last executing test programs:

4m44.612613316s ago: executing program 32 (id=828):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x40f00, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
io_setup(0x5, &(0x7f00000000c0)=<r2=>0x0)
io_destroy(r2)

4m40.331080371s ago: executing program 33 (id=953):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000240)={0x19, 0x3d00, 0x1575})

4m31.909999697s ago: executing program 34 (id=1191):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$tun(r0, &(0x7f0000000100)={@void, @val={0x2}, @eth={@multicast, @local, @val={@val, {0x4305}}}}, 0xfebd)
write$binfmt_script(r1, &(0x7f0000000140), 0xfcb8)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})

4m2.151436585s ago: executing program 35 (id=2351):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x1000410, &(0x7f0000000100), 0x6, 0x516, &(0x7f0000000500)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x4a37e, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000080)=ANY=[], 0x841, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mknod$loop(&(0x7f00000001c0)='./file2\x00', 0x2000, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

3m0.895255077s ago: executing program 1 (id=4799):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000f8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'wg2\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0x3}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}, @TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40010}, 0x0)

3m0.868913108s ago: executing program 1 (id=4800):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x1, 0x56d, 0x2}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r1}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r1, 0x0, 0x11000000}, 0x38)

3m0.471411383s ago: executing program 1 (id=4809):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x7, 0x4, 0x8, 0xd9}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)

3m0.393939765s ago: executing program 1 (id=4813):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

3m0.330803466s ago: executing program 1 (id=4816):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x87)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r2 = socket$nl_route(0x10, 0x3, 0x0)
fadvise64(r2, 0x9, 0x7, 0x2)

2m59.852623103s ago: executing program 1 (id=4835):
perf_event_open(&(0x7f0000000e00)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0xa, 0x987d0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0x8, 0xc}, 0x4c58, 0x5, 0x0, 0x1, 0x6, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x100000001)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
close(r0)

2m59.802202434s ago: executing program 36 (id=4835):
perf_event_open(&(0x7f0000000e00)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0xa, 0x987d0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0x8, 0xc}, 0x4c58, 0x5, 0x0, 0x1, 0x6, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x100000001)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
close(r0)

2m25.381292942s ago: executing program 4 (id=6417):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000)={0xe000202b})
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r2, &(0x7f0000000040)={0x80000000})

2m25.358680262s ago: executing program 4 (id=6419):
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000100)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@measure}, {@smackfsfloor}, {@appraise_type}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")

2m25.239159354s ago: executing program 4 (id=6424):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r3, 0x0, 0x7fffffffffffffff}, 0x18)
syz_clone(0xfdba2180, 0x0, 0x0, 0x0, 0x0, 0x0)

2m24.953862568s ago: executing program 4 (id=6431):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000240)='./file0/../file0/../file0/../file0\x00', &(0x7f0000000040)='./file0\x00')

2m24.903738379s ago: executing program 4 (id=6433):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010000100"/20, @ANYRES32=r3, @ANYBLOB="000024000000000024001200140001006272696467655f736c617665800000000c000500080005"], 0x3}}, 0x0)
splice(r0, 0x0, r2, 0x0, 0x10d00, 0x0)

2m24.631755203s ago: executing program 4 (id=6440):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r2, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0)

2m24.614742844s ago: executing program 37 (id=6440):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r2, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0)

1m3.895461448s ago: executing program 9 (id=9606):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_clone3(&(0x7f0000000900)={0x20004100, 0x0, 0x0, 0x0, {0xd}, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[0x0], 0x1}, 0x58)

1m3.812836409s ago: executing program 9 (id=9597):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r0}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

1m3.725830251s ago: executing program 9 (id=9600):
setfsgid(0xee00)
r0 = syz_clone(0x1000000, 0x0, 0xfffffd11, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r2 = syz_open_procfs(r0, &(0x7f0000000040)='stat\x00')
pread64(r2, &(0x7f0000000140)=""/15, 0xf, 0x4)

1m3.631814532s ago: executing program 9 (id=9601):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000e40)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M")
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x18808, 0x0, 0xf9, 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

1m3.456268625s ago: executing program 9 (id=9607):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0x5}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x4000)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000b00)=@newtfilter={0x40, 0x2c, 0xd27, 0x30bd29, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0xd, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x5, 0x9}}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x24000014}, 0x200c4004)

1m2.489467939s ago: executing program 9 (id=9635):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
sendmsg$TIPC_CMD_GET_NODES(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x1c8, 0x0, 0x1acc02, 0x148, 0x0, 0x10, 0x3b8, 0x2a8, 0x2a8, 0x3b8, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x40000, 0x70, 0x98, 0x0, {0x0, 0x5803}}, @common=@inet=@SET1={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x228)

1m2.489296579s ago: executing program 38 (id=9635):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
sendmsg$TIPC_CMD_GET_NODES(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x1c8, 0x0, 0x1acc02, 0x148, 0x0, 0x10, 0x3b8, 0x2a8, 0x2a8, 0x3b8, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x40000, 0x70, 0x98, 0x0, {0x0, 0x5803}}, @common=@inet=@SET1={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x228)

25.28214615s ago: executing program 2 (id=11020):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x18, &(0x7f0000000100)=0xfefffff9, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x9, 0x7f}, @window={0x3, 0x9, 0x2}, @mss={0x2, 0x400}, @mss={0x2, 0xcb2}, @mss={0x2, 0x3}, @timestamp, @sack_perm], 0x8)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)

25.25799634s ago: executing program 2 (id=11022):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000540)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r3, {0x10, 0xffe0}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x18, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0xfffffffffffffebe, 0x4, 0xae}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x64}}, 0x40040)

25.214038251s ago: executing program 2 (id=11025):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x1000c16, &(0x7f0000000500), 0xff, 0x260, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x174)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000c00)={0x8, {"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", 0x1000}}, 0x1006)
pwrite64(r1, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)

25.095784632s ago: executing program 2 (id=11028):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
move_mount(r0, &(0x7f0000000100)='./file0/file0\x00', r0, &(0x7f00000001c0)='./file0/file0\x00', 0x22)

25.062707053s ago: executing program 2 (id=11029):
openat$ppp(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)

24.845937556s ago: executing program 2 (id=11038):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x1104, &(0x7f0000000700)={0x0, 0x0, 0x400, 0x10, 0x21e}, &(0x7f00000003c0)=<r3=>0x0, &(0x7f0000000300)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r2, 0x47fa, 0x0, 0x0, 0x0, 0x0)

24.845709066s ago: executing program 39 (id=11038):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x1104, &(0x7f0000000700)={0x0, 0x0, 0x400, 0x10, 0x21e}, &(0x7f00000003c0)=<r3=>0x0, &(0x7f0000000300)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r2, 0x47fa, 0x0, 0x0, 0x0, 0x0)

7.625842455s ago: executing program 0 (id=11648):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat(0xffffffffffffff9c, 0x0, 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0902000000000000000001000000050002"], 0x38}}, 0x0)

7.625465415s ago: executing program 0 (id=11649):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[], 0x53)
write$binfmt_elf64(r2, 0x0, 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno='])
syz_mount_image$ext4(&(0x7f0000000900)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x3000010, &(0x7f0000000300)={[{@data_err_ignore}, {@resuid}]}, 0x1, 0x524, &(0x7f00000010c0)="$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")

6.753956718s ago: executing program 0 (id=11666):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18020000ffffffff00000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001600)=ANY=[@ANYBLOB="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", @ANYRESHEX, @ANYRESHEX], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5c, 0x0, 0xffffffffffffffff, 0xffffffffffffff7f}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

6.64737972s ago: executing program 0 (id=11669):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x3000046, &(0x7f0000000280)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@nobh}, {@errors_remount}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

6.289999075s ago: executing program 0 (id=11672):
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1, 0x0, 0xf}, 0x18)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'wg0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000180)="0b03feff4f00021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

5.243838461s ago: executing program 0 (id=11694):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f00000006c0)='%-010d \x00'}, 0x20)
setgroups(0x0, 0x0)

5.243615131s ago: executing program 40 (id=11694):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f00000006c0)='%-010d \x00'}, 0x20)
setgroups(0x0, 0x0)

1.558915157s ago: executing program 6 (id=11763):
ioperm(0x1, 0x9, 0xfffffffffffffff8)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = mq_open(&(0x7f0000000040)='!se\xf7ih,\x17i\xacP\xe6lNnuxselinux\x00', 0x6e93ebbbcc0884f2, 0x2, &(0x7f0000000300)={0x0, 0x1, 0x6})
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)

1.083143204s ago: executing program 5 (id=11778):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000000))
fcntl$lock(r2, 0x25, &(0x7f00000000c0)={0x2, 0x0, 0x4004, 0x409})

1.049861684s ago: executing program 5 (id=11779):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffff9]}, 0x0, 0x8)
r1 = gettid()
r2 = gettid()
tkill(r1, 0x12)
tkill(r2, 0x14)

1.026903405s ago: executing program 5 (id=11780):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x18)
close(0x3)

989.262465ms ago: executing program 5 (id=11781):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000540)='kfree\x00', r0}, 0x18)
r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x20)
symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f0000000140)='./file0\x00')
openat(r2, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664fa4)

965.552095ms ago: executing program 5 (id=11783):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000680)='sched_switch\x00', r2, 0x0, 0x2000000000010000}, 0x18)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
move_pages(0x0, 0x2064, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001180), &(0x7f0000000000), 0x0)

746.162829ms ago: executing program 6 (id=11790):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000500)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0xfff2}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x14, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5}]}, @TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x800)

533.233852ms ago: executing program 5 (id=11797):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = gettid()
socket$nl_route(0x10, 0x3, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)

322.112145ms ago: executing program 6 (id=11804):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0xfffffffc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2, 0x4}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

273.427486ms ago: executing program 7 (id=11806):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
pivot_root(&(0x7f0000000340)='.\x00', &(0x7f0000000180)='./file0/../file0/../file0\x00')

251.923476ms ago: executing program 7 (id=11807):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xdec7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x80000}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

201.812807ms ago: executing program 3 (id=11809):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0xa)
fchdir(r1)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x1ff, &(0x7f0000001540)=<r3=>0x0)
io_submit(r3, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x2, 0x1, 0x0, r2, &(0x7f0000000000), 0x4000}])

197.584327ms ago: executing program 8 (id=11810):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="b70000008100003bbfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000071105400000000001d400500000000004704000001ed00000f030000000000001d440000000000006b0a00fe000000007313000000000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff31a8fd3c0fd8b7ff831028e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646c0200000000000000020000e35208b0bb0d2cd829e654400e2438ec649dc76128610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda82fc9c4d7ecc7a803bf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714f62ba7a54f0c33d39000d0bfed3a6a59ff616236fd8f2477184bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06fa2e04cfe0649226c697d9e8eaade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00023ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a83469620c6e74e1f46132559c4f8700a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88f15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a920099c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40fc5d2f55ff07c53147de202ce517b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661061173f359e9052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff26b61aac8aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3ba18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e26534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ad1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336dfaa6d5d164301190bc2d4c04087729033342045804a28082abc3b4762302a271722fb515f31e0dd115a292f1e68481a62c49d15ea5460a29c60b1058fb7aa9bf4ee3cbe11b03711a15d730646b72d074dab1e8c429339f3460d324c17a4a8bfc7d7eab45bef00664d6dc82300000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000080)=r0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
close(r1)

183.377457ms ago: executing program 7 (id=11811):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
close(0x3)
socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000080)={r2, 0x81}, &(0x7f00000000c0)=0x8)

170.054867ms ago: executing program 8 (id=11812):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r0, &(0x7f0000000200)=ANY=[], 0xff2e)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001440)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

150.466388ms ago: executing program 6 (id=11813):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r1}, 0x10)
r2 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000180)="900000001c001f4d154a817393278bff0a80a578020000000404840014000100ac1414bb0542d6401051a2d708f3fac8da1a297e0099c5ac0000c5b068d0bf46d3234565a0016466fcb78dcaaf6c3efed495a46215be0000766436c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x20000000, 0x0, 0x0)

148.024958ms ago: executing program 8 (id=11814):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000040)=@rnullb, 0x0, &(0x7f0000000180)='./file0\x00')

147.675158ms ago: executing program 7 (id=11815):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='kfree\x00', r0, 0x0, 0x7}, 0x18)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000001c0)='cdg\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000004c0)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000340)='dctcp\x00', 0x6)

129.152178ms ago: executing program 8 (id=11816):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00'}, 0x10)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddf8)
write$binfmt_elf32(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="48c5"], 0x69)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1}}, 0x40)

111.640608ms ago: executing program 7 (id=11817):
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
connect$netlink(r0, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f00000003c0)={&(0x7f0000002440)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8080}, 0x0)

111.151708ms ago: executing program 6 (id=11818):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x959, 0x4, 0x7, 0x6286, 0x3, 0x3, 0x9, 0x9, 0xd}}}}]}, 0x58}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x66, 0x903, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0xe, 0x7}, {0x1, 0xfff1}, {0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

95.314329ms ago: executing program 3 (id=11819):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc}, 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="010000000b000000050010000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000002"], 0x48)

88.647249ms ago: executing program 7 (id=11820):
syz_io_uring_setup(0xe46, &(0x7f0000000380)={0x0, 0x5f39, 0x0, 0x4001, 0x2b7}, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r0 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
close(r0)

66.731589ms ago: executing program 8 (id=11821):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)

59.425419ms ago: executing program 3 (id=11822):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000100)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0xfd, 0xc8e}, {0x16}]}, 0x10)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000ec0)=[{{&(0x7f0000000080)={0x2, 0x4e25, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r1, &(0x7f0000000c80)="e8", 0x6200, 0x0, 0x0, 0x0)

7.98319ms ago: executing program 8 (id=11823):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000540), 0x84)
perf_event_open(&(0x7f00000004c0)={0x8, 0x80, 0x0, 0xf, 0x0, 0x0, 0x82, 0x200000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x9}, 0x18204, 0x0, 0x3, 0x0, 0x0, 0x5338c7af, 0x0, 0x0, 0x1, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)

7.35726ms ago: executing program 3 (id=11824):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r2, &(0x7f0000000000)=0xfe8e, 0x12)

6.92508ms ago: executing program 3 (id=11825):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001180)={0x34, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0)

6.46919ms ago: executing program 3 (id=11826):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYRESHEX], 0xd4}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0x7, &(0x7f0000000100)=0x4000200, 0x4)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x300, 0xfc}, 0x1c)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

