last executing test programs:

4m33.70708135s ago: executing program 32 (id=228):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000008000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x26, &(0x7f0000000000)={0x2})

4m0.003080779s ago: executing program 5 (id=1260):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff})
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000740)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x80d, 0x0, 0x10000000, 0x5, 0x4}, 0x1, r4}}]}, {0x4, 0xa}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x4008001}, 0x0)

3m59.92568687s ago: executing program 5 (id=1264):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELSETELEM={0x2b0, 0xe, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0x4}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xd0, 0x3, 0x0, 0x1, [{0xcc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPRESSIONS={0x8c, 0xb, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_DYNSET_EXPRESSIONS={0x4}, @NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_DYNSET_SREG_DATA={0x8, 0x5, 0x1, 0x0, 0xe}, @NFTA_DYNSET_SET_ID={0x8, 0x2, 0x1, 0x0, 0x1}]}}}, {0x24, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_HASH_OFFSET={0x8}, @NFTA_HASH_LEN={0x8, 0x3, 0x1, 0x0, 0x3}]}}}, {0x28, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x5}]}}}, {0xc, 0x1, 0x0, 0x1, @nat={{0x8}, @void}}]}, @NFTA_SET_ELEM_DATA={0x34, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}]}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x1ac, 0x3, 0x0, 0x1, [{0x188, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x54, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x10, 0x1, "d214fb5dd9bb066f2b3fc295"}]}, @NFTA_SET_ELEM_DATA={0x4}, @NFTA_SET_ELEM_KEY_END={0x124, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x17, 0x1, "af24141cbd00ba834276fafe5a07a029a75f42"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VALUE={0xbf, 0x1, "fe7979d8d72a8aabf33a18849f188a8010c044cafa3725fa44713dd39e8f285171edd587caa978ac0a962d6c94f3cccf0005520259ad03c0e4264e6b5f0a9e223b972037474f0b6f1d2b0dc3f4a760a301adcea2fe7019f9590c0e8c0f78cffb10a0a728f1cbf114e2131a0eef368c9933296ce0408a3f45634613b931991bf363f5babb980a76196ba4e7633fc0233dd695e7d71e352a6d74ad3ef746d4d9e800bcbc3d9238c9d27665b0e813d897f7bbd0e56495642251fe809c"}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}]}, @NFTA_SET_ELEM_FLAGS={0x8}]}, {0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}]}, {0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @queue={{0xa}, @void}}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}]}], {0x14}}, 0x338}}, 0x0)

3m59.88704234s ago: executing program 5 (id=1268):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000440)="d800000018007b7be00212ba0d0505040a003f00000f040b067c55a1bc0009001e0006990300000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b3162700e06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5005ccca262f3d40fad95667e04adcdf63cc1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e07000000", 0xd4}, {&(0x7f0000000100)="d8bcf4de", 0x4}], 0x2, 0x0, 0x0, 0x2663}, 0x0)

3m59.826184681s ago: executing program 5 (id=1270):
mkdir(&(0x7f0000001c00)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f0000000680)='./file0/../file0/../file0/../file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000500)='./file0\x00', 0x0, 0x11080, 0x0)
chroot(&(0x7f0000000040)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='./file0/../file0/../file0/../file0\x00')

3m59.763543422s ago: executing program 5 (id=1272):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2501, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_bp={0x0, 0x8}, 0x390, 0x0, 0x0, 0x7, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x5, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair(0xf, 0x1, 0xd, &(0x7f0000000100))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0b00000000010000000100000900000001"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000002c0), 0x8, r0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x3, r0}, 0x38)

3m59.218288221s ago: executing program 5 (id=1287):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000480)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000005}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x80000, {0x0, 0x0, 0x0, r3, {}, {0xd, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000c061}, 0x400c000)

3m59.202719541s ago: executing program 33 (id=1287):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000480)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000005}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x80000, {0x0, 0x0, 0x0, r3, {}, {0xd, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000c061}, 0x400c000)

3m32.956710007s ago: executing program 6 (id=2170):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b000000000000000000000000800007000000005c25d66308b0fa81f823bacad1c86b85154dc77a7a1a731e4e9537024fa0a13469e85c57bc69058580f0872e819a9e541832044b2c427f65f48349025c25226dac9cdd8b258dd972ef38111c02e0d0b84d786e4e29ed4c0b67dc3bdeffa649e3b4958587e1d8e26afdd35aa07f44e3ab18", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
perf_event_open(0x0, 0x0, 0xd, 0xffffffffffffffff, 0xb)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x85, 0x0, 0x0)

3m31.79952722s ago: executing program 6 (id=2186):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x103, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
close(0x3)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r1, 0x58, &(0x7f00000004c0)={0x0, <r2=>0x0}}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000540)={r2, 0x3, 0x8}, 0xc)
close(0x3)

3m31.777855241s ago: executing program 6 (id=2189):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008051}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x58, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r3, {0x3, 0xf}, {}, {0x3, 0x3}}, [@filter_kind_options=@f_flow={{0x9}, {0x28, 0x2, [@TCA_FLOW_EMATCHES={0x24, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x6, 0x7, 0x4}, {{0x4, 0x1}, {0x3, 0x1, 0x1}}}}]}]}]}}]}, 0x58}}, 0x200400d4)

3m31.696900682s ago: executing program 6 (id=2193):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f0000000680)='./file0/../file0/../file0/../file0\x00', 0x0, 0x1b73404, 0x0)
chroot(&(0x7f0000000040)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='./file0/../file0/../file0/../file0\x00')

3m31.655782473s ago: executing program 6 (id=2194):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000ec0)=@newqdisc={0x50, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{0x3, 0x3, 0x1, 0x3, 0x400, 0x8}, [@TCA_NETEM_DELAY_DIST={0x4}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)

3m31.370736149s ago: executing program 6 (id=2199):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00'/17]}, 0x89)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0x2000)

3m31.370490619s ago: executing program 34 (id=2199):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000040], 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00'/17]}, 0x89)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0x2000)

2m47.882855403s ago: executing program 7 (id=3672):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)

2m47.802197305s ago: executing program 7 (id=3674):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, 0x0, &(0x7f00000005c0)=r1}, 0x20)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r2, 0xffffffffffffffff, 0x0)

2m47.781970016s ago: executing program 7 (id=3675):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000101b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x80000}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x11, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

2m47.664379408s ago: executing program 7 (id=3678):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

2m47.601491759s ago: executing program 7 (id=3681):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0xfe, &(0x7f0000000140)={&(0x7f00000004c0)=@newlink={0x40, 0x10, 0x609, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffa7, 0x10008}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @vti={{0x8}, {0xc, 0x2, 0x0, 0x1, [@vti_common_policy, @IFLA_VTI_REMOTE={0x8, 0x5, @broadcast}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x40}}, 0x0)

2m47.446755302s ago: executing program 7 (id=3693):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x3)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x2)

2m47.403698563s ago: executing program 35 (id=3693):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x3)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x2)

30.217681069s ago: executing program 0 (id=8059):
r0 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x10)
iopl(0x3)

30.122563371s ago: executing program 0 (id=8063):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r2)
sendmsg$IEEE802154_LIST_PHY(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r3, 0x30b, 0x0, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x20000004)

29.856998867s ago: executing program 0 (id=8066):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x14, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

29.856470287s ago: executing program 0 (id=8067):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='mountinfo\x00')
sendfile(r0, r0, &(0x7f0000000000)=0x2eb4, 0x2000007ff)

29.832877327s ago: executing program 0 (id=8069):
msgctl$MSG_STAT(0x0, 0xb, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x4d, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)

29.745397629s ago: executing program 0 (id=8074):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@lazytime}, {@nomblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@quota}, {@quota}]}, 0xff, 0x443, &(0x7f0000000940)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

29.714403359s ago: executing program 36 (id=8074):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@lazytime}, {@nomblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@quota}, {@quota}]}, 0xff, 0x443, &(0x7f0000000940)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

20.454099973s ago: executing program 3 (id=8334):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4)
sendmsg$inet(r4, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)

20.387669744s ago: executing program 3 (id=8337):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff6)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0x4004743d, 0x110e22fff6)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000f80)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
write$cgroup_type(r1, &(0x7f0000000280), 0xfffffeed)

20.250297457s ago: executing program 3 (id=8342):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, 0x0, 0x0)

20.248727988s ago: executing program 3 (id=8344):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x804, &(0x7f0000000440)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRESOCT], 0x1, 0x36e, &(0x7f0000000c00)="$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")
open(0x0, 0x0, 0x40)
prlimit64(0x0, 0xe, 0x0, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
madvise(&(0x7f0000ffe000/0x2000)=nil, 0xffffffffdf001fff, 0x18)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0x1a, r0, 0xc, &(0x7f0000000000))

20.13377114s ago: executing program 3 (id=8348):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x8c000003, 0x0, {[0x3]}}, 0x0, 0x8, &(0x7f0000000440))
r2 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r2, 0x0, 0x400000000000000, 0x7)

19.575137271s ago: executing program 3 (id=8365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xf}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000220000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

19.533485762s ago: executing program 37 (id=8365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xf}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000220000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

3.855731464s ago: executing program 9 (id=8926):
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2000006, &(0x7f0000000840)=ANY=[@ANYBLOB="73686f72746e616d653d6d697865642c757466383d302c696f636861727365743d63703836302c696f636861727365743d6d616363726f617469616e2c756e695f786c6174653d312c747a3d5554432c6e6f6e756d7461696c3d302c756e695f786c6174653d312c696f636861727365743d63703433372c73686f72746e616d653d77696e6e742c726f6469722c73686f72746e616d653d6d697865642c6e6f636173652c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c6572726f72733d72656d6f756e742d726f2c6e6f6e756d7461696c3d302c736d61636b66736465663d757466383d302c64697273796e632c736d61636b66736861743d262c657569643e807d6dc634ae06b292a3825c7626caa45b7a39a81660437a556646a082c54e8cf9c81260f6a760b9f06d5738818ee5a4503b0364b0f4c56abfe2", @ANYRESDEC=0x0, @ANYBLOB=',obj_role=,hash,\x00'], 0x25, 0x34f, &(0x7f00000004c0)="$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")
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000f00)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], &(0x7f0000000040)=""/247, 0x26, 0xf7, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

3.735833926s ago: executing program 9 (id=8927):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
listen(r0, 0x5)
syz_emit_ethernet(0x4a, &(0x7f0000000900)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x25}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0xfffe, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0xfffe}}}}}}}, 0x0)

3.711390286s ago: executing program 9 (id=8929):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18)
getcwd(&(0x7f0000000600)=""/227, 0xe3)

3.687540587s ago: executing program 9 (id=8930):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
pipe2(0x0, 0x0)
epoll_create(0x8)
r2 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f00000001c0)=0x7f, 0x4)
close(r2)

3.667808267s ago: executing program 9 (id=8931):
r0 = gettid()
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
poll(0x0, 0x0, 0xffffffffffbffff8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x18)
tkill(r0, 0x13)

1.340818263s ago: executing program 2 (id=8994):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000006c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e24, @multicast1}, 0x10)
sendto$inet(r0, &(0x7f00000000c0)="8689d46205a34100bf2bbe11a5ce7839edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9ecda75e2a7d49d5cbcb370c4d789390a328ba42c9c60cf2154d1b659aa709e8980a522cfb72f23ad87fb7019706ccae98cfe7c4fd23e8297b8cabc46ede1ac3da78f1b488c6357e7edfcd417df6660af20a54ecdcb02f689ae15ee655d4b7b1ea733e88ee9f53669388dff487c1c49953f3bc142112bd4b582b29b35d43962ed245c2cd5d5df40a3e0ed6beaf3b641e84b0f0dfa121a9efe05269f9f4a0e9bcbf43c7a90a711f453668c730c3badedca687b71a9c27bab9e724cc4a4918713031596ea6fd01124f973f257ccd9665aee7df4a9d64f079d176abc00000000d7af3e2dd4396f72373fb0a787a6129ca41181f5087fb843212550b58e3707d5a0399de36c2503836cbe2133de4f574e9e05c96788b0de1bd13e390445433d96737b964fa8af2ac4b2f0f9390ca93d8d3d810044d024359e067c4553230ab748947d33f8fc115ce9a49e6571c45a05d786cbd49342c236537dbbeec666b07baab917252113a5b9a77283189b518f356debe42d80cf2d0687b9c64d0253a6a09286fded6e4f8557b8fb4f25ca4fb138af8945c74bbc98748eaaa030be5317646f195e6e085ac6ddb29542e3581961259987241f7e7061526a7afec8962e74215fea43703a4e543ee9d1a3c3f5f2a41977ece8fdadcf89ce331ce59bebae5f53513d0e10485d7ddbda60513bf339602510b3a23ea29a0d5d03a61e34d12942ea4a847c884b27b5344a456d02a55f8929cc567e7c792c01fab7a7b32780a14c361000609b817dd91507b04d875279527946fdb8fb92a512485e234d092c28f1d0a0498731ccc0eb10515d510e8945839307b46512ceca6f495fdd2c6ae5eb2ef3b2a40ebdc7edf0048e3fb5e3d97a9ea5113a6b70d20ad5c43f0df95d88c0f121a1884da21a21f0ba47420f8391a97921cc51871dbb272e43710fe71d5e342c3afd10608a8b02f00e8fbd8d570b6faace86c494ecea8913233391e7b7cec3d571bb3032181ed58e1b513e511f79ee562c8cde9b3b74c2e95dcde7fadb5a666bdc0c1684794620ce8cf0c0aee8e90b3ef6e7160d3f055cb4d1ced32e4edc15e7d102952d3237e6c02c591a95a182bf190c0124abc7f1225332ff1c5e1b94e4e9bf02c1a18bd7bfce20707f7298da322560bc1a4cf298d46f5bf8ff41da21e25aa17f65f9ee43ca890b5ef6a3ccf3efedf3ca60a9acef1352ad0c43e6cf375108cf0974ce89a99adba7e6a3f8949dc573440fafe0e3abdd0066057a2d868e8386080f18a421568d8e7a89536a4173861bd55245c8fcf7dcba18edce36d2e85b9630fbc218db9ebd16abb11ac06fdbf2bc3e6394d4c6e7ae71813d30772d487743a2856348fee09989ce03331e7848770fc91e62191c20fe5f4a73c5dae467dd612bdb63b1e50921d38271305d7412103d5a6214d6d534d1d530b9169f882b6926bbd338f0282a8bd9a44603934e5249e83f1d0947b39f82a7843d2b6f796d8abf7ff3e66cfd4519324d71cebbf6580dffc10d555e479e9acaa12c3c59e3732c181aa4223d0fcdac514e9d7c7963c2634964520286b028f60a4ae612b8e6049315139e884cbffd6836253094ad023329183496cf663366ad4d7f7f5f1bd2db9b0d33f106c041fba4494c7da404d45d8955e5459ca4a62862721ec1fa534fd95e262c5814426816e60000000000000000001aa4fb6f40ec24f42f6949cc28d2a0d4eb61cb1664627582d962523586539445b81e9759321652280ecb", 0xffe3, 0x0, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r1 = syz_open_procfs$pagemap(0x0, &(0x7f0000000040))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000140)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000f96000/0x1000)=nil, 0x7ffffffa, &(0x7f0000000080)=[{0xffffffffffffdff6, 0x20006, 0xfffffffffffffffc}], 0x1, 0x6, 0x0, 0x2, 0x7, 0x18})

