last executing test programs:

2m28.134198246s ago: executing program 0 (id=639):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f0000000580)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000600)=[@sack_perm], 0x8cbd752)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f00000000c0)={'broute\x00', 0x0, 0x0, 0x0, [0x6, 0x0, 0x3, 0x0, 0x4, 0x3]}, &(0x7f0000000180)=0x78)
ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, 0x0)

2m27.400399016s ago: executing program 0 (id=651):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0xa26}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_LINK_CREATE(0xa, &(0x7f0000000340)={r2, 0xffffffffffffffff, 0x24, 0x7, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x8, 0x0, 0x1}}, 0x40)

2m27.344843647s ago: executing program 0 (id=654):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0xfffeffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a0000010500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

2m27.322501567s ago: executing program 0 (id=656):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x20000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)

2m27.272375648s ago: executing program 0 (id=660):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r0}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
link(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0)

2m26.994910402s ago: executing program 0 (id=682):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='\x00', 0x89901)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240)=@ceph_nfs_snapfh={0x1c, 0x4e, {0x10, 0xffff, 0x1, 0xe9f}}, &(0x7f0000000140), 0x200)

2m26.978563682s ago: executing program 32 (id=682):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='\x00', 0x89901)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240)=@ceph_nfs_snapfh={0x1c, 0x4e, {0x10, 0xffff, 0x1, 0xe9f}}, &(0x7f0000000140), 0x200)

1m47.016465667s ago: executing program 2 (id=2350):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="09000000070000000000010003"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000080), &(0x7f0000000180)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x83, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x178}, 0x18)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)

1m46.961754647s ago: executing program 2 (id=2352):
prctl$PR_SET_NAME(0xf, &(0x7f0000000200)='gtp\x00\xe4\xaa\xae\xdf~2\xa6X\x14\x92\xdarV\xf4U\xf7\xa2\xc3l\x1b@\xaf\xf9\xc9\xa9#\xf0S\xd9=q\xd6\x14\xedt\xc8!W\xe9@\xeb\x7f~\tB0EE\x9a:\xb7\xff\xc1\xfc\x9a\x1f\xf2\xfb\x19\xda#x\xc5F\x1c~\x8c\xe1\xdf\xdc\x01k\f\xde0~\x95\r\xa2\x80\b4M\x14\xe7\xd0\t`n!g\x14\xe6\xd1\xc2\xd3\x88\xf8cVtd\xbeY\xa5\xe7\x16sD\x96}7\n\x88e\x00\xf0\xff\xff\xf0\xcb\x94\xb4S\x00\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='mm_page_alloc\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)={{0x14}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x68}}, 0x0)

1m46.960815167s ago: executing program 2 (id=2354):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0)

1m46.913913618s ago: executing program 2 (id=2358):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000700)={[{@nouid32}, {@grpjquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@bsdgroups}]}, 0x3, 0x56a, &(0x7f0000001900)="$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")
open(&(0x7f0000000140)='./file1\x00', 0x64842, 0x21)
r0 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x1284, 0x1, 0x2, 0x169}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r0, 0x100847c0, 0x0, 0x1, 0x0, 0x0)

1m46.834500939s ago: executing program 2 (id=2362):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000580)={<r1=>0x0})
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140))
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, &(0x7f00000003c0)={r1})

1m46.617259682s ago: executing program 2 (id=2377):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x1f0, 0x0)
mq_notify(r2, 0x0)

1m46.616972242s ago: executing program 33 (id=2377):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x1f0, 0x0)
mq_notify(r2, 0x0)

1m37.502608984s ago: executing program 4 (id=2733):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10)

1m37.469567364s ago: executing program 4 (id=2734):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x80000000)

1m37.207873597s ago: executing program 4 (id=2747):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000004c0)={[{@acl}, {@barrier}, {@barrier_val}, {@sysvgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x587, &(0x7f0000002100)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
chdir(&(0x7f0000000100)='./file0\x00')
link(&(0x7f0000000440)='./file0\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1m37.060799019s ago: executing program 4 (id=2753):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

1m37.04445553s ago: executing program 4 (id=2754):
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
recvmmsg(r0, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

1m36.635748735s ago: executing program 4 (id=2765):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000380)=0x7ffd)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000180)={0x20, 0x0})

1m36.629630695s ago: executing program 34 (id=2765):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000380)=0x7ffd)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000180)={0x20, 0x0})

22.538293481s ago: executing program 7 (id=5711):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0xb, 0x5, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r2, 0x0, &(0x7f0000000400)=""/214}, 0x20)

22.490747741s ago: executing program 7 (id=5717):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x48, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000048000000030a01010000000000000000020000000900010073797a30000000000900030057797a3200000000080007006e617400140004800800024000000000080001"], 0xa4}}, 0x0)

22.398654942s ago: executing program 7 (id=5723):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702000055ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372000000001400010076657468315f766c616e"], 0xfc}}, 0x0)

22.292844843s ago: executing program 7 (id=5726):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000300)='kfree\x00', r0}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

22.253784284s ago: executing program 7 (id=5729):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000002306000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x2, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x40000000, 0x1000, 0x2, 0x0, 0x0, 0x8000002, 0x0, 0x7e150a0b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x10000, 0x5d2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x1007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x1, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, 0x0, 0x0, 0x0, 0x7, 0xfbfffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x4fd, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x7e98263b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2d1, 0x0, 0x0, 0xb2e, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0xff, 0x1000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x6, 0xc3f3, 0x1, 0x0, 0x800, 0x9, 0x800, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0xfffffffe, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffff, 0x0, 0x0, 0x80000001, 0x0, 0x10, 0x20, 0x4, 0x400000b2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1000, 0x100, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffe, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x0, 0x0, 0x20000040, 0xffffffff, 0x400, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0xaaf0]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x3, 0x0, 0x0, 0x0, 0xc0000001}, {0x3, 0x0, 0xb, 0x0, 0x0, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x45c}}, 0x0)

21.915635848s ago: executing program 7 (id=5740):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
r3 = openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x1c9a82, 0x0)
sendfile(r3, r0, 0x0, 0xbc44)

21.866015499s ago: executing program 35 (id=5740):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
r3 = openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x1c9a82, 0x0)
sendfile(r3, r0, 0x0, 0xbc44)

2.194696101s ago: executing program 3 (id=6588):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffed]}, 0x0, 0x8)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000)
ppoll(&(0x7f0000000080)=[{r1, 0x8080}], 0x1, 0x0, 0x0, 0x0)
open(&(0x7f0000000080)='./file1\x00', 0x4040, 0x5c)

1.363966182s ago: executing program 8 (id=6599):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
r1 = syz_io_uring_setup(0x5638, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x1ab}, &(0x7f0000000040)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)='./file0/file0\x00', 0x0, 0x0, 0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r1, 0x47f8, 0x0, 0x0, 0x0, 0x0)

1.320448572s ago: executing program 3 (id=6601):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x3, 0x800000000001}, 0x1180, 0x5dd8, 0x0, 0x8, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r2, 0x0)

1.243303223s ago: executing program 6 (id=6603):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x2000000000000000, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000010c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x3f0, 0x0, 0x9403, 0x0, 0x0, 0x2c0, 0x320, 0x3d8, 0x3d8, 0x320, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c8, 0x210, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @inet=@rpfilter={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x450)

1.185442804s ago: executing program 3 (id=6604):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xe, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='module_request\x00', r1}, 0x10)
socketpair(0x0, 0x0, 0x0, &(0x7f00000006c0))

1.149567505s ago: executing program 6 (id=6605):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})

1.095447265s ago: executing program 3 (id=6607):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f00000002c0)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c757466383d302c757365667265652c646973636172642c73686f72746e616d653d77696e6e742c6572726f72733d636f6e74696e75652c636865636b3d6e6f726d616c2c73686f72746e616d653d6c6f7765722c73686f72746e616d653d77696e6e742c0075fd0f66e1fbbd34adc2c85b20fe31e143d77cfa81b25d55da5a420be8a22a83e81efee5f8650c3a6ab5921db3ad08c62c69af5867c65f4d15bc9ae43474550ab3218e4335c82dbb9b531ea1419c1eb9c5bdc1dbfda4493b2b3440ac4b27c0fe35239d9dc2eabc697b61459ddcd388a41538526706975e5c737e48de944c114461063da691df56dce7e20ca2da4e044d78473d0e7296b43c9eb2ec69af52b88510008c405044c99e05bd6488f5767e2efa4390efa7d9250c2c6ab87a10786d"], 0xfd, 0x2ae, &(0x7f0000000800)="$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")
mount$nfs(&(0x7f0000000100)=',..', 0x0, 0x0, 0x4, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x101bff, 0x0)

1.082544306s ago: executing program 6 (id=6608):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000380)='mm_page_alloc\x00', r1}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

1.019732687s ago: executing program 5 (id=6610):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x3c0008a, &(0x7f00000001c0)=ANY=[@ANYBLOB="616c6c6f775f7574696d653d30303030303030303030303030303030303030303030312c73686f72746e616d653d77696e39352c73686f72746e616d653d77696e6e742c696f636861727365743d64656661756c742c756e695f786c6174653d302c6e6f6e756d7461696c3d302c757466383d302c666c7573682c726f6469722c726f6469722c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c636865636b3d7374726963742c756e695f786c6174653d302c757466383d302c73686f72746e616d653d6d697865642c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c001762a07a915c8f6c3378b924fc250bdae45cd22bb33f29d72cf1c8410df88b83b9710b49374a748455718cc4af5f3ced9aa10632d595e9c8c3a89f41b650b9ebd4886ae65bf02b7c8ea4e76ef2cc241ac9f89f2753df98db0ba9558c753363f296424ec60e703fac2db7e9f31283852e115cf6acb8d77b3e5d68"], 0x9a, 0x2a9, &(0x7f0000000500)="$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")
r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
write$cgroup_type(r1, &(0x7f0000000200), 0x175d9003)
write$P9_RLERROR(r0, 0x0, 0x13)
close(r0)

1.012287096s ago: executing program 6 (id=6611):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c250000000000202020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

948.604197ms ago: executing program 6 (id=6614):
r0 = memfd_create(&(0x7f0000000100)='\vem\xda\x99R@m\xfc\xfe\x9b#*\xff', 0x0)
write(r0, &(0x7f00000004c0)="0600", 0x2)
sendfile(r0, r0, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040), 0xc)

948.455387ms ago: executing program 8 (id=6615):
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
r1 = fspick(r0, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r1, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

897.244108ms ago: executing program 8 (id=6616):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r1)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r1)
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000380)={0x28, r2, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan4\x00'}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x8}, 0x804003c)

815.038109ms ago: executing program 8 (id=6618):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
r1 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)

719.441751ms ago: executing program 3 (id=6620):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x18)
clock_adjtime(0x0, 0x0)

677.973191ms ago: executing program 3 (id=6621):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1008002, &(0x7f00000003c0)=ANY=[], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

677.407451ms ago: executing program 5 (id=6631):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000001c0)={0x1, &(0x7f0000000000)=[{0x6, 0x3, 0x1, 0x7fff0001}]})
flistxattr(r1, 0x0, 0x0)

608.750942ms ago: executing program 5 (id=6623):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x20000, 0x2)

584.652782ms ago: executing program 1 (id=6624):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000380)='mm_page_alloc\x00', r1}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

541.888773ms ago: executing program 1 (id=6625):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xe, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='module_request\x00', r1}, 0x10)
socketpair(0x0, 0x0, 0x0, &(0x7f00000006c0))

509.571524ms ago: executing program 8 (id=6626):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000005000000005e002200850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = epoll_create(0x8)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)={0xf6c447fee59251f4})
close(r2)

496.450623ms ago: executing program 5 (id=6627):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000df0100000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001240)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='mm_page_free\x00', r1}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0x14c8e, &(0x7f0000000b40)=ANY=[], 0xfd, 0x6b1, &(0x7f0000001f80)="$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")
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x2880, 0x108)
getdents64(r2, &(0x7f0000000f80)=""/4096, 0x1000)

428.269505ms ago: executing program 1 (id=6628):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x40, 0x10, 0x503, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x14615, 0xef}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x40}}, 0x0)

387.596415ms ago: executing program 5 (id=6629):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r1)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r1)
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000380)={0x28, r2, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan4\x00'}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x8}, 0x804003c)

387.362345ms ago: executing program 8 (id=6630):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0xffffffff}, 0x1100, 0x5dd8, 0x3a65, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = syz_io_uring_setup(0x1725, &(0x7f0000000100)={0x0, 0x0, 0x800, 0x400002, 0x333}, &(0x7f0000000400)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SENDMSG={0x9, 0x1c, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000005c0)=[{0x0}, {0x0}], 0x2}, 0x0, 0x4080})
syz_io_uring_setup(0x3c00, &(0x7f00000005c0)={0x0, 0x8ecf, 0x10, 0x1, 0x2ef}, 0x0, 0x0)
io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0)

