last executing test programs:

6m37.149260022s ago: executing program 32 (id=4808):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

6m21.158696652s ago: executing program 33 (id=5497):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)={{0x14}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3cd2e7b3d6526bf5}}}, 0x68}}, 0x0)
r1 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10, 0x0}, 0x40)

5m15.645564834s ago: executing program 34 (id=8175):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @empty}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000140)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f00000001c0)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x4000891)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000002c0)={0x0, 0xb, 0x1, [0x6]}, 0xa)

4m52.968758704s ago: executing program 35 (id=9133):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x10, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01032757c38d085641a7260000000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x20040845}, 0x48d4)

4m51.09368094s ago: executing program 36 (id=9178):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x80081280, &(0x7f0000001080))

4m46.476813584s ago: executing program 37 (id=9325):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x18)
rt_sigqueueinfo(0x0, 0x23, 0x0)

3m3.403276743s ago: executing program 38 (id=12864):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000040)=0x3, 0x4)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000030101"], 0x14}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400000002070101"], 0x14}, 0x1, 0x0, 0x0, 0x10000}, 0x4000)
close(r0)

2m59.722423223s ago: executing program 39 (id=12985):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x200000ffc000)

2m50.527396057s ago: executing program 8 (id=13696):
r0 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000007}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x14)
sendfile(r2, r0, 0x0, 0x7ffff088)

2m50.477833009s ago: executing program 8 (id=13697):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ASSOCIATE_RESP(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x50, r2, 0x1, 0x4, 0x1, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x48c1}, 0x0)

2m50.362204664s ago: executing program 8 (id=13702):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000b00)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = io_uring_setup(0x7a53, &(0x7f0000000240)={0x0, 0x93c7, 0x40, 0x0, 0x17c})
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r1, 0xb, &(0x7f0000000000)=[@ioring_restriction_sqe_flags_allowed={0x2, 0x16}], 0x1)

2m50.259899579s ago: executing program 8 (id=13710):
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00'], 0x2c}}, 0x4000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40e8662e, &(0x7f0000000000)={0x9, 0x4000009, 0x7fffffffffffffff, 0x3, 0xffffffff, 0xa})

2m50.129357235s ago: executing program 8 (id=13715):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000700)='./binderfs/binder1\x00', 0x800, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
syz_emit_ethernet(0xd2, &(0x7f0000000080)=ANY=[@ANYBLOB="0180c2000000bbbbbbbbbbbb86dd6a000000009c1100fe80000000f6ff0000000000000000aaff0200000000000000000000000000014e1d4e"], 0x0)

2m49.883699146s ago: executing program 8 (id=13727):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x4, {0x6, 0x0, 0x8100, 0x0, {0xc3, 0xc}, {}, {0xe, 0xd}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

2m49.833684008s ago: executing program 40 (id=13727):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x4, {0x6, 0x0, 0x8100, 0x0, {0xc3, 0xc}, {}, {0xe, 0xd}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

1m56.269904106s ago: executing program 1 (id=15772):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000142020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000e0280085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x50)

1m56.200887719s ago: executing program 1 (id=15775):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000ac0)=@newqdisc={0x94, 0x24, 0xf0b, 0x70bd30, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x0, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee11, 0x0, 0x0, 0x3], [0x0, 0x8, 0x3]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0x4c845}, 0x0)

1m56.148452991s ago: executing program 1 (id=15777):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='netlink_extack\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x700, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000070000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="0c0001800800010003000100200001800c0004800800020000000000100001"], 0x44}}, 0x0)

1m56.082318445s ago: executing program 1 (id=15779):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f0000000480)='./file0\x00', 0x0, 0x111099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

1m56.081708664s ago: executing program 1 (id=15781):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f0000000fc0)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x550, 0xfffffffffffffc75}, 0x0, 0x0, 0x8000003, 0x4, 0x0, 0x40d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000180)='cpu<=0||!')

1m55.634239685s ago: executing program 1 (id=15800):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x7}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)

1m55.609935696s ago: executing program 41 (id=15800):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x7}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)

1m44.070562887s ago: executing program 5 (id=16214):
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000008850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x3214, 0x0)
syz_usb_disconnect(r1)

1m43.305892502s ago: executing program 5 (id=16237):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000400)={0x0, 0x6}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000440)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280024}, 0x1c, &(0x7f0000000d80)=[{&(0x7f0000000540)="43441b7e2f", 0x5}], 0x1}}], 0x1, 0x20008050)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000240)={0x0, 0x7, 0x4}, 0x8)

1m43.242174306s ago: executing program 5 (id=16238):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x6a)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000140)='./file0\x00', 0x400)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006000000000000000000380000000000000000191bda0000200018"], 0x69)
close(r0)
execve(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)

1m43.242044026s ago: executing program 5 (id=16239):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000280)='./bus\x00', 0x4d9e, &(0x7f0000000180), 0x1, 0x451, &(0x7f0000000780)="$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")
syz_clone(0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000280), &(0x7f0000000000)=""/3, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000800)={r0, &(0x7f0000000780)}, 0x20)

1m43.078454113s ago: executing program 5 (id=16244):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$KDDELIO(r2, 0x4b34, 0x3bf)
ioctl$KDDISABIO(r2, 0x4b37)

1m42.92918878s ago: executing program 5 (id=16253):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f0000000480)={@val={0xa, 0x88a8}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @random="2833b1656532", @void, {@ipv6={0x86dd, @generic={0x9, 0x6, "000400", 0x8, 0x2c, 0xff, @private2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {[@routing={0x2c, 0x0, 0x0, 0x6}]}}}}}}, 0x42)

1m42.903081721s ago: executing program 42 (id=16253):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f0000000480)={@val={0xa, 0x88a8}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @random="2833b1656532", @void, {@ipv6={0x86dd, @generic={0x9, 0x6, "000400", 0x8, 0x2c, 0xff, @private2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {[@routing={0x2c, 0x0, 0x0, 0x6}]}}}}}}, 0x42)

1m28.281087005s ago: executing program 6 (id=16835):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

1m28.16210212s ago: executing program 6 (id=16838):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x5)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x2082)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
read(r1, 0x0, 0x0)

1m28.064698595s ago: executing program 6 (id=16840):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000011c0)={&(0x7f0000001180)='kfree\x00', r0, 0x0, 0x4}, 0x18)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000005b80)={@loopback, 0x33, r2})

1m27.95330636s ago: executing program 6 (id=16842):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x1000, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000240)='./file0\x00', 0x240)

1m27.830324545s ago: executing program 6 (id=16844):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000680)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="31832abd70000000000019000000180001801400020065727370616e30"], 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886)

1m27.764443438s ago: executing program 6 (id=16847):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket(0x2, 0x1, 0x0)
r1 = epoll_create1(0x0)
epoll_pwait2(r1, &(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_pwait2(r1, &(0x7f0000000040)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x20000012})

1m27.714416071s ago: executing program 43 (id=16847):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket(0x2, 0x1, 0x0)
r1 = epoll_create1(0x0)
epoll_pwait2(r1, &(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_pwait2(r1, &(0x7f0000000040)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x20000012})

1m19.173299545s ago: executing program 7 (id=17153):
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x208a022, 0x0, 0x1, 0x0, &(0x7f0000000000))
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180))

1m19.06079412s ago: executing program 7 (id=17157):
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000001860000000000000e9ff00000400000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000700)='mm_lru_insertion\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r1, &(0x7f0000000180), 0x40010)

1m18.994357783s ago: executing program 7 (id=17160):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1, 0x0, 0x5}, 0x18)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)

1m18.921925246s ago: executing program 7 (id=17162):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x1000, 0x0)
unshare(0x22020400)
mount_setattr(r0, &(0x7f0000000040)='./file0\x00', 0x1100, &(0x7f0000000300)={0x80, 0x2, 0x80000, {r0}}, 0x20)

1m18.921397166s ago: executing program 7 (id=17164):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
io_getevents(0x0, 0x4, 0x0, 0x0, 0x0)
io_destroy(0x0)
msgrcv(0x0, 0x0, 0x0, 0x2, 0x3000)

1m18.305718884s ago: executing program 7 (id=17181):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r1)
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x40)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x501, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, 0x6001}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x36}}]}}}]}, 0x3c}}, 0x84000)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, 0x12e1b, 0x1a801}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_FLAGS={0x6, 0x10, 0xb}]}}}]}, 0x3c}}, 0x0)

1m18.291161565s ago: executing program 44 (id=17181):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r1)
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x40)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x501, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, 0x6001}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x36}}]}}}]}, 0x3c}}, 0x84000)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, 0x12e1b, 0x1a801}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_FLAGS={0x6, 0x10, 0xb}]}}}]}, 0x3c}}, 0x0)

1.137892518s ago: executing program 4 (id=19732):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x37, 0x0, 0x7ffc1ffb}]})
fchown(0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff)

1.10220807s ago: executing program 4 (id=19734):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f00000001c0)=@in6={0xa, 0x4e21, 0x4, @mcast2, 0xd}, 0x80, 0x0}, 0x4000080)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x16000000)

1.013983074s ago: executing program 4 (id=19736):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000340)='\x00', 0x1, 0x4c001, 0x0, 0xffffff91)
sendto$inet(r0, &(0x7f0000000900)="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", 0xffffff5d, 0x8012, 0x0, 0xfffffffffffffe2d)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0x8, 0xc9100160, 0x0, 0x0)

710.183128ms ago: executing program 3 (id=19739):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
getitimer(0x1, &(0x7f00000001c0))

677.047909ms ago: executing program 3 (id=19741):
perf_event_open(&(0x7f0000000bc0)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x40)
lsetxattr$security_capability(&(0x7f0000002580)='./file0\x00', &(0x7f00000025c0), 0x0, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c4601079704080000000000000002000600010000004300000038000000c0010000030000000100200002"], 0x78)
close(r0)
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

579.660584ms ago: executing program 9 (id=19743):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8d}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10)
ioctl$TIOCGPGRP(r0, 0x5437, 0x0)

578.898554ms ago: executing program 3 (id=19744):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
writev(r0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000000000)="2004", 0x2}], 0x2)

557.643065ms ago: executing program 2 (id=19745):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

541.219356ms ago: executing program 0 (id=19746):
r0 = io_uring_setup(0x1d4c, &(0x7f0000000340)={0x0, 0x60b13e, 0x0, 0x6, 0x3a2})
r1 = socket$tipc(0x1e, 0x5, 0x0)
listen(r1, 0x0)
accept4(r1, 0x0, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x20, &(0x7f00000000c0)=0x7fc4, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

534.879046ms ago: executing program 3 (id=19747):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x89, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xd6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
lseek(0xffffffffffffffff, 0x5, 0x2)

518.939387ms ago: executing program 9 (id=19748):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0xfffffffc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x3}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000)
close(r1)

518.363267ms ago: executing program 2 (id=19749):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x1d6}, 0x18)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x2000, 0x3, &(0x7f0000874000/0x2000)=nil)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0xf132, 0xffffffffffffffff, 0x0)

497.995807ms ago: executing program 3 (id=19750):
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3000008, 0x6c033, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
wait4(r0, 0x0, 0x40000000, 0x0)
ptrace$poke(0x2, r0, &(0x7f0000000000), 0x1)
mincore(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0)

497.376258ms ago: executing program 9 (id=19751):
rt_sigprocmask(0x0, &(0x7f00000000c0)={[0xfffffeffffffffff]}, 0x0, 0x8)
r0 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r0}, &(0x7f0000000380)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000080)={{}, {0x0, 0x989680}}, 0x0)
r2 = gettid()
tkill(r2, 0x16)

477.633479ms ago: executing program 9 (id=19752):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x8, 0xf9, 0x7ffc1ffb}]})
msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)

448.914ms ago: executing program 3 (id=19753):
r0 = socket$inet6(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5000000010000100"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000300012800b00010065727370616e000020000280040012000500160002000000060018"], 0x50}}, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

439.393061ms ago: executing program 9 (id=19754):
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x2010410, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r0, r0, 0x0, 0x800000009)

399.759592ms ago: executing program 0 (id=19755):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x4, 0x0, 0x10000, 0x8, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000230900020073797a310000000008000a40fffffffc3c0000000c0a010100000000000000000a0000070900020073797a31000000000900010073797a3100000000100003800c000080080003400000000214000000110001"], 0xa0}, 0x1, 0x0, 0x0, 0x24000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x20, &(0x7f0000000200)={&(0x7f0000002f40)=ANY=[@ANYBLOB="40000000210a010900000000000000000a0000010900020073797a31000000000900010073797a31"], 0x40}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)

392.126363ms ago: executing program 2 (id=19756):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000400)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x1}, 0x18)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x0, 0xc0, [0x200000000140, 0x0, 0x0, 0x200000000170, 0x2000000001a0], 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000001000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000"]}, 0x138)
r2 = socket$inet_icmp(0x2, 0x2, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x200000000140, 0x0, 0x0, 0x200000000170, 0x2000000001a0], 0x0, 0x0, &(0x7f0000000140)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}]}, 0x108)

369.652654ms ago: executing program 2 (id=19757):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000000)=0x200, 0x4)
r1 = syz_open_dev$evdev(&(0x7f0000000240), 0x20000, 0x0)
ioctl$EVIOCGLED(r1, 0x80284504, &(0x7f0000000000)=""/52)
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001300)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0x10}, {}, {0x2, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x40098}, 0x0)

355.149124ms ago: executing program 0 (id=19758):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kfree\x00'}, 0x18)
r0 = syz_open_dev$loop(0x0, 0x47ffffa, 0x122c42)
ioctl$LOOP_SET_STATUS64(r0, 0xc0c0128e, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="440000001800010000000000fddbdf251d01020008000a00", @ANYRES32, @ANYBLOB='\b\x00\t\x00', @ANYBLOB="15"], 0x44}}, 0x0)

305.788037ms ago: executing program 2 (id=19759):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
socket(0x2, 0xa, 0x300)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0xffffffffffffff6b, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x48)

