last executing test programs:

2m47.12429038s ago: executing program 1 (id=1773):
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x17, 0x0, 0x0, 0x10, 0x7fffffff, @void, @value}, 0x5c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080), 0x6400, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x100})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000704300000000800000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00'}, 0x18)
write$P9_RVERSION(r4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX])

2m47.08299097s ago: executing program 1 (id=1775):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfd}, 0xc)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

2m46.994832682s ago: executing program 1 (id=1777):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@rand_addr=0x64010100, @in=@rand_addr=0xffffffff, 0x0, 0x0, 0x4e22, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x10000, 0x4, 0x671, 0x2, 0x6, 0x0, 0x80000000000004}, {0x800, 0x0, 0x4}, 0x0, 0x0, 0x1}, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x3, 0x0, 0x59, 0x0, 0x3}}, 0xe8)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x1028}}, 0x20000050)

2m46.972379802s ago: executing program 1 (id=1778):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000040)={0x2, {0x2, 0x5, 0x0, 0x5, 0x9, 0x1d}})
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x1d, 0x800000000004, @tid=r2}, &(0x7f0000000080)=<r3=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r5=>0x0, <r6=>0x0})
clock_gettime(0x0, &(0x7f0000000140)={<r7=>0x0, <r8=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000180)={{r5, r6+10000000}, {r7, r8+60000000}}, &(0x7f00000001c0))
tee(r0, r4, 0xfffffffffffffc01, 0x0)

2m46.105877435s ago: executing program 1 (id=1806):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xb}, 0x8081, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x400, 0x61)
getdents(r0, &(0x7f0000000280)=""/92, 0x5c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e378667cc767026, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000018, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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") (fail_nth: 2)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000001c0)=0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x48040)

2m45.776439851s ago: executing program 1 (id=1811):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xb}, 0x8081, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000000a700007311410000000000851000000200f9ff840000007600000095000000000000009500a50500000000c6ca2fc98e9639c33b7b21716e98a8a2fdadb14781"], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
flock(0xffffffffffffffff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_ID={0x8, 0x1, 0x1}, @IFLA_GENEVE_TTL={0x5, 0x3, 0x5}]}}}, @IFLA_IFNAME={0x14, 0x3, 'geneve1\x00'}]}, 0x58}}, 0x2000000)
perf_event_open$cgroup(&(0x7f00000000c0)={0x4, 0x80, 0xb, 0x1, 0x3, 0x7, 0x0, 0x401, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x80, 0x2, @perf_bp={&(0x7f0000000040)}, 0x102, 0xffffffffffffffff, 0xa31, 0x6, 0x7c496643, 0xfec, 0x1a, 0x0, 0x80000001, 0x0, 0x2}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x8)
r3 = openat(0xffffffffffffffff, &(0x7f0000004280)='./file0\x00', 0x22000, 0x121)
getdents(r3, &(0x7f0000000280)=""/92, 0x5c)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e378667cc767026, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000018, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/zoneinfo\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x20000023896)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, &(0x7f00000003c0)=ANY=[@ANYBLOB="06070e04010c000100071800000002048c030001000000000000000800000000000000c204000003ffc910fe80000000000000000000000000002100000000008f985948717087fa0c1aaf8ea2a4b956500ff4928c14fdbadd"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000240)={'wg2\x00', <r8=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0700000001800000070000000f4c000000080500", @ANYRES32=r3, @ANYBLOB="070000000000007efaa9612f95d54b2e465b6a9a21cce17a45402cca2dd508368618065b4773ea2cf1e4579e287be0d0024da5868511cdaa40fa1d6b679c1124e4f425351993cae8d679777c08077bb714fb13c3f92ad365b8b8d6344e7476e04fa0de744696461efb924cef2c8911f75b690ea29e627908b95e4de1020524dd0051cf8645ea5f61072662e56e74c7cc52b5378d48cd834fcb1facaa78de9fa0d085ed9d627f733076296702bf0f759593ecbec12f85783c3cc8112ee4f5", @ANYRES32=r8, @ANYRES32=r3, @ANYBLOB="00000000010100"/24, @ANYRES32=r5, @ANYBLOB], 0x50)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200e2f7ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x15, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b04, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r10}, 0x10)
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240), 0x8)
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000540))