312.218036ms ago: executing program 1 (id=6632):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="00000102", 0xfffff, r2)

233.236157ms ago: executing program 5 (id=6633):
r0 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000080)=0x7ff, 0x4)
sendmmsg$inet(r0, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f0000002900)=[{&(0x7f00000006c0)="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", 0x243}], 0x1}}], 0x1, 0x0)

209.556047ms ago: executing program 1 (id=6634):
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000140)={0x6}, 0x10)
write(r0, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000ff02000200000000", 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8002}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

733.09µs ago: executing program 6 (id=6635):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000002c0)={'syzkaller1\x00', {0x2, 0x4e22, @broadcast}})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})

0s ago: executing program 1 (id=6645):
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendfile(r0, r0, 0x0, 0x40000f63c)

kernel console output (not intermixed with test programs):

ibute type 10 has an invalid length.
[  137.595913][T13553] dummy0: entered promiscuous mode
[  137.601886][T13553] bridge0: port 3(dummy0) entered blocking state
[  137.608479][T13553] bridge0: port 3(dummy0) entered disabled state
[  137.615347][T13553] dummy0: entered allmulticast mode
[  137.622063][ T3381] dummy0 speed is unknown, defaulting to 1000
[  137.628206][ T3381] �yz2: Port: 1 Link ACTIVE
[  137.759383][T13571] dummy0 speed is unknown, defaulting to 1000
[  137.797239][T13571] lo speed is unknown, defaulting to 1000
[  137.969701][T13586] __nla_validate_parse: 1 callbacks suppressed
[  137.969789][T13586] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.4349'.
[  137.990741][T13586] netlink: zone id is out of range
[  137.996027][T13586] netlink: zone id is out of range
[  138.001491][T13586] netlink: zone id is out of range
[  138.029335][T13586] netlink: del zone limit has 8 unknown bytes
[  138.190474][   T29] kauditd_printk_skb: 184 callbacks suppressed
[  138.190489][   T29] audit: type=1400 audit(2000000075.911:4885): avc:  denied  { read write } for  pid=13590 comm="syz.5.4351" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  138.221929][   T29] audit: type=1400 audit(2000000075.911:4886): avc:  denied  { open } for  pid=13590 comm="syz.5.4351" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  138.246789][   T29] audit: type=1400 audit(2000000075.911:4887): avc:  denied  { ioctl } for  pid=13590 comm="syz.5.4351" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  138.376436][T13594] loop3: detected capacity change from 0 to 1024
[  138.388622][   T29] audit: type=1326 audit(2000000076.111:4888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13593 comm="syz.7.4352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92be20e969 code=0x7ffc0000
[  138.412343][   T29] audit: type=1326 audit(2000000076.111:4889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13593 comm="syz.7.4352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92be20e969 code=0x7ffc0000
[  138.469414][T13599] loop7: detected capacity change from 0 to 512
[  138.478361][   T29] audit: type=1326 audit(2000000076.161:4890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13593 comm="syz.7.4352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92be20e969 code=0x7ffc0000
[  138.502166][   T29] audit: type=1326 audit(2000000076.171:4891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13593 comm="syz.7.4352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92be20e969 code=0x7ffc0000
[  138.525783][   T29] audit: type=1326 audit(2000000076.171:4892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13593 comm="syz.7.4352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92be20e969 code=0x7ffc0000
[  138.549468][   T29] audit: type=1326 audit(2000000076.171:4893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13593 comm="syz.7.4352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92be20e969 code=0x7ffc0000
[  138.572973][   T29] audit: type=1326 audit(2000000076.171:4894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13593 comm="syz.7.4352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92be20e969 code=0x7ffc0000
[  138.599883][T13594] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.628421][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.656839][T13599] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  138.690516][T13599] ext4 filesystem being mounted at /308/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.783886][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  138.787347][T13627] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4367'.
[  138.802177][T13627] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4367'.
[  138.827941][T13627] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4367'.
[  138.837246][T13634] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  138.848608][T13627] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4367'.
[  138.877974][T13627] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4367'.
[  138.890090][T13627] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4367'.
[  138.998662][T13662] loop5: detected capacity change from 0 to 512
[  139.038709][T13662] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.065968][T13662] ext4 filesystem being mounted at /298/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.094699][T13674] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4385'.
[  139.106197][T13674] netlink: zone id is out of range
[  139.112293][T13674] netlink: zone id is out of range
[  139.117553][T13674] netlink: zone id is out of range
[  139.124802][T13674] netlink: del zone limit has 8 unknown bytes
[  139.135726][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.158766][T13677] hub 9-0:1.0: USB hub found
[  139.165585][T13677] hub 9-0:1.0: 8 ports detected
[  139.303556][T13693] syzkaller0: entered promiscuous mode
[  139.309075][T13693] syzkaller0: entered allmulticast mode
[  139.315878][T13704] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4400'.
[  139.325821][T13704] netlink: zone id is out of range
[  139.331140][T13704] netlink: zone id is out of range
[  139.337133][T13705] sctp: [Deprecated]: syz.5.4397 (pid 13705) Use of struct sctp_assoc_value in delayed_ack socket option.
[  139.337133][T13705] Use struct sctp_sack_info instead
[  139.398157][T13709] block device autoloading is deprecated and will be removed.
[  139.406214][T13709] syz.1.4402: attempt to access beyond end of device
[  139.406214][T13709] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  139.605461][T13731] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4411'.
[  140.000004][T13742] syzkaller0: entered promiscuous mode
[  140.005690][T13742] syzkaller0: entered allmulticast mode
[  140.169947][T13746] loop5: detected capacity change from 0 to 8192
[  140.252052][T13749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  140.262085][T13749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  140.439075][T13772] bridge0: port 3(batadv1) entered blocking state
[  140.446086][T13772] bridge0: port 3(batadv1) entered disabled state
[  140.453225][T13772] batadv1: entered allmulticast mode
[  140.459281][T13772] batadv1: entered promiscuous mode
[  140.542419][ T9031] IPVS: starting estimator thread 0...
[  140.578210][T13793] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  140.607332][T13797] netlink: 'syz.1.4440': attribute type 3 has an invalid length.
[  140.626158][T13797] netlink: 'syz.1.4440': attribute type 3 has an invalid length.
[  140.640915][T13785] IPVS: using max 2880 ests per chain, 144000 per kthread
[  140.885243][T13829] loop7: detected capacity change from 0 to 512
[  140.929217][T13829] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.946049][ T8340] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  140.955623][ T8340] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  140.990758][T13829] ext4 filesystem being mounted at /331/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.027783][T13829] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.212806][T13862] loop7: detected capacity change from 0 to 1024
[  141.295981][T13862] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.304391][T13864] loop3: detected capacity change from 0 to 2048
[  141.323712][T13862] EXT4-fs error (device loop7): ext4_lookup:1781: inode #2: comm syz.7.4469: bad inode number: 12
[  141.390360][T13868] loop5: detected capacity change from 0 to 128
[  141.397109][T13862] EXT4-fs (loop7): Remounting filesystem read-only
[  141.400892][T13864] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.427362][T13864] ext4 filesystem being mounted at /926/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.466573][T13864] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4470: bg 0: block 345: padding at end of block bitmap is not set
[  141.503862][T13864] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1 with error 117
[  141.516741][T13864] EXT4-fs (loop3): This should not happen!! Data will be lost
[  141.516741][T13864] 
[  141.527082][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.550198][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.639195][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.639195][ T8303] loop5: rw=1, sector=145, nr_sectors = 16 limit=128
[  141.663325][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.663325][ T8303] loop5: rw=1, sector=169, nr_sectors = 8 limit=128
[  141.679267][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.679267][ T8303] loop5: rw=1, sector=185, nr_sectors = 8 limit=128
[  141.709966][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.709966][ T8303] loop5: rw=1, sector=201, nr_sectors = 8 limit=128
[  141.725237][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.725237][ T8303] loop5: rw=1, sector=217, nr_sectors = 8 limit=128
[  141.738814][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.738814][ T8303] loop5: rw=1, sector=233, nr_sectors = 8 limit=128
[  141.768539][ T9031] lo speed is unknown, defaulting to 1000
[  141.768592][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.768592][ T8303] loop5: rw=1, sector=249, nr_sectors = 8 limit=128
[  141.788919][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.788919][ T8303] loop5: rw=1, sector=265, nr_sectors = 8 limit=128
[  141.802574][ T8303] kworker/u8:45: attempt to access beyond end of device
[  141.802574][ T8303] loop5: rw=1, sector=281, nr_sectors = 8 limit=128
[  142.102292][T13933] loop5: detected capacity change from 0 to 128
[  142.483790][T13975] vhci_hcd: invalid port number 96
[  142.489094][T13975] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  143.058384][T14032] loop3: detected capacity change from 0 to 128
[  143.354032][T14057] loop7: detected capacity change from 0 to 512
[  143.376007][T14057] EXT4-fs: Ignoring removed oldalloc option
[  143.394415][T14057] EXT4-fs: Ignoring removed mblk_io_submit option
[  143.431215][T14057] EXT4-fs error (device loop7): ext4_xattr_inode_iget:433: comm syz.7.4559: Parent and EA inode have the same ino 15
[  143.447183][T14057] EXT4-fs (loop7): Remounting filesystem read-only
[  143.454131][T14057] EXT4-fs warning (device loop7): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  143.469423][   T29] kauditd_printk_skb: 213 callbacks suppressed
[  143.469437][   T29] audit: type=1400 audit(2000000081.191:5108): avc:  denied  { remount } for  pid=14063 comm="syz.6.4561" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  143.469446][T14057] EXT4-fs (loop7): 1 orphan inode deleted
[  143.470064][T14057] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.515166][   T29] audit: type=1400 audit(2000000081.241:5109): avc:  denied  { mount } for  pid=14056 comm="syz.7.4559" name="/" dev="loop7" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  143.537885][T14057] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.596828][T14062] loop5: detected capacity change from 0 to 8192
[  143.610282][   T29] audit: type=1400 audit(2000000081.331:5110): avc:  denied  { create } for  pid=14073 comm="syz.7.4565" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  143.635496][T14072] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub
[  143.676162][   T29] audit: type=1400 audit(2000000081.361:5111): avc:  denied  { write } for  pid=14073 comm="syz.7.4565" path="socket:[40565]" dev="sockfs" ino=40565 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  143.700671][   T29] audit: type=1400 audit(2000000081.361:5112): avc:  denied  { nlmsg_read } for  pid=14073 comm="syz.7.4565" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  143.794763][   T29] audit: type=1400 audit(2000000081.521:5113): avc:  denied  { read write } for  pid=3304 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  143.819582][   T29] audit: type=1400 audit(2000000081.521:5114): avc:  denied  { open } for  pid=3304 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  143.844512][   T29] audit: type=1400 audit(2000000081.521:5115): avc:  denied  { ioctl } for  pid=3304 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  143.892605][   T29] audit: type=1400 audit(2000000081.541:5116): avc:  denied  { prog_load } for  pid=14087 comm="syz.5.4574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  143.912294][   T29] audit: type=1400 audit(2000000081.541:5117): avc:  denied  { bpf } for  pid=14087 comm="syz.5.4574" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  144.026087][T14108] __nla_validate_parse: 23 callbacks suppressed
[  144.026102][T14108] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4581'.
[  144.096003][T14114] SELinux: failed to load policy
[  144.133915][T14119] loop7: detected capacity change from 0 to 1024
[  144.142070][T14119] EXT4-fs: Ignoring removed oldalloc option
[  144.148267][T14119] EXT4-fs: Ignoring removed i_version option
[  144.192830][T14119] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.221500][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.292348][T14142] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  144.292602][T14141] IPVS: stopping master sync thread 14142 ...
[  144.581868][T14149] net_ratelimit: 4 callbacks suppressed
[  144.581882][T14149] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  144.624736][T14156] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  144.624736][T14156]    program syz.7.4602 not setting count and/or reply_len properly
[  144.824526][T14176] sctp: [Deprecated]: syz.3.4613 (pid 14176) Use of int in max_burst socket option deprecated.
[  144.824526][T14176] Use struct sctp_assoc_value instead
[  145.005053][T14194] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  145.118894][T14204] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4627'.
[  145.495973][T14260] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  145.722119][T14279] dummy0 speed is unknown, defaulting to 1000
[  145.743001][T14299] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4672'.
[  145.751961][T14299] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4672'.
[  145.795804][T14279] lo speed is unknown, defaulting to 1000
[  145.908939][T14316] warn_alloc: 1 callbacks suppressed