305.519007ms ago: executing program 0 (id=19760):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x3b}}, 0x0)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="500000001000030500000000fcffff5d4c890200", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=r2, @ANYBLOB="029000000080040008000a00", @ANYRES32=r2], 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x0)

258.813739ms ago: executing program 9 (id=19761):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x4000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

222.62766ms ago: executing program 0 (id=19762):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x8205, &(0x7f0000000080)={[{@user_xattr}]}, 0x81, 0x633, &(0x7f0000000600)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
syz_open_procfs(0x0, 0x0)
mount(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2200830, 0x0)

146.048564ms ago: executing program 4 (id=19763):
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000c40)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc4c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000020000380100000800c00018006000100d10300000c00008008000340000000022c0000000e0a010200000000000000000a0000000900010073797a31000000000900020073797a310000000014000000110001"], 0xdc}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002f40)=ANY=[@ANYBLOB="40000000210a010800000000000000000a0000010900020073797a31000000000900010073797a310000000014000380"], 0x40}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)

40.099479ms ago: executing program 4 (id=19764):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc8002}]})
setregid(0x0, 0x0)

39.352009ms ago: executing program 0 (id=19765):
r0 = gettid()
r1 = memfd_create(&(0x7f0000000180)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\x8aWpA\xd4\x98\x85K\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/m\xdf\xb6]\xc2\xaa\x86\xec(\xf7\xcd\xa6\xd9n^.\x13*\xd4\xb8\xe8\xc4\xefb\x14Vx\xc6\xfe\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97$\xee\x84\x14n,B\xd5?\xe5E:+Pm\x1d\xb4\xb8\xeb\xe8Op2\x82\xc7\x0e\x97\x03\xef\x1a\xa5\x00.\x89\b!m\f\xd9\x8b$}\x9f\fX\x81\xa8\xf6\x94\xbc\xed\x80|l]\xe9\xca\xd3\xc9\xa3\x9e\x9cJI\xf1\xa2\xa0\xc4:\x00\x00\x00\x00\x00\x00\b\x00\x00', 0x0)
pipe2(&(0x7f00000002c0)={<r2=>0xffffffffffffffff}, 0x84000)
splice(r2, 0x0, r1, &(0x7f0000000140)=0x8008, 0x4, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

1.74731ms ago: executing program 2 (id=19766):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_local\x00', r1, 0x0, 0x80000001}, 0x18)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)

0s ago: executing program 4 (id=19767):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r1 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@mcast2, 0x0, 0x0, 0x1, 0x4, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x1fffffc, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8000, 0x2b}, 0x0, @in6=@empty, 0x1, 0x0, 0x0, 0x7, 0x7, 0x0, 0x2}}, 0xe8)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0xffe0)

kernel console output (not intermixed with test programs):

