (loop1): 1 truncate cleaned up
[  403.725089][ T7101] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.754974][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.846409][ T7121] netlink: 36 bytes leftover after parsing attributes in process `syz.5.12292'.
[  403.935557][ T7525] Bluetooth: hci0: Frame reassembly failed (-84)
[  404.056362][ T7139] IPv6: Can't replace route, no match found
[  404.099306][ T7142] netlink: 24 bytes leftover after parsing attributes in process `syz.5.12300'.
[  404.116189][ T7146] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12302'.
[  404.379396][ T7176] netlink: 'syz.5.12315': attribute type 1 has an invalid length.
[  404.724668][ T7204] netlink: 44 bytes leftover after parsing attributes in process `syz.6.12328'.
[  404.733900][ T7204] netem: unknown loss type 12
[  404.738623][ T7204] netem: change failed
[  404.841363][ T7222] bond0: (slave bond_slave_0): Releasing backup interface
[  405.286248][ T7274] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  405.293647][ T7274] vhci_hcd: invalid port number 253
[  405.848999][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  406.046842][ T7343] SELinux: failed to load policy
[  406.095622][ T7356] xt_time: unknown flags 0xf4
[  406.367302][T15018] hid_parser_main: 48 callbacks suppressed
[  406.367319][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.380678][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.388174][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.395749][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.403176][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.410616][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.418089][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.425512][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.433008][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.440606][T15018] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[  406.454812][T15018] hid-generic 00A0:0006:0003.0020: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  406.512023][ T7377] Set syz1 is full, maxelem 65536 reached
[  406.772268][ T7513] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.822816][ T7513] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.908564][ T7513] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.924864][ T7465] loop1: detected capacity change from 0 to 1024
[  406.932650][ T7465] EXT4-fs: Ignoring removed nomblk_io_submit option
[  406.940013][ T7467] IPv6: Can't replace route, no match found
[  406.946134][ T7465] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  406.973811][ T7465] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.12448: Invalid block bitmap block 0 in block_group 0
[  406.989047][ T7513] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.003947][ T7465] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.12448: Failed to acquire dquot type 0
[  407.035595][ T7465] EXT4-fs error (device loop1): ext4_free_blocks:6706: comm syz.1.12448: Freeing blocks not in datazone - block = 0, count = 4096
[  407.080411][ T7465] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.12448: Invalid inode bitmap blk 0 in block_group 0
[  407.097277][ T7513] bridge_slave_1: left allmulticast mode
[  407.103081][ T7513] bridge_slave_1: left promiscuous mode
[  407.108830][ T7513] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.116461][ T7541] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:58: Failed to release dquot type 0
[  407.155263][ T7465] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  407.164147][ T7513] bridge_slave_0: left allmulticast mode
[  407.169845][ T7513] bridge_slave_0: left promiscuous mode
[  407.175558][ T7513] bridge0: port 1(bridge_slave_0) entered disabled state
[  407.186292][ T7465] EXT4-fs (loop1): 1 orphan inode deleted
[  407.193163][ T7465] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  407.257878][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.322368][   T29] kauditd_printk_skb: 130 callbacks suppressed
[  407.322380][   T29] audit: type=1400 audit(1194.957:15336): avc:  denied  { mount } for  pid=7481 comm="syz.1.12455" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  407.322732][ T7495] block device autoloading is deprecated and will be removed.
[  407.401484][   T29] audit: type=1400 audit(1195.031:15337): avc:  denied  { unmount } for  pid=3974 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  407.437856][ T7513] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  407.449410][ T7513] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  407.459382][ T7513] bond0 (unregistering): Released all slaves
[  407.528609][   T29] audit: type=1400 audit(1195.167:15338): avc:  denied  { create } for  pid=7554 comm="syz.6.12463" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  407.547814][   T29] audit: type=1400 audit(1195.167:15339): avc:  denied  { ioctl } for  pid=7554 comm="syz.6.12463" path="socket:[106916]" dev="sockfs" ino=106916 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  407.592825][ T7513] hsr_slave_0: left promiscuous mode
[  407.598530][ T7513] hsr_slave_1: left promiscuous mode
[  407.604323][ T7513] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  407.611807][ T7513] batman_adv: batadv0: Removing interface: batadv_slave_0
[  407.627031][ T7513] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  407.634473][ T7513] batman_adv: batadv0: Removing interface: batadv_slave_1
[  407.647693][ T7513] veth1_macvtap: left promiscuous mode
[  407.653335][ T7513] veth0_macvtap: left promiscuous mode
[  407.658873][ T7564] ALSA: seq fatal error: cannot create timer (-19)
[  407.667501][ T7513] veth1_vlan: left promiscuous mode
[  407.674484][ T7567] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7567 comm=syz.5.12468
[  407.683645][ T7513] veth0_vlan: left promiscuous mode
[  407.786548][ T7513] team0 (unregistering): Port device team_slave_1 removed
[  407.797095][ T7513] team0 (unregistering): Port device team_slave_0 removed
[  407.800223][   T29] audit: type=1326 audit(1195.461:15340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7583 comm="syz.3.12475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  407.832868][   T29] audit: type=1326 audit(1195.482:15341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7583 comm="syz.3.12475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  407.855965][   T29] audit: type=1326 audit(1195.482:15342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7583 comm="syz.3.12475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  407.879394][   T29] audit: type=1326 audit(1195.493:15343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7583 comm="syz.3.12475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  407.902535][   T29] audit: type=1326 audit(1195.503:15344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7583 comm="syz.3.12475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f040dc0df90 code=0x7ffc0000
[  407.925683][   T29] audit: type=1326 audit(1195.503:15345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7583 comm="syz.3.12475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f040dc0df90 code=0x7ffc0000
[  407.968664][ T7588] __nla_validate_parse: 4 callbacks suppressed
[  407.968698][ T7588] netlink: 64 bytes leftover after parsing attributes in process `syz.5.12477'.
[  408.006955][ T7592] uprobe: syz.5.12479:7592 failed to unregister, leaking uprobe
[  408.119130][ T7607] 9pnet_fd: Insufficient options for proto=fd
[  408.539716][ T7647] IPVS: Unknown mcast interface: hsr0
[  408.541146][ T7648] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12504'.
[  408.598108][ T2967] hid-generic 0000:3000000:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  408.632580][ T7662] loop1: detected capacity change from 0 to 128
[  408.640326][ T7661] uprobe: syz.6.12511:7661 failed to unregister, leaking uprobe
[  408.845962][ T7684] netlink: 28 bytes leftover after parsing attributes in process `syz.1.12521'.
[  409.270457][ T7726] netlink: 'syz.6.12541': attribute type 4 has an invalid length.
[  409.302820][ T7726] netlink: 'syz.6.12541': attribute type 4 has an invalid length.
[  409.394326][T15006] hid-generic 0000:3000000:0000.0022: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  409.455884][ T7748] vlan2: entered allmulticast mode
[  409.614088][ T7764] netlink: 'syz.5.12558': attribute type 4 has an invalid length.
[  409.650022][ T7764] netlink: 'syz.5.12558': attribute type 4 has an invalid length.
[  410.025154][ T7803] loop5: detected capacity change from 0 to 128
[  410.051035][ T7803] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  410.073300][ T7803] EXT4-fs error (device loop5): dx_make_map:1296: inode #2: block 20: comm syz.5.12577: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  410.128455][ T7803] EXT4-fs error (device loop5) in do_split:2029: Corrupt filesystem
[  410.150166][ T4063] Bluetooth: hci0: sending frame failed (-49)
[  410.152972][ T7815] EXT4-fs error (device loop5): dx_make_map:1296: inode #2: block 20: comm syz.5.12577: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  410.175813][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  410.222900][ T7815] EXT4-fs error (device loop5) in do_split:2029: Corrupt filesystem
[  410.262633][T23140] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  410.296365][ T7821] rdma_op ffff88810bb81d80 conn xmit_rdma 0000000000000000
[  410.352185][ T7829] netlink: 'syz.6.12587': attribute type 21 has an invalid length.
[  410.356670][T15018] IPVS: starting estimator thread 0...
[  410.374341][ T7829] netlink: 156 bytes leftover after parsing attributes in process `syz.6.12587'.
[  410.383531][ T7829] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12587'.
[  410.406904][ T7833] uprobe: syz.2.12589:7833 failed to unregister, leaking uprobe
[  410.469002][ T7832] IPVS: using max 2208 ests per chain, 110400 per kthread
[  410.536524][ T7851] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12597'.
[  410.546454][ T7851] netlink: 12 bytes leftover after parsing attributes in process `syz.6.12597'.
[  411.051207][T15006] IPVS: starting estimator thread 0...
[  411.135591][ T7895] IPVS: using max 2640 ests per chain, 132000 per kthread
[  411.298002][ T7908] netlink: 'syz.3.12620': attribute type 3 has an invalid length.
[  411.328664][ T7909] uprobe: syz.3.12621:7909 failed to unregister, leaking uprobe
[  411.516548][ T7933] netlink: 20 bytes leftover after parsing attributes in process `syz.6.12631'.
[  411.782199][ T7945] netlink: 'syz.5.12637': attribute type 1 has an invalid length.
[  411.790324][ T7945] netlink: 'syz.5.12637': attribute type 4 has an invalid length.
[  411.798167][ T7945] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.12637'.
[  411.895545][ T7959] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12642'.
[  412.171664][ T7984] ip6_vti0 speed is unknown, defaulting to 1000
[  412.236136][   T29] kauditd_printk_skb: 217 callbacks suppressed
[  412.236151][   T29] audit: type=1326 audit(1200.112:15563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7986 comm="syz.5.12654" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4bfd46f749 code=0x0
[  412.360174][   T29] audit: type=1400 audit(1200.248:15564): avc:  denied  { read write } for  pid=7996 comm="syz.2.12658" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  412.384191][   T29] audit: type=1400 audit(1200.248:15565): avc:  denied  { open } for  pid=7996 comm="syz.2.12658" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  412.487638][   T29] audit: type=1400 audit(1200.374:15566): avc:  denied  { getopt } for  pid=8005 comm="syz.1.12663" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  412.532563][ T2967] IPVS: starting estimator thread 0...