[  145.908962][T14316] syz.1.4680: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  145.929470][T14316] CPU: 0 UID: 0 PID: 14316 Comm: syz.1.4680 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(voluntary) 
[  145.929500][T14316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  145.929513][T14316] Call Trace:
[  145.929518][T14316]  <TASK>
[  145.929561][T14316]  __dump_stack+0x1d/0x30
[  145.929582][T14316]  dump_stack_lvl+0xe8/0x140
[  145.929626][T14316]  dump_stack+0x15/0x1b
[  145.929639][T14316]  warn_alloc+0x12b/0x1a0
[  145.929661][T14316]  ? schedule+0x5f/0xd0
[  145.929681][T14316]  ? futex_unqueue+0xb9/0xf0
[  145.929764][T14316]  __vmalloc_node_range_noprof+0x9c/0xdf0
[  145.929791][T14316]  ? __pfx_futex_wake_mark+0x10/0x10
[  145.929884][T14316]  ? __rcu_read_unlock+0x4f/0x70
[  145.929915][T14316]  ? avc_has_perm_noaudit+0x1b1/0x200
[  145.929949][T14316]  ? should_fail_ex+0x30/0x280
[  145.929980][T14316]  ? xskq_create+0x36/0xe0
[  145.930001][T14316]  ? should_failslab+0x8c/0xb0
[  145.930084][T14316]  vmalloc_user_noprof+0x59/0x70
[  145.930121][T14316]  ? xskq_create+0x80/0xe0
[  145.930143][T14316]  xskq_create+0x80/0xe0
[  145.930164][T14316]  xsk_init_queue+0x95/0xf0
[  145.930215][T14316]  xsk_setsockopt+0x35c/0x510
[  145.930234][T14316]  ? __pfx_xsk_setsockopt+0x10/0x10
[  145.930320][T14316]  __sys_setsockopt+0x181/0x200
[  145.930415][T14316]  ? fpregs_restore_userregs+0xbb/0x190
[  145.930482][T14316]  __x64_sys_setsockopt+0x64/0x80
[  145.930507][T14316]  x64_sys_call+0x2bd5/0x2fb0
[  145.930589][T14316]  do_syscall_64+0xd0/0x1a0
[  145.930605][T14316]  ? clear_bhb_loop+0x25/0x80
[  145.930622][T14316]  ? clear_bhb_loop+0x25/0x80
[  145.930638][T14316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.930713][T14316] RIP: 0033:0x7f82157ae969
[  145.930729][T14316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.930747][T14316] RSP: 002b:00007f8213e17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  145.930766][T14316] RAX: ffffffffffffffda RBX: 00007f82159d5fa0 RCX: 00007f82157ae969
[  145.930776][T14316] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  145.930799][T14316] RBP: 00007f8215830ab1 R08: 0000000000000004 R09: 0000000000000000
[  145.930861][T14316] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  145.930870][T14316] R13: 0000000000000000 R14: 00007f82159d5fa0 R15: 00007fffbf730d78
[  145.930885][T14316]  </TASK>
[  146.168788][T14316] Mem-Info:
[  146.171903][T14316] active_anon:23412 inactive_anon:9 isolated_anon:0
[  146.171903][T14316]  active_file:22035 inactive_file:2270 isolated_file:0
[  146.171903][T14316]  unevictable:0 dirty:279 writeback:0
[  146.171903][T14316]  slab_reclaimable:3798 slab_unreclaimable:43621
[  146.171903][T14316]  mapped:30626 shmem:19921 pagetables:1036
[  146.171903][T14316]  sec_pagetables:0 bounce:0
[  146.171903][T14316]  kernel_misc_reclaimable:0
[  146.171903][T14316]  free:1844125 free_pcp:3065 free_cma:0
[  146.217460][T14316] Node 0 active_anon:100724kB inactive_anon:36kB active_file:88140kB inactive_file:9080kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:129580kB dirty:1116kB writeback:0kB shmem:86760kB writeback_tmp:0kB kernel_stack:4464kB pagetables:4144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  146.246559][T14316] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  146.275926][T14316] lowmem_reserve[]: 0 2884 7863 7863
[  146.281608][T14316] Node 0 DMA32 free:2950036kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953568kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[  146.311134][T14316] lowmem_reserve[]: 0 0 4978 4978
[  146.316695][T14316] Node 0 Normal free:4387092kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:115456kB inactive_anon:36kB active_file:88140kB inactive_file:9080kB unevictable:0kB writepending:1116kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:10740kB local_pcp:2776kB free_cma:0kB
[  146.347675][T14316] lowmem_reserve[]: 0 0 0 0
[  146.352349][T14316] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  146.365617][T14316] Node 0 DMA32: 5*4kB (M) 2*8kB (M) 3*16kB (M) 4*32kB (M) 3*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2950036kB
[  146.382212][T14316] Node 0 Normal: 11*4kB (ME) 1*8kB (M) 205*16kB (U) 229*32kB (UME) 491*64kB (UME) 162*128kB (UME) 104*256kB (UM) 92*512kB (UME) 70*1024kB (UM) 51*2048kB (UM) 993*4096kB (UM) = 4380004kB
[  146.401287][T14316] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  146.410831][T14316] 52892 total pagecache pages
[  146.415619][T14316] 9 pages in swap cache
[  146.419897][T14316] Free swap  = 124792kB
[  146.424174][T14316] Total swap = 124996kB
[  146.428522][T14316] 2097051 pages RAM
[  146.432569][T14316] 0 pages HighMem/MovableOnly
[  146.437357][T14316] 80258 pages reserved
[  146.673487][T14331] loop5: detected capacity change from 0 to 512
[  146.685008][T14331] EXT4-fs: Ignoring removed oldalloc option
[  146.696525][T14331] EXT4-fs: Ignoring removed mblk_io_submit option
[  146.752825][T14331] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.4685: Parent and EA inode have the same ino 15
[  146.765785][T14331] EXT4-fs (loop5): Remounting filesystem read-only
[  146.772570][T14331] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  146.785431][T14331] EXT4-fs (loop5): 1 orphan inode deleted
[  146.794192][T14331] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.811306][T14331] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.964039][T14342] block device autoloading is deprecated and will be removed.
[  146.986496][T14342] bio_check_eod: 103 callbacks suppressed
[  146.986513][T14342] syz.7.4689: attempt to access beyond end of device
[  146.986513][T14342] md33: rw=2048, sector=0, nr_sectors = 8 limit=0
[  147.485823][T14372] tipc: Started in network mode
[  147.491094][T14372] tipc: Node identity ac14140f, cluster identity 4711
[  147.504259][T14372] tipc: New replicast peer: 255.255.255.255
[  147.510662][T14372] tipc: Enabled bearer <udp:syz2>, priority 10
[  147.589185][ T9359] Process accounting resumed
[  147.702306][T14391] xt_hashlimit: max too large, truncated to 1048576
[  147.846429][T14391] Cannot find set identified by id 0 to match
[  147.860794][T14321] syz.1.4682 (14321) used greatest stack depth: 5984 bytes left
[  148.186959][T14444] netlink: 'syz.5.4733': attribute type 3 has an invalid length.
[  148.259843][T14451] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  148.268751][T14451] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  148.307936][T14451] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  148.346602][T14451] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  148.355058][T14451] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  148.379777][T14451] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  148.394329][T14455] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  148.491994][ T9359] IPVS: starting estimator thread 0...
[  148.535496][   T29] kauditd_printk_skb: 308 callbacks suppressed
[  148.535511][   T29] audit: type=1326 audit(2000000086.261:5426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.590505][T14481] IPVS: using max 3072 ests per chain, 153600 per kthread
[  148.613164][   T29] audit: type=1326 audit(2000000086.291:5427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.636890][   T29] audit: type=1326 audit(2000000086.291:5428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.660454][   T29] audit: type=1326 audit(2000000086.301:5429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.684030][   T29] audit: type=1326 audit(2000000086.301:5430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.707587][   T29] audit: type=1326 audit(2000000086.301:5431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.731084][   T29] audit: type=1326 audit(2000000086.301:5432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.754585][   T29] audit: type=1326 audit(2000000086.301:5433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.778176][   T29] audit: type=1326 audit(2000000086.301:5434): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.802073][   T29] audit: type=1326 audit(2000000086.301:5435): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14485 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  148.830430][ T9353] tipc: Node number set to 2886997007
[  148.896475][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.904310][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.912228][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.919996][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.927841][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.935628][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.943498][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.951257][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.959006][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.966767][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.974666][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.982428][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.990176][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  148.997939][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.005751][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.013506][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.021288][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.029029][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.036907][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.044679][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.052535][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.060274][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.065532][T14509] __nla_validate_parse: 3 callbacks suppressed
[  149.065546][T14509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4762'.
[  149.068087][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.068113][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.084733][T14509] netem: change failed
[  149.091032][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.091070][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.091157][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.091203][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.091268][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.091289][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.149623][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.157398][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.165262][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.173033][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.180891][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.188686][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.196560][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.204398][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.212218][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.219986][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.227826][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.235609][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.243391][ T9353] hid-generic 0000:0000:20000000.000B: unknown main item tag 0x0
[  149.253747][ T9353] hid-generic 0000:0000:20000000.000B: hidraw0: <UNKNOWN> HID v0.01 Device [syz0] on syz1
[  149.640882][T14553] loop5: detected capacity change from 0 to 128
[  149.648796][T14553] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  149.763950][T14561] loop7: detected capacity change from 0 to 512
[  149.814475][T14561] EXT4-fs (loop7): 1 orphan inode deleted
[  149.823832][T14561] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.838850][ T8271] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:17: Failed to release dquot type 1
[  149.880356][T14561] ext4 filesystem being mounted at /418/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.984287][T14579] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4794'.
[  149.985251][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.993327][T14579] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4794'.
[  149.993628][T14579] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4794'.
[  150.117895][T14591] loop3: detected capacity change from 0 to 1024
[  150.162590][T14595] xt_hashlimit: max too large, truncated to 1048576
[  150.172658][T14595] Cannot find set identified by id 0 to match
[  150.193450][T14591] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.353211][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.369051][T14610] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  150.380192][T14609] IPVS: stopping master sync thread 14610 ...
[  150.415554][T14616] loop5: detected capacity change from 0 to 1024
[  150.514260][T14616] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.561790][T14616] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 15: block 305:freeing already freed block (bit 19); block bitmap corrupt.
[  150.636831][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.945038][T14674] loop3: detected capacity change from 0 to 128
[  151.021963][T14674] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  151.200892][T14693] loop3: detected capacity change from 0 to 1024
[  151.224092][T14693] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.275215][T14693] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 305:freeing already freed block (bit 19); block bitmap corrupt.
[  151.379286][T14699] netlink: 'syz.7.4841': attribute type 1 has an invalid length.
[  151.387147][T14699] netlink: 224 bytes leftover after parsing attributes in process `syz.7.4841'.
[  151.415659][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.432129][T14702] IPVS: stopping master sync thread 14704 ...
[  151.438595][T14704] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  151.470656][T14708] syz_tun: entered allmulticast mode
[  151.477583][T14705] syz_tun: left allmulticast mode
[  151.511038][T14707] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4845'.
[  151.556730][T14719] loop3: detected capacity change from 0 to 2048
[  151.573910][T14719] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.590747][T14719] netlink: 136 bytes leftover after parsing attributes in process `syz.3.4849'.
[  151.599826][T14719] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  151.623075][T14729] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4853'.
[  151.635007][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.669620][T14734] ALSA: seq fatal error: cannot create timer (-22)
[  151.757010][T14745] loop7: detected capacity change from 0 to 1024
[  151.786512][T14739] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  151.793063][T14739] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  151.801150][T14739] vhci_hcd vhci_hcd.0: Device attached
[  151.809409][T14745] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.809646][T14752] vhci_hcd: connection closed
[  151.831593][ T8271] vhci_hcd: stop threads
[  151.840666][ T8271] vhci_hcd: release socket
[  151.845086][ T8271] vhci_hcd: disconnect device
[  151.858157][T14745] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 305:freeing already freed block (bit 19); block bitmap corrupt.
[  151.888507][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.988731][T14773] netlink: 268 bytes leftover after parsing attributes in process `syz.6.4871'.
[  152.022421][T14779] netlink: 96 bytes leftover after parsing attributes in process `syz.5.4873'.
[  152.249453][T14808] ------------[ cut here ]------------