1.276550984s ago: executing program 2 (id=8996):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x80002, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x4008000, &(0x7f0000000280)={0xa, 0x4e1f, 0x80000, @empty, 0x7}, 0x1c)
sendto$inet6(r1, &(0x7f00000009c0)="c7cfcaaa22e10542fca5c0195350f15147657e0bfc59d383a47190db88690e6fedc3040ab5809ae02a54cd429cc3338c5afa0c9dce3f91950d1f567f358ac21154159130e88cbb6c43197813b2f23f3e442f80877490b393408142ebcfea6821f543e5ee9e27032e2b75d78f1b79f5a6bb6f0645e267770ef7e8f3a92148091217450ce8581e54223eeb6486205a209bf1fe854d211c03f8c3140fc3979d824082990d119473d20e94f253c9621fac339560ae46cb24b88bf2d01559bb658e343257b90f233b81bc5c398be3bbddb23a1e", 0xffd6, 0xc001, 0x0, 0xffffffffffffff0c)
setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000040)=0x3, 0x4)
setsockopt$inet6_udp_int(r1, 0x11, 0x1, &(0x7f0000000080), 0x4)

1.191724336s ago: executing program 2 (id=8998):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r0, &(0x7f0000000340)="04", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0xfffffff9, @rand_addr=' \x01\x00'}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x4}, 0x8)

1.166545346s ago: executing program 8 (id=8999):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f0000000400)=0x13)
poll(&(0x7f00000002c0)=[{r1, 0x400f}], 0x1, 0xe7f5)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000040)={0x3d15, 0x0, 0x0, 0x7, 0x0, "0001000000000000649300"})

1.074253879s ago: executing program 4 (id=9002):
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000000203850000a26939d60000000000000f0800010001"], 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {}, {0x0, 0x5}, {0x9, 0xa}}}, 0x24}}, 0x0)

1.00024857s ago: executing program 4 (id=9003):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x1101, 0x7fff, 0xcd, 0x0, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

949.217551ms ago: executing program 4 (id=9004):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'wg0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b03feff4f00021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

929.519922ms ago: executing program 4 (id=9005):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
utimes(&(0x7f0000000040)='./file0\x00', 0x0)
execve(0x0, 0x0, 0x0)

911.030482ms ago: executing program 4 (id=9006):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x242)
syz_usb_disconnect(r0)
syz_usb_connect(0x4, 0x24, &(0x7f00000000c0)=ANY=[], 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
ioctl$EVIOCRMFF(r0, 0x40095505, 0x0)

754.073995ms ago: executing program 9 (id=9007):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x10)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a90f16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="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", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r2, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}})

587.241478ms ago: executing program 1 (id=9010):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd8073a46b08b94214d816f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb4147000001000000008f2b9000f22425e4097ed62cbc891061017cfa6f6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe68db8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3542646bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0xf00, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000340)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB='&\x00'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
sendmsg$inet(r1, &(0x7f0000000500)={0x0, 0x4003e80, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0)

505.63953ms ago: executing program 1 (id=9011):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x55b21000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)={0x38, r3, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}]}, 0x38}}, 0x8044)

413.520962ms ago: executing program 1 (id=9012):
sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x400c1)
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
close(0x3)

376.735182ms ago: executing program 2 (id=9013):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000540)='\x00', &(0x7f0000001c80)='n', 0x1)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r2)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000040)='syzkaller\x00', &(0x7f0000001140)='\xf1\x95\xb3>-\x8c\xd4\r\x01\xfa\xe2{eED\x0e\xaaPV\x11\xff\xb6j\xd4~6\x82^\x9b b', 0x0)
close(r2)

359.494803ms ago: executing program 2 (id=9014):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001680)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffc01, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001c80)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
symlinkat(0x0, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, 0x0, 0x515a02, 0x52abe154ad664fa4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010007000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000020900020073797a32000000000900010073797a3000000000080005400000001f5c0000000e0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe0}}, 0x0)

357.536283ms ago: executing program 8 (id=9015):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8e7, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffff8}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

324.252984ms ago: executing program 2 (id=9016):
r0 = socket$key(0xf, 0x3, 0x2)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0207e80702"], 0x10}}, 0x40044)
r2 = socket$inet6(0xa, 0x3, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@ipv4={'\x00', '\xff\xff', @local}, @in=@remote, 0x0, 0x57, 0x0, 0x0, 0xa}, {0x8, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x2000000, 0x2}, {0x7, 0x0, 0x4}, 0x1, 0x0, 0x1}, {{@in=@empty, 0x0, 0x6c}, 0xa, @in=@local, 0x3507, 0x1, 0x3, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)

323.657774ms ago: executing program 8 (id=9026):
syz_io_uring_setup(0x3f25, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010700000000000000002000"], 0x1c}, 0x1, 0x0, 0x0, 0x20008041}, 0x0)

295.588504ms ago: executing program 8 (id=9017):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r2}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x400000000000004)

262.597855ms ago: executing program 1 (id=9018):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0), 0x58, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)

241.998125ms ago: executing program 1 (id=9019):
r0 = fsopen(&(0x7f0000000000)='pipefs\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000004c0)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0x0, 0xfffc, 0x360}, 0x8, 0x9, 0x80, 0x0, 0x0, 0x101, 0x0})
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
close_range(r0, 0xffffffffffffffff, 0x0)

214.484436ms ago: executing program 8 (id=9020):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000340)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007bc}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@data_err_ignore}, {@bh}, {@errors_continue}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x18)

212.529956ms ago: executing program 4 (id=9021):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@discard}, {@bh}, {@nomblk_io_submit}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
write$cgroup_int(r2, 0x0, 0x0)

149.708937ms ago: executing program 1 (id=9022):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b0000000000000000000000008000000000", @ANYBLOB="00007fff", @ANYRES32=0x0, @ANYBLOB], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, @perf_config_ext, 0x0, 0x4}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth0_vlan\x00', 0x800})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
socketpair(0xf, 0x3, 0x2, &(0x7f00000001c0))

0s ago: executing program 8 (id=9023):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r2 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
close(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)

kernel console output (not intermixed with test programs):