[  412.555051][   T29] audit: type=1400 audit(1200.448:15567): avc:  denied  { execmem } for  pid=8012 comm="syz.2.12676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  412.579978][   T29] audit: type=1400 audit(1200.479:15568): avc:  denied  { write } for  pid=8014 comm="syz.1.12666" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  412.621632][ T8011] IPVS: using max 2112 ests per chain, 105600 per kthread
[  412.683991][ T8019] loop1: detected capacity change from 0 to 128
[  412.691036][ T8019] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  412.704060][   T29] audit: type=1400 audit(1200.595:15569): avc:  denied  { mounton } for  pid=8018 comm="syz.1.12668" path="/355/bus" dev="tmpfs" ino=1850 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  412.726655][ T8019] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  412.745868][   T29] audit: type=1400 audit(1200.647:15570): avc:  denied  { mount } for  pid=8018 comm="syz.1.12668" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  412.770384][   T29] audit: type=1400 audit(1200.679:15571): avc:  denied  { unmount } for  pid=3974 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  412.800639][   T29] audit: type=1326 audit(1200.700:15572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8022 comm="syz.1.12669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2959d1f749 code=0x7ffc0000
[  412.851137][ T8025] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  412.925217][ T8032] bond0: (slave bond_slave_0): Releasing backup interface
[  412.996178][ T8035] netlink: 'syz.6.12675': attribute type 3 has an invalid length.
[  413.048234][ T8045] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  413.060818][ T8045] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  413.074200][ T8045] bond0: (slave ipvlan2): Error -95 calling set_mac_address
[  413.077020][ T8049] ip6_tunnel: non-ECT from 2001:0000:0000:0000:0000:0000:0000:0001 with DS=0x7
[  413.099046][ T8049] ip6_tunnel: non-ECT from 2001:0000:0000:0000:0000:0000:0000:0001 with DS=0x7
[  413.258766][ T8070] __nla_validate_parse: 1 callbacks suppressed
[  413.258799][ T8070] netlink: 44 bytes leftover after parsing attributes in process `syz.2.12690'.
[  413.580431][ T8102] SELinux: failed to load policy
[  413.640979][ T8109] SELinux: failed to load policy
[  413.731137][ T8113] loop5: detected capacity change from 0 to 2048
[  413.745241][ T8121] netlink: 96 bytes leftover after parsing attributes in process `syz.3.12713'.
[  413.756288][ T8113] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  413.957118][ T8145] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  414.033143][ T7499] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:22: bg 0: block 345: padding at end of block bitmap is not set
[  414.047939][ T7499] EXT4-fs (loop5): Remounting filesystem read-only
[  414.106419][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.226802][ T8164] SELinux: failed to load policy
[  414.389038][ T8184] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  414.425012][ T8190] loop1: detected capacity change from 0 to 512
[  414.432883][ T8190] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  414.442421][ T8190] EXT4-fs (loop1): invalid journal inode
[  414.448204][ T8190] EXT4-fs (loop1): can't get journal size
[  414.454797][ T8190] EXT4-fs (loop1): 1 truncate cleaned up
[  414.462008][ T8190] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  414.491642][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.590037][ T8212] netlink: 96 bytes leftover after parsing attributes in process `syz.3.12756'.
[  414.833719][ T8225] ALSA: seq fatal error: cannot create timer (-19)
[  414.861434][ T8234] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12766'.
[  414.870591][ T8234] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12766'.
[  415.032480][ T8259] loop1: detected capacity change from 0 to 256
[  415.615187][ T8309] xt_CT: You must specify a L4 protocol and not use inversions on it
[  416.805562][ T8373] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12829'.
[  416.814604][ T8373] netlink: 'syz.6.12829': attribute type 32 has an invalid length.
[  416.909970][ T8379] rdma_op ffff88811af16180 conn xmit_rdma 0000000000000000
[  417.001460][ T8387] serio: Serial port ptm1
[  417.108321][ T8395] netlink: 20 bytes leftover after parsing attributes in process `syz.5.12839'.
[  417.182077][ T8403] Dead loop on virtual device ipvlan1, fix it urgently!
[  417.239842][ T8407] netlink: 36 bytes leftover after parsing attributes in process `syz.5.12844'.
[  417.314762][   T29] kauditd_printk_skb: 131 callbacks suppressed
[  417.314775][   T29] audit: type=1400 audit(1205.445:15704): avc:  denied  { create } for  pid=8415 comm="syz.2.12848" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  417.340885][   T29] audit: type=1400 audit(1205.445:15705): avc:  denied  { write } for  pid=8417 comm="syz.1.12849" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  417.386885][   T29] audit: type=1326 audit(1205.529:15706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8370 comm="syz.3.12828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  417.412052][   T29] audit: type=1326 audit(1205.539:15707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8370 comm="syz.3.12828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  417.453757][ T8427] netlink: 76 bytes leftover after parsing attributes in process `syz.2.12852'.
[  417.467770][   T29] audit: type=1400 audit(1205.602:15708): avc:  denied  { create } for  pid=8421 comm="syz.5.12851" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  417.493495][   T29] audit: type=1326 audit(1205.634:15709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8370 comm="syz.3.12828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  417.516697][   T29] audit: type=1326 audit(1205.634:15710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8370 comm="syz.3.12828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  417.539842][   T29] audit: type=1326 audit(1205.634:15711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8370 comm="syz.3.12828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  417.568498][   T29] audit: type=1326 audit(1205.655:15712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8370 comm="syz.3.12828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  417.591724][   T29] audit: type=1326 audit(1205.655:15713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8370 comm="syz.3.12828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  417.871060][ T8476] loop1: detected capacity change from 0 to 512
[  417.918575][ T8476] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.961118][ T8476] EXT4-fs (loop1): shut down requested (0)
[  418.003249][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.201927][ T8506] loop5: detected capacity change from 0 to 2048
[  418.256960][ T8506] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.269877][ T8494] bridge0: left allmulticast mode
[  418.296394][ T8516] xt_CT: You must specify a L4 protocol and not use inversions on it
[  418.366152][ T8522] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.12884: bg 0: block 345: padding at end of block bitmap is not set
[  418.403561][ T8522] EXT4-fs (loop5): Remounting filesystem read-only
[  418.410300][ T7547] EXT4-fs warning (device loop5): ext4_convert_unwritten_extents:4984: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30
[  418.497394][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.734844][ T8548] loop1: detected capacity change from 0 to 164
[  418.758855][ T8548] syz.1.12899: attempt to access beyond end of device
[  418.758855][ T8548] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  418.784680][ T8548] syz.1.12899: attempt to access beyond end of device
[  418.784680][ T8548] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  419.016652][ T8565] sch_tbf: peakrate 7 is lower than or equals to rate 19 !
[  419.097256][ T8573] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12909'.
[  419.106295][ T8573] netlink: 'syz.1.12909': attribute type 32 has an invalid length.
[  419.212016][ T8578] netlink: 20 bytes leftover after parsing attributes in process `syz.1.12910'.
[  419.361197][ T8521] Set syz1 is full, maxelem 65536 reached
[  419.478568][ T8598] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12917'.
[  419.493921][ T8598] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12917'.
[  419.526720][ T8609] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12922'.
[  419.535824][ T8609] netlink: 'syz.3.12922': attribute type 32 has an invalid length.
[  419.585005][ T8611] netlink: 20 bytes leftover after parsing attributes in process `syz.3.12923'.
[  419.710056][ T8631] syzkaller1: entered promiscuous mode
[  419.715581][ T8631] syzkaller1: entered allmulticast mode
[  419.960349][ T8643] netlink: 76 bytes leftover after parsing attributes in process `syz.3.12935'.
[  420.282177][ T8681] netlink: 20 bytes leftover after parsing attributes in process `syz.3.12950'.
[  420.857423][ T8725] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  421.079166][ T8745] ip6_vti0 speed is unknown, defaulting to 1000
[  421.247915][ T8754] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  421.255500][ T8754] vhci_hcd: invalid port number 253
[  421.317234][ T8757] loop1: detected capacity change from 0 to 2048
[  421.370965][ T8757] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.744637][ T7572] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:67: bg 0: block 345: padding at end of block bitmap is not set
[  421.760394][ T7572] EXT4-fs (loop1): Remounting filesystem read-only
[  421.844506][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.911153][ T8790] ip6_vti0 speed is unknown, defaulting to 1000
[  421.963834][ T8793] netlink: 76 bytes leftover after parsing attributes in process `syz.3.12991'.
[  422.100474][   T29] kauditd_printk_skb: 78 callbacks suppressed
[  422.100493][   T29] audit: type=1400 audit(1210.473:15792): avc:  denied  { mount } for  pid=8807 comm="syz.2.12997" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  422.146993][ T8810] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12998'.
[  422.250056][   T29] audit: type=1326 audit(1210.620:15793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.273271][   T29] audit: type=1326 audit(1210.620:15794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.299753][   T29] audit: type=1326 audit(1210.673:15795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.322894][   T29] audit: type=1326 audit(1210.673:15796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.346036][   T29] audit: type=1326 audit(1210.673:15797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.369320][   T29] audit: type=1326 audit(1210.673:15798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.392503][   T29] audit: type=1326 audit(1210.673:15799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.415718][   T29] audit: type=1326 audit(1210.673:15800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.438808][   T29] audit: type=1326 audit(1210.673:15801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8826 comm="syz.2.13006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  422.531837][ T8836] netlink: 'syz.5.13012': attribute type 7 has an invalid length.
[  422.628238][ T8847] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  422.808832][ T8873] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  423.054814][ T8894] ip6_vti0 speed is unknown, defaulting to 1000
[  423.194307][ T8911] netlink: 'syz.5.13042': attribute type 1 has an invalid length.
[  423.212833][ T8907] ALSA: seq fatal error: cannot create timer (-19)
[  423.228131][ T8911] bond0: (slave bridge3): making interface the new active one
[  423.236494][ T8911] bond0: (slave bridge3): Enslaving as an active interface with an up link
[  423.421191][ T8934] netlink: 'syz.2.13052': attribute type 4 has an invalid length.