[  152.255261][T14808] WARNING: CPU: 1 PID: 14808 at mm/page_alloc.c:4946 __alloc_frozen_pages_noprof+0x218/0x360
[  152.265653][T14808] Modules linked in:
[  152.269565][T14808] CPU: 1 UID: 0 PID: 14808 Comm: syz.7.4886 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(voluntary) 
[  152.282332][T14808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  152.292505][T14808] RIP: 0010:__alloc_frozen_pages_noprof+0x218/0x360
[  152.299253][T14808] Code: 83 3d 63 b5 50 05 02 72 0e 48 83 b8 a0 fb ff ff 00 0f 84 48 ff ff ff 81 ca 00 01 00 00 e9 3d ff ff ff c6 05 52 b2 4c 05 01 90 <0f> 0b 90 31 c0 eb 84 a9 00 00 08 00 75 52 44 89 f1 81 e1 7f ff ff
[  152.319124][T14808] RSP: 0018:ffffc900026efa40 EFLAGS: 00010246
[  152.325322][T14808] RAX: d32b178205917500 RBX: 000000000000000e RCX: 0000000000000000
[  152.333370][T14808] RDX: 0000000000000000 RSI: 000000000000000e RDI: 0000000000040dc0
[  152.341470][T14808] RBP: 0000000000000dc0 R08: ffff88812f00cc98 R09: 0000000000000000
[  152.349488][T14808] R10: ffff88813f5979a8 R11: 000188813f5979a8 R12: ffffc900026efd38
[  152.357623][T14808] R13: 000000000000fed8 R14: 0000000000040dc0 R15: 0000000000000000
[  152.365663][T14808] FS:  00007f92bc8776c0(0000) GS:ffff8882aef50000(0000) knlGS:0000000000000000
[  152.374654][T14808] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  152.381276][T14808] CR2: 000020000000f000 CR3: 0000000113c44000 CR4: 00000000003506f0
[  152.389336][T14808] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  152.397369][T14808] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  152.405672][T14808] Call Trace:
[  152.409085][T14808]  <TASK>
[  152.412133][T14808]  __alloc_pages_noprof+0x9/0x20
[  152.417097][T14808]  ___kmalloc_large_node+0x73/0x130
[  152.422402][T14808]  __kmalloc_large_node_noprof+0x16/0xa0
[  152.428153][T14808]  __kmalloc_noprof+0x2ab/0x3e0
[  152.433047][T14808]  ? hashtab_init+0x9b/0xe0
[  152.437638][T14808]  ? common_read+0x3f/0x300
[  152.442243][T14808]  hashtab_init+0x9b/0xe0
[  152.446590][T14808]  symtab_init+0x2c/0x40
[  152.450868][T14808]  common_read+0x10b/0x300
[  152.455291][T14808]  ? __pfx_common_read+0x10/0x10
[  152.460302][T14808]  policydb_read+0x64f/0x1330
[  152.465078][T14808]  ? security_load_policy+0x90/0x890
[  152.470420][T14808]  security_load_policy+0xba/0x890
[  152.475568][T14808]  ? rep_movs_alternative+0x4a/0x90
[  152.480825][T14808]  sel_write_load+0x1d4/0x380
[  152.485605][T14808]  ? __pfx_sel_write_load+0x10/0x10
[  152.490931][T14808]  vfs_write+0x266/0x8d0
[  152.495196][T14808]  ? __rcu_read_unlock+0x4f/0x70
[  152.500192][T14808]  ? __fget_files+0x184/0x1c0
[  152.505003][T14808]  ksys_write+0xda/0x1a0
[  152.509275][T14808]  __x64_sys_write+0x40/0x50
[  152.513949][T14808]  x64_sys_call+0x2cdd/0x2fb0
[  152.518652][T14808]  do_syscall_64+0xd0/0x1a0
[  152.523213][T14808]  ? clear_bhb_loop+0x25/0x80
[  152.527910][T14808]  ? clear_bhb_loop+0x25/0x80
[  152.532731][T14808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.538763][T14808] RIP: 0033:0x7f92be20e969
[  152.543265][T14808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.562980][T14808] RSP: 002b:00007f92bc877038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  152.571424][T14808] RAX: ffffffffffffffda RBX: 00007f92be435fa0 RCX: 00007f92be20e969
[  152.579399][T14808] RDX: 000000000000ffa8 RSI: 0000200000000000 RDI: 0000000000000003
[  152.587448][T14808] RBP: 00007f92be290ab1 R08: 0000000000000000 R09: 0000000000000000
[  152.595522][T14808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.603520][T14808] R13: 0000000000000000 R14: 00007f92be435fa0 R15: 00007ffe7df7af38
[  152.611573][T14808]  </TASK>
[  152.614593][T14808] ---[ end trace 0000000000000000 ]---
[  152.629823][T14808] SELinux: failed to load policy
[  152.637208][T14817] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  152.717691][T14828] xt_CT: No such helper "pptp"
[  152.847547][T14852] loop7: detected capacity change from 0 to 512
[  152.876832][T14852] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.892651][T14852] ext4 filesystem being mounted at /439/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.935328][T14855] SELinux: failed to load policy
[  152.975574][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.115869][T14896] loop3: detected capacity change from 0 to 1024
[  153.122732][T14896] EXT4-fs: Ignoring removed nomblk_io_submit option
[  153.133671][T14896] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.150740][T14896] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[  153.168255][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.232225][T14908] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  153.472490][T14945] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  153.665100][   T29] kauditd_printk_skb: 789 callbacks suppressed
[  153.665113][   T29] audit: type=1400 audit(2000000091.391:6224): avc:  denied  { write } for  pid=14951 comm="syz.7.4956" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  153.773927][T14960] loop3: detected capacity change from 0 to 512
[  153.781630][T14960] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  153.795599][T14960] EXT4-fs (loop3): 1 truncate cleaned up
[  153.805200][T14960] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.827547][   T29] audit: type=1400 audit(2000000091.551:6225): avc:  denied  { setattr } for  pid=14959 comm="syz.3.4950" name="file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  153.861625][   T29] audit: type=1400 audit(2000000091.591:6226): avc:  denied  { remove_name } for  pid=14959 comm="syz.3.4950" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  153.885109][   T29] audit: type=1400 audit(2000000091.591:6227): avc:  denied  { rename } for  pid=14959 comm="syz.3.4950" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  153.908218][   T29] audit: type=1400 audit(2000000091.591:6228): avc:  denied  { unlink } for  pid=14959 comm="syz.3.4950" name="file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  153.979576][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.010029][   T29] audit: type=1326 audit(2000000091.721:6229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14969 comm="syz.6.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  154.034207][   T29] audit: type=1326 audit(2000000091.731:6230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14969 comm="syz.6.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  154.058268][   T29] audit: type=1400 audit(2000000091.731:6231): avc:  denied  { append } for  pid=14982 comm="syz.1.4961" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  154.081904][   T29] audit: type=1326 audit(2000000091.731:6232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14969 comm="syz.6.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  154.106016][   T29] audit: type=1326 audit(2000000091.731:6233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14969 comm="syz.6.4954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  154.301481][T15017] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  154.334228][T15016] bond1: entered promiscuous mode
[  154.339369][T15016] bond1: entered allmulticast mode
[  154.354963][T15016] 8021q: adding VLAN 0 to HW filter on device bond1
[  154.372422][T15016] bond1 (unregistering): Released all slaves
[  154.395351][T15020] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  154.437099][T15028] loop5: detected capacity change from 0 to 512
[  154.446234][T15031] xt_TPROXY: Can be used only with -p tcp or -p udp
[  154.455713][T15028] EXT4-fs: Ignoring removed mblk_io_submit option
[  154.462784][T15028] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  154.494120][T15028] EXT4-fs (loop5): 1 truncate cleaned up
[  154.519977][T15028] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.565466][T15028] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  154.601545][T15042] __nla_validate_parse: 12 callbacks suppressed
[  154.601560][T15042] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4986'.
[  154.617361][T15042] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4986'.
[  154.648201][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.846444][T15067] loop5: detected capacity change from 0 to 512
[  154.863068][T15067] EXT4-fs: inline encryption not supported
[  154.882361][T15067] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.896807][T15067] ext4 filesystem being mounted at /429/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.913796][T15067] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #2: comm syz.5.4998: corrupted inode contents
[  154.926229][T15067] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #2: comm syz.5.4998: mark_inode_dirty error
[  154.939560][T15067] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #2: comm syz.5.4998: corrupted inode contents
[  154.954062][T15067] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #2: comm syz.5.4998: mark_inode_dirty error
[  154.982812][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.006479][T15076] loop7: detected capacity change from 0 to 512
[  155.023893][T15076] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.5002: bg 0: block 248: padding at end of block bitmap is not set
[  155.044362][T15076] EXT4-fs error (device loop7): ext4_acquire_dquot:6935: comm syz.7.5002: Failed to acquire dquot type 1
[  155.069823][T15076] EXT4-fs (loop7): 1 truncate cleaned up
[  155.087276][T15076] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.109193][T15076] ext4 filesystem being mounted at /465/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.170305][T15085] infiniband syz2: set active
[  155.175288][T15085] infiniband syz2: added veth0_to_bond
[  155.185452][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.205547][ T8349] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:64: Failed to release dquot type 1
[  155.207730][T15085] RDS/IB: syz2: added
[  155.221595][T15085] smc: adding ib device syz2 with port count 1
[  155.228458][T15085] smc:    ib device syz2 port 1 has pnetid 
[  155.259841][T15099] bridge0: entered promiscuous mode
[  155.270116][T15099] macvlan2: entered promiscuous mode
[  155.276907][T15099] bridge0: port 4(macvlan2) entered blocking state
[  155.283921][T15099] bridge0: port 4(macvlan2) entered disabled state
[  155.290918][T15099] macvlan2: entered allmulticast mode
[  155.296532][T15099] bridge0: entered allmulticast mode
[  155.302688][T15099] macvlan2: left allmulticast mode
[  155.307851][T15099] bridge0: left allmulticast mode
[  155.313977][T15099] bridge0: left promiscuous mode
[  155.567636][T15120] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5019'.
[  155.606614][T15120] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5019'.
[  155.644240][T15124] netlink: 'syz.1.5021': attribute type 3 has an invalid length.
[  155.838069][T15148] loop7: detected capacity change from 0 to 128
[  155.890567][T15154] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5035'.
[  156.041414][T15166] 9pnet: p9_errstr2errno: server reported unknown error �<jq
[  156.693755][T15222] loop7: detected capacity change from 0 to 1024
[  156.736445][T15222] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.853277][T15234] netlink: 5220 bytes leftover after parsing attributes in process `syz.1.5072'.
[  156.887198][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.932280][T15240] netlink: 52 bytes leftover after parsing attributes in process `syz.7.5075'.
[  156.979203][T15246] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  157.001028][T15246] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  157.063329][ T8340] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0x1a
[  157.256488][T15286] mmap: syz.3.5095 (15286): VmData 29077504 exceed data ulimit 2. Update limits or use boot option ignore_rlimit_data.
[  157.318119][T15295] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  157.482331][T15332] Invalid ELF header magic: != ELF
[  157.610523][T15353] loop7: detected capacity change from 0 to 512
[  157.627379][T15355] loop5: detected capacity change from 0 to 512
[  157.634511][T15355] EXT4-fs: Ignoring removed i_version option
[  157.640000][T15353] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846c118, mo2=0002]
[  157.652799][T15363] openvswitch: netlink: Message has 6 unknown bytes.
[  157.669687][T15353] System zones: 1-12
[  157.676169][T15355] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e000c018, mo2=0002]
[  157.685921][T15353] EXT4-fs error (device loop7): ext4_xattr_block_get:593: inode #2: comm syz.7.5126: corrupted xattr block 255: invalid header
[  157.690694][T15355] System zones: 0-2, 18-18, 34-35
[  157.704991][T15353] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -117
[  157.714508][T15355] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.727914][T15353] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.751212][T15355] ext4 filesystem being mounted at /443/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.758536][T15353] EXT4-fs error (device loop7): ext4_xattr_block_get:593: inode #2: comm syz.7.5126: corrupted xattr block 255: invalid header
[  157.776517][T15353] SELinux: (dev loop7, type ext4) getxattr errno 117
[  157.785566][T15353] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.786566][T15376] netlink: 'syz.3.5133': attribute type 4 has an invalid length.
[  157.855217][T15376] netlink: 'syz.3.5133': attribute type 4 has an invalid length.
[  157.865447][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.913517][T15389] loop7: detected capacity change from 0 to 512
[  157.932582][T15393] netlink: 'syz.5.5141': attribute type 29 has an invalid length.
[  157.948518][T15389] EXT4-fs error (device loop7): ext4_iget_extra_inode:4693: inode #15: comm syz.7.5140: corrupted in-inode xattr: invalid ea_ino
[  157.952288][T15393] netlink: 'syz.5.5141': attribute type 29 has an invalid length.
[  157.980442][T15389] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.5140: couldn't read orphan inode 15 (err -117)
[  158.002256][T15393] netlink: 500 bytes leftover after parsing attributes in process `syz.5.5141'.
[  158.004553][T15398] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5144'.
[  158.026469][T15389] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.030817][T15402] netlink: 'syz.5.5145': attribute type 10 has an invalid length.
[  158.049052][T15402] team0: Device hsr_slave_0 failed to register rx_handler
[  158.081542][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.192037][T15421] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5155'.
[  158.206976][T15421] ip6gre1: entered allmulticast mode
[  158.243956][T15425] netlink: 'syz.7.5157': attribute type 21 has an invalid length.
[  158.263637][T15425] netlink: 'syz.7.5157': attribute type 1 has an invalid length.
[  158.344807][T15437] loop3: detected capacity change from 0 to 512
[  158.359491][T15437] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  158.377790][T15437] EXT4-fs (loop3): invalid journal inode
[  158.392015][T15437] EXT4-fs (loop3): can't get journal size
[  158.403763][T15437] EXT4-fs (loop3): 1 truncate cleaned up
[  158.410797][T15437] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.452650][T15437] EXT4-fs warning (device loop3): verify_group_input:137: Cannot add at group 3 (only 1 groups)
[  158.514125][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.704979][   T29] kauditd_printk_skb: 225 callbacks suppressed