noring removed bh option
[  258.086046][T26444] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.7038: corrupted inode contents
[  258.110932][T26444] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm syz.3.7038: mark_inode_dirty error
[  258.126306][T26444] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.7038: corrupted inode contents
[  258.141580][T26447] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.173925][T26444] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.7038: mark_inode_dirty error
[  258.205014][T26444] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.7038: mark inode dirty (error -117)
[  258.217366][T26447] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4113: comm syz.8.7048: Allocating blocks 497-513 which overlap fs metadata
[  258.218231][T26444] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  258.311725][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.325044][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.346675][T26468] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7053'.
[  258.384155][T26485] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  258.416292][T26485] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  258.435111][T26492] macvlan2: entered promiscuous mode
[  258.440547][T26492] macvlan2: entered allmulticast mode
[  258.452412][T26485] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  258.456264][T26492] bond0: entered promiscuous mode
[  258.462023][T26485] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  258.466633][T26492] bond_slave_0: entered promiscuous mode
[  258.480261][T26492] bond_slave_1: entered promiscuous mode
[  258.486251][T26492] dummy0: entered promiscuous mode
[  258.489107][T26503] loop8: detected capacity change from 0 to 1024
[  258.492919][T26492] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  258.498741][T26503] EXT4-fs: Ignoring removed nobh option
[  258.511236][T26492] bond0: left promiscuous mode
[  258.516079][T26492] bond_slave_0: left promiscuous mode
[  258.517897][T26503] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.521589][T26492] bond_slave_1: left promiscuous mode
[  258.544054][T26492] dummy0: left promiscuous mode
[  258.564237][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.629290][T26526] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7062'.
[  258.638859][T26526] netlink: 12 bytes leftover after parsing attributes in process `syz.8.7062'.
[  258.693974][T26536] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7067'.
[  258.763449][T26541] lo speed is unknown, defaulting to 1000
[  258.889147][T26570] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=26570 comm=syz.0.7072
[  259.028704][T26588] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7080'.
[  259.078553][T26599] pim6reg1: entered promiscuous mode
[  259.084092][T26599] pim6reg1: entered allmulticast mode
[  259.095936][T26603] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7083'.
[  259.102352][T26607] loop3: detected capacity change from 0 to 512
[  259.141948][T26611] netlink: 68 bytes leftover after parsing attributes in process `+}[@'.
[  259.220458][T26607] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.277272][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.530301][   T29] kauditd_printk_skb: 112 callbacks suppressed
[  259.530318][   T29] audit: type=1326 audit(267.091:8792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.577972][   T29] audit: type=1326 audit(267.133:8793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.600870][   T29] audit: type=1326 audit(267.133:8794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.623805][   T29] audit: type=1326 audit(267.133:8795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.649790][   T29] audit: type=1326 audit(267.133:8796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.672864][   T29] audit: type=1326 audit(267.133:8797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.695863][   T29] audit: type=1326 audit(267.133:8798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.718927][   T29] audit: type=1326 audit(267.133:8799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.741999][   T29] audit: type=1326 audit(267.133:8800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26670 comm="syz.3.7093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  259.853057][T26703] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7100'.
[  259.888469][T26703] netlink: 'syz.3.7100': attribute type 6 has an invalid length.
[  260.316848][T26747] syzkaller0: entered promiscuous mode
[  260.316873][T26747] syzkaller0: entered allmulticast mode
[  260.591041][T26789] pim6reg1: entered promiscuous mode
[  260.591068][T26789] pim6reg1: entered allmulticast mode
[  260.775748][T26812] macvlan2: entered promiscuous mode
[  260.781179][T26812] macvlan2: entered allmulticast mode
[  260.789294][T26812] bond0: entered promiscuous mode
[  260.799085][T26812] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  260.813175][T26812] bond0: left promiscuous mode
[  261.487181][   T29] audit: type=1326 audit(269.163:8801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26843 comm="syz.3.7121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc870e929 code=0x7ffc0000
[  261.599571][T26850] lo speed is unknown, defaulting to 1000
[  261.684484][T26899] serio: Serial port ttyS3
[  261.785179][T26910] tipc: Started in network mode
[  261.790940][T26910] tipc: Node identity 7f000001, cluster identity 4711
[  261.821231][T26910] tipc: Enabled bearer <udp:syz2>, priority 10
[  261.895794][T26925] tipc: New replicast peer: 255.255.255.83
[  261.902455][T26925] tipc: Enabled bearer <udp:�>, priority 10
[  261.908663][T26926] pim6reg1: entered promiscuous mode
[  261.914230][T26926] pim6reg1: entered allmulticast mode
[  261.943436][T26932] __nla_validate_parse: 3 callbacks suppressed
[  261.943455][T26932] netlink: 96 bytes leftover after parsing attributes in process `syz.1.7142'.
[  261.982855][T26937] macvlan2: entered promiscuous mode
[  261.989013][T26937] macvlan2: entered allmulticast mode
[  262.004581][T26937] bond0: entered promiscuous mode
[  262.010080][T26937] dummy0: entered promiscuous mode
[  262.016656][T26937] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  262.027427][T26937] bond0: left promiscuous mode
[  262.034159][T26937] dummy0: left promiscuous mode
[  262.056172][T26942] lo speed is unknown, defaulting to 1000
[  262.121988][T26961] loop3: detected capacity change from 0 to 512
[  262.130079][T26961] /dev/loop3: Can't open blockdev
[  262.231199][T26982] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7151'.
[  262.248122][T26984] loop3: detected capacity change from 0 to 512
[  262.257410][T26984] EXT4-fs: Ignoring removed orlov option
[  262.266765][T26984] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.7152: casefold flag without casefold feature
[  262.280216][T26984] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.7152: couldn't read orphan inode 15 (err -117)
[  262.293143][T26984] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  262.307481][T26984] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.344581][T27008] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7155'.
[  262.359482][T27008] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  262.368294][T27008] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  262.377261][T27008] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  262.386099][T27008] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  262.395932][T27008] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  262.404957][T27008] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  262.414663][T27008] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  262.423621][T27008] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  262.449064][T27013] lo speed is unknown, defaulting to 1000
[  262.511909][T27033] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7157'.
[  262.531032][T27033] vcan0: entered promiscuous mode
[  262.536284][T27033] vcan0: entered allmulticast mode
[  262.626417][T27048] macvlan2: entered promiscuous mode
[  262.631810][T27048] macvlan2: entered allmulticast mode
[  262.638219][T27048] bond0: entered promiscuous mode
[  262.644112][T27048] �: entered promiscuous mode
[  262.649136][T27048] bond_slave_1: entered promiscuous mode
[  262.669307][T27048] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  262.683275][T27048] bond0: left promiscuous mode
[  262.688352][T27048] �: left promiscuous mode
[  262.693018][T27048] bond_slave_1: left promiscuous mode
[  262.707541][T27061] netlink: 96 bytes leftover after parsing attributes in process `syz.4.7166'.
[  262.726765][T27059] lo speed is unknown, defaulting to 1000
[  262.815694][T27089] netlink: 'syz.8.7172': attribute type 4 has an invalid length.
[  262.830910][T27097] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  262.840783][T27097] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  262.850927][T27089] netlink: 'syz.8.7172': attribute type 4 has an invalid length.
[  262.853352][T27097] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  262.872440][T27097] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  262.876515][    T9] tipc: Node number set to 2130706433
[  262.893304][T27103] loop3: detected capacity change from 0 to 512
[  262.908421][T27103] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  262.927054][T27103] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.7183: corrupted inode contents
[  262.948025][T27103] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.7183: mark_inode_dirty error
[  262.959979][T27112] netlink: 16402 bytes leftover after parsing attributes in process `syz.8.7174'.
[  262.961330][T27103] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.7183: corrupted inode contents
[  262.970293][T27106] netlink: 16402 bytes leftover after parsing attributes in process `syz.8.7174'.
[  262.983450][T27103] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.7183: mark_inode_dirty error
[  263.085237][T27122] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7178'.
[  263.197531][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.213290][T27137] macvlan2: entered promiscuous mode
[  263.218917][T27137] macvlan2: entered allmulticast mode
[  263.224977][T27137] bond0: entered promiscuous mode
[  263.231432][T27137] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  263.242524][T27137] bond0: left promiscuous mode
[  263.312013][T27153] lo speed is unknown, defaulting to 1000
[  263.407213][T27167] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7188'.
[  263.430494][T27187] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7191'.
[  263.533015][T27195] lo speed is unknown, defaulting to 1000
[  263.835986][ T6994] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=6994 comm=kworker/0:14
[  263.895925][T27255] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  263.960107][T27270] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  263.990363][T27270] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  264.198870][T27298] wireguard1: entered promiscuous mode
[  264.204512][T27298] wireguard1: entered allmulticast mode
[  264.210475][T27299] loop8: detected capacity change from 0 to 2048
[  264.217520][T27299] EXT4-fs: Ignoring removed bh option
[  264.241176][T27299] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  264.367401][T27326] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  264.367401][T27326]    program syz.4.7232 not setting count and/or reply_len properly
[  264.632698][ T9972] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  264.650449][ T9972] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  264.662917][ T9972] EXT4-fs (loop8): This should not happen!! Data will be lost
[  264.662917][ T9972] 
[  264.672704][ T9972] EXT4-fs (loop8): Total free blocks count 0
[  264.678762][ T9972] EXT4-fs (loop8): Free/Dirty block details
[  264.684719][ T9972] EXT4-fs (loop8): free_blocks=2415919104
[  264.690586][ T9972] EXT4-fs (loop8): dirty_blocks=8224
[  264.695955][ T9972] EXT4-fs (loop8): Block reservation details
[  264.702101][ T9972] EXT4-fs (loop8): i_reserved_data_blocks=514
[  264.713776][ T9972] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  264.868218][T27360] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  264.876954][T27360] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  264.910136][T27360] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  264.920077][T27360] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  265.045148][   T29] kauditd_printk_skb: 77 callbacks suppressed
[  265.045166][   T29] audit: type=1400 audit(272.926:8879): avc:  denied  { create } for  pid=27384 comm="syz.0.7250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  265.098532][   T29] audit: type=1400 audit(272.926:8880): avc:  denied  { write } for  pid=27384 comm="syz.0.7250" path="socket:[63790]" dev="sockfs" ino=63790 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  265.147373][T27405] vlan2: entered allmulticast mode
[  265.153107][T27405] dummy0: entered allmulticast mode
[  265.187339][T27413] loop3: detected capacity change from 0 to 1024
[  265.216754][T27413] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  265.241158][T27418] lo speed is unknown, defaulting to 1000
[  265.254767][T27413] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  265.281340][T27413] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  265.293788][T27413] EXT4-fs (loop3): This should not happen!! Data will be lost
[  265.293788][T27413] 
[  265.303571][T27413] EXT4-fs (loop3): Total free blocks count 0
[  265.309666][T27413] EXT4-fs (loop3): Free/Dirty block details
[  265.315619][T27413] EXT4-fs (loop3): free_blocks=4293918720
[  265.321487][T27413] EXT4-fs (loop3): dirty_blocks=16
[  265.326678][T27413] EXT4-fs (loop3): Block reservation details
[  265.332821][T27413] EXT4-fs (loop3): i_reserved_data_blocks=1
[  265.354999][T27431] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28
[  265.608018][T27476] loop3: detected capacity change from 0 to 512
[  265.624618][T27476] EXT4-fs: quotafile must be on filesystem root
[  265.804276][T27509] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  265.819885][   T29] audit: type=1400 audit(273.686:8881): avc:  denied  { create } for  pid=27505 comm="syz.0.7287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  265.832181][T27509] SELinux: failed to load policy
[  265.855584][T27501] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.911751][T27517] vlan0: entered allmulticast mode
[  265.918832][T27517] dummy0: entered allmulticast mode
[  265.930426][T27501] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.983824][T27501] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.035468][T27537] syzkaller1: entered promiscuous mode
[  266.041186][T27537] syzkaller1: entered allmulticast mode
[  266.051962][T27501] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.108526][T27501] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  266.120243][   T29] audit: type=1400 audit(274.056:8882): avc:  denied  { associate } for  pid=27554 comm="syz.4.7297" name="0" dev="devpts" ino=3 scontext=system_u:object_r:mouse_device_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  266.155611][T27501] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  266.178953][   T29] audit: type=1326 audit(274.119:8883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27560 comm="syz.3.7299" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1fc870e929 code=0x0
[  266.179598][T27501] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  266.215235][T27501] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  266.240237][T27567] xt_cluster: you have exceeded the maximum number of cluster nodes (514 > 32)
[  266.290839][   T29] audit: type=1326 audit(274.236:8884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27573 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27e615e929 code=0x7ffc0000
[  266.337981][   T29] audit: type=1326 audit(274.267:8885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27573 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f27e615e929 code=0x7ffc0000
[  266.361024][   T29] audit: type=1326 audit(274.267:8886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27573 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27e615e929 code=0x7ffc0000
[  266.384334][   T29] audit: type=1326 audit(274.267:8887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27573 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27e615e929 code=0x7ffc0000
[  266.407261][   T29] audit: type=1326 audit(274.267:8888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27573 comm="syz.1.7304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f27e615e929 code=0x7ffc0000
[  266.564121][T27588] syzkaller0: entered promiscuous mode
[  266.570507][T27588] syzkaller0: entered allmulticast mode
[  267.117098][T27643] loop8: detected capacity change from 0 to 512
[  267.123770][T27643] EXT4-fs: Ignoring removed nobh option
[  267.151077][T27643] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #3: comm syz.8.7331: corrupted inode contents
[  267.169238][T27643] EXT4-fs error (device loop8): ext4_dirty_inode:6459: inode #3: comm syz.8.7331: mark_inode_dirty error
[  267.189320][T27643] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #3: comm syz.8.7331: corrupted inode contents
[  267.211156][T27643] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #3: comm syz.8.7331: mark_inode_dirty error
[  267.224550][T27643] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.7331: Failed to acquire dquot type 0
[  267.237891][T27643] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #16: comm syz.8.7331: corrupted inode contents
[  267.251659][T27643] EXT4-fs error (device loop8): ext4_dirty_inode:6459: inode #16: comm syz.8.7331: mark_inode_dirty error