[  423.435769][ T8934] .`: renamed from bond0 (while UP)
[  423.464175][ T8937] loop5: detected capacity change from 0 to 1024
[  423.481062][ T8937] EXT4-fs: Ignoring removed orlov option
[  423.489786][ T8937] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  423.514528][ T8937] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  423.537712][ T8941] bridge0: port 2(bridge_slave_1) entered disabled state
[  423.544911][ T8941] bridge0: port 1(bridge_slave_0) entered disabled state
[  423.556891][ T8937] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  423.617530][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.640975][ T8941] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  423.658061][ T8941] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  423.713068][ T7531] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  423.722279][ T7531] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  423.753093][ T7531] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  423.762082][ T7531] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  423.788919][ T8948] loop5: detected capacity change from 0 to 128
[  423.796483][ T7572] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  423.805524][ T7572] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  423.821075][ T7572] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  423.830003][ T7572] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  424.001228][ T8964] __nla_validate_parse: 4 callbacks suppressed
[  424.001245][ T8964] netlink: 24 bytes leftover after parsing attributes in process `syz.2.13065'.
[  424.052632][ T8968] A link change request failed with some changes committed already. Interface gre1 may have been left with an inconsistent configuration, please check.
[  424.368303][ T8995] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  424.375702][ T8995] vhci_hcd: invalid port number 96
[  424.380897][ T8995] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  424.401657][ T9001] loop5: detected capacity change from 0 to 512
[  424.427935][ T9001] EXT4-fs (loop5): too many log groups per flexible block group
[  424.464780][ T9001] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  424.501079][ T9001] EXT4-fs (loop5): mount failed
[  424.508291][ T9016] netlink: 96 bytes leftover after parsing attributes in process `syz.3.13086'.
[  424.574219][ T9024] SELinux: failed to load policy
[  424.614722][ T9026] SELinux: failed to load policy
[  424.874503][ T9081] netlink: 44 bytes leftover after parsing attributes in process `syz.6.13111'.
[  424.919884][ T9087] IPv6: Can't replace route, no match found
[  424.965919][ T9101] netlink: 24 bytes leftover after parsing attributes in process `syz.6.13121'.
[  425.139608][ T7531] Bluetooth: hci0: Frame reassembly failed (-84)
[  425.535932][ T9151] netlink: 'syz.2.13143': attribute type 1 has an invalid length.
[  425.557658][ T9151] bond0: (slave bridge1): making interface the new active one
[  425.565638][ T9151] bond0: (slave bridge1): Enslaving as an active interface with an up link
[  425.596221][ T9154] netlink: 24 bytes leftover after parsing attributes in process `gtp'.
[  425.635411][ T9156] netlink: 96 bytes leftover after parsing attributes in process `syz.2.13145'.
[  425.809757][ T9170] netlink: 12 bytes leftover after parsing attributes in process `syz.5.13153'.
[  425.818963][ T9170] netlink: 12 bytes leftover after parsing attributes in process `syz.5.13153'.
[  425.843518][ T9176] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  425.852068][ T9176] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  425.971653][ T9186] loop5: detected capacity change from 0 to 256
[  426.102646][ T9188] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  426.111296][ T9188] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  426.720308][ T9248] loop5: detected capacity change from 0 to 1024
[  426.730205][ T9248] EXT4-fs: Ignoring removed bh option
[  426.757052][ T9248] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  426.776638][ T9248] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.13186: Allocating blocks 385-513 which overlap fs metadata
[  426.809395][ T9247] EXT4-fs (loop5): pa ffff88810079da80: logic 16, phys. 129, len 24
[  426.817594][ T9247] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[  426.860558][ T9269] loop1: detected capacity change from 0 to 1024
[  426.867655][ T9269] EXT4-fs: Ignoring removed nomblk_io_submit option
[  426.867991][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.924407][ T9269] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  426.948862][   T29] kauditd_printk_skb: 147 callbacks suppressed
[  426.948876][   T29] audit: type=1400 audit(1215.565:15949): avc:  denied  { map } for  pid=9268 comm="syz.1.13194" path="/467/file1/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  426.977920][   T29] audit: type=1400 audit(1215.565:15950): avc:  denied  { execute } for  pid=9268 comm="syz.1.13194" path="/467/file1/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  427.110408][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  427.116605][ T4063] Bluetooth: hci0: command 0x1003 tx timeout
[  427.302126][   T29] audit: type=1326 audit(1215.932:15951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9308 comm="syz.5.13212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  427.325379][   T29] audit: type=1326 audit(1215.932:15952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9308 comm="syz.5.13212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  427.348516][   T29] audit: type=1326 audit(1215.932:15953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9308 comm="syz.5.13212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  427.384049][   T29] audit: type=1400 audit(1215.932:15954): avc:  denied  { connect } for  pid=9310 comm="syz.6.13213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  427.625575][ T9300] ip6_vti0 speed is unknown, defaulting to 1000
[  427.817678][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.952981][ T9336] ipip0: entered promiscuous mode
[  428.008615][   T29] audit: type=1400 audit(1216.667:15955): avc:  denied  { name_connect } for  pid=9337 comm="syz.2.13227" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  428.039845][ T9341] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  428.112723][ T9352] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  428.201715][ T9363] loop5: detected capacity change from 0 to 128
[  428.236613][ T9363] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  428.272537][ T9363] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  428.320119][   T29] audit: type=1400 audit(1216.972:15956): avc:  denied  { accept } for  pid=9368 comm="syz.1.13239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  428.339703][   T29] audit: type=1400 audit(1216.972:15957): avc:  denied  { remount } for  pid=9362 comm="syz.5.13236" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  428.359313][   T29] audit: type=1326 audit(1216.993:15958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz.1.13240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2959d1f749 code=0x7ffc0000
[  428.415557][ T7541] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  428.486585][ T9382] netlink: 27 bytes leftover after parsing attributes in process `syz.6.13241'.
[  428.574261][ T9391] netlink: 'syz.6.13249': attribute type 1 has an invalid length.
[  428.582168][ T9391] netlink: 352 bytes leftover after parsing attributes in process `syz.6.13249'.
[  428.605964][ T9391] netlink: 'syz.6.13249': attribute type 1 has an invalid length.
[  428.840021][ T9404] __nla_validate_parse: 2 callbacks suppressed
[  428.840042][ T9404] netlink: 7 bytes leftover after parsing attributes in process `+}[@'.
[  428.948302][ T9417] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  429.042586][ T9430] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13265'.
[  429.159635][ T9435] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13265'.
[  429.397152][ T9456] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13277'.
[  429.433213][ T9456] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13277'.
[  430.195910][ T9495] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13295'.
[  430.240114][ T7488] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  430.249630][ T7488] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  430.278214][ T7488] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  430.310342][ T7488] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  430.327932][   T23] hid_parser_main: 37 callbacks suppressed
[  430.327950][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.341284][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.348716][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.356179][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.363600][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.371034][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.378560][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.385993][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.393458][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.400935][   T23] hid-generic 0003:0004:0000.0023: unknown main item tag 0x0
[  430.493275][   T23] hid-generic 0003:0004:0000.0023: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  430.812581][ T9503] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9503 comm=syz.5.13299
[  430.886587][ T9513] loop5: detected capacity change from 0 to 512
[  430.895067][ T9513] EXT4-fs (loop5): orphan cleanup on readonly fs
[  430.911619][ T9513] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.13303: bad orphan inode 13
[  430.922246][ T9513] ext4_test_bit(bit=12, block=18) = 1
[  430.927635][ T9513] is_bad_inode(inode)=0
[  430.931818][ T9513] NEXT_ORPHAN(inode)=2130706432
[  430.936768][ T9513] max_ino=32
[  430.940062][ T9513] i_nlink=1
[  430.943789][ T9513] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  430.959094][ T9513] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  430.977893][ T9513] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  430.998316][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.143505][ T9536] geneve2: entered promiscuous mode
[  431.154789][ T7541] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 20001 - 0
[  431.166906][ T9538] loop5: detected capacity change from 0 to 128
[  431.177765][ T7541] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 20001 - 0
[  431.195977][ T7488] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 20001 - 0
[  431.211397][ T7488] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 20001 - 0
[  431.255993][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.255993][ T9543] loop5: rw=2049, sector=145, nr_sectors = 16 limit=128
[  431.281117][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.281117][ T9543] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  431.317005][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.317005][ T9543] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  431.338399][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.338399][ T9543] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  431.352143][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.352143][ T9543] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  431.365875][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.365875][ T9543] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  431.386481][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.386481][ T9543] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  431.400923][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.400923][ T9543] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  431.414794][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.414794][ T9543] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  431.428552][ T9543] syz.5.13313: attempt to access beyond end of device
[  431.428552][ T9543] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  431.512248][ T9554] serio: Serial port ptm0
[  431.745554][ T9570] 8021q: adding VLAN 0 to HW filter on device .`
[  431.753675][   T29] kauditd_printk_skb: 52 callbacks suppressed
[  431.753691][   T29] audit: type=1400 audit(1220.604:16011): avc:  denied  { read write } for  pid=9568 comm="syz.6.13329" name="loop9" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  431.783580][   T29] audit: type=1400 audit(1220.604:16012): avc:  denied  { open } for  pid=9568 comm="syz.6.13329" path="/dev/loop9" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  431.812398][ T9570] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  431.828298][T15006] ip6_vti0 speed is unknown, defaulting to 1000
[  431.845214][ T9573] netlink: 36 bytes leftover after parsing attributes in process `syz.1.13331'.
[  431.903668][   T29] audit: type=1400 audit(1220.698:16013): avc:  denied  { ioctl } for  pid=9568 comm="syz.6.13329" path="/dev/loop9" dev="devtmpfs" ino=109 ioctlcmd=0x4c0a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  431.937916][ T9580] ip6_vti0 speed is unknown, defaulting to 1000
[  432.012878][   T29] audit: type=1400 audit(1220.877:16014): avc:  denied  { create } for  pid=9581 comm="syz.5.13334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  432.471663][ T9613] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13354'.
[  432.696044][ T9589] netlink: 'syz.1.13335': attribute type 1 has an invalid length.
[  432.703938][ T9589] netlink: 224 bytes leftover after parsing attributes in process `syz.1.13335'.
[  432.835783][ T9654] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13359'.