2m30.74576731s ago: executing program 32 (id=1811):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xb}, 0x8081, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000000a700007311410000000000851000000200f9ff840000007600000095000000000000009500a50500000000c6ca2fc98e9639c33b7b21716e98a8a2fdadb14781"], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
flock(0xffffffffffffffff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4000}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_ID={0x8, 0x1, 0x1}, @IFLA_GENEVE_TTL={0x5, 0x3, 0x5}]}}}, @IFLA_IFNAME={0x14, 0x3, 'geneve1\x00'}]}, 0x58}}, 0x2000000)
perf_event_open$cgroup(&(0x7f00000000c0)={0x4, 0x80, 0xb, 0x1, 0x3, 0x7, 0x0, 0x401, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x80, 0x2, @perf_bp={&(0x7f0000000040)}, 0x102, 0xffffffffffffffff, 0xa31, 0x6, 0x7c496643, 0xfec, 0x1a, 0x0, 0x80000001, 0x0, 0x2}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x8)
r3 = openat(0xffffffffffffffff, &(0x7f0000004280)='./file0\x00', 0x22000, 0x121)
getdents(r3, &(0x7f0000000280)=""/92, 0x5c)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e378667cc767026, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000018, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/zoneinfo\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x20000023896)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, &(0x7f00000003c0)=ANY=[@ANYBLOB="06070e04010c000100071800000002048c030001000000000000000800000000000000c204000003ffc910fe80000000000000000000000000002100000000008f985948717087fa0c1aaf8ea2a4b956500ff4928c14fdbadd"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000240)={'wg2\x00', <r8=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0700000001800000070000000f4c000000080500", @ANYRES32=r3, @ANYBLOB="070000000000007efaa9612f95d54b2e465b6a9a21cce17a45402cca2dd508368618065b4773ea2cf1e4579e287be0d0024da5868511cdaa40fa1d6b679c1124e4f425351993cae8d679777c08077bb714fb13c3f92ad365b8b8d6344e7476e04fa0de744696461efb924cef2c8911f75b690ea29e627908b95e4de1020524dd0051cf8645ea5f61072662e56e74c7cc52b5378d48cd834fcb1facaa78de9fa0d085ed9d627f733076296702bf0f759593ecbec12f85783c3cc8112ee4f5", @ANYRES32=r8, @ANYRES32=r3, @ANYBLOB="00000000010100"/24, @ANYRES32=r5, @ANYBLOB], 0x50)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200e2f7ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x15, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b04, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r10}, 0x10)
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240), 0x8)
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000540))

2m23.075788647s ago: executing program 4 (id=2301):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x1100, 0x5dd9, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYBLOB="0000000000191141596b2f0b4600000000000000", @ANYRES32=0x0, @ANYRES32], 0x50)

2m22.926638489s ago: executing program 4 (id=2306):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@rand_addr=0x64010100, @in=@rand_addr=0xffffffff, 0x0, 0x0, 0x4e22, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x10000, 0x4, 0x671, 0x2, 0x6, 0x0, 0x80000000000004}, {0x800, 0x0, 0x4}, 0x0, 0x0, 0x1}, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x3, 0x0, 0x59, 0x0, 0x3}}, 0xe8)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x1028}}, 0x20000050)

2m22.902441089s ago: executing program 4 (id=2307):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)