0s ago: executing program 6 (id=11827):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x20000023896)
close(r1)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)

kernel console output (not intermixed with test programs):

es in process `gtp'.
[  281.695772][T27100] netlink: 8 bytes leftover after parsing attributes in process `gtp'.
[  281.852278][T27109] lo speed is unknown, defaulting to 1000
[  282.008546][T27124] 9p: Unknown access argument ‚: -22
[  282.492370][T27166] netlink: 'syz.3.9965': attribute type 1 has an invalid length.
[  282.548395][T27166] netlink: 'syz.3.9965': attribute type 1 has an invalid length.
[  282.645384][T27179] lo speed is unknown, defaulting to 1000
[  282.748508][T27197] loop3: detected capacity change from 0 to 2048
[  282.779852][T27197] EXT4-fs (loop3): failed to initialize system zone (-117)
[  282.791044][T27197] EXT4-fs (loop3): mount failed
[  282.893133][T27219] netlink: 'syz.2.9986': attribute type 1 has an invalid length.
[  282.901533][T27219] netlink: 224 bytes leftover after parsing attributes in process `syz.2.9986'.
[  282.953072][T27225] netlink: 132 bytes leftover after parsing attributes in process `syz.3.9989'.
[  283.233303][T27255] SELinux: ebitmap: truncated map
[  283.250378][T27255] SELinux: failed to load policy
[  283.355009][T27279] netlink: 16 bytes leftover after parsing attributes in process `syz.5.10014'.
[  283.606375][T27316] Â: renamed from pim6reg1
[  283.672610][T27319] netlink: 532 bytes leftover after parsing attributes in process `syz.2.10029'.
[  283.717580][T27319] lo speed is unknown, defaulting to 1000
[  283.978215][T27324] sctp: [Deprecated]: syz.2.10031 (pid 27324) Use of struct sctp_assoc_value in delayed_ack socket option.
[  283.978215][T27324] Use struct sctp_sack_info instead
[  284.032194][T27328] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10033'.
[  284.288512][T27355] lo speed is unknown, defaulting to 1000
[  284.788125][T27387] netlink: 'syz.3.10059': attribute type 3 has an invalid length.
[  284.865069][T27395] ALSA: seq fatal error: cannot create timer (-19)
[  284.886993][T27398] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=27398 comm=syz.3.10065
[  285.363340][T27444] netlink: 8 bytes leftover after parsing attributes in process `syz.8.10085'.
[  285.529641][   T29] kauditd_printk_skb: 127 callbacks suppressed
[  285.529657][   T29] audit: type=1400 audit(285.514:9739): avc:  denied  { mounton } for  pid=27474 comm="syz.2.10098" path="/108/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1
[  285.704385][T27485] loop3: detected capacity change from 0 to 512
[  285.749518][T27496] netlink: 96 bytes leftover after parsing attributes in process `syz.8.10107'.
[  285.780799][T27485] EXT4-fs (loop3): 1 orphan inode deleted
[  285.818514][T27485] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  285.862683][   T29] audit: type=1326 audit(285.844:9740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  285.886443][   T29] audit: type=1326 audit(285.844:9741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  285.928824][   T29] audit: type=1326 audit(285.844:9742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  285.952449][   T29] audit: type=1326 audit(285.844:9743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  285.975458][   T29] audit: type=1326 audit(285.844:9744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  285.998584][   T29] audit: type=1326 audit(285.844:9745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  286.022320][   T29] audit: type=1326 audit(285.844:9746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  286.045424][   T29] audit: type=1326 audit(285.854:9747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  286.070763][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.086815][   T29] audit: type=1326 audit(285.944:9748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27510 comm="syz.0.10113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb77216e929 code=0x7ffc0000
[  286.484519][T27544] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=27544 comm=syz.2.10128
[  286.661214][T27569] __nla_validate_parse: 1 callbacks suppressed
[  286.661229][T27569] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10141'.
[  286.681666][T27573] openvswitch: netlink: Message has 6 unknown bytes.
[  286.691827][T27571] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10140'.
[  286.702332][T27571] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10140'.
[  286.711408][T27571] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10140'.
[  286.720602][T27571] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10140'.
[  286.731157][T27571] netlink: 'syz.3.10140': attribute type 6 has an invalid length.
[  287.145270][T27618] netlink: 24 bytes leftover after parsing attributes in process `syz.5.10163'.
[  287.264708][T27632] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10172'.
[  287.274561][T27632] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10172'.
[  287.284431][T27632] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10172'.
[  287.330888][T27632] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10172'.
[  288.507370][T27718] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  288.531952][T27718] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  288.577992][T27718] bond0 (unregistering): Released all slaves
[  288.663255][T27740] blktrace: Concurrent blktraces are not allowed on loop10
[  288.752180][T27746] loop3: detected capacity change from 0 to 2048
[  288.762804][T27746] EXT4-fs: Ignoring removed mblk_io_submit option
[  288.804854][T27746] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  288.876814][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.103075][T27770] lo speed is unknown, defaulting to 1000
[  289.400777][T27785] netlink: 'syz.2.10235': attribute type 2 has an invalid length.
[  289.711481][T27817] ALSA: seq fatal error: cannot create timer (-19)
[  290.121358][T27852] loop3: detected capacity change from 0 to 128
[  290.138527][T27855] netlink: 'syz.8.10266': attribute type 1 has an invalid length.
[  290.150622][T27852] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  290.275216][T18950] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  290.356253][T27863] loop3: detected capacity change from 0 to 512
[  290.370555][T27863] EXT4-fs: dax option not supported
[  290.395003][T27863] loop3: detected capacity change from 0 to 1024
[  290.413930][T27863] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.462079][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.479436][T27871] netlink: 'syz.5.10283': attribute type 3 has an invalid length.
[  290.581456][T27881] erspan0: entered promiscuous mode
[  290.588070][T27881] macvtap1: entered promiscuous mode
[  290.593679][T27881] macvtap1: entered allmulticast mode
[  290.599874][T27881] erspan0: entered allmulticast mode
[  290.688075][   T29] kauditd_printk_skb: 194 callbacks suppressed
[  290.688121][   T29] audit: type=1400 audit(290.664:9943): avc:  denied  { bind } for  pid=27887 comm="syz.3.10280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  290.753169][   T29] audit: type=1400 audit(290.704:9944): avc:  denied  { setopt } for  pid=27887 comm="syz.3.10280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  290.781150][   T29] audit: type=1326 audit(290.764:9945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27889 comm="syz.2.10281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c67dbe929 code=0x7ffc0000
[  290.804896][   T29] audit: type=1326 audit(290.764:9946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27889 comm="syz.2.10281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c67dbe929 code=0x7ffc0000
[  290.840773][   T29] audit: type=1326 audit(290.814:9947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27889 comm="syz.2.10281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3c67dbe929 code=0x7ffc0000
[  290.865009][   T29] audit: type=1400 audit(290.814:9948): avc:  denied  { read } for  pid=27889 comm="syz.2.10281" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  290.887395][   T29] audit: type=1400 audit(290.814:9949): avc:  denied  { open } for  pid=27889 comm="syz.2.10281" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  290.911438][   T29] audit: type=1326 audit(290.814:9950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27889 comm="syz.2.10281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c67dbe929 code=0x7ffc0000
[  290.934426][   T29] audit: type=1326 audit(290.814:9951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27889 comm="syz.2.10281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c67dbe929 code=0x7ffc0000
[  290.958838][   T29] audit: type=1326 audit(290.814:9952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27889 comm="syz.2.10281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3c67dbe929 code=0x7ffc0000
[  291.143686][T27913] loop3: detected capacity change from 0 to 256
[  291.161580][T27913] FAT-fs (loop3): bogus number of FAT sectors
[  291.167768][T27913] FAT-fs (loop3): Can't find a valid FAT filesystem
[  291.245717][T27924] loop0: detected capacity change from 0 to 512
[  291.284156][T27924] EXT4-fs (loop0): 1 orphan inode deleted
[  291.291040][T27924] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.309445][T14736] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:65: Failed to release dquot type 1
[  291.361770][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.475423][T27947] loop0: detected capacity change from 0 to 512
[  291.488211][T27944] loop3: detected capacity change from 0 to 512
[  291.527963][T27944] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.541835][T27947] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.596057][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.627093][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.753686][T27983] __nla_validate_parse: 15 callbacks suppressed
[  291.753701][T27983] netlink: 16 bytes leftover after parsing attributes in process `syz.2.10322'.
[  291.876826][T27996] loop3: detected capacity change from 0 to 512
[  291.891778][T27994] netlink: 3672 bytes leftover after parsing attributes in process `syz.0.10338'.
[  291.930758][T27996] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.027227][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.080199][T28015] netlink: 96 bytes leftover after parsing attributes in process `syz.2.10336'.
[  292.186465][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.193980][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.201415][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.209748][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.217304][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.219001][T28032] netlink: 24 bytes leftover after parsing attributes in process `syz.3.10344'.
[  292.224904][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.241890][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.249352][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.256754][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.264245][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.272164][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.279638][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.287141][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.294537][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.302580][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.310000][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.317731][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.325167][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.333410][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.340864][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.348538][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.356060][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.364189][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.371623][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.379081][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.386490][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.394619][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.402052][T11453] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  292.416912][T28041] netlink: 3672 bytes leftover after parsing attributes in process `syz.2.10345'.
[  292.430062][T11453] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[  292.444064][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.452315][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.487465][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.494923][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.503065][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.511168][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.518568][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.526050][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.534135][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.542181][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.549618][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.557015][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.566817][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.574928][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.582436][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.590539][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.598066][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.606097][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.613632][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.621922][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.630193][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.637738][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.645223][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.653322][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.661454][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.668997][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.676447][T14299] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  292.692854][T14299] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  292.706989][T28057] netlink: 68 bytes leftover after parsing attributes in process `syz.8.10355'.
[  292.762426][T28061] netlink: 44 bytes leftover after parsing attributes in process `syz.3.10357'.
[  292.897251][T28083] policy can only be matched on NF_INET_PRE_ROUTING
[  292.897263][T28083] unable to load match
[  292.930373][T28090] loop3: detected capacity change from 0 to 512
[  292.950579][T28090] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  292.977261][T28090] EXT4-fs error (device loop3): xattr_find_entry:333: inode #15: comm syz.3.10369: corrupted xattr entries
[  292.995671][T28090] EXT4-fs (loop3): Remounting filesystem read-only
[  293.012746][T28090] EXT4-fs (loop3): 1 truncate cleaned up
[  293.038727][T28090] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.085621][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.536265][T28149] loop3: detected capacity change from 0 to 2048
[  293.562376][T28149] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  293.762980][T28149] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  293.839008][T28149] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  293.851585][T28149] EXT4-fs (loop3): This should not happen!! Data will be lost
[  293.851585][T28149] 
[  293.861828][T28149] EXT4-fs (loop3): Total free blocks count 0
[  293.867813][T28149] EXT4-fs (loop3): Free/Dirty block details
[  293.873783][T28149] EXT4-fs (loop3): free_blocks=2415919104
[  293.879562][T28149] EXT4-fs (loop3): dirty_blocks=2224
[  293.884963][T28149] EXT4-fs (loop3): Block reservation details
[  293.891598][T28149] EXT4-fs (loop3): i_reserved_data_blocks=139
[  294.138931][T14736] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 852 with max blocks 1358 with error 28
[  294.192255][T28196] netlink: 24 bytes leftover after parsing attributes in process `syz.2.10412'.
[  294.383625][T28212] wireguard1: entered promiscuous mode
[  294.389161][T28212] wireguard1: entered allmulticast mode
[  294.427523][T28216] loop3: detected capacity change from 0 to 512
[  294.476893][T28218] loop0: detected capacity change from 0 to 2048
[  294.497905][T28216] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  294.515175][T28218] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  294.562541][T28216] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.10419: invalid indirect mapped block 2683928664 (level 1)