[  432.993302][ T9676] ALSA: seq fatal error: cannot create timer (-19)
[  433.391201][T15006] Process accounting resumed
[  433.402098][ T9699] IPv6: NLM_F_CREATE should be specified when creating new route
[  433.471163][ T9708] loop1: detected capacity change from 0 to 128
[  433.484466][ T9708] EXT4-fs: Ignoring removed nobh option
[  433.499873][ T9708] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  433.532184][ T3974] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  433.551681][ T9717] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  433.560651][ T9717] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  433.579456][ T9717] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  433.597590][ T9717] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  433.625615][ T9717] __nla_validate_parse: 1 callbacks suppressed
[  433.625633][ T9717] netlink: 566 bytes leftover after parsing attributes in process `syz.1.13385'.
[  433.676684][ T9725] rdma_op ffff88810df8b980 conn xmit_rdma 0000000000000000
[  433.749515][   T29] audit: type=1400 audit(1222.693:16015): avc:  denied  { firmware_load } for  pid=9739 comm="syz.6.13395" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  433.943130][ T9760] SELinux: ebitmap: truncated map
[  433.949071][ T9760] SELinux: failed to load policy
[  434.096314][ T9775] netlink: 32 bytes leftover after parsing attributes in process `syz.5.13408'.
[  434.152507][ T9793] netlink: 28 bytes leftover after parsing attributes in process `syz.1.13412'.
[  434.161686][ T9793] netlink: 28 bytes leftover after parsing attributes in process `syz.1.13412'.
[  434.170847][ T9793] netlink: 28 bytes leftover after parsing attributes in process `syz.1.13412'.
[  434.180800][   T29] audit: type=1400 audit(1223.134:16016): avc:  denied  { write } for  pid=9794 comm="syz.5.13411" name="event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  434.340814][ T9823] loop5: detected capacity change from 0 to 512
[  434.347575][ T9823] EXT4-fs: Ignoring removed nobh option
[  434.377282][ T9827] netlink: 28 bytes leftover after parsing attributes in process `syz.3.13426'.
[  434.386587][ T9827] netlink: 28 bytes leftover after parsing attributes in process `syz.3.13426'.
[  434.395666][ T9827] netlink: 28 bytes leftover after parsing attributes in process `syz.3.13426'.
[  434.424269][ T9829] raw_sendmsg: syz.6.13422 forgot to set AF_INET. Fix it!
[  434.434325][ T9823] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #3: comm +}[@: corrupted inode contents
[  434.452531][ T9833] futex_wake_op: syz.3.13427 tries to shift op by -1; fix this program
[  434.467825][ T9823] EXT4-fs (loop5): Remounting filesystem read-only
[  434.475869][ T9823] Quota error (device loop5): write_blk: dquota write failed
[  434.483395][ T9823] Quota error (device loop5): qtree_write_dquot: Error -30 occurred while creating quota
[  434.495647][ T9823] EXT4-fs (loop5): 1 truncate cleaned up
[  434.501815][ T9823] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.517655][ T9823] netlink: 7 bytes leftover after parsing attributes in process `+}[@'.
[  434.547662][   T29] audit: type=1326 audit(1223.522:16017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9835 comm="syz.1.13429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2959d1f749 code=0x7ffc0000
[  434.548014][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.570820][   T29] audit: type=1326 audit(1223.522:16018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9835 comm="syz.1.13429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2959d1f749 code=0x7ffc0000
[  434.627226][ T9843] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13431'.
[  434.806951][ T9872] 9pnet_fd: Insufficient options for proto=fd
[  434.928299][ T9892] sctp: [Deprecated]: syz.6.13453 (pid 9892) Use of int in max_burst socket option deprecated.
[  434.928299][ T9892] Use struct sctp_assoc_value instead
[  434.996617][ T9903] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9903 comm=syz.1.13455
[  435.121734][ T9920] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  435.129190][ T9920] batman_adv: batadv0: Removing interface: batadv_slave_0
[  435.146876][ T9920] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  435.154415][ T9920] batman_adv: batadv0: Removing interface: batadv_slave_1
[  435.199558][ T9930] loop5: detected capacity change from 0 to 512
[  435.212418][ T9930] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #18: comm syz.5.13472: iget: bad extra_isize 90 (inode size 256)
[  435.229602][ T9930] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.13472: error while reading EA inode 18 err=-117
[  435.242373][ T9930] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #18: comm syz.5.13472: iget: bad extra_isize 90 (inode size 256)
[  435.256178][ T9930] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.13472: error while reading EA inode 18 err=-117
[  435.271334][ T9930] EXT4-fs (loop5): 1 orphan inode deleted
[  435.278697][ T9930] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  435.310854][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.367367][ T9950] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  435.382186][ T9950] SELinux: failed to load policy
[  435.460747][ T9970] loop1: detected capacity change from 0 to 512
[  435.475762][ T9970] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.502478][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.892775][T10034] rdma_op ffff888112f44580 conn xmit_rdma 0000000000000000
[  435.946567][T10044] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  436.186736][T10068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.195674][T10068] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.208145][T10068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.217285][T10068] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.272135][T10072] loop5: detected capacity change from 0 to 128
[  436.281214][T10072] EXT4-fs: Ignoring removed nobh option
[  436.289282][T10072] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  436.318294][T23140] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  436.573762][T10083] syzkaller0: entered promiscuous mode
[  436.579282][T10083] syzkaller0: entered allmulticast mode
[  436.912981][   T29] kauditd_printk_skb: 58 callbacks suppressed
[  436.913043][   T29] audit: type=1326 audit(1226.010:16077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10101 comm="syz.1.13547" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2959d1f749 code=0x0
[  436.945211][T10100] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  436.955109][T10100] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.010137][   T29] audit: type=1326 audit(1226.126:16078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.033442][   T29] audit: type=1326 audit(1226.126:16079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.072322][   T29] audit: type=1326 audit(1226.178:16080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.095594][   T29] audit: type=1326 audit(1226.178:16081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.118843][   T29] audit: type=1326 audit(1226.178:16082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.136108][T10100] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  437.142033][   T29] audit: type=1326 audit(1226.178:16083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.151830][T10100] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.174945][   T29] audit: type=1326 audit(1226.178:16084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.207828][   T29] audit: type=1326 audit(1226.178:16085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.230962][   T29] audit: type=1326 audit(1226.178:16086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10104 comm="syz.6.13548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  437.313983][T10100] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  437.323908][T10100] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.385846][T10100] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  437.395792][T10100] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.434526][ T7572] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  437.442892][ T7572] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  437.466466][ T7572] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  437.474724][ T7572] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  437.489252][ T7572] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  437.497466][ T7572] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  437.508254][T10128] vlan0: entered allmulticast mode
[  437.513442][T10128] bridge_slave_0: entered allmulticast mode
[  437.529340][ T7541] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  437.537680][ T7541] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  437.917170][T10177] loop5: detected capacity change from 0 to 8192
[  437.933970][T10177] bio_check_eod: 46 callbacks suppressed
[  437.933988][T10177] syz.5.13581: attempt to access beyond end of device
[  437.933988][T10177] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  437.953295][T10177] Buffer I/O error on dev loop5, logical block 57847, async page read
[  438.017719][T10190] netlink: 'syz.5.13587': attribute type 1 has an invalid length.
[  438.031801][T10190] bond3: entered promiscuous mode
[  438.036983][T10190] bond3: entered allmulticast mode
[  438.051963][T10190] 8021q: adding VLAN 0 to HW filter on device bond3
[  438.085228][T10190] ip6gretap1: entered promiscuous mode
[  438.090780][T10190] ip6gretap1: entered allmulticast mode
[  438.119641][T10190] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[  438.232981][T10212] syzkaller1: entered promiscuous mode
[  438.238570][T10212] syzkaller1: entered allmulticast mode
[  438.353357][T10215] vlan3: entered allmulticast mode
[  438.545379][T10226] __nla_validate_parse: 8 callbacks suppressed
[  438.545393][T10226] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13603'.
[  438.581342][T10250] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  438.591021][T10252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13612'.
[  438.600936][T10252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13612'.
[  438.608643][T10250] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  438.620363][T10252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13612'.
[  438.629912][T10250] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  438.640338][T10250] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  438.660771][T10250] netlink: 566 bytes leftover after parsing attributes in process `syz.5.13613'.
[  438.670515][T10252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13612'.
[  438.681258][T10252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13612'.
[  438.751115][T10257] loop1: detected capacity change from 0 to 8192
[  438.798180][T10257]  loop1: p1 p2 p3 p4
[  438.803499][T10257] loop1: p3 start 331777 is beyond EOD, truncated
[  438.809978][T10257] loop1: p4 size 262144 extends beyond EOD, truncated
[  438.907166][T10271] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13622'.
[  439.172183][T10289] netlink: 24 bytes leftover after parsing attributes in process `syz.5.13632'.
[  439.408481][T10299] tipc: New replicast peer: 255.255.255.255
[  439.414519][T10299] tipc: Enabled bearer <udp:syz2>, priority 10
[  439.966347][T15006] kernel write not supported for file bpf-prog (pid: 15006 comm: kworker/0:6)
[  440.013729][T10358] xt_hashlimit: max too large, truncated to 1048576
[  440.103120][T10375] syzkaller1: entered promiscuous mode
[  440.108864][T10375] syzkaller1: entered allmulticast mode
[  440.145442][T10379] ref_ctr_offset mismatch. inode: 0xbb4 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  440.183086][T10385] xt_hashlimit: max too large, truncated to 1048576
[  440.185012][T10384] vlan2: entered allmulticast mode
[  440.474726][T15006] tipc: Node number set to 24339
[  440.489210][T10423] vlan3: entered allmulticast mode
[  440.575662][T10432] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13697'.
[  440.626111][T10436] netlink: 'syz.2.13699': attribute type 10 has an invalid length.
