last executing test programs:

2m19.95884825s ago: executing program 0 (id=437):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="5402"], 0x69)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

2m19.89767044s ago: executing program 0 (id=440):
r0 = io_uring_setup(0x2700, &(0x7f00000003c0)={0x0, 0xdfe3, 0x40, 0x3, 0x40})
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
socket$nl_generic(0x10, 0x3, 0x10)
close_range(r0, 0xffffffffffffffff, 0x100000000000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB], 0x48)
socket$inet(0xa, 0x801, 0x84)

2m19.032482391s ago: executing program 0 (id=486):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x2, 0x1, 0x1}}}}]}, 0x44}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newtfilter={0x4c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0xfff0}}, [@filter_kind_options=@f_u32={{0x8}, {0x20, 0x2, [@TCA_U32_SEL={0x14}, @TCA_U32_CLASSID={0x8}]}}]}, 0x4c}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0xfff2)

2m18.998753851s ago: executing program 0 (id=487):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f00000003c0)='./file0/../file0/../file0/../file0\x00')
open(&(0x7f0000000080)='./bus\x00', 0x169242, 0x10)

2m18.873820172s ago: executing program 0 (id=488):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r2, r2)
waitid(0x2, r2, 0x0, 0x4, 0x0)

2m17.905913704s ago: executing program 0 (id=507):
r0 = timerfd_create(0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timerfd_gettime(r0, &(0x7f0000000040))

2m17.876462374s ago: executing program 32 (id=507):
r0 = timerfd_create(0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timerfd_gettime(r0, &(0x7f0000000040))

1m40.716158074s ago: executing program 4 (id=1837):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
recvmsg$unix(r0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102036c00fe08000e40000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)

1m40.696148214s ago: executing program 4 (id=1838):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
bind$inet6(r1, &(0x7f0000000880)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
r2 = dup2(r1, r1)
write$P9_RSTATFS(r2, &(0x7f00000000c0)={0x43, 0x9, 0x0, {0xfffffffd, 0xfffffffd, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x3, 0x4a}}, 0x43)

1m40.677008514s ago: executing program 4 (id=1840):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000140)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@lazytime}, {@quota}, {@quota}]}, 0x3, 0x443, &(0x7f0000000940)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000840)={{r0}, &(0x7f0000000600), &(0x7f0000000800)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000a00)='./file1\x00', 0xc37e, 0x101)
fallocate(r2, 0x0, 0x0, 0x9000f4)

1m40.554624944s ago: executing program 4 (id=1843):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f00000003c0)='./file0/../file0/../file0/../file0\x00')
open(&(0x7f0000000080)='./bus\x00', 0x169242, 0x10)

1m40.284339655s ago: executing program 4 (id=1854):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c00000010001ffe00989837a182138b00268f1c", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e00000004000280"], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)

1m39.424896577s ago: executing program 4 (id=1873):
r0 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f0000000040)={0x1f, @fixed}, 0x8)
listen(r1, 0x0)
accept4(r1, 0x0, 0x0, 0x0)

1m39.424581677s ago: executing program 33 (id=1873):
r0 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f0000000040)={0x1f, @fixed}, 0x8)
listen(r1, 0x0)
accept4(r1, 0x0, 0x0, 0x0)

1m11.783445906s ago: executing program 6 (id=2915):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x2, 0xfff, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001840)={{r0}, &(0x7f00000017c0), &(0x7f0000001800)='%-5lx  \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

1m11.726217136s ago: executing program 6 (id=2919):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x3, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x4, 0x87, &(0x7f0000000200)=""/135, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x14}, 0x14}}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f2b8db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000200)="c67f0d7df9", 0x28}], 0x2)

1m11.661402746s ago: executing program 6 (id=2926):
set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000f9ff3dffffffffa33f0eff000000008367f5547e6c86199e8c90c4cbe78fa0860ac02067980e8175957e445935de1a6ad9f1e6d1eaa63644695454ae109abb25170b3f68432b4f3d0c922a3c9f7ae3cd8cccb0d6f9b1ee373b1ac1eee632e3852edd7e714be34a79c9bf62949de11e2f4da63cb852cd837906f9788307077fef61d62b1dcffba2a8bbdc6e276fc470ba0d708a3d08db220a3e013b62599b1f00b0b34329821ebefe1d1b2429933fdc2df75407fd8476781ae01f126dba76976a8b04", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x7, 0x4aa, &(0x7f0000000100)="$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")
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB="020300020c0000000000000000000000030006000000000002000000ac1414bb000000000000000002000100000000000000fb00000000000300050000200000020000000000000000000000000000000100080000000000010014"], 0x60}, 0x1, 0x7}, 0x0)

1m11.569248667s ago: executing program 6 (id=2931):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x20040a, &(0x7f00000001c0)={[{@grpjquota}, {@errors_continue}, {@abort}, {@bsdgroups}]}, 0x12, 0x51a, &(0x7f0000001200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x2a000, 0x30)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4117639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d627780820d1cbf7db710382aceb38a0ef8da65697e4298d1e02dcb8eb8c6b105d9600fdff00000000040000000000000000000000438ea359866cfe1a00", "be1d0000ae9ef30bea2a004000010000000000008000", [0x4000000]})
writev(r0, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x1}], 0x1)

1m11.386490317s ago: executing program 6 (id=2938):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='sched_switch\x00', r1}, 0x18)
r2 = syz_open_dev$evdev(&(0x7f0000000180), 0x3, 0x88000)
ioctl$EVIOCGRAB(r2, 0x40044590, &(0x7f00000001c0))
ioctl$EVIOCGRAB(r2, 0x40044590, 0x0)

1m10.637739619s ago: executing program 1 (id=2958):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000001640)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
ioctl$TIOCL_SETSEL(r3, 0x4b68, 0x0)

1m10.620664878s ago: executing program 1 (id=2959):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
mbind(&(0x7f0000131000/0x4000)=nil, 0x4000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
syz_clone3(&(0x7f00000002c0)={0x230a8000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0x0], 0x1}, 0x58)

1m10.556686219s ago: executing program 1 (id=2964):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x2, 0xfff, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001840)={{r0}, &(0x7f00000017c0), &(0x7f0000001800)='%-5lx  \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

1m8.185729334s ago: executing program 6 (id=2965):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x127081)

1m8.185312424s ago: executing program 1 (id=2967):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x20040a, &(0x7f00000001c0)={[{@grpjquota}, {@errors_continue}, {@abort}, {@bsdgroups}]}, 0x12, 0x51a, &(0x7f0000001200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x2a000, 0x30)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4117639c2eb4b78c66ee677df701905b9aafab4afaaf755a3f6a004", "cba3d627780820d1cbf7db710382aceb38a0ef8da65697e4298d1e02dcb8eb8c6b105d9600fdff00000000040000000000000000000000438ea359866cfe1a00", "be1d0000ae9ef30bea2a004000010000000000008000", [0x4000000]})
writev(r0, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x1}], 0x1)

1m8.184862214s ago: executing program 34 (id=2965):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x127081)

1m7.949121625s ago: executing program 1 (id=2975):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchmod(r2, 0x0)

1m7.792338734s ago: executing program 1 (id=2982):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x100402, 0x5dd8, 0x3, 0x0, 0x0, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
lsetxattr$trusted_overlay_upper(&(0x7f0000000400)='./file2\x00', &(0x7f00000000c0), &(0x7f0000000600)=ANY=[], 0xfe37, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

1m7.760908285s ago: executing program 35 (id=2982):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x100402, 0x5dd8, 0x3, 0x0, 0x0, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
lsetxattr$trusted_overlay_upper(&(0x7f0000000400)='./file2\x00', &(0x7f00000000c0), &(0x7f0000000600)=ANY=[], 0xfe37, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

29.000996938s ago: executing program 5 (id=4246):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
ppoll(&(0x7f0000000080)=[{r1, 0x280}], 0x1, 0x0, 0x0, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000200)={0x9}, 0x20)

28.882491448s ago: executing program 5 (id=4248):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="170000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x485e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x38, r2, 0x10ada85e65c25359, 0x0, 0x8000000, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x72}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}]}]}]}, 0x38}}, 0x0)

28.863185118s ago: executing program 5 (id=4249):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80000001)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x54, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xffffffffffffffb9}, {0xc, 0x90}, {0xc}}]}, 0x54}, 0x1, 0x0, 0x0, 0x95}, 0x0)

28.817823458s ago: executing program 5 (id=4250):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x2b93089, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000480)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000004c0)='./file0/../file0\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x297881, 0x0)

28.796625299s ago: executing program 5 (id=4251):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f0000000240)={[{@discard}, {@noload}]}, 0x64, 0x537, &(0x7f0000000f80)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, 0x0)
llistxattr(&(0x7f0000000080)='./file1\x00', 0x0, 0x0)

28.479298349s ago: executing program 5 (id=4254):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000001e0000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
r3 = io_uring_setup(0x2ad6, &(0x7f0000000600)={0x0, 0x400ffb4, 0x800})
ioctl$TIOCMIWAIT(r0, 0x545c, 0x0)
close(r3)

28.479108889s ago: executing program 36 (id=4254):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000001e0000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
r3 = io_uring_setup(0x2ad6, &(0x7f0000000600)={0x0, 0x400ffb4, 0x800})
ioctl$TIOCMIWAIT(r0, 0x545c, 0x0)
close(r3)

3.336344573s ago: executing program 7 (id=4894):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r2 = dup(r1)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
ftruncate(r3, 0xee72)
sendfile(r2, r3, 0x0, 0x8000fffffffe)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r0, 0x3304)

2.253067746s ago: executing program 7 (id=4934):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000240)={[{@nogrpid}, {@resuid}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@jqfmt_vfsold}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
lsetxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000740), 0x0, 0x0, 0x2)

1.463868247s ago: executing program 9 (id=4955):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
r2 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x0, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
mq_unlink(&(0x7f0000000340)='eth0\x00')

1.439278757s ago: executing program 9 (id=4956):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000540)={'\x00', 0x7ff, 0x200006, 0xc, 0xb, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r2, 0x1276, 0x0)

1.224982568s ago: executing program 9 (id=4960):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
syz_io_uring_setup(0x4b6, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3d8}, &(0x7f0000ff0000), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

1.135622848s ago: executing program 9 (id=4962):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
eventfd2(0x7, 0x80800)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
read$hidraw(r1, 0x0, 0x49)

1.087103188s ago: executing program 3 (id=4964):
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000a40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x3000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f40)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00"], 0x40}}, 0x0)

729.212399ms ago: executing program 3 (id=4970):
r0 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000540)={0x2, 0x4e20, @broadcast}, 0x10)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f00000000c0)=0x1, 0x4)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
bind$inet(r1, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)

721.307329ms ago: executing program 3 (id=4973):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$nl_route_sched(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001c80)=@delchain={0x24, 0x65, 0x8, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x4, 0xe}, {0xfff2, 0xb}, {0x8, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x10)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r0, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2, 0x0)
ppoll(&(0x7f0000000180)=[{r0}], 0x1, 0x0, 0x0, 0x0)

715.489799ms ago: executing program 8 (id=4974):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)

658.490449ms ago: executing program 2 (id=4975):
r0 = add_key(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, r0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f00000000c0)=@chain)
add_key$keyring(&(0x7f0000000340), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, r2)

651.193939ms ago: executing program 8 (id=4976):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x800)
connect$inet6(r2, 0x0, 0x0)

605.231409ms ago: executing program 3 (id=4977):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002400128009000100626f6e640000000014000280080013"], 0x44}}, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

602.198259ms ago: executing program 8 (id=4978):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x80)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000340)=""/40, 0x28)
getdents(r2, 0xfffffffffffffffd, 0x58)

600.769859ms ago: executing program 2 (id=4979):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f00000003c0), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000001040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
close(r0)

550.632829ms ago: executing program 8 (id=4980):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd82, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r1}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

549.730509ms ago: executing program 2 (id=4981):
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000b00)=ANY=[@ANYBLOB="020300000b0000000000000000000000030006000000000002000000e000000100000000000000000200010000001c000000fb18000000000300050000000000020000007f0000010000000000000000010018"], 0x58}, 0x1, 0x7}, 0x0)

457.786859ms ago: executing program 8 (id=4982):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000cc0)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x5, 0xffe0}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