2m22.597074714s ago: executing program 4 (id=2311):
syz_open_dev$hiddev(&(0x7f0000000040), 0x9, 0x900)
socket(0xa, 0x803, 0x3)
r0 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x112)
arch_prctl$ARCH_FORCE_TAGGED_SVA(0x4004)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='net\x00')
r2 = open_tree(r1, &(0x7f0000000000)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
lstat(&(0x7f0000001640)='./file0\x00', &(0x7f0000001680))
unshare(0x2c020400)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="266a23f8be0d320f69455d4a8c0500050003f01f00810000007f00000001000000949229ea1201eae6aeb63a4e032af559c7b980f8e57f35a8735fa732184db38c8f64eb2ba2068cf9cb58db3af8082c6dc8b871e6c7b9ca4111f2e05fe7afe616e487861d4bd47dcf8b54f0e1a8e56915aa3e676fa157438cb66fb9316de1bb98943e7dc39574ee2e5f82322a08c71df9f2b4bedaf46b6fe0d6ae2891571dd14f027527c5b4fe21e91c92a8b76ff04e00db67e53b01797bdd8d5966f6e9ed2a9c25ec82b8192cda6cd7bdd2c4572b275bed", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e2071edef0de66c380810000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socket$kcm(0x2, 0x3, 0x2)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
syz_clone(0x1000, 0x0, 0x0, &(0x7f00000003c0), 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_to_bond\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmsg(r5, 0x0, 0x8040)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xb, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x4c}, [@call={0x85, 0x0, 0x0, 0x1c}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000fd00000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, @void, @value}, 0x94)
r6 = socket$inet6(0x10, 0x3, 0x0)
pwrite64(r3, &(0x7f00000003c0)="b8b468f6134f8d0928714fef72e94b0e94ae133a7cd57b6bf42510485b9b84ce52936fcd0b47de15678e9ec56e504bb656d6b37c5d5396ab90e52983eba6ffa126", 0x41, 0x1000)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r7}, 0x10)
sendto$inet6(r6, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

2m22.409817177s ago: executing program 4 (id=2315):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffffffffffc, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")

2m22.304346579s ago: executing program 4 (id=2319):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x1100, 0x5dd9, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYBLOB="0000000000191141596b2f0b4600000000000000", @ANYRES32=0x0, @ANYRES32], 0x50)

2m22.268534539s ago: executing program 33 (id=2319):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x1100, 0x5dd9, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYBLOB="0000000000191141596b2f0b4600000000000000", @ANYRES32=0x0, @ANYRES32], 0x50)

2.949840265s ago: executing program 5 (id=4291):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="2400000020100103001000000000000002000000000000000a00000008000a"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009900"], 0x50)
r1 = openat$sysfs(0xffffff9c, &(0x7f0000000bc0)='/sys/kernel/warn_count', 0x0, 0x1)
r2 = socket$netlink(0x10, 0x3, 0x9)
sendfile(r2, r1, 0x0, 0x7ffff000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8120}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRES32=0x0], 0x48)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f00000008c0), 0x1, 0x512, &(0x7f0000000380)="$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")
syz_emit_ethernet(0x82, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000340)="5c00000013006bcd9e3fe3dc4e48aa31086b8703140000001f03000000000000040014000d000a000d0000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@setlink={0x3c, 0x13, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xa, r6}, @IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}]}, 0x3c}}, 0x0)

2.475483703s ago: executing program 5 (id=4298):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x6, 0x8, 0x0, 0x3}]}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1000}, 0x4)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000080)=0xf3e, 0x62)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0x73220c8b}], 0x1}, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r1, &(0x7f00000002c0)="03", 0x1, 0x24008844, &(0x7f0000000040)={0xa, 0x2, 0x398, @empty}, 0x1c)

2.396184834s ago: executing program 3 (id=4299):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_submit(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = inotify_init()
r5 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r6 = inotify_add_watch(r4, &(0x7f0000000240)='./file0\x00', 0x8c7)
write$binfmt_elf32(r5, &(0x7f0000000040)=ANY=[@ANYRES64=r6], 0x69)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
close(r5)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r9}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r10}, 0x10)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)