l be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  488.401976][T11801] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  488.427037][T11909] loop4: detected capacity change from 0 to 128
[  488.434054][T11909] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  488.446670][T11909] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  488.457310][   T29] audit: type=1400 audit(514.449:21829): avc:  denied  { mount } for  pid=11907 comm="syz.4.17568" name="/" dev="loop4" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  488.537370][T11801] hsr_slave_0: entered promiscuous mode
[  488.543596][T11801] hsr_slave_1: entered promiscuous mode
[  488.563278][T11801] debugfs: 'hsr0' already exists in 'hsr'
[  488.569149][T11801] Cannot create hsr debugfs directory
[  488.585825][   T29] audit: type=1400 audit(514.579:21830): avc:  denied  { unmount } for  pid=10995 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  488.606164][T18941] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  488.635086][T11884] Set syz1 is full, maxelem 65536 reached
[  488.655048][   T29] audit: type=1400 audit(514.649:21831): avc:  denied  { create } for  pid=11919 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  488.676919][   T29] audit: type=1400 audit(514.669:21832): avc:  denied  { connect } for  pid=11919 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  488.695814][   T29] audit: type=1400 audit(514.669:21833): avc:  denied  { ioctl } for  pid=11919 comm="+}[@" path="socket:[144831]" dev="sockfs" ino=144831 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  488.956256][   T29] audit: type=1326 audit(514.949:21834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11931 comm="syz.0.17575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  489.021459][   T29] audit: type=1326 audit(514.969:21835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11931 comm="syz.0.17575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  489.044627][   T29] audit: type=1326 audit(514.969:21836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11931 comm="syz.0.17575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  489.051946][T11801] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  489.099328][T11801] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  489.113022][T11801] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  489.153257][T11801] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  489.257536][T11801] 8021q: adding VLAN 0 to HW filter on device bond0
[  489.282361][T11801] 8021q: adding VLAN 0 to HW filter on device team0
[  489.308665][ T1833] bridge0: port 1(bridge_slave_0) entered blocking state
[  489.315917][ T1833] bridge0: port 1(bridge_slave_0) entered forwarding state
[  489.331437][ T1833] bridge0: port 2(bridge_slave_1) entered blocking state
[  489.338558][ T1833] bridge0: port 2(bridge_slave_1) entered forwarding state
[  489.404512][T11940] loop9: detected capacity change from 0 to 32768
[  489.445692][T11940]  loop9: p1 p3 < >
[  489.483508][T11801] 8021q: adding VLAN 0 to HW filter on device batadv0
[  489.571014][T11801] veth0_vlan: entered promiscuous mode
[  489.580751][T11801] veth1_vlan: entered promiscuous mode
[  489.602871][T11801] veth0_macvtap: entered promiscuous mode
[  489.612361][T11801] veth1_macvtap: entered promiscuous mode
[  489.628734][T11801] batman_adv: batadv0: Interface activated: batadv_slave_0
[  489.652373][T11801] batman_adv: batadv0: Interface activated: batadv_slave_1
[  489.705882][T11980] bridge_slave_0: left allmulticast mode
[  489.711693][T11980] bridge_slave_0: left promiscuous mode
[  489.717878][T11980] bridge0: port 1(bridge_slave_0) entered disabled state
[  489.730179][T11980] bridge_slave_1: left allmulticast mode
[  489.736066][T11980] bridge_slave_1: left promiscuous mode
[  489.742048][T11980] bridge0: port 2(bridge_slave_1) entered disabled state
[  489.753546][T11980] bond0: (slave bond_slave_0): Releasing backup interface
[  489.764619][T11980] bond0: (slave bond_slave_1): Releasing backup interface
[  489.782097][T11980] team0: Port device team_slave_0 removed
[  489.793270][T11980] team0: Port device team_slave_1 removed
[  489.804697][T11980] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  489.812191][T11980] batman_adv: batadv0: Removing interface: batadv_slave_0
[  489.823486][T11980] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  489.830968][T11980] batman_adv: batadv0: Removing interface: batadv_slave_1
[  489.841136][T11980] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  489.857253][T18930] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  489.868746][T11983] bridge0: port 1(team0) entered blocking state
[  489.875099][T11983] bridge0: port 1(team0) entered disabled state
[  489.882659][T11983] team0: entered allmulticast mode
[  489.889639][T11983] team0: entered promiscuous mode
[  489.895305][T11983] bridge0: port 1(team0) entered blocking state
[  489.901631][T11983] bridge0: port 1(team0) entered forwarding state
[  489.916442][ T1833] bridge0: port 1(team0) entered disabled state
[  489.924264][T18930] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  489.935376][T18930] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  489.946264][T18930] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  489.966135][T11987] xt_connbytes: Forcing CT accounting to be enabled
[  490.522283][T12037] usb usb8: usbfs: process 12037 (syz.4.17611) did not claim interface 0 before use
[  490.753259][T12081] usb usb8: usbfs: process 12081 (syz.9.17627) did not claim interface 0 before use
[  490.786961][T12084] netlink: 'syz.4.17628': attribute type 21 has an invalid length.
[  490.794992][T12084] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17628'.
[  490.813449][T18930] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  490.822612][T12084] netlink: 'syz.4.17628': attribute type 21 has an invalid length.
[  490.826564][T12089] SELinux: failed to load policy
[  490.830559][T12084] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17628'.
[  490.831014][T18930] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  490.867703][T18930] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  490.878875][T18930] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  490.898485][T12096] SELinux: failed to load policy
[  490.903657][T12095] macvtap0: refused to change device tx_queue_len
[  490.942725][T12100] xt_hashlimit: max too large, truncated to 1048576
[  491.109424][T12123] netlink: 60 bytes leftover after parsing attributes in process `syz.4.17646'.
[  491.118662][T12123] netlink: 60 bytes leftover after parsing attributes in process `syz.4.17646'.
[  491.140006][T12128] netlink: 24 bytes leftover after parsing attributes in process `syz.2.17648'.
[  491.164253][T12123] netlink: 60 bytes leftover after parsing attributes in process `syz.4.17646'.
[  491.173415][T12123] netlink: 60 bytes leftover after parsing attributes in process `syz.4.17646'.
[  491.231767][T12123] netlink: 60 bytes leftover after parsing attributes in process `syz.4.17646'.
[  491.241252][T12123] netlink: 60 bytes leftover after parsing attributes in process `syz.4.17646'.
[  491.403486][T12880] hid_parser_main: 22 callbacks suppressed
[  491.403505][T12880] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  491.457590][T12880] hid-generic 0000:0000:0000.0017: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  491.632481][T12161] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17661'.
[  491.848924][T12181] loop4: detected capacity change from 0 to 512
[  491.856699][T12181] EXT4-fs (loop4): blocks per group (8192) and clusters per group (2304) inconsistent
[  492.301790][T12223] smc: net device bond0 erased user defined pnetid SYZ0
[  492.655761][   T29] kauditd_printk_skb: 274 callbacks suppressed
[  492.655781][   T29] audit: type=1400 audit(543.646:22111): avc:  denied  { mounton } for  pid=12248 comm="syz.9.17704" path="/305/file0" dev="tmpfs" ino=1582 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  492.691047][T12251] smc: net device bond0 applied user defined pnetid SYZ0
[  492.714601][T12251] smc: net device bond0 erased user defined pnetid SYZ0
[  492.724809][   T29] audit: type=1400 audit(543.676:22112): avc:  denied  { create } for  pid=12250 comm="syz.0.17706" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  492.745284][   T29] audit: type=1400 audit(543.676:22113): avc:  denied  { write } for  pid=12250 comm="syz.0.17706" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  492.765408][   T29] audit: type=1400 audit(543.676:22114): avc:  denied  { read } for  pid=12250 comm="syz.0.17706" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  492.785492][   T29] audit: type=1400 audit(543.676:22115): avc:  denied  { read } for  pid=12250 comm="syz.0.17706" dev="nsfs" ino=4026532723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  492.804198][T12255] netlink: 'syz.2.17707': attribute type 3 has an invalid length.
[  492.806564][   T29] audit: type=1400 audit(543.676:22116): avc:  denied  { open } for  pid=12250 comm="syz.0.17706" path="net:[4026532723]" dev="nsfs" ino=4026532723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  492.857303][   T29] audit: type=1400 audit(543.846:22117): avc:  denied  { mounton } for  pid=12256 comm="syz.0.17708" path="/proc/1977/task" dev="proc" ino=146562 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  492.880119][   T29] audit: type=1400 audit(543.846:22118): avc:  denied  { mount } for  pid=12256 comm="syz.0.17708" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  492.944199][   T29] audit: type=1326 audit(543.896:22119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.4.17710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90652cf749 code=0x7ffc0000
[  492.967501][   T29] audit: type=1326 audit(543.896:22120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.4.17710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90652cf749 code=0x7ffc0000
[  493.027939][T12272] loop4: detected capacity change from 0 to 512
[  493.035958][T12272] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  493.045298][T12272] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002]
[  493.053357][T12272] System zones: 1-12
[  493.066462][T12272] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.17715: corrupted in-inode xattr: e_value size too large
[  493.081436][T12272] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.17715: couldn't read orphan inode 15 (err -117)
[  493.095702][T12272] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  493.129915][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  493.235146][T11242] page_pool_release_retry() stalled pool shutdown: id 219, 1 inflight 60 sec
[  493.512632][T12305] loop4: detected capacity change from 0 to 8192
[  493.569447][T12317] sch_tbf: burst 2 is lower than device syzkaller0 mtu (1514) !
[  493.809853][T12327] loop4: detected capacity change from 0 to 1024
[  493.825531][T12327] EXT4-fs: Ignoring removed nomblk_io_submit option
[  493.846610][T12327] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  493.854802][T12327] System zones: 0-1, 3-36
[  493.870386][T12327] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  493.917788][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  493.945572][T12343] loop9: detected capacity change from 0 to 512
[  493.952489][T12343] EXT4-fs: inline encryption not supported
[  493.970384][T12343] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  494.001468][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  494.012318][T18988] Bluetooth: hci0: Frame reassembly failed (-84)
[  494.909971][T12420] netlink: 'syz.9.17775': attribute type 4 has an invalid length.
[  494.922870][T12420] netlink: 'syz.9.17775': attribute type 4 has an invalid length.
[  495.217826][T12439] vhci_hcd vhci_hcd.4: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  495.276936][T12447] vhci_hcd vhci_hcd.4: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  495.659285][T12473] futex_wake_op: syz.9.17802 tries to shift op by -3; fix this program
[  496.034963][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  496.042188][ T3703] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  496.317909][T12531] sd 0:0:1:0: device reset
[  496.435641][T12543] random: crng reseeded on system resumption
[  496.646179][T12566] ªªªªªª: renamed from wg2
[  496.658290][T12568] netlink: 'syz.2.17846': attribute type 1 has an invalid length.
[  496.719079][T12577] __nla_validate_parse: 10 callbacks suppressed
[  496.719163][T12577] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17850'.
[  496.749159][T12562] netlink: 84 bytes leftover after parsing attributes in process `syz.9.17841'.
[  496.758422][T12562] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  496.934423][T12585] vlan2: entered allmulticast mode
[  497.410466][T12630] netlink: 'syz.3.17873': attribute type 1 has an invalid length.
[  497.780268][   T29] kauditd_printk_skb: 832 callbacks suppressed
[  497.780289][   T29] audit: type=1326 audit(548.766:22953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  497.820120][   T29] audit: type=1326 audit(548.766:22954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  497.843326][   T29] audit: type=1326 audit(548.796:22955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  497.866470][   T29] audit: type=1326 audit(548.796:22956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  497.889826][   T29] audit: type=1326 audit(548.796:22957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  497.913158][   T29] audit: type=1326 audit(548.796:22958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  497.936318][   T29] audit: type=1326 audit(548.796:22959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  497.966173][   T29] audit: type=1326 audit(548.796:22960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  497.990283][   T29] audit: type=1326 audit(548.796:22961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  498.013419][   T29] audit: type=1326 audit(548.796:22962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.17889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  498.063662][T12645] netlink: 20 bytes leftover after parsing attributes in process `syz.3.17891'.
[  498.179183][T12656] lo speed is unknown, defaulting to 1000
[  499.004907][ T3703] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  499.007113][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  499.585103][T12687] vlan2: entered allmulticast mode
[  499.590410][T12687] bridge_slave_0: entered allmulticast mode
[  499.826870][T12727] netlink: 'syz.4.17918': attribute type 19 has an invalid length.
[  499.834980][T12727] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17918'.
[  499.865633][T12727] netlink: 'syz.4.17918': attribute type 19 has an invalid length.
[  499.873594][T12727] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17918'.
[  499.904375][T12733] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  499.920323][T12735] netlink: 12 bytes leftover after parsing attributes in process `syz.2.17924'.
[  499.966245][T12746] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17928'.
[  500.107141][T12770] loop4: detected capacity change from 0 to 512
[  500.112216][T12773] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17942'.
[  500.123351][T12770] ext4: Unknown parameter 'dont_measure'
[  500.131734][T12771] netlink: 12 bytes leftover after parsing attributes in process `syz.9.17941'.
[  500.214756][T12781] vlan2: entered allmulticast mode
[  500.640673][T12824] vlan2: entered allmulticast mode
[  500.726327][T12828] netlink: 'syz.3.17967': attribute type 19 has an invalid length.
[  500.734262][T12828] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17967'.
[  500.748516][T18920] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  500.757712][T18920] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  500.766589][T12828] netlink: 'syz.3.17967': attribute type 19 has an invalid length.
[  500.787333][T18920] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  500.796224][T18920] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  501.243667][T12889] vlan2: entered allmulticast mode
[  501.248984][T12889] bridge_slave_0: entered allmulticast mode
[  501.382765][T12903] SELinux: ebitmap: truncated map
[  501.422808][T12903] SELinux: failed to load policy
[  501.823963][T12955] lo speed is unknown, defaulting to 1000
[  502.102180][T12974] vlan2: entered allmulticast mode
[  502.121429][T12976] __nla_validate_parse: 3 callbacks suppressed
[  502.121451][T12976] netlink: 56 bytes leftover after parsing attributes in process `syz.0.18036'.
[  502.278375][T12983] netlink: 28 bytes leftover after parsing attributes in process `syz.9.18039'.
[  502.287640][T12983] netlink: 32 bytes leftover after parsing attributes in process `syz.9.18039'.
[  502.296993][T12983] netlink: 28 bytes leftover after parsing attributes in process `syz.9.18039'.
[  502.312199][T12987] loop4: detected capacity change from 0 to 764
[  502.322266][T12983] netlink: 32 bytes leftover after parsing attributes in process `syz.9.18039'.
[  502.501000][T13006] netlink: 4 bytes leftover after parsing attributes in process `syz.0.18050'.
[  502.657540][T13029] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.18061'.
[  502.779026][T13042] netlink: 36 bytes leftover after parsing attributes in process `syz.9.18066'.
[  502.788296][T13042] netlink: 36 bytes leftover after parsing attributes in process `syz.9.18066'.
[  502.817249][T13044] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=13044 comm=syz.0.18067
[  502.829881][   T29] kauditd_printk_skb: 155 callbacks suppressed
[  502.829900][   T29] audit: type=1400 audit(578.809:23118): avc:  denied  { nlmsg_write } for  pid=13043 comm="syz.0.18067" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  502.865795][T13042] netlink: 36 bytes leftover after parsing attributes in process `syz.9.18066'.