406.994499ms ago: executing program 3 (id=4983):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
fcntl$setlease(r2, 0x400, 0x2)

349.20488ms ago: executing program 8 (id=4984):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x1808002, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0xcd0}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
creat(&(0x7f0000000240)='./bus\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

300.99553ms ago: executing program 3 (id=4985):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da07000000000001090224"], 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r2 = fcntl$dupfd(r1, 0x0, r1)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x1e8, 0xc, 0x5002004a, 0xb, 0x310, 0xea02, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x248)

264.95035ms ago: executing program 9 (id=4986):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = dup(r0)
getsockopt$CAN_RAW_JOIN_FILTERS(r1, 0x65, 0x6, 0x0, &(0x7f00000002c0))
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x2, 0x9, 0x0, 0xd6a, 0x4}})

256.94595ms ago: executing program 2 (id=4987):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000040000a9f850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000d00)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000680)={0x2c, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x2c}}, 0x0)

205.891189ms ago: executing program 2 (id=4988):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="186800000006", @ANYBLOB="0000000000000000b702000014000000b70300000000000085be07352c537e7267"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='fib6_table_lookup\x00', r0, 0x0, 0x4}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})

182.8825ms ago: executing program 9 (id=4989):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x30507}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x44}}, 0x0)

181.62295ms ago: executing program 7 (id=4990):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000040)={<r2=>0xffffffffffffffff, 0xfffffffffffffffe, 0x9, 0xfffffffffffffffc})
close_range(r2, 0xffffffffffffffff, 0x0)

122.97013ms ago: executing program 7 (id=4991):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r2}, @generic={0x66}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa}, @printk={@x, {0x3, 0x3, 0x6}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0xa, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

43.57134ms ago: executing program 2 (id=4992):
unshare(0xe020600)
signalfd(0xffffffffffffffff, &(0x7f0000000100)={[0x9]}, 0x8)
socket$tipc(0x1e, 0x5, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000006d00)=[{{&(0x7f0000003940)=@file={0x0, './file2\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4}}], 0x1, 0x240000d0)

42.80628ms ago: executing program 7 (id=4993):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r3, @ANYBLOB="0100000000000000000001000000060006000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5426c010880f4000080060005000180000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff240002001bc715ee4868b12a49f4df11bc05475489f6a27c4d6483ad2fa5e45903b0ce851400040002000000ac1414aa00000000000000008c00098028000080060001000a00000014000200ff020000000000000000000000000001050003000000000028000080060001000a000000140002000000000000000000000000000000000105000300030000001c000080060001000200da0008000200e000000105000300000000001c000080060001000200000008000200ac141400050003000000000074000080200004000a004e2200000000fc0000000000000000000000000000000400000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff080003000100000024000200cde20bc0d9b90ac13642d7b66459dd9db5e20b4b16d3d23f2cb03a8aa417dce6080007000000000014000200776730"], 0x1c8}}, 0x0)

0s ago: executing program 7 (id=4994):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x4, 0x62200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x1, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x4040004)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(0xffffffffffffffff, 0x0, 0x1)

kernel console output (not intermixed with test programs):