[  294.610990][T28218] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  294.649291][T28216] EXT4-fs (loop3): Remounting filesystem read-only
[  294.666079][T28216] EXT4-fs (loop3): 1 truncate cleaned up
[  294.681566][T28218] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 546 with error 28
[  294.683795][T28216] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.694814][T28218] EXT4-fs (loop0): This should not happen!! Data will be lost
[  294.694814][T28218] 
[  294.716128][T28218] EXT4-fs (loop0): Total free blocks count 0
[  294.722788][T28218] EXT4-fs (loop0): Free/Dirty block details
[  294.729034][T28218] EXT4-fs (loop0): free_blocks=2415919104
[  294.734914][T28218] EXT4-fs (loop0): dirty_blocks=560
[  294.740165][T28218] EXT4-fs (loop0): Block reservation details
[  294.746306][T28218] EXT4-fs (loop0): i_reserved_data_blocks=35
[  294.756633][T28238] netlink: 8 bytes leftover after parsing attributes in process `syz.8.10428'.
[  294.776980][T28238] IPVS: Error joining to the multicast group
[  294.839528][T14724] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 546 with error 28
[  294.865352][T28245] netlink: 96 bytes leftover after parsing attributes in process `syz.2.10431'.
[  294.916675][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.981648][T28258] loop3: detected capacity change from 0 to 512
[  295.053222][T28258] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  295.072401][T28258] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.10434: invalid indirect mapped block 2683928664 (level 1)
[  295.133444][T28258] EXT4-fs (loop3): Remounting filesystem read-only
[  295.143370][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.150903][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.158416][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.184485][T28258] EXT4-fs (loop3): 1 truncate cleaned up
[  295.205222][T28258] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.231002][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.238435][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.246496][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.253938][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.261410][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.269566][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.276953][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.284362][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.291769][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.299849][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.307235][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.318599][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.326060][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.334397][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.341815][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.349257][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.356723][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.364815][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.372343][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.379802][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.387232][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.395693][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.403239][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.410658][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.418124][T11453] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  295.431349][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.440644][T28281] hsr0: entered promiscuous mode
[  295.447005][T28281] hsr_slave_0: left promiscuous mode
[  295.460732][T28281] hsr_slave_1: left promiscuous mode
[  295.467624][T11453] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[  295.479043][T28281] hsr0 (unregistering): left promiscuous mode
[  295.701312][   T29] kauditd_printk_skb: 215 callbacks suppressed
[  295.701325][   T29] audit: type=1326 audit(295.684:10167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28293 comm="syz.2.10451" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3c67dbe929 code=0x0
[  295.741002][T28310] macvtap2: entered promiscuous mode
[  295.746450][T28310] macvtap2: entered allmulticast mode
[  295.833956][   T29] audit: type=1326 audit(295.814:10168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28317 comm="syz.3.10461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  295.858695][   T29] audit: type=1326 audit(295.814:10169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28317 comm="syz.3.10461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  295.895667][   T29] audit: type=1326 audit(295.864:10170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28317 comm="syz.3.10461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  295.919840][   T29] audit: type=1326 audit(295.864:10171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28317 comm="syz.3.10461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  295.942968][   T29] audit: type=1326 audit(295.864:10172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28317 comm="syz.3.10461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  295.992848][   T29] audit: type=1400 audit(295.974:10173): avc:  denied  { sqpoll } for  pid=28329 comm="syz.8.10467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  296.012347][   T29] audit: type=1400 audit(295.974:10174): avc:  denied  { bind } for  pid=28329 comm="syz.8.10467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  296.014252][T28331] netlink: 'syz.3.10468': attribute type 1 has an invalid length.
[  296.032179][   T29] audit: type=1400 audit(295.974:10175): avc:  denied  { listen } for  pid=28329 comm="syz.8.10467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  296.097000][T28331] 8021q: adding VLAN 0 to HW filter on device bond3
[  296.114856][T28344] erspan0: entered promiscuous mode
[  296.122281][T28344] macvtap1: entered promiscuous mode
[  296.127649][T28344] macvtap1: entered allmulticast mode
[  296.133172][T28344] erspan0: entered allmulticast mode
[  296.150475][T28344] erspan0: left allmulticast mode
[  296.155615][T28344] erspan0: left promiscuous mode
[  296.193364][T28355] loop3: detected capacity change from 0 to 1024
[  296.200117][T28355] EXT4-fs: Ignoring removed oldalloc option
[  296.206201][T28355] EXT4-fs: Ignoring removed orlov option
[  296.215146][   T29] audit: type=1400 audit(296.194:10176): avc:  denied  { bind } for  pid=28353 comm="syz.8.10476" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  296.256412][T28355] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  296.281369][T28355] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.322995][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.349535][T28373] loop3: detected capacity change from 0 to 128
[  296.366948][T28373] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  296.418464][T28379] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  296.435929][T28379] vhci_hcd: default hub control req: 0200 v0000 i0000 l31125
[  296.502023][T28383] erspan0: entered promiscuous mode
[  296.507353][T28383] macvtap1: entered promiscuous mode
[  296.512963][T28383] macvtap1: entered allmulticast mode
[  296.518372][T28383] erspan0: entered allmulticast mode
[  296.551629][T28383] erspan0: left allmulticast mode
[  296.556791][T28383] erspan0: left promiscuous mode
[  296.565842][T18950] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  296.657528][T28393] vhci_hcd: invalid port number 96
[  296.662696][T28393] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  296.682921][T28402] loop0: detected capacity change from 0 to 128
[  297.259471][T28466] loop3: detected capacity change from 0 to 1024
[  297.285195][T28466] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  297.341849][T28466] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.10530: Allocating blocks 497-513 which overlap fs metadata
[  297.370875][T28466] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 3 with error 117
[  297.383231][T28466] EXT4-fs (loop3): This should not happen!! Data will be lost
[  297.383231][T28466] 
[  297.440915][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.539838][T28494] __nla_validate_parse: 7 callbacks suppressed
[  297.539857][T28494] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10539'.
[  297.604787][T28502] hub 8-0:1.0: USB hub found
[  297.609628][T28502] hub 8-0:1.0: 8 ports detected
[  298.230489][T28546] netlink: 100 bytes leftover after parsing attributes in process `syz.5.10564'.
[  298.744767][T14724] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  298.745645][T28600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  298.763133][T28600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  298.891222][T28614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10594'.
[  298.903218][T28614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10594'.
[  298.933196][T28619] rdma_op ffff888117abd580 conn xmit_rdma 0000000000000000
[  299.581669][T28688] netlink: 96 bytes leftover after parsing attributes in process `syz.0.10627'.
[  299.625939][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.633543][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.655688][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.663140][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.671852][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.679290][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.686689][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.694107][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.702810][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.710244][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.717755][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.726377][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.738077][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.745580][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.754319][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.761739][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.769267][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.776681][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.785562][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.793011][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.800527][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.808008][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.816639][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.824091][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.831549][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.840274][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.847779][ T3387] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  299.864404][ T3387] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  299.911235][T28714] loop3: detected capacity change from 0 to 128
[  299.940562][T28714] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  299.977394][T28728] 9pnet: p9_errstr2errno: server reported unknown error len=2 size == 0
[  299.977394][T28728] 
[  300.028887][T18950] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  300.112410][T28738] loop0: detected capacity change from 0 to 128
[  300.123921][T28738] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  300.135962][T28741] netlink: 'syz.3.10648': attribute type 1 has an invalid length.
[  300.210420][T28738] FAT-fs (loop0): error, invalid access to FAT (entry 0x0affffff)
[  300.219611][T28738] FAT-fs (loop0): Filesystem has been set read-only
[  300.237487][T28738] FAT-fs (loop0): error, invalid access to FAT (entry 0x0affffff)
[  300.313871][T28762] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  300.326261][ T3311] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  300.617325][T28793] loop3: detected capacity change from 0 to 2048
[  300.715121][T28793] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  300.766473][   T29] kauditd_printk_skb: 207 callbacks suppressed
[  300.766488][   T29] audit: type=1400 audit(1836.988:10384): avc:  denied  { mounton } for  pid=28805 comm="syz.0.10680" path="/proc/4376/task" dev="proc" ino=82276 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  300.816592][T28793] netlink: 100 bytes leftover after parsing attributes in process `syz.3.10674'.
[  300.896723][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.903676][T28812] lo speed is unknown, defaulting to 1000
[  300.916904][T28814] binfmt_misc: register: failed to install interpreter file ./file2
[  300.941379][   T29] audit: type=1400 audit(1837.157:10385): avc:  denied  { remount } for  pid=28813 comm="syz.2.10683" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  301.061323][   T29] audit: type=1400 audit(1837.295:10386): avc:  denied  { read } for  pid=28825 comm="syz.3.10688" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  301.175569][T14724] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  301.283032][T28849] lo speed is unknown, defaulting to 1000
[  301.423253][   T29] audit: type=1400 audit(1837.665:10387): avc:  denied  { connect } for  pid=28864 comm="syz.5.10704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  301.443908][   T29] audit: type=1400 audit(1837.665:10388): avc:  denied  { read } for  pid=28864 comm="syz.5.10704" path="socket:[82381]" dev="sockfs" ino=82381 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  301.482005][   T29] audit: type=1400 audit(1837.739:10389): avc:  denied  { write } for  pid=28864 comm="syz.5.10704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  301.537243][   T29] audit: type=1400 audit(1837.792:10390): avc:  denied  { create } for  pid=28869 comm="syz.5.10705" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  301.577139][   T29] audit: type=1400 audit(1837.792:10391): avc:  denied  { bind } for  pid=28869 comm="syz.5.10705" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  301.597711][   T29] audit: type=1400 audit(1837.792:10392): avc:  denied  { name_bind } for  pid=28869 comm="syz.5.10705" src=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  301.618067][   T29] audit: type=1400 audit(1837.792:10393): avc:  denied  { node_bind } for  pid=28869 comm="syz.5.10705" src=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  302.066773][T28931] loop0: detected capacity change from 0 to 2048
[  302.117910][T28931]  loop0: p1 < > p4
[  302.122276][T28931] loop0: p4 size 8388608 extends beyond EOD, truncated
[  302.185893][T14727] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  302.303517][T28958] lo speed is unknown, defaulting to 1000
[  302.668867][T29010] loop3: detected capacity change from 0 to 1024
[  302.676035][T29010] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  302.685912][T29010] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  302.698126][T29010] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869)
[  302.713717][T29010] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  302.725412][T29010] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: comm syz.3.10767: inode #1: comm syz.3.10767: iget: illegal inode #
[  302.741825][T29010] EXT4-fs (loop3): Remounting filesystem read-only
[  302.748410][T29010] EXT4-fs (loop3): no journal found
[  302.901614][T29022] netlink: 8 bytes leftover after parsing attributes in process `syz.8.10771'.
[  303.036176][T29038] netlink: 96 bytes leftover after parsing attributes in process `syz.0.10779'.
[  303.075132][T29046] pim6reg: entered allmulticast mode
[  303.081218][T29046] pim6reg: left allmulticast mode
[  303.100329][T29039] netlink: 96 bytes leftover after parsing attributes in process `syz.8.10778'.
[  303.201514][T29055] SELinux:  policydb version 0 does not match my version range 15-34
[  303.237680][T29055] SELinux: failed to load policy
[  303.314060][T29006] syz.5.10764 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  303.328215][T29006] CPU: 1 UID: 0 PID: 29006 Comm: syz.5.10764 Tainted: G        W           6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  303.328278][T29006] Tainted: [W]=WARN
[  303.328284][T29006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  303.328342][T29006] Call Trace:
[  303.328349][T29006]  <TASK>
[  303.328372][T29006]  __dump_stack+0x1d/0x30
[  303.328463][T29006]  dump_stack_lvl+0xe8/0x140
[  303.328485][T29006]  dump_stack+0x15/0x1b
[  303.328514][T29006]  dump_header+0x81/0x220
[  303.328555][T29006]  oom_kill_process+0x334/0x3f0
[  303.328591][T29006]  out_of_memory+0x979/0xb80
[  303.328734][T29006]  try_charge_memcg+0x5e6/0x9e0