2.034542579s ago: executing program 6 (id=4301):
mount$bpf(0x0, &(0x7f0000000ac0)='.\x00', &(0x7f0000000b00), 0x400008, &(0x7f0000000cc0)={[{@mode={'mode', 0x3d, 0x9}}]})
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_queued\x00', 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000003c0)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYBLOB='&\x00'/12, @ANYRES32, @ANYBLOB="dfc5e0fe5e53f9f41cfda5c876a4483e82b305133544f7ff93bac82aea36053f75cf61f443c33b9761902fefda14c586bd1eadb4ba704d2e46d683a2714542ddaaa8ed8868619f4df731c2f517561e18076d87d076696473c19cb6013ae35bc383ac7734cb6f34dc64f05eb9edb566b796ea2a7200659116b171864dce98151134accf96faf4f430343d56f4986dcee95e196f117b31907d27bd2deacc8a21c8b3bb973564481f87a3aed20cacac3866d163f81f8f9badf11d0c6d1e22ffcd1b884c5a14722898", @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvmsg$unix(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+|[@\x00')
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0xffffffff, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x109041, 0x0)
r10 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r10, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140)={<r11=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r10, &(0x7f0000000040)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x0, @remote, 0xf}, r11}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r10, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e24, 0x40003, @mcast1}, {0x2, 0xfff9, 0xc00, @loopback, 0xffffffff}, r11, 0x9dffffff}}, 0x48)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r12 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0xc0200, 0x0)
ioctl$PPPIOCNEWUNIT(r12, 0xc004743e, &(0x7f0000000100)=0x3)

1.915727012s ago: executing program 0 (id=4303):
syz_usb_connect$hid(0x2, 0x3f, &(0x7f0000000140)=ANY=[@ANYBLOB="12010002000000086a05300040000102030109022d0001010a00070904008102030102ff09210000010122c40a090581fbffff04538609050203100000f0f1"], &(0x7f0000000300)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x201, 0xa1, 0x0, 0x4, 0x20, 0x6}, 0x2a, &(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]})
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
syz_read_part_table(0x5c9, &(0x7f0000000880)="$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")
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r4, 0x4b47, &(0x7f00000002c0)={0x1, 0x6, 0xfffb})
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r3, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r6, {0x4, 0xa}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}, @TCA_BPF_CLASSID={0x8, 0x3, {0x2, 0xf}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000440)={'veth0_macvtap\x00', 0x68bf22d8})
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000005c0)={<r7=>0xffffffffffffffff}, 0x106}}, 0x20)
ptrace$setregs(0xd, 0xffffffffffffffff, 0x1, &(0x7f0000000340)="2f3b86c7380510570fb13bb02d5ffc4df404b076ccc9b7d151c03ba0eca65978a2da47f9e10153346533b892bbab99ae1db1fb55f110c9a5b1f24a5429121d1fd15bfd60e427aad446f31dc7238206b4e4cb40957e38b6ffdb635b325936b02a48c498368d0448d5e4fde217cadc602b9dade66ea4c46f413ef14a9569139c9c96352af7eeafaad8185c7b9c67809add89ce916076a4060ca8af220a52eb3d")
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)={0x1c, 0x3, 0x8, 0x101, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8884}]}, 0x1c}}, 0x0)
r9 = socket(0x2, 0x400000000002, 0x0)
setsockopt(r9, 0x0, 0x15, &(0x7f0000000180)="b1", 0x1)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r8, &(0x7f0000000040)={0x2000})
socket$nl_route(0x10, 0x3, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000200)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x4000000, @local, 0x7}, {0xa, 0x0, 0x8, @empty, 0x5}, r7, 0xfffffffc}}, 0x48)

1.640119036s ago: executing program 6 (id=4305):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="1dec57727321b5c6d6d82d0908667c904f3bb25a28d20ae4271500000000"], 0x8)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000180)=0x5, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
socket$kcm(0x10, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'bond_slave_1\x00', <r5=>0x0})
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xa4, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xb, 0xffffffffffffffff, 0x0)
futex(0x0, 0x1, 0x0, 0x0, 0x0, 0x0)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000000)={r5, 0x11, 0x2, @broadcast}, 0x10)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000040)={r5, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2b}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {}, {}, {0x0, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