-fs (loop2): orphan cleanup on readonly fs
[  120.881657][T11726] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3409: bg 0: block 361: padding at end of block bitmap is not set
[  120.937004][T11726] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  120.970237][T11726] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #11: comm syz.2.3409: attempt to clear invalid blocks 33619980 len 1
[  120.988874][T11742] program syz.3.3416 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  121.007238][T11740] loop7: detected capacity change from 0 to 16384
[  121.025463][T11726] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.3409: invalid indirect mapped block 1811939328 (level 0)
[  121.061482][T11726] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.3409: invalid indirect mapped block 2185560079 (level 1)
[  121.087360][T11726] EXT4-fs (loop2): 1 truncate cleaned up
[  121.116860][T11726] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.3409: dx entry: limit 0 != root limit 125
[  121.128644][T11726] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3409: Corrupt directory, running e2fsck is recommended
[  121.155626][T11726] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.3409: dx entry: limit 0 != root limit 125
[  121.167417][T11726] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3409: Corrupt directory, running e2fsck is recommended
[  121.197261][T11726] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.3409: dx entry: limit 0 != root limit 125
[  121.209070][T11726] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3409: Corrupt directory, running e2fsck is recommended
[  121.223258][T11726] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.3409: dx entry: limit 0 != root limit 125
[  121.235258][T11726] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3409: Corrupt directory, running e2fsck is recommended
[  121.250651][T11749] loop7: detected capacity change from 16384 to 16383
[  121.261939][T11726] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.3409: dx entry: limit 0 != root limit 125
[  121.273852][T11726] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3409: Corrupt directory, running e2fsck is recommended
[  121.343294][T11761] __nla_validate_parse: 3 callbacks suppressed
[  121.343308][T11761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3428'.
[  121.435165][T11740] buffer_io_error: 663 callbacks suppressed
[  121.435180][T11740] Buffer I/O error on dev loop7, logical block 2047, async page read
[  121.451337][T11740] Buffer I/O error on dev loop7, logical block 2047, async page read
[  121.491025][T11771] loop3: detected capacity change from 0 to 512
[  121.498387][T11771] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  121.509247][T11771] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[  121.519245][T11771] EXT4-fs (loop3): group descriptors corrupted!
[  121.568706][T11771] loop3: detected capacity change from 0 to 8192
[  121.606768][T11780] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3434'.
[  121.619868][T11780] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3434'.
[  121.733374][T11795] loop7: detected capacity change from 0 to 2048
[  121.788417][T11808] loop3: detected capacity change from 0 to 512
[  121.795372][T11808] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  121.816743][T11808] EXT4-fs (loop3): 1 truncate cleaned up
[  121.866390][T11821] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  122.045236][T11855] 9pnet_fd: Insufficient options for proto=fd
[  122.085275][T11864] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  122.094077][T11864] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  122.102811][T11864] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  122.111540][T11864] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  122.120721][T11864] vxlan0: entered promiscuous mode
[  122.126270][T11864] vxlan0: entered allmulticast mode
[  122.140927][T11864] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  122.149943][T11864] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  122.159078][T11864] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  122.168160][T11864] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  122.188084][T11869] vlan2: entered allmulticast mode
[  122.344094][T11895] loop2: detected capacity change from 0 to 512
[  122.362037][T11895] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  122.372872][T11895] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[  122.382949][T11895] EXT4-fs (loop2): group descriptors corrupted!
[  122.470800][T11895] loop2: detected capacity change from 0 to 8192
[  122.567982][T11926] netlink: 'syz.5.3502': attribute type 4 has an invalid length.
[  122.575765][T11926] netlink: 152 bytes leftover after parsing attributes in process `syz.5.3502'.
[  122.586450][T11926] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  122.634098][T11931] loop8: detected capacity change from 0 to 128
[  122.729228][   T29] kauditd_printk_skb: 300 callbacks suppressed
[  122.729243][   T29] audit: type=1400 audit(1733741418.210:4392): avc:  denied  { execute } for  pid=11940 comm="syz.8.3510" path="/93/blkio.bfq.avg_queue_size" dev="tmpfs" ino=508 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  122.847265][   T29] audit: type=1326 audit(1733741418.270:4393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11947 comm="syz.7.3512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  122.870866][   T29] audit: type=1326 audit(1733741418.270:4394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11947 comm="syz.7.3512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  122.894461][   T29] audit: type=1326 audit(1733741418.270:4395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11947 comm="syz.7.3512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  122.917938][   T29] audit: type=1326 audit(1733741418.270:4396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11947 comm="syz.7.3512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  122.925088][T11964] loop7: detected capacity change from 0 to 128
[  122.941452][   T29] audit: type=1326 audit(1733741418.270:4397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11947 comm="syz.7.3512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  122.971176][   T29] audit: type=1400 audit(1733741418.320:4398): avc:  denied  { bind } for  pid=11955 comm="syz.7.3514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  122.990701][   T29] audit: type=1400 audit(1733741418.330:4399): avc:  denied  { write } for  pid=11955 comm="syz.7.3514" path="socket:[34072]" dev="sockfs" ino=34072 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  123.077923][   T29] audit: type=1400 audit(1733741418.490:4400): avc:  denied  { execute_no_trans } for  pid=11961 comm="syz.8.3519" path="/94/file0" dev="tmpfs" ino=514 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  123.101378][   T29] audit: type=1400 audit(1733741418.520:4401): avc:  denied  { create } for  pid=11959 comm="syz.5.3518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  123.191921][T11980] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3524'.
[  123.290296][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.297766][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.305289][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.319250][T11978] loop5: detected capacity change from 0 to 8192
[  123.332252][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.339855][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.347318][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.354731][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.362236][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.369665][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.377153][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.384594][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.392039][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.399492][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.407001][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.416074][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.423692][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.431212][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.438817][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.446295][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.453754][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.461213][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.468738][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.476256][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.483657][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.491175][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.498610][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.506024][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.513468][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.520899][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.528404][ T3375] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  123.584889][ T3375] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  123.847430][T12028] rdma_op ffff88811645a180 conn xmit_rdma 0000000000000000
[  123.991180][T12032] loop3: detected capacity change from 0 to 8192
[  124.061040][T12050] loop8: detected capacity change from 0 to 512
[  124.108674][T12050] EXT4-fs (loop8): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  124.119162][T12056] loop2: detected capacity change from 0 to 256
[  124.119535][T12050] EXT4-fs (loop8): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[  124.135739][T12050] EXT4-fs (loop8): group descriptors corrupted!
[  124.291557][T12050] loop8: detected capacity change from 0 to 8192
[  124.390984][T12080] vlan2: entered allmulticast mode
[  124.396211][T12080] bridge_slave_0: entered allmulticast mode
[  124.418963][T12080] bridge_slave_0: left allmulticast mode
[  124.465372][T12083] loop7: detected capacity change from 0 to 16384
[  124.615544][T12089] loop7: detected capacity change from 16384 to 16383
[  124.651936][T12097] netlink: 804 bytes leftover after parsing attributes in process `syz.2.3577'.
[  124.727789][T12099] loop2: detected capacity change from 0 to 1024
[  124.833595][T12083] Buffer I/O error on dev loop7, logical block 2047, async page read
[  124.875295][T12083] Buffer I/O error on dev loop7, logical block 2047, async page read
[  125.213837][T12119] loop7: detected capacity change from 0 to 8192
[  125.268174][T12130] bridge0: port 1(vlan2) entered blocking state
[  125.274701][T12130] bridge0: port 1(vlan2) entered disabled state
[  125.314772][T12130] vlan2: entered allmulticast mode
[  125.346352][T12130] vlan2: left allmulticast mode
[  125.518413][T12140] loop3: detected capacity change from 0 to 8192
[  125.632048][T12149] loop3: detected capacity change from 0 to 2048
[  125.788880][T12163] vxlan1: entered promiscuous mode
[  125.794080][T12163] vxlan1: entered allmulticast mode
[  126.275467][T12202] batadv1: entered promiscuous mode
[  126.285500][T12202] 8021q: adding VLAN 0 to HW filter on device batadv1
[  126.299054][T12201] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  126.307307][T12201] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  126.315706][T12201] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  126.323953][T12201] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  126.375564][T12201] vxlan0: entered promiscuous mode
[  126.380794][T12201] vxlan0: entered allmulticast mode
[  126.397514][T12201] netdevsim netdevsim2 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  126.406165][T12201] netdevsim netdevsim2 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  126.414722][T12201] netdevsim netdevsim2 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  126.423168][T12201] netdevsim netdevsim2 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  126.713692][T12235] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3639'.
[  126.763360][T12242] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  126.819204][T12248] xt_hashlimit: max too large, truncated to 1048576
[  126.902798][T12261] loop5: detected capacity change from 0 to 256
[  126.923326][T12261] FAT-fs (loop5): Directory bread(block 64) failed
[  126.945837][T12261] FAT-fs (loop5): Directory bread(block 65) failed
[  126.952458][T12261] FAT-fs (loop5): Directory bread(block 66) failed
[  126.989516][T12261] FAT-fs (loop5): Directory bread(block 67) failed
[  127.009566][T12261] FAT-fs (loop5): Directory bread(block 68) failed
[  127.026218][T12261] FAT-fs (loop5): Directory bread(block 69) failed
[  127.068074][T12261] FAT-fs (loop5): Directory bread(block 70) failed
[  127.091493][T12261] FAT-fs (loop5): Directory bread(block 71) failed
[  127.098554][T12274] netlink: 'syz.3.3658': attribute type 13 has an invalid length.
[  127.106431][T12274] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3658'.
[  127.115445][T12261] FAT-fs (loop5): Directory bread(block 72) failed
[  127.141061][T12261] FAT-fs (loop5): Directory bread(block 73) failed
[  127.167355][T12274] syz_tun: refused to change device tx_queue_len
[  127.173824][T12274] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  127.207957][T12261] syz.5.3650: attempt to access beyond end of device
[  127.207957][T12261] loop5: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  127.255116][T12261] syz.5.3650: attempt to access beyond end of device
[  127.255116][T12261] loop5: rw=0, sector=1736, nr_sectors = 8 limit=256
[  127.756645][   T29] kauditd_printk_skb: 223 callbacks suppressed
[  127.756719][   T29] audit: type=1400 audit(1733741423.240:4625): avc:  denied  { read write } for  pid=12312 comm="syz.8.3674" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  127.787339][T12313] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.808253][T12313] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.825823][   T29] audit: type=1400 audit(1733741423.270:4626): avc:  denied  { open } for  pid=12312 comm="syz.8.3674" path="/dev/raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  127.849394][   T29] audit: type=1400 audit(1733741423.270:4627): avc:  denied  { ioctl } for  pid=12312 comm="syz.8.3674" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  127.978220][T12326] vxlan1: entered promiscuous mode
[  127.983438][T12326] vxlan1: entered allmulticast mode
[  128.090344][   T29] audit: type=1400 audit(1733741423.570:4628): avc:  denied  { create } for  pid=12331 comm="syz.7.3681" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  128.117569][T12337] pim6reg1: entered promiscuous mode
[  128.122898][T12337] pim6reg1: entered allmulticast mode
[  128.162648][   T29] audit: type=1400 audit(1733741423.610:4629): avc:  denied  { connect } for  pid=12331 comm="syz.7.3681" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  128.212599][   T29] audit: type=1326 audit(1733741423.660:4630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12342 comm="syz.7.3686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  128.236217][   T29] audit: type=1326 audit(1733741423.660:4631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12342 comm="syz.7.3686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  128.259697][   T29] audit: type=1326 audit(1733741423.660:4632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12342 comm="syz.7.3686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  128.283271][   T29] audit: type=1326 audit(1733741423.660:4633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12342 comm="syz.7.3686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  128.306774][   T29] audit: type=1326 audit(1733741423.660:4634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12342 comm="syz.7.3686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  128.561828][T12371] netdevsim netdevsim8 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  128.570244][T12371] netdevsim netdevsim8 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  128.578577][T12371] netdevsim netdevsim8 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  128.586877][T12371] netdevsim netdevsim8 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  128.597582][T12375] loop3: detected capacity change from 0 to 128
[  128.605492][T12371] vxlan0: entered promiscuous mode
[  128.610633][T12371] vxlan0: entered allmulticast mode
[  128.617218][T12371] netdevsim netdevsim8 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  128.625613][T12371] netdevsim netdevsim8 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  128.633998][T12371] netdevsim netdevsim8 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  128.642389][T12371] netdevsim netdevsim8 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  128.949517][T12402] bpf_get_probe_write_proto: 14 callbacks suppressed
[  128.949535][T12402] syz.5.3713[12402] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  128.964292][T12402] syz.5.3713[12402] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  128.989748][T12402] syz.5.3713[12402] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.289109][T12412] loop5: detected capacity change from 0 to 2048
[  129.351702][T12418] loop8: detected capacity change from 0 to 256
[  129.359003][T12412] EXT4-fs mount: 42 callbacks suppressed
[  129.359018][T12412] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.416872][T12427] bridge0: port 3(vlan2) entered blocking state
[  129.423301][T12427] bridge0: port 3(vlan2) entered disabled state
[  129.430154][T12427] vlan2: entered allmulticast mode
[  129.434315][T12418] FAT-fs (loop8): Directory bread(block 64) failed
[  129.442254][T12418] FAT-fs (loop8): Directory bread(block 65) failed
[  129.442384][T12427] vlan2: left allmulticast mode
[  129.448926][T12418] FAT-fs (loop8): Directory bread(block 66) failed
[  129.460464][T12418] FAT-fs (loop8): Directory bread(block 67) failed
[  129.470688][T12418] FAT-fs (loop8): Directory bread(block 68) failed
[  129.482810][T12418] FAT-fs (loop8): Directory bread(block 69) failed