[  303.328786][T29006]  obj_cgroup_charge_pages+0xa6/0x150
[  303.328872][T29006]  __memcg_kmem_charge_page+0x9f/0x170
[  303.328910][T29006]  __alloc_frozen_pages_noprof+0x188/0x360
[  303.328992][T29006]  alloc_pages_mpol+0xb3/0x250
[  303.329085][T29006]  alloc_pages_noprof+0x90/0x130
[  303.329112][T29006]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  303.329219][T29006]  __kvmalloc_node_noprof+0x30f/0x4e0
[  303.329265][T29006]  ? ip_set_alloc+0x1f/0x30
[  303.329290][T29006]  ? ip_set_alloc+0x1f/0x30
[  303.329389][T29006]  ip_set_alloc+0x1f/0x30
[  303.329421][T29006]  hash_netiface_create+0x282/0x740
[  303.329533][T29006]  ? __pfx_hash_netiface_create+0x10/0x10
[  303.329634][T29006]  ip_set_create+0x3c9/0x960
[  303.329684][T29006]  ? __nla_parse+0x40/0x60
[  303.329725][T29006]  nfnetlink_rcv_msg+0x4c3/0x590
[  303.329775][T29006]  ? selinux_capable+0x1f9/0x270
[  303.329844][T29006]  netlink_rcv_skb+0x120/0x220
[  303.329901][T29006]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  303.329936][T29006]  nfnetlink_rcv+0x16b/0x1690
[  303.329964][T29006]  ? __kfree_skb+0x109/0x150
[  303.329998][T29006]  ? nlmon_xmit+0x4f/0x60
[  303.330021][T29006]  ? consume_skb+0x49/0x150
[  303.330118][T29006]  ? nlmon_xmit+0x4f/0x60
[  303.330137][T29006]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  303.330184][T29006]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  303.330247][T29006]  ? __dev_queue_xmit+0x182/0x1fb0
[  303.330322][T29006]  ? ref_tracker_free+0x37d/0x3e0
[  303.330409][T29006]  ? __netlink_deliver_tap+0x4dc/0x500
[  303.330506][T29006]  netlink_unicast+0x5a5/0x680
[  303.330538][T29006]  netlink_sendmsg+0x58b/0x6b0
[  303.330603][T29006]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.330627][T29006]  __sock_sendmsg+0x145/0x180
[  303.330658][T29006]  ____sys_sendmsg+0x31e/0x4e0
[  303.330700][T29006]  ___sys_sendmsg+0x17b/0x1d0
[  303.330795][T29006]  __x64_sys_sendmsg+0xd4/0x160
[  303.330907][T29006]  x64_sys_call+0x2999/0x2fb0
[  303.330931][T29006]  do_syscall_64+0xd2/0x200
[  303.330953][T29006]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  303.330993][T29006]  ? clear_bhb_loop+0x40/0x90
[  303.331015][T29006]  ? clear_bhb_loop+0x40/0x90
[  303.331043][T29006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.331068][T29006] RIP: 0033:0x7fbaafffe929
[  303.331087][T29006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.331145][T29006] RSP: 002b:00007fbaae667038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  303.331206][T29006] RAX: ffffffffffffffda RBX: 00007fbab0225fa0 RCX: 00007fbaafffe929
[  303.331222][T29006] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000005
[  303.331237][T29006] RBP: 00007fbab0080b39 R08: 0000000000000000 R09: 0000000000000000
[  303.331281][T29006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  303.331347][T29006] R13: 0000000000000000 R14: 00007fbab0225fa0 R15: 00007ffd056713c8
[  303.331373][T29006]  </TASK>
[  303.331379][T29006] memory: usage 307200kB, limit 307200kB, failcnt 226
[  303.381006][T29061] lo speed is unknown, defaulting to 1000
[  303.384648][T29006] memory+swap: usage 308696kB, limit 9007199254740988kB, failcnt 0
[  303.384665][T29006] kmem: usage 239788kB, limit 9007199254740988kB, failcnt 0
[  303.384697][T29006] Memory cgroup stats for /syz5:
[  303.720595][T29006] cache 69025792
[  303.729141][T29006] rss 0
[  303.731914][T29006] shmem 0
[  303.735007][T29006] mapped_file 1183744
[  303.738989][T29006] dirty 0
[  303.741980][T29006] writeback 0
[  303.745746][T29006] workingset_refault_anon 348
[  303.750444][T29006] workingset_refault_file 13
[  303.755101][T29006] swap 1531904
[  303.758463][T29006] swapcached 0
[  303.761873][T29006] pgpgin 377320
[  303.765347][T29006] pgpgout 360467
[  303.768934][T29006] pgfault 429206
[  303.773095][T29006] pgmajfault 78
[  303.776572][T29006] inactive_anon 0
[  303.780236][T29006] active_anon 0
[  303.783849][T29006] inactive_file 0
[  303.787477][T29006] active_file 4096
[  303.791265][T29006] unevictable 69025792
[  303.795329][T29006] hierarchical_memory_limit 314572800
[  303.801254][T29006] hierarchical_memsw_limit 9223372036854771712
[  303.807952][T29006] total_cache 69025792
[  303.812043][T29006] total_rss 0
[  303.815332][T29006] total_shmem 0
[  303.818870][T29006] total_mapped_file 1183744
[  303.823447][T29006] total_dirty 0
[  303.826929][T29006] total_writeback 0
[  303.831220][T29006] total_workingset_refault_anon 348
[  303.836418][T29006] total_workingset_refault_file 13
[  303.841701][T29006] total_swap 1531904
[  303.845583][T29006] total_swapcached 0
[  303.849494][T29006] total_pgpgin 377320
[  303.853528][T29006] total_pgpgout 360467
[  303.858185][T29006] total_pgfault 429206
[  303.862261][T29006] total_pgmajfault 78
[  303.866283][T29006] total_inactive_anon 0
[  303.870516][T29006] total_active_anon 0
[  303.874491][T29006] total_inactive_file 0
[  303.878903][T29006] total_active_file 4096
[  303.883152][T29006] total_unevictable 69025792
[  303.888329][T29006] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.1630,pid=7471,uid=0
[  303.903009][T29006] Memory cgroup out of memory: Killed process 7471 (syz.5.1630) total-vm:96828kB, anon-rss:976kB, file-rss:21892kB, shmem-rss:0kB, UID:0 pgtables:104kB oom_score_adj:1000
[  303.922980][T29065] ref_ctr_offset mismatch. inode: 0x54d offset: 0x0 ref_ctr_offset(old): 0x200000000100 ref_ctr_offset(new): 0x0
[  304.125905][T29006] syz.5.10764 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  304.140474][T29006] CPU: 0 UID: 0 PID: 29006 Comm: syz.5.10764 Tainted: G        W           6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  304.140539][T29006] Tainted: [W]=WARN
[  304.140545][T29006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  304.140556][T29006] Call Trace:
[  304.140561][T29006]  <TASK>
[  304.140567][T29006]  __dump_stack+0x1d/0x30
[  304.140586][T29006]  dump_stack_lvl+0xe8/0x140
[  304.140604][T29006]  dump_stack+0x15/0x1b
[  304.140620][T29006]  dump_header+0x81/0x220
[  304.140681][T29006]  oom_kill_process+0x334/0x3f0
[  304.140715][T29006]  out_of_memory+0x979/0xb80
[  304.140750][T29006]  try_charge_memcg+0x5e6/0x9e0
[  304.140798][T29006]  obj_cgroup_charge_pages+0xa6/0x150
[  304.140825][T29006]  __memcg_kmem_charge_page+0x9f/0x170
[  304.140857][T29006]  __alloc_frozen_pages_noprof+0x188/0x360
[  304.140917][T29006]  alloc_pages_mpol+0xb3/0x250
[  304.140950][T29006]  alloc_pages_noprof+0x90/0x130
[  304.140983][T29006]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  304.141021][T29006]  __kvmalloc_node_noprof+0x30f/0x4e0
[  304.141048][T29006]  ? ip_set_alloc+0x1f/0x30
[  304.141079][T29006]  ? ip_set_alloc+0x1f/0x30
[  304.141162][T29006]  ip_set_alloc+0x1f/0x30
[  304.141193][T29006]  hash_netiface_create+0x282/0x740
[  304.141228][T29006]  ? __pfx_hash_netiface_create+0x10/0x10
[  304.141339][T29006]  ip_set_create+0x3c9/0x960
[  304.141390][T29006]  ? __nla_parse+0x40/0x60
[  304.141505][T29006]  nfnetlink_rcv_msg+0x4c3/0x590
[  304.141563][T29006]  ? selinux_capable+0x1f9/0x270
[  304.141595][T29006]  netlink_rcv_skb+0x120/0x220
[  304.141666][T29006]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  304.141692][T29006]  nfnetlink_rcv+0x16b/0x1690
[  304.141712][T29006]  ? __kfree_skb+0x109/0x150
[  304.141740][T29006]  ? nlmon_xmit+0x4f/0x60
[  304.141799][T29006]  ? consume_skb+0x49/0x150
[  304.141897][T29006]  ? nlmon_xmit+0x4f/0x60
[  304.141921][T29006]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  304.141959][T29006]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  304.142058][T29006]  ? __dev_queue_xmit+0x182/0x1fb0
[  304.142226][T29006]  ? ref_tracker_free+0x37d/0x3e0
[  304.142261][T29006]  ? __netlink_deliver_tap+0x4dc/0x500
[  304.142294][T29006]  netlink_unicast+0x5a5/0x680
[  304.142322][T29006]  netlink_sendmsg+0x58b/0x6b0
[  304.142400][T29006]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.142422][T29006]  __sock_sendmsg+0x145/0x180
[  304.142450][T29006]  ____sys_sendmsg+0x31e/0x4e0
[  304.142494][T29006]  ___sys_sendmsg+0x17b/0x1d0
[  304.142539][T29006]  __x64_sys_sendmsg+0xd4/0x160
[  304.142633][T29006]  x64_sys_call+0x2999/0x2fb0
[  304.142658][T29006]  do_syscall_64+0xd2/0x200
[  304.142676][T29006]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  304.142729][T29006]  ? clear_bhb_loop+0x40/0x90
[  304.142753][T29006]  ? clear_bhb_loop+0x40/0x90
[  304.142776][T29006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.142794][T29006] RIP: 0033:0x7fbaafffe929
[  304.142809][T29006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.142866][T29006] RSP: 002b:00007fbaae667038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  304.142888][T29006] RAX: ffffffffffffffda RBX: 00007fbab0225fa0 RCX: 00007fbaafffe929
[  304.142902][T29006] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000005
[  304.142916][T29006] RBP: 00007fbab0080b39 R08: 0000000000000000 R09: 0000000000000000
[  304.142994][T29006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  304.143088][T29006] R13: 0000000000000000 R14: 00007fbab0225fa0 R15: 00007ffd056713c8
[  304.143107][T29006]  </TASK>
[  304.143112][T29006] memory: usage 307200kB, limit 307200kB, failcnt 452
[  304.504329][T29006] memory+swap: usage 308520kB, limit 9007199254740988kB, failcnt 0
[  304.512834][T29006] kmem: usage 239788kB, limit 9007199254740988kB, failcnt 0
[  304.520140][T29006] Memory cgroup stats for /syz5:
[  304.520518][T29006] cache 69025792
[  304.529800][T29006] rss 0
[  304.532579][T29006] shmem 0
[  304.535541][T29006] mapped_file 0
[  304.539928][T29006] dirty 0
[  304.543053][T29006] writeback 0
[  304.546495][T29006] workingset_refault_anon 392
[  304.551263][T29006] workingset_refault_file 13
[  304.556651][T29006] swap 1351680
[  304.560094][T29006] swapcached 0
[  304.563519][T29006] pgpgin 377364
[  304.567599][T29006] pgpgout 360511
[  304.571216][T29006] pgfault 429271
[  304.574805][T29006] pgmajfault 117
[  304.578353][T29006] inactive_anon 0
[  304.582027][T29006] active_anon 0
[  304.586157][T29006] inactive_file 0
[  304.589798][T29006] active_file 4096
[  304.594165][T29006] unevictable 69025792
[  304.598229][T29006] hierarchical_memory_limit 314572800
[  304.603689][T29006] hierarchical_memsw_limit 9223372036854771712
[  304.609965][T29006] total_cache 69025792
[  304.610882][T29110] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1340
[  304.614086][T29006] total_rss 0
[  304.614097][T29006] total_shmem 0
[  304.632060][T29006] total_mapped_file 0
[  304.636036][T29006] total_dirty 0
[  304.639498][T29006] total_writeback 0
[  304.643342][T29006] total_workingset_refault_anon 392
[  304.648534][T29006] total_workingset_refault_file 13
[  304.654769][T29006] total_swap 1351680
[  304.658658][T29006] total_swapcached 0
[  304.662551][T29006] total_pgpgin 377364
[  304.666651][T29006] total_pgpgout 360511
[  304.670739][T29006] total_pgfault 429271
[  304.674799][T29006] total_pgmajfault 117
[  304.680106][T29006] total_inactive_anon 0
[  304.684259][T29006] total_active_anon 0
[  304.688265][T29006] total_inactive_file 0
[  304.692410][T29006] total_active_file 4096
[  304.696735][T29006] total_unevictable 69025792
[  304.701356][T29006] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.1153,pid=6315,uid=0
[  304.717210][T29006] Memory cgroup out of memory: Killed process 6315 (syz.5.1153) total-vm:95672kB, anon-rss:972kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  304.847347][T29116] smc: net device bond0 applied user defined pnetid SYZ2
[  304.871918][T29004] syz.5.10764 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  304.881202][T29116] smc: ib device syz2 ibport 1 applied user defined pnetid SYZ2
[  304.882782][T29004] CPU: 1 UID: 0 PID: 29004 Comm: syz.5.10764 Tainted: G        W           6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  304.882826][T29004] Tainted: [W]=WARN
[  304.882834][T29004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  304.882851][T29004] Call Trace:
[  304.882859][T29004]  <TASK>
[  304.882868][T29004]  __dump_stack+0x1d/0x30
[  304.882938][T29004]  dump_stack_lvl+0xe8/0x140
[  304.882988][T29004]  dump_stack+0x15/0x1b
[  304.883009][T29004]  dump_header+0x81/0x220
[  304.883088][T29004]  oom_kill_process+0x334/0x3f0
[  304.883126][T29004]  out_of_memory+0x979/0xb80
[  304.883226][T29004]  try_charge_memcg+0x5e6/0x9e0
[  304.883349][T29004]  charge_memcg+0x51/0xc0
[  304.883388][T29004]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  304.883496][T29004]  __read_swap_cache_async+0x1df/0x350
[  304.883556][T29004]  swap_cluster_readahead+0x376/0x3e0
[  304.883604][T29004]  swapin_readahead+0xde/0x6f0
[  304.883732][T29004]  ? __filemap_get_folio+0x4f7/0x6b0
[  304.883856][T29004]  ? __rcu_read_unlock+0x34/0x70
[  304.883885][T29004]  ? swap_cache_get_folio+0x77/0x200
[  304.883936][T29004]  do_swap_page+0x301/0x2430
[  304.883982][T29004]  ? css_rstat_updated+0xcd/0x5b0
[  304.884017][T29004]  ? perf_trace_memcg_rstat_events+0x7c/0x1d0
[  304.884056][T29004]  ? __pfx_default_wake_function+0x10/0x10
[  304.884089][T29004]  handle_mm_fault+0x9a5/0x2be0
[  304.884116][T29004]  ? mas_walk+0xf2/0x120
[  304.884180][T29004]  do_user_addr_fault+0x636/0x1090
[  304.884269][T29004]  exc_page_fault+0x62/0xa0
[  304.884305][T29004]  asm_exc_page_fault+0x26/0x30
[  304.884344][T29004] RIP: 0033:0x7fbaafebda06
[  304.884364][T29004] Code: 89 f0 25 ff 1f 00 00 49 89 34 c1 41 88 3c 00 31 c0 c3 66 90 41 38 3c 10 74 0b 41 88 3c 10 31 c0 49 89 34 d1 c3 b8 01 00 00 00 <c3> 66 0f 1f 84 00 00 00 00 00 48 83 ec 18 48 89 7c 24 08 48 89 34
[  304.884385][T29004] RSP: 002b:00007ffd05671448 EFLAGS: 00010246
[  304.884405][T29004] RAX: 0000000000000001 RBX: 00007fbab0d55720 RCX: ffffffff818d3ffe
[  304.884419][T29004] RDX: 0000000000001ffe RSI: ffffffff818d3ffe RDI: 0000000000000006
[  304.884434][T29004] RBP: ffffffff818d3ffe R08: 00007fbab0210000 R09: 00007fbab0212000
[  304.884525][T29004] R10: 00000000818d4002 R11: 0000000000000006 R12: 0000000000000006
[  304.884540][T29004] R13: 00000000000006a9 R14: ffffffff818d3f73 R15: 000000000005230b
[  304.884556][T29004]  ? page_counter_try_charge+0x243/0x300
[  304.884591][T29004]  ? page_counter_try_charge+0x2ce/0x300
[  304.884627][T29004]  ? page_counter_try_charge+0x2ce/0x300
[  304.884777][T29004]  ? page_counter_try_charge+0x2ce/0x300
[  304.884813][T29004]  </TASK>
[  304.884821][T29004] memory: usage 307200kB, limit 307200kB, failcnt 700
[  304.933403][T29116] smc: net device bond0 erased user defined pnetid SYZ2
[  304.936159][T29004] memory+swap: usage 308348kB, limit 9007199254740988kB, failcnt 0
[  304.941717][T29116] smc: ib device syz2 ibport 1 erased user defined pnetid SYZ2
[  304.944602][T29004] kmem: usage 239756kB, limit 9007199254740988kB, failcnt 0
[  304.944617][T29004] Memory cgroup stats for /syz5:
[  304.973064][T29004] cache 69025792
[  305.196839][T29004] rss 0
[  305.199649][T29004] shmem 0
[  305.202577][T29004] mapped_file 0
[  305.206064][T29004] dirty 0
[  305.209607][T29004] writeback 0
[  305.212883][T29004] workingset_refault_anon 393
[  305.217562][T29004] workingset_refault_file 13
[  305.222824][T29004] swap 1179648
[  305.226193][T29004] swapcached 0
[  305.229615][T29004] pgpgin 377365
[  305.233108][T29004] pgpgout 360512
[  305.237230][T29004] pgfault 429272
[  305.240796][T29004] pgmajfault 118
[  305.244330][T29004] inactive_anon 0
[  305.248628][T29004] active_anon 0
[  305.252109][T29004] inactive_file 0
[  305.255765][T29004] active_file 4096
[  305.259482][T29004] unevictable 69025792
[  305.263575][T29004] hierarchical_memory_limit 314572800
[  305.269447][T29004] hierarchical_memsw_limit 9223372036854771712
[  305.276149][T29004] total_cache 69025792
[  305.280253][T29004] total_rss 0
[  305.283538][T29004] total_shmem 0
[  305.287011][T29004] total_mapped_file 0
[  305.290983][T29004] total_dirty 0
[  305.294999][T29004] total_writeback 0
[  305.298795][T29004] total_workingset_refault_anon 393
[  305.304556][T29004] total_workingset_refault_file 13
[  305.309701][T29004] total_swap 1179648
[  305.313678][T29004] total_swapcached 0
[  305.317573][T29004] total_pgpgin 377365
[  305.321542][T29004] total_pgpgout 360512
[  305.326185][T29004] total_pgfault 429272
[  305.330272][T29004] total_pgmajfault 118
[  305.334909][T29004] total_inactive_anon 0
[  305.339054][T29004] total_active_anon 0
[  305.343126][T29004] total_inactive_file 0
[  305.347270][T29004] total_active_file 4096
[  305.352029][T29004] total_unevictable 69025792
[  305.356685][T29004] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.2651,pid=10002,uid=0