1.577441596s ago: executing program 5 (id=4307):
socket$nl_route(0x10, 0x3, 0x0)
rt_sigsuspend(&(0x7f0000000180)={[0x6]}, 0x8)
socket$netlink(0x10, 0x3, 0x14)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0x80000000000000}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
utimes(&(0x7f0000000040)='./file0\x00', 0x0)

1.505575457s ago: executing program 3 (id=4308):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="2400000020100103001000000000000002000000000000000a00000008000a"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009900"], 0x50)
r1 = openat$sysfs(0xffffff9c, &(0x7f0000000bc0)='/sys/kernel/warn_count', 0x0, 0x1)
r2 = socket$netlink(0x10, 0x3, 0x9)
sendfile(r2, r1, 0x0, 0x7ffff000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8120}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRES32=0x0], 0x48)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f00000008c0), 0x1, 0x512, &(0x7f0000000380)="$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")
syz_emit_ethernet(0x82, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000340)="5c00000013006bcd9e3fe3dc4e48aa31086b8703140000001f03000000000000040014000d000a000d0000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@setlink={0x3c, 0x13, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xa, r6}, @IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}]}, 0x3c}}, 0x0)

1.232110742s ago: executing program 0 (id=4311):
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x1000, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80800, 0x20)
r0 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0xa5d4}, 0x4c58, 0x5, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r4, 0x0)
r5 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$TIOCGLCKTRMIOS(r5, 0x5456, &(0x7f00000000c0)={0x4, 0x8, 0x5, 0xab01, 0x8, "d33fefd9455d8a695fb05c097c1f2ec1112d0b"})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000240)={[{@dioread_lock}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@journal_dev={'journal_dev', 0x3d, 0x5}}, {@user_xattr}, {@abort}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$eJzs28tvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0mwY5L/ftJm8zsjjPzeXbs2Z1sAH1rJPuRROyJiN8jYqieXV1gpP7r5tLl6b+XLk8nUa2+9VdSK3dj6fJ0UbR43e48M5pGpJ8lcahFvfMXL52dqlRmL+T58YVz74/PX7z07JlzU6dnT8+enzxx4vixiReen3yuI3Fmbbpx8KO5wwdee+fqG9Mnr77787dJEX9THB0yst7BJ6rVDlfXW3sb0slADxvCppQiIuuucm38D0UpVjpvKF79tKeNA7qqWq1Wd7c/vFgF7mBJbLTk2fzzArgzFF/02fVvsW3T1OO2cP2l+gVQFvfNfKsfGYg0L1Nuur7tpJGIOLn4z1fZFt25DwEAsMr32fznmVbzvzTubyh3d742NBwR90TEvoi4NyL2R8R9EbWyD0TEg5usv3mRZO38J722pcA2KJv/vZivba2e/xWzvxgu5bm9tfjLyakzldmj+XsyGuUdWX5inTp+eOW3L9oda5z/ZVtWfzEXzNtxbWDH6tfMTC1M/ZeYG13/JOLgQKv4k+WVgCQiDkTEwS3Wceapbw63O9Yu/vJG/nAH1pmqX0c8We//xWiKv5Csvz45fldUZo+OF2fFWr/8euXNdvXfuv+7K+v/XS3P/+X4h5PG9dr5zddx5Y/P217TbPX8H0zerqUH830fTi0sXJiIGExerze6cf/kymuLfFE+i3/0SOvxvy9W3olDEZGdxA9FxMMR8Uje9kcj4rGIOLJO/D+9/Ph7W4+/u7L4ZzbV/yuJwWje0zpROvvjd6sqHd5M/Fn/H6+lRvM9G/n820i7tnY2AwAAwP9PGhF7IknHltNpOjZW/3/5/bErrczNLzx9au6D8zP1ZwSGo5wWd7qGGu6HTuSX9UV+sil/LL9v/GVpZy0/Nj1Xmel18NDndrcZ/5k/S71uHdB1nteC/mX8Q/8y/qF/Gf/Qv1qM/529aAew/Vp9/3/cg3YA269p/Fv2gz7i+h/6l/EP/cv4h740vzNu/ZC8hMSaRKS3RTMkupTo9ScTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAZ/wbAAD//9E940M=")
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x1000, 0x1) (async)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80800, 0x20) (async)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000180), &(0x7f00000001c0)) (async)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) (async)
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0) (async)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0xa5d4}, 0x4c58, 0x5, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r4, 0x0) (async)
syz_open_dev$ptys(0xc, 0x3, 0x0) (async)
ioctl$TIOCGLCKTRMIOS(r5, 0x5456, &(0x7f00000000c0)={0x4, 0x8, 0x5, 0xab01, 0x8, "d33fefd9455d8a695fb05c097c1f2ec1112d0b"}) (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000240)={[{@dioread_lock}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@journal_dev={'journal_dev', 0x3d, 0x5}}, {@user_xattr}, {@abort}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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") (async)