[  158.704993][   T29] audit: type=1400 audit(2000000096.431:6456): avc:  denied  { mount } for  pid=15471 comm="syz.7.5180" name="/" dev="ramfs" ino=44528 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  158.803903][   T29] audit: type=1326 audit(2000000096.521:6457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f82157a5927 code=0x7ffc0000
[  158.827437][   T29] audit: type=1326 audit(2000000096.521:6458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f821574ab39 code=0x7ffc0000
[  158.850882][   T29] audit: type=1326 audit(2000000096.521:6459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f82157a5927 code=0x7ffc0000
[  158.874339][   T29] audit: type=1326 audit(2000000096.521:6460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f821574ab39 code=0x7ffc0000
[  158.897875][   T29] audit: type=1326 audit(2000000096.521:6461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  158.921423][   T29] audit: type=1326 audit(2000000096.521:6462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  158.945016][   T29] audit: type=1326 audit(2000000096.521:6463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  158.968609][   T29] audit: type=1326 audit(2000000096.521:6464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  158.992183][   T29] audit: type=1326 audit(2000000096.521:6465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.1.5183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  159.130315][T15500] bridge0: entered allmulticast mode
[  159.150431][T15500] bridge_slave_1: left allmulticast mode
[  159.156135][T15500] bridge_slave_1: left promiscuous mode
[  159.161923][T15500] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.173767][T15500] bridge_slave_0: left promiscuous mode
[  159.179511][T15500] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.931107][T15618] ALSA: seq fatal error: cannot create timer (-16)
[  159.993889][T15631] __nla_validate_parse: 5 callbacks suppressed
[  159.993904][T15631] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5255'.
[  160.009083][T15631] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5255'.
[  160.307342][T15674] netlink: 'syz.3.5274': attribute type 22 has an invalid length.
[  160.315336][T15674] netlink: 168 bytes leftover after parsing attributes in process `syz.3.5274'.
[  160.409207][T15690] loop5: detected capacity change from 0 to 1024
[  160.417373][T15690] EXT4-fs: Ignoring removed nomblk_io_submit option
[  160.443928][T15690] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.475813][T15690] EXT4-fs (loop5): shut down requested (0)
[  160.502887][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.606807][T15725] dvmrp5: entered allmulticast mode
[  160.626402][T15731] sd 0:0:1:0: device reset
[  160.635035][T15725] dvmrp5: left allmulticast mode
[  160.652281][T15734] loop3: detected capacity change from 0 to 1024
[  160.659753][T15734] EXT4-fs: Ignoring removed nomblk_io_submit option
[  160.661899][T15735] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.673561][T15735] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.680850][T15735] bridge0: entered allmulticast mode
[  160.699860][T15734] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.720273][T15735] bridge_slave_1: left allmulticast mode
[  160.726215][T15735] bridge_slave_1: left promiscuous mode
[  160.731948][T15735] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.735253][T15734] EXT4-fs (loop3): shut down requested (0)
[  160.745811][T15735] bridge_slave_0: left allmulticast mode
[  160.751716][T15735] bridge_slave_0: left promiscuous mode
[  160.757555][T15735] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.785994][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.851489][T15756] loop3: detected capacity change from 0 to 128
[  160.877708][T15756] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  160.890517][T15756] ext4 filesystem being mounted at /1099/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  160.897826][T15765] netlink: 9286 bytes leftover after parsing attributes in process `syz.5.5311'.
[  161.004797][ T3304] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  161.016147][T15774] sd 0:0:1:0: device reset
[  161.026299][T15778] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5316'.
[  161.190203][T15804] loop5: detected capacity change from 0 to 512
[  161.205123][T15804] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  161.220294][T15803] bond1: entered promiscuous mode
[  161.225448][T15803] bond1: entered allmulticast mode
[  161.237734][T15803] 8021q: adding VLAN 0 to HW filter on device bond1
[  161.245075][T15804] EXT4-fs (loop5): 1 truncate cleaned up
[  161.252517][T15804] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.267325][T15803] bond1 (unregistering): Released all slaves
[  161.478887][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.492137][T15831] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5338'.
[  161.501142][T15831] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5338'.
[  161.573344][T15835] xt_hashlimit: max too large, truncated to 1048576
[  161.656472][T15841] loop5: detected capacity change from 0 to 128
[  161.692928][T15841] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  161.695350][T15847] bridge0: entered allmulticast mode
[  161.733455][T15841] ext4 filesystem being mounted at /472/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  161.768182][T15847] dummy0: left allmulticast mode
[  161.773663][T15847] bridge0: port 3(dummy0) entered disabled state
[  161.792905][T15847] bridge_slave_1: left allmulticast mode
[  161.798613][T15847] bridge_slave_1: left promiscuous mode
[  161.804384][T15847] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.829013][T15847] bridge_slave_0: left promiscuous mode
[  161.834778][T15847] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.851858][ T9877] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  161.891634][T15857] bridge0: port 3(macvlan2) entered blocking state
[  161.898472][T15857] bridge0: port 3(macvlan2) entered disabled state
[  161.908105][T15857] macvlan2: entered allmulticast mode
[  161.914776][T15857] macvlan2: left allmulticast mode
[  162.094241][T15884] loop5: detected capacity change from 0 to 1024
[  162.101292][T15884] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  162.112249][T15884] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  162.123360][T15884] JBD2: no valid journal superblock found
[  162.129250][T15884] EXT4-fs (loop5): Could not load journal inode
[  162.142126][T15884] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  162.481409][T15890] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.488732][T15890] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.498291][T15892] sd 0:0:1:0: device reset
[  162.519659][T15890] bridge0: entered allmulticast mode
[  162.533371][T15893] netlink: 8 bytes leftover after parsing attributes in process `��'.
[  162.534117][T15894] SELinux: ebitmap: empty map
[  162.547474][T15894] SELinux: failed to load policy
[  162.557703][T15890] batadv1: left allmulticast mode
[  162.563068][T15890] batadv1: left promiscuous mode
[  162.568479][T15890] bridge0: port 3(batadv1) entered disabled state
[  162.608718][T15890] bridge_slave_1: left allmulticast mode
[  162.614674][T15890] bridge_slave_1: left promiscuous mode
[  162.620746][T15890] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.632918][T15890] bridge_slave_0: left allmulticast mode
[  162.638810][T15890] bridge_slave_0: left promiscuous mode
[  162.644860][T15890] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.818918][T15926] SELinux: ebitmap: empty map
[  162.830476][T15926] SELinux: failed to load policy
[  162.865942][T15940] serio: Serial port ptm0
[  162.900457][T15939] vhci_hcd: invalid port number 96
[  162.905896][T15939] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  162.932500][T15952] netlink: zone id is out of range
[  162.937850][T15952] netlink: zone id is out of range
[  162.943289][T15952] netlink: zone id is out of range
[  162.948813][T15952] netlink: zone id is out of range
[  162.954175][T15952] netlink: zone id is out of range
[  162.958870][T15954] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.959460][T15952] netlink: zone id is out of range
[  162.966530][T15954] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.968688][T15954] bridge0: entered allmulticast mode
[  162.971847][T15952] netlink: zone id is out of range
[  162.988626][T15954] bridge_slave_1: left allmulticast mode
[  162.989672][T15952] netlink: zone id is out of range
[  162.995204][T15954] bridge_slave_1: left promiscuous mode
[  162.995369][T15954] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.000637][T15952] netlink: zone id is out of range
[  163.019027][T15952] netlink: zone id is out of range
[  163.025276][T15954] bridge_slave_0: left promiscuous mode
[  163.031014][T15954] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.066485][T15962] SELinux: security_context_str_to_sid (��) failed with errno=-22
[  163.573530][T16011] vhci_hcd: invalid port number 96
[  163.578690][T16011] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  163.649760][T16019] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5424'.
[  163.674680][T16021] serio: Serial port ptm1
[  164.026077][   T29] kauditd_printk_skb: 560 callbacks suppressed
[  164.026092][   T29] audit: type=1400 audit(2000000101.751:7026): avc:  denied  { write } for  pid=16059 comm="syz.3.5442" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  164.079160][T16065] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[  164.080083][   T29] audit: type=1400 audit(2000000101.801:7027): avc:  denied  { relabelfrom } for  pid=16064 comm="syz.3.5444" name="" dev="pipefs" ino=46477 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  164.121155][   T29] audit: type=1400 audit(2000000101.811:7028): avc:  denied  { relabelto } for  pid=16064 comm="syz.3.5444" name="" dev="pipefs" ino=46477 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  164.186810][   T29] audit: type=1326 audit(2000000101.911:7029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16070 comm="syz.3.5448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  164.212990][   T29] audit: type=1326 audit(2000000101.911:7030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16070 comm="syz.3.5448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  164.237124][   T29] audit: type=1326 audit(2000000101.911:7031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16070 comm="syz.3.5448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  164.237155][   T29] audit: type=1326 audit(2000000101.911:7032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16070 comm="syz.3.5448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  164.347383][   T29] audit: type=1400 audit(2000000102.071:7033): avc:  denied  { create } for  pid=16084 comm="syz.1.5452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  164.373335][   T29] audit: type=1400 audit(2000000102.081:7034): avc:  denied  { connect } for  pid=16084 comm="syz.1.5452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  164.393743][   T29] audit: type=1400 audit(2000000102.091:7035): avc:  denied  { mounton } for  pid=16082 comm="syz.3.5454" path="/syzcgroup/cpu/syz3/cgroup.procs" dev="cgroup" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[  164.473673][T16097] netlink: 3 bytes leftover after parsing attributes in process `syz.5.5460'.
[  164.491301][T16097] 0�X���: renamed from caif0
[  164.500581][T16097] 0�X���: entered allmulticast mode
[  164.663439][T16117] loop7: detected capacity change from 0 to 128
[  164.746296][T16122] loop7: detected capacity change from 0 to 764
[  164.762163][T16122] Symlink component flag not implemented
[  164.772840][T16122] Symlink component flag not implemented (7)
[  164.867606][T16130] loop7: detected capacity change from 0 to 2048
[  164.901630][T16130] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.004161][T16152] dummy0 speed is unknown, defaulting to 1000
[  165.023910][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.036847][T16158] IPv6: NLM_F_CREATE should be specified when creating new route
[  165.060815][T16152] lo speed is unknown, defaulting to 1000
[  165.192424][T16178] loop7: detected capacity change from 0 to 512
[  165.201996][T16178] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  165.226568][T16178] EXT4-fs (loop7): 1 truncate cleaned up
[  165.243011][T16178] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.280099][T16186] netlink: 32 bytes leftover after parsing attributes in process `syz.6.5497'.
[  165.303554][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.435444][T16202] loop5: detected capacity change from 0 to 128
[  165.535633][T16212] 9pnet_fd: Insufficient options for proto=fd
[  165.690893][T16235] netlink: 'syz.7.5528': attribute type 5 has an invalid length.
[  165.780456][T16246] netlink: 3 bytes leftover after parsing attributes in process `syz.6.5521'.
[  165.792461][T16246] 0�X���: renamed from caif0
[  165.799070][T16246] 0�X���: entered allmulticast mode
[  165.829819][T16250] loop5: detected capacity change from 0 to 1024
[  165.838058][T16250] EXT4-fs: Ignoring removed oldalloc option
[  165.845280][T16250] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  165.867683][T16250] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.898106][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.931264][T16263] hub 2-0:1.0: USB hub found
[  165.936012][T16263] hub 2-0:1.0: 8 ports detected
[  165.988927][T16277] loop3: detected capacity change from 0 to 256
[  166.349689][T16303] dummy0 speed is unknown, defaulting to 1000
[  166.373230][T16307] dummy0 speed is unknown, defaulting to 1000
[  166.403923][T16303] lo speed is unknown, defaulting to 1000
[  166.504225][T16307] lo speed is unknown, defaulting to 1000
[  166.687980][T16335] loop3: detected capacity change from 0 to 1764
[  166.856286][T16360] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5568'.
[  166.894812][T16368] loop7: detected capacity change from 0 to 512
[  166.911653][T16370] batadv_slave_1: entered promiscuous mode
[  166.918458][T16370] veth1_virt_wifi: entered promiscuous mode
[  166.929084][T16369] veth1_virt_wifi: left promiscuous mode
[  166.935229][T16369] batadv_slave_1: left promiscuous mode
[  166.952546][T16368] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.972524][T16368] ext4 filesystem being mounted at /587/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  166.985876][T16376] ip6t_rpfilter: unknown options
[  167.026182][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.058240][T16379] dummy0 speed is unknown, defaulting to 1000
[  167.086490][T16385] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=16385 comm=gtp
[  167.098754][T16385] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=16385 comm=gtp
[  167.109830][T16379] lo speed is unknown, defaulting to 1000
[  167.205646][T16394] loop5: detected capacity change from 0 to 2048
[  167.227034][T16394] EXT4-fs: Ignoring removed bh option
[  167.241425][T16400] netlink: 268 bytes leftover after parsing attributes in process `syz.3.5585'.
[  167.259949][T16394] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.284993][T16425] loop3: detected capacity change from 0 to 1024