[  440.648931][T10436] team0: Port device dummy0 added
[  440.778278][T10451] batman_adv: batadv0: Removing interface: dummy0
[  440.794415][T10451] bridge_slave_0: left promiscuous mode
[  440.800274][T10451] bridge0: port 1(bridge_slave_0) entered disabled state
[  440.811284][T10451] bridge_slave_1: left allmulticast mode
[  440.816959][T10451] bridge_slave_1: left promiscuous mode
[  440.822742][T10451] bridge0: port 2(bridge_slave_1) entered disabled state
[  440.833398][ T7547] Bluetooth: hci0: Frame reassembly failed (-84)
[  440.843400][T10451] $Hÿ: (slave bond_slave_0): Releasing backup interface
[  440.851040][T10451] bond_slave_0: left promiscuous mode
[  440.859613][T10451] $Hÿ: (slave bond_slave_1): Releasing backup interface
[  440.867780][T10451] bond_slave_1: left promiscuous mode
[  440.877686][T10451] team0: Port device team_slave_0 removed
[  440.886609][T10451] team0: Port device team_slave_1 removed
[  440.893611][T10451] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  440.901004][T10451] batman_adv: batadv0: Removing interface: batadv_slave_0
[  440.910834][T10451] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  440.918408][T10451] batman_adv: batadv0: Removing interface: batadv_slave_1
[  440.928167][T10451] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  441.005823][T10478] netlink: 'syz.5.13716': attribute type 3 has an invalid length.
[  441.125262][T10505] $Hÿ: renamed from bond0 (while UP)
[  441.142073][T10505] $Hÿ: entered promiscuous mode
[  441.147332][T10505] bond_slave_1: entered promiscuous mode
[  441.475037][T10566] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=10566 comm=syz.1.13736
[  441.791788][T10609] geneve3: entered promiscuous mode
[  442.023605][   T29] kauditd_printk_skb: 152 callbacks suppressed
[  442.023633][   T29] audit: type=1400 audit(1231.385:16239): avc:  denied  { override_creds } for  pid=10642 comm="syz.5.13755" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  442.114357][   T29] audit: type=1326 audit(1231.480:16240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.161326][   T29] audit: type=1326 audit(1231.480:16241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.184623][   T29] audit: type=1326 audit(1231.511:16242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.207762][   T29] audit: type=1326 audit(1231.511:16243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.230936][   T29] audit: type=1326 audit(1231.511:16244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.253977][   T29] audit: type=1326 audit(1231.511:16245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.277317][   T29] audit: type=1326 audit(1231.511:16246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.301087][   T29] audit: type=1326 audit(1231.564:16247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.324253][   T29] audit: type=1326 audit(1231.564:16248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10646 comm="syz.5.13757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfd46f749 code=0x7ffc0000
[  442.808240][ T4063] Bluetooth: hci0: command 0x1003 tx timeout
[  442.808733][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  442.908879][T10720] sch_tbf: burst 22 is lower than device lo mtu (11337746) !
[  443.378330][T10755] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[  443.527885][T10773] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  443.538263][T10773] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20001 - 0
[  443.595194][ T7499] Bluetooth: hci0: Frame reassembly failed (-84)
[  443.604889][T10782] __nla_validate_parse: 23 callbacks suppressed
[  443.604901][T10782] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13816'.
[  443.672609][T10794] netlink: 'syz.5.13820': attribute type 10 has an invalid length.
[  443.741793][T10773] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  443.752162][T10773] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20001 - 0
[  443.819411][T10773] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  443.829821][T10773] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20001 - 0
[  443.876651][T10773] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  443.887061][T10773] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20001 - 0
[  443.948403][ T7572] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  443.956684][ T7572] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20001 - 0
[  443.970738][ T7572] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  443.979049][ T7572] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20001 - 0
[  443.987954][ T7572] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  443.996169][ T7572] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20001 - 0
[  444.011837][ T7488] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  444.020111][ T7488] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20001 - 0
[  444.032815][T10812] netlink: 'syz.1.13828': attribute type 3 has an invalid length.
[  444.108516][T10818] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13831'.
[  444.268884][T10838] netlink: 48 bytes leftover after parsing attributes in process `syz.1.13840'.
[  444.514805][T10863] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13850'.
[  444.524303][T10863] bridge_slave_1: left allmulticast mode
[  444.529970][T10863] bridge_slave_1: left promiscuous mode
[  444.535745][T10863] bridge0: port 2(bridge_slave_1) entered disabled state
[  444.544423][T10863] bridge_slave_0: left allmulticast mode
[  444.550095][T10863] bridge_slave_0: left promiscuous mode
[  444.555931][T10863] bridge0: port 1(bridge_slave_0) entered disabled state
[  444.662446][T10871] netlink: 24 bytes leftover after parsing attributes in process `syz.5.13854'.
[  444.742217][   T23] hid_parser_main: 8 callbacks suppressed
[  444.742279][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.755620][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.763269][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.770756][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.778876][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.786453][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.794032][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.801493][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.809013][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.816420][   T23] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  444.825197][   T23] hid-generic 0000:0000:0000.0024: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  444.945423][T10902] loop5: detected capacity change from 0 to 1024
[  444.952888][T10902] EXT4-fs: Ignoring removed orlov option
[  444.960745][T10902] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  444.987288][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.046284][T10914] loop5: detected capacity change from 0 to 512
[  445.055181][T10914] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.13871: error while reading EA inode 32 err=-116
[  445.068290][T10914] EXT4-fs (loop5): Remounting filesystem read-only
[  445.074881][T10914] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  445.085969][T10914] EXT4-fs (loop5): 1 orphan inode deleted
[  445.092384][T10914] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  445.119100][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.164870][T10924] netlink: 'syz.5.13875': attribute type 3 has an invalid length.
[  445.421346][T10953] netlink: 16 bytes leftover after parsing attributes in process `syz.5.13887'.
[  445.538613][T10968] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13894'.
[  445.551811][ T4063] Bluetooth: hci0: command 0x1003 tx timeout
[  445.557860][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  445.731595][T10997] rdma_rxe: rxe_newlink: failed to add bond0
[  445.787060][T11013] netlink: 'syz.3.13913': attribute type 10 has an invalid length.
[  445.986739][T11024] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13917'.
[  445.996242][T11024] bridge_slave_1: left allmulticast mode
[  446.001923][T11024] bridge_slave_1: left promiscuous mode
[  446.007595][T11024] bridge0: port 2(bridge_slave_1) entered disabled state
[  446.016424][T11024] bridge_slave_0: left promiscuous mode
[  446.022129][T11024] bridge0: port 1(bridge_slave_0) entered disabled state
[  446.038535][T11024] bridge0 (unregistering): left allmulticast mode
[  446.089428][T11032] syzkaller1: entered promiscuous mode
[  446.095142][T11032] syzkaller1: entered allmulticast mode
[  446.144071][T11042] loop1: detected capacity change from 0 to 512
[  446.152992][T11042] EXT4-fs (loop1): orphan cleanup on readonly fs
[  446.162270][T11042] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.13927: bad orphan inode 13
[  446.181192][T11042] ext4_test_bit(bit=12, block=18) = 1
[  446.186719][T11042] is_bad_inode(inode)=0
[  446.190932][T11042] NEXT_ORPHAN(inode)=2130706432
[  446.195788][T11042] max_ino=32
[  446.198994][T11042] i_nlink=1
[  446.212539][T11042] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  446.219898][T11056] netlink: 24 bytes leftover after parsing attributes in process `syz.2.13932'.
[  446.258019][T11061] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11061 comm=syz.3.13934
[  446.270737][T11061] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=11061 comm=syz.3.13934
[  446.287585][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.457223][T11094] netlink: 24 bytes leftover after parsing attributes in process `syz.3.13947'.
[  446.476263][T11091] wg2: entered promiscuous mode
[  446.481205][T11091] wg2: entered allmulticast mode
[  446.538094][T11102] loop1: detected capacity change from 0 to 512
[  446.544950][T11102] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  446.565199][T11102] EXT4-fs (loop1): 1 truncate cleaned up
[  446.574910][T11102] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.749724][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.783782][T11118] bridge_slave_1: left allmulticast mode
[  446.789466][T11118] bridge_slave_1: left promiscuous mode
[  446.795172][T11118] bridge0: port 2(bridge_slave_1) entered disabled state
[  446.804373][T11118] bridge_slave_0: left allmulticast mode
[  446.810123][T11118] bridge_slave_0: left promiscuous mode
[  446.815866][T11118] bridge0: port 1(bridge_slave_0) entered disabled state
[  446.827566][T11122] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=11122 comm=syz.5.13956
[  447.084145][   T29] kauditd_printk_skb: 219 callbacks suppressed
[  447.084185][   T29] audit: type=1400 audit(1236.697:16468): avc:  denied  { mount } for  pid=11150 comm="syz.3.13972" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  447.124640][   T29] audit: type=1400 audit(1236.739:16469): avc:  denied  { create } for  pid=11154 comm="gtp" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  447.144584][   T29] audit: type=1400 audit(1236.739:16470): avc:  denied  { lock } for  pid=11154 comm="gtp" path="socket:[117684]" dev="sockfs" ino=117684 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  447.276554][   T29] audit: type=1326 audit(1236.907:16471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11176 comm="syz.3.13983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  447.318130][   T29] audit: type=1326 audit(1236.949:16472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11176 comm="syz.3.13983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  447.368134][   T29] audit: type=1326 audit(1236.991:16473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11176 comm="syz.3.13983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  447.391650][   T29] audit: type=1326 audit(1236.991:16474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11176 comm="syz.3.13983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f040dc0f749 code=0x7ffc0000
[  447.414890][   T29] audit: type=1326 audit(1236.991:16475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11188 comm="syz.6.13989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  447.438201][   T29] audit: type=1326 audit(1236.991:16476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11188 comm="syz.6.13989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  447.461471][   T29] audit: type=1326 audit(1236.991:16477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11188 comm="syz.6.13989" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  447.667905][T11216] xt_CT: You must specify a L4 protocol and not use inversions on it
[  448.243678][T11232] vlan3: entered allmulticast mode
[  448.249038][T11232] hsr0: entered allmulticast mode
[  448.254144][T11232] hsr_slave_0: entered allmulticast mode
[  448.296224][T11246] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11246 comm=syz.1.14014
[  448.308931][T11246] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=11246 comm=syz.1.14014
[  448.383200][T11258] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) !
[  448.522230][T11283] smc: net device bond0 applied user defined pnetid SYZ0
[  448.533727][T11283] smc: net device bond0 erased user defined pnetid SYZ0
[  448.613745][T11294] __nla_validate_parse: 15 callbacks suppressed
[  448.613759][T11294] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14037'.