[  267.263733][T27643] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #16: comm syz.8.7331: corrupted inode contents
[  267.294549][T27643] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #16: comm syz.8.7331: mark_inode_dirty error
[  267.307212][T27643] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #16: comm syz.8.7331: corrupted inode contents
[  267.321625][T27643] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem
[  267.331633][T27643] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #16: comm syz.8.7331: corrupted inode contents
[  267.347768][T27643] EXT4-fs error (device loop8): ext4_truncate:4597: inode #16: comm syz.8.7331: mark_inode_dirty error
[  267.359456][T27643] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem
[  267.370871][T27643] EXT4-fs (loop8): 1 truncate cleaned up
[  267.378775][T27643] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  267.460062][T27676] loop3: detected capacity change from 0 to 2048
[  267.467426][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.467559][T27676] EXT4-fs: Ignoring removed bh option
[  267.489058][T27676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  267.634216][T27696] veth1_to_bond: entered allmulticast mode
[  267.669857][T27696] veth1_to_bond: entered promiscuous mode
[  267.676616][T27696] veth1_to_bond: left promiscuous mode
[  267.682233][T27696] veth1_to_bond: left allmulticast mode
[  267.753546][T27704] 9pnet_fd: p9_fd_create_tcp (27704): problem connecting socket to 127.0.0.1
[  267.784979][T27706] __nla_validate_parse: 18 callbacks suppressed
[  267.784996][T27706] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7351'.
[  267.827228][T27706] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7351'.
[  267.938634][ T9972] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  267.975231][ T9972] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  267.988382][ T9972] EXT4-fs (loop3): This should not happen!! Data will be lost
[  267.988382][ T9972] 
[  267.998281][ T9972] EXT4-fs (loop3): Total free blocks count 0
[  268.004339][ T9972] EXT4-fs (loop3): Free/Dirty block details
[  268.004939][T27721] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  268.010354][ T9972] EXT4-fs (loop3): free_blocks=2415919104
[  268.025367][ T9972] EXT4-fs (loop3): dirty_blocks=8224
[  268.030688][ T9972] EXT4-fs (loop3): Block reservation details
[  268.036799][ T9972] EXT4-fs (loop3): i_reserved_data_blocks=514
[  268.050171][ T9972] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  268.136493][T27729] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7359'.
[  268.180658][T27745] ALSA: seq fatal error: cannot create timer (-22)
[  268.194033][T27729] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7359'.
[  268.292615][T27762] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7364'.
[  268.315729][T27762] netlink: 16 bytes leftover after parsing attributes in process `syz.8.7364'.
[  268.595626][T27788] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  268.602914][T27788] IPv6: NLM_F_CREATE should be set when creating new route
[  268.653381][T27800] xt_cluster: you have exceeded the maximum number of cluster nodes (514 > 32)
[  268.994581][T27844] xt_cluster: you have exceeded the maximum number of cluster nodes (514 > 32)
[  269.876729][T27881] SELinux: failed to load policy
[  269.988594][T27890] loop8: detected capacity change from 0 to 256
[  270.226146][T27918] loop8: detected capacity change from 0 to 512
[  270.264893][T27918] EXT4-fs (loop8): can't mount with data_err=abort, fs mounted w/o journal
[  270.301926][   T29] kauditd_printk_skb: 24 callbacks suppressed
[  270.302001][   T29] audit: type=1400 audit(278.471:8911): avc:  denied  { getopt } for  pid=27917 comm="syz.8.7412" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  270.337637][   T29] audit: type=1400 audit(278.471:8912): avc:  denied  { getopt } for  pid=27917 comm="syz.8.7412" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  270.364330][T27938] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7418'.
[  270.385933][T27945] pimreg: entered allmulticast mode
[  270.394381][T27945] pimreg: left allmulticast mode
[  270.451766][   T29] audit: type=1326 audit(278.630:8913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27952 comm="syz.8.7423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  270.475762][   T29] audit: type=1326 audit(278.630:8914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27952 comm="syz.8.7423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  270.499704][   T29] audit: type=1326 audit(278.630:8915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27952 comm="syz.8.7423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  270.522549][   T29] audit: type=1326 audit(278.630:8916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27952 comm="syz.8.7423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  270.546414][   T29] audit: type=1326 audit(278.630:8917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27952 comm="syz.8.7423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  270.569755][   T29] audit: type=1326 audit(278.630:8918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27952 comm="syz.8.7423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  270.593327][   T29] audit: type=1326 audit(278.630:8919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27952 comm="syz.8.7423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  270.617180][   T29] audit: type=1326 audit(278.630:8920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27952 comm="syz.8.7423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  270.757253][T27977] random: crng reseeded on system resumption
[  270.820914][T27980] wg2: entered promiscuous mode
[  270.825865][T27980] wg2: entered allmulticast mode
[  270.883353][T27986] loop8: detected capacity change from 0 to 128
[  271.084605][T27997] loop8: detected capacity change from 0 to 128
[  271.103200][T27997] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  271.187135][T14248] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  271.316180][T28021] netlink: 2036 bytes leftover after parsing attributes in process `syz.4.7446'.
[  271.326232][T28021] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7446'.
[  271.618117][T28038] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  271.636564][T28038] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  271.684646][T28046] loop3: detected capacity change from 0 to 128
[  271.708102][T28046] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  271.806373][ T3307] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  272.027067][T28059] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=28059 comm=syz.3.7459
[  272.422161][T28074] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7465'.
[  272.463714][T28077] wireguard1: entered promiscuous mode
[  272.469264][T28077] wireguard1: entered allmulticast mode
[  272.650474][T28072] lo speed is unknown, defaulting to 1000
[  273.604058][T28225] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7503'.
[  273.892992][T28278] all: renamed from bridge_slave_0
[  273.959571][T28285] ALSA: seq fatal error: cannot create timer (-16)
[  273.989494][T28292] loop3: detected capacity change from 0 to 512
[  273.996787][T28292] EXT4-fs: Ignoring removed orlov option
[  274.026563][T28292] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  274.048994][T28292] EXT4-fs (loop3): orphan cleanup on readonly fs
[  274.068647][T28292] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.7523: bg 0: block 248: padding at end of block bitmap is not set
[  274.092624][T28292] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.7523: Failed to acquire dquot type 1
[  274.107706][T28292] EXT4-fs (loop3): 1 truncate cleaned up
[  274.115665][T28292] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  274.156326][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.165589][T28273] lo speed is unknown, defaulting to 1000
[  274.340919][T28332] lo speed is unknown, defaulting to 1000
[  274.378345][T28336] loop3: detected capacity change from 0 to 1024
[  274.386361][T28336] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  274.397594][T28336] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  274.408634][T28336] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  274.421229][T28336] JBD2: no valid journal superblock found
[  274.427065][T28336] EXT4-fs (loop3): Could not load journal inode
[  274.790005][T28385] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.814863][T28382] hub 9-0:1.0: USB hub found
[  274.820610][T28382] hub 9-0:1.0: 8 ports detected
[  274.835515][T28385] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.901990][T28406] netlink: 14 bytes leftover after parsing attributes in process `syz.8.7546'.
[  274.913036][T28385] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.929824][T28406] hsr_slave_0: left promiscuous mode
[  274.935772][T28406] hsr_slave_1: left promiscuous mode
[  274.987611][T28385] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  275.093758][T28385] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  275.119760][T28385] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  275.130698][   T29] kauditd_printk_skb: 76 callbacks suppressed
[  275.130716][   T29] audit: type=1400 audit(283.571:8995): avc:  denied  { create } for  pid=28428 comm="syz.0.7551" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  275.163688][T28385] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  275.179604][T28385] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  275.190887][   T29] audit: type=1326 audit(283.634:8996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.228061][   T29] audit: type=1326 audit(283.666:8997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.251150][   T29] audit: type=1326 audit(283.666:8998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.274093][   T29] audit: type=1326 audit(283.666:8999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.297208][   T29] audit: type=1326 audit(283.666:9000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.320311][   T29] audit: type=1326 audit(283.666:9001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.343156][   T29] audit: type=1326 audit(283.666:9002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.366091][   T29] audit: type=1326 audit(283.666:9003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.389025][   T29] audit: type=1326 audit(283.666:9004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28428 comm="syz.0.7551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff9d394e929 code=0x7ffc0000
[  275.490834][T28441] lo speed is unknown, defaulting to 1000
[  275.506187][T28451] loop8: detected capacity change from 0 to 1024
[  275.565821][T28451] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  275.584139][T28451] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  275.595238][T28451] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  275.651541][T28463] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7557'.
[  275.664266][T28451] JBD2: no valid journal superblock found
[  275.670833][T28451] EXT4-fs (loop8): Could not load journal inode
[  275.686965][T28463] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7557'.
[  275.757542][T28481] loop3: detected capacity change from 0 to 1024
[  275.802369][T28481] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  275.848223][T28481] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.7559: Allocating blocks 449-513 which overlap fs metadata
[  275.873284][T28454] EXT4-fs (loop3): pa ffff888106a1ae00: logic 48, phys. 177, len 21
[  275.881426][T28454] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[  275.912795][T28488] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7563'.
[  275.916675][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.987263][T28501] macvlan2: entered promiscuous mode
[  275.992691][T28501] bridge0: entered promiscuous mode
[  276.011843][T28501] bridge0: port 1(macvlan2) entered blocking state
[  276.018467][T28501] bridge0: port 1(macvlan2) entered disabled state
[  276.026354][T28501] macvlan2: entered allmulticast mode
[  276.031951][T28501] bridge0: entered allmulticast mode
[  276.039791][T28501] macvlan2: left allmulticast mode
[  276.045046][T28501] bridge0: left allmulticast mode
[  276.064883][T28501] bridge0: left promiscuous mode
[  276.078153][T28507] wireguard2: entered promiscuous mode
[  276.083716][T28507] wireguard2: entered allmulticast mode
[  276.083843][T28509] loop8: detected capacity change from 0 to 512
[  276.099399][T28509] EXT4-fs: Ignoring removed orlov option
[  276.105735][T28509] EXT4-fs: inline encryption not supported
[  276.114400][T28509] EXT4-fs error (device loop8): ext4_iget_extra_inode:5035: inode #15: comm syz.8.7568: corrupted in-inode xattr: invalid ea_ino
[  276.128227][T28509] EXT4-fs error (device loop8): ext4_orphan_get:1398: comm syz.8.7568: couldn't read orphan inode 15 (err -117)
[  276.148299][T28509] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.165259][T28509] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.7568: bg 0: block 411: padding at end of block bitmap is not set
[  276.181386][T28509] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  276.198319][T28509] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #13: comm syz.8.7568: invalid indirect mapped block 234881024 (level 0)
[  276.241763][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.346296][T28547] block device autoloading is deprecated and will be removed.
[  276.421740][T28559] loop3: detected capacity change from 0 to 512
[  276.436633][T28559] EXT4-fs: Ignoring removed orlov option
[  276.454269][T28557] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  276.455032][T28559] EXT4-fs: inline encryption not supported
[  276.477528][T28557] vhci_hcd: default hub control req: 6001 v8001 i0001 l0
[  276.492978][T28559] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.7584: corrupted in-inode xattr: invalid ea_ino
[  276.535266][T28559] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.7584: couldn't read orphan inode 15 (err -117)
[  276.565156][T28559] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.604004][T28559] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.7584: bg 0: block 411: padding at end of block bitmap is not set
[  276.665113][T28579] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7592'.
[  276.680001][T28559] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  276.692443][T28559] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.7584: invalid indirect mapped block 234881024 (level 0)
[  276.749834][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.028426][T28632] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7609'.
[  277.232043][T28629] lo speed is unknown, defaulting to 1000
[  277.442541][T28661] veth1_to_bond: entered allmulticast mode
[  277.462764][T28661] veth1_to_bond: entered promiscuous mode
[  277.472937][T28661] veth1_to_bond: left promiscuous mode
[  277.478654][T28661] veth1_to_bond: left allmulticast mode
[  277.706853][T28669] loop8: detected capacity change from 0 to 512
[  277.719790][T28669] EXT4-fs: Ignoring removed orlov option
[  277.726013][T28669] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  277.736595][T28669] EXT4-fs (loop8): orphan cleanup on readonly fs
[  277.743640][T28669] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.7618: bg 0: block 248: padding at end of block bitmap is not set
[  277.760126][T28669] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.7618: Failed to acquire dquot type 1
[  277.774715][T28669] EXT4-fs (loop8): 1 truncate cleaned up
[  277.781904][T28675] netlink: 96 bytes leftover after parsing attributes in process `syz.4.7621'.
[  277.794055][T28669] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  277.898490][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.081711][T28706] wireguard0: entered promiscuous mode
[  278.087405][T28706] wireguard0: entered allmulticast mode
[  278.180976][T28718] lo speed is unknown, defaulting to 1000
[  278.250587][T28743] veth1_to_bond: entered allmulticast mode
[  278.269281][T28739] loop8: detected capacity change from 0 to 2048
[  278.278490][T28743] veth1_to_bond: entered promiscuous mode
[  278.308046][T28743] veth1_to_bond: left promiscuous mode
[  278.313772][T28743] veth1_to_bond: left allmulticast mode
[  278.319995][T28739]  loop8: p1 < > p4
[  278.327049][T28739] loop8: p4 size 8388608 extends beyond EOD, truncated
[  278.454576][T28781] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7641'.
[  278.484949][T28785] hub 9-0:1.0: USB hub found
[  278.490047][T28781] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7641'.
[  278.512548][T28785] hub 9-0:1.0: 8 ports detected
[  278.560899][T28788] SELinux: ebitmap: truncated map
[  278.569538][T28788] SELinux: failed to load policy
[  278.578278][T28790] bridge0: entered promiscuous mode
[  278.598380][T28790] macvlan2: entered promiscuous mode
[  278.608981][T28790] bridge0: port 3(macvlan2) entered blocking state
[  278.616383][T28790] bridge0: port 3(macvlan2) entered disabled state
[  278.668803][T28790] macvlan2: entered allmulticast mode
[  278.670048][T28809] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7651'.
[  278.675111][T28790] bridge0: entered allmulticast mode
[  278.691347][T28790] macvlan2: left allmulticast mode
[  278.696578][T28790] bridge0: left allmulticast mode
[  278.712843][T28790] bridge0: left promiscuous mode
[  278.738583][T28811] veth1_to_bond: entered allmulticast mode
[  278.745872][T28814] veth1_to_bond: entered promiscuous mode
[  278.754869][T28811] veth1_to_bond: left promiscuous mode
[  278.761924][T28811] veth1_to_bond: left allmulticast mode
[  278.968271][T28832] loop8: detected capacity change from 0 to 8192
[  279.086055][T28866] bridge0: entered promiscuous mode
[  279.092042][T28866] macvlan2: entered promiscuous mode