[  168.338594][T16425] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.360532][T16425] ext4 filesystem being mounted at /1160/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.548282][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.566489][T16454] netlink: 32 bytes leftover after parsing attributes in process `syz.7.5608'.
[  168.576781][T16454] netlink: 32 bytes leftover after parsing attributes in process `syz.7.5608'.
[  168.627634][T16457] SELinux: failed to load policy
[  168.631475][ T8292] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:37: bg 0: block 393: padding at end of block bitmap is not set
[  168.662649][ T8292] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  168.675412][ T8292] EXT4-fs (loop3): This should not happen!! Data will be lost
[  168.675412][ T8292] 
[  168.712459][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.198586][   T29] kauditd_printk_skb: 147 callbacks suppressed
[  169.198611][   T29] audit: type=1326 audit(169.222:7183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16525 comm="syz.3.5641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  169.248462][   T29] audit: type=1326 audit(169.252:7184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16525 comm="syz.3.5641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  169.271623][   T29] audit: type=1400 audit(169.262:7185): avc:  denied  { create } for  pid=16529 comm="syz.1.5643" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  169.290717][   T29] audit: type=1400 audit(169.262:7186): avc:  denied  { write } for  pid=16529 comm="syz.1.5643" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  169.315140][   T29] audit: type=1326 audit(169.302:7187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16525 comm="syz.3.5641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  169.338261][   T29] audit: type=1326 audit(169.302:7188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16525 comm="syz.3.5641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  169.361240][   T29] audit: type=1326 audit(169.302:7189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16525 comm="syz.3.5641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  169.438841][   T29] audit: type=1400 audit(169.432:7190): avc:  denied  { create } for  pid=16534 comm="syz.5.5644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  169.457994][   T29] audit: type=1400 audit(169.442:7191): avc:  denied  { connect } for  pid=16534 comm="syz.5.5644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  169.477204][   T29] audit: type=1400 audit(169.442:7192): avc:  denied  { module_request } for  pid=16534 comm="syz.5.5644" kmod="net-l2tp-type-8" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  169.509999][T16532] dummy0 speed is unknown, defaulting to 1000
[  169.537395][T16552] loop7: detected capacity change from 0 to 512
[  169.547566][T16552] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  169.550698][T16532] lo speed is unknown, defaulting to 1000
[  169.574605][T16554] dummy0 speed is unknown, defaulting to 1000
[  169.584124][T16552] EXT4-fs (loop7): 1 truncate cleaned up
[  169.590674][T16552] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.631122][T16558] loop5: detected capacity change from 0 to 2048
[  169.649348][ T9970] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.675519][T16558] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.679618][T16554] lo speed is unknown, defaulting to 1000
[  169.717086][T16558] EXT4-fs error (device loop5): ext4_find_extent:938: inode #2: comm syz.5.5663: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  169.808895][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.936874][T16596] bond0: (slave bond_slave_1): Releasing backup interface
[  169.945548][T16596] team0: Port device team_slave_0 removed
[  169.952747][T16596] team0: Port device team_slave_1 removed
[  169.958841][T16596] batman_adv: batadv0: Removing interface: batadv_slave_0
[  169.967466][T16596] batman_adv: batadv0: Removing interface: batadv_slave_1
[  170.190943][T16625] loop3: detected capacity change from 0 to 2048
[  170.225260][T16625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.408727][T16644] dummy0 speed is unknown, defaulting to 1000
[  170.433906][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.452864][T16644] lo speed is unknown, defaulting to 1000
[  170.571646][T16655] loop3: detected capacity change from 0 to 512
[  170.586533][T16655] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.608108][T16655] EXT4-fs (loop3): shut down requested (0)
[  170.645658][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.731778][T16676] loop5: detected capacity change from 0 to 1024
[  170.753656][T16676] EXT4-fs: Ignoring removed orlov option
[  170.759575][T16676] EXT4-fs: Ignoring removed nomblk_io_submit option
[  170.835920][T16684] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5697'.
[  170.844964][T16684] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5697'.
[  170.857725][T16676] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.883527][T16688] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5696'.
[  170.932500][T16690] netlink: 104 bytes leftover after parsing attributes in process `syz.6.5698'.
[  170.955836][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.227749][T16740] loop3: detected capacity change from 0 to 1024
[  171.250494][T16740] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  171.261714][T16740] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  171.291592][T16740] JBD2: no valid journal superblock found
[  171.297488][T16740] EXT4-fs (loop3): Could not load journal inode
[  171.429759][T16757] netlink: 'syz.1.5730': attribute type 13 has an invalid length.
[  171.478050][T16760] netlink: 32 bytes leftover after parsing attributes in process `syz.3.5731'.
[  171.515561][T16757] 8021q: adding VLAN 0 to HW filter on device bond0
[  171.524091][T16757] 8021q: adding VLAN 0 to HW filter on device team0
[  171.535171][T16757] net_ratelimit: 335 callbacks suppressed
[  171.535181][T16757] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  171.634986][T16772] netlink: 432 bytes leftover after parsing attributes in process `syz.6.5736'.
[  171.723054][T16782] loop5: detected capacity change from 0 to 164
[  171.793722][T16789] loop3: detected capacity change from 0 to 512
[  171.829339][T16789] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  171.847090][T16786] bond0: (slave bond_slave_0): Releasing backup interface
[  171.857860][T16786] bond0: (slave bond_slave_1): Releasing backup interface
[  171.867586][T16789] EXT4-fs (loop3): 1 truncate cleaned up
[  171.874675][T16789] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.890862][T16786] team0: Port device team_slave_0 removed
[  171.902617][T16786] team0: Port device team_slave_1 removed
[  171.919499][T16786] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.927089][T16786] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.942019][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.942033][T16786] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.958568][T16786] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.980264][ T9353] syz2: Port: 1 Link DOWN
[  172.122294][T16826] netlink: 'syz.6.5759': attribute type 1 has an invalid length.
[  172.123716][T16791] dummy0 speed is unknown, defaulting to 1000
[  172.130041][T16826] netlink: 16179 bytes leftover after parsing attributes in process `syz.6.5759'.
[  172.169176][T16829] syzkaller1: entered promiscuous mode
[  172.174827][T16829] syzkaller1: entered allmulticast mode
[  172.253290][T16791] lo speed is unknown, defaulting to 1000
[  172.428711][T16859] loop3: detected capacity change from 0 to 1764
[  172.444652][T16867] netlink: 220 bytes leftover after parsing attributes in process `syz.5.5777'.
[  172.488535][T16791] chnl_net:caif_netlink_parms(): no params data found
[  172.504638][T16879] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  172.525563][T16882] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.5785'.
[  172.540682][T16882] netlink: zone id is out of range
[  172.546435][T16882] netlink: zone id is out of range
[  172.557505][T16882] netlink: del zone limit has 8 unknown bytes
[  172.603115][T16791] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.610414][T16791] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.618822][T16791] bridge_slave_0: entered allmulticast mode
[  172.625771][T16791] bridge_slave_0: entered promiscuous mode
[  172.629855][T16895] netlink: 'syz.5.5790': attribute type 13 has an invalid length.
[  172.633288][T16791] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.647032][T16791] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.656655][T16791] bridge_slave_1: entered allmulticast mode
[  172.663606][T16791] bridge_slave_1: entered promiscuous mode
[  172.677397][T16893] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  172.733539][T16900] netlink: 432 bytes leftover after parsing attributes in process `syz.1.5791'.
[  172.823418][T16895] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  172.871600][T16791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  172.898367][T16791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  172.925761][T16918] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  172.974897][T16791] team0: Port device team_slave_0 added
[  172.992456][T16791] team0: Port device team_slave_1 added
[  173.039803][T16938] netlink: 'syz.6.5810': attribute type 3 has an invalid length.
[  173.072472][T16791] batman_adv: batadv0: Adding interface: batadv_slave_0
[  173.079696][T16791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.106166][T16791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  173.130267][T16791] batman_adv: batadv0: Adding interface: batadv_slave_1
[  173.137370][T16791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.163284][T16791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  173.179895][T16941] dummy0 speed is unknown, defaulting to 1000
[  173.202347][T16791] hsr_slave_0: entered promiscuous mode
[  173.211413][T16943] netlink: 'syz.6.5812': attribute type 13 has an invalid length.
[  173.219148][T16791] hsr_slave_1: entered promiscuous mode
[  173.228008][T16791] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  173.236371][T16791] Cannot create hsr debugfs directory
[  173.282645][T16943] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  173.298989][T16941] lo speed is unknown, defaulting to 1000
[  173.446894][T16791] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  173.465954][T16791] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  173.482883][T16791] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  173.521151][T16791] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  173.680337][T16791] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.719467][T16791] 8021q: adding VLAN 0 to HW filter on device team0
[  173.744240][ T8316] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.751531][ T8316] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.784383][ T8292] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.791718][ T8292] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.897230][T16978] netlink: 'syz.5.5826': attribute type 3 has an invalid length.
[  173.935523][T16791] 8021q: adding VLAN 0 to HW filter on device batadv0
[  174.076785][T16791] veth0_vlan: entered promiscuous mode
[  174.103274][T16791] veth1_vlan: entered promiscuous mode
[  174.127469][T16791] veth0_macvtap: entered promiscuous mode
[  174.136229][T16791] veth1_macvtap: entered promiscuous mode
[  174.149021][T16791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  174.159802][T16791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  174.169846][T16791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  174.180579][T16791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  174.190769][T16791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  174.201460][T16791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  174.213073][T16791] batman_adv: batadv0: Interface activated: batadv_slave_0
[  174.222217][T16791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  174.233123][T16791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  174.243384][T16791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  174.254093][T16791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  174.264138][T16791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  174.274915][T16791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  174.286211][T16791] batman_adv: batadv0: Interface activated: batadv_slave_1
[  174.287350][   T29] kauditd_printk_skb: 184 callbacks suppressed
[  174.287362][   T29] audit: type=1326 audit(174.312:7377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.303753][T16791] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.331552][T16791] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.340328][T16791] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.349225][T16791] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.368517][   T29] audit: type=1326 audit(174.352:7378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.391649][   T29] audit: type=1326 audit(174.362:7379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.414709][   T29] audit: type=1326 audit(174.362:7380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.437730][   T29] audit: type=1326 audit(174.362:7381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.460716][   T29] audit: type=1326 audit(174.362:7382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.483653][   T29] audit: type=1326 audit(174.362:7383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.506651][   T29] audit: type=1326 audit(174.362:7384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.529678][   T29] audit: type=1326 audit(174.362:7385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.552641][   T29] audit: type=1326 audit(174.362:7386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17008 comm="syz.1.5832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82157ae969 code=0x7ffc0000
[  174.757968][T17043] netlink: 'syz.6.5845': attribute type 21 has an invalid length.
[  174.867233][T17065] dummy0 speed is unknown, defaulting to 1000
[  174.901760][T17069] xt_hashlimit: max too large, truncated to 1048576
[  174.914620][T17065] lo speed is unknown, defaulting to 1000
[  175.030346][T17084] netlink: 'syz.5.5864': attribute type 1 has an invalid length.
[  175.127790][T17090] SELinux:  Context system_u:object_r:mouse_device_t:s0 is not valid (left unmapped).
[  175.180953][T17100] loop5: detected capacity change from 0 to 512
[  175.193320][T17100] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  175.221076][T17100] EXT4-fs (loop5): 1 truncate cleaned up
[  175.228236][T17100] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.405333][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.511841][T17135] netem: change failed
[  175.644893][T17158] Cannot find add_set index 0 as target
[  175.670631][T17161] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  175.725877][T17170] 9pnet: p9_errstr2errno: server reported unknown error �<jqz�PL�������<�p�� �#�
[  175.957950][T17200] dummy0 speed is unknown, defaulting to 1000
[  175.991733][T17200] lo speed is unknown, defaulting to 1000
[  176.120131][T17207] devpts: Unknown parameter 'g'