[  448.894125][T11344] netlink: 'syz.2.14057': attribute type 12 has an invalid length.
[  448.922720][T11346] netlink: 88 bytes leftover after parsing attributes in process `syz.2.14058'.
[  449.007372][T11358] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11358 comm=syz.2.14063
[  449.111201][T11366] ip6_vti0 speed is unknown, defaulting to 1000
[  449.295054][T11386] netlink: 'syz.6.14075': attribute type 1 has an invalid length.
[  449.309669][T11378] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14072'.
[  449.315744][T11386] 8021q: adding VLAN 0 to HW filter on device batadv1
[  449.327795][T11386] bond0: (slave batadv1): making interface the new active one
[  449.336894][T11386] bond0: (slave batadv1): Enslaving as an active interface with an up link
[  449.354759][T11386] netlink: 12 bytes leftover after parsing attributes in process `syz.6.14075'.
[  449.366000][T11386] bond0 (unregistering): (slave batadv1): Releasing active interface
[  449.375239][T11386] bond0 (unregistering): Released all slaves
[  449.450538][T11405] netlink: 4 bytes leftover after parsing attributes in process `syz.6.14083'.
[  449.487315][T11407] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  449.508715][T11407] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  449.543148][T11405] netlink: 4 bytes leftover after parsing attributes in process `syz.6.14083'.
[  449.760785][T11442] netlink: 76 bytes leftover after parsing attributes in process `syz.6.14099'.
[  450.141435][T11468] sch_tbf: burst 19869 is lower than device lo mtu (11337746) !
[  450.262671][T11472] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  450.429171][T11480] netlink: 'syz.5.14116': attribute type 1 has an invalid length.
[  450.451995][T11480] bond4: entered promiscuous mode
[  450.457132][T11480] bond4: entered allmulticast mode
[  450.462878][T11480] 8021q: adding VLAN 0 to HW filter on device bond4
[  450.588892][T11487] loop5: detected capacity change from 0 to 512
[  450.611243][T11487] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  450.817439][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.867521][T11498] loop5: detected capacity change from 0 to 164
[  450.893128][T11498] syz.5.14121: attempt to access beyond end of device
[  450.893128][T11498] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  450.920687][T11498] syz.5.14121: attempt to access beyond end of device
[  450.920687][T11498] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  451.004458][T11507] SELinux: failed to load policy
[  451.237759][T11535] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14136'.
[  451.567880][T11586] ip6_vti0 speed is unknown, defaulting to 1000
[  451.658156][T11597] SELinux: ebitmap: truncated map
[  451.683610][T11597] SELinux: failed to load policy
[  451.856640][T11621] netlink: 76 bytes leftover after parsing attributes in process `syz.2.14173'.
[  451.889242][T11624] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 8
[  451.932617][T11630] netlink: 165 bytes leftover after parsing attributes in process `syz.2.14178'.
[  452.064521][   T29] kauditd_printk_skb: 221 callbacks suppressed
[  452.064536][   T29] audit: type=1404 audit(1241.925:16699): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  452.087642][   T29] audit: type=1400 audit(1241.957:16700): avc:  denied  { recv } for  pid=22 comm="ksoftirqd/1" saddr=10.128.0.163 src=30036 daddr=10.128.0.51 dest=59132 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=0
[  452.109778][T11648] netlink: 'syz.6.14186': attribute type 29 has an invalid length.
[  452.112544][   T29] audit: type=1400 audit(1241.957:16701): avc:  denied  { recv } for  pid=22 comm="ksoftirqd/1" saddr=10.128.0.163 src=30036 daddr=10.128.0.51 dest=59132 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=0
[  452.121554][T11648] netlink: 'syz.6.14186': attribute type 29 has an invalid length.
[  452.145178][   T29] audit: type=1404 audit(1241.957:16702): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  452.145210][   T29] audit: type=1400 audit(1241.957:16703): avc:  denied  { recv } for  pid=7498 comm="kworker/u8:21" saddr=10.128.0.163 src=30036 daddr=10.128.0.51 dest=59132 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  452.221741][   T29] audit: type=1400 audit(1241.957:16704): avc:  denied  { read write } for  pid=23140 comm="syz-executor" name="loop5" dev="devtmpfs" ino=685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  452.244846][   T29] audit: type=1400 audit(1241.957:16705): avc:  denied  { open } for  pid=23140 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  452.267910][   T29] audit: type=1400 audit(1241.957:16706): avc:  denied  { ioctl } for  pid=23140 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=685 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  452.292285][   T29] audit: type=1400 audit(1241.957:16707): avc:  denied  { prog_load } for  pid=11647 comm="syz.6.14186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  452.311316][   T29] audit: type=1400 audit(1241.957:16708): avc:  denied  { bpf } for  pid=11647 comm="syz.6.14186" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  452.701510][T11701] netlink: 'syz.5.14210': attribute type 8 has an invalid length.
[  453.309974][T11759] loop1: detected capacity change from 0 to 512
[  453.318259][T11759] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.14235: bg 0: block 5: invalid block bitmap
[  453.331223][T11759] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  453.340280][T11759] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.14235: invalid indirect mapped block 3 (level 2)
[  453.354183][T11759] EXT4-fs (loop1): 2 truncates cleaned up
[  453.360390][T11759] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  453.447671][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.512744][T11773] loop1: detected capacity change from 0 to 164
[  453.523985][T11773] syz.1.14241: attempt to access beyond end of device
[  453.523985][T11773] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  453.537984][T11773] syz.1.14241: attempt to access beyond end of device
[  453.537984][T11773] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  454.512250][T11817] netlink: 'syz.5.14257': attribute type 1 has an invalid length.
[  454.587102][T11817] 8021q: adding VLAN 0 to HW filter on device batadv1
[  454.616756][T11823] __nla_validate_parse: 6 callbacks suppressed
[  454.616775][T11823] netlink: 12 bytes leftover after parsing attributes in process `syz.5.14257'.
[  454.635773][T11817] bond5: (slave batadv1): making interface the new active one
[  454.684697][T11817] bond5: (slave batadv1): Enslaving as an active interface with an up link
[  454.722984][T11823] bond5 (unregistering): (slave batadv1): Releasing active interface
[  454.748947][T11823] bond5 (unregistering): Released all slaves
[  455.685638][T11880] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  455.885752][T11890] Dead loop on virtual device ipvlan1, fix it urgently!
[  456.752144][T11946] veth0_vlan: entered allmulticast mode
[  456.767700][T11948] loop5: detected capacity change from 0 to 1024
[  456.787389][T11948] EXT4-fs: Ignoring removed orlov option
[  456.800825][T11948] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  456.895449][   T29] kauditd_printk_skb: 242 callbacks suppressed
[  456.895465][   T29] audit: type=1400 audit(1246.996:16951): avc:  denied  { create } for  pid=11959 comm="syz.6.14320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  456.967712][   T29] audit: type=1400 audit(1247.027:16952): avc:  denied  { connect } for  pid=11959 comm="syz.6.14320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  456.987204][   T29] audit: type=1400 audit(1247.069:16953): avc:  denied  { setopt } for  pid=11963 comm="syz.6.14322" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  457.061118][   T29] audit: type=1400 audit(1247.174:16954): avc:  denied  { mounton } for  pid=11970 comm=77DEA305FF07 path="/proc/1546/cgroup" dev="proc" ino=119778 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  457.150228][   T29] audit: type=1400 audit(1247.258:16955): avc:  denied  { read append } for  pid=11978 comm="syz.2.14329" name="event1" dev="devtmpfs" ino=243 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  457.173897][   T29] audit: type=1400 audit(1247.258:16956): avc:  denied  { open } for  pid=11978 comm="syz.2.14329" path="/dev/input/event1" dev="devtmpfs" ino=243 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  457.265100][T11988] netlink: 48 bytes leftover after parsing attributes in process `syz.2.14332'.
[  457.274323][   T29] audit: type=1400 audit(1247.405:16957): avc:  denied  { connect } for  pid=11990 comm="syz.1.14334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  457.287197][T11992] netlink: 'syz.6.14333': attribute type 8 has an invalid length.
[  457.301655][T11992] netlink: 4 bytes leftover after parsing attributes in process `syz.6.14333'.
[  457.354239][   T29] audit: type=1326 audit(1247.479:16958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11999 comm="syz.6.14337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  457.378103][   T29] audit: type=1326 audit(1247.500:16959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11999 comm="syz.6.14337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  457.401303][   T29] audit: type=1326 audit(1247.500:16960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11999 comm="syz.6.14337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2202ff749 code=0x7ffc0000
[  457.480184][T12008] loop1: detected capacity change from 0 to 512
[  457.509984][T12008] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  457.545653][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  457.569845][T12017] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12017 comm=syz.6.14344
[  457.582643][T12017] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=12017 comm=syz.6.14344
[  457.678572][T23140] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  457.860166][T12056] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  457.912507][T12066] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14366'.
[  457.913429][T12067] netlink: 4 bytes leftover after parsing attributes in process `syz.5.14365'.
[  457.947286][T12066] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14366'.
[  457.978300][T12074] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14369'.
[  457.987362][T12074] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14369'.
[  458.254599][T12096] ip6_vti0 speed is unknown, defaulting to 1000
[  458.266861][ T7506] tipc: Subscription rejected, illegal request
[  458.310697][T12101] ip6_vti0 speed is unknown, defaulting to 1000
[  458.348267][T12096] netlink: 20 bytes leftover after parsing attributes in process `syz.5.14378'.