[  305.371968][T29004] Memory cgroup out of memory: Killed process 10002 (syz.5.2651) total-vm:95672kB, anon-rss:948kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[  305.463143][T29127] O3ãc¤±: renamed from bridge_slave_0
[  305.494326][ T5476] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  305.505993][ T5476] CPU: 1 UID: 0 PID: 5476 Comm: syz-executor Tainted: G        W           6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  305.506024][ T5476] Tainted: [W]=WARN
[  305.506106][ T5476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  305.506160][ T5476] Call Trace:
[  305.506174][ T5476]  <TASK>
[  305.506181][ T5476]  __dump_stack+0x1d/0x30
[  305.506259][ T5476]  dump_stack_lvl+0xe8/0x140
[  305.506299][ T5476]  dump_stack+0x15/0x1b
[  305.506318][ T5476]  dump_header+0x81/0x220
[  305.506355][ T5476]  oom_kill_process+0x334/0x3f0
[  305.506457][ T5476]  out_of_memory+0x979/0xb80
[  305.506491][ T5476]  try_charge_memcg+0x5e6/0x9e0
[  305.506540][ T5476]  charge_memcg+0x51/0xc0
[  305.506653][ T5476]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  305.506753][ T5476]  __read_swap_cache_async+0x1df/0x350
[  305.506865][ T5476]  swap_cluster_readahead+0x376/0x3e0
[  305.506963][ T5476]  swapin_readahead+0xde/0x6f0
[  305.506994][ T5476]  ? __filemap_get_folio+0x4f7/0x6b0
[  305.507052][ T5476]  ? swap_cache_get_folio+0x77/0x200
[  305.507084][ T5476]  do_swap_page+0x301/0x2430
[  305.507105][ T5476]  ? finish_task_switch+0xad/0x2b0
[  305.507130][ T5476]  ? __pfx_default_wake_function+0x10/0x10
[  305.507157][ T5476]  handle_mm_fault+0x9a5/0x2be0
[  305.507244][ T5476]  ? mas_walk+0xf2/0x120
[  305.507335][ T5476]  do_user_addr_fault+0x636/0x1090
[  305.507369][ T5476]  ? fpregs_restore_userregs+0xe2/0x1d0
[  305.507451][ T5476]  ? switch_fpu_return+0xe/0x20
[  305.507496][ T5476]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  305.507525][ T5476]  exc_page_fault+0x62/0xa0
[  305.507554][ T5476]  asm_exc_page_fault+0x26/0x30
[  305.507575][ T5476] RIP: 0033:0x7fbab00311a5
[  305.507621][ T5476] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 53 1c 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  305.507640][ T5476] RSP: 002b:00007ffd05671708 EFLAGS: 00010246
[  305.507655][ T5476] RAX: 0000000000000000 RBX: 000000000000115d RCX: 00007fbab00311a3
[  305.507668][ T5476] RDX: 00007ffd05671720 RSI: 0000000000000000 RDI: 0000000000000000
[  305.507680][ T5476] RBP: 00007ffd0567178c R08: 000000003253478c R09: 0000000000000000
[  305.507692][ T5476] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  305.507782][ T5476] R13: 00000000000927c0 R14: 0000000000049f5b R15: 00007ffd056717e0
[  305.507804][ T5476]  </TASK>
[  305.507811][ T5476] memory: usage 307200kB, limit 307200kB, failcnt 840
[  305.556654][T29138] IPv6: Can't replace route, no match found
[  305.557028][ T5476] memory+swap: usage 308260kB, limit 9007199254740988kB, failcnt 0
[  305.770664][ T5476] kmem: usage 239784kB, limit 9007199254740988kB, failcnt 0
[  305.778946][ T5476] Memory cgroup stats for /syz5:
[  305.781242][ T5476] cache 69025792
[  305.789758][ T5476] rss 0
[  305.792521][ T5476] shmem 0
[  305.795494][ T5476] mapped_file 0
[  305.799001][ T5476] dirty 0
[  305.801944][ T5476] writeback 0
[  305.806215][ T5476] workingset_refault_anon 400
[  305.810887][ T5476] workingset_refault_file 13
[  305.815498][ T5476] swap 1081344
[  305.818856][ T5476] swapcached 4096
[  305.822476][ T5476] pgpgin 377372
[  305.825951][ T5476] pgpgout 360518
[  305.829484][ T5476] pgfault 429278
[  305.834049][ T5476] pgmajfault 124
[  305.837593][ T5476] inactive_anon 4096
[  305.841537][ T5476] active_anon 0
[  305.845008][ T5476] inactive_file 4096
[  305.848891][ T5476] active_file 0
[  305.852352][ T5476] unevictable 69025792
[  305.856415][ T5476] hierarchical_memory_limit 314572800
[  305.862802][ T5476] hierarchical_memsw_limit 9223372036854771712
[  305.869035][ T5476] total_cache 69025792
[  305.873169][ T5476] total_rss 0
[  305.876447][ T5476] total_shmem 0
[  305.879919][ T5476] total_mapped_file 0
[  305.883890][ T5476] total_dirty 0
[  305.887357][ T5476] total_writeback 0
[  305.892367][ T5476] total_workingset_refault_anon 400
[  305.897560][ T5476] total_workingset_refault_file 13
[  305.902789][ T5476] total_swap 1081344
[  305.906810][ T5476] total_swapcached 4096
[  305.911038][ T5476] total_pgpgin 377372
[  305.915033][ T5476] total_pgpgout 360518
[  305.920102][ T5476] total_pgfault 429278
[  305.924235][ T5476] total_pgmajfault 124
[  305.928366][ T5476] total_inactive_anon 4096
[  305.932789][ T5476] total_active_anon 0
[  305.936873][ T5476] total_inactive_file 4096
[  305.941286][ T5476] total_active_file 0
[  305.945275][ T5476] total_unevictable 69025792
[  305.950986][ T5476] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.2422,pid=9500,uid=0
[  305.965638][ T5476] Memory cgroup out of memory: Killed process 9500 (syz.5.2422) total-vm:93624kB, anon-rss:948kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[  306.039782][T29150] netlink: 96 bytes leftover after parsing attributes in process `syz.3.10827'.
[  306.094172][T29165] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  306.111359][T14727] nci: nci_add_new_protocol: the target found does not have the desired protocol
[  306.261603][T29185] netlink: 96 bytes leftover after parsing attributes in process `syz.8.10840'.
[  306.311100][T29196] netlink: 4 bytes leftover after parsing attributes in process `syz.8.10845'.
[  306.374204][T29196] netlink: 4 bytes leftover after parsing attributes in process `syz.8.10845'.
[  306.496965][   T29] kauditd_printk_skb: 57 callbacks suppressed
[  306.496983][   T29] audit: type=1326 audit(1843.048:10451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.541459][   T29] audit: type=1326 audit(1843.048:10452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.565727][   T29] audit: type=1326 audit(1843.048:10453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.590270][   T29] audit: type=1326 audit(1843.048:10454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.613677][   T29] audit: type=1326 audit(1843.048:10455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.638044][   T29] audit: type=1326 audit(1843.048:10456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.661492][   T29] audit: type=1326 audit(1843.048:10457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.685937][   T29] audit: type=1326 audit(1843.048:10458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.709051][   T29] audit: type=1326 audit(1843.079:10459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.733322][   T29] audit: type=1326 audit(1843.079:10460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29207 comm="syz.8.10850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  306.817777][T29219] netlink: 96 bytes leftover after parsing attributes in process `syz.8.10855'.
[  307.011203][T29252] loop3: detected capacity change from 0 to 2048
[  307.039675][T29252] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  307.066571][ T3387] Process accounting resumed
[  307.175722][T29252] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  307.191277][T29252] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1596 with error 28
[  307.203835][T29252] EXT4-fs (loop3): This should not happen!! Data will be lost
[  307.203835][T29252] 
[  307.213480][T29252] EXT4-fs (loop3): Total free blocks count 0
[  307.220187][T29252] EXT4-fs (loop3): Free/Dirty block details
[  307.226149][T29252] EXT4-fs (loop3): free_blocks=2415919104
[  307.232126][T29252] EXT4-fs (loop3): dirty_blocks=1600
[  307.237472][T29252] EXT4-fs (loop3): Block reservation details
[  307.243548][T29252] EXT4-fs (loop3): i_reserved_data_blocks=100
[  307.332887][ T2641] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[  307.416130][T29297] netlink: 'syz.5.10887': attribute type 1 has an invalid length.
[  307.438661][T29297] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  307.448202][T29297] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  307.457116][T29297] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  307.465964][T29297] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  307.476692][T29297] bond6: (slave geneve3): making interface the new active one
[  307.484540][T29297] bond6: (slave geneve3): Enslaving as an active interface with an up link
[  307.509398][T29304] loop3: detected capacity change from 0 to 128
[  307.534151][T29306] netlink: 5 bytes leftover after parsing attributes in process `syz.5.10892'.
[  307.555427][T29306] 1ªî{X¹¦: renamed from 
30ªî{X¹¦ (while UP)
[  307.576812][T29306] A link change request failed with some changes committed already. Interface 
31ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  307.674241][T29326] netlink: 'syz.2.10901': attribute type 3 has an invalid length.
[  307.761209][T29338] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10907'.
[  307.900672][T29350] netlink: 68 bytes leftover after parsing attributes in process `syz.5.10913'.
[  308.289098][T29401] wireguard1: entered promiscuous mode
[  308.296064][T29401] wireguard1: entered allmulticast mode
[  308.319034][T29405] serio: Serial port ptm0
[  308.366689][T29412] rdma_op ffff888114c1b980 conn xmit_rdma 0000000000000000
[  308.371705][T29410] hub 9-0:1.0: USB hub found
[  308.424431][T29410] hub 9-0:1.0: 8 ports detected
[  308.474603][T29427] loop3: detected capacity change from 0 to 512
[  308.483575][T29427] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  308.501336][T29426] netlink: 132 bytes leftover after parsing attributes in process `syz.8.10957'.
[  308.512090][T29427] EXT4-fs (loop3): 1 truncate cleaned up
[  308.542628][T29427] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  308.591612][T29435] netlink: 2048 bytes leftover after parsing attributes in process `syz.8.10949'.
[  308.601010][T29435] netlink: 36 bytes leftover after parsing attributes in process `syz.8.10949'.
[  308.619845][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.731770][T29445] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10953'.
[  308.740883][T29445] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10953'.
[  308.817225][T29456] loop9: detected capacity change from 0 to 7
[  308.971147][T29481] netlink: 8 bytes leftover after parsing attributes in process `syz.5.10967'.
[  308.980189][T29481] netlink: 8 bytes leftover after parsing attributes in process `syz.5.10967'.
[  309.153420][T29502] netlink: 'syz.2.10981': attribute type 1 has an invalid length.
[  309.161330][T29502] netlink: 'syz.2.10981': attribute type 4 has an invalid length.
[  309.169330][T29502] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.10981'.
[  309.435513][T29529] netlink: 'syz.2.10990': attribute type 1 has an invalid length.
[  309.453544][T29529] 8021q: adding VLAN 0 to HW filter on device bond0
[  309.470223][T29529] bond0 (unregistering): Released all slaves
[  309.497594][T29536] wireguard1: entered promiscuous mode
[  309.503227][T29536] wireguard1: entered allmulticast mode
[  309.549265][T29538] lo speed is unknown, defaulting to 1000
[  309.619201][T29553] sch_tbf: burst 0 is lower than device lo mtu (16) !
[  309.730867][T29563] syzkaller1: entered promiscuous mode
[  309.736413][T29563] syzkaller1: entered allmulticast mode
[  309.745894][T29560] syz.2.11003 (29560) used obsolete PPPIOCDETACH ioctl
[  309.869423][T29581] loop0: detected capacity change from 0 to 512
[  309.878181][T29581] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  309.887266][T29581] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  309.899784][T29581] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.11014: corrupted in-inode xattr: e_value size too large
[  309.915405][T29581] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.11014: couldn't read orphan inode 15 (err -117)
[  309.932089][T29581] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.965091][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.522887][T29650] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  310.635443][T29641] lo speed is unknown, defaulting to 1000
[  310.719005][T29641] chnl_net:caif_netlink_parms(): no params data found
[  310.755220][T29641] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.762403][T29641] bridge0: port 1(bridge_slave_0) entered disabled state
[  310.769633][T29641] bridge_slave_0: entered allmulticast mode
[  310.776143][T29641] bridge_slave_0: entered promiscuous mode
[  310.783559][T29641] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.790738][T29641] bridge0: port 2(bridge_slave_1) entered disabled state
[  310.797891][T29641] bridge_slave_1: entered allmulticast mode
[  310.804380][T29641] bridge_slave_1: entered promiscuous mode
[  310.821685][T29641] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  310.832266][T29641] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  310.852624][T29641] team0: Port device team_slave_0 added
[  310.859264][T29641] team0: Port device team_slave_1 added
[  310.874426][T29641] batman_adv: batadv0: Adding interface: batadv_slave_0
[  310.882363][T29641] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  310.909374][T29641] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  310.920568][T29641] batman_adv: batadv0: Adding interface: batadv_slave_1
[  310.927595][T29641] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  310.954597][T29641] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  310.985404][T29641] hsr_slave_0: entered promiscuous mode
[  310.993489][T29641] hsr_slave_1: entered promiscuous mode
[  310.999476][T29641] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  311.007074][T29641] Cannot create hsr debugfs directory
[  311.146969][T29693] loop0: detected capacity change from 0 to 2048
[  311.182891][T29693] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  311.249508][T29699] lo speed is unknown, defaulting to 1000
[  311.336333][T29641] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  311.354359][T29641] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  311.374478][T29641] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  311.395526][T29641] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  311.420631][T29693] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  311.449116][T29693] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  311.462443][T29693] EXT4-fs (loop0): This should not happen!! Data will be lost
[  311.462443][T29693] 
[  311.472330][T29693] EXT4-fs (loop0): Total free blocks count 0
[  311.478327][T29693] EXT4-fs (loop0): Free/Dirty block details
[  311.484370][T29693] EXT4-fs (loop0): free_blocks=2415919104
[  311.490237][T29693] EXT4-fs (loop0): dirty_blocks=4256
[  311.496284][T29693] EXT4-fs (loop0): Block reservation details
[  311.502431][T29693] EXT4-fs (loop0): i_reserved_data_blocks=266
[  311.605737][T29641] 8021q: adding VLAN 0 to HW filter on device bond0
[  311.608252][T29723] hub 2-0:1.0: USB hub found
[  311.619946][T29723] hub 2-0:1.0: 8 ports detected
[  311.638204][T29641] 8021q: adding VLAN 0 to HW filter on device team0
[  311.692005][   T29] kauditd_printk_skb: 97 callbacks suppressed
[  311.692018][   T29] audit: type=1326 audit(1848.533:10558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29728 comm="syz.3.11068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  311.700250][ T2641] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.728546][ T2641] bridge0: port 1(bridge_slave_0) entered forwarding state
[  311.755427][ T2641] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.762591][ T2641] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.779535][   T29] audit: type=1326 audit(1848.564:10559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29728 comm="syz.3.11068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  311.803938][   T29] audit: type=1326 audit(1848.564:10560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29728 comm="syz.3.11068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  311.827697][   T29] audit: type=1326 audit(1848.585:10561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29728 comm="syz.3.11068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  311.851722][   T29] audit: type=1326 audit(1848.585:10562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29728 comm="syz.3.11068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  311.875124][   T29] audit: type=1326 audit(1848.585:10563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29728 comm="syz.3.11068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  311.898916][   T29] audit: type=1326 audit(1848.585:10564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29728 comm="syz.3.11068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  311.922316][   T29] audit: type=1326 audit(1848.585:10565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29728 comm="syz.3.11068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  311.969303][T29641] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  311.975177][T14736] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  312.009184][T29733] netlink: 'syz.8.11070': attribute type 1 has an invalid length.