[  129.489401][T12418] FAT-fs (loop8): Directory bread(block 70) failed
[  129.496638][T12418] FAT-fs (loop8): Directory bread(block 71) failed
[  129.503242][T12418] FAT-fs (loop8): Directory bread(block 72) failed
[  129.512816][T12418] FAT-fs (loop8): Directory bread(block 73) failed
[  129.524121][T12429] atomic_op ffff888117c5e928 conn xmit_atomic 0000000000000000
[  129.542771][T12418] syz.8.3715: attempt to access beyond end of device
[  129.542771][T12418] loop8: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  129.615501][T12418] syz.8.3715: attempt to access beyond end of device
[  129.615501][T12418] loop8: rw=0, sector=1736, nr_sectors = 8 limit=256
[  129.694609][T12435] IPv6: NLM_F_CREATE should be specified when creating new route
[  129.864357][T12450] xt_hashlimit: size too large, truncated to 1048576
[  130.002273][   T40] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  130.038406][T12464] loop3: detected capacity change from 0 to 256
[  130.046593][   T40] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  130.058920][   T40] EXT4-fs (loop5): This should not happen!! Data will be lost
[  130.058920][   T40] 
[  130.068610][   T40] EXT4-fs (loop5): Total free blocks count 0
[  130.074589][   T40] EXT4-fs (loop5): Free/Dirty block details
[  130.080681][   T40] EXT4-fs (loop5): free_blocks=2415919104
[  130.086485][   T40] EXT4-fs (loop5): dirty_blocks=8224
[  130.091848][   T40] EXT4-fs (loop5): Block reservation details
[  130.097946][   T40] EXT4-fs (loop5): i_reserved_data_blocks=514
[  130.112636][   T40] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  130.164135][T12464] FAT-fs (loop3): Directory bread(block 64) failed
[  130.195611][T12464] FAT-fs (loop3): Directory bread(block 65) failed
[  130.202560][T12464] FAT-fs (loop3): Directory bread(block 66) failed
[  130.213998][T12464] FAT-fs (loop3): Directory bread(block 67) failed
[  130.227314][T12464] FAT-fs (loop3): Directory bread(block 68) failed
[  130.241968][T12464] FAT-fs (loop3): Directory bread(block 69) failed
[  130.256861][T12464] FAT-fs (loop3): Directory bread(block 70) failed
[  130.270918][T12464] FAT-fs (loop3): Directory bread(block 71) failed
[  130.279916][T12464] FAT-fs (loop3): Directory bread(block 72) failed
[  130.288574][T12464] FAT-fs (loop3): Directory bread(block 73) failed
[  130.311412][T12464] syz.3.3739: attempt to access beyond end of device
[  130.311412][T12464] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  130.327737][T12464] syz.3.3739: attempt to access beyond end of device
[  130.327737][T12464] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[  130.807521][T12500] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3755'.
[  130.906509][T12510] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3760'.
[  131.094636][T12519] hub 6-0:1.0: USB hub found
[  131.100771][T12519] hub 6-0:1.0: 8 ports detected
[  131.192746][T12545] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  131.266053][T12553] af_packet: tpacket_rcv: packet too big, clamped from 126 to 4294967286. macoff=82
[  131.556762][T12594] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3799'.
[  131.608382][T12597] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3800'.
[  131.670241][T12605] SELinux: security_context_str_to_sid (u) failed with errno=-22
[  131.741313][T12609] rdma_op ffff88810f624980 conn xmit_rdma 0000000000000000
[  131.752731][T12611] bridge0: port 1(vlan2) entered blocking state
[  131.759064][T12611] bridge0: port 1(vlan2) entered disabled state
[  131.787053][T12611] vlan2: entered allmulticast mode
[  131.803853][T12611] vlan2: left allmulticast mode
[  131.954415][T12622] loop8: detected capacity change from 0 to 2048
[  131.967556][T12622] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.369684][T12635] loop3: detected capacity change from 0 to 512
[  132.387559][  T174] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  132.420224][T12635] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.3817: corrupted in-inode xattr: invalid ea_ino
[  132.435717][T12635] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.3817: couldn't read orphan inode 15 (err -117)
[  132.458192][  T174] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  132.470469][  T174] EXT4-fs (loop8): This should not happen!! Data will be lost
[  132.470469][  T174] 
[  132.480189][  T174] EXT4-fs (loop8): Total free blocks count 0
[  132.486254][  T174] EXT4-fs (loop8): Free/Dirty block details
[  132.492162][  T174] EXT4-fs (loop8): free_blocks=2415919104
[  132.497928][  T174] EXT4-fs (loop8): dirty_blocks=8224
[  132.503218][  T174] EXT4-fs (loop8): Block reservation details
[  132.509212][  T174] EXT4-fs (loop8): i_reserved_data_blocks=514
[  132.549613][T12635] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.591180][  T174] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  132.611555][T12645] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3824'.
[  132.622220][T12645] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3824'.
[  132.641406][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.854417][T12654] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.861683][T12654] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.944857][T12654] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  132.968450][   T29] kauditd_printk_skb: 183 callbacks suppressed
[  132.968465][   T29] audit: type=1326 audit(1733741428.450:4818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  132.998667][T12654] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  133.060733][T12654] netdevsim netdevsim8 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  133.069253][T12654] netdevsim netdevsim8 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  133.077710][T12654] netdevsim netdevsim8 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  133.086099][T12654] netdevsim netdevsim8 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  133.094500][   T29] audit: type=1326 audit(1733741428.490:4819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.118103][   T29] audit: type=1326 audit(1733741428.520:4820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.141790][   T29] audit: type=1326 audit(1733741428.520:4821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.165449][   T29] audit: type=1326 audit(1733741428.540:4822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.189264][   T29] audit: type=1326 audit(1733741428.570:4823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.212769][   T29] audit: type=1326 audit(1733741428.570:4824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.278655][   T29] audit: type=1326 audit(1733741428.760:4825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.302196][   T29] audit: type=1326 audit(1733741428.760:4826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.369862][   T29] audit: type=1326 audit(1733741428.820:4827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12658 comm="syz.7.3826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf4ffefed9 code=0x7ffc0000
[  133.415272][T12667] bridge0: port 1(vlan2) entered blocking state
[  133.421719][T12667] bridge0: port 1(vlan2) entered disabled state
[  133.455560][T12667] vlan2: entered allmulticast mode
[  133.485855][T12667] vlan2: left allmulticast mode
[  133.720228][T12693] Process accounting resumed
[  133.966461][T12720] loop8: detected capacity change from 0 to 512
[  133.985929][T12720] EXT4-fs: Ignoring removed orlov option
[  134.005575][T12720] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  134.025187][T12722] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3854'.
[  134.034226][T12722] netlink: 'syz.3.3854': attribute type 7 has an invalid length.
[  134.042055][T12722] netlink: 'syz.3.3854': attribute type 8 has an invalid length.
[  134.049958][T12722] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3854'.
[  134.069890][T12724] lo speed is unknown, defaulting to 1000
[  134.075904][T12720] EXT4-fs (loop8): 1 orphan inode deleted
[  134.081673][T12720] EXT4-fs (loop8): 1 truncate cleaned up
[  134.096146][T12724] lo speed is unknown, defaulting to 1000
[  134.102298][T12720] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.118656][T12724] lo speed is unknown, defaulting to 1000
[  134.229483][T12724] infiniband s
z1: set active
[  134.234202][T12724] infiniband s
z1: added lo
[  134.238954][   T35] lo speed is unknown, defaulting to 1000
[  134.245484][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.290649][T12724] RDS/IB: s
z1: added
[  134.294746][T12724] smc: adding ib device s
z1 with port count 1
[  134.316055][T12724] smc:    ib device s
z1 port 1 has pnetid 
[  134.322047][   T35] lo speed is unknown, defaulting to 1000
[  134.332785][T12724] lo speed is unknown, defaulting to 1000
[  134.466038][T12724] lo speed is unknown, defaulting to 1000
[  134.586178][T12724] lo speed is unknown, defaulting to 1000
[  134.594240][T12742] loop3: detected capacity change from 0 to 1024
[  134.625288][T12742] EXT4-fs: Ignoring removed orlov option
[  134.631193][T12742] EXT4-fs: Ignoring removed nomblk_io_submit option
[  134.673513][T12724] lo speed is unknown, defaulting to 1000
[  134.690074][T12742] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8843c118, mo2=0002]
[  134.736331][T12742] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.756743][T12724] lo speed is unknown, defaulting to 1000
[  134.789005][T12724] lo speed is unknown, defaulting to 1000
[  134.819712][T12724] lo speed is unknown, defaulting to 1000
[  134.851609][T12724] lo speed is unknown, defaulting to 1000
[  134.886729][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.942785][T12756] loop3: detected capacity change from 0 to 512
[  134.971823][T12756] EXT4-fs: Ignoring removed mblk_io_submit option
[  134.998972][T12756] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.051508][T12760] loop7: detected capacity change from 0 to 512
[  135.063809][T12754] loop5: detected capacity change from 0 to 8192
[  135.092853][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.114915][T12760] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.132267][T12760] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.143052][T12754]  loop5: p1 p2 p3
[  135.148509][T12754] loop5: p1 size 3523149824 extends beyond EOD, truncated
[  135.171360][T12754] loop5: p2 size 117440512 extends beyond EOD, truncated
[  135.185960][T12754] loop5: p3 start 4294901760 is beyond EOD, truncated
[  135.197882][T12765] program syz.3.3871 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  135.207468][T12765] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  135.295223][T10646] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.692843][T12795] loop5: detected capacity change from 0 to 512
[  135.716262][T12795] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.3884: iget: bad extended attribute block 1
[  135.751566][T12795] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.3884: couldn't read orphan inode 15 (err -117)
[  135.784329][T12795] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.846361][T12795] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  135.946426][ T4599] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.014460][T12805] loop5: detected capacity change from 0 to 2048
[  136.052773][T12807] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3890'.
[  136.076935][T12807] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3890'.
[  136.094512][T12809] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12809 comm=syz.3.3889
[  136.108632][T12805] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.117771][T12809] netlink: 'syz.3.3889': attribute type 1 has an invalid length.
[  136.154545][T12805] EXT4-fs: Ignoring removed orlov option
[  136.176087][T12805] EXT4-fs (loop5): can't enable nombcache during remount
[  136.230266][T12809] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.242295][ T4599] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.259051][T12809] bond3: (slave batadv0): making interface the new active one
[  136.289404][T12809] bond3: (slave batadv0): Enslaving as an active interface with an up link
[  136.346546][T12832] netlink: 132 bytes leftover after parsing attributes in process `syz.8.3899'.
[  136.656887][T12862] netlink: 132 bytes leftover after parsing attributes in process `syz.5.3914'.
[  136.890586][T12880] IPVS: Error connecting to the multicast addr
[  136.990406][T12886] loop5: detected capacity change from 0 to 4096
[  137.011411][T12886] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.030316][T12892] loop3: detected capacity change from 0 to 2048
[  137.054308][ T4599] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.078305][T12899] syz.7.3931[12899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  137.078374][T12899] syz.7.3931[12899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  137.099010][T12899] syz.7.3931[12899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  137.116647][T12892] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.241970][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.458838][T12930] loop5: detected capacity change from 0 to 128
[  137.472920][T12922] bond1: (slave ip6gretap1): Releasing active interface
[  137.486614][T12930] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  137.494479][T12930] FAT-fs (loop5): Filesystem has been set read-only
[  137.501418][T12930] syz.5.3943: attempt to access beyond end of device
[  137.501418][T12930] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  137.526925][T12922] bond3: (slave batadv0): Releasing active interface
[  137.541298][T12930] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  137.549217][T12930] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  137.558750][T12930] syz.5.3943: attempt to access beyond end of device
[  137.558750][T12930] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  137.582223][T12930] syz.5.3943: attempt to access beyond end of device
[  137.582223][T12930] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  137.692674][T12935] loop8: detected capacity change from 0 to 8192
[  137.745913][T12935]  loop8: p1 p2 p3
[  137.750010][T12935] loop8: p1 size 3523149824 extends beyond EOD, truncated
[  137.766129][T12935] loop8: p2 size 117440512 extends beyond EOD, truncated
[  137.776658][T12935] loop8: p3 start 4294901760 is beyond EOD, truncated
[  138.052986][   T29] kauditd_printk_skb: 174 callbacks suppressed
[  138.053044][   T29] audit: type=1400 audit(1733741433.530:5002): avc:  denied  { write } for  pid=12962 comm="syz.2.3960" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  138.116305][T12967] loop8: detected capacity change from 0 to 128
[  138.139097][   T29] audit: type=1400 audit(1733741433.610:5003): avc:  denied  { watch watch_reads } for  pid=12966 comm="syz.8.3961" path="/195/file1" dev="loop8" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  138.213369][T12973] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3964'.
[  138.273142][T12975] loop8: detected capacity change from 0 to 512
[  138.289964][T12975] EXT4-fs: Ignoring removed oldalloc option
[  138.320701][   T29] audit: type=1326 audit(1733741433.790:5004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.3.3975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  138.344279][   T29] audit: type=1326 audit(1733741433.790:5005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.3.3975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  138.347734][T12975] EXT4-fs error (device loop8): ext4_xattr_inode_iget:436: comm syz.8.3965: Parent and EA inode have the same ino 15
[  138.367898][   T29] audit: type=1326 audit(1733741433.790:5006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.3.3975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  138.413751][T12979] loop3: detected capacity change from 0 to 2048
[  138.423936][   T29] audit: type=1326 audit(1733741433.890:5007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.3.3975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  138.447599][   T29] audit: type=1326 audit(1733741433.890:5008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.3.3975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  138.466426][T12975] EXT4-fs (loop8): Remounting filesystem read-only
[  138.471250][   T29] audit: type=1326 audit(1733741433.890:5009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.3.3975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  138.477692][T12975] EXT4-fs warning (device loop8): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  138.501000][   T29] audit: type=1326 audit(1733741433.890:5010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.3.3975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  138.534836][   T29] audit: type=1326 audit(1733741433.890:5011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12976 comm="syz.3.3975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  138.568162][T12975] EXT4-fs (loop8): 1 orphan inode deleted
[  138.575740][T12975] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.586509][T12979] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.588080][T12975] SELinux: (dev loop8, type ext4) getxattr errno 5
[  138.608600][T12975] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.717782][T12995] loop5: detected capacity change from 0 to 512
[  138.747636][T12995] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.761449][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.766344][T12995] ext4 filesystem being mounted at /655/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  138.770845][T13001] sctp: [Deprecated]: syz.8.3969 (pid 13001) Use of struct sctp_assoc_value in delayed_ack socket option.
[  138.770845][T13001] Use struct sctp_sack_info instead
[  138.832581][T12995] vhci_hcd: default hub control req: ff03 v0010 i0005 l5
[  138.892740][ T4599] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.962335][T13016] loop5: detected capacity change from 0 to 512