[  176.234824][T17226] netlink: 'syz.1.5930': attribute type 1 has an invalid length.
[  176.354022][T17246] __nla_validate_parse: 5 callbacks suppressed
[  176.354037][T17246] netlink: 76 bytes leftover after parsing attributes in process `syz.8.5938'.
[  176.434362][T17255] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5942'.
[  176.682620][T17267] netlink: 'syz.6.5948': attribute type 21 has an invalid length.
[  176.690629][T17267] netlink: 132 bytes leftover after parsing attributes in process `syz.6.5948'.
[  176.716390][T17272] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5951'.
[  176.725461][T17272] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5951'.
[  176.756988][T17277] openvswitch: netlink: Message has 6 unknown bytes.
[  177.260977][T17308] vhci_hcd: invalid port number 0
[  177.308577][T17315] Cannot find add_set index 0 as target
[  177.394475][T17327] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5976'.
[  177.556681][T17345] loop5: detected capacity change from 0 to 512
[  177.578786][T17345] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  177.637797][T17357] SELinux: syz.1.5991 (17357) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  177.661015][T17345] EXT4-fs (loop5): 1 truncate cleaned up
[  177.673631][T17358] loop8: detected capacity change from 0 to 2048
[  177.682601][T17345] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.737855][T17345] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #15: comm syz.5.5985: corrupted xattr block 33: invalid header
[  177.792898][T17345] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #15: comm syz.5.5985: corrupted xattr block 33: invalid header
[  177.814954][T17358]  loop8: unable to read partition table
[  177.820818][T17358] loop8: partition table beyond EOD, truncated
[  177.827010][T17358] loop_reread_partitions: partition scan of loop8 () failed (rc=-5)
[  177.838837][T17345] EXT4-fs warning (device loop5): ext4_evict_inode:279: xattr delete (err -117)
[  177.889776][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.913681][ T9359] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  177.937680][ T9359] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  177.998596][ T3380] lo speed is unknown, defaulting to 1000
[  178.004601][ T3380] syz0: Port: 1 Link DOWN
[  178.009099][ T9033] lo speed is unknown, defaulting to 1000
[  178.101821][T17405] loop3: detected capacity change from 0 to 512
[  178.122352][T17409] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6014'.
[  178.135527][T17405] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  178.226041][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  178.578862][T17434] loop5: detected capacity change from 0 to 512
[  178.623833][T17434] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.751269][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.846755][T17460] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6036'.
[  178.856102][T17460] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6036'.
[  178.871765][T17460] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6036'.
[  179.351218][ T9033] Process accounting resumed
[  179.380633][   T29] kauditd_printk_skb: 320 callbacks suppressed
[  179.380646][   T29] audit: type=1326 audit(179.412:7707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17494 comm="syz.6.6051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  179.410566][   T29] audit: type=1326 audit(179.412:7708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17494 comm="syz.6.6051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  179.444406][T17501] netlink: 'syz.5.6054': attribute type 7 has an invalid length.
[  179.585566][   T29] audit: type=1326 audit(179.462:7709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17494 comm="syz.6.6051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  179.609404][   T29] audit: type=1326 audit(179.462:7710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17494 comm="syz.6.6051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  179.632960][   T29] audit: type=1326 audit(179.462:7711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17494 comm="syz.6.6051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  179.656598][   T29] audit: type=1400 audit(179.492:7712): avc:  denied  { read } for  pid=17498 comm="syz.1.6053" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  179.680341][   T29] audit: type=1400 audit(179.492:7713): avc:  denied  { open } for  pid=17498 comm="syz.1.6053" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  179.704668][   T29] audit: type=1400 audit(179.492:7714): avc:  denied  { ioctl } for  pid=17498 comm="syz.1.6053" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  179.730151][   T29] audit: type=1400 audit(179.552:7715): avc:  denied  { create } for  pid=17504 comm="syz.5.6055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  179.750709][   T29] audit: type=1400 audit(179.562:7716): avc:  denied  { write } for  pid=17504 comm="syz.5.6055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  180.080680][T17541] binfmt_misc: register: failed to install interpreter file ./file0
[  180.113586][T17543] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  180.372679][ T9353] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  180.385997][T17596] loop3: detected capacity change from 0 to 1024
[  180.393701][ T9353] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  180.403957][T17596] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  180.465327][T17603] loop3: detected capacity change from 0 to 164
[  180.494756][T17603] rock: directory entry would overflow storage
[  180.501050][T17603] rock: sig=0x4f50, size=4, remaining=3
[  180.506624][T17603] iso9660: Corrupted directory entry in block 4 of inode 1792
[  180.792816][T17625] loop3: detected capacity change from 0 to 128
[  180.821302][T17625] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  180.869692][T17627] loop8: detected capacity change from 0 to 8192
[  180.877432][T17627] vfat: Unknown parameter '&�#�0�!T�.yՄ��������*���#�'
[  180.889511][ T3304] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  180.937275][T17633] netlink: 'syz.3.6114': attribute type 4 has an invalid length.
[  181.236745][T17669] SELinux: failed to load policy
[  181.252894][T17673] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  181.317063][T17679] loop3: detected capacity change from 0 to 512
[  181.347289][T17679] EXT4-fs (loop3): 1 orphan inode deleted
[  181.360553][   T41] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 1
[  181.374545][T17679] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.445288][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.535602][T17703] __nla_validate_parse: 18 callbacks suppressed
[  181.535617][T17703] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6146'.
[  181.734351][T17730] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  181.807611][T17739] tipc: New replicast peer: 255.255.255.83
[  181.813715][T17739] tipc: Enabled bearer <udp:�>, priority 10
[  181.955523][T17762] SELinux: failed to load policy
[  182.013079][T17780] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  182.021788][T17780] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  182.204536][T17808] loop5: detected capacity change from 0 to 128
[  182.222278][T17808] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  182.247965][T17808] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  182.290537][T17808] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.6190: bg 0: block 496: padding at end of block bitmap is not set
[  182.353703][ T9877] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  182.529494][T17834] netlink: 'wg1': attribute type 3 has an invalid length.
[  182.559560][T17836] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6204'.
[  182.603252][T17842] dvmrp0: entered allmulticast mode
[  182.622704][T17844] loop5: detected capacity change from 0 to 2048
[  182.633538][T17842] dvmrp0: left allmulticast mode
[  182.645362][T17844] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.658071][T17846] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6208'.
[  182.667169][T17846] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6208'.
[  182.676224][T17846] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6208'.
[  182.907703][T17872] xt_hashlimit: max too large, truncated to 1048576
[  182.926111][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.960256][T17876] SELinux: security_context_str_to_sid (aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.) failed with errno=-22
[  183.206368][T17897] loop3: detected capacity change from 0 to 1024
[  183.213530][T17897] EXT4-fs: inline encryption not supported
[  183.219984][T17897] EXT4-fs: Ignoring removed bh option
[  183.231882][T17897] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.248163][T17904] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6232'.
[  183.249359][T17897] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.6230: Allocating blocks 385-513 which overlap fs metadata
[  183.277727][T17897] EXT4-fs (loop3): Remounting filesystem read-only
[  183.293636][T17896] EXT4-fs (loop3): pa ffff888106db7540: logic 16, phys. 129, len 24
[  183.340145][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.368089][T17913] loop9: detected capacity change from 0 to 7
[  183.376288][T17913] buffer_io_error: 2 callbacks suppressed
[  183.376303][T17913] Buffer I/O error on dev loop9, logical block 0, async page read
[  183.392871][T17913] Buffer I/O error on dev loop9, logical block 0, async page read
[  183.400769][T17913]  loop9: unable to read partition table
[  183.407377][T17913] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  183.407377][T17913] 
U�������) failed (rc=-5)
[  183.464550][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.472405][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.480170][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.501790][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.509647][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.517490][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.525274][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.533110][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.540889][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.548661][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.556504][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.564350][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.572098][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.579842][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.661061][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.668845][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.676654][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.683639][T17934] syzkaller0: entered promiscuous mode
[  183.684574][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.690010][T17934] syzkaller0: entered allmulticast mode
[  183.697604][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697634][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697654][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697676][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697734][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697754][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697825][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697844][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697865][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697884][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.697904][ T3381] hid-generic 0000:0000:20000000.000E: unknown main item tag 0x0
[  183.700359][ T3381] hid-generic 0000:0000:20000000.000E: hidraw0: <UNKNOWN> HID v0.01 Device [syz0] on syz1
[  183.860566][T17937] 0�X���: left allmulticast mode
[  183.920222][T17937] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.929167][T17937] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.937809][T17937] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.946415][T17937] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.959708][T17948] lo: entered promiscuous mode
[  183.964788][T17948] lo: entered allmulticast mode
[  184.093122][T17971] sd 0:0:1:0: device reset
[  184.137892][T17983] loop3: detected capacity change from 0 to 512
[  184.164021][T17983] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.190075][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.226710][T17995] netlink: 'syz.5.6273': attribute type 27 has an invalid length.
[  184.287855][T18007] x_tables: unsorted entry at hook 2
[  184.290074][T18005] loop5: detected capacity change from 0 to 4096
[  184.318778][T18005] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #15: comm syz.5.6277: corrupted inode contents
[  184.334825][T18012] netlink: 'syz.3.6280': attribute type 3 has an invalid length.
[  184.360844][T18005] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #15: comm syz.5.6277: mark_inode_dirty error
[  184.375113][T18005] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #15: comm syz.5.6277: corrupted inode contents
[  184.388304][T18005] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #15: comm syz.5.6277: mark_inode_dirty error
[  184.402866][T18005] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #15: comm syz.5.6277: corrupted inode contents
[  184.411654][   T29] kauditd_printk_skb: 212 callbacks suppressed
[  184.411668][   T29] audit: type=1400 audit(184.442:7928): avc:  denied  { lock } for  pid=18004 comm="syz.5.6277" path="/642/file1/file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  184.443577][   T29] audit: type=1400 audit(184.442:7929): avc:  denied  { create } for  pid=18004 comm="syz.5.6277" name=2E02 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  184.478835][T18005] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #15: comm syz.5.6277: mark_inode_dirty error
[  184.492439][T18005] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #15: comm syz.5.6277: corrupted inode contents
[  184.505815][T18005] EXT4-fs error (device loop5): ext4_truncate:4255: inode #15: comm syz.5.6277: mark_inode_dirty error
[  184.527824][T18005] EXT4-fs error (device loop5) in ext4_setattr:5628: Corrupt filesystem
[  184.587878][   T29] audit: type=1400 audit(184.612:7930): avc:  denied  { ioctl } for  pid=18025 comm="syz.6.6284" path="socket:[51845]" dev="sockfs" ino=51845 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  184.629217][   T29] audit: type=1400 audit(184.652:7931): avc:  denied  { write } for  pid=18027 comm="syz.6.6286" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  184.670319][   T29] audit: type=1400 audit(184.692:7932): avc:  denied  { watch } for  pid=18029 comm="syz.6.6287" path="/765" dev="tmpfs" ino=3963 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  184.847052][T18035] loop5: detected capacity change from 0 to 512
[  184.925841][T18035] EXT4-fs (loop5): orphan cleanup on readonly fs
[  184.961176][T18035] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.6285: bad orphan inode 13
[  184.973553][   T29] audit: type=1326 audit(185.002:7933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18042 comm="syz.6.6292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  184.996521][   T29] audit: type=1326 audit(185.002:7934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18042 comm="syz.6.6292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  185.023615][T18035] ext4_test_bit(bit=12, block=18) = 1