[  502.937137][   T29] audit: type=1400 audit(578.919:23119): avc:  denied  { write } for  pid=13047 comm="syz.0.18069" name="tcp6" dev="proc" ino=4026533043 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  503.008960][   T29] audit: type=1326 audit(578.959:23120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13051 comm="syz.9.18070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  503.032343][   T29] audit: type=1326 audit(578.959:23121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13051 comm="syz.9.18070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  503.055538][   T29] audit: type=1400 audit(578.959:23122): avc:  denied  { getopt } for  pid=13049 comm="syz.3.18072" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  503.074768][   T29] audit: type=1326 audit(578.969:23123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13051 comm="syz.9.18070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  503.098056][   T29] audit: type=1326 audit(578.969:23124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13051 comm="syz.9.18070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  503.121425][   T29] audit: type=1326 audit(578.969:23125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13051 comm="syz.9.18070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  503.144519][   T29] audit: type=1326 audit(578.969:23126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13051 comm="syz.9.18070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  503.167628][   T29] audit: type=1326 audit(578.969:23127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13051 comm="syz.9.18070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  504.536175][T13159] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  504.589367][T13163] smc: net device bond0 applied user defined pnetid SYZ0
[  504.607032][T13163] smc: net device bond0 erased user defined pnetid SYZ0
[  504.935778][T13200] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  504.943130][T13200] vhci_hcd vhci_hcd.2: invalid port number 96
[  504.949351][T13200] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  505.499183][T13213] netlink: 'syz.2.18151': attribute type 1 has an invalid length.
[  505.805280][T13237] syz.2.18152: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  505.820201][T13237] CPU: 1 UID: 0 PID: 13237 Comm: syz.2.18152 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  505.820272][T13237] Tainted: [W]=WARN
[  505.820284][T13237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  505.820313][T13237] Call Trace:
[  505.820323][T13237]  <TASK>
[  505.820335][T13237]  __dump_stack+0x1d/0x30
[  505.820375][T13237]  dump_stack_lvl+0xe8/0x140
[  505.820436][T13237]  dump_stack+0x15/0x1b
[  505.820464][T13237]  warn_alloc+0x12b/0x1a0
[  505.820499][T13237]  ? _raw_spin_lock_irqsave+0x75/0xd0
[  505.820615][T13237]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  505.820665][T13237]  __vmalloc_node_range_noprof+0xa0/0x1310
[  505.820702][T13237]  ? common_lsm_audit+0x1ca/0x230
[  505.820819][T13237]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  505.820887][T13237]  ? slow_avc_audit+0x104/0x140
[  505.820948][T13237]  ? should_fail_ex+0x30/0x280
[  505.820985][T13237]  ? should_failslab+0x8c/0xb0
[  505.821022][T13237]  vmalloc_user_noprof+0x7d/0xb0
[  505.821061][T13237]  ? xskq_create+0x80/0xe0
[  505.821101][T13237]  xskq_create+0x80/0xe0
[  505.821126][T13237]  xsk_init_queue+0x95/0xf0
[  505.821160][T13237]  xsk_setsockopt+0x3f5/0x640
[  505.821302][T13237]  ? __pfx_xsk_setsockopt+0x10/0x10
[  505.821339][T13237]  __sys_setsockopt+0x184/0x200
[  505.821379][T13237]  __x64_sys_setsockopt+0x64/0x80
[  505.821503][T13237]  x64_sys_call+0x21d5/0x3000
[  505.821543][T13237]  do_syscall_64+0xd8/0x2c0
[  505.821618][T13237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.821650][T13237] RIP: 0033:0x7f935a8df749
[  505.821671][T13237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.821698][T13237] RSP: 002b:00007f9359347038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  505.821752][T13237] RAX: ffffffffffffffda RBX: 00007f935ab35fa0 RCX: 00007f935a8df749
[  505.821770][T13237] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000006
[  505.821820][T13237] RBP: 00007f935a963f91 R08: 0000000000000004 R09: 0000000000000000
[  505.821839][T13237] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.821857][T13237] R13: 00007f935ab36038 R14: 00007f935ab35fa0 R15: 00007ffda0042ee8
[  505.821956][T13237]  </TASK>
[  505.821966][T13237] Mem-Info:
[  506.047208][T13237] active_anon:11646 inactive_anon:57 isolated_anon:0
[  506.047208][T13237]  active_file:12476 inactive_file:10972 isolated_file:0
[  506.047208][T13237]  unevictable:0 dirty:32 writeback:0
[  506.047208][T13237]  slab_reclaimable:3979 slab_unreclaimable:75244
[  506.047208][T13237]  mapped:30764 shmem:2142 pagetables:1187
[  506.047208][T13237]  sec_pagetables:0 bounce:0
[  506.047208][T13237]  kernel_misc_reclaimable:0
[  506.047208][T13237]  free:1716807 free_pcp:18229 free_cma:0
[  506.092603][T13237] Node 0 active_anon:47048kB inactive_anon:228kB active_file:49904kB inactive_file:43888kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:123404kB dirty:128kB writeback:0kB shmem:9032kB kernel_stack:5216kB pagetables:4748kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  506.120206][T13237] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  506.149929][T13237] lowmem_reserve[]: 0 2880 7859 7859
[  506.155306][T13237] Node 0 DMA32 free:2945968kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2949496kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  506.186474][T13237] lowmem_reserve[]: 0 0 4978 4978
[  506.191588][T13237] Node 0 Normal free:3915180kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:46932kB inactive_anon:228kB active_file:49904kB inactive_file:43872kB unevictable:0kB writepending:128kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:65676kB local_pcp:21372kB free_cma:0kB
[  506.225024][T13237] lowmem_reserve[]: 0 0 0 0
[  506.229729][T13237] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  506.242634][T13237] Node 0 DMA32: 6*4kB (M) 3*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 716*4096kB (M) = 2945968kB
[  506.259007][T13237] Node 0 Normal: 3471*4kB (UM) 3595*8kB (UME) 2267*16kB (UME) 1577*32kB (UME) 1474*64kB (UME) 1007*128kB (UME) 620*256kB (UME) 420*512kB (UME) 314*1024kB (UME) 122*2048kB (UM) 639*4096kB (UM) = 3915108kB
[  506.279400][T13237] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  506.288735][T13237] 26500 total pagecache pages
[  506.293431][T13237] 71 pages in swap cache
[  506.297774][T13237] Free swap  = 124184kB
[  506.301932][T13237] Total swap = 124996kB
[  506.306132][T13237] 2097051 pages RAM
[  506.309990][T13237] 0 pages HighMem/MovableOnly
[  506.314676][T13237] 81277 pages reserved
[  506.771709][T13277] netlink: 'syz.2.18170': attribute type 4 has an invalid length.
[  506.822163][T13282] netlink: 'syz.2.18170': attribute type 4 has an invalid length.
[  506.972836][T13294] smc: net device bond0 applied user defined pnetid SYZ0
[  506.981150][T13294] smc: net device bond0 erased user defined pnetid SYZ0
[  507.185864][T13315] netlink: 'syz.4.18187': attribute type 4 has an invalid length.
[  507.200955][T13315] netlink: 'syz.4.18187': attribute type 4 has an invalid length.
[  507.358538][T13331] rdma_rxe: rxe_newlink: failed to add lo
[  507.557303][T13347] loop4: detected capacity change from 0 to 1024
[  507.571791][T13347] EXT4-fs: Ignoring removed orlov option
[  507.597782][T13347] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  507.637014][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  507.795128][T13358] netlink: 'syz.3.18205': attribute type 4 has an invalid length.
[  507.825412][T13358] netlink: 'syz.3.18205': attribute type 4 has an invalid length.
[  507.888642][T13363] loop9: detected capacity change from 0 to 164
[  507.889046][   T29] kauditd_printk_skb: 51 callbacks suppressed
[  507.889064][   T29] audit: type=1326 audit(583.879:23179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.18207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  507.943141][T13363] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  507.988873][   T29] audit: type=1326 audit(583.919:23180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.18207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  508.012209][   T29] audit: type=1326 audit(583.919:23181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.18207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  508.024243][T13363] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  508.035585][   T29] audit: type=1326 audit(583.919:23182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.18207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  508.066755][   T29] audit: type=1326 audit(583.919:23183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.18207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  508.089849][   T29] audit: type=1326 audit(583.919:23184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.18207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  508.093841][T13363] Symlink component flag not implemented
[  508.113405][   T29] audit: type=1326 audit(583.919:23185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.18207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  508.119071][T13363] Symlink component flag not implemented
[  508.148482][   T29] audit: type=1326 audit(583.919:23186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.18207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  508.153471][T13363] Symlink component flag not implemented (7)
[  508.177818][T13363] Symlink component flag not implemented (116)
[  508.206368][   T29] audit: type=1400 audit(584.199:23187): avc:  denied  { write } for  pid=13372 comm="syz.2.18213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  508.390119][   T29] audit: type=1326 audit(584.379:23188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13391 comm="syz.3.18231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  508.911043][T13428] syzkaller0: mtu greater than device maximum
[  509.149258][T13452] netlink: 'syz.2.18246': attribute type 21 has an invalid length.
[  509.160068][T13452] netlink: 'syz.2.18246': attribute type 1 has an invalid length.
[  509.167990][T13452] __nla_validate_parse: 13 callbacks suppressed
[  509.168010][T13452] netlink: 144 bytes leftover after parsing attributes in process `syz.2.18246'.
[  509.193682][T13454] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18242'.
[  509.964992][T13534] sg_write: data in/out 49276/1 bytes for SCSI command 0x6-- guessing data in;
[  509.964992][T13534]    program syz.2.18285 not setting count and/or reply_len properly
[  510.270978][T13566] netlink: 'syz.3.18301': attribute type 30 has an invalid length.
[  510.310433][T13568] loop4: detected capacity change from 0 to 512
[  510.346674][T13568] EXT4-fs: inline encryption not supported
[  510.358527][T13568] EXT4-fs: Ignoring removed i_version option
[  510.376334][T13568] EXT4-fs (loop4): 1 orphan inode deleted
[  510.382568][T13568] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  510.416506][T13575] xt_hashlimit: max too large, truncated to 1048576
[  510.469257][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  510.567698][T13582] loop4: detected capacity change from 0 to 512
[  510.579785][T13585] netlink: 'syz.0.18310': attribute type 4 has an invalid length.
[  510.611162][T13582] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  510.623922][T13585] netlink: 'syz.0.18310': attribute type 4 has an invalid length.
[  510.693801][T13593] netlink: 'syz.0.18313': attribute type 21 has an invalid length.
[  510.722772][T13593] netlink: 'syz.0.18313': attribute type 1 has an invalid length.
[  510.730794][T13593] netlink: 144 bytes leftover after parsing attributes in process `syz.0.18313'.
[  510.758725][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  510.784795][T13597] sch_tbf: peakrate 146 is lower than or equals to rate 3221225473 !
[  510.927055][T13609] syzkaller0: mtu greater than device maximum
[  511.001995][T13605] infiniband !yz!: set down
[  511.006722][T13605] infiniband !yz!: added team_slave_0
[  511.040917][T13605] RDS/IB: !yz!: added
[  511.045218][T13605] smc: adding ib device !yz! with port count 1
[  511.058632][T13605] smc:    ib device !yz! port 1 has no pnetid
[  511.188976][T13619] netlink: 'syz.4.18324': attribute type 4 has an invalid length.
[  511.231914][T13619] netlink: 'syz.4.18324': attribute type 4 has an invalid length.
[  511.939301][T13692] IPv6: NLM_F_CREATE should be specified when creating new route
[  511.997244][T13700] batman_adv: batadv0: Adding interface: dummy0
[  512.003537][T13700] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  512.028874][T13700] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  512.096142][T13710] netlink: 8 bytes leftover after parsing attributes in process `syz.9.18361'.
[  512.105228][T13710] netlink: 16 bytes leftover after parsing attributes in process `syz.9.18361'.
[  512.171814][T13720] netlink: 'syz.0.18365': attribute type 30 has an invalid length.
[  512.202532][T19013] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  512.211778][T19013] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  512.235679][T13728] IPv6: NLM_F_CREATE should be specified when creating new route
[  512.241644][T19013] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  512.255597][T19013] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  512.398557][T13746] batman_adv: batadv0: Adding interface: dummy0
[  512.405032][T13746] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  512.430360][T13746] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  512.556896][T13758] loop9: detected capacity change from 0 to 256
[  512.565835][T13757] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18381'.
[  512.574912][T13757] netlink: 16 bytes leftover after parsing attributes in process `syz.2.18381'.
[  512.584151][T13758] FAT-fs (loop9): bogus number of FAT sectors
[  512.590434][T13758] FAT-fs (loop9): Can't find a valid FAT filesystem
[  512.691994][T13765] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  512.691994][T13765]    program syz.2.18387 not setting count and/or reply_len properly
[  512.899078][T13777] loop9: detected capacity change from 0 to 512
[  512.928835][T13777] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  513.017883][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.749157][   T29] kauditd_printk_skb: 156 callbacks suppressed
[  513.749251][   T29] audit: type=1326 audit(589.739:23345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13819 comm="syz.3.18410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  513.849974][   T29] audit: type=1326 audit(589.769:23346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13819 comm="syz.3.18410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  513.873085][   T29] audit: type=1326 audit(589.769:23347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13819 comm="syz.3.18410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a5f87f749 code=0x7ffc0000
[  514.017684][T13838] loop4: detected capacity change from 0 to 512
[  514.025782][   T29] audit: type=1400 audit(589.949:23348): avc:  denied  { listen } for  pid=13830 comm="syz.9.18415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  514.045033][   T29] audit: type=1400 audit(589.949:23349): avc:  denied  { accept } for  pid=13830 comm="syz.9.18415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  514.068773][   T29] audit: type=1400 audit(590.059:23350): avc:  denied  { bind } for  pid=13841 comm="syz.3.18420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  514.090040][T13840] loop9: detected capacity change from 0 to 164
[  514.099732][T13838] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  514.116681][T13840] ISOFS: unable to read i-node block
[  514.138179][T13849] smc: net device bond0 applied user defined pnetid SYZ0
[  514.159294][T13849] smc: net device bond0 erased user defined pnetid SYZ0
[  514.194076][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  514.257566][   T29] audit: type=1326 audit(590.249:23351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13862 comm="syz.9.18439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  514.280744][   T29] audit: type=1326 audit(590.249:23352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13862 comm="syz.9.18439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  514.303951][   T29] audit: type=1326 audit(590.249:23353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13862 comm="syz.9.18439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  514.327178][T13865] pimreg: entered allmulticast mode
[  514.346286][   T29] audit: type=1326 audit(590.249:23354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13862 comm="syz.9.18439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  514.370443][T13865] pimreg: left allmulticast mode
[  514.402116][T13874] netlink: 8 bytes leftover after parsing attributes in process `syz.9.18430'.
[  514.411289][T13874] netlink: 8 bytes leftover after parsing attributes in process `syz.9.18430'.
[  514.427502][T13874] netlink: 8 bytes leftover after parsing attributes in process `syz.9.18430'.
[  514.436692][T13874] netlink: 8 bytes leftover after parsing attributes in process `syz.9.18430'.
[  514.507242][T13886] smc: net device bond0 applied user defined pnetid SYZ0
[  514.522386][T13886] smc: net device bond0 erased user defined pnetid SYZ0
[  514.630780][T13904] loop9: detected capacity change from 0 to 2048
[  514.667393][T13904] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  514.707350][T13913] pim6reg: entered allmulticast mode
[  514.715075][T13913] pim6reg: left allmulticast mode
[  514.750900][T13915] pimreg: entered allmulticast mode
[  514.786490][T13915] pimreg: left allmulticast mode
[  514.946509][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.189684][T13983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18477'.