[  139.027020][T13016] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.3978: corrupted in-inode xattr: invalid ea_ino
[  139.041340][T13016] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.3978: couldn't read orphan inode 15 (err -117)
[  139.054873][T13016] EXT4-fs (loop5): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.081228][ T4599] EXT4-fs (loop5): unmounting filesystem 00000007-0000-0000-0000-000000000000.
[  139.127085][T13030] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3987'.
[  139.140123][T13030] all: renamed from erspan0 (while UP)
[  139.285071][T13038] loop5: detected capacity change from 0 to 512
[  139.305709][T13038] journal_path: Lookup failure for './file0'
[  139.311735][T13038] EXT4-fs: error: could not find journal device path
[  139.625312][T13063] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13063 comm=syz.2.4002
[  139.678624][T13063] netlink: 'syz.2.4002': attribute type 1 has an invalid length.
[  139.708916][T13063] 8021q: adding VLAN 0 to HW filter on device batadv0
[  139.716749][T13063] bond4: (slave batadv0): making interface the new active one
[  139.724918][T13063] bond4: (slave batadv0): Enslaving as an active interface with an up link
[  139.755295][T13067] loop3: detected capacity change from 0 to 8192
[  139.777745][T13084] IPv6: Can't replace route, no match found
[  139.795890][T13067]  loop3: p1 p2 p3
[  139.799753][T13067] loop3: p1 size 3523149824 extends beyond EOD, truncated
[  139.818717][T13067] loop3: p2 size 117440512 extends beyond EOD, truncated
[  139.826540][T13067] loop3: p3 start 4294901760 is beyond EOD, truncated
[  139.845057][T13087] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4011'.
[  140.012178][T13106] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13106 comm=syz.8.4019
[  140.055518][T13106] netlink: 'syz.8.4019': attribute type 1 has an invalid length.
[  140.098774][T13109] netem: change failed
[  140.123435][T13106] 8021q: adding VLAN 0 to HW filter on device batadv1
[  140.146834][T13106] bond1: (slave batadv1): making interface the new active one
[  140.198395][T13106] bond1: (slave batadv1): Enslaving as an active interface with an up link
[  140.244105][T13113] vhci_hcd: default hub control req: ff03 v0010 i0005 l5
[  140.283493][T13121] loop7: detected capacity change from 0 to 164
[  140.318680][T13121] Unable to read rock-ridge attributes
[  140.354283][T13121] Unable to read rock-ridge attributes
[  140.658389][T13158] loop8: detected capacity change from 0 to 512
[  140.708970][T13158] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.732005][T13158] ext4 filesystem being mounted at /209/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  140.782248][T13158] vhci_hcd: default hub control req: ff03 v0010 i0005 l5
[  140.813270][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.270692][T13230] loop3: detected capacity change from 0 to 512
[  141.282926][T13232] netlink: 56 bytes leftover after parsing attributes in process `syz.5.4050'.
[  141.291985][T13232] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4050'.
[  141.297894][T13230] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.325357][T13230] ext4 filesystem being mounted at /831/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  141.426853][T13244] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4052'.
[  141.437022][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.495156][T13251] program syz.3.4053 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  141.524715][T13251] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  141.615856][T13279] loop5: detected capacity change from 0 to 512
[  141.716269][T13279] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.757190][T13279] ext4 filesystem being mounted at /670/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  141.775690][T13300] Falling back ldisc for ttyS3.
[  141.878202][T13350] loop7: detected capacity change from 0 to 512
[  141.885662][ T4599] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.886214][T13350] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  142.132452][T13384] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13384 comm=syz.7.4071
[  142.215804][T13384] netlink: 'syz.7.4071': attribute type 1 has an invalid length.
[  142.251510][T13384] 8021q: adding VLAN 0 to HW filter on device bond1
[  142.283591][T13384] bond1: (slave gretap1): making interface the new active one
[  142.292421][T13384] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  142.336756][T13402] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4079'.
[  142.376870][T13407] loop8: detected capacity change from 0 to 128
[  142.385654][T13407] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  142.399751][T13407] ext4 filesystem being mounted at /222/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  142.431102][T13413] loop7: detected capacity change from 0 to 512
[  142.443916][T10694] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  142.457991][T13413] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.471635][T13413] ext4 filesystem being mounted at /173/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  142.580628][T13420] ebtables: ebtables: counters copy to user failed while replacing table
[  142.602452][T13413] vhci_hcd: default hub control req: ff03 v0010 i0005 l5
[  142.626599][T10646] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.669775][T13429] Unknown options in mask 5
[  142.705318][T13430] loop7: detected capacity change from 0 to 128
[  142.725264][T13434] loop8: detected capacity change from 0 to 512
[  142.761839][T13434] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.810123][T13434] ext4 filesystem being mounted at /226/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  142.908350][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.042052][T13451] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  143.055835][   T29] kauditd_printk_skb: 309 callbacks suppressed
[  143.055848][   T29] audit: type=1400 audit(1733741438.530:5321): avc:  denied  { ioctl } for  pid=13447 comm="syz.7.4098" path="socket:[38535]" dev="sockfs" ino=38535 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  143.125124][   T29] audit: type=1400 audit(1733741438.570:5322): avc:  denied  { write } for  pid=13447 comm="syz.7.4098" name="kcm" dev="proc" ino=4026533695 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  143.200975][   T29] audit: type=1400 audit(1733741438.680:5323): avc:  denied  { create } for  pid=13456 comm="syz.8.4102" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  143.228376][   T29] audit: type=1326 audit(1733741438.700:5324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13456 comm="syz.8.4102" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f72fa9bfed9 code=0x0
[  143.274185][T13459] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13459 comm=syz.5.4112
[  143.287920][T13459] netlink: 'syz.5.4112': attribute type 1 has an invalid length.
[  143.301695][T13459] 8021q: adding VLAN 0 to HW filter on device bond3
[  143.345918][T13459] bond3: (slave gretap1): making interface the new active one
[  143.356623][T13459] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  143.620909][   T29] audit: type=1326 audit(1733741439.100:5325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13466 comm="syz.3.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  143.671453][   T29] audit: type=1326 audit(1733741439.100:5326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13466 comm="syz.3.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  143.695013][   T29] audit: type=1326 audit(1733741439.130:5327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13466 comm="syz.3.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  143.718425][   T29] audit: type=1326 audit(1733741439.130:5328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13466 comm="syz.3.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  143.742125][   T29] audit: type=1326 audit(1733741439.130:5329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13466 comm="syz.3.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  143.765796][   T29] audit: type=1326 audit(1733741439.130:5330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13466 comm="syz.3.4105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  143.936204][T13489] netlink: 224 bytes leftover after parsing attributes in process `syz.3.4111'.
[  143.945404][T13489] netlink: 72 bytes leftover after parsing attributes in process `syz.3.4111'.
[  144.046873][T13505] loop8: detected capacity change from 0 to 128
[  144.154536][T13523] SELinux:  Context system_u:object_r:system_dbusd_var_run_t:s0 is not valid (left unmapped).
[  144.169441][T13517] netlink: 'syz.7.4119': attribute type 1 has an invalid length.
[  144.177228][T13517] netlink: 224 bytes leftover after parsing attributes in process `syz.7.4119'.
[  144.244178][T13531] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  144.301404][T13531] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  144.371942][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.379454][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.386968][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.416216][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.423696][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.431136][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.438591][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.446020][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.453416][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.460906][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.468323][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.475771][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.483240][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.490669][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.518056][T13558] netlink: 112865 bytes leftover after parsing attributes in process `syz.2.4131'.
[  144.537173][T13558] netlink: 18430 bytes leftover after parsing attributes in process `syz.2.4131'.
[  144.665115][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.672690][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.680188][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.687627][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.695041][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.702462][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.709923][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.717379][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.724770][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.732226][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.739673][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.747156][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.754543][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.761980][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.769411][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.776830][ T3361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  144.876411][ T3361] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  145.139414][T13644] x_tables: duplicate underflow at hook 2
[  145.261843][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.269395][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.276859][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.285904][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.293323][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.300784][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.308249][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.315672][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.323199][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.330659][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.338144][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.345588][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.352977][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.360436][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.368075][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.375536][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.382954][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.390437][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.397972][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.405369][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.412977][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.420410][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.427834][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.435287][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.442764][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.450301][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.457724][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.465194][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.472639][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.480072][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  145.492233][ T3375] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  145.568106][T13662] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4158'.
[  145.877810][T13679] netlink: 'syz.5.4165': attribute type 1 has an invalid length.
[  145.885695][T13679] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4165'.
[  145.925117][T13677] gretap0: entered promiscuous mode
[  145.930642][T13677] vlan2: entered promiscuous mode
[  146.116615][T13693] loop5: detected capacity change from 0 to 512
[  146.135824][T13693] EXT4-fs: Mount option(s) incompatible with ext2
[  146.181326][T13698] netlink: 'syz.7.4175': attribute type 29 has an invalid length.
[  146.236767][T13698] netlink: 'syz.7.4175': attribute type 29 has an invalid length.
[  146.252411][T13705] netlink: 'syz.8.4179': attribute type 1 has an invalid length.
[  146.260231][T13705] netlink: 36 bytes leftover after parsing attributes in process `syz.8.4179'.
[  146.299037][T13698] netlink: 500 bytes leftover after parsing attributes in process `syz.7.4175'.
[  146.308191][T13698] unsupported nla_type 40
[  146.343004][T13709] netlink: 108 bytes leftover after parsing attributes in process `syz.2.4181'.
[  146.402454][T13715] loop7: detected capacity change from 0 to 1024
[  146.419367][T13715] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.586753][T13715] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2793: inode #14: comm syz.7.4184: corrupted in-inode xattr: bad magic number in in-inode xattr
[  146.631545][T13715] EXT4-fs error (device loop7): ext4_clear_blocks:876: inode #14: comm syz.7.4184: attempt to clear invalid blocks 1634560256 len 1
[  146.647794][T13736] vlan2: entered promiscuous mode
[  146.652858][T13736] gretap0: entered promiscuous mode
[  146.742015][T13745] syz.2.4197[13745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.742120][T13745] syz.2.4197[13745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.772493][T13747] loop5: detected capacity change from 0 to 256
[  146.811218][T10646] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.822162][T13745] syz.2.4197[13745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.917848][T13759] loop7: detected capacity change from 0 to 512
[  146.967941][T13759] EXT4-fs: Mount option(s) incompatible with ext2
[  147.043985][T13772] Invalid ELF header magic: != ELF
[  147.246584][T13785] loop8: detected capacity change from 0 to 512
[  147.280612][T13785] EXT4-fs error (device loop8): ext4_orphan_get:1415: comm syz.8.4213: bad orphan inode 13
[  147.339740][T13785] ext4_test_bit(bit=12, block=4) = 1
[  147.345186][T13785] is_bad_inode(inode)=0
[  147.349529][T13785] NEXT_ORPHAN(inode)=0
[  147.353631][T13785] max_ino=32
[  147.356892][T13785] i_nlink=1
[  147.392561][T13785] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.413672][T13785] EXT4-fs warning (device loop8): dx_probe:833: inode #2: comm syz.8.4213: Unrecognised inode hash code 20
[  147.425183][T13785] EXT4-fs warning (device loop8): dx_probe:966: inode #2: comm syz.8.4213: Corrupt directory, running e2fsck is recommended
[  147.434646][T13805] bridge_slave_0: left allmulticast mode
[  147.439899][T13785] EXT4-fs error (device loop8): ext4_readdir:261: inode #2: block 13: comm syz.8.4213: path /242/file0: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  147.443714][T13805] bridge_slave_0: left promiscuous mode
[  147.443817][T13805] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.495550][T13785] EXT4-fs error (device loop8): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.8.4213: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  147.496348][T13805] bridge_slave_1: left allmulticast mode
[  147.521074][T13805] bridge_slave_1: left promiscuous mode
[  147.526860][T13805] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.558161][T13805] bond0: (slave bond_slave_0): Releasing backup interface
[  147.577869][T13805] bond0: (slave bond_slave_1): Releasing backup interface
[  147.600651][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.662942][T13805] team0: Port device team_slave_0 removed
[  147.736877][T13805] team0: Port device team_slave_1 removed
[  147.761925][T13805] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.769525][T13805] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.824311][T13805] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.831934][T13805] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.939434][T13805] bond1: (slave gretap1): Releasing active interface
[  147.994631][T13821] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  148.242178][   T29] kauditd_printk_skb: 235 callbacks suppressed