[  279.098034][T28866] bridge0: port 1(macvlan2) entered blocking state
[  279.104659][T28866] bridge0: port 1(macvlan2) entered disabled state
[  279.112321][T28866] macvlan2: entered allmulticast mode
[  279.117869][T28866] bridge0: entered allmulticast mode
[  279.123904][T28866] macvlan2: left allmulticast mode
[  279.129108][T28866] bridge0: left allmulticast mode
[  279.157106][T28866] bridge0: left promiscuous mode
[  279.395232][T28901] netlink: 'syz.3.7680': attribute type 39 has an invalid length.
[  279.724409][T28918] hub 9-0:1.0: USB hub found
[  279.731154][T28918] hub 9-0:1.0: 8 ports detected
[  279.783177][T28929] block device autoloading is deprecated and will be removed.
[  279.850223][T28935] wireguard2: entered promiscuous mode
[  279.855996][T28935] wireguard2: entered allmulticast mode
[  279.882619][   T29] kauditd_printk_skb: 228 callbacks suppressed
[  279.882634][   T29] audit: type=1400 audit(288.584:9231): avc:  denied  { unlink } for  pid=6878 comm="syz-executor" name="file0" dev="tmpfs" ino=6474 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  279.919583][   T29] audit: type=1400 audit(288.626:9232): avc:  denied  { read write } for  pid=6878 comm="syz-executor" name="loop0" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  280.059363][T28955] loop0: detected capacity change from 0 to 512
[  280.066517][   T29] audit: type=1400 audit(288.626:9233): avc:  denied  { open } for  pid=6878 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  280.089137][   T29] audit: type=1400 audit(288.626:9234): avc:  denied  { ioctl } for  pid=6878 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=657 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  280.113419][   T29] audit: type=1400 audit(288.753:9235): avc:  denied  { name_bind } for  pid=28951 comm="syz.4.7696" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  280.134692][   T29] audit: type=1400 audit(288.753:9236): avc:  denied  { node_bind } for  pid=28951 comm="syz.4.7696" saddr=224.0.0.2 src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  280.160135][T28955] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  280.173782][T28955] EXT4-fs (loop0): 1 truncate cleaned up
[  280.182864][T28955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  280.202257][   T29] audit: type=1400 audit(288.922:9237): avc:  denied  { mount } for  pid=28954 comm="syz.0.7697" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  280.223701][   T29] audit: type=1400 audit(288.922:9238): avc:  denied  { add_name } for  pid=28954 comm="syz.0.7697" name="blkio.bfq.avg_queue_size" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  280.245585][   T29] audit: type=1400 audit(288.922:9239): avc:  denied  { create } for  pid=28954 comm="syz.0.7697" name="blkio.bfq.avg_queue_size" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  280.386134][ T6878] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  280.400765][   T29] audit: type=1400 audit(288.985:9240): avc:  denied  { read append open } for  pid=28954 comm="syz.0.7697" path="/1244/file1/blkio.bfq.avg_queue_size" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  280.451129][T28969] loop0: detected capacity change from 0 to 2048
[  280.460059][T28966] 9pnet_fd: Insufficient options for proto=fd
[  280.532056][T28979] hub 9-0:1.0: USB hub found
[  280.539396][T28969]  loop0: p1 < > p4
[  280.539888][T28979] hub 9-0:1.0: 8 ports detected
[  280.545062][T28969] loop0: p4 size 8388608 extends beyond EOD, truncated
[  280.581721][T28991] pimreg: entered allmulticast mode
[  280.602254][T28991] pimreg: left allmulticast mode
[  280.650285][T29014] wireguard1: entered promiscuous mode
[  280.656519][T29014] wireguard1: entered allmulticast mode
[  280.750299][T29032] vlan2: entered allmulticast mode
[  281.097968][T29070] netlink: 'syz.0.7734': attribute type 39 has an invalid length.
[  281.203648][T29082] pimreg: entered allmulticast mode
[  281.220993][T29082] pimreg: left allmulticast mode
[  281.904161][T29133] netlink: 2036 bytes leftover after parsing attributes in process `syz.3.7738'.
[  281.913491][T29133] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7738'.
[  282.410702][T29176] vlan0: entered allmulticast mode
[  282.791259][T29201] netlink: 96 bytes leftover after parsing attributes in process `syz.1.7766'.
[  283.065634][T29212] netlink: 'syz.1.7770': attribute type 39 has an invalid length.
[  283.140080][T29223] rdma_op ffff888149e8d980 conn xmit_rdma 0000000000000000
[  283.152775][T29224] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7776'.
[  283.178515][T29226] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  283.187646][T29226] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  283.389426][T29247] netlink: 36 bytes leftover after parsing attributes in process `syz.4.7784'.
[  283.439586][T29249] sd 0:0:1:0: device reset
[  283.473032][T29251] wireguard2: entered promiscuous mode
[  283.478714][T29251] wireguard2: entered allmulticast mode
[  283.517075][T29257] geneve0: entered allmulticast mode
[  283.712448][T29283] netlink: 96 bytes leftover after parsing attributes in process `syz.3.7797'.
[  283.775875][T29293] netlink: 'syz.8.7802': attribute type 10 has an invalid length.
[  283.788354][T29293] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  283.822263][T29295] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7803'.
[  283.836531][T29301] xt_hashlimit: size too large, truncated to 1048576
[  283.899065][T29315] block device autoloading is deprecated and will be removed.
[  284.759514][T29441] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7833'.
[  284.822823][   T29] kauditd_printk_skb: 118 callbacks suppressed
[  284.822855][   T29] audit: type=1400 audit(293.806:9359): avc:  denied  { name_bind } for  pid=29448 comm="syz.1.7835" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  285.007984][T29461] smc: net device bond0 applied user defined pnetid SYZ0
[  285.015814][   T29] audit: type=1400 audit(293.996:9360): avc:  denied  { mount } for  pid=29463 comm="syz.0.7841" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  285.037582][   T29] audit: type=1400 audit(294.006:9361): avc:  denied  { watch } for  pid=29463 comm="syz.0.7841" path="/1275/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  285.063824][   T29] audit: type=1400 audit(294.006:9362): avc:  denied  { mac_admin } for  pid=29463 comm="syz.0.7841" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  285.086334][   T29] audit: type=1400 audit(294.006:9363): avc:  denied  { relabelto } for  pid=29463 comm="syz.0.7841" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  285.096658][T29465] smc: net device bond0 erased user defined pnetid SYZ0
[  285.111981][   T29] audit: type=1400 audit(294.006:9364): avc:  denied  { associate } for  pid=29463 comm="syz.0.7841" name="/" dev="cgroup2" ino=1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[  285.170380][T29469] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  285.178012][T29469] batman_adv: batadv0: Removing interface: batadv_slave_0
[  285.188719][   T29] audit: type=1400 audit(294.186:9365): avc:  denied  { cpu } for  pid=29466 comm="syz.3.7842" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  285.190130][T29469] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  285.216068][T29469] batman_adv: batadv0: Removing interface: batadv_slave_1
[  285.224549][   T29] audit: type=1400 audit(294.228:9366): avc:  denied  { unmount } for  pid=6878 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  285.265434][T29476] xt_cluster: you have exceeded the maximum number of cluster nodes (514 > 32)
[  285.368714][   T29] audit: type=1400 audit(294.375:9367): avc:  denied  { read write } for  pid=29490 comm="syz.3.7852" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  285.392560][   T29] audit: type=1400 audit(294.375:9368): avc:  denied  { open } for  pid=29490 comm="syz.3.7852" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  285.434217][T29495] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7854'.
[  285.463555][T29499] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=29499 comm=syz.3.7856
[  285.657855][T29538] block device autoloading is deprecated and will be removed.
[  285.733837][T29548] netlink: 96 bytes leftover after parsing attributes in process `syz.3.7873'.
[  285.761026][T29554] atomic_op ffff888149e8fd28 conn xmit_atomic 0000000000000000
[  285.863379][T29566] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7880'.
[  285.933566][T29585] netlink: 52 bytes leftover after parsing attributes in process `syz.3.7883'.
[  285.950816][T29587] syzkaller1: entered promiscuous mode
[  285.956564][T29587] syzkaller1: entered allmulticast mode
[  286.429928][T29635] netlink: 'syz.3.7900': attribute type 1 has an invalid length.
[  286.455193][T29633] hub 6-0:1.0: USB hub found
[  286.462228][T29633] hub 6-0:1.0: 8 ports detected
[  286.518421][T29643] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7903'.
[  286.527785][T29643] IPVS: Unknown mcast interface: vcan0
[  286.732810][T29665] loop3: detected capacity change from 0 to 512
[  286.742023][T29665] EXT4-fs: Ignoring removed mblk_io_submit option
[  286.748867][T29665] EXT4-fs: Ignoring removed bh option
[  286.762816][T29665] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  286.810407][T29665] EXT4-fs (loop3): 1 truncate cleaned up
[  286.824684][T29665] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.910976][T29665] Invalid ELF header magic: != ELF
[  287.025884][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.091471][T29702] netlink: 56 bytes leftover after parsing attributes in process `syz.1.7926'.
[  287.530331][T29763] loop3: detected capacity change from 0 to 128
[  287.565250][T29774] program syz.4.7948 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  287.581063][T29776] loop8: detected capacity change from 0 to 512
[  287.597280][T29776] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  287.625438][T29776] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.680735][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.910279][T29826] loop8: detected capacity change from 0 to 1024
[  287.935393][T29826] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.951731][T29828] ref_ctr_offset mismatch. inode: 0x2098 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  287.990890][T29832] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  288.045899][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.186820][T29849] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=29849 comm=syz.4.7975
[  288.337296][T29870] smc: net device bond0 applied user defined pnetid SYZ0
[  288.346790][T29870] smc: net device bond0 erased user defined pnetid SYZ0
[  288.392440][T29881] __nla_validate_parse: 1 callbacks suppressed
[  288.392456][T29881] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7987'.
[  288.416402][T29881] netlink: 12 bytes leftover after parsing attributes in process `syz.8.7987'.
[  288.427958][T29883] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  288.434697][T29883] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  288.442368][T29883] vhci_hcd vhci_hcd.0: Device attached
[  288.453839][T29883] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(5)
[  288.460422][T29883] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  288.468719][T29883] vhci_hcd vhci_hcd.0: Device attached
[  288.483042][T29883] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(7)
[  288.489713][T29883] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  288.498146][T29883] vhci_hcd vhci_hcd.0: Device attached
[  288.534884][T29907] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  288.535747][T29903] syzkaller1: entered promiscuous mode
[  288.548641][T29903] syzkaller1: entered allmulticast mode
[  288.555973][T29883] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(9)
[  288.562803][T29883] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  288.570574][T29883] vhci_hcd vhci_hcd.0: Device attached
[  288.586628][T29883] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  288.595704][T29883] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  288.605108][T29883] vhci_hcd vhci_hcd.0: pdev(3) rhport(7) sockfd(17)
[  288.611792][T29883] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  288.619942][T29883] vhci_hcd vhci_hcd.0: Device attached
[  288.626923][T29894] vhci_hcd: connection closed
[  288.627151][T29886] vhci_hcd: connection closed
[  288.627398][T29911] vhci_hcd: connection closed
[  288.633832][T29908] vhci_hcd: connection closed
[  288.637247][T29896] vhci_hcd: connection closed
[  288.641639][ T9993] vhci_hcd: stop threads
[  288.656076][ T9993] vhci_hcd: release socket
[  288.660596][ T9993] vhci_hcd: disconnect device
[  288.665635][ T9993] vhci_hcd: stop threads
[  288.669909][ T9993] vhci_hcd: release socket
[  288.675138][ T9993] vhci_hcd: disconnect device
[  288.680623][ T9993] vhci_hcd: stop threads
[  288.685159][ T9993] vhci_hcd: release socket
[  288.689647][ T9993] vhci_hcd: disconnect device
[  288.694543][ T6994] usb 7-1: new high-speed USB device number 2 using vhci_hcd
[  288.703088][ T6994] usb 7-1: enqueue for inactive port 0
[  288.708645][ T6994] usb 7-1: enqueue for inactive port 0
[  288.714371][ T6994] usb 7-1: enqueue for inactive port 0
[  288.720314][ T9993] vhci_hcd: stop threads
[  288.724744][ T9993] vhci_hcd: release socket
[  288.729311][ T9993] vhci_hcd: disconnect device
[  288.740687][ T9993] vhci_hcd: stop threads
[  288.745277][ T9993] vhci_hcd: release socket
[  288.749808][ T9993] vhci_hcd: disconnect device
[  288.776885][ T6994] vhci_hcd: vhci_device speed not set
[  289.106307][T29947] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8005'.
[  289.147037][T29957] netlink: 76 bytes leftover after parsing attributes in process `syz.4.8008'.
[  289.206020][T29967] 9pnet: p9_errstr2errno: server reported unknown error �L��	O�!��
[  289.372835][T29987] loop3: detected capacity change from 0 to 1024
[  289.387247][T29987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  289.416206][T29987] EXT4-fs error (device loop3): ext4_map_blocks:816: inode #15: block 3: comm syz.3.8019: lblock 3 mapped to illegal pblock 3 (length 13)
[  289.431913][T29987] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117
[  289.445121][T29987] EXT4-fs (loop3): This should not happen!! Data will be lost
[  289.445121][T29987] 
[  289.490636][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.569129][T30019] netlink: 'syz.1.8030': attribute type 10 has an invalid length.
[  289.592564][ T7006] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  289.612783][   T29] kauditd_printk_skb: 405 callbacks suppressed
[  289.612803][   T29] audit: type=1400 audit(298.857:9774): avc:  denied  { setopt } for  pid=30023 comm="syz.4.8031" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  289.644904][T30028] netlink: 100 bytes leftover after parsing attributes in process `syz.1.8033'.
[  289.657960][T30030] netlink: 'syz.3.8034': attribute type 1 has an invalid length.
[  289.665821][T30030] netlink: 199824 bytes leftover after parsing attributes in process `syz.3.8034'.
[  289.689300][   T29] audit: type=1400 audit(298.931:9775): avc:  denied  { read } for  pid=30023 comm="syz.4.8031" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  289.743050][T30039] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8038'.
[  289.840491][T30055] veth0_vlan: entered allmulticast mode
[  289.858038][T30055] veth0_vlan: left promiscuous mode
[  289.930314][T30055] veth0_vlan: entered promiscuous mode
[  289.968842][T30061] loop3: detected capacity change from 0 to 128
[  289.998183][T30061] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  290.020827][T30069] netlink: 'syz.1.8051': attribute type 10 has an invalid length.
[  290.058545][ T3307] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  290.094895][T30082] netlink: 'syz.3.8054': attribute type 15 has an invalid length.
[  290.133698][   T29] audit: type=1404 audit(299.405:9776): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  290.185214][   T29] audit: type=1400 audit(299.416:9777): avc:  denied  { map_create } for  pid=30087 comm="syz.0.8059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  290.203979][   T29] audit: type=1400 audit(299.416:9778): avc:  denied  { prog_load } for  pid=30087 comm="syz.0.8059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  290.223002][   T29] audit: type=1400 audit(299.427:9779): avc:  denied  { prog_load } for  pid=30087 comm="syz.0.8059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  290.224203][T30093] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8061'.
[  290.242474][   T29] audit: type=1400 audit(299.427:9780): avc:  denied  { prog_load } for  pid=30087 comm="syz.0.8059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  290.269964][   T29] audit: type=1404 audit(299.427:9781): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  290.284423][   T29] audit: type=1400 audit(299.427:9782): avc:  denied  { read } for  pid=30088 comm="syz.3.8058" dev="nsfs" ino=4026532628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  290.305970][   T29] audit: type=1400 audit(299.427:9783): avc:  denied  { open } for  pid=30088 comm="syz.3.8058" path="net:[4026532628]" dev="nsfs" ino=4026532628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  290.362859][T30100] bond0: (slave dummy0): Releasing backup interface
[  290.372482][T30100] bridge_slave_0: left promiscuous mode
[  290.378287][T30100] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.386176][ T6995] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  290.386427][T30100] bridge_slave_1: left allmulticast mode
[  290.400599][T30100] bridge_slave_1: left promiscuous mode
[  290.406676][T30100] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.415723][T30100] bond0: (slave bond_slave_0): Releasing backup interface
[  290.424525][T30100] bond0: (slave bond_slave_1): Releasing backup interface