[  515.198784][T13983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18477'.
[  515.217966][T13983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18477'.
[  515.227081][T13983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18477'.
[  515.272067][T13989] ALSA: seq fatal error: cannot create timer (-19)
[  515.399074][T14015] netlink: 'syz.2.18492': attribute type 3 has an invalid length.
[  515.438475][T14020] pim6reg: entered allmulticast mode
[  515.446120][T14020] pim6reg: left allmulticast mode
[  516.349406][T14097] netlink: 204 bytes leftover after parsing attributes in process `syz.4.18529'.
[  516.420085][T14102] netlink: 'syz.3.18532': attribute type 3 has an invalid length.
[  516.564528][T14123] loop4: detected capacity change from 0 to 512
[  516.591582][T14123] EXT4-fs (loop4): 1 orphan inode deleted
[  516.605507][T14123] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  516.645502][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  516.701157][T14145] ip6gre1: entered promiscuous mode
[  516.706595][T14145] ip6gre1: entered allmulticast mode
[  516.735737][T14147] netlink: 'syz.4.18552': attribute type 29 has an invalid length.
[  517.044746][T14169] netlink: 204 bytes leftover after parsing attributes in process `syz.0.18560'.
[  517.061576][T14171] loop4: detected capacity change from 0 to 512
[  517.093894][T14171] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.18561: bg 0: block 248: padding at end of block bitmap is not set
[  517.133755][T14171] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.18561: Failed to acquire dquot type 1
[  517.147076][T14171] EXT4-fs (loop4): 1 truncate cleaned up
[  517.154450][T14171] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  517.183415][T14187] loop0: detected capacity change from 0 to 512
[  517.190665][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  517.208315][T14187] EXT4-fs (loop0): 1 orphan inode deleted
[  517.216822][T14187] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  517.258151][ T1720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  517.305739][T14205] loop0: detected capacity change from 0 to 128
[  518.145297][T14265] sctp: [Deprecated]: syz.3.18602 (pid 14265) Use of int in max_burst socket option deprecated.
[  518.145297][T14265] Use struct sctp_assoc_value instead
[  518.334724][T14291] ip6gre1: entered promiscuous mode
[  518.340150][T14291] ip6gre1: entered allmulticast mode
[  518.891214][T14305] loop9: detected capacity change from 0 to 512
[  518.907578][T19013] Bluetooth: hci0: Frame reassembly failed (-84)
[  518.915586][T14305] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  518.930368][   T29] kauditd_printk_skb: 73 callbacks suppressed
[  518.930383][   T29] audit: type=1400 audit(594.919:23426): avc:  denied  { setattr } for  pid=14304 comm="syz.9.18631" name="/" dev="loop9" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  518.958675][T14305] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #2: comm syz.9.18631: corrupted inode contents
[  518.971881][T14305] EXT4-fs error (device loop9): ext4_dirty_inode:6502: inode #2: comm syz.9.18631: mark_inode_dirty error
[  518.983904][T14305] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #2: comm syz.9.18631: corrupted inode contents
[  518.997140][T14305] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #2: comm syz.9.18631: corrupted inode contents
[  519.011577][T14305] EXT4-fs error (device loop9): ext4_dirty_inode:6502: inode #2: comm syz.9.18631: mark_inode_dirty error
[  519.036517][T14305] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #2: comm syz.9.18631: corrupted inode contents
[  519.067559][T14305] EXT4-fs error (device loop9): __ext4_ext_dirty:206: inode #2: comm syz.9.18631: mark_inode_dirty error
[  519.091887][T14305] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #2: comm syz.9.18631: corrupted inode contents
[  519.116752][T14305] EXT4-fs error (device loop9): ext4_dirty_inode:6502: inode #2: comm syz.9.18631: mark_inode_dirty error
[  519.146033][T14316] EXT4-fs error (device loop9): ext4_do_update_inode:5617: inode #2: comm syz.9.18631: corrupted inode contents
[  519.159513][   T29] audit: type=1400 audit(595.149:23427): avc:  denied  { create } for  pid=14304 comm="syz.9.18631" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  519.197679][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  519.307939][T14330] ip6gre1: entered promiscuous mode
[  519.313280][T14330] ip6gre1: entered allmulticast mode
[  519.484873][   T29] audit: type=1400 audit(595.469:23428): avc:  denied  { listen } for  pid=14342 comm="syz.4.18637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  519.505215][T14343] vhci_hcd vhci_hcd.3: default hub control req: 8013 v0000 i0000 l31125
[  519.668236][   T29] audit: type=1400 audit(595.659:23429): avc:  denied  { setopt } for  pid=14354 comm="syz.3.18642" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  519.755082][   T29] audit: type=1400 audit(595.739:23430): avc:  denied  { write } for  pid=14358 comm="syz.4.18644" name="mISDNtimer" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  519.778110][   T29] audit: type=1400 audit(595.749:23431): avc:  denied  { open } for  pid=14358 comm="syz.4.18644" path="/dev/mISDNtimer" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  519.962248][   T29] audit: type=1400 audit(595.949:23432): avc:  denied  { read write } for  pid=14370 comm="syz.3.18649" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  519.963738][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  519.985441][   T29] audit: type=1400 audit(595.949:23433): avc:  denied  { open } for  pid=14370 comm="syz.3.18649" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  520.016040][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.023499][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.030971][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.038643][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.046304][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.053809][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.061282][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.068778][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.076301][ T3365] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  520.089323][   T29] audit: type=1400 audit(596.079:23434): avc:  denied  { read } for  pid=14372 comm="syz.9.18651" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  520.149316][ T3365] hid-generic 0000:0000:0000.0018: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  520.203546][   T29] audit: type=1400 audit(596.179:23435): avc:  denied  { setopt } for  pid=14378 comm="syz.0.18652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  520.427473][T14413] netlink: 8 bytes leftover after parsing attributes in process `syz.4.18667'.
[  520.774067][T14441] loop4: detected capacity change from 0 to 512
[  520.790723][T14441] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  520.819724][T14441] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.18680: corrupted inode contents
[  520.831839][T14441] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #2: comm syz.4.18680: mark_inode_dirty error
[  520.843700][T14441] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.18680: corrupted inode contents
[  520.857773][T14441] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.18680: corrupted inode contents
[  520.871850][T14441] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #2: comm syz.4.18680: mark_inode_dirty error
[  520.884623][T14441] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.18680: corrupted inode contents
[  520.896875][T14441] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.18680: mark_inode_dirty error
[  520.909008][T14441] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.18680: corrupted inode contents
[  520.920923][ T3703] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  520.945005][T14441] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #2: comm syz.4.18680: mark_inode_dirty error
[  520.961816][T14452] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #2: comm syz.4.18680: corrupted inode contents
[  521.037038][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  521.052798][T14470] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18695'.
[  521.089442][T14473] netlink: 596 bytes leftover after parsing attributes in process `syz.4.18694'.
[  521.285647][T14496] loop0: detected capacity change from 0 to 512
[  521.311939][T14496] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  521.351265][T14496] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.18705: corrupted inode contents
[  521.373304][T14505] ip6gre1: entered promiscuous mode
[  521.378655][T14505] ip6gre1: entered allmulticast mode
[  521.395079][T14496] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #2: comm syz.0.18705: mark_inode_dirty error
[  521.449785][T14496] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.18705: corrupted inode contents
[  521.480719][T14512] netlink: 8 bytes leftover after parsing attributes in process `syz.9.18708'.
[  521.521175][T14496] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.18705: corrupted inode contents
[  521.564108][T14496] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #2: comm syz.0.18705: mark_inode_dirty error
[  521.598438][T14496] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.18705: corrupted inode contents
[  521.611611][T14496] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.18705: mark_inode_dirty error
[  521.623326][T14496] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.18705: corrupted inode contents
[  521.635791][T14496] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #2: comm syz.0.18705: mark_inode_dirty error
[  521.656147][T14506] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #2: comm syz.0.18705: corrupted inode contents
[  521.673299][T14527] loop9: detected capacity change from 0 to 1024
[  521.705531][T14527] EXT4-fs (loop9): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  521.716563][T14527] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  521.745290][T14527] JBD2: no valid journal superblock found
[  521.751078][T14527] EXT4-fs (loop9): Could not load journal inode
[  521.758615][ T1720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  521.781943][T14527] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  521.835768][T14536] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 2, id = 0
[  521.835836][T14533] IPVS: stopping master sync thread 14536 ...
[  521.897424][T14538] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  521.915049][T14538] vhci_hcd vhci_hcd.2: invalid port number 96
[  521.921256][T14538] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  522.085000][T14565] IPVS: Error connecting to the multicast addr
[  522.199152][T14579] netlink: 256 bytes leftover after parsing attributes in process `syz.2.18741'.
[  522.238665][T14587] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14587 comm=syz.2.18744
[  522.318676][T14598] IPVS: Error connecting to the multicast addr
[  522.370809][T14603] netlink: 68 bytes leftover after parsing attributes in process `syz.2.18751'.
[  522.615087][T14642] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  522.800505][T14669] netlink: 176 bytes leftover after parsing attributes in process `syz.2.18782'.
[  522.810824][T14671] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14671 comm=syz.3.18781
[  522.914282][T14684] loop0: detected capacity change from 0 to 512
[  522.916879][T14681] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  522.932875][T14684] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #18: comm syz.0.18788: iget: bad extra_isize 90 (inode size 256)
[  522.940278][T14681] vhci_hcd vhci_hcd.2: invalid port number 96
[  522.952439][T14681] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  522.964336][T14684] EXT4-fs (loop0): Remounting filesystem read-only
[  522.988068][T14684] EXT4-fs warning (device loop0): ext4_evict_inode:273: xattr delete (err -30)
[  523.007097][T14684] EXT4-fs (loop0): 1 orphan inode deleted
[  523.019219][T14684] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  523.034247][T14684] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  523.124405][T14699] loop0: detected capacity change from 0 to 1024
[  523.137064][T14699] EXT4-fs: Ignoring removed nobh option
[  523.142957][T14699] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  523.154705][T14699] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  523.166377][T14699] EXT4-fs error (device loop0): ext4_get_journal_inode:5849: comm syz.0.18795: inode #4294967295: comm syz.0.18795: iget: illegal inode #
[  523.183226][T14699] EXT4-fs (loop0): no journal found
[  523.188523][T14699] EXT4-fs (loop0): can't get journal size
[  523.196421][T14707] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14707 comm=syz.4.18797
[  523.214348][T14699] EXT4-fs (loop0): failed to initialize system zone (-22)
[  523.232692][T14699] EXT4-fs (loop0): mount failed
[  523.394080][T14729] netlink: 176 bytes leftover after parsing attributes in process `syz.9.18808'.
[  523.458872][T14741] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14741 comm=syz.0.18812
[  523.580545][T14763] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  523.589044][ T3402] kernel read not supported for file /ppp (pid: 3402 comm: kworker/1:3)
[  523.591831][T14763] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  523.609875][T14765] netlink: 176 bytes leftover after parsing attributes in process `syz.0.18826'.
[  524.198648][T14790] netlink: 4 bytes leftover after parsing attributes in process `syz.2.18836'.
[  524.220364][T14790] batman_adv: batadv0: Removing interface: batadv_slave_0
[  524.237036][T14790] batman_adv: batadv0: Removing interface: batadv_slave_1
[  524.271962][T14793] SELinux: ebitmap: truncated map
[  524.285760][T14793] SELinux: failed to load policy
[  524.298793][T14799] loop0: detected capacity change from 0 to 2048
[  524.335548][T14799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  524.369611][T14799] EXT4-fs error (device loop0): ext4_ext_precache:632: inode #2: comm syz.0.18844: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  524.391235][T14810] bridge: RTM_NEWNEIGH with invalid ether address
[  524.448722][ T1720] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  524.551041][   T29] kauditd_printk_skb: 128 callbacks suppressed
[  524.551075][   T29] audit: type=1326 audit(600.539:23564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.632257][   T29] audit: type=1326 audit(600.579:23565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.655433][   T29] audit: type=1326 audit(600.579:23566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.678513][   T29] audit: type=1326 audit(600.579:23567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.701753][   T29] audit: type=1326 audit(600.579:23568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.725029][   T29] audit: type=1326 audit(600.579:23569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.748196][   T29] audit: type=1326 audit(600.579:23570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.771329][   T29] audit: type=1326 audit(600.579:23571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.794422][   T29] audit: type=1326 audit(600.579:23572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.817589][   T29] audit: type=1326 audit(600.579:23573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14824 comm="syz.0.18855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3311f749 code=0x7ffc0000
[  524.926800][   T52] Bluetooth: hci0: Frame reassembly failed (-84)
[  525.201057][T14887] loop4: detected capacity change from 0 to 1024
[  525.207948][T14887] EXT4-fs: Ignoring removed orlov option
[  525.217378][T14887] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  525.244125][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  526.089084][T14913] vlan2: entered allmulticast mode
[  526.975073][ T6138] Bluetooth: hci1: sending frame failed (-49)
[  526.981662][ T3703] Bluetooth: hci1: Opcode 0x1003 failed: -49
[  526.994963][ T6138] Bluetooth: hci0: command 0x1003 tx timeout
[  526.995008][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  527.009334][T14961] atomic_op ffff888188ff5d28 conn xmit_atomic 0000000000000000
[  527.097295][T14972] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  527.128078][T14975] loop9: detected capacity change from 0 to 1024
[  527.134779][T14975] EXT4-fs: Ignoring removed orlov option
[  527.149767][T14975] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  527.162501][T14980] __nla_validate_parse: 1 callbacks suppressed
[  527.162522][T14980] netlink: 40 bytes leftover after parsing attributes in process `syz.4.18920'.
[  527.190358][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  527.285790][T14988] netlink: 8 bytes leftover after parsing attributes in process `syz.4.18926'.
[  527.317964][T14992] loop9: detected capacity change from 0 to 1024
[  527.335221][T14994] loop0: detected capacity change from 0 to 512
[  527.335342][T14992] EXT4-fs: Ignoring removed bh option
[  527.359768][T14992] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  527.372831][T14994] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  527.421284][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  527.444950][T14994] loop0: detected capacity change from 512 to 0
[  527.451770][T14994] EXT4-fs error (device loop0): ext4_get_inode_loc:4968: inode #18: block 35: comm syz.0.18929: unable to read itable block
[  527.464966][T14994] Buffer I/O error on dev loop0, logical block 0, lost sync page write
[  527.473230][T14994] EXT4-fs (loop0): I/O error while writing superblock
[  527.480062][T14994] EXT4-fs (loop0): Remounting filesystem read-only
[  527.512708][ T3876] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  527.522367][T14996] Buffer I/O error on dev loop0, logical block 12, lost sync page write