[  185.029181][T18035] is_bad_inode(inode)=0
[  185.033529][T18035] NEXT_ORPHAN(inode)=2130706432
[  185.038617][T18035] max_ino=32
[  185.039315][T18046] netlink: 20 bytes leftover after parsing attributes in process `syz.8.6293'.
[  185.041885][T18035] i_nlink=1
[  185.078411][T18046] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  185.092596][   T29] audit: type=1326 audit(185.052:7935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18042 comm="syz.6.6292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  185.115660][   T29] audit: type=1326 audit(185.052:7936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18042 comm="syz.6.6292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  185.138673][   T29] audit: type=1326 audit(185.052:7937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18042 comm="syz.6.6292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc5a2ce969 code=0x7ffc0000
[  185.554471][T18086] netlink: 'syz.6.6310': attribute type 13 has an invalid length.
[  185.562780][T18086] netlink: 24859 bytes leftover after parsing attributes in process `syz.6.6310'.
[  185.909657][T18119] netlink: 64 bytes leftover after parsing attributes in process `syz.6.6326'.
[  185.925570][T18123] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6327'.
[  186.124273][T18139] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.132530][T18139] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.140827][T18139] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.149046][T18139] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  186.178299][T18139] geneve2: entered promiscuous mode
[  186.183620][T18139] geneve2: entered allmulticast mode
[  186.199768][T18145] loop8: detected capacity change from 0 to 128
[  186.208481][T18139] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  186.216941][T18139] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  186.225458][T18139] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  186.233952][T18139] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  186.829716][T18207] ALSA: seq fatal error: cannot create timer (-19)
[  187.098330][T18223] SELinux: failed to load policy
[  187.142418][T18240] rdma_op ffff88813fb7d180 conn xmit_rdma 0000000000000000
[  187.284728][T18269] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  187.305830][T18269] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  187.340788][T18273] __nla_validate_parse: 2 callbacks suppressed
[  187.340826][T18273] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6394'.
[  187.398202][T18281] loop3: detected capacity change from 0 to 512
[  187.422423][T18281] EXT4-fs mount: 6 callbacks suppressed
[  187.422438][T18281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.458321][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.578023][T18311] loop5: detected capacity change from 0 to 2048
[  187.592229][T18311] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.622603][ T9877] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.691518][T18327] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6417'.
[  187.701400][T18327] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6417'.
[  187.760474][   T31] unregister_netdevice: waiting for batadv_slave_0 to become free. Usage count = 2
[  187.770235][   T31] ref_tracker: batadv_slave_0@ffff888117367550 has 1/1 users at
[  187.770235][   T31]      batadv_hard_if_event+0x688/0xef0
[  187.770235][   T31]      raw_notifier_call_chain+0x6c/0x1b0
[  187.770235][   T31]      call_netdevice_notifiers_info+0xae/0x100
[  187.770235][   T31]      register_netdevice+0xd48/0xf10
[  187.770235][   T31]      veth_newlink+0x49b/0x770
[  187.770235][   T31]      rtnl_newlink_create+0x1bf/0x630
[  187.770235][   T31]      rtnl_newlink+0xf29/0x12d0
[  187.770235][   T31]      rtnetlink_rcv_msg+0x5fb/0x6d0
[  187.770235][   T31]      netlink_rcv_skb+0x120/0x220
[  187.770235][   T31]      rtnetlink_rcv+0x1c/0x30
[  187.770235][   T31]      netlink_unicast+0x59e/0x670
[  187.770235][   T31]      netlink_sendmsg+0x58b/0x6b0
[  187.770235][   T31]      __sock_sendmsg+0x142/0x180
[  187.770235][   T31]      __sys_sendto+0x268/0x330
[  187.770235][   T31]      __x64_sys_sendto+0x76/0x90
[  187.770235][   T31]      x64_sys_call+0x2eb6/0x2fb0
[  187.770235][   T31] 
[  188.033765][T18358] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  188.117519][T18372] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6439'.
[  188.219414][T18387] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6447'.
[  188.238127][T18392] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=18392 comm=syz.3.6449
[  188.521085][T18434] wireguard0: entered promiscuous mode
[  188.526604][T18434] wireguard0: entered allmulticast mode
[  188.674310][T18453] rdma_op ffff88812a170980 conn xmit_rdma 0000000000000000
[  188.748022][T18457] loop5: detected capacity change from 0 to 128
[  188.768581][T18457] EXT4-fs: Ignoring removed nobh option
[  188.783556][T18457] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  188.819739][ T9877] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  188.910743][T18471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  188.919932][T18471] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  188.956047][T18484] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  188.956047][T18484]    program syz.8.6489 not setting count and/or reply_len properly
[  189.014360][T18488] loop8: detected capacity change from 0 to 1024
[  189.043332][T18488] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  189.072400][T16791] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  189.374829][T18510] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  189.468040][T18522] netlink: 'syz.8.6504': attribute type 1 has an invalid length.
[  189.489157][T18524] netlink: 'syz.5.6505': attribute type 10 has an invalid length.
[  189.491250][T18526] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6506'.
[  189.498260][T18524] team0: Device hsr_slave_0 failed to register rx_handler
[  189.525646][T18526] bond1: entered promiscuous mode
[  189.532627][T18526] 8021q: adding VLAN 0 to HW filter on device bond1
[  189.566181][T18529] loop3: detected capacity change from 0 to 512
[  189.593985][T18529] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.609188][   T29] kauditd_printk_skb: 217 callbacks suppressed
[  189.609211][   T29] audit: type=1400 audit(189.642:8155): avc:  denied  { create } for  pid=18528 comm="syz.3.6507" name="file4" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[  189.610311][T18529] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.6507: bg 0: block 18: invalid block bitmap
[  189.666252][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.738285][   T29] audit: type=1400 audit(189.762:8156): avc:  denied  { watch watch_reads } for  pid=18546 comm="syz.5.6514" path="/694/file1" dev="tmpfs" ino=3606 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  189.806356][T18555] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  189.812802][T18558] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6519'.
[  189.822093][T18551] wireguard0: entered promiscuous mode
[  189.829388][T18551] wireguard0: entered allmulticast mode
[  189.849528][T18558] bond2: entered promiscuous mode
[  189.854911][T18558] 8021q: adding VLAN 0 to HW filter on device bond2
[  189.889406][T18563] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  189.889406][T18563]    program syz.3.6520 not setting count and/or reply_len properly
[  189.925704][   T29] audit: type=1400 audit(189.952:8157): avc:  denied  { create } for  pid=18564 comm="syz.3.6521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  189.964233][T18568] loop3: detected capacity change from 0 to 1024
[  189.993835][T18568] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  190.010290][   T29] audit: type=1326 audit(190.032:8158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18567 comm="syz.3.6522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  190.033802][   T29] audit: type=1326 audit(190.032:8159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18567 comm="syz.3.6522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  190.060179][   T29] audit: type=1326 audit(190.082:8160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18567 comm="syz.3.6522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  190.083672][   T29] audit: type=1326 audit(190.082:8161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18567 comm="syz.3.6522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  190.107565][   T29] audit: type=1326 audit(190.082:8162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18567 comm="syz.3.6522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  190.131108][   T29] audit: type=1326 audit(190.082:8163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18567 comm="syz.3.6522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  190.154872][   T29] audit: type=1326 audit(190.082:8164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18567 comm="syz.3.6522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70878ee969 code=0x7ffc0000
[  190.203387][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  190.981692][T18642] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  191.090796][T18653] dvmrp0: entered allmulticast mode
[  191.110262][T18653] dvmrp0: left allmulticast mode
[  191.329702][T18695] loop3: detected capacity change from 0 to 512
[  191.368986][T18695] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  191.386070][T18695] EXT4-fs (loop3): mount failed
[  191.444501][T18711] random: crng reseeded on system resumption
[  191.517482][T18721] loop5: detected capacity change from 0 to 128
[  191.715435][T18727] loop8: detected capacity change from 0 to 2048
[  191.743714][T18727] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.036677][T16791] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.411767][T18747] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  192.535946][T18756] loop3: detected capacity change from 0 to 128
[  192.573681][T18756] FAT-fs (loop3): Directory bread(block 162) failed
[  192.589469][T18756] FAT-fs (loop3): Directory bread(block 163) failed
[  192.611849][T18762] loop5: detected capacity change from 0 to 256
[  192.618280][T18756] FAT-fs (loop3): Directory bread(block 164) failed
[  192.633047][T18756] FAT-fs (loop3): Directory bread(block 165) failed
[  192.653175][T18756] FAT-fs (loop3): Directory bread(block 166) failed
[  192.677503][T18756] FAT-fs (loop3): Directory bread(block 167) failed
[  192.688759][T18756] FAT-fs (loop3): Directory bread(block 168) failed
[  192.698511][ T9033] lo speed is unknown, defaulting to 1000
[  192.704883][T18756] FAT-fs (loop3): Directory bread(block 169) failed
[  192.731515][T18756] FAT-fs (loop3): Directory bread(block 162) failed
[  192.741894][T18756] FAT-fs (loop3): Directory bread(block 163) failed
[  192.742872][T18774] netlink: 'syz.8.6616': attribute type 4 has an invalid length.
[  192.761642][T18756] syz.3.6607: attempt to access beyond end of device
[  192.761642][T18756] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[  192.786010][T18756] syz.3.6607: attempt to access beyond end of device
[  192.786010][T18756] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[  192.828978][T18779] syz.3.6607: attempt to access beyond end of device
[  192.828978][T18779] loop3: rw=3, sector=234, nr_sectors = 6 limit=128
[  192.860430][T18779] syz.3.6607: attempt to access beyond end of device
[  192.860430][T18779] loop3: rw=2051, sector=240, nr_sectors = 2 limit=128
[  192.969468][T18790] loop3: detected capacity change from 0 to 128
[  192.980690][T18792] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  193.141292][T18803] loop5: detected capacity change from 0 to 164
[  193.163102][T18803] rock: directory entry would overflow storage
[  193.169350][T18803] rock: sig=0x4f50, size=4, remaining=3
[  193.174943][T18803] iso9660: Corrupted directory entry in block 4 of inode 1792
[  193.258101][T18813] netlink: 'syz.5.6629': attribute type 4 has an invalid length.
[  193.435989][T18819] lo: left promiscuous mode
[  193.440734][T18819] lo: left allmulticast mode
[  193.629458][   T41] ==================================================================
[  193.637579][   T41] BUG: KCSAN: data-race in copy_page_from_iter_atomic / copy_page_from_iter_atomic
[  193.646889][   T41] 
[  193.649213][   T41] write to 0xffff888134105541 of 2 bytes by task 18790 on cpu 1:
[  193.656928][   T41]  copy_page_from_iter_atomic+0x77f/0xff0
[  193.662657][   T41]  generic_perform_write+0x2c2/0x490
[  193.667953][   T41]  __generic_file_write_iter+0x9e/0x120
[  193.673506][   T41]  generic_file_write_iter+0x8d/0x2f0
[  193.678893][   T41]  iter_file_splice_write+0x5ef/0x970
[  193.684271][   T41]  direct_splice_actor+0x153/0x2a0
[  193.689383][   T41]  splice_direct_to_actor+0x30f/0x680
[  193.694755][   T41]  do_splice_direct+0xda/0x150
[  193.699522][   T41]  do_sendfile+0x380/0x640
[  193.703941][   T41]  __x64_sys_sendfile64+0x105/0x150
[  193.709140][   T41]  x64_sys_call+0xb39/0x2fb0
[  193.713741][   T41]  do_syscall_64+0xd0/0x1a0
[  193.718238][   T41]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.724126][   T41] 
[  193.726444][   T41] read to 0xffff888134105400 of 512 bytes by task 41 on cpu 0:
[  193.733981][   T41]  copy_page_from_iter_atomic+0x77f/0xff0
[  193.739704][   T41]  generic_perform_write+0x2c2/0x490
[  193.744998][   T41]  shmem_file_write_iter+0xc5/0xf0
[  193.750120][   T41]  lo_rw_aio+0x5f7/0x7c0
[  193.754362][   T41]  loop_process_work+0x52d/0xa60
[  193.759299][   T41]  loop_workfn+0x31/0x40
[  193.763542][   T41]  process_scheduled_works+0x4cb/0x9d0
[  193.769084][   T41]  worker_thread+0x582/0x770
[  193.773687][   T41]  kthread+0x486/0x510
[  193.777760][   T41]  ret_from_fork+0x4b/0x60
[  193.782181][   T41]  ret_from_fork_asm+0x1a/0x30
[  193.786934][   T41] 
[  193.789245][   T41] Reported by Kernel Concurrency Sanitizer on:
[  193.795385][   T41] CPU: 0 UID: 0 PID: 41 Comm: kworker/u8:2 Tainted: G        W           6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(voluntary) 
[  193.809353][   T41] Tainted: [W]=WARN
[  193.813141][   T41] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  193.823189][   T41] Workqueue: loop3 loop_workfn
[  193.827962][   T41] ==================================================================
[  195.526325][   T29] kauditd_printk_skb: 148 callbacks suppressed
[  195.526339][   T29] audit: type=1400 audit(195.552:8312): avc:  denied  { read } for  pid=2987 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  195.555347][   T29] audit: type=1400 audit(195.552:8313): avc:  denied  { search } for  pid=2987 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  195.576351][   T29] audit: type=1400 audit(195.552:8314): avc:  denied  { append } for  pid=2987 comm="syslogd" name="messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  195.598051][   T29] audit: type=1400 audit(195.552:8315): avc:  denied  { open } for  pid=2987 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  195.619958][   T29] audit: type=1400 audit(195.552:8316): avc:  denied  { getattr } for  pid=2987 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1