[  290.432095][ T7007] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  290.442043][T30100] batman_adv: batadv0: Removing interface: batadv_slave_1
[  291.027260][ T9997] bond0 (unregistering): Released all slaves
[  291.037059][ T9997] bond1 (unregistering): Released all slaves
[  291.046851][ T9997] bond2 (unregistering): Released all slaves
[  291.088694][T30134] lo speed is unknown, defaulting to 1000
[  291.104675][ T9997] tipc: Left network mode
[  291.120212][ T9997] IPVS: stopping backup sync thread 16737 ...
[  291.276487][ T9997] hsr_slave_0: left promiscuous mode
[  291.284023][ T9997] hsr_slave_1: left promiscuous mode
[  291.327717][T30199] netlink: 2564 bytes leftover after parsing attributes in process `syz.3.8091'.
[  291.359435][T10003] smc: removing ib device syz!
[  291.549234][T30134] chnl_net:caif_netlink_parms(): no params data found
[  291.786346][T30134] bridge0: port 1(bridge_slave_0) entered blocking state
[  291.793622][T30134] bridge0: port 1(bridge_slave_0) entered disabled state
[  291.810649][T30134] bridge_slave_0: entered allmulticast mode
[  291.826164][T30134] bridge_slave_0: entered promiscuous mode
[  291.837744][T30350] geneve0: entered allmulticast mode
[  291.849554][T30134] bridge0: port 2(bridge_slave_1) entered blocking state
[  291.856758][T30134] bridge0: port 2(bridge_slave_1) entered disabled state
[  291.899559][T30134] bridge_slave_1: entered allmulticast mode
[  291.909749][T30366] sd 0:0:1:0: device reset
[  291.922451][T30134] bridge_slave_1: entered promiscuous mode
[  291.978362][T30134] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  292.024817][T30134] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  292.046011][T30400] 9pnet_fd: Insufficient options for proto=fd
[  292.152457][T30134] team0: Port device team_slave_0 added
[  292.164907][T30134] team0: Port device team_slave_1 added
[  292.231094][T30134] batman_adv: batadv0: Adding interface: batadv_slave_0
[  292.238438][T30134] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  292.265406][T30134] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  292.329083][T30134] batman_adv: batadv0: Adding interface: batadv_slave_1
[  292.336119][T30134] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  292.363047][T30134] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  292.486908][T30134] hsr_slave_0: entered promiscuous mode
[  292.493322][T30134] hsr_slave_1: entered promiscuous mode
[  292.506392][T30134] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  292.519589][T30134] Cannot create hsr debugfs directory
[  292.525235][T30495] smc: net device bond0 applied user defined pnetid SYZ0
[  292.532898][T30495] smc: net device bond0 erased user defined pnetid SYZ0
[  292.645405][T30532] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8115'.
[  292.651761][T30514] vhci_hcd: invalid port number 96
[  292.659825][T30514] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  292.720490][T30569] 9pnet: p9_errstr2errno: server reported unknown error �L��	O�!��
[  292.798726][T30591] netlink: 'syz.8.8121': attribute type 1 has an invalid length.
[  292.806536][T30591] netlink: 'syz.8.8121': attribute type 4 has an invalid length.
[  292.830484][T30134] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  292.851948][T30591] netlink: 'syz.8.8121': attribute type 1 has an invalid length.
[  292.860037][T30591] netlink: 'syz.8.8121': attribute type 4 has an invalid length.
[  292.872540][T30134] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  292.894726][T30134] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  292.921977][T30134] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  292.981350][T30612] loop3: detected capacity change from 0 to 512
[  293.012218][T30612] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  293.084920][T30612] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.110053][T30134] 8021q: adding VLAN 0 to HW filter on device bond0
[  293.123243][T30134] 8021q: adding VLAN 0 to HW filter on device team0
[  293.136152][ T9974] bridge0: port 1(bridge_slave_0) entered blocking state
[  293.143288][ T9974] bridge0: port 1(bridge_slave_0) entered forwarding state
[  293.163020][ T9974] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.170176][ T9974] bridge0: port 2(bridge_slave_1) entered forwarding state
[  293.196370][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.198359][T30134] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  293.289794][T30640] block device autoloading is deprecated and will be removed.
[  293.299524][T30134] 8021q: adding VLAN 0 to HW filter on device batadv0
[  293.583870][T30134] veth0_vlan: entered promiscuous mode
[  293.595382][T30134] veth1_vlan: entered promiscuous mode
[  293.619632][T30134] veth0_macvtap: entered promiscuous mode
[  293.628720][T30134] veth1_macvtap: entered promiscuous mode
[  293.642482][T30134] batman_adv: batadv0: Interface activated: batadv_slave_0
[  293.658071][T30134] batman_adv: batadv0: Interface activated: batadv_slave_1
[  293.668395][T30134] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  293.678751][T30134] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  293.687830][T30134] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  293.696842][T30134] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  293.756612][T30665] __nla_validate_parse: 3 callbacks suppressed
[  293.756631][T30665] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8137'.
[  293.892014][T30681] SELinux:  Context system_u:object_r:systemd_logger_exec_t:s0 is not valid (left unmapped).
[  294.018811][T30689] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8145'.
[  294.027974][T30689] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8145'.
[  294.355874][T30719] loop8: detected capacity change from 0 to 512
[  294.362770][T30719] EXT4-fs: Ignoring removed bh option
[  294.368384][T30719] EXT4-fs: Ignoring removed mblk_io_submit option
[  294.374109][   T29] kauditd_printk_skb: 381 callbacks suppressed
[  294.374129][   T29] audit: type=1326 audit(303.864:10165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd461e158e7 code=0x7ffc0000
[  294.379444][T30719] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  294.381259][   T29] audit: type=1326 audit(303.864:10166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd461dbab19 code=0x7ffc0000
[  294.407361][T30719] EXT4-fs (loop8): 1 truncate cleaned up
[  294.413591][   T29] audit: type=1326 audit(303.864:10167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd461e1e929 code=0x7ffc0000
[  294.421969][   T29] audit: type=1326 audit(303.917:10168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd461e158e7 code=0x7ffc0000
[  294.441018][T30719] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.441708][   T29] audit: type=1326 audit(303.917:10169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd461dbab19 code=0x7ffc0000
[  294.521583][   T29] audit: type=1326 audit(303.917:10170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd461e1e929 code=0x7ffc0000
[  294.544234][   T29] audit: type=1326 audit(303.917:10171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd461e158e7 code=0x7ffc0000
[  294.566705][   T29] audit: type=1326 audit(303.917:10172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd461dbab19 code=0x7ffc0000
[  294.589141][   T29] audit: type=1326 audit(303.917:10173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd461e1e929 code=0x7ffc0000
[  294.611860][   T29] audit: type=1326 audit(304.002:10174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30700 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd461e158e7 code=0x7ffc0000
[  294.614454][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.797259][T30738] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  294.803903][T30738] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  294.812181][T30738] vhci_hcd vhci_hcd.0: Device attached
[  294.821399][T30738] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(5)
[  294.828075][T30738] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  294.835726][T30738] vhci_hcd vhci_hcd.0: Device attached
[  294.850315][T30738] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(7)
[  294.856984][T30738] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  294.864651][T30738] vhci_hcd vhci_hcd.0: Device attached
[  294.879063][T30738] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  294.888208][T30738] vhci_hcd vhci_hcd.0: pdev(1) rhport(4) sockfd(11)
[  294.894919][T30738] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  294.903207][T30738] vhci_hcd vhci_hcd.0: Device attached
[  294.913408][T30738] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  294.922875][T30738] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  294.933192][T30738] vhci_hcd vhci_hcd.0: pdev(1) rhport(7) sockfd(17)
[  294.939859][T30738] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  294.947560][T30738] vhci_hcd vhci_hcd.0: Device attached
[  294.954512][T30753] vhci_hcd: connection closed
[  294.954854][T10007] vhci_hcd: stop threads
[  294.955825][T30745] vhci_hcd: connection closed
[  294.959599][T10007] vhci_hcd: release socket
[  294.959619][T10007] vhci_hcd: disconnect device
[  294.959661][T30751] vhci_hcd: connection closed
[  294.968435][T10007] vhci_hcd: stop threads
[  294.968733][T30743] vhci_hcd: connection closed
[  294.973290][T10007] vhci_hcd: release socket
[  294.973308][T10007] vhci_hcd: disconnect device
[  295.000815][T30739] vhci_hcd: connection closed
[  295.015465][T10007] vhci_hcd: stop threads
[  295.024658][T10007] vhci_hcd: release socket
[  295.029128][T10007] vhci_hcd: disconnect device
[  295.036480][T10007] vhci_hcd: stop threads
[  295.041539][T10007] vhci_hcd: release socket
[  295.046007][T10007] vhci_hcd: disconnect device
[  295.052043][T10007] vhci_hcd: stop threads
[  295.056345][T10007] vhci_hcd: release socket
[  295.060945][T10007] vhci_hcd: disconnect device
[  295.067039][ T6995] usb 3-1: new high-speed USB device number 2 using vhci_hcd
[  295.074487][ T6995] usb 3-1: enqueue for inactive port 0
[  295.080310][ T6995] usb 3-1: enqueue for inactive port 0
[  295.085912][ T6995] usb 3-1: enqueue for inactive port 0
[  295.156547][T30768] bond0: (slave dummy0): Releasing backup interface
[  295.164668][ T6995] vhci_hcd: vhci_device speed not set
[  295.183635][T30768] bridge_slave_0: left promiscuous mode
[  295.189406][T30768] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.201067][T30768] bridge_slave_1: left allmulticast mode
[  295.206795][T30768] bridge_slave_1: left promiscuous mode
[  295.213519][T30768] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.225576][T30768] bond0: (slave 
7
7�): Releasing backup interface
[  295.235825][T30768] bond0: (slave bond_slave_1): Releasing backup interface
[  295.250263][T30768] team0: Port device team_slave_0 removed
[  295.261150][T30768] team0: Port device team_slave_1 removed
[  295.316027][T30776] lo speed is unknown, defaulting to 1000
[  295.515739][T30815] netlink: 4 bytes leftover after parsing attributes in process `syz.8.8180'.
[  295.693307][T30836] netlink: 24 bytes leftover after parsing attributes in process `syz.8.8187'.
[  296.901679][T30938] netlink: 12 bytes leftover after parsing attributes in process `syz.8.8225'.
[  297.158518][T30981] netlink: 'syz.1.8237': attribute type 1 has an invalid length.
[  297.174482][T30981] 8021q: adding VLAN 0 to HW filter on device bond3
[  297.200086][T30981] bond3: (slave veth11): Enslaving as an active interface with a down link
[  297.422095][T31064] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  297.560146][T31079] netlink: 'syz.8.8259': attribute type 10 has an invalid length.
[  297.578347][T31079] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  297.594602][T31079] netlink: 4 bytes leftover after parsing attributes in process `syz.8.8259'.
[  297.609025][T31079] bond0: (slave bridge0): Releasing backup interface
[  297.863394][T31103] loop9: detected capacity change from 0 to 1024
[  297.871318][T31103] EXT4-fs: Ignoring removed nobh option
[  297.877023][T31103] EXT4-fs: Ignoring removed nobh option
[  297.883734][T31103] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  297.895842][T31103] EXT4-fs error (device loop9): ext4_get_journal_inode:5796: comm syz.9.8268: inode #4294967295: comm syz.9.8268: iget: illegal inode #
[  297.910002][T31103] EXT4-fs (loop9): no journal found
[  297.915299][T31103] EXT4-fs (loop9): can't get journal size
[  297.925551][T31103] EXT4-fs (loop9): failed to initialize system zone (-22)
[  297.933456][T31103] EXT4-fs (loop9): mount failed
[  298.017974][T31119] bond4: entered promiscuous mode
[  298.023076][T31119] bond4: entered allmulticast mode
[  298.028647][T31119] 8021q: adding VLAN 0 to HW filter on device bond4
[  298.040088][T31119] bond4 (unregistering): Released all slaves
[  298.371681][T31211] lo speed is unknown, defaulting to 1000
[  298.529217][T31242] tipc: Failed to remove unknown binding: 66,1,1/4:1506850787/1506850789
[  298.676572][T31257] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  298.686038][T31255] loop3: detected capacity change from 0 to 1024
[  298.694796][T31255] EXT4-fs: Ignoring removed nobh option
[  298.701130][T31255] EXT4-fs: Ignoring removed bh option
[  298.722868][T31255] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  298.752160][T31255] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.8292: Allocating blocks 257-513 which overlap fs metadata
[  298.813579][T31272] lo speed is unknown, defaulting to 1000
[  298.816429][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  298.953536][T31320] netlink: 'syz.4.8305': attribute type 1 has an invalid length.
[  298.983978][T31320] 8021q: adding VLAN 0 to HW filter on device bond4
[  299.013450][T31320] bond4: (slave veth11): Enslaving as an active interface with a down link
[  299.048662][T31320] bond4: (slave dummy0): making interface the new active one
[  299.082716][T31320] dummy0: entered promiscuous mode
[  299.110671][T31320] bond4: (slave dummy0): Enslaving as an active interface with an up link
[  299.127719][   T29] kauditd_printk_skb: 295 callbacks suppressed
[  299.127739][   T29] audit: type=1400 audit(308.870:10470): avc:  denied  { write } for  pid=31379 comm="syz.1.8312" path="socket:[72537]" dev="sockfs" ino=72537 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  299.221137][T31390] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8314'.
[  299.270939][   T29] audit: type=1326 audit(309.039:10471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  299.294716][   T29] audit: type=1326 audit(309.039:10472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  299.318604][   T29] audit: type=1326 audit(309.039:10473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  299.342596][   T29] audit: type=1326 audit(309.039:10474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  299.366593][   T29] audit: type=1326 audit(309.039:10475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  299.389661][   T29] audit: type=1326 audit(309.039:10476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  299.413358][   T29] audit: type=1326 audit(309.039:10477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  299.436592][   T29] audit: type=1326 audit(309.039:10478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  299.460403][   T29] audit: type=1326 audit(309.039:10479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31396 comm="syz.8.8318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000
[  299.484618][T31400] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8314'.
[  299.506509][T31402] ref_ctr_offset mismatch. inode: 0x1260 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  299.648998][T31419] netlink: 'syz.9.8325': attribute type 1 has an invalid length.
[  299.842595][T31456] netlink: 'syz.8.8331': attribute type 39 has an invalid length.
[  300.030505][T31481] loop8: detected capacity change from 0 to 128
[  300.108278][T31490] loop3: detected capacity change from 0 to 128
[  300.136911][T31481] bio_check_eod: 7 callbacks suppressed
[  300.136953][T31481] syz.8.8340: attempt to access beyond end of device
[  300.136953][T31481] loop8: rw=0, sector=121, nr_sectors = 128 limit=128
[  300.174218][T10007] kworker/u8:63: attempt to access beyond end of device
[  300.174218][T10007] loop8: rw=1, sector=249, nr_sectors = 792 limit=128
[  300.217869][T31496] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.8338'.
[  300.267281][T31502] pim6reg: entered allmulticast mode
[  300.279417][T31502] pim6reg: left allmulticast mode
[  300.476241][T31526] netlink: 'syz.8.8357': attribute type 1 has an invalid length.
[  300.493870][T31528] bridge0: entered promiscuous mode
[  300.505090][T31528] bridge0: port 3(macsec1) entered blocking state
[  300.511676][T31528] bridge0: port 3(macsec1) entered disabled state
[  300.519687][T31528] macsec1: entered allmulticast mode
[  300.525223][T31528] bridge0: entered allmulticast mode
[  300.531342][T31528] macsec1: left allmulticast mode
[  300.536581][T31528] bridge0: left allmulticast mode
[  300.546632][T31528] bridge0: left promiscuous mode
[  300.623408][T31533] netdevsim netdevsim8 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  300.632540][T31533] netdevsim netdevsim8 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  300.640900][T31533] netdevsim netdevsim8 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  300.649349][T31533] netdevsim netdevsim8 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  300.659637][T31533] bond2: (slave geneve2): making interface the new active one
[  300.668039][T31533] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  301.013212][T31613] loop9: detected capacity change from 0 to 8192
[  301.070887][T31603] lo speed is unknown, defaulting to 1000
[  301.236203][T31603] chnl_net:caif_netlink_parms(): no params data found
[  301.246869][T31688] lo speed is unknown, defaulting to 1000