[  527.953684][T15006] netlink: 4 bytes leftover after parsing attributes in process `syz.4.18932'.
[  528.028375][T15011] vhci_hcd vhci_hcd.2: invalid port number 96
[  528.034516][T15011] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  528.049173][T15006] netlink: 4 bytes leftover after parsing attributes in process `syz.4.18932'.
[  528.073552][T15016] vlan0: entered allmulticast mode
[  528.113646][T15024] atomic_op ffff888188ff6d28 conn xmit_atomic 0000000000000000
[  528.158882][T15025] lo speed is unknown, defaulting to 1000
[  528.210354][T15008] lo speed is unknown, defaulting to 1000
[  528.496949][T15008] chnl_net:caif_netlink_parms(): no params data found
[  528.583355][T15008] bridge0: port 1(bridge_slave_0) entered blocking state
[  528.590541][T15008] bridge0: port 1(bridge_slave_0) entered disabled state
[  528.603482][T15008] bridge_slave_0: entered allmulticast mode
[  528.610651][T15008] bridge_slave_0: entered promiscuous mode
[  528.617767][T15008] bridge0: port 2(bridge_slave_1) entered blocking state
[  528.624903][T15008] bridge0: port 2(bridge_slave_1) entered disabled state
[  528.632163][T15008] bridge_slave_1: entered allmulticast mode
[  528.638995][T15008] bridge_slave_1: entered promiscuous mode
[  528.661767][T15008] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  528.676447][T15008] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  528.691545][T15060] netlink: 12 bytes leftover after parsing attributes in process `syz.9.18951'.
[  528.702865][T15060] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  528.722439][T15008] team0: Port device team_slave_0 added
[  528.730625][T15008] team0: Port device team_slave_1 added
[  528.776806][T15008] batman_adv: batadv0: Adding interface: batadv_slave_0
[  528.783872][T15008] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  528.810017][T15008] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  528.877617][T15008] batman_adv: batadv0: Adding interface: batadv_slave_1
[  528.884649][T15008] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  528.910642][T15008] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  529.064476][T15082] tipc: Started in network mode
[  529.069475][T15082] tipc: Node identity ac14140f, cluster identity 4711
[  529.096853][T15082] tipc: New replicast peer: 255.255.255.83
[  529.102902][T15082] tipc: Enabled bearer <udp:£>, priority 10
[  529.117581][T15008] hsr_slave_0: entered promiscuous mode
[  529.130770][T15085] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18964'.
[  529.142778][T15008] hsr_slave_1: entered promiscuous mode
[  529.164689][T15008] debugfs: 'hsr0' already exists in 'hsr'
[  529.170557][T15008] Cannot create hsr debugfs directory
[  529.294580][T15087] netlink: 4 bytes leftover after parsing attributes in process `syz.4.18965'.
[  529.338741][T15093] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18968'.
[  529.702303][T15103] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18972'.
[  529.711336][T15103] netlink: 12 bytes leftover after parsing attributes in process `syz.3.18972'.
[  529.909046][T15068] Set syz1 is full, maxelem 65536 reached
[  529.951878][T15008] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  529.969452][   T29] kauditd_printk_skb: 71 callbacks suppressed
[  529.969467][   T29] audit: type=1326 audit(605.959:23645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.037365][T15008] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  530.046618][   T29] audit: type=1326 audit(605.989:23646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.070379][   T29] audit: type=1326 audit(605.989:23647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.093556][   T29] audit: type=1326 audit(605.989:23648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.116808][   T29] audit: type=1326 audit(605.989:23649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.140193][   T29] audit: type=1326 audit(605.989:23650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.163534][   T29] audit: type=1326 audit(605.989:23651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.186707][   T29] audit: type=1326 audit(605.989:23652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.210105][   T29] audit: type=1326 audit(605.989:23653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.233476][   T29] audit: type=1326 audit(605.989:23654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15108 comm="syz.9.18975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  530.261517][ T3402] tipc: Node number set to 2886997007
[  530.297371][T15116] bridge0: entered promiscuous mode
[  530.307528][T15116] bridge0: port 4(macsec1) entered blocking state
[  530.313999][T15116] bridge0: port 4(macsec1) entered disabled state
[  530.321517][T15116] macsec1: entered allmulticast mode
[  530.326934][T15116] bridge0: entered allmulticast mode
[  530.335703][T15116] macsec1: left allmulticast mode
[  530.340830][T15116] bridge0: left allmulticast mode
[  530.361932][T15116] bridge0: left promiscuous mode
[  530.399237][T15008] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  530.526168][T15008] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  530.619554][T15008] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  530.629378][T15008] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  530.649340][T15008] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  530.665137][T15008] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  530.685828][T15153] lo speed is unknown, defaulting to 1000
[  530.819653][T15008] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.835963][T15176] veth0: entered promiscuous mode
[  530.847502][T15008] 8021q: adding VLAN 0 to HW filter on device team0
[  530.885934][T18941] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.893040][T18941] bridge0: port 1(bridge_slave_0) entered forwarding state
[  530.912824][T18941] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.919973][T18941] bridge0: port 2(bridge_slave_1) entered forwarding state
[  531.039790][T15194] loop9: detected capacity change from 0 to 1024
[  531.068813][T15194] EXT4-fs: Ignoring removed bh option
[  531.074529][T15194] EXT4-fs: inline encryption not supported
[  531.091552][T15194] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  531.112341][T15194] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  531.136485][T15194] EXT4-fs error (device loop9): ext4_map_blocks:783: inode #3: block 2: comm syz.9.19010: lblock 2 mapped to illegal pblock 2 (length 1)
[  531.146740][T15008] 8021q: adding VLAN 0 to HW filter on device batadv0
[  531.158601][T15194] EXT4-fs error (device loop9): ext4_map_blocks:783: inode #3: block 48: comm syz.9.19010: lblock 0 mapped to illegal pblock 48 (length 1)
[  531.193941][T15194] EXT4-fs error (device loop9): ext4_acquire_dquot:6986: comm syz.9.19010: Failed to acquire dquot type 0
[  531.206409][T15194] EXT4-fs error (device loop9) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  531.225005][T15194] EXT4-fs error (device loop9): ext4_evict_inode:253: inode #11: comm syz.9.19010: mark_inode_dirty error
[  531.238263][T15194] EXT4-fs warning (device loop9): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  531.254885][T15194] EXT4-fs (loop9): 1 orphan inode deleted
[  531.265581][T15194] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.278267][T18955] EXT4-fs error (device loop9): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:45: lblock 1 mapped to illegal pblock 1 (length 1)
[  531.345549][T18955] EXT4-fs error (device loop9): ext4_release_dquot:7022: comm kworker/u8:45: Failed to release dquot type 0
[  531.408245][T15194] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  531.458043][T15008] veth0_vlan: entered promiscuous mode
[  531.476784][T15008] veth1_vlan: entered promiscuous mode
[  531.486443][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.507801][T15008] veth0_macvtap: entered promiscuous mode
[  531.523886][T15008] veth1_macvtap: entered promiscuous mode
[  531.540506][T15228] binfmt_misc: register: failed to install interpreter file ./file2
[  531.557111][T15008] batman_adv: batadv0: Interface activated: batadv_slave_0
[  531.587986][T15008] batman_adv: batadv0: Interface activated: batadv_slave_1
[  531.614971][T18927] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  531.639898][T15236] netem: incorrect gi model size
[  531.644971][T15236] netem: change failed
[  531.649295][T18927] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  531.675377][T18927] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  531.692299][T18927] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  532.323197][T15307] loop4: detected capacity change from 0 to 8192
[  532.977400][T15360] loop0: detected capacity change from 0 to 128
[  532.985885][T15360] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  533.049221][T15008] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  533.322833][T15386] __nla_validate_parse: 11 callbacks suppressed
[  533.322851][T15386] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19092'.
[  533.539634][T15400] loop0: detected capacity change from 0 to 1024
[  533.566217][T15400] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  533.577236][T15400] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  533.616889][T15400] JBD2: no valid journal superblock found
[  533.622666][T15400] EXT4-fs (loop0): Could not load journal inode
[  533.636431][T15410] netlink: 'syz.3.19104': attribute type 3 has an invalid length.
[  533.664325][T15400] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  534.134991][T15455] netlink: 'syz.9.19125': attribute type 1 has an invalid length.
[  534.154975][T15455] 8021q: adding VLAN 0 to HW filter on device bond1
[  534.175312][T15455] bond1: (slave geneve2): making interface the new active one
[  534.184315][T15455] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  534.223482][T15492] loop0: detected capacity change from 0 to 512
[  534.256693][T15492] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  534.306320][T15492] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  534.335918][T15492] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  534.420866][T15507] netlink: 'syz.3.19131': attribute type 29 has an invalid length.
[  534.473366][T15509] sctp: [Deprecated]: syz.2.19132 (pid 15509) Use of struct sctp_assoc_value in delayed_ack socket option.
[  534.473366][T15509] Use struct sctp_sack_info instead
[  534.690843][T15527] bond0: (slave bond_slave_0): Releasing backup interface
[  534.774038][T15537] bridge0: entered promiscuous mode
[  534.781633][T15537] bridge0: port 3(macsec1) entered blocking state
[  534.788249][T15537] bridge0: port 3(macsec1) entered disabled state
[  534.795310][T15537] macsec1: entered allmulticast mode
[  534.800636][T15537] bridge0: entered allmulticast mode
[  534.806694][T15537] macsec1: left allmulticast mode
[  534.811764][T15537] bridge0: left allmulticast mode
[  534.817508][T15537] bridge0: left promiscuous mode
[  534.887213][T15008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  535.008580][T15565] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15565 comm=syz.2.19151
[  535.102914][   T29] kauditd_printk_skb: 103 callbacks suppressed
[  535.102934][   T29] audit: type=1400 audit(611.089:23755): avc:  denied  { write } for  pid=15568 comm="syz.0.19154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  535.394267][T15594] loop0: detected capacity change from 0 to 1024
[  535.436329][T15594] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  535.457624][   T29] audit: type=1400 audit(611.449:23756): avc:  denied  { map } for  pid=15593 comm="syz.0.19164" path="/28/file1/file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  535.458344][T15594] EXT4-fs error (device loop0): ext4_free_blocks:6728: comm syz.0.19164: Freeing blocks not in datazone - block = 0, count = 16
[  535.494002][   T29] audit: type=1400 audit(611.449:23757): avc:  denied  { execute } for  pid=15593 comm="syz.0.19164" path="/28/file1/file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  535.531498][T18941] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:35: bg 0: block 112: padding at end of block bitmap is not set
[  535.575220][T18941] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  535.587661][T18941] EXT4-fs (loop0): This should not happen!! Data will be lost
[  535.587661][T18941] 
[  535.619748][   T29] audit: type=1400 audit(611.609:23758): avc:  denied  { mount } for  pid=15608 comm="syz.4.19169" name="/" dev="ramfs" ino=157174 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  535.655529][T15008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  535.666959][   T29] audit: type=1326 audit(611.659:23759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15610 comm="syz.4.19171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90652cf749 code=0x7ffc0000
[  535.707804][   T29] audit: type=1326 audit(611.659:23760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15610 comm="syz.4.19171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90652cf749 code=0x7ffc0000
[  535.731128][   T29] audit: type=1326 audit(611.679:23761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15610 comm="syz.4.19171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90652cf749 code=0x7ffc0000
[  535.754561][   T29] audit: type=1326 audit(611.679:23762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15610 comm="syz.4.19171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90652cf749 code=0x7ffc0000
[  535.777828][   T29] audit: type=1326 audit(611.679:23763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15610 comm="syz.4.19171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90652cf749 code=0x7ffc0000
[  535.795352][T15617] netlink: 'syz.2.19170': attribute type 3 has an invalid length.
[  535.801126][   T29] audit: type=1326 audit(611.679:23764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15610 comm="syz.4.19171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90652cf749 code=0x7ffc0000
[  535.941689][T15627] loop4: detected capacity change from 0 to 1024
[  535.983647][T15627] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  536.010426][T15627] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.19176: bg 0: block 112: padding at end of block bitmap is not set
[  536.075484][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  536.107627][T15639] netlink: 'syz.4.19179': attribute type 1 has an invalid length.
[  536.140720][T15639] 8021q: adding VLAN 0 to HW filter on device bond1
[  536.170813][T15673] bond1: (slave geneve2): making interface the new active one
[  536.197457][T15673] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  536.415589][T15685] netlink: 20 bytes leftover after parsing attributes in process `syz.3.19192'.
[  536.435232][T15685] netlink: 20 bytes leftover after parsing attributes in process `syz.3.19192'.
[  536.492404][T15689] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19184'.
[  537.228209][T15741] loop0: detected capacity change from 0 to 1024
[  537.235103][T15741] EXT4-fs: inline encryption not supported
[  537.241010][T15741] EXT4-fs: Ignoring removed orlov option
[  537.263756][T15741] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  537.297895][T15741] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c018, mo2=0002]
[  537.306399][T15741] System zones: 0-1, 3-12
[  537.311633][T15741] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  537.353813][T15008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  537.447352][T15764] loop0: detected capacity change from 0 to 1024
[  537.455269][T15764] EXT4-fs: Ignoring removed bh option
[  537.488371][T15764] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  537.577918][T15008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  537.691093][T15797] openvswitch: netlink: Missing key (keys=40, expected=80)
[  537.796341][T15813] loop4: detected capacity change from 0 to 256
[  537.887052][T15835] loop9: detected capacity change from 0 to 128
[  537.910025][T15835] syz.9.19238: attempt to access beyond end of device
[  537.910025][T15835] loop9: rw=8390657, sector=129, nr_sectors = 1 limit=128
[  537.924070][T15835] Buffer I/O error on dev loop9, logical block 129, lost async page write
[  537.955605][T15835] syz.9.19238: attempt to access beyond end of device
[  537.955605][T15835] loop9: rw=8390657, sector=130, nr_sectors = 1 limit=128
[  537.955640][T15835] Buffer I/O error on dev loop9, logical block 130, lost async page write
[  537.955669][T15835] syz.9.19238: attempt to access beyond end of device
[  537.955669][T15835] loop9: rw=8390657, sector=131, nr_sectors = 1 limit=128
[  537.955739][T15835] Buffer I/O error on dev loop9, logical block 131, lost async page write
[  537.955780][T15835] syz.9.19238: attempt to access beyond end of device
[  537.955780][T15835] loop9: rw=8390657, sector=132, nr_sectors = 1 limit=128
[  537.955808][T15835] Buffer I/O error on dev loop9, logical block 132, lost async page write
[  537.955908][T15835] syz.9.19238: attempt to access beyond end of device
[  537.955908][T15835] loop9: rw=8390657, sector=133, nr_sectors = 1 limit=128
[  537.955976][T15835] Buffer I/O error on dev loop9, logical block 133, lost async page write
[  538.165818][T15867] netlink: 4 bytes leftover after parsing attributes in process `syz.9.19248'.
[  538.178765][T15869] netlink: 'syz.2.19249': attribute type 1 has an invalid length.
[  538.210053][T15869] 8021q: adding VLAN 0 to HW filter on device bond0
[  538.281225][T15869] 8021q: adding VLAN 0 to HW filter on device bond0
[  538.310946][T15869] bond0: (slave vxcan3): The slave device specified does not support setting the MAC address
[  538.343705][T15916] netlink: 4 bytes leftover after parsing attributes in process `syz.9.19255'.
[  538.436659][T15869] bond0: (slave vxcan3): Error -95 calling set_mac_address
[  538.846766][T15934] loop9: detected capacity change from 0 to 128
[  538.886412][T15934] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  538.956547][ T8796] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  538.969652][T15952] loop0: detected capacity change from 0 to 8192