[  458.371644][T12107] ------------[ cut here ]------------
[  458.377218][T12107] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0x4000000, 0x0] s64=[0x4000000, 0x0] u32=[0x4000000, 0x0] s32=[0x4000000, 0x0] var_off=(0x0, 0x0)
[  458.395262][T12107] WARNING: CPU: 1 PID: 12107 at kernel/bpf/verifier.c:2721 reg_bounds_sanity_check+0x673/0x680
[  458.405944][T12107] Modules linked in:
[  458.409984][T12107] CPU: 1 UID: 0 PID: 12107 Comm: syz.3.14383 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  458.421657][T12107] Tainted: [W]=WARN
[  458.425592][T12107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  458.435710][T12107] RIP: 0010:reg_bounds_sanity_check+0x673/0x680
[  458.442047][T12107] Code: 7c 24 18 41 ff 74 24 20 55 41 56 4d 89 ee 53 48 8b 5c 24 30 ff 74 24 40 ff 74 24 50 ff 74 24 30 e8 12 f7 ba ff 48 83 c4 38 90 <0f> 0b 90 90 e9 02 fb ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90
[  458.461737][T12107] RSP: 0018:ffffc90002f9b408 EFLAGS: 00010282
[  458.467980][T12107] RAX: 7664646133653300 RBX: ffff888120a67ae0 RCX: 0000000000080000
[  458.476107][T12107] RDX: ffffc9000432f000 RSI: 0000000000004a3b RDI: 0000000000004a3c
[  458.484345][T12107] RBP: 0000000000000000 R08: 0001c90002f9b257 R09: 0000000000000000
[  458.492433][T12107] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff888120a67aa0
[  458.500639][T12107] R13: ffff888110750000 R14: ffff888110750000 R15: ffff888120a67ad8
[  458.508748][T12107] FS:  00007f040c6776c0(0000) GS:ffff8882aef11000(0000) knlGS:0000000000000000
[  458.517821][T12107] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  458.524495][T12107] CR2: 00002000000011a0 CR3: 000000011820c000 CR4: 00000000003506f0
[  458.532592][T12107] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  458.540607][T12107] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  458.548629][T12107] Call Trace:
[  458.551915][T12107]  <TASK>
[  458.554902][T12107]  reg_set_min_max+0x215/0x260
[  458.559705][T12107]  check_cond_jmp_op+0x130d/0x19e0
[  458.564920][T12107]  do_check+0x3363/0x8460
[  458.569277][T12107]  do_check_common+0xc5e/0x12b0
[  458.574174][T12107]  bpf_check+0xaaae/0xd9d0
[  458.578611][T12107]  ? __alloc_frozen_pages_noprof+0x188/0x360
[  458.584753][T12107]  ? alloc_pages_bulk_noprof+0x4a6/0x530
[  458.590424][T12107]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[  458.596424][T12107]  ? try_charge_memcg+0x215/0xa10
[  458.601534][T12107]  ? pcpu_block_update+0x24e/0x3b0
[  458.606757][T12107]  ? pcpu_block_refresh_hint+0x157/0x170
[  458.612443][T12107]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  458.618542][T12107]  ? css_rstat_updated+0xb7/0x240
[  458.623613][T12107]  ? __rcu_read_unlock+0x4f/0x70
[  458.628669][T12107]  ? pcpu_memcg_post_alloc_hook+0xf1/0x150
[  458.634591][T12107]  ? bpf_prog_alloc+0x5b/0x150
[  458.639420][T12107]  ? pcpu_alloc_noprof+0xd29/0x1250
[  458.644684][T12107]  ? should_fail_ex+0x30/0x280
[  458.649707][T12107]  ? should_failslab+0x8c/0xb0
[  458.654519][T12107]  ? __kmalloc_noprof+0x2a2/0x570
[  458.659923][T12107]  ? security_bpf_prog_load+0x60/0x140
[  458.665635][T12107]  ? selinux_bpf_prog_load+0xad/0xd0
[  458.671064][T12107]  ? security_bpf_prog_load+0x9e/0x140
[  458.676561][T12107]  bpf_prog_load+0xf6e/0x1100
[  458.681469][T12107]  ? security_bpf+0x2b/0x90
[  458.686076][T12107]  __sys_bpf+0x469/0x7c0
[  458.690392][T12107]  __x64_sys_bpf+0x41/0x50
[  458.694873][T12107]  x64_sys_call+0x2aee/0x3000
[  458.699743][T12107]  do_syscall_64+0xd2/0x200
[  458.704354][T12107]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  458.710505][T12107]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  458.716311][T12107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  458.722286][T12107] RIP: 0033:0x7f040dc0f749
[  458.726749][T12107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  458.746410][T12107] RSP: 002b:00007f040c677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  458.754867][T12107] RAX: ffffffffffffffda RBX: 00007f040de65fa0 RCX: 00007f040dc0f749
[  458.762866][T12107] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  458.770971][T12107] RBP: 00007f040dc93f91 R08: 0000000000000000 R09: 0000000000000000
[  458.779054][T12107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.787064][T12107] R13: 00007f040de66038 R14: 00007f040de65fa0 R15: 00007ffdc314d2e8
[  458.795097][T12107]  </TASK>
[  458.798127][T12107] ---[ end trace 0000000000000000 ]---
[  458.970424][T12143] netlink: 'syz.2.14397': attribute type 1 has an invalid length.
[  458.978375][T12143] netlink: 224 bytes leftover after parsing attributes in process `syz.2.14397'.
[  458.990389][T12145] netlink: 'syz.1.14399': attribute type 10 has an invalid length.
[  459.009460][T12145] team0: Port device dummy0 added
[  459.046354][T12151] netlink: 'syz.1.14399': attribute type 10 has an invalid length.
[  459.067030][T12151] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  459.097920][T12151] team0: Failed to send options change via netlink (err -105)
[  459.116738][T12151] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  459.181478][T12151] team0: Port device dummy0 removed
[  459.201675][T12151] dummy0: entered promiscuous mode
[  459.207595][T12151] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[  460.108324][T12198] sit0: entered allmulticast mode
[  460.114127][T12198] sit0: entered promiscuous mode
[  460.397292][T12231] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=40 sclass=netlink_audit_socket pid=12231 comm=syz.2.14432
[  460.439133][T12239] netlink: 'syz.6.14436': attribute type 10 has an invalid length.
[  460.454522][T12239] team0: Port device dummy0 added
[  460.463673][T12239] netlink: 'syz.6.14436': attribute type 10 has an invalid length.
[  460.484983][T12239] team0: Port device dummy0 removed
[  460.493476][T12239] dummy0: entered promiscuous mode
[  460.499077][T12239] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[  460.563510][T12256] loop5: detected capacity change from 0 to 512
[  460.571120][T12256] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000101)
[  460.680630][T15006] hid_parser_main: 16 callbacks suppressed
[  460.680647][T15006] hid-generic 0000:3000000:0000.0025: unknown main item tag 0x4
[  460.694432][T15006] hid-generic 0000:3000000:0000.0025: unknown main item tag 0x2
[  460.702834][T15006] hid-generic 0000:3000000:0000.0025: unknown main item tag 0x3
[  460.711520][T15006] hid-generic 0000:3000000:0000.0025: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  460.734213][T12273] netlink: 'syz.2.14453': attribute type 10 has an invalid length.
[  460.757848][T12273] netlink: 'syz.2.14453': attribute type 10 has an invalid length.
[  460.771014][T12273] team0: Port device dummy0 removed
[  460.794771][T12273] .`: (slave dummy0): Enslaving as an active interface with an up link
[  460.916691][T12295] veth1_to_bond: entered allmulticast mode
[  460.923674][T12295] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14464'.
[  460.934746][T12295] .`: (slave bond_slave_1): Releasing backup interface
[  460.943874][T12295] veth1_to_bond (unregistering): left allmulticast mode
[  461.010270][T12309] netlink: 24 bytes leftover after parsing attributes in process `syz.6.14471'.
[  461.257555][T12345] loop1: detected capacity change from 0 to 128
[  461.958676][T12373] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14497'.
[  461.973975][   T29] kauditd_printk_skb: 142 callbacks suppressed
[  461.973993][   T29] audit: type=1400 audit(1252.329:17103): avc:  denied  { remount } for  pid=12372 comm="syz.3.14497" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  462.097938][T12381] Falling back ldisc for ttyS3.
[  462.304950][T12386] loop5: detected capacity change from 0 to 32768
[  462.345965][T12386]  loop5: p1 p3 < >
[  462.360374][   T29] audit: type=1400 audit(1252.728:17104): avc:  denied  { mounton } for  pid=12385 comm="syz.5.14502" path="/proc/4851/task" dev="proc" ino=121943 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  462.443424][T12403] veth0_vlan: entered allmulticast mode
[  462.502588][T12403] ÿÿÿÿÿÿ: renamed from vlan1
[  462.526540][   T29] audit: type=1400 audit(1252.906:17105): avc:  denied  { read } for  pid=12414 comm="syz.6.14512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  462.598269][   T29] audit: type=1400 audit(1252.980:17106): avc:  denied  { bind } for  pid=12424 comm="syz.6.14517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  462.833413][   T29] audit: type=1400 audit(1253.232:17107): avc:  denied  { node_bind } for  pid=12438 comm="syz.5.14520" saddr=fe80:: scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  462.857884][   T29] audit: type=1400 audit(1253.253:17108): avc:  denied  { name_bind } for  pid=12438 comm="syz.5.14520" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  462.889859][   T29] audit: type=1400 audit(1253.295:17109): avc:  denied  { write } for  pid=12440 comm="syz.5.14521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  463.058073][   T29] audit: type=1326 audit(1253.463:17110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12454 comm="syz.2.14527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  463.081337][   T29] audit: type=1326 audit(1253.463:17111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12454 comm="syz.2.14527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  463.105739][   T29] audit: type=1326 audit(1253.473:17112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12454 comm="syz.2.14527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  463.199489][T12460] netlink: 176 bytes leftover after parsing attributes in process `syz.5.14529'.
[  463.272309][T12464] Cannot find set identified by id 0 to match
[  463.505683][T12487] netlink: 28 bytes leftover after parsing attributes in process `syz.1.14540'.
[  463.514910][T12487] netlink: 28 bytes leftover after parsing attributes in process `syz.1.14540'.
[  463.770641][T12525] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14555'.
[  463.989456][T12544] netlink: 28 bytes leftover after parsing attributes in process `syz.5.14562'.
[  463.998673][T12544] netlink: 28 bytes leftover after parsing attributes in process `syz.5.14562'.
[  464.229628][T12561] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14570'.