[  301.322073][T31603] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.329213][T31603] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.336593][T31603] bridge_slave_0: entered allmulticast mode
[  301.345826][T31603] bridge_slave_0: entered promiscuous mode
[  301.355880][T31603] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.363216][T31603] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.370766][T31603] bridge_slave_1: entered allmulticast mode
[  301.377522][T31603] bridge_slave_1: entered promiscuous mode
[  301.405229][T31603] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  301.416008][T31603] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  301.439130][T31603] team0: Port device team_slave_0 added
[  301.446349][T31603] team0: Port device team_slave_1 added
[  301.495260][T31818] syzkaller0: entered promiscuous mode
[  301.500847][T31818] syzkaller0: entered allmulticast mode
[  301.545140][T31603] batman_adv: batadv0: Adding interface: batadv_slave_0
[  301.552311][T31603] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.578496][T31603] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  301.627932][T31603] batman_adv: batadv0: Adding interface: batadv_slave_1
[  301.635109][T31603] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.661214][T31603] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  301.707015][T31603] hsr_slave_0: entered promiscuous mode
[  301.714904][T31603] hsr_slave_1: entered promiscuous mode
[  301.722283][T31603] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  301.731605][T31603] Cannot create hsr debugfs directory
[  301.996020][T32006] ref_ctr increment failed for inode: 0x12a4 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88813762e780
[  302.020102][T32005] uprobe: syz.8.8395:32005 failed to unregister, leaking uprobe
[  302.093124][T31603] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  302.104249][T31603] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  302.115248][T31603] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  302.127298][T31603] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  302.242047][T31603] 8021q: adding VLAN 0 to HW filter on device bond0
[  302.259199][T31603] 8021q: adding VLAN 0 to HW filter on device team0
[  302.294305][ T9976] bridge0: port 1(bridge_slave_0) entered blocking state
[  302.301450][ T9976] bridge0: port 1(bridge_slave_0) entered forwarding state
[  302.342488][ T9976] bridge0: port 2(bridge_slave_1) entered blocking state
[  302.349644][ T9976] bridge0: port 2(bridge_slave_1) entered forwarding state
[  302.475942][T31603] 8021q: adding VLAN 0 to HW filter on device batadv0
[  302.594519][T32062] smc: net device bond0 applied user defined pnetid SYZ0
[  302.606771][T32062] smc: net device bond0 erased user defined pnetid SYZ0
[  302.646454][T31603] veth0_vlan: entered promiscuous mode
[  302.659408][T31603] veth1_vlan: entered promiscuous mode
[  302.681211][T32067] SELinux: ebitmap: truncated map
[  302.688168][T31603] veth0_macvtap: entered promiscuous mode
[  302.697501][T31603] veth1_macvtap: entered promiscuous mode
[  302.702007][T32067] SELinux: failed to load policy
[  302.718355][T32069] netlink: 'syz.1.8407': attribute type 1 has an invalid length.
[  302.722170][T31603] batman_adv: batadv0: Interface activated: batadv_slave_0
[  302.760074][T32104] Cannot find del_set index 0 as target
[  302.761201][T31603] batman_adv: batadv0: Interface activated: batadv_slave_1
[  302.782318][T31603] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  302.791146][T31603] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  302.800025][T31603] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  302.809026][T31603] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  302.827211][T32069] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  302.835713][T32069] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  302.844375][T32069] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  302.853536][T32069] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  302.865208][T32106] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  302.887098][T32069] bond4: (slave geneve2): making interface the new active one
[  302.902203][T32069] bond4: (slave geneve2): Enslaving as an active interface with an up link
[  303.213804][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.221453][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.229048][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.236996][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.244789][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.252569][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.260749][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.268248][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.275671][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.283205][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.290680][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.298170][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.305615][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.313105][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.320582][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.328080][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.342559][T32156] netlink: 'syz.4.8425': attribute type 1 has an invalid length.
[  303.375058][T32156] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  303.383424][T32156] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  303.391866][T32156] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  303.400292][T32156] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  303.426749][T32156] bond5: (slave geneve2): making interface the new active one
[  303.434903][T32156] bond5: (slave geneve2): Enslaving as an active interface with an up link
[  303.460691][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.468363][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.476022][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.483536][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.491378][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.498837][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.506352][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.513789][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.521265][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.528772][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.536217][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.543681][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.551124][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.558607][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.566073][ T7007] hid-generic 0001:0000:0000.000F: unknown main item tag 0x0
[  303.580270][T32212] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.8429'.
[  303.589530][T32212] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8429'.
[  303.602610][ T7007] hid-generic 0001:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  303.752392][T32233] 9pnet: p9_errstr2errno: server reported unknown error 
[  303.778588][T32235] netlink: 'syz.9.8440': attribute type 10 has an invalid length.
[  303.786850][T32235] bridge0: port 2(bridge_slave_1) entered disabled state
[  303.794232][T32235] bridge0: port 1(bridge_slave_0) entered disabled state
[  303.827163][T32240] netlink: 4 bytes leftover after parsing attributes in process `syz.9.8440'.
[  303.843402][T32235] bridge0: port 2(bridge_slave_1) entered blocking state
[  303.850687][T32235] bridge0: port 2(bridge_slave_1) entered forwarding state
[  303.858190][T32235] bridge0: port 1(bridge_slave_0) entered blocking state
[  303.865309][T32235] bridge0: port 1(bridge_slave_0) entered forwarding state
[  303.882720][T32235] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  303.901913][T32240] bridge_slave_1: left allmulticast mode
[  303.907718][T32240] bridge_slave_1: left promiscuous mode
[  303.913416][T32240] bridge0: port 2(bridge_slave_1) entered disabled state
[  303.923371][T32240] bridge_slave_0: left allmulticast mode
[  303.929175][T32240] bridge_slave_0: left promiscuous mode
[  303.935106][T32240] bridge0: port 1(bridge_slave_0) entered disabled state
[  303.951380][T32240] bond0: (slave bridge0): Releasing backup interface
[  303.967112][   T29] kauditd_printk_skb: 97 callbacks suppressed
[  303.967130][   T29] audit: type=1400 audit(313.969:10577): avc:  denied  { ioctl } for  pid=32251 comm="syz.4.8446" path="socket:[75386]" dev="sockfs" ino=75386 ioctlcmd=0x48d4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  304.275828][   T29] audit: type=1400 audit(314.306:10578): avc:  denied  { create } for  pid=32284 comm="syz.8.8455" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  304.303553][   T29] audit: type=1400 audit(314.338:10579): avc:  denied  { ioctl } for  pid=32284 comm="syz.8.8455" path="socket:[75419]" dev="sockfs" ino=75419 ioctlcmd=0x89e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  304.399441][T32295] netlink: 4 bytes leftover after parsing attributes in process `syz.8.8460'.
[  304.489932][T32306] lo speed is unknown, defaulting to 1000
[  304.490298][   T29] audit: type=1326 audit(314.528:10580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32308 comm="syz.8.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  304.520383][   T29] audit: type=1326 audit(314.528:10581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32308 comm="syz.8.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  304.544681][T32309] sd 0:0:1:0: device reset
[  304.550283][   T29] audit: type=1326 audit(314.591:10582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32308 comm="syz.8.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f91f0b1d290 code=0x7ffc0000
[  304.573358][   T29] audit: type=1326 audit(314.591:10583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32308 comm="syz.8.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  304.596447][   T29] audit: type=1326 audit(314.591:10584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32308 comm="syz.8.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  304.620310][   T29] audit: type=1326 audit(314.591:10585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32308 comm="syz.8.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  304.664513][   T29] audit: type=1326 audit(314.591:10586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32308 comm="syz.8.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  304.848508][T32351] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8477'.
[  304.926564][T32356] loop2: detected capacity change from 0 to 512
[  304.961469][T32356] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  305.026011][T32366] netlink: 'syz.4.8480': attribute type 10 has an invalid length.
[  305.035866][T32356] EXT4-fs (loop2): mount failed
[  305.053409][T32366] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  305.090502][T32376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8480'.
[  305.135450][T32376] bond0: (slave bridge0): Releasing backup interface
[  305.170272][T32384] atomic_op ffff88815343cd28 conn xmit_atomic 0000000000000000
[  305.238899][T32394] lo speed is unknown, defaulting to 1000
[  305.239001][T32397] loop8: detected capacity change from 0 to 128
[  305.297996][T32397] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  305.351486][T14248] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  305.473144][T32455] futex_wake_op: syz.9.8506 tries to shift op by -1; fix this program
[  305.571477][T32470] netlink: 24 bytes leftover after parsing attributes in process `syz.8.8512'.
[  305.640777][T32488] loop8: detected capacity change from 0 to 128
[  305.647559][T32488] EXT4-fs: Ignoring removed nobh option
[  305.655725][T32488] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  305.690385][T14248] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  305.889941][T32520] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=32520 comm=syz.4.8527
[  305.902734][T32520] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=32520 comm=syz.4.8527
[  306.191049][T32538] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  306.249504][T32544] sit0: entered allmulticast mode
[  306.287675][T32548] netlink: 'syz.1.8539': attribute type 7 has an invalid length.
[  306.295605][T32548] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8539'.
[  306.318820][T32548] netlink: 'syz.1.8539': attribute type 7 has an invalid length.
[  306.326727][T32548] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8539'.
[  306.438399][T32566] netlink: 2564 bytes leftover after parsing attributes in process `syz.4.8547'.
[  306.483230][T32576] netlink: 20 bytes leftover after parsing attributes in process `syz.8.8551'.
[  306.497076][T32579] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8549'.
[  306.560268][T32590] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8556'.
[  307.176513][T32680] loop9: detected capacity change from 0 to 256
[  307.190117][T32680] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.200778][T32680] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.211396][T32680] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.221921][T32680] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.232353][T32680] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.242684][T32679] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.253221][T32680] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.263627][T32679] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.273923][T32680] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.284269][T32679] FAT-fs (loop9): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  307.339264][T32690] netlink: 'syz.1.8592': attribute type 10 has an invalid length.
[  307.363042][T32690] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  307.394535][T32690] bond0: (slave bridge0): Releasing backup interface
[  307.734693][  T325] vlan2: entered allmulticast mode
[  307.740190][  T325] bridge_slave_0: entered allmulticast mode
[  308.001686][  T352] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  308.061834][  T362] netlink: 'syz.4.8626': attribute type 1 has an invalid length.
[  308.341687][  T390] netlink: 'syz.2.8633': attribute type 10 has an invalid length.
[  308.350509][  T390] bridge0: port 2(bridge_slave_1) entered disabled state
[  308.357821][  T390] bridge0: port 1(bridge_slave_0) entered disabled state
[  308.385237][  T390] bridge0: port 2(bridge_slave_1) entered blocking state
[  308.389172][  T398] loop8: detected capacity change from 0 to 256
[  308.392360][  T390] bridge0: port 2(bridge_slave_1) entered forwarding state
[  308.406033][  T390] bridge0: port 1(bridge_slave_0) entered blocking state
[  308.413174][  T390] bridge0: port 1(bridge_slave_0) entered forwarding state
[  308.416315][  T398] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.426285][  T390] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  308.432392][  T398] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.449977][  T398] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.450720][  T396] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  308.460458][  T398] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.479558][  T397] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.488440][  T400] bridge_slave_1: left allmulticast mode
[  308.492268][  T397] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.495396][  T400] bridge_slave_1: left promiscuous mode
[  308.495525][  T400] bridge0: port 2(bridge_slave_1) entered disabled state
[  308.511730][  T398] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.528983][  T397] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.539451][  T398] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.550082][  T397] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  308.566077][  T400] bridge_slave_0: left allmulticast mode
[  308.571903][  T400] bridge_slave_0: left promiscuous mode
[  308.577650][  T400] bridge0: port 1(bridge_slave_0) entered disabled state
[  308.597947][  T400] bond0: (slave bridge0): Releasing backup interface
[  308.770298][   T29] kauditd_printk_skb: 55 callbacks suppressed
[  308.770317][   T29] audit: type=1326 audit(319.035:10641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.799572][  T421] loop9: detected capacity change from 0 to 8192
[  308.802997][   T29] audit: type=1326 audit(319.035:10642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.829015][   T29] audit: type=1326 audit(319.035:10643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.851878][   T29] audit: type=1326 audit(319.035:10644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.874715][   T29] audit: type=1326 audit(319.035:10645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.897651][   T29] audit: type=1326 audit(319.035:10646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.920536][   T29] audit: type=1326 audit(319.035:10647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.943511][   T29] audit: type=1326 audit(319.035:10648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.966788][   T29] audit: type=1326 audit(319.035:10649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  308.990203][   T29] audit: type=1326 audit(319.035:10650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=425 comm="syz.4.8645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c132e929 code=0x7ffc0000
[  309.030014][  T421]  loop9: p3
[  309.033331][  T421] loop9: p3 size 196608 extends beyond EOD, truncated
[  309.176387][  T471] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  309.220233][  T471] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  309.243624][  T487] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  309.278034][  T471] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  309.295798][  T496] __nla_validate_parse: 9 callbacks suppressed