[  538.989758][T15956] loop4: detected capacity change from 0 to 164
[  538.999290][T15956] syz.4.19267: attempt to access beyond end of device
[  538.999290][T15956] loop4: rw=8912896, sector=263328, nr_sectors = 4 limit=164
[  539.014314][T15956] syz.4.19267: attempt to access beyond end of device
[  539.014314][T15956] loop4: rw=8388608, sector=263328, nr_sectors = 4 limit=164
[  539.015142][T15952]  loop0: p1 p2
[  539.032304][T15952] loop0: p1 start 16777216 is beyond EOD, truncated
[  539.039080][T15952] loop0: p2 size 515840 extends beyond EOD, truncated
[  539.100339][T15978] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19271'.
[  539.109573][T15978] netlink: 12 bytes leftover after parsing attributes in process `syz.4.19271'.
[  539.150815][T15978] netlink: 8 bytes leftover after parsing attributes in process `syz.4.19271'.
[  539.159866][T15978] netlink: 12 bytes leftover after parsing attributes in process `syz.4.19271'.
[  539.183381][T15989] loop0: detected capacity change from 0 to 128
[  539.235107][T15989] syz.0.19273: attempt to access beyond end of device
[  539.235107][T15989] loop0: rw=8390657, sector=129, nr_sectors = 1 limit=128
[  539.248983][T15989] Buffer I/O error on dev loop0, logical block 129, lost async page write
[  539.271687][T15989] syz.0.19273: attempt to access beyond end of device
[  539.271687][T15989] loop0: rw=8390657, sector=130, nr_sectors = 1 limit=128
[  539.285726][T15989] Buffer I/O error on dev loop0, logical block 130, lost async page write
[  539.294411][T15989] syz.0.19273: attempt to access beyond end of device
[  539.294411][T15989] loop0: rw=8390657, sector=131, nr_sectors = 1 limit=128
[  539.308430][T15989] Buffer I/O error on dev loop0, logical block 131, lost async page write
[  539.317090][T15989] Buffer I/O error on dev loop0, logical block 132, lost async page write
[  539.325792][T15989] Buffer I/O error on dev loop0, logical block 133, lost async page write
[  539.522924][T16015] netlink: 12 bytes leftover after parsing attributes in process `syz.2.19284'.
[  539.735840][T16029] netlink: 36 bytes leftover after parsing attributes in process `syz.2.19287'.
[  539.746107][T16029] netlink: 36 bytes leftover after parsing attributes in process `syz.2.19287'.
[  540.049616][T16033] netlink: 'syz.9.19288': attribute type 1 has an invalid length.
[  540.082527][T16033] 8021q: adding VLAN 0 to HW filter on device bond2
[  540.146232][T16033] 8021q: adding VLAN 0 to HW filter on device bond2
[  540.160679][T16033] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[  540.184615][T16033] bond2: (slave vxcan3): Error -95 calling set_mac_address
[  540.366018][T16085] netlink: 4 bytes leftover after parsing attributes in process `syz.2.19294'.
[  540.387161][T16085] netlink: 24 bytes leftover after parsing attributes in process `syz.2.19294'.
[  540.405640][   T29] kauditd_printk_skb: 58 callbacks suppressed
[  540.405658][   T29] audit: type=1400 audit(616.399:23823): avc:  denied  { read } for  pid=16084 comm="syz.2.19294" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  540.467866][T16097] syz_tun: entered allmulticast mode
[  540.480902][T16093] syz_tun: left allmulticast mode
[  540.501553][T16101] loop0: detected capacity change from 0 to 1024
[  540.512922][T16101] EXT4-fs: Ignoring removed nomblk_io_submit option
[  540.522826][T16101] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  540.532854][T16101] System zones: 0-1, 3-36
[  540.538455][T16101] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  540.571478][T15008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  540.605757][T16117] IPv6: Can't replace route, no match found
[  540.625436][T16118] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  540.656921][T16124] ip6gre2: entered promiscuous mode
[  540.662183][T16124] ip6gre2: entered allmulticast mode
[  540.688969][T16130] loop0: detected capacity change from 0 to 128
[  540.709155][   T29] audit: type=1326 audit(616.699:23824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  540.780286][   T29] audit: type=1326 audit(616.699:23825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  540.803673][   T29] audit: type=1326 audit(616.699:23826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  540.826753][   T29] audit: type=1326 audit(616.699:23827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  540.849975][   T29] audit: type=1326 audit(616.699:23828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  540.873091][   T29] audit: type=1326 audit(616.699:23829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  540.896210][   T29] audit: type=1326 audit(616.699:23830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  540.919374][   T29] audit: type=1326 audit(616.699:23831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  540.942471][   T29] audit: type=1326 audit(616.699:23832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.2.19314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  541.022096][T16164] netlink: 'syz.2.19322': attribute type 1 has an invalid length.
[  541.168717][T18922] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.275988][T18922] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.345448][T18922] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.416149][T18922] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.545699][T18922] bond0: left allmulticast mode
[  541.550613][T18922] bond0: left promiscuous mode
[  541.555843][T18922] bridge0: port 1(bond0) entered disabled state
[  541.614910][T11242] SELinux: failure in sel_netif_sid_slow(), invalid network interface (13)
[  541.700375][T18922] bond1 (unregistering): (slave geneve3): Releasing active interface
[  541.748280][T16202] hub 9-0:1.0: USB hub found
[  541.760466][T16202] hub 9-0:1.0: 8 ports detected
[  541.838584][T18922] bond0 (unregistering): Released all slaves
[  541.878175][T18922] bond1 (unregistering): Released all slaves
[  541.968831][T18922] tipc: Disabling bearer <udp:syz2>
[  541.974176][T18922] tipc: Left network mode
[  541.990461][T16213] rock: directory entry would overflow storage
[  541.996737][T16213] rock: sig=0x4f50, size=4, remaining=3
[  542.002317][T16213] iso9660: Corrupted directory entry in block 6 of inode 1792
[  542.198608][T18922] hsr_slave_0: left promiscuous mode
[  542.226430][T18922] hsr_slave_1: left promiscuous mode
[  542.236965][T16225] set_capacity_and_notify: 2 callbacks suppressed
[  542.237031][T16225] loop9: detected capacity change from 0 to 1024
[  542.243688][T16229] loop4: detected capacity change from 0 to 512
[  542.275511][T18922] pimreg (unregistering): left allmulticast mode
[  542.315814][T16225] EXT4-fs (loop9): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  542.329048][T16229] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  542.355625][T16229] EXT4-fs (loop4): 1 truncate cleaned up
[  542.361771][T16229] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  542.378849][T16225] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.19340: bg 0: block 112: padding at end of block bitmap is not set
[  542.435895][T16229] EXT4-fs error (device loop4): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.4.19342: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  542.497762][T16241] netlink: 'syz.3.19345': attribute type 1 has an invalid length.
[  542.511980][T16229] EXT4-fs error (device loop4) in ext4_delete_entry:2737: Corrupt filesystem
[  542.522777][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  542.538738][T16229] EXT4-fs warning (device loop4): ext4_rename_delete:3729: inode #2: comm syz.4.19342: Deleting old file: nlink 5, error=-117
[  542.582828][T16247] random: crng reseeded on system resumption
[  542.604568][T16247] Restarting kernel threads ...
[  542.605024][T16247] Done restarting kernel threads.
[  542.620733][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  542.683404][T18922] IPVS: stop unused estimator thread 0...
[  542.751032][T16260] loop4: detected capacity change from 0 to 128
[  542.769914][T16260] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  543.231180][T16302] netlink: 'syz.9.19367': attribute type 12 has an invalid length.
[  543.395497][T16314] ------------[ cut here ]------------
[  543.401215][T16314] verifier bug: REG INVARIANTS VIOLATION (true_reg2): range bounds violation u64=[0x0, 0x7800000000] s64=[0x0, 0xffffffffffffffff] u32=[0x80000000, 0x0] s32=[0x0, 0xffffffff] var_off=(0x0, 0x7800000000)
[  543.421137][T16314] WARNING: kernel/bpf/verifier.c:2748 at reg_bounds_sanity_check+0x15b/0x660, CPU#1: syz.4.19373/16314
[  543.432267][T16314] Modules linked in:
[  543.436253][T16314] CPU: 1 UID: 0 PID: 16314 Comm: syz.4.19373 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  543.447813][T16314] Tainted: [W]=WARN
[  543.451645][T16314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  543.461779][T16314] RIP: 0010:reg_bounds_sanity_check+0x27d/0x660
[  543.468158][T16314] Code: 24 78 4c 8b 44 24 70 4c 8b 4c 24 60 41 ff 74 24 20 41 55 53 ff 74 24 68 ff 74 24 78 ff b4 24 90 00 00 00 ff b4 24 b0 00 00 00 <67> 48 0f b9 3a 48 83 c4 38 4c 8b ac 24 98 00 00 00 49 8d 85 80 08
[  543.487905][T16314] RSP: 0018:ffffc90007a933a0 EFLAGS: 00010246
[  543.494003][T16314] RAX: ffff88819f754c90 RBX: 00000000ffffffff RCX: 0000000000000000
[  543.502047][T16314] RDX: ffffffff865fba0b RSI: ffffffff8660fc5e RDI: ffffffff86db6bd0
[  543.510083][T16314] RBP: ffff88811a6b5840 R08: 0000007800000000 R09: 0000000000000000
[  543.518107][T16314] R10: 00000000000000d0 R11: 0000000000000002 R12: ffff88811a6b5800
[  543.526243][T16314] R13: 0000000000000000 R14: ffff88811a6b584c R15: ffff88811a6b5838
[  543.534333][T16314] FS:  00007f9063d2f6c0(0000) GS:ffff8882aeec2000(0000) knlGS:0000000000000000
[  543.543320][T16314] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  543.549947][T16314] CR2: 00002000000054c0 CR3: 000000012cbe8000 CR4: 00000000003506f0
[  543.558048][T16314] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  543.566579][T16314] DR3: 0000200000000300 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  543.574610][T16314] Call Trace:
[  543.578009][T16314]  <TASK>
[  543.580992][T16314]  reg_set_min_max+0x1f2/0x260
[  543.585910][T16314]  check_cond_jmp_op+0x13bd/0x1a80
[  543.591266][T16314]  do_check+0x3347/0x81f0
[  543.595887][T16314]  do_check_common+0xccf/0x1300
[  543.600804][T16314]  bpf_check+0x2f98/0xc860
[  543.605344][T16314]  ? __alloc_frozen_pages_noprof+0x18f/0x360
[  543.611426][T16314]  ? alloc_pages_bulk_noprof+0x4b9/0x540
[  543.617138][T16314]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[  543.623126][T16314]  ? try_charge_memcg+0x215/0xa10
[  543.628291][T16314]  ? _find_next_zero_bit+0x64/0xa0
[  543.633531][T16314]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  543.639893][T16314]  ? pcpu_block_update_hint_alloc+0x63d/0x660
[  543.646102][T16314]  ? css_rstat_updated+0xbb/0x280
[  543.651175][T16314]  ? mod_memcg_state+0x182/0x270
[  543.656196][T16314]  ? __rcu_read_unlock+0x4f/0x70
[  543.661193][T16314]  ? pcpu_memcg_post_alloc_hook+0xec/0x170
[  543.667095][T16314]  ? bpf_prog_alloc+0x5b/0x150
[  543.671903][T16314]  ? pcpu_alloc_noprof+0xd0d/0x1240
[  543.677198][T16314]  ? should_fail_ex+0x30/0x280
[  543.681999][T16314]  ? __kmalloc_noprof+0x2b4/0x5a0
[  543.687078][T16314]  ? security_bpf_prog_load+0x60/0x140
[  543.692650][T16314]  ? selinux_bpf_prog_load+0xad/0xd0
[  543.698112][T16314]  ? security_bpf_prog_load+0x9e/0x140
[  543.703677][T16314]  bpf_prog_load+0xf6e/0x1140
[  543.708562][T16314]  ? security_bpf+0x2b/0x90
[  543.713197][T16314]  __sys_bpf+0x469/0x7c0
[  543.717659][T16314]  __x64_sys_bpf+0x41/0x50
[  543.722210][T16314]  x64_sys_call+0x28e1/0x3000
[  543.727021][T16314]  do_syscall_64+0xd8/0x2c0
[  543.731613][T16314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.737618][T16314] RIP: 0033:0x7f90652cf749
[  543.742104][T16314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.761799][T16314] RSP: 002b:00007f9063d2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  543.770301][T16314] RAX: ffffffffffffffda RBX: 00007f9065525fa0 RCX: 00007f90652cf749
[  543.778326][T16314] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  543.786376][T16314] RBP: 00007f9065353f91 R08: 0000000000000000 R09: 0000000000000000
[  543.794385][T16314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  543.802461][T16314] R13: 00007f9065526038 R14: 00007f9065525fa0 R15: 00007ffc6efa1508
[  543.802888][T16322] loop0: detected capacity change from 0 to 1024
[  543.810575][T16314]  </TASK>
[  543.810587][T16314] ---[ end trace 0000000000000000 ]---
[  543.851065][T16322] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  543.862064][T16322] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  543.881631][T16322] JBD2: no valid journal superblock found
[  543.887470][T16322] EXT4-fs (loop0): Could not load journal inode
[  543.921975][T16322] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  544.069068][T16365] pim6reg: entered allmulticast mode
[  544.077564][T16365] pim6reg: left allmulticast mode
[  544.318991][T16394] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  544.359218][T16396] macvtap0: refused to change device tx_queue_len
[  544.523373][T16409] __nla_validate_parse: 2 callbacks suppressed
[  544.523395][T16409] netlink: 8 bytes leftover after parsing attributes in process `syz.9.19411'.
[  544.671916][T16424] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[  544.767622][T16442] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19422'.
[  544.776753][T16442] netlink: 'syz.3.19422': attribute type 26 has an invalid length.
[  544.784669][T16442] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19422'.
[  544.794664][T16442] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19422'.
[  544.803831][T16442] netlink: 'syz.3.19422': attribute type 26 has an invalid length.
[  544.811873][T16442] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19422'.
[  544.852661][T16447] loop9: detected capacity change from 0 to 512
[  544.880571][T16447] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  544.891842][T16451] Cannot find add_set index 0 as target
[  544.912020][T16447] EXT4-fs (loop9): 1 truncate cleaned up
[  544.929290][T16447] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  544.946213][T16447] EXT4-fs error (device loop9): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.9.19423: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  545.006664][T16466] loop4: detected capacity change from 0 to 512
[  545.015595][T16466] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  545.017391][T16447] EXT4-fs error (device loop9) in ext4_delete_entry:2737: Corrupt filesystem
[  545.032925][T16469] serio: Serial port ptm0
[  545.038713][T16447] EXT4-fs warning (device loop9): ext4_rename_delete:3729: inode #2: comm syz.9.19423: Deleting old file: nlink 5, error=-117
[  545.056680][T16466] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  545.096058][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  545.109062][T16466] team0: left allmulticast mode
[  545.113985][T16466] team0: left promiscuous mode
[  545.119117][T16466] bridge0: port 1(team0) entered disabled state
[  545.142102][T16466] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  545.191056][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  545.308645][T16505] ip6gre1: entered promiscuous mode
[  545.313964][T16505] ip6gre1: entered allmulticast mode
[  545.468901][T16531] loop4: detected capacity change from 0 to 512
[  545.494725][T16531] EXT4-fs: Ignoring removed orlov option
[  545.500648][T16531] EXT4-fs: Ignoring removed mblk_io_submit option
[  545.528995][T16531] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.19451: corrupted in-inode xattr: e_value size too large
[  545.545366][T16531] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.19451: couldn't read orphan inode 15 (err -117)
[  545.558301][T16531] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  545.583571][T16539] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16539 comm=syz.3.19466
[  545.596310][T16539] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16539 comm=syz.3.19466
[  545.646320][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  545.698468][T16556] netlink: 8 bytes leftover after parsing attributes in process `syz.2.19461'.
[  545.711944][T16559] netlink: 20 bytes leftover after parsing attributes in process `syz.3.19462'.
[  545.739274][T16556] netlink: 312 bytes leftover after parsing attributes in process `syz.2.19461'.
[  545.748478][T16556] netlink: 8 bytes leftover after parsing attributes in process `syz.2.19461'.
[  545.790483][   T29] kauditd_printk_skb: 106 callbacks suppressed
[  545.790579][   T29] audit: type=1326 audit(621.779:23939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  545.861450][   T29] audit: type=1326 audit(621.779:23940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  545.884624][   T29] audit: type=1326 audit(621.779:23941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  545.907876][   T29] audit: type=1326 audit(621.779:23942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  545.930956][   T29] audit: type=1326 audit(621.779:23943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  545.954092][   T29] audit: type=1326 audit(621.779:23944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  545.977424][   T29] audit: type=1326 audit(621.779:23945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  546.000640][   T29] audit: type=1326 audit(621.779:23946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  546.024023][   T29] audit: type=1326 audit(621.779:23947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  546.047317][   T29] audit: type=1326 audit(621.779:23948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16565 comm="syz.9.19465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f361f23f749 code=0x7ffc0000