[  464.245253][T12561] loop1: detected capacity change from 0 to 512
[  464.252019][T12561] EXT4-fs: Ignoring removed bh option
[  464.260022][T12561] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  464.269102][T12561] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  464.281411][T12561] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  464.291756][T12561] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  464.301272][T12561] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  464.318216][T12561] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  464.339895][ T3974] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.445941][T12582] ip6_vti0 speed is unknown, defaulting to 1000
[  464.475061][T12584] xt_connbytes: Forcing CT accounting to be enabled
[  464.482667][T12584] Cannot find set identified by id 0 to match
[  464.576175][T12587] ip6_vti0 speed is unknown, defaulting to 1000
[  464.894057][T12609] netdevsim netdevsim6 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  464.904434][T12609] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.967844][T12609] netdevsim netdevsim6 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  464.978263][T12609] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  465.044967][T12609] netdevsim netdevsim6 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  465.055416][T12609] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  465.132117][T12609] netdevsim netdevsim6 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  465.142601][T12609] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  465.218081][ T7509] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  465.226461][ T7509] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  465.279244][ T7509] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  465.287463][ T7509] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  465.304771][ T7509] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  465.313110][ T7509] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  465.355851][ T7509] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  465.364191][ T7509] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  465.413465][T12638] netlink: 'syz.6.14602': attribute type 13 has an invalid length.
[  465.414004][T12636] ip6_vti0 speed is unknown, defaulting to 1000
[  465.574763][ T7506] netdevsim netdevsim6 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  465.583154][ T7506] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.616042][T12639] ip6_vti0 speed is unknown, defaulting to 1000
[  465.633667][ T7506] netdevsim netdevsim6 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  465.642117][ T7506] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.697680][T12646] __nla_validate_parse: 2 callbacks suppressed
[  465.697697][T12646] netlink: 8 bytes leftover after parsing attributes in process `syz.6.14604'.
[  465.713786][ T7506] netdevsim netdevsim6 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  465.722311][ T7506] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.731753][T12648] xt_hashlimit: max too large, truncated to 1048576
[  465.737466][ T7506] netdevsim netdevsim6 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  465.746889][ T7506] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.748226][T12648] xt_CT: You must specify a L4 protocol and not use inversions on it
[  466.088527][T12685] netlink: 172 bytes leftover after parsing attributes in process `syz.2.14621'.
[  466.141311][T12688] vlan2: entered allmulticast mode
[  466.259786][T12706] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12706 comm=syz.1.14631
[  466.506261][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.513835][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.521391][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.528979][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.536390][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.543820][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.551349][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.558871][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.566288][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.573750][ T2967] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  466.590294][ T2967] hid-generic 0000:0000:0000.0026: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  466.828261][T12736] loop1: detected capacity change from 0 to 512
[  466.847542][T12736] msdos: Bad value for 'errors'
[  466.885349][   T29] kauditd_printk_skb: 106 callbacks suppressed
[  466.885365][   T29] audit: type=1400 audit(1257.483:17219): avc:  denied  { write } for  pid=12767 comm="syz.5.14656" path="socket:[123959]" dev="sockfs" ino=123959 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  466.943908][   T29] audit: type=1400 audit(1257.546:17220): avc:  denied  { read write } for  pid=12775 comm="syz.5.14659" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  466.968016][   T29] audit: type=1400 audit(1257.546:17221): avc:  denied  { open } for  pid=12775 comm="syz.5.14659" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  467.014458][   T29] audit: type=1326 audit(1257.609:17222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12777 comm="syz.2.14660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  467.037762][   T29] audit: type=1326 audit(1257.609:17223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12777 comm="syz.2.14660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  467.060986][   T29] audit: type=1326 audit(1257.609:17224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12777 comm="syz.2.14660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  467.084181][   T29] audit: type=1326 audit(1257.609:17225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12777 comm="syz.2.14660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  467.107344][   T29] audit: type=1326 audit(1257.609:17226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12777 comm="syz.2.14660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  467.130551][   T29] audit: type=1326 audit(1257.609:17227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12777 comm="syz.2.14660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  467.153791][   T29] audit: type=1326 audit(1257.609:17228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12777 comm="syz.2.14660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6f29f749 code=0x7ffc0000
[  467.191148][T12780] netlink: 64 bytes leftover after parsing attributes in process `syz.5.14661'.
[  467.292734][T12800] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14671'.
[  467.309662][T12800] netlink: 16 bytes leftover after parsing attributes in process `syz.1.14671'.
[  467.511962][T12825] lo speed is unknown, defaulting to 1000
[  467.528140][T12825] lo speed is unknown, defaulting to 1000
[  467.537499][T12825] lo speed is unknown, defaulting to 1000
[  467.551207][T12827] loop1: detected capacity change from 0 to 512
[  467.573538][T12827] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  467.604720][T12827] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.14682: invalid indirect mapped block 4294967295 (level 0)
[  467.620275][T12827] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.14682: invalid indirect mapped block 4294967295 (level 1)
[  467.628057][T12825] infiniband s
z1: set down
[  467.638943][T12825] infiniband s
z1: added lo
[  467.643742][ T3409] lo speed is unknown, defaulting to 1000
[  467.644339][T12827] EXT4-fs (loop1): 1 orphan inode deleted
[  467.655362][T12827] EXT4-fs (loop1): 1 truncate cleaned up
[  467.662397][T12827] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  467.690815][T12827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.721069][T12825] RDS/IB: s
z1: added
[  467.725179][T12825] smc: adding ib device s
z1 with port count 1
[  467.731653][T12825] smc:    ib device s
z1 port 1 has no pnetid
[  467.737893][   T23] lo speed is unknown, defaulting to 1000
[  467.743899][T12825] lo speed is unknown, defaulting to 1000
[  467.756004][T12846] 9pnet_fd: Insufficient options for proto=fd
[  467.785419][T12825] lo speed is unknown, defaulting to 1000
[  467.824428][T12825] lo speed is unknown, defaulting to 1000
[  467.875429][T12825] lo speed is unknown, defaulting to 1000
[  467.914139][T12825] lo speed is unknown, defaulting to 1000
[  467.954577][T12863] netlink: 'syz.2.14698': attribute type 27 has an invalid length.
[  467.973652][T12863] sit0: left promiscuous mode
[  467.978522][T12863] sit0: left allmulticast mode
[  468.035163][T12863] geneve2: left promiscuous mode
[  468.075351][T12825] lo speed is unknown, defaulting to 1000
[  468.079767][ T7506] netdevsim netdevsim2 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  468.089581][ T7506] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 20001 - 0
[  468.098387][ T7506] netdevsim netdevsim2 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  468.106819][ T7506] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 20001 - 0
[  468.148155][ T7506] netdevsim netdevsim2 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  468.156654][ T7506] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 20001 - 0
[  468.208260][ T7506] netdevsim netdevsim2 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  468.216768][ T7506] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 20001 - 0
[  468.270585][T12882] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14706'.
[  468.968552][T12939] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.005050][T12936] wireguard0: entered promiscuous mode
[  469.010679][T12936] wireguard0: entered allmulticast mode
[  469.052603][T12939] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.100166][T12951] netlink: 'syz.3.14735': attribute type 13 has an invalid length.
[  469.142188][T12939] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.196708][T12956] netlink: 188 bytes leftover after parsing attributes in process `syz.2.14737'.
[  469.507063][T12939] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.534646][ T7506] netdevsim netdevsim3 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  469.543179][ T7506] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  469.551857][ T7506] netdevsim netdevsim3 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  469.560328][ T7506] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  469.584507][ T7506] netdevsim netdevsim3 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  469.593030][ T7506] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  469.681831][ T7506] netdevsim netdevsim3 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  469.690340][ T7506] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  469.747199][ T7506] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  469.770488][ T7506] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  469.797851][T12994] netlink: 12 bytes leftover after parsing attributes in process `syz.6.14752'.
[  469.807021][T12994] netlink: 12 bytes leftover after parsing attributes in process `syz.6.14752'.
[  469.809955][ T7506] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  469.855604][ T7506] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  469.890498][T13000] netlink: 4 bytes leftover after parsing attributes in process `syz.6.14755'.
[  469.958911][T12977] ==================================================================
[  469.967036][T12977] BUG: KCSAN: data-race in shmem_file_splice_read / shmem_file_splice_read
[  469.975642][T12977] 
[  469.977967][T12977] write to 0xffff88812ba9f228 of 8 bytes by task 12972 on cpu 1:
[  469.985685][T12977]  shmem_file_splice_read+0x470/0x600
[  469.991072][T12977]  splice_direct_to_actor+0x26f/0x680
[  469.996455][T12977]  do_splice_direct+0xda/0x150
[  470.001253][T12977]  do_sendfile+0x380/0x650
[  470.005695][T12977]  __x64_sys_sendfile64+0x105/0x150
[  470.010983][T12977]  x64_sys_call+0x2bb4/0x3000
[  470.015667][T12977]  do_syscall_64+0xd2/0x200
[  470.020200][T12977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.026138][T12977] 
[  470.028465][T12977] write to 0xffff88812ba9f228 of 8 bytes by task 12977 on cpu 0:
[  470.036178][T12977]  shmem_file_splice_read+0x470/0x600
[  470.041554][T12977]  splice_direct_to_actor+0x26f/0x680
[  470.046930][T12977]  do_splice_direct+0xda/0x150
[  470.051699][T12977]  do_sendfile+0x380/0x650
[  470.056135][T12977]  __x64_sys_sendfile64+0x105/0x150
[  470.061345][T12977]  x64_sys_call+0x2bb4/0x3000
[  470.066203][T12977]  do_syscall_64+0xd2/0x200
[  470.070713][T12977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.076611][T12977] 
[  470.078930][T12977] value changed: 0x0000000000039ee1 -> 0x0000000000039f18
[  470.086031][T12977] 
[  470.088347][T12977] Reported by Kernel Concurrency Sanitizer on:
[  470.094585][T12977] CPU: 0 UID: 0 PID: 12977 Comm: syz.2.14744 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  470.106061][T12977] Tainted: [W]=WARN
[  470.109868][T12977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  470.119931][T12977] ==================================================================
[  471.766586][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  471.772728][ T4063] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  479.933448][ T7492] bond1 (unregistering): (slave geneve2): Releasing active interface
[  479.946260][ T7492] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  479.955609][ T7492] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  479.964568][ T7492] bond0 (unregistering): Released all slaves
[  479.972965][ T7492] bond1 (unregistering): Released all slaves