[  148.242191][   T29] audit: type=1400 audit(1733741443.720:5566): avc:  denied  { bind } for  pid=13901 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  148.311135][T13910] syz.2.4231[13910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  148.311283][T13910] syz.2.4231[13910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  148.340530][T13910] syz.2.4231[13910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  148.355161][   T29] audit: type=1326 audit(1733741443.830:5567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13905 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  148.389634][   T29] audit: type=1326 audit(1733741443.830:5568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13905 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  148.412709][   T29] audit: type=1400 audit(1733741443.840:5569): avc:  denied  { create } for  pid=13909 comm="syz.2.4231" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  148.432402][   T29] audit: type=1400 audit(1733741443.840:5570): avc:  denied  { write } for  pid=13909 comm="syz.2.4231" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  148.451898][   T29] audit: type=1326 audit(1733741443.880:5571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13905 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  148.474799][   T29] audit: type=1326 audit(1733741443.880:5572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13905 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  148.497831][   T29] audit: type=1326 audit(1733741443.880:5573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13905 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  148.520819][   T29] audit: type=1326 audit(1733741443.880:5574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13905 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  148.543791][   T29] audit: type=1326 audit(1733741443.880:5575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13905 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  148.736454][T13948] xt_hashlimit: max too large, truncated to 1048576
[  148.743717][T13948] Cannot find set identified by id 0 to match
[  148.848000][T13956] loop5: detected capacity change from 0 to 1024
[  148.862145][T13956] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  148.884360][T13956] JBD2: no valid journal superblock found
[  148.890170][T13956] EXT4-fs (loop5): Could not load journal inode
[  148.957418][T13973] loop5: detected capacity change from 0 to 1024
[  148.965066][T13973] EXT4-fs: test_dummy_encryption option not supported
[  148.976937][ T3361] kernel write not supported for file /snd/seq (pid: 3361 comm: kworker/0:2)
[  149.093595][T13995] __nla_validate_parse: 2 callbacks suppressed
[  149.093609][T13995] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4249'.
[  149.262711][T14008] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4252'.
[  149.637793][T14062] loop3: detected capacity change from 0 to 1024
[  149.674254][T14062] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.710401][T14058] lo speed is unknown, defaulting to 1000
[  149.740215][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.823328][T14058] chnl_net:caif_netlink_parms(): no params data found
[  149.860424][T14058] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.867626][T14058] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.876852][T14058] bridge_slave_0: entered allmulticast mode
[  149.883466][T14058] bridge_slave_0: entered promiscuous mode
[  149.890462][T14058] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.897640][T14058] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.905869][T14058] bridge_slave_1: entered allmulticast mode
[  149.912222][T14058] bridge_slave_1: entered promiscuous mode
[  149.929935][T14058] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.941155][T14058] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.962748][T14058] team0: Port device team_slave_0 added
[  149.978100][T14058] team0: Port device team_slave_1 added
[  150.026572][T14058] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.033539][T14058] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.059635][T14058] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.079291][T14058] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.086381][T14058] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.112501][T14058] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  150.151042][T14058] hsr_slave_0: entered promiscuous mode
[  150.159693][T14058] hsr_slave_1: entered promiscuous mode
[  150.165714][T14058] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  150.178825][T14058] Cannot create hsr debugfs directory
[  150.310591][T14058] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  150.331818][T14058] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  150.359128][T14058] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  150.376432][T14058] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  150.386148][T14101] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4269'.
[  150.468665][T14058] 8021q: adding VLAN 0 to HW filter on device bond0
[  150.495151][T14058] 8021q: adding VLAN 0 to HW filter on device team0
[  150.512810][T13277] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.519910][T13277] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.550896][T13277] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.558077][T13277] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.698210][T14058] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.721539][T14129] loop3: detected capacity change from 0 to 512
[  150.756754][T14129] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.787495][T14134] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4282'.
[  150.800576][T14129] ext4 filesystem being mounted at /872/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.856455][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.029949][T14058] veth0_vlan: entered promiscuous mode
[  151.053440][T14058] veth1_vlan: entered promiscuous mode
[  151.061077][T14156] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  151.074113][T14156] SELinux: failed to load policy
[  151.089624][T14058] veth0_macvtap: entered promiscuous mode
[  151.105931][T14058] veth1_macvtap: entered promiscuous mode
[  151.131171][T14058] batman_adv: batadv0: Interface activated: batadv_slave_0
[  151.147171][T14163] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4290'.
[  151.160259][T14058] batman_adv: batadv0: Interface activated: batadv_slave_1
[  151.174002][T14058] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  151.182879][T14058] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  151.191732][T14058] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  151.200501][T14058] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  151.240608][T14167] loop7: detected capacity change from 0 to 1024
[  151.275198][T14167] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  151.315688][T14167] JBD2: no valid journal superblock found
[  151.321468][T14167] EXT4-fs (loop7): Could not load journal inode
[  151.507038][T14182] syz.9.4297[14182] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.507165][T14182] syz.9.4297[14182] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.525205][T14182] syz.9.4297[14182] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.552466][T14185] block device autoloading is deprecated and will be removed.
[  151.582655][T14185] syz.8.4307: attempt to access beyond end of device
[  151.582655][T14185] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  151.651895][T14186] siw: device registration error -23
[  151.664136][T14192] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4301'.
[  151.721233][T14196] loop8: detected capacity change from 0 to 128
[  151.738016][T14196] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  151.763933][T14196] ext4 filesystem being mounted at /251/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.808256][T10694] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  152.023517][T14234] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4319'.
[  152.088220][T14242] dvmrp0: entered allmulticast mode
[  152.103619][T14244] loop8: detected capacity change from 0 to 512
[  152.112403][T14242] dvmrp0: left allmulticast mode
[  152.135005][T14244] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.147703][T14244] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.171454][T14244] EXT4-fs error (device loop8): ext4_xattr_block_get:596: inode #15: comm syz.8.4326: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  152.202674][T14244] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop8 ino=15
[  152.219572][T14244] EXT4-fs error (device loop8): ext4_xattr_block_get:596: inode #15: comm syz.8.4326: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  152.238158][T14244] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop8 ino=15
[  152.249245][T14244] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.4326: bg 0: block 18: invalid block bitmap
[  152.305818][T14244] EXT4-fs error (device loop8): ext4_acquire_dquot:6938: comm syz.8.4326: Failed to acquire dquot type 1
[  152.347360][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.938490][T14314] devtmpfs: Unknown parameter 'mo'
[  153.010710][T14318] veth1_macvtap: left promiscuous mode
[  153.016343][T14318] macsec0: entered promiscuous mode
[  153.254136][   T29] kauditd_printk_skb: 205 callbacks suppressed
[  153.254149][   T29] audit: type=1400 audit(1733741448.730:5779): avc:  denied  { write } for  pid=14336 comm="syz.2.4348" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  153.286088][T14337] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4348'.
[  153.294657][   T29] audit: type=1400 audit(1733741448.760:5780): avc:  denied  { shutdown } for  pid=14334 comm="syz.7.4346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  153.294953][T14337] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4348'.
[  153.350223][   T29] audit: type=1400 audit(1733741448.810:5781): avc:  denied  { prog_run } for  pid=14341 comm="syz.3.4349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  153.411546][T14352] SELinux: syz.3.4353 (14352) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  153.452430][   T29] audit: type=1400 audit(1733741448.920:5782): avc:  denied  { setopt } for  pid=14354 comm="syz.7.4355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  153.498983][T14360] veth1_macvtap: left promiscuous mode
[  153.504640][T14360] macsec0: entered promiscuous mode
[  153.553979][T14369] loop9: detected capacity change from 0 to 512
[  153.581016][T14369] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  153.623546][T14369] EXT4-fs (loop9): 1 truncate cleaned up
[  153.626565][T14367] loop7: detected capacity change from 0 to 8192
[  153.648038][   T29] audit: type=1400 audit(1733741449.120:5783): avc:  denied  { map } for  pid=14370 comm="syz.8.4361" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=40419 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  153.649964][T14369] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.672353][   T29] audit: type=1400 audit(1733741449.120:5784): avc:  denied  { read write } for  pid=14370 comm="syz.8.4361" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=40419 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  153.793618][T14378] netlink: 'syz.2.4364': attribute type 3 has an invalid length.
[  153.891120][   T29] audit: type=1400 audit(1733741449.210:5785): avc:  denied  { mount } for  pid=14368 comm="syz.9.4360" name="/" dev="loop9" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  153.913061][   T29] audit: type=1400 audit(1733741449.260:5786): avc:  denied  { read } for  pid=14377 comm="syz.8.4363" name="qrtr-tun" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  153.936081][   T29] audit: type=1400 audit(1733741449.260:5787): avc:  denied  { open } for  pid=14377 comm="syz.8.4363" path="/dev/qrtr-tun" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  153.959545][   T29] audit: type=1400 audit(1733741449.270:5788): avc:  denied  { mount } for  pid=14366 comm="syz.7.4359" name="/" dev="loop7" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  154.081487][T14400] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4372'.
[  154.101847][T14400] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4372'.
[  154.490610][T14426] loop3: detected capacity change from 0 to 2048
[  154.508618][T14426] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.559013][T14433] loop8: detected capacity change from 0 to 164
[  154.604763][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.625189][T14433] iso9660: Corrupted directory entry in block 4 of inode 1792
[  154.903437][T14458] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  154.999670][T14465] loop8: detected capacity change from 0 to 1024
[  155.037736][T14465] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.120431][T14465] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  155.179726][T14465] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 32767 with max blocks 1 with error 28
[  155.192330][T14465] EXT4-fs (loop8): This should not happen!! Data will be lost
[  155.192330][T14465] 
[  155.202056][T14465] EXT4-fs (loop8): Total free blocks count 0
[  155.208063][T14465] EXT4-fs (loop8): Free/Dirty block details
[  155.214118][T14465] EXT4-fs (loop8): free_blocks=68451041280
[  155.220018][T14465] EXT4-fs (loop8): dirty_blocks=16
[  155.225127][T14465] EXT4-fs (loop8): Block reservation details
[  155.231130][T14465] EXT4-fs (loop8): i_reserved_data_blocks=1
[  155.280785][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.380697][T14500] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4402'.
[  155.412957][T14500] netlink: 24 bytes leftover after parsing attributes in process `syz.8.4402'.
[  155.494701][T14369] syz.9.4360 (14369) used greatest stack depth: 7184 bytes left
[  155.521206][T14058] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.556538][T14512] loop8: detected capacity change from 0 to 2048
[  155.588027][T14512] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.709646][T14512] EXT4-fs error (device loop8): ext4_read_inline_dir:1566: inode #12: block 9: comm syz.8.4407: path /282/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=24, inode=13, rec_len=21, size=80 fake=0
[  155.872267][T14540] loop3: detected capacity change from 0 to 2048
[  155.936007][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.976077][T14540]  loop3: p3 < > p4 < >
[  155.980284][T14540] loop3: partition table partially beyond EOD, truncated
[  156.024911][T14540] loop3: p3 start 4284289 is beyond EOD, truncated
[  156.050365][T14540] syz.3.4414[14540] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.050488][T14540] syz.3.4414[14540] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.062035][T14540] syz.3.4414[14540] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.097119][T14593] loop3: detected capacity change from 0 to 512
[  156.115471][T14593] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  156.144369][T14593] EXT4-fs (loop3): 1 truncate cleaned up
[  156.182768][T14593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.246785][T14610] netlink: 'syz.2.4421': attribute type 2 has an invalid length.
[  156.254555][T14610] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4421'.
[  156.449115][T14629] syz.8.4425[14629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.449193][T14629] syz.8.4425[14629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.500717][T14629] syz.8.4425[14629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  156.599023][T14642] loop8: detected capacity change from 0 to 512
[  156.622452][T14634] loop7: detected capacity change from 0 to 512
[  156.690879][T14642] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.704522][T14634] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  156.726636][T14642] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.743162][T14634] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  156.763901][T14634] System zones: 1-12
[  156.793471][T14634] EXT4-fs (loop7): 1 truncate cleaned up
[  157.026450][T14656] bond5: entered promiscuous mode
[  157.031646][T14656] bond5: entered allmulticast mode
[  157.068870][T14656] 8021q: adding VLAN 0 to HW filter on device bond5
[  157.104122][T14656] bond5 (unregistering): Released all slaves
[  157.230651][T14673] loop8: detected capacity change from 0 to 764
[  157.284676][T14676] IPVS: Error connecting to the multicast addr
[  157.679252][T14708] loop8: detected capacity change from 0 to 2048
[  157.701653][T14710] loop7: detected capacity change from 0 to 1024
[  157.726467][T14712] syz.2.4462[14712] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.726621][T14712] syz.2.4462[14712] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.768437][T14710] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  157.782036][T14712] syz.2.4462[14712] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.806099][T14708] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  157.847770][T14720] 9pnet: p9_errstr2errno: server reported unknown error 
[  157.856307][T14710] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 32767 with max blocks 1 with error 28
[  157.868980][T14710] EXT4-fs (loop7): This should not happen!! Data will be lost
[  157.868980][T14710] 
[  157.878657][T14710] EXT4-fs (loop7): Total free blocks count 0
[  157.884684][T14710] EXT4-fs (loop7): Free/Dirty block details
[  157.890694][T14710] EXT4-fs (loop7): free_blocks=68451041280
[  157.896637][T14710] EXT4-fs (loop7): dirty_blocks=16
[  157.901755][T14710] EXT4-fs (loop7): Block reservation details
[  157.907774][T14710] EXT4-fs (loop7): i_reserved_data_blocks=1
[  157.916093][T14708] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  157.928358][T14708] EXT4-fs (loop8): This should not happen!! Data will be lost
[  157.928358][T14708] 
[  157.938016][T14708] EXT4-fs (loop8): Total free blocks count 0
[  157.944000][T14708] EXT4-fs (loop8): Free/Dirty block details
[  157.949951][T14708] EXT4-fs (loop8): free_blocks=2415919104
[  157.955891][T14708] EXT4-fs (loop8): dirty_blocks=16
[  157.961083][T14708] EXT4-fs (loop8): Block reservation details
[  157.967131][T14708] EXT4-fs (loop8): i_reserved_data_blocks=1