[  312.065686][   T29] audit: type=1326 audit(1848.923:10566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29741 comm="syz.3.11074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  312.071326][T29733] 8021q: adding VLAN 0 to HW filter on device bond7
[  312.089538][   T29] audit: type=1326 audit(1848.923:10567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29741 comm="syz.3.11074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  312.166068][T29751] loop3: detected capacity change from 0 to 512
[  312.184974][T29742] bond7 (unregistering): Released all slaves
[  312.204449][T29641] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.215442][T29751] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.284820][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.368739][T29641] veth0_vlan: entered promiscuous mode
[  312.381156][T29641] veth1_vlan: entered promiscuous mode
[  312.411616][T29641] veth0_macvtap: entered promiscuous mode
[  312.419712][T29641] veth1_macvtap: entered promiscuous mode
[  312.433375][T29641] batman_adv: batadv0: Interface activated: batadv_slave_0
[  312.453400][T29641] batman_adv: batadv0: Interface activated: batadv_slave_1
[  312.475979][T29641] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  312.479670][T29804] netlink: 'syz.0.11092': attribute type 1 has an invalid length.
[  312.484780][T29641] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  312.484812][T29641] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  312.484844][T29641] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  312.538357][T29804] 8021q: adding VLAN 0 to HW filter on device bond5
[  312.564746][T29804] __nla_validate_parse: 7 callbacks suppressed
[  312.564763][T29804] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11092'.
[  312.583355][T29804] bond5 (unregistering): Released all slaves
[  312.727741][T29839] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11103'.
[  312.736847][T29839] netlink: 'syz.0.11103': attribute type 15 has an invalid length.
[  312.745232][T29841] netlink: 4 bytes leftover after parsing attributes in process `syz.5.11104'.
[  313.186998][T29848] loop3: detected capacity change from 0 to 1024
[  313.194025][T29848] EXT4-fs: Ignoring removed nobh option
[  313.199639][T29848] EXT4-fs: inline encryption not supported
[  313.224080][T29848] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.240264][T29848] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.11109: Allocating blocks 385-513 which overlap fs metadata
[  313.255390][T29848] EXT4-fs (loop3): pa ffff888106dbd7e0: logic 16, phys. 129, len 24
[  313.264447][T29848] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  313.284965][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.377762][T29854] vhci_hcd: invalid port number 96
[  313.383006][T29854] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  313.453080][T29862] netlink: 'syz.3.11114': attribute type 1 has an invalid length.
[  313.467772][T29862] 8021q: adding VLAN 0 to HW filter on device bond4
[  313.491826][T29862] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11114'.
[  313.504569][T29862] bond4 (unregistering): Released all slaves
[  313.558175][T29865] lo speed is unknown, defaulting to 1000
[  313.796935][T29893] loop3: detected capacity change from 0 to 164
[  313.820169][T29893] syz.3.11128: attempt to access beyond end of device
[  313.820169][T29893] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  313.836171][T29893] syz.3.11128: attempt to access beyond end of device
[  313.836171][T29893] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  313.948830][T29912] loop6: detected capacity change from 0 to 512
[  313.968731][T29912] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.986282][T29916] loop3: detected capacity change from 0 to 512
[  314.011518][T29920] loop0: detected capacity change from 0 to 128
[  314.025296][T29920] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  314.043600][T29912] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.11136: corrupted inode contents
[  314.057050][T29912] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.11136: mark_inode_dirty error
[  314.068995][T29912] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.11136: corrupted inode contents
[  314.089308][T29912] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.11136: corrupted inode contents
[  314.130131][T29912] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.11136: mark_inode_dirty error
[  314.145035][T29912] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.11136: corrupted inode contents
[  314.174343][T29912] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #2: comm syz.6.11136: mark_inode_dirty error
[  314.187364][T29912] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.11136: corrupted inode contents
[  314.201968][T29912] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.11136: mark_inode_dirty error
[  314.215737][ T3311] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  314.240521][T29641] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.317753][T29931] hub 6-0:1.0: USB hub found
[  314.325398][T29931] hub 6-0:1.0: 8 ports detected
[  314.336426][T29938] wireguard0: entered promiscuous mode
[  314.353028][T29942] 9pnet_fd: Insufficient options for proto=fd
[  314.361901][T29942] loop3: detected capacity change from 0 to 512
[  314.373740][T29942] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  314.385408][T29942] EXT4-fs (loop3): orphan cleanup on readonly fs
[  314.393722][T29942] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.11149: corrupted inode contents
[  314.406072][T29942] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #16: comm syz.3.11149: mark_inode_dirty error
[  314.420739][T29942] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.11149: corrupted inode contents
[  314.434823][T29942] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.11149: mark_inode_dirty error
[  314.456216][T29942] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.11149: corrupted inode contents
[  314.475216][T29942] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  314.486866][T29942] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.11149: corrupted inode contents
[  314.499915][T29942] EXT4-fs error (device loop3): ext4_truncate:4597: inode #16: comm syz.3.11149: mark_inode_dirty error
[  314.513540][T29942] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  314.523482][T29942] EXT4-fs (loop3): 1 truncate cleaned up
[  314.530108][T14727] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:56: Failed to release dquot type 1
[  314.534904][T29959] netlink: 4 bytes leftover after parsing attributes in process `syz.8.11156'.
[  314.562565][T29942] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  314.577490][T29942] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.704970][T29980] pimreg: entered allmulticast mode
[  314.713971][T29980] pimreg: left allmulticast mode
[  314.850646][T29996] openvswitch: netlink: Message has 6 unknown bytes.
[  315.152409][T30019] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  315.198120][T30033] loop6: detected capacity change from 0 to 128
[  315.207094][T30033] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  315.262297][T29641] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  315.348922][T30043] lo speed is unknown, defaulting to 1000
[  315.373173][T30045] netlink: 96 bytes leftover after parsing attributes in process `syz.5.11197'.
[  315.642747][T30059] loop3: detected capacity change from 0 to 256
[  316.179739][T30079] loop6: detected capacity change from 0 to 512
[  316.216851][T30079] EXT4-fs warning (device loop6): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  316.261986][T30079] EXT4-fs (loop6): mount failed
[  316.306311][T30092] netlink: 'syz.8.11215': attribute type 1 has an invalid length.
[  316.356125][T30100] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  316.472894][T30114] loop6: detected capacity change from 0 to 512
[  316.487272][T30114] EXT4-fs: Ignoring removed bh option
[  316.493255][T30114] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  316.502429][T30114] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  316.510692][   T29] kauditd_printk_skb: 188 callbacks suppressed
[  316.510707][   T29] audit: type=1400 audit(2366.579:10754): avc:  denied  { name_connect } for  pid=30117 comm="syz.8.11228" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  316.540834][T30114] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  316.554610][T30114] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  316.571761][T30114] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.611495][T29641] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.650634][   T29] audit: type=1326 audit(2366.757:10755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30127 comm="syz.3.11232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  316.697688][   T29] audit: type=1326 audit(2366.757:10756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30127 comm="syz.3.11232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=84 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  316.722144][   T29] audit: type=1326 audit(2366.757:10757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30127 comm="syz.3.11232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  316.745307][   T29] audit: type=1326 audit(2366.810:10758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30127 comm="syz.3.11232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b2e2e929 code=0x7ffc0000
[  316.830253][T30133] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.875116][   T29] audit: type=1400 audit(2366.988:10759): avc:  denied  { module_request } for  pid=30132 comm="syz.8.11234" kmod="netdev-syzkaller0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  316.898427][   T29] audit: type=1400 audit(2366.988:10760): avc:  denied  { write } for  pid=30135 comm="syz.6.11235" name="kcm" dev="proc" ino=4026534166 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  316.940453][T30133] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.973104][T30141] netlink: 'syz.6.11236': attribute type 1 has an invalid length.
[  316.981668][T30141] netlink: 199820 bytes leftover after parsing attributes in process `syz.6.11236'.
[  316.996704][T30133] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.078551][T30133] netdevsim netdevsim3 netdevsim0 (unregistering): left allmulticast mode
[  317.103093][T30133] team0: Port device macvlan2 removed
[  317.118964][T30133] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.168049][T30162] netlink: 20 bytes leftover after parsing attributes in process `syz.8.11242'.
[  317.189460][T30133] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  317.191484][T30162] x_tables: ip_tables: udp match: only valid for protocol 17
[  317.211371][T30133] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  317.249110][T30133] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  317.275108][T30168] pim6reg: entered allmulticast mode
[  317.280463][   T29] audit: type=1326 audit(2367.408:10761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30169 comm="syz.8.11246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  317.282146][   T29] audit: type=1326 audit(2367.419:10762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30169 comm="syz.8.11246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  317.339613][T30133] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  317.349683][T30171] pim6reg: left allmulticast mode
[  317.349840][   T29] audit: type=1326 audit(2367.472:10763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30169 comm="syz.8.11246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e5f0ee929 code=0x7ffc0000
[  317.470962][T30181] netlink: 'syz.6.11251': attribute type 10 has an invalid length.
[  317.512866][T30181] 8021q: adding VLAN 0 to HW filter on device team0
[  317.553657][T30181] bond0: (slave team0): Enslaving as an active interface with an up link
[  317.610318][T30198] loop6: detected capacity change from 0 to 256
[  317.658116][T30198] FAT-fs (loop6): codepage cp866 not found
[  318.062593][T30226] loop6: detected capacity change from 0 to 2048
[  318.123448][T30226] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  318.281631][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x4
[  318.289441][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x2
[  318.298651][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.299568][T29641] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.306342][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306369][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306394][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306469][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306489][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306543][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306568][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306592][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306617][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306693][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306717][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306826][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.306852][ T3405] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x0
[  318.307169][T30246] lo speed is unknown, defaulting to 1000
[  318.426772][T30253] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11278'.
[  318.435786][T30253] netlink: 32 bytes leftover after parsing attributes in process `syz.0.11278'.
[  318.444943][T30253] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11278'.
[  318.454667][T30253] netlink: 2 bytes leftover after parsing attributes in process `syz.0.11278'.
[  318.464406][ T3405] hid-generic 0000:3000000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  318.475752][T30253] netlink: 32 bytes leftover after parsing attributes in process `syz.0.11278'.
[  318.599516][T30266] lo speed is unknown, defaulting to 1000
[  318.845159][T30284] lo speed is unknown, defaulting to 1000
[  318.880859][T30290] SELinux: syz.0.11292 (30290) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  319.630519][T30375] loop3: detected capacity change from 0 to 128
[  319.645946][T30375] EXT4-fs: Ignoring removed nobh option
[  319.654483][T30375] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  319.764499][T18950] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  319.796362][T30383] loop0: detected capacity change from 0 to 1024
[  319.823528][T30383] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.840792][T30388] netlink: 92 bytes leftover after parsing attributes in process `syz.5.11337'.
[  319.915069][T30383] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 337:freeing already freed block (bit 21); block bitmap corrupt.
[  320.020091][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.362760][T30431] netlink: 16 bytes leftover after parsing attributes in process `syz.8.11354'.
[  320.763712][T30458] lo speed is unknown, defaulting to 1000
[  320.959571][T30491] rdma_op ffff88811766ed80 conn xmit_rdma 0000000000000000
[  321.120072][T30501] loop0: detected capacity change from 0 to 8192
[  321.277007][   T29] kauditd_printk_skb: 101 callbacks suppressed