[  309.295816][  T496] netlink: 24 bytes leftover after parsing attributes in process `syz.9.8666'.
[  309.322471][  T496] netlink: 'syz.9.8666': attribute type 2 has an invalid length.
[  309.353357][  T471] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  309.404159][  T471] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  309.428157][  T471] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  309.441617][  T471] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  309.454963][  T471] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  309.630921][  T545] netlink: 'syz.4.8676': attribute type 17 has an invalid length.
[  309.639004][  T545] netlink: 5 bytes leftover after parsing attributes in process `syz.4.8676'.
[  309.695272][  T552] lo speed is unknown, defaulting to 1000
[  309.695734][  T558] netlink: 24 bytes leftover after parsing attributes in process `syz.8.8683'.
[  309.738344][  T550] netlink: 'syz.1.8680': attribute type 10 has an invalid length.
[  309.758445][  T550] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8680'.
[  309.801042][  T598] loop9: detected capacity change from 0 to 7
[  309.807514][  T598] buffer_io_error: 6 callbacks suppressed
[  309.813673][  T598] Buffer I/O error on dev loop9, logical block 0, async page read
[  309.822285][  T598] Buffer I/O error on dev loop9, logical block 0, async page read
[  309.831072][  T598]  loop9: unable to read partition table
[  309.837116][  T598] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  309.837116][  T598] 
U�������) failed (rc=-5)
[  310.092861][ T9996] dummy0: left promiscuous mode
[  310.186170][  T626] serio: Serial port ptm0
[  310.286966][  T638] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  310.326570][  T646] loop8: detected capacity change from 0 to 1024
[  310.333973][  T646] EXT4-fs: Ignoring removed orlov option
[  310.365392][  T646] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  310.384909][  T646] EXT4-fs (loop8): shut down requested (0)
[  310.401027][  T646] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop8 ino=12
[  310.426762][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.527968][  T673] netlink: 'syz.8.8708': attribute type 3 has an invalid length.
[  310.703031][  T685] loop8: detected capacity change from 0 to 164
[  310.725035][  T685] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  310.744397][  T685] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  310.757956][  T685] rock: directory entry would overflow storage
[  310.764193][  T685] rock: sig=0x4f50, size=4, remaining=3
[  310.770042][  T685] iso9660: Corrupted directory entry in block 4 of inode 1792
[  310.837646][  T705] loop8: detected capacity change from 0 to 1764
[  310.848083][  T707] wg2: entered promiscuous mode
[  310.853564][  T707] wg2: entered allmulticast mode
[  310.873857][  T710] netlink: 'syz.1.8722': attribute type 17 has an invalid length.
[  310.882201][  T710] netlink: 5 bytes leftover after parsing attributes in process `syz.1.8722'.
[  311.077699][  T741] SELinux: ebitmap: truncated map
[  311.084222][  T741] SELinux: failed to load policy
[  311.259507][  T768] syz_tun: entered allmulticast mode
[  311.285755][  T766] syz_tun: left allmulticast mode
[  311.345484][  T778] netlink: 68 bytes leftover after parsing attributes in process `syz.4.8740'.
[  311.355313][  T778] netlink: 68 bytes leftover after parsing attributes in process `syz.4.8740'.
[  311.650017][  T809] loop2: detected capacity change from 0 to 512
[  311.670791][  T809] EXT4-fs: Ignoring removed nomblk_io_submit option
[  311.694644][  T809] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  311.712731][  T809] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  311.729089][  T809] EXT4-fs (loop2): 1 truncate cleaned up
[  311.735585][  T809] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  311.842080][T31603] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.925120][  T850] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8747'.
[  312.085263][  T860] bond3: entered promiscuous mode
[  312.091406][  T860] bond3: entered allmulticast mode
[  312.098481][  T860] 8021q: adding VLAN 0 to HW filter on device bond3
[  312.109969][  T860] bond3 (unregistering): Released all slaves
[  312.169031][  T940] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  312.190337][  T940] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  312.247745][  T949] loop2: detected capacity change from 0 to 164
[  312.261854][  T949] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  312.286107][  T954] serio: Serial port ptm1
[  312.288333][  T949] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  312.299531][  T949] rock: directory entry would overflow storage
[  312.305871][  T949] rock: sig=0x4f50, size=4, remaining=3
[  312.311517][  T949] iso9660: Corrupted directory entry in block 4 of inode 1792
[  312.316653][  T960] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8767'.
[  312.368679][  T966] wg2: left promiscuous mode
[  312.373368][  T966] wg2: left allmulticast mode
[  312.393167][  T966] wg2: entered promiscuous mode
[  312.397119][  T970] netlink: 'syz.2.8769': attribute type 11 has an invalid length.
[  312.398151][  T966] wg2: entered allmulticast mode
[  312.411844][  T970] netlink: 36 bytes leftover after parsing attributes in process `syz.2.8769'.
[  312.456450][  T978] futex_wake_op: syz.2.8773 tries to shift op by -1; fix this program
[  312.498574][  T980] lo speed is unknown, defaulting to 1000
[  312.551499][ T1004] loop9: detected capacity change from 0 to 7
[  312.563971][ T1004] Buffer I/O error on dev loop9, logical block 0, async page read
[  312.577456][ T1004] Buffer I/O error on dev loop9, logical block 0, async page read
[  312.585415][ T1004]  loop9: unable to read partition table
[  312.591637][ T1004] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  312.591637][ T1004] 
U�������) failed (rc=-5)
[  312.682059][ T1032] loop2: detected capacity change from 0 to 128
[  312.690535][ T1032] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  312.720911][T31603] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  312.932251][ T1049] xt_hashlimit: max too large, truncated to 1048576
[  313.001280][ T1055] loop8: detected capacity change from 0 to 512
[  313.014881][ T1055] EXT4-fs: Ignoring removed nomblk_io_submit option
[  313.031520][ T1055] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  313.062222][ T1055] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  313.079171][ T1055] EXT4-fs (loop8): 1 truncate cleaned up
[  313.088040][ T1055] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.117824][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.179225][ T1068] netlink: 'syz.1.8797': attribute type 1 has an invalid length.
[  313.179472][ T1069] lo speed is unknown, defaulting to 1000
[  313.187075][ T1068] netlink: 'syz.1.8797': attribute type 2 has an invalid length.
[  313.476677][ T1144] loop9: detected capacity change from 0 to 512
[  313.485385][ T1144] EXT4-fs: Ignoring removed mblk_io_submit option
[  313.492250][ T1144] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  313.501043][ T1144] EXT4-fs (loop9): can't mount with data_err=abort, fs mounted w/o journal
[  313.513894][ T7006] IPVS: starting estimator thread 0...
[  313.586965][ T1166] -1: renamed from syzkaller0
[  313.598041][ T1157] IPVS: using max 2208 ests per chain, 110400 per kthread
[  313.615430][ T1172] loop8: detected capacity change from 0 to 512
[  313.627568][ T1172] __quota_error: 60 callbacks suppressed
[  313.627583][ T1172] Quota error (device loop8): v2_read_file_info: Free block number 1 out of range (1, 6).
[  313.643620][ T1172] EXT4-fs warning (device loop8): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  313.659024][ T1172] EXT4-fs (loop8): mount failed
[  313.754087][   T29] audit: type=1400 audit(324.279:10711): avc:  denied  { ioctl } for  pid=1184 comm="syz.9.8827" path="socket:[78063]" dev="sockfs" ino=78063 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  313.782246][   T29] audit: type=1400 audit(324.311:10712): avc:  denied  { write } for  pid=1184 comm="syz.9.8827" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  313.782975][ T1189] SELinux: failed to load policy
[  313.886147][ T1210] sch_fq: defrate 4294967295 ignored.
[  313.989803][   T29] audit: type=1400 audit(324.532:10713): avc:  denied  { setattr } for  pid=1229 comm="syz.4.8839" name="file0" dev="tmpfs" ino=9393 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  314.124469][   T29] audit: type=1400 audit(324.669:10714): avc:  denied  { mounton } for  pid=1238 comm="syz.2.8842" path="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=dir permissive=1
[  314.223096][ T1249] loop9: detected capacity change from 0 to 7
[  314.229539][ T1249] Buffer I/O error on dev loop9, logical block 0, async page read
[  314.237719][ T1249] Buffer I/O error on dev loop9, logical block 0, async page read
[  314.245634][ T1249]  loop9: unable to read partition table
[  314.251495][ T1249] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  314.251495][ T1249] 
U�������) failed (rc=-5)
[  314.505316][ T1284] loop2: detected capacity change from 0 to 512
[  314.514536][ T1284] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  314.523728][ T1284] EXT4-fs (loop2): 1 truncate cleaned up
[  314.530712][ T1284] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  314.600437][T31603] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.745189][   T29] audit: type=1400 audit(325.322:10715): avc:  denied  { mounton } for  pid=1322 comm="syz.2.8863" path="/proc/163/cgroup" dev="proc" ino=78196 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  314.798862][   T29] audit: type=1326 audit(325.385:10716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1327 comm="syz.8.8866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  314.822901][   T29] audit: type=1326 audit(325.385:10717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1327 comm="syz.8.8866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  314.847912][ T1328] loop2: detected capacity change from 0 to 1024
[  314.849143][   T29] audit: type=1326 audit(325.437:10718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1327 comm="syz.8.8866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  314.878195][   T29] audit: type=1326 audit(325.437:10719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1327 comm="syz.8.8866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91f0b1e929 code=0x7ffc0000
[  314.882216][ T1328] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  314.916504][ T1329] loop8: detected capacity change from 0 to 1024
[  314.940513][ T1329] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  314.945030][ T1328] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  314.990957][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.099686][ T1363] sit0: entered allmulticast mode
[  315.901664][ T1400] sch_fq: defrate 4294967295 ignored.
[  315.918037][ T1402] loop2: detected capacity change from 0 to 128
[  315.941250][ T1402] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  315.949285][ T1402] FAT-fs (loop2): Filesystem has been set read-only
[  315.958257][ T1402] syz.2.8894: attempt to access beyond end of device
[  315.958257][ T1402] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  315.972719][ T1402] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  315.980683][ T1402] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  316.003294][ T1409] vhci_hcd: invalid port number 23
[  316.008791][ T1402] syz.2.8894: attempt to access beyond end of device
[  316.008791][ T1402] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  316.034955][ T1402] syz.2.8894: attempt to access beyond end of device
[  316.034955][ T1402] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  316.279112][ T1453] vhci_hcd: invalid port number 23
[  316.489729][ T1480] lo speed is unknown, defaulting to 1000
[  316.504775][ T1489] loop9: detected capacity change from 0 to 256
[  316.524935][ T1489] FAT-fs (loop9): Directory bread(block 64) failed
[  316.532770][ T1489] FAT-fs (loop9): Directory bread(block 65) failed
[  316.539443][ T1489] FAT-fs (loop9): Directory bread(block 66) failed
[  316.546301][ T1489] FAT-fs (loop9): Directory bread(block 67) failed
[  316.553009][ T1489] FAT-fs (loop9): Directory bread(block 68) failed
[  316.559589][ T1489] FAT-fs (loop9): Directory bread(block 69) failed
[  316.566798][ T1489] FAT-fs (loop9): Directory bread(block 70) failed
[  316.573695][ T1489] FAT-fs (loop9): Directory bread(block 71) failed
[  316.580482][ T1489] FAT-fs (loop9): Directory bread(block 72) failed
[  316.587097][ T1489] FAT-fs (loop9): Directory bread(block 73) failed
[  317.076913][ T1559] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 20000 - 0
[  317.085484][ T1559] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 20000 - 0
[  317.094074][ T1559] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 20000 - 0
[  317.103379][ T1559] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 20000 - 0
[  317.410090][ T1606] openvswitch: netlink: Message has 6 unknown bytes.
[  318.502080][ T1647] vhci_hcd: invalid port number 96
[  318.507253][ T1647] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  318.573474][   T29] kauditd_printk_skb: 107 callbacks suppressed
[  318.573490][   T29] audit: type=1400 audit(329.353:10827): avc:  denied  { read } for  pid=1657 comm="syz.8.8982" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  318.684256][ T1671] ref_ctr_offset mismatch. inode: 0x225 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x300001118
[  318.717605][ T1675] loop8: detected capacity change from 0 to 128
[  318.724451][ T1675] /dev/loop8: Can't open blockdev
[  318.794997][ T1683] __nla_validate_parse: 5 callbacks suppressed
[  318.795014][ T1683] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8991'.
[  318.810360][ T1683] netlink: 108 bytes leftover after parsing attributes in process `syz.2.8991'.
[  318.821950][ T1683] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8991'.
[  318.838250][ T1683] netlink: 108 bytes leftover after parsing attributes in process `syz.2.8991'.
[  318.847543][ T1683] netlink: 84 bytes leftover after parsing attributes in process `syz.2.8991'.
[  318.898722][   T29] audit: type=1326 audit(329.701:10828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  318.942354][   T29] audit: type=1326 audit(329.732:10829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  318.966234][   T29] audit: type=1326 audit(329.732:10830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  318.989839][   T29] audit: type=1326 audit(329.732:10831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  319.014237][   T29] audit: type=1326 audit(329.732:10832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  319.037456][   T29] audit: type=1326 audit(329.732:10833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  319.062365][   T29] audit: type=1326 audit(329.732:10834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  319.085695][   T29] audit: type=1326 audit(329.732:10835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  319.109664][   T29] audit: type=1326 audit(329.732:10836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1691 comm="syz.2.8993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5456fe929 code=0x7ffc0000
[  319.275009][ T1728] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9002'.
[  320.027111][ T1775] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9026'.
[  320.142146][ T1794] loop8: detected capacity change from 0 to 1024
[  320.149901][ T1791] vhci_hcd: invalid port number 96
[  320.155843][ T1791] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  320.167856][ T1794] EXT4-fs: Ignoring removed nobh option
[  320.173884][ T1794] EXT4-fs: Ignoring removed bh option
[  320.204305][ T1794] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.252813][ T1794] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  320.288163][ T1796] ==================================================================
[  320.296399][ T1796] BUG: KCSAN: data-race in shmem_file_splice_read / shmem_file_splice_read
[  320.305040][ T1796] 
[  320.307398][ T1796] write to 0xffff88811835cb28 of 8 bytes by task 1812 on cpu 1:
[  320.315065][ T1796]  shmem_file_splice_read+0x470/0x600
[  320.320489][ T1796]  splice_direct_to_actor+0x26c/0x680
[  320.325929][ T1796]  do_splice_direct+0xda/0x150
[  320.330763][ T1796]  do_sendfile+0x380/0x650
[  320.335234][ T1796]  __x64_sys_sendfile64+0x105/0x150
[  320.340477][ T1796]  x64_sys_call+0xb39/0x2fb0
[  320.345130][ T1796]  do_syscall_64+0xd2/0x200
[  320.349674][ T1796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.355596][ T1796] 
[  320.357937][ T1796] write to 0xffff88811835cb28 of 8 bytes by task 1796 on cpu 0:
[  320.365582][ T1796]  shmem_file_splice_read+0x470/0x600
[  320.370988][ T1796]  splice_direct_to_actor+0x26c/0x680
[  320.376387][ T1796]  do_splice_direct+0xda/0x150
[  320.381176][ T1796]  do_sendfile+0x380/0x650
[  320.385612][ T1796]  __x64_sys_sendfile64+0x105/0x150
[  320.390836][ T1796]  x64_sys_call+0xb39/0x2fb0
[  320.395446][ T1796]  do_syscall_64+0xd2/0x200
[  320.399961][ T1796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.406137][ T1796] 
[  320.408469][ T1796] value changed: 0x000000000000113d -> 0x0000000000001141
[  320.415592][ T1796] 
[  320.417931][ T1796] Reported by Kernel Concurrency Sanitizer on:
[  320.424107][ T1796] CPU: 0 UID: 0 PID: 1796 Comm: syz.4.9021 Tainted: G        W           6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(voluntary) 
[  320.438116][ T1796] Tainted: [W]=WARN
[  320.441943][ T1796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  320.452188][ T1796] ==================================================================
[  320.468330][T14248] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.