[  158.129585][T14729] syz.8.4467[14729] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.309533][   T29] kauditd_printk_skb: 256 callbacks suppressed
[  158.309548][   T29] audit: type=1400 audit(1733741453.790:6045): avc:  denied  { write } for  pid=14738 comm="syz.3.4474" path="socket:[41308]" dev="sockfs" ino=41308 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  158.447935][T14746] loop3: detected capacity change from 0 to 512
[  158.565059][T14746] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.4478: iget: bad extended attribute block 1
[  158.579023][T14746] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.4478: couldn't read orphan inode 15 (err -117)
[  158.595416][T14746] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  158.596068][   T29] audit: type=1400 audit(1733741454.070:6046): avc:  denied  { ioctl } for  pid=14744 comm="syz.3.4478" path="/909/file0/cpu.stat" dev="loop3" ino=18 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  158.696490][   T29] audit: type=1400 audit(1733741454.160:6047): avc:  denied  { create } for  pid=14756 comm="syz.9.4483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  158.716037][   T29] audit: type=1400 audit(1733741454.160:6048): avc:  denied  { connect } for  pid=14756 comm="syz.9.4483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  158.735672][   T29] audit: type=1400 audit(1733741454.170:6049): avc:  denied  { write } for  pid=14755 comm="syz.7.4482" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  158.756042][   T29] audit: type=1400 audit(1733741454.170:6050): avc:  denied  { nlmsg_write } for  pid=14755 comm="syz.7.4482" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  158.781788][T14759] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  158.824724][   T29] audit: type=1400 audit(1733741454.300:6051): avc:  denied  { ioctl } for  pid=14764 comm="syz.2.4486" path="socket:[42063]" dev="sockfs" ino=42063 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  158.856336][T14766] 9pnet_fd: Insufficient options for proto=fd
[  158.868286][T14768] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[  158.901536][   T29] audit: type=1400 audit(1733741454.340:6052): avc:  denied  { mounton } for  pid=14756 comm="syz.9.4483" path="/43/file0" dev="tmpfs" ino=241 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  158.924555][   T29] audit: type=1400 audit(1733741454.350:6053): avc:  denied  { mac_admin } for  pid=14767 comm="syz.7.4487" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  158.945818][   T29] audit: type=1400 audit(1733741454.360:6054): avc:  denied  { relabelto } for  pid=14767 comm="syz.7.4487" name="cgroup.procs" dev="cgroup" ino=592 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:semanage_exec_t:s0"
[  159.076222][T14781] binfmt_misc: register: failed to install interpreter file ./file0
[  159.189870][T14786] loop3: detected capacity change from 0 to 512
[  159.214454][T14786] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  159.246169][T14786] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  159.260506][T14786] System zones: 1-12
[  159.271264][T14786] EXT4-fs (loop3): 1 truncate cleaned up
[  159.393021][ T3311] EXT4-fs unmount: 11 callbacks suppressed
[  159.393035][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.417941][T14795] hub 8-0:1.0: USB hub found
[  159.422746][T14795] hub 8-0:1.0: 8 ports detected
[  159.428074][T14797] loop3: detected capacity change from 0 to 512
[  159.434878][T14797] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  159.446223][T14797] EXT4-fs (loop3): 1 truncate cleaned up
[  159.452195][T14797] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.482685][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.525736][T14804] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4501'.
[  159.749133][T14823] kernel read not supported for file /policy (pid: 14823 comm: syz.8.4510)
[  160.075962][T14846] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.093915][T14847] loop3: detected capacity change from 0 to 2048
[  160.128005][T14847] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.156995][T14846] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.162823][T14847] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  160.207466][T14846] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.209159][T14847] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  160.229617][T14847] EXT4-fs (loop3): This should not happen!! Data will be lost
[  160.229617][T14847] 
[  160.239393][T14847] EXT4-fs (loop3): Total free blocks count 0
[  160.245420][T14847] EXT4-fs (loop3): Free/Dirty block details
[  160.251313][T14847] EXT4-fs (loop3): free_blocks=2415919104
[  160.257111][T14847] EXT4-fs (loop3): dirty_blocks=16
[  160.262274][T14847] EXT4-fs (loop3): Block reservation details
[  160.268279][T14847] EXT4-fs (loop3): i_reserved_data_blocks=1
[  160.294408][T14859] loop8: detected capacity change from 0 to 8192
[  160.312128][T14846] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.324267][T14859] vfat: Unknown parameter '�S�^F��]3�4/�8vЩX���"��h��\o��C:��d�Q;�/�w��*������z�|��6ݠ/]%:
n�eF4Ű+��y�ꅈ�'
[  160.423847][T14846] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.436612][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.459158][T14846] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.511478][T14846] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.569409][T14846] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  160.778988][T14883] netlink: 3 bytes leftover after parsing attributes in process `syz.2.4534'.
[  160.906614][T14894] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4539'.
[  160.911358][T14892] hub 8-0:1.0: USB hub found
[  160.931751][T14892] hub 8-0:1.0: 8 ports detected
[  161.042746][T14910] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  161.184093][T14902] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.193932][T14902] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.237896][T14920] loop9: detected capacity change from 0 to 1024
[  161.268180][T14920] EXT4-fs: Ignoring removed nobh option
[  161.297696][T14920] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  161.341888][T14920] EXT4-fs error (device loop9): ext4_ext_check_inode:524: inode #11: comm syz.9.4551: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  161.392004][T14920] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.4551: couldn't read orphan inode 11 (err -117)
[  161.444614][T14920] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.523411][T14920] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.4551: Invalid block bitmap block 0 in block_group 0
[  161.572312][T14920] EXT4-fs error (device loop9): ext4_acquire_dquot:6938: comm syz.9.4551: Failed to acquire dquot type 0
[  161.585055][T14929] loop8: detected capacity change from 0 to 512
[  161.604708][T14929] EXT4-fs: Ignoring removed oldalloc option
[  161.617888][T14929] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  161.656743][T14261] EXT4-fs error (device loop9): __ext4_get_inode_loc:4435: comm kworker/u8:24: Invalid inode table block 8791798054913 in block_group 0
[  161.685323][T14058] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.696681][T14929] EXT4-fs (loop8): 1 truncate cleaned up
[  161.702553][T14929] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.826867][T14929] loop8: detected capacity change from 512 to 64
[  161.834497][T14942] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 18: block 68:freeing already freed block (bit 67); block bitmap corrupt.
[  161.849079][T14942] EXT4-fs (loop8): pa ffff8881069113f0: logic 0, phys. 37, len 218
[  161.857330][T14942] EXT4-fs error (device loop8): ext4_mb_release_inode_pa:5366: group 0, free 218, pa_free 100
[  161.983620][T10694] EXT4-fs warning (device loop8): ext4_evict_inode:276: xattr delete (err -12)
[  162.038338][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.062171][T14960] loop9: detected capacity change from 0 to 128
[  162.079020][T14958] netlink: 96 bytes leftover after parsing attributes in process `syz.7.4564'.
[  162.224151][T14976] xt_CT: You must specify a L4 protocol and not use inversions on it
[  162.271406][T14974] syz.9.4565: attempt to access beyond end of device
[  162.271406][T14974] loop9: rw=2049, sector=260, nr_sectors = 16 limit=128
[  162.316458][T14974] syz.9.4565: attempt to access beyond end of device
[  162.316458][T14974] loop9: rw=2049, sector=284, nr_sectors = 8 limit=128
[  162.357094][T14974] syz.9.4565: attempt to access beyond end of device
[  162.357094][T14974] loop9: rw=2049, sector=300, nr_sectors = 8 limit=128
[  162.395720][T14974] syz.9.4565: attempt to access beyond end of device
[  162.395720][T14974] loop9: rw=2049, sector=316, nr_sectors = 8 limit=128
[  162.436274][T14974] syz.9.4565: attempt to access beyond end of device
[  162.436274][T14974] loop9: rw=2049, sector=332, nr_sectors = 8 limit=128
[  162.478593][T14974] syz.9.4565: attempt to access beyond end of device
[  162.478593][T14974] loop9: rw=2049, sector=356, nr_sectors = 8 limit=128
[  162.524071][T14974] syz.9.4565: attempt to access beyond end of device
[  162.524071][T14974] loop9: rw=2049, sector=372, nr_sectors = 8 limit=128
[  162.559411][T14974] syz.9.4565: attempt to access beyond end of device
[  162.559411][T14974] loop9: rw=2049, sector=388, nr_sectors = 8 limit=128
[  162.603153][T14974] syz.9.4565: attempt to access beyond end of device
[  162.603153][T14974] loop9: rw=2049, sector=404, nr_sectors = 8 limit=128
[  162.674639][T14974] syz.9.4565: attempt to access beyond end of device
[  162.674639][T14974] loop9: rw=2049, sector=420, nr_sectors = 16 limit=128
[  162.732177][T15008] vhci_hcd: invalid port number 157
[  162.737540][T15008] vhci_hcd: default hub control req: c1ef v21ba i009d l29779
[  162.844534][T15015] sd 0:0:1:0: device reset
[  162.897245][T15019] blktrace: Concurrent blktraces are not allowed on sg0
[  162.992588][T15028] hub 8-0:1.0: USB hub found
[  162.997320][T15028] hub 8-0:1.0: 8 ports detected
[  163.080604][T15037] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  163.137211][T15041] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  163.140932][T15039] xt_TPROXY: Can be used only with -p tcp or -p udp
[  163.147092][T15041] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.199862][T15045] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  163.237326][T15041] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  163.247190][T15041] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.307437][T15041] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  163.317364][T15041] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.333575][   T29] kauditd_printk_skb: 626 callbacks suppressed
[  163.333589][   T29] audit: type=1400 audit(1733741458.810:6679): avc:  denied  { create } for  pid=15051 comm="syz.2.4606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  163.374661][   T29] audit: type=1400 audit(1733741458.810:6680): avc:  denied  { create } for  pid=15053 comm="syz.7.4607" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  163.396176][   T29] audit: type=1400 audit(1733741458.810:6681): avc:  denied  { map } for  pid=15053 comm="syz.7.4607" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=42570 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  163.420476][   T29] audit: type=1400 audit(1733741458.810:6682): avc:  denied  { read write } for  pid=15053 comm="syz.7.4607" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=42570 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  163.445455][   T29] audit: type=1400 audit(1733741458.840:6683): avc:  denied  { write } for  pid=15051 comm="syz.2.4606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  163.467298][   T29] audit: type=1326 audit(1733741458.920:6684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15042 comm="syz.9.4602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5937cfed9 code=0x7ffc0000
[  163.491194][   T29] audit: type=1326 audit(1733741458.920:6685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15042 comm="syz.9.4602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5937cfed9 code=0x7ffc0000
[  163.517179][   T29] audit: type=1400 audit(1733741458.990:6686): avc:  denied  { read } for  pid=15057 comm="syz.2.4608" name="mISDNtimer" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  163.540305][   T29] audit: type=1400 audit(1733741458.990:6687): avc:  denied  { open } for  pid=15057 comm="syz.2.4608" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  163.567993][T15041] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  163.577823][T15041] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.588671][   T29] audit: type=1400 audit(1733741459.050:6688): avc:  denied  { ioctl } for  pid=15057 comm="syz.2.4608" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  163.631640][T15062] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4610'.
[  163.652861][T15041] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  163.661102][T15041] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.684593][T15041] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  163.692825][T15041] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.701371][T15064] netlink: 'syz.8.4609': attribute type 1 has an invalid length.
[  163.705825][T15041] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  163.717568][T15041] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.737416][T15041] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  163.745743][T15041] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.754333][T15066] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4611'.
[  163.824205][T15073] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4614'.
[  163.858847][T15077] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4615'.
[  163.868027][T15077] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4615'.
[  163.915569][T15085] netlink: 'syz.8.4619': attribute type 14 has an invalid length.
[  164.014144][T15097] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  164.042056][T15097] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  164.051616][T15099] netlink: 'syz.9.4625': attribute type 10 has an invalid length.
[  164.083945][T15099] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.102572][T15099] team0: Port device batadv0 added
[  164.236598][T15105] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.292452][T15105] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.368634][T15105] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.417389][T15111] loop7: detected capacity change from 0 to 164
[  164.428073][T15105] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.499695][T15105] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.523326][T15105] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.578306][T15105] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.596634][T15105] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.856510][T15127] vhci_hcd: invalid port number 157
[  164.856565][T15127] vhci_hcd: default hub control req: c1ef v21ba i009d l29779
[  164.899955][T15129] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  165.063427][T15139] netlink: 132 bytes leftover after parsing attributes in process `syz.8.4642'.
[  165.132174][T15143] loop8: detected capacity change from 0 to 128
[  165.155553][T15143] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[  165.214949][T15092] syz.2.4622 (15092) used greatest stack depth: 6360 bytes left
[  165.242935][T15146] bridge0: port 3(vlan2) entered blocking state
[  165.249397][T15146] bridge0: port 3(vlan2) entered disabled state
[  165.286635][T15146] vlan2: entered allmulticast mode
[  165.296844][T15146] vlan2: left allmulticast mode
[  165.336107][T15151] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.437200][T15151] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.480322][T15158] xt_TPROXY: Can be used only with -p tcp or -p udp
[  165.517819][T15151] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.578309][T15165] netlink: 'syz.3.4652': attribute type 1 has an invalid length.
[  165.588405][T15151] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.692354][T15151] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.735115][T15151] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.762593][T15151] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.773450][T15151] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.880260][T15185] bpf_get_probe_write_proto: 3 callbacks suppressed
[  165.880277][T15185] syz.8.4661[15185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.916843][T15186] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  165.943448][T15188] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  165.944514][T15186] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[  166.666265][T15208] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.689887][T15208] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.023995][T15238] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4685'.
[  167.195021][T15246] loop8: detected capacity change from 0 to 8192
[  167.213119][T15246] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  167.225931][T15253] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4693'.
[  167.306613][T15261] siw: device registration error -23
[  167.315095][    T8] IPVS: starting estimator thread 0...
[  167.426421][T15263] IPVS: using max 2544 ests per chain, 127200 per kthread
[  167.532868][T15285] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4707'.
[  167.575985][T15291] netlink: 'syz.3.4709': attribute type 4 has an invalid length.
[  167.764342][T15302] loop7: detected capacity change from 0 to 1024
[  167.785247][T15302] EXT4-fs: Ignoring removed orlov option
[  167.816579][T15302] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.222333][T15325] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4721'.
[  168.236692][T15327] loop8: detected capacity change from 0 to 512