[  321.277023][   T29] audit: type=1400 audit(2371.610:10865): avc:  denied  { watch watch_reads } for  pid=30527 comm="syz.5.11399" path="/2198/file0" dev="tmpfs" ino=11356 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  321.474806][   T29] audit: type=1400 audit(2371.809:10866): avc:  denied  { create } for  pid=30544 comm="syz.8.11407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  321.494320][   T29] audit: type=1400 audit(2371.809:10867): avc:  denied  { setopt } for  pid=30544 comm="syz.8.11407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  321.524478][   T29] audit: type=1400 audit(2371.862:10868): avc:  denied  { bind } for  pid=30544 comm="syz.8.11407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  321.544442][   T29] audit: type=1400 audit(2371.862:10869): avc:  denied  { name_bind } for  pid=30544 comm="syz.8.11407" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  321.565018][   T29] audit: type=1400 audit(2371.862:10870): avc:  denied  { node_bind } for  pid=30544 comm="syz.8.11407" saddr=fe80::aa src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  321.604257][   T29] audit: type=1326 audit(2371.946:10871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30546 comm="syz.6.11408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f927b73e929 code=0x7ffc0000
[  321.628244][   T29] audit: type=1326 audit(2371.946:10872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30546 comm="syz.6.11408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f927b73e929 code=0x7ffc0000
[  321.651727][   T29] audit: type=1326 audit(2371.946:10873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30546 comm="syz.6.11408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f927b73e929 code=0x7ffc0000
[  321.675790][   T29] audit: type=1326 audit(2371.946:10874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30546 comm="syz.6.11408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f927b73e929 code=0x7ffc0000
[  321.839388][T30570] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  321.895918][T30577] loop3: detected capacity change from 0 to 512
[  321.927613][T30577] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.943789][T30578] lo speed is unknown, defaulting to 1000
[  321.968406][T30582] bond0: (slave team0): Releasing backup interface
[  321.988417][T30577] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.11420: corrupted inode contents
[  322.010149][T30582] bridge_slave_0: left allmulticast mode
[  322.016006][T30582] bridge_slave_0: left promiscuous mode
[  322.021849][T30582] bridge0: port 1(bridge_slave_0) entered disabled state
[  322.022558][T30577] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.11420: mark_inode_dirty error
[  322.047653][T30582] bridge_slave_1: left allmulticast mode
[  322.053318][T30582] bridge_slave_1: left promiscuous mode
[  322.059867][T30582] bridge0: port 2(bridge_slave_1) entered disabled state
[  322.069777][T30577] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.11420: corrupted inode contents
[  322.082496][T30582] bond0: (slave bond_slave_0): Releasing backup interface
[  322.093306][T30582] bond0: (slave bond_slave_1): Releasing backup interface
[  322.105895][T30588] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11422'.
[  322.106621][T30582] team0: Port device team_slave_0 removed
[  322.120129][T30585] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.11420: corrupted inode contents
[  322.135349][T30585] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.11420: mark_inode_dirty error
[  322.148904][T30582] team0: Port device team_slave_1 removed
[  322.150380][T30585] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.11420: corrupted inode contents
[  322.157422][T30582] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  322.174542][T30582] batman_adv: batadv0: Removing interface: batadv_slave_0
[  322.183894][T30585] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.11420: mark_inode_dirty error
[  322.196771][T30585] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.11420: corrupted inode contents
[  322.210397][T30585] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.11420: mark_inode_dirty error
[  322.212118][T30582] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  322.229822][T30582] batman_adv: batadv0: Removing interface: batadv_slave_1
[  322.252799][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.297407][T30588] IPVS: Unknown mcast interface: vcan0
[  322.410275][T30606] loop3: detected capacity change from 0 to 128
[  322.421487][T30608] wireguard1: entered promiscuous mode
[  322.462032][T30617] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=30617 comm=syz.6.11434
[  322.518599][T30624] loop3: detected capacity change from 0 to 2048
[  322.545707][T30624] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  322.656991][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.738744][T30640] lo speed is unknown, defaulting to 1000
[  323.128255][T30658] lo speed is unknown, defaulting to 1000
[  323.193380][T30671] netlink: 176 bytes leftover after parsing attributes in process `syz.5.11457'.
[  323.228434][T30673] netem: incorrect ge model size
[  323.233412][T30673] netem: change failed
[  323.441725][T30700] hub 6-0:1.0: USB hub found
[  323.454107][T30700] hub 6-0:1.0: 8 ports detected
[  323.482129][T30706] netlink: 32 bytes leftover after parsing attributes in process `syz.8.11473'.
[  323.497102][T30708] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[  323.722880][T30725] loop3: detected capacity change from 0 to 256
[  323.739126][T30725] FAT-fs (loop3): codepage cp866 not found
[  323.998949][T30762] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  325.198081][T30854] loop0: detected capacity change from 0 to 128
[  325.205052][T30854] EXT4-fs: Ignoring removed nobh option
[  325.226124][T30854] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  325.259879][T30865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11542'.
[  325.304533][T30873] loop6: detected capacity change from 0 to 256
[  325.327303][ T3311] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  325.379671][T30875] binfmt_misc: register: failed to install interpreter file ./cgroup.cpu/cpuset.cpus
[  325.485754][T30900] loop6: detected capacity change from 0 to 128
[  325.492582][T30900] EXT4-fs: Ignoring removed nobh option
[  325.500474][T30900] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  325.537829][T30907] loop0: detected capacity change from 0 to 1024
[  325.553330][T30907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  325.580178][T30907] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  325.615766][T29641] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  325.658039][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.696304][T30930] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11572'.
[  325.714628][T30930] bridge0: port 3(macvlan2) entered blocking state
[  325.721315][T30930] bridge0: port 3(macvlan2) entered disabled state
[  325.749262][T30930] macvlan2: entered allmulticast mode
[  325.754771][T30930] bridge0: entered allmulticast mode
[  325.779169][T30930] macvlan2: left allmulticast mode
[  325.784319][T30930] bridge0: left allmulticast mode
[  325.868454][T30923] lo speed is unknown, defaulting to 1000
[  325.899856][T30946] loop3: detected capacity change from 0 to 512
[  325.912803][T30946] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  325.924451][T30946] EXT4-fs (loop3): 1 truncate cleaned up
[  325.930771][T30946] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.967864][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.015087][T30958] netlink: 4 bytes leftover after parsing attributes in process `syz.6.11582'.
[  326.123097][T30972] loop3: detected capacity change from 0 to 128
[  326.147601][   T29] kauditd_printk_skb: 139 callbacks suppressed
[  326.147612][   T29] audit: type=1400 audit(2376.725:11014): avc:  denied  { setopt } for  pid=30974 comm="syz.0.11591" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  326.183400][   T29] audit: type=1400 audit(2376.767:11015): avc:  denied  { ioctl } for  pid=30976 comm="syz.5.11592" path="socket:[88768]" dev="sockfs" ino=88768 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  326.207989][T30981] loop3: detected capacity change from 0 to 512
[  326.226226][T30981] EXT4-fs (loop3): orphan cleanup on readonly fs
[  326.233190][T30981] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set
[  326.250706][T30984] loop0: detected capacity change from 0 to 2048
[  326.251275][T30981] Quota error (device loop3): write_blk: dquota write failed
[  326.265467][T30981] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  326.275470][T30981] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm +}[@: Failed to acquire dquot type 1
[  326.283733][T30986] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11595'.
[  326.295625][T30981] EXT4-fs (loop3): 1 truncate cleaned up
[  326.296691][T30981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  326.327214][T30984] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  326.340605][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.363842][T30984] EXT4-fs (loop0): shut down requested (0)
[  326.385456][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.419571][T31000] loop0: detected capacity change from 0 to 512
[  326.430856][T31000] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c11d, mo2=0002]
[  326.442478][T31000] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.11599: corrupted in-inode xattr: e_value size too large
[  326.458395][T31000] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.11599: couldn't read orphan inode 15 (err -117)
[  326.471077][T31000] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  326.493403][   T29] audit: type=1400 audit(2377.082:11016): avc:  denied  { create } for  pid=30999 comm="syz.0.11599" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  326.536024][   T29] audit: type=1400 audit(2377.092:11017): avc:  denied  { remove_name } for  pid=30999 comm="syz.0.11599" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  326.558651][   T29] audit: type=1400 audit(2377.092:11018): avc:  denied  { rename } for  pid=30999 comm="syz.0.11599" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  326.626417][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.670212][   T29] audit: type=1400 audit(2377.271:11019): avc:  denied  { listen } for  pid=31024 comm="syz.0.11607" lport=53041 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  326.693745][   T29] audit: type=1400 audit(2377.271:11020): avc:  denied  { accept } for  pid=31024 comm="syz.0.11607" lport=53041 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  326.716860][   T29] audit: type=1400 audit(2377.271:11021): avc:  denied  { write } for  pid=31024 comm="syz.0.11607" lport=53041 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  326.852262][T31045] lo speed is unknown, defaulting to 1000
[  327.029895][T31054] netlink: 96 bytes leftover after parsing attributes in process `syz.3.11624'.
[  327.175192][T31066] lo speed is unknown, defaulting to 1000
[  327.211096][T31074] bond2: (slave ip6gre2): Releasing backup interface
[  327.220279][T31074] ip6gre2: left promiscuous mode
[  327.233060][T31074] bond4: (slave vcan1): Releasing backup interface
[  327.248311][T31074] bond6: (slave bridge2): Releasing active interface
[  327.256541][T31078] netlink: 51 bytes leftover after parsing attributes in process `syz.3.11634'.
[  327.294843][T31080] loop3: detected capacity change from 0 to 164
[  327.310121][T31080] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  327.330515][T31080] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  327.340967][T31080] rock: directory entry would overflow storage
[  327.347208][T31080] rock: sig=0x4f50, size=4, remaining=3
[  327.352842][T31080] iso9660: Corrupted directory entry in block 4 of inode 1792
[  327.636094][T31108] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11648'.
[  327.755816][T31106] lo speed is unknown, defaulting to 1000
[  327.783831][T31113] 9pnet_fd: Insufficient options for proto=fd
[  327.800687][T31113] loop0: detected capacity change from 0 to 512
[  328.046700][T31113] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  328.056881][T31113] EXT4-fs (loop0): orphan cleanup on readonly fs
[  328.066472][T31113] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.11649: corrupted inode contents
[  328.078837][T31113] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #16: comm syz.0.11649: mark_inode_dirty error
[  328.094135][T31113] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.11649: corrupted inode contents
[  328.106535][T31113] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.11649: mark_inode_dirty error
[  328.120176][T31113] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.11649: corrupted inode contents
[  328.134980][T31113] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  328.144636][T31113] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.11649: corrupted inode contents
[  328.158221][T31113] EXT4-fs error (device loop0): ext4_truncate:4597: inode #16: comm syz.0.11649: mark_inode_dirty error
[  328.237170][T31113] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  328.271461][T31113] EXT4-fs (loop0): 1 truncate cleaned up
[  328.278499][T14727] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:56: Failed to release dquot type 1
[  328.302778][T31132] loop3: detected capacity change from 0 to 164
[  328.324992][T31113] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  328.325177][T31132] Unable to read rock-ridge attributes
[  328.357342][T31132] Unable to read rock-ridge attributes
[  328.368967][T31113] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.470507][T31146] loop6: detected capacity change from 0 to 512
[  328.571854][T31146] EXT4-fs warning (device loop6): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  328.630588][T31146] EXT4-fs (loop6): mount failed
[  328.670842][T31164] loop0: detected capacity change from 0 to 1024
[  328.692853][T31164] EXT4-fs: Ignoring removed nobh option
[  328.698514][T31164] EXT4-fs: Ignoring removed bh option
[  328.733933][T31164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  328.814819][T31164] loop0: detected capacity change from 1024 to 64
[  328.886172][T31164] syz.0.11669: attempt to access beyond end of device
[  328.886172][T31164] loop0: rw=2057, sector=232, nr_sectors = 24 limit=64
[  328.926841][T31164] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 5
[  328.940369][T31164] EXT4-fs (loop0): This should not happen!! Data will be lost
[  328.940369][T31164] 
[  329.003395][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.020193][T31166] netlink: 12 bytes leftover after parsing attributes in process `syz.8.11670'.
[  329.043915][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.068576][ T3420] IPVS: starting estimator thread 0...
[  329.075867][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.117246][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.149905][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.164763][T31203] IPVS: using max 2208 ests per chain, 110400 per kthread
[  329.188498][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.208671][T31217] 9pnet_fd: Insufficient options for proto=fd
[  329.220634][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.251697][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.266968][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.329843][ T3311] EXT4-fs warning (device loop0): ext4_empty_dir:3078: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  329.870383][T14712] kworker/u8:41: attempt to access beyond end of device
[  329.870383][T14712] loop0: rw=2057, sector=230, nr_sectors = 2 limit=64
[  329.884749][T14712] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 12 with error 5
[  329.898319][T14712] EXT4-fs (loop0): This should not happen!! Data will be lost
[  329.898319][T14712] 
[  329.910823][T18552] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.930778][T31171] kmmpd-loop0: attempt to access beyond end of device
[  329.930778][T31171] loop0: rw=14337, sector=128, nr_sectors = 2 limit=64
[  329.944417][T31171] buffer_io_error: 52 callbacks suppressed
[  329.944457][T31171] Buffer I/O error on dev loop0, logical block 64, lost sync page write
[  329.969219][T18552] syz_tun (unregistering): left promiscuous mode
[  330.394330][T31325] lo speed is unknown, defaulting to 1000
[  330.502498][T31325] chnl_net:caif_netlink_parms(): no params data found
[  330.608066][T31325] bridge0: port 1(bridge_slave_0) entered blocking state
[  330.615263][T31325] bridge0: port 1(bridge_slave_0) entered disabled state
[  330.632124][T31325] bridge_slave_0: entered allmulticast mode
[  330.647718][T31325] bridge_slave_0: entered promiscuous mode
[  330.665314][T31391] sd 0:0:1:0: device reset
[  330.670953][T31325] bridge0: port 2(bridge_slave_1) entered blocking state
[  330.678225][T31325] bridge0: port 2(bridge_slave_1) entered disabled state
[  330.702199][T31325] bridge_slave_1: entered allmulticast mode
[  330.708816][T31325] bridge_slave_1: entered promiscuous mode