[  546.103102][T16575] netlink: 131740 bytes leftover after parsing attributes in process `syz.2.19470'.
[  546.123071][T16575] netlink: zone id is out of range
[  546.128275][T16575] netlink: zone id is out of range
[  546.135360][T16575] netlink: zone id is out of range
[  546.141329][T16575] netlink: del zone limit has 8 unknown bytes
[  546.345529][T16599] loop4: detected capacity change from 0 to 164
[  546.352743][T16599] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  546.363001][T16599] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  546.371512][T16599] Symlink component flag not implemented
[  546.377272][T16599] Symlink component flag not implemented
[  546.383019][T16599] Symlink component flag not implemented (7)
[  546.389145][T16599] Symlink component flag not implemented (116)
[  546.420791][T16602] netem: change failed
[  546.438126][T16608] loop4: detected capacity change from 0 to 256
[  546.458113][T16608] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  546.542624][T16619] IPv6: NLM_F_CREATE should be specified when creating new route
[  546.591752][T16623] bridge0: entered promiscuous mode
[  546.597502][T16623] macsec1: entered promiscuous mode
[  546.603574][T16623] bridge0: port 4(macsec1) entered blocking state
[  546.610211][T16623] bridge0: port 4(macsec1) entered disabled state
[  546.627328][T16623] macsec1: entered allmulticast mode
[  546.632821][T16623] bridge0: entered allmulticast mode
[  546.643598][T16623] macsec1: left allmulticast mode
[  546.648782][T16623] bridge0: left allmulticast mode
[  546.672400][T16623] bridge0: left promiscuous mode
[  546.709435][T16635] atomic_op ffff88811b5c1d28 conn xmit_atomic 0000000000000000
[  546.742969][T16641] loop4: detected capacity change from 0 to 128
[  546.865124][T16657] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  547.445871][T16705] ip6gre2: entered promiscuous mode
[  547.451135][T16705] ip6gre2: entered allmulticast mode
[  547.674505][T16723] bridge0: entered promiscuous mode
[  547.680182][T16723] macsec1: entered promiscuous mode
[  547.686972][T16723] bridge0: port 3(macsec1) entered blocking state
[  547.691591][T16719] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  547.693449][T16723] bridge0: port 3(macsec1) entered disabled state
[  547.708449][T16723] macsec1: entered allmulticast mode
[  547.710359][T16719] vhci_hcd vhci_hcd.2: invalid port number 96
[  547.713793][T16723] bridge0: entered allmulticast mode
[  547.725310][T16719] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  547.733580][T16723] macsec1: left allmulticast mode
[  547.738682][T16723] bridge0: left allmulticast mode
[  547.746119][T16723] bridge0: left promiscuous mode
[  547.896085][T16743] ip6gre2: entered promiscuous mode
[  547.901355][T16743] ip6gre2: entered allmulticast mode
[  548.264674][T16788] set_capacity_and_notify: 1 callbacks suppressed
[  548.264737][T16788] loop9: detected capacity change from 0 to 1024
[  548.278761][T16788] EXT4-fs: inline encryption not supported
[  548.284743][T16788] EXT4-fs: Ignoring removed orlov option
[  548.295526][T16788] EXT4-fs (loop9): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  548.305419][T16793] 9p: Bad value for 'rfdno'
[  548.346636][T16788] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  548.402899][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  548.427047][T16803] loop9: detected capacity change from 0 to 1024
[  548.434118][T16803] EXT4-fs: Ignoring removed bh option
[  548.456061][T16803] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  548.484422][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  548.885352][T16852] loop9: detected capacity change from 0 to 512
[  548.893930][T16852] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  548.930177][T16852] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  548.969013][T16852] team0: left allmulticast mode
[  548.973926][T16852] team0: left promiscuous mode
[  548.978953][T16852] bridge0: port 1(team0) entered disabled state
[  548.987123][T16852] batman_adv: batadv0: Removing interface: dummy0
[  549.003053][T16852] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  549.042911][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.061988][T16866] netlink: 'syz.3.19584': attribute type 21 has an invalid length.
[  549.481390][T16900] loop9: detected capacity change from 0 to 512
[  549.498591][T16900] EXT4-fs (loop9): 1 truncate cleaned up
[  549.510425][T16900] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  549.532042][T16900] EXT4-fs (loop9): shut down requested (1)
[  549.563471][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.709841][T16910] IPVS: Error connecting to the multicast addr
[  549.776237][T16914] loop0: detected capacity change from 0 to 512
[  549.782980][T16916] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  549.794054][T16914] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  549.808409][T16914] EXT4-fs (loop0): 1 truncate cleaned up
[  549.822312][T16914] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  550.015201][T15008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.061530][T16940] loop0: detected capacity change from 0 to 1024
[  550.068838][T16940] EXT4-fs: Ignoring removed nobh option
[  550.074484][T16940] EXT4-fs: Ignoring removed bh option
[  550.088604][T16940] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  550.116223][T15008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.201720][T16954] __nla_validate_parse: 4 callbacks suppressed
[  550.201741][T16954] netlink: 24 bytes leftover after parsing attributes in process `syz.0.19613'.
[  550.368051][T16968] netlink: 4 bytes leftover after parsing attributes in process `syz.2.19621'.
[  550.406902][T16968] netlink: 4 bytes leftover after parsing attributes in process `syz.2.19621'.
[  550.518061][T16986] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  550.534422][T16986] vhci_hcd vhci_hcd.2: invalid port number 96
[  550.540598][T16986] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  550.617202][T17004] usb usb1: usbfs: process 17004 (syz.9.19636) did not claim interface 63 before use
[  550.630149][T17000] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  550.680404][T17000] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  550.729549][T17000] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  550.799974][T17000] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  550.831233][T17031] loop4: detected capacity change from 0 to 1024
[  550.848358][T17031] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  550.860604][T17034] loop9: detected capacity change from 0 to 164
[  550.872108][T17034] bio_check_eod: 2 callbacks suppressed
[  550.872125][T17034] syz.9.19648: attempt to access beyond end of device
[  550.872125][T17034] loop9: rw=8912896, sector=263328, nr_sectors = 4 limit=164
[  550.892110][T17034] syz.9.19648: attempt to access beyond end of device
[  550.892110][T17034] loop9: rw=8388608, sector=263328, nr_sectors = 4 limit=164
[  550.919498][T17031] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 1: comm syz.4.19647: lblock 1 mapped to illegal pblock 1 (length 5)
[  550.941313][T18949] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  550.949509][T17052] netlink: 104 bytes leftover after parsing attributes in process `syz.9.19651'.
[  550.973780][T18949] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  550.982265][T17031] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 5 with error 117
[  550.994615][T17031] EXT4-fs (loop4): This should not happen!! Data will be lost
[  550.994615][T17031] 
[  551.004552][T18949] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  551.013110][T18949] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  551.022569][T17056] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: comm syz.4.19647: lblock 0 mapped to illegal pblock 0 (length 1)
[  551.052872][T17056] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  551.065318][T17056] EXT4-fs (loop4): This should not happen!! Data will be lost
[  551.065318][T17056] 
[  551.156111][T18930] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 8: comm kworker/u8:24: lblock 8 mapped to illegal pblock 8 (length 8)
[  551.171106][T18930] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  551.183528][T18930] EXT4-fs (loop4): This should not happen!! Data will be lost
[  551.183528][T18930] 
[  551.203170][T10995] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  551.367164][T17102] SELinux: failed to load policy
[  551.373336][   T29] kauditd_printk_skb: 239 callbacks suppressed
[  551.373355][   T29] audit: type=1326 audit(627.359:24188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17103 comm="syz.2.19670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  551.404061][T18926] vlan2: left promiscuous mode
[  551.405492][   T29] audit: type=1326 audit(627.379:24189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17103 comm="syz.2.19670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  551.409127][T18926] bridge_slave_0: left promiscuous mode
[  551.432144][   T29] audit: type=1326 audit(627.379:24190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17103 comm="syz.2.19670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  551.432182][   T29] audit: type=1326 audit(627.379:24191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17103 comm="syz.2.19670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f935a8df749 code=0x7ffc0000
[  551.438029][T18926] bridge0: port 1(vlan2) entered disabled state
[  551.520453][T18926] team0: Port device geneve1 removed
[  551.597184][T18926] bond0 (unregistering): Released all slaves
[  551.680639][T18926] hsr_slave_0: left promiscuous mode
[  551.687012][T18926] hsr_slave_1: left promiscuous mode
[  551.697953][T17129] 9pnet: p9_errstr2errno: server reported unknown error 
[  551.741843][   T29] audit: type=1326 audit(627.729:24192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17133 comm="syz.0.19681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10c0c4f749 code=0x7ffc0000
[  551.803320][   T29] audit: type=1326 audit(627.729:24193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17133 comm="syz.0.19681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10c0c4f749 code=0x7ffc0000
[  551.826530][   T29] audit: type=1326 audit(627.729:24194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17133 comm="syz.0.19681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f10c0c4f749 code=0x7ffc0000
[  551.850037][   T29] audit: type=1326 audit(627.759:24195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17133 comm="syz.0.19681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10c0c4f749 code=0x7ffc0000
[  551.873138][   T29] audit: type=1326 audit(627.759:24196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17133 comm="syz.0.19681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=232 compat=0 ip=0x7f10c0c4f749 code=0x7ffc0000
[  551.896256][   T29] audit: type=1326 audit(627.759:24197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17133 comm="syz.0.19681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10c0c4f749 code=0x7ffc0000
[  552.128417][T18926] IPVS: stop unused estimator thread 0...
[  552.159176][T17138] loop0: detected capacity change from 0 to 32768
[  552.235190][T17138]  loop0: p1 p3 < >
[  552.259505][T17182] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  552.287573][T17182] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  552.402603][T17192] loop9: detected capacity change from 0 to 512
[  552.419944][T17192] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  552.432029][T17192] EXT4-fs (loop9): 1 truncate cleaned up
[  552.439877][T17192] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  552.513950][T17201] netlink: 'syz.3.19702': attribute type 4 has an invalid length.
[  552.551568][T17203] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  552.562070][T17203] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  552.578932][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  552.639593][T17203] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  552.650265][T17203] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  552.698515][T17203] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  552.708950][T17203] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  552.758220][T17203] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  552.766294][T17222] EXT4-fs (loop9): can't mount with journal_checksum, fs mounted w/o journal
[  552.768669][T17203] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  552.795424][T17222] EXT4-fs error (device loop9): ext4_iget_extra_inode:5073: inode #12: comm syz.9.19708: corrupted in-inode xattr: bad e_name length
[  552.810381][T17222] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.19708: couldn't read orphan inode 12 (err -117)
[  552.823551][T17222] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  552.844575][T18934] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  552.852837][T18934] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  552.865649][T18934] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  552.873978][T18934] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  552.886552][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  552.890297][T18934] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  552.903750][T18934] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  552.926730][T18934] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  552.935217][T18934] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  553.094293][T17269] IPVS: sync thread started: state = BACKUP, mcast_ifn = macvlan0, syncid = 0, id = 0
[  553.104024][T17267] IPVS: stopping backup sync thread 17269 ...
[  553.767641][T17320] set_capacity_and_notify: 3 callbacks suppressed
[  553.767662][T17320] loop9: detected capacity change from 0 to 512
[  553.818076][T17320] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  554.017482][T17331] Invalid argument reading file caps for ./file0
[  554.052732][ T8796] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  554.227161][T17367] netlink: 35 bytes leftover after parsing attributes in process `syz.3.19753'.
[  554.236622][T17367] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19753'.
[  554.254716][T17369] loop9: detected capacity change from 0 to 128
[  554.272412][T17372] netlink: 20 bytes leftover after parsing attributes in process `syz.0.19755'.
[  554.312297][T17378] netlink: 32 bytes leftover after parsing attributes in process `syz.0.19758'.
[  554.340380][T17382] netlink: 'syz.0.19760': attribute type 1 has an invalid length.
[  554.371161][T17382] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  554.381461][T17382] bond1: (slave vxcan3): Setting fail_over_mac to active for active-backup mode
[  554.403106][T17382] bond1: (slave vxcan3): making interface the new active one
[  554.411468][T17382] bond1: (slave vxcan3): Enslaving as an active interface with an up link
[  554.452195][T17423] loop0: detected capacity change from 0 to 1024
[  554.459981][T17423] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  554.469954][T17423] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  554.490978][T17423] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  554.500956][T17423] EXT4-fs (loop0): orphan cleanup on readonly fs
[  554.517828][T17423] EXT4-fs error (device loop0): ext4_read_inode_bitmap:167: comm syz.0.19762: Inode bitmap for bg 0 marked uninitialized
[  554.559633][T17423] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  554.587129][T17423] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (32298!=35945)
[  554.622087][T15008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  554.704428][T17438] ==================================================================
[  554.712571][T17438] BUG: KCSAN: data-race in kick_pool / wq_worker_running
[  554.719623][T17438] 
[  554.721947][T17438] read-write to 0xffff888237d2a524 of 4 bytes by task 11242 on cpu 1:
[  554.730101][T17438]  wq_worker_running+0x95/0x120
[  554.734957][T17438]  synchronize_rcu_expedited+0x611/0x790
[  554.740602][T17438]  synchronize_rcu+0x45/0x320
[  554.745289][T17438]  xfrm_state_gc_task+0x98/0x650
[  554.750224][T17438]  process_scheduled_works+0x4ce/0x9d0
[  554.755691][T17438]  worker_thread+0x582/0x770
[  554.760291][T17438]  kthread+0x489/0x510
[  554.764359][T17438]  ret_from_fork+0x149/0x290
[  554.768949][T17438]  ret_from_fork_asm+0x1a/0x30
[  554.773728][T17438] 
[  554.776047][T17438] read to 0xffff888237d2a524 of 4 bytes by task 17438 on cpu 0:
[  554.783670][T17438]  kick_pool+0x49/0x2d0
[  554.787829][T17438]  __queue_work+0x897/0xae0
[  554.792337][T17438]  queue_work_on+0xd1/0x160
[  554.796849][T17438]  xfrm_state_find+0x1a17/0x3070
[  554.801801][T17438]  xfrm_resolve_and_create_bundle+0x575/0x1ef0
[  554.807971][T17438]  xfrm_lookup_with_ifid+0x1da/0x1360
[  554.813358][T17438]  xfrm_lookup_route+0x3a/0x110
[  554.818221][T17438]  ip6_dst_lookup_flow+0x97/0xc0
[  554.823158][T17438]  rawv6_sendmsg+0xa29/0xf70
[  554.827746][T17438]  inet_sendmsg+0xc5/0xd0
[  554.832076][T17438]  __sock_sendmsg+0x102/0x180
[  554.836746][T17438]  ____sys_sendmsg+0x345/0x4a0
[  554.841515][T17438]  ___sys_sendmsg+0x17b/0x1d0
[  554.846196][T17438]  __sys_sendmmsg+0x178/0x300
[  554.850879][T17438]  __x64_sys_sendmmsg+0x57/0x70
[  554.855737][T17438]  x64_sys_call+0x1e28/0x3000
[  554.860415][T17438]  do_syscall_64+0xd8/0x2c0
[  554.864924][T17438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.870904][T17438] 
[  554.873220][T17438] value changed: 0x00000000 -> 0x00000001
[  554.878948][T17438] 
[  554.881263][T17438] Reported by Kernel Concurrency Sanitizer on:
[  554.887408][T17438] CPU: 0 UID: 0 PID: 17438 Comm: syz.4.19767 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  554.898867][T17438] Tainted: [W]=WARN
[  554.902663][T17438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  554.912717][T17438] ==================================================================