[  168.286146][T15327] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.305502][T15327] ext4 filesystem being mounted at /354/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  168.482406][T15338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.508261][T15338] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.682534][T15347] vlan2: entered allmulticast mode
[  168.689018][T15347] bond0: entered allmulticast mode
[  168.694567][T15347] bond0: left allmulticast mode
[  168.778324][   T29] kauditd_printk_skb: 145 callbacks suppressed
[  168.778338][   T29] audit: type=1400 audit(1733741464.260:6834): avc:  denied  { create } for  pid=15348 comm="syz.2.4731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  168.886250][   T29] audit: type=1400 audit(1733741464.310:6835): avc:  denied  { connect } for  pid=15348 comm="syz.2.4731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  168.978232][   T29] audit: type=1400 audit(1733741464.380:6836): avc:  denied  { ioctl } for  pid=15352 comm="syz.2.4733" path="socket:[42948]" dev="sockfs" ino=42948 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  169.021037][   T29] audit: type=1400 audit(1733741464.460:6837): avc:  denied  { bind } for  pid=15354 comm="syz.3.4734" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  169.040712][   T29] audit: type=1400 audit(1733741464.460:6838): avc:  denied  { name_bind } for  pid=15354 comm="syz.3.4734" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  169.062544][   T29] audit: type=1400 audit(1733741464.460:6839): avc:  denied  { node_bind } for  pid=15354 comm="syz.3.4734" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  169.084410][   T29] audit: type=1400 audit(1733741464.460:6840): avc:  denied  { listen } for  pid=15354 comm="syz.3.4734" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  169.106076][   T29] audit: type=1400 audit(1733741464.460:6841): avc:  denied  { write } for  pid=15354 comm="syz.3.4734" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  169.125664][   T29] audit: type=1400 audit(1733741464.460:6842): avc:  denied  { name_connect } for  pid=15354 comm="syz.3.4734" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  169.161789][   T29] audit: type=1400 audit(1733741464.640:6843): avc:  denied  { read } for  pid=15357 comm="syz.9.4735" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  169.194346][T10646] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.360333][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.408218][T15378] netlink: 'syz.3.4745': attribute type 1 has an invalid length.
[  169.431250][T15378] 8021q: adding VLAN 0 to HW filter on device bond5
[  169.448941][T15378] 8021q: adding VLAN 0 to HW filter on device bond5
[  169.456420][T15378] bond5: (slave vcan1): The slave device specified does not support setting the MAC address
[  169.468379][T15378] bond5: (slave vcan1): Error -95 calling set_mac_address
[  169.482020][T15387] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  169.579606][T15400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  169.588834][T15364] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  169.616818][T15400] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  169.618706][T15364] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  170.387193][T15445] vlan2: entered allmulticast mode
[  170.393111][T15445] bond0: (slave vlan2): Opening slave failed
[  170.785303][T15461] ebtables: ebtables: counters copy to user failed while replacing table
[  170.840830][T15475] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15475 comm=syz.3.4785
[  170.869818][T15472] netem: change failed
[  171.370671][T15520] loop9: detected capacity change from 0 to 512
[  171.397193][T15520] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.433571][T15530] loop7: detected capacity change from 0 to 512
[  171.447200][T15520] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.503969][T15530] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.520919][T15530] ext4 filesystem being mounted at /272/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  171.564905][T14058] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.598857][T15545] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4816'.
[  171.621342][T15545] team0 (unregistering): Port device team_slave_0 removed
[  171.631874][T15545] team0 (unregistering): Port device team_slave_1 removed
[  171.642767][T15545] team0 (unregistering): Port device batadv0 removed
[  171.749426][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.756911][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.764303][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.802808][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.810511][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.818009][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.825464][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.832850][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.840402][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.847836][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.855235][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.862663][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.870132][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.877554][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.962128][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.969624][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.977162][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.984558][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.991983][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  171.999429][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.006931][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.014336][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.021844][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.029297][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.036708][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.044104][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.051530][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.058966][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.066473][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.073860][   T35] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  172.139405][   T35] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  172.209712][T15576] loop8: detected capacity change from 0 to 512
[  172.217367][T15576] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  172.256684][T15576] EXT4-fs (loop8): 1 truncate cleaned up
[  172.262699][T15576] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.299210][T15585] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.4833'.
[  172.380415][T15589] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4846'.
[  172.399872][T15589] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  172.647627][T15598] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4839'.
[  172.887035][T15613] loop3: detected capacity change from 0 to 512
[  172.915158][T10646] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.947900][T15613] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.984668][T15613] ext4 filesystem being mounted at /1002/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  173.092170][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.252986][T15587] Cannot find set identified by id 0 to match
[  173.340037][T15639] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4856'.
[  173.356712][T15643] loop3: detected capacity change from 0 to 512
[  173.374825][T15643] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.399215][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.423402][T15643] ext4 filesystem being mounted at /1005/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.505838][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.543230][T15660] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4865'.
[  173.710892][T15686] netlink: 92 bytes leftover after parsing attributes in process `syz.8.4875'.
[  173.773500][T15695] ref_ctr increment failed for inode: 0x242 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff88813e2e4a80
[  173.787633][T15694] uprobe: syz.9.4880:15694 failed to unregister, leaking uprobe
[  173.798028][T15698] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.4876'.
[  173.868951][T15705] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4883'.
[  173.959742][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  173.960940][   T29] kauditd_printk_skb: 285 callbacks suppressed
[  173.960953][   T29] audit: type=1326 audit(1733741469.440:7129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  173.967219][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  173.974617][   T29] audit: type=1326 audit(1733741469.450:7130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  173.996948][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.069622][   T29] audit: type=1326 audit(1733741469.480:7131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  174.087482][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.093252][   T29] audit: type=1326 audit(1733741469.480:7132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  174.100557][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.123942][   T29] audit: type=1326 audit(1733741469.480:7133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  174.131315][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.154782][   T29] audit: type=1326 audit(1733741469.480:7134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  174.162135][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.185580][   T29] audit: type=1326 audit(1733741469.480:7135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  174.185639][   T29] audit: type=1326 audit(1733741469.480:7136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  174.193011][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.216452][   T29] audit: type=1326 audit(1733741469.480:7137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  174.239910][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.247264][   T29] audit: type=1326 audit(1733741469.480:7138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15709 comm="syz.3.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19bf8cfed9 code=0x7ffc0000
[  174.270693][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.309217][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.316664][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.324119][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.331568][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.375147][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.380348][T15716] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4888'.
[  174.382629][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.398946][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.406438][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.413833][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.414585][T15716] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  174.421246][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.421271][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.445618][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.453025][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.460454][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.467886][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.475450][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.482848][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.490272][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.497702][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.505274][ T3375] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  174.611095][ T3375] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  174.623102][T15731] random: crng reseeded on system resumption
[  174.901554][T15769] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  174.911585][T15767] IPVS: stopping master sync thread 15769 ...
[  175.170824][T15806] loop8: detected capacity change from 0 to 164
[  175.294315][T15824] netlink: 'syz.3.4927': attribute type 10 has an invalid length.
[  175.340068][T15824] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  175.709257][T15860] loop7: detected capacity change from 0 to 512
[  175.735985][T15860] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  175.763907][T15860] EXT4-fs (loop7): 1 truncate cleaned up
[  175.784510][T15860] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.852433][T15866] syzkaller0: entered promiscuous mode
[  175.858020][T15866] syzkaller0: entered allmulticast mode
[  176.078925][T15874] syz.2.4941[15874] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  176.079056][T15874] syz.2.4941[15874] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  176.109771][T15874] syz.2.4941[15874] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  176.283120][T15885] 9pnet: p9_errstr2errno: server reported unknown error ���٫��á]���>.��1��S�@����|�iu�Yef�t�%�^
[  176.587799][T15905] blktrace: Concurrent blktraces are not allowed on sg0
[  176.836329][T15913] loop8: detected capacity change from 0 to 8192
[  176.857566][T15921] __nla_validate_parse: 5 callbacks suppressed
[  176.857581][T15921] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4963'.
[  176.884791][T15923] wireguard0: entered promiscuous mode
[  176.890337][T15923] wireguard0: entered allmulticast mode
[  176.916251][T15921] veth0_macvtap: left promiscuous mode
[  177.199066][T15936] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  177.224821][T15936] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  177.445561][T15958] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4977'.
[  177.454487][T15958] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0)
[  177.463550][T15958] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[  177.566641][T15971] loop8: detected capacity change from 0 to 1024
[  177.573203][T15971] EXT4-fs: Ignoring removed orlov option
[  177.634540][T15971] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.700338][T15984] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.733523][T15984] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.755189][T10646] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.784243][T15992] bridge0: entered promiscuous mode
[  177.789672][T15992] macvlan2: entered promiscuous mode
[  177.796299][T15992] bridge0: port 3(macvlan2) entered blocking state
[  177.802845][T15992] bridge0: port 3(macvlan2) entered disabled state
[  177.821180][T15992] macvlan2: entered allmulticast mode
[  177.826684][T15992] bridge0: entered allmulticast mode
[  177.865673][T15992] macvlan2: left allmulticast mode
[  177.870907][T15992] bridge0: left allmulticast mode
[  177.894165][T15992] bridge0: left promiscuous mode
[  177.944782][T15995] ==================================================================
[  177.952897][T15995] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / redirty_tail_locked
[  177.961857][T15995] 
[  177.964181][T15995] read-write to 0xffff8881207a0ab8 of 4 bytes by task 15971 on cpu 0:
[  177.972344][T15995]  redirty_tail_locked+0x54/0x270
[  177.977387][T15995]  writeback_single_inode+0x221/0x3f0
[  177.982762][T15995]  sync_inode_metadata+0x5c/0x90
[  177.987707][T15995]  generic_buffers_fsync_noflush+0xd8/0x120
[  177.993622][T15995]  ext4_sync_file+0x1ff/0x6c0
[  177.998317][T15995]  vfs_fsync_range+0x116/0x130
[  178.003102][T15995]  ext4_buffered_write_iter+0x326/0x370
[  178.008662][T15995]  ext4_file_write_iter+0x383/0xf20
[  178.013869][T15995]  iter_file_splice_write+0x5f1/0x980
[  178.019247][T15995]  direct_splice_actor+0x160/0x2c0
[  178.024357][T15995]  splice_direct_to_actor+0x302/0x670
[  178.029726][T15995]  do_splice_direct+0xd7/0x150
[  178.034486][T15995]  do_sendfile+0x398/0x660
[  178.038892][T15995]  __x64_sys_sendfile64+0x110/0x150
[  178.044095][T15995]  x64_sys_call+0xfbd/0x2dc0
[  178.048679][T15995]  do_syscall_64+0xc9/0x1c0
[  178.053173][T15995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.059108][T15995] 
[  178.061448][T15995] read to 0xffff8881207a0ab8 of 4 bytes by task 15995 on cpu 1:
[  178.069072][T15995]  generic_buffers_fsync_noflush+0x83/0x120
[  178.074966][T15995]  ext4_sync_file+0x1ff/0x6c0
[  178.079642][T15995]  vfs_fsync_range+0x116/0x130
[  178.084405][T15995]  ext4_buffered_write_iter+0x326/0x370
[  178.089954][T15995]  ext4_file_write_iter+0x383/0xf20
[  178.095152][T15995]  iter_file_splice_write+0x5f1/0x980
[  178.100520][T15995]  direct_splice_actor+0x160/0x2c0
[  178.105720][T15995]  splice_direct_to_actor+0x302/0x670
[  178.111091][T15995]  do_splice_direct+0xd7/0x150
[  178.115849][T15995]  do_sendfile+0x398/0x660
[  178.120256][T15995]  __x64_sys_sendfile64+0x110/0x150
[  178.125450][T15995]  x64_sys_call+0xfbd/0x2dc0
[  178.130035][T15995]  do_syscall_64+0xc9/0x1c0
[  178.134565][T15995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.140461][T15995] 
[  178.142773][T15995] value changed: 0x0000003a -> 0x00000002
[  178.148478][T15995] 
[  178.150790][T15995] Reported by Kernel Concurrency Sanitizer on:
[  178.156937][T15995] CPU: 1 UID: 0 PID: 15995 Comm: syz.8.4984 Not tainted 6.13.0-rc2-syzkaller #0
[  178.165959][T15995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  178.176005][T15995] ==================================================================
[  178.254848][T16003] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.300801][T16003] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.358591][T16003] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.434343][T16003] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.493342][T16003] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  178.527866][T16003] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  178.556041][T10694] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.568549][T16003] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  178.583277][T16003] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0