[  330.765699][T31394] SELinux: failed to load policy
[  330.770965][T31325] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  330.772495][T31325] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  330.811743][T31325] team0: Port device team_slave_0 added
[  330.831164][T31325] team0: Port device team_slave_1 added
[  330.874592][T31325] batman_adv: batadv0: Adding interface: batadv_slave_0
[  330.882769][T31325] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  330.908745][T31325] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  331.043585][T31325] batman_adv: batadv0: Adding interface: batadv_slave_1
[  331.050590][T31325] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  331.077192][T31325] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  331.115976][   T29] kauditd_printk_skb: 183 callbacks suppressed
[  331.115991][   T29] audit: type=1400 audit(2381.945:11203): avc:  denied  { write } for  pid=31399 comm="syz.3.11715" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  331.155302][T31325] hsr_slave_0: entered promiscuous mode
[  331.161587][T31325] hsr_slave_1: entered promiscuous mode
[  331.168710][T31325] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  331.178631][T31325] Cannot create hsr debugfs directory
[  331.186337][   T29] audit: type=1326 audit(2382.018:11204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaafffe929 code=0x7ffc0000
[  331.210250][   T29] audit: type=1326 audit(2382.018:11205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fbaafffe929 code=0x7ffc0000
[  331.234304][   T29] audit: type=1326 audit(2382.018:11206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fbaafffe963 code=0x7ffc0000
[  331.257323][   T29] audit: type=1326 audit(2382.018:11207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fbaafffd3df code=0x7ffc0000
[  331.281033][   T29] audit: type=1326 audit(2382.018:11208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fbaafffe9b7 code=0x7ffc0000
[  331.304293][   T29] audit: type=1326 audit(2382.018:11209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbaafffd290 code=0x7ffc0000
[  331.327504][   T29] audit: type=1326 audit(2382.018:11210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fbaafffd58a code=0x7ffc0000
[  331.364313][   T29] audit: type=1326 audit(2382.029:11211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaafffe929 code=0x7ffc0000
[  331.388230][   T29] audit: type=1326 audit(2382.029:11212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31416 comm="syz.5.11722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaafffe929 code=0x7ffc0000
[  331.564855][T31436] loop6: detected capacity change from 0 to 512
[  331.573390][T31436] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  331.597216][T31436] EXT4-fs (loop6): 1 truncate cleaned up
[  331.603156][T31436] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  331.611949][T31434] loop3: detected capacity change from 0 to 8192
[  331.694792][T31325] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  331.747094][T29641] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.771218][T31325] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  331.785146][T31325] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  331.802682][T31325] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  332.046489][T31325] 8021q: adding VLAN 0 to HW filter on device bond0
[  332.096746][T31325] 8021q: adding VLAN 0 to HW filter on device team0
[  332.131141][T14712] bridge0: port 1(bridge_slave_0) entered blocking state
[  332.138380][T14712] bridge0: port 1(bridge_slave_0) entered forwarding state
[  332.200412][T14712] bridge0: port 2(bridge_slave_1) entered blocking state
[  332.207502][T14712] bridge0: port 2(bridge_slave_1) entered forwarding state
[  332.304764][T31453] loop6: detected capacity change from 0 to 512
[  332.314319][T31453] EXT4-fs: Ignoring removed orlov option
[  332.329116][T31453] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  332.360751][T31453] EXT4-fs (loop6): 1 orphan inode deleted
[  332.367630][T31453] EXT4-fs (loop6): 1 truncate cleaned up
[  332.373757][T31453] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  332.374604][T31325] 8021q: adding VLAN 0 to HW filter on device batadv0
[  332.397799][T31453] EXT4-fs error (device loop6): ext4_inlinedir_to_tree:1340: inode #12: block 7: comm syz.6.11733: path /136/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  332.423672][T31453] EXT4-fs (loop6): Remounting filesystem read-only
[  332.465175][T29641] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.598459][T31477] loop3: detected capacity change from 0 to 256
[  332.617273][T31477] FAT-fs (loop3): bogus number of FAT sectors
[  332.623429][T31477] FAT-fs (loop3): Can't find a valid FAT filesystem
[  332.664578][T31325] veth0_vlan: entered promiscuous mode
[  332.675290][T31325] veth1_vlan: entered promiscuous mode
[  332.723904][T31325] veth0_macvtap: entered promiscuous mode
[  332.741131][T31325] veth1_macvtap: entered promiscuous mode
[  332.771706][T31325] batman_adv: batadv0: Interface activated: batadv_slave_0
[  332.802432][T31325] batman_adv: batadv0: Interface activated: batadv_slave_1
[  332.820933][T31325] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  332.829766][T31325] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  332.838546][T31325] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  332.847861][T31325] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  333.069166][T31508] loop3: detected capacity change from 0 to 1024
[  333.090193][T31508] EXT4-fs: Ignoring removed oldalloc option
[  333.096138][T31508] EXT4-fs: Ignoring removed orlov option
[  333.102529][T31508] EXT4-fs: Ignoring removed oldalloc option
[  333.108591][T31508] EXT4-fs: Ignoring removed nomblk_io_submit option
[  333.170096][T31508] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.190565][T31508] EXT4-fs error (device loop3): ext4_xattr_set_entry:1660: inode #13: comm syz.3.11749: corrupted xattr entries
[  333.206012][T31508] EXT4-fs (loop3): Remounting filesystem read-only
[  333.221655][T31508] EXT4-fs warning (device loop3): ext4_xattr_ibody_set:2272: inode #18: comm syz.3.11749: dec ref error=-30
[  333.296405][T18950] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.510686][T31531] loop7: detected capacity change from 0 to 4096
[  333.523177][T31531] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.545313][T31531] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #15: comm syz.7.11758: corrupted inode contents
[  333.569397][T31531] EXT4-fs (loop7): Remounting filesystem read-only
[  333.639510][T14736] EXT4-fs (loop7): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  333.660038][T31325] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.626202][T14696] bond1 (unregistering): (slave gretap0): Releasing active interface
[  334.648444][T14696] bond3 (unregistering): (slave gretap1): Releasing active interface
[  334.695232][T14696] bond4 (unregistering): (slave bridge0): Releasing active interface
[  334.742586][T14696] $Hÿ (unregistering): (slave team0): Releasing backup interface
[  334.765841][T14696] team0: left promiscuous mode
[  334.772635][T14696] team0: left allmulticast mode
[  334.777704][T14696] $Hÿ (unregistering): Released all slaves
[  334.786728][T14696] bond0 (unregistering): (slave veth0_to_bond): Releasing backup interface
[  334.797422][T14696] bond0 (unregistering): Released all slaves
[  334.808010][T14696] bond1 (unregistering): Released all slaves
[  334.818418][T14696] bond2 (unregistering): Released all slaves
[  334.827958][T14696] bond3 (unregistering): Released all slaves
[  334.836311][T14696] bond4 (unregistering): Released all slaves
[  334.883136][T14696] tipc: Disabling bearer <udp:syz2>
[  334.888501][T14696] tipc: Disabling bearer <udp:£ >
[  334.893581][T14696] tipc: Left network mode
[  334.906047][T14696] IPVS: stopping backup sync thread 4715 ...
[  334.956532][T14696] batadv_slave_0: left promiscuous mode
[  334.971884][T14696] hsr_slave_0: left promiscuous mode
[  334.986267][T14696] hsr_slave_1: left promiscuous mode
[  335.150269][T31660] netlink: 96 bytes leftover after parsing attributes in process `syz.6.11813'.
[  335.318488][T31691] ==================================================================
[  335.326578][T31691] BUG: KCSAN: data-race in hrtimer_interrupt / print_tickdevice
[  335.334251][T31691] 
[  335.336602][T31691] write to 0xffff888237c17758 of 8 bytes by interrupt on cpu 0:
[  335.344244][T31691]  hrtimer_interrupt+0x7d/0x460
[  335.349137][T31691]  __sysvec_apic_timer_interrupt+0x5c/0x1d0
[  335.355094][T31691]  sysvec_apic_timer_interrupt+0x6f/0x80
[  335.360742][T31691]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  335.366760][T31691]  __sanitizer_cov_trace_pc+0x0/0x70
[  335.372087][T31691]  __netif_receive_skb_list_core+0x12e/0x500
[  335.378077][T31691]  netif_receive_skb_list_internal+0x487/0x600
[  335.384250][T31691]  netif_receive_skb_list+0x31/0x200
[  335.389544][T31691]  bpf_test_run_xdp_live+0xdcb/0xfe0
[  335.394846][T31691]  bpf_prog_test_run_xdp+0x4f5/0x910
[  335.400163][T31691]  bpf_prog_test_run+0x22a/0x390
[  335.405642][T31691]  __sys_bpf+0x3dc/0x790
[  335.409920][T31691]  __x64_sys_bpf+0x41/0x50
[  335.414343][T31691]  x64_sys_call+0x2478/0x2fb0
[  335.419028][T31691]  do_syscall_64+0xd2/0x200
[  335.423534][T31691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.429449][T31691] 
[  335.431778][T31691] read to 0xffff888237c17758 of 8 bytes by task 31691 on cpu 1:
[  335.439419][T31691]  print_tickdevice+0x142/0x340
[  335.444295][T31691]  timer_list_show+0x6c/0x170
[  335.448984][T31691]  seq_read_iter+0x62a/0x940
[  335.453599][T31691]  proc_reg_read_iter+0x10d/0x180
[  335.458658][T31691]  copy_splice_read+0x3c1/0x5f0
[  335.463542][T31691]  splice_direct_to_actor+0x26f/0x680
[  335.468943][T31691]  do_splice_direct+0xda/0x150
[  335.473723][T31691]  do_sendfile+0x380/0x650
[  335.478154][T31691]  __x64_sys_sendfile64+0x105/0x150
[  335.483380][T31691]  x64_sys_call+0xb39/0x2fb0
[  335.487980][T31691]  do_syscall_64+0xd2/0x200
[  335.492493][T31691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.498402][T31691] 
[  335.500729][T31691] value changed: 0x0000004e8c4498d8 -> 0x0000004e8cd1aa80
[  335.507842][T31691] 
[  335.510189][T31691] Reported by Kernel Concurrency Sanitizer on:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  335.516342][T31691] CPU: 1 UID: 0 PID: 31691 Comm: syz.6.11827 Tainted: G        W           6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[  335.530497][T31691] Tainted: [W]=WARN
[  335.534300][T31691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  335.544357][T31691] ==================================================================
[  335.663161][T14696] IPVS: stop unused estimator thread 0...
[  335.847398][T31012] syz_tun (unregistering): left promiscuous mode
[  336.023546][T14736] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  336.035134][T14736] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  336.121288][T14736] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  336.132832][T14736] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  336.205063][T14736] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  336.215428][T14736] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  336.280918][T14736] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  336.292425][T14736] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  336.369277][T14736] bond4 (unregistering): (slave gretap0): Releasing active interface
[  336.382273][T14736] bond6 (unregistering): (slave geneve3): Releasing active interface
[  336.423820][T14736] bond5 (unregistering): (slave bridge1): Releasing active interface
[  336.471677][T14736]  (unregistering): Released all slaves
[  336.479199][T14736] bond1 (unregistering): Released all slaves
[  336.487946][T14736] bond2 (unregistering): Released all slaves
[  336.495945][T14736] bond3 (unregistering): Released all slaves
[  336.504317][T14736] bond0 (unregistering): (slave dummy0): Releasing active interface
[  336.512859][T14736] dummy0: left promiscuous mode
[  336.519522][T14736] bond0 (unregistering): Released all slaves
[  336.528197][T14736] bond4 (unregistering): Released all slaves
[  336.536310][T14736] bond5 (unregistering): Released all slaves
[  336.544303][T14736] bond6 (unregistering): Released all slaves
[  336.586988][T14736] tipc: Disabling bearer <udp:syz2>
[  336.592211][T14736] tipc: Left network mode
[  336.670284][T14696] smc: removing ib device syz2
[  336.854161][T14736] IPVS: stop unused estimator thread 0...
[  336.912492][T14736] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.948977][T14736] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.996154][T14736] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.054070][T14736] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.170763][T14736] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.225820][T14736] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.273055][T14736] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.311030][T14736] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.368365][T14736] netdevsim netdevsim8 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  337.378179][T14736] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.414342][T14736] netdevsim netdevsim8 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  337.424172][T14736] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.462150][T14736] netdevsim netdevsim8 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  337.471982][T14736] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.519134][T14736] netdevsim netdevsim8 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  337.528919][T14736] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.579014][T14736] bridge_slave_1: left allmulticast mode
[  337.584810][T14736] bridge_slave_1: left promiscuous mode
[  337.590431][T14736] bridge0: port 2(bridge_slave_1) entered disabled state
[  337.598093][T14736] bridge_slave_0: left allmulticast mode
[  337.603853][T14736] bridge_slave_0: left promiscuous mode
[  337.609533][T14736] bridge0: port 1(bridge_slave_0) entered disabled state
[  337.757981][T14736] bond0 (unregistering): Released all slaves
[  337.815915][T14736] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  337.825800][T14736] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  337.835193][T14736] bond0 (unregistering): Released all slaves
[  337.856035][T14736] erspan0 (unregistering): left allmulticast mode
[  338.042625][T14736] bond0 (unregistering): Released all slaves
[  338.050815][T14736] bond1 (unregistering): Released all slaves
[  338.058624][T14736] bond2 (unregistering): Released all slaves
[  338.067392][T14736] bond3 (unregistering): Released all slaves
[  338.075401][T14736] bond4 (unregistering): Released all slaves
[  338.083841][T14736] bond5 (unregistering): Released all slaves
[  338.092282][T14736] bond6 (unregistering): Released all slaves
[  338.130824][T14736] tipc: Disabling bearer <udp:syz2>
[  338.136039][T14736] tipc: Left network mode
[  338.188729][T14736] hsr_slave_0: left promiscuous mode
[  338.194691][T14736] hsr_slave_1: left promiscuous mode
[  338.202329][T14736] hsr_slave_0: left promiscuous mode
[  338.208108][T14736] hsr_slave_1: left promiscuous mode
[  338.213954][T14736] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  338.221484][T14736] batman_adv: batadv0: Removing interface: batadv_slave_0
[  338.229120][T14736] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  338.236603][T14736] batman_adv: batadv0: Removing interface: batadv_slave_1
[  338.244585][T14736] hsr_slave_0: left promiscuous mode
[  338.250151][T14736] hsr_slave_1: left promiscuous mode
[  338.263011][T14736] veth1_macvtap: left promiscuous mode
[  338.268598][T14736] veth0_macvtap: left promiscuous mode
[  338.274200][T14736] veth1_vlan: left promiscuous mode
[  338.279460][T14736] veth0_vlan: left promiscuous mode
[  338.285045][T14736] veth1_macvtap: left promiscuous mode
[  338.290559][T14736] veth0_macvtap: left promiscuous mode
[  338.296045][T14736] veth1_vlan: left promiscuous mode
[  338.301544][T14736] veth0_vlan: left promiscuous mode
[  338.307331][T14736] veth1_macvtap: left promiscuous mode
[  338.474369][T14736] team0 (unregistering): Port device team_slave_1 removed
[  338.485112][T14736] team0 (unregistering): Port device team_slave_0 removed
[  338.517955][T14736] pim6reg (unregistering): left allmulticast mode
[  338.545832][T14727] smc: removing ib device syz!