1.202833482s ago: executing program 0 (id=4313):
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000080)=ANY=[@ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00"/11], 0x48)
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @multicast})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0x7, &(0x7f00000003c0)=ANY=[@ANYRESHEX=r0, @ANYRESDEC=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000a80)='kfree\x00', r4}, 0x18)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r2, 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x5)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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")
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r5 = creat(&(0x7f0000000100)='./bus\x00', 0x74)
fcntl$setstatus(r5, 0x4, 0x6100)
write$cgroup_type(r5, &(0x7f0000000200), 0x175d9003)
fcntl$notify(r1, 0x402, 0x8000003d)
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x1001, 0x0) (fail_nth: 5)

961.898366ms ago: executing program 3 (id=4316):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth1_vlan\x00', <r4=>0x0})
syz_open_dev$vcsa(0x0, 0x1, 0x2)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000001000030500000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="0000000000fbff0020001280080001006873720014", @ANYRES32=r3, @ANYBLOB="08000200", @ANYRES32=r4], 0x40}}, 0x0)

920.585676ms ago: executing program 0 (id=4317):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000002380)="$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")
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r6, &(0x7f0000000ac0)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d0000f0ffffffffec08000000000000f0ffffffffffffff0000000000000000080000000000000003000000cff5ffff8003000000"], 0x5b0)

920.060316ms ago: executing program 3 (id=4318):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r1}, 0x18)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000380), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7573627474795f6465766963655f743a73302073797374656d5f753a6f626a6563745f723a70746d785f743a73302030303030e9"], 0x7b)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$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")
sendmsg$key(0xffffffffffffffff, 0x0, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x4, 0x0, 0x0)

825.170718ms ago: executing program 3 (id=4320):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = open_tree(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x180100)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000e00)={0x18, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000c2e22782927adc7de836d90e6e49e9afc89d0c561abc8fd5a59b03b3b40e8fc7", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, r1, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@delneigh={0x44, 0x1a, 0x1, 0x70bd2b, 0x0, {0xa, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5}, [@NDA_CACHEINFO={0x14, 0x3, {0x7}}, @NDA_DST_IPV6={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x44}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syncfs(r4)
execveat(0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x2800)
ioctl$BTRFS_IOC_DEFRAG(r2, 0x50009402, 0x0)

658.231151ms ago: executing program 3 (id=4321):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x1000000}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0xb}]})
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000280)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

634.462591ms ago: executing program 5 (id=4322):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="2f01000000002b8000d15700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000c00)={0x1, &(0x7f0000000bc0)=[{0x45, 0xc, 0x3, 0x4}]})
writev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000300)='4', 0x1}], 0x1)

597.121162ms ago: executing program 6 (id=4323):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="180000ffdf94e443050000000000000018111100e0cf2baf87ab611af41a326f8f100e298c48d6f3c1d8e7cc205e8c4dd49e6caa3bbf1e5469bab69059713aef19a663da84d421b9dc533f98c67f821ef2130dcb6128fb104773d284da9b8354e55dc36117fe941bbb9dcb681df7462e8a42c5e224e38b56484f5a99b79652b92458353fe0d23fb9c0bc4dc81a05dbdb35351e7d245da3b632dc7e69243425bd97bd", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYRESHEX=r0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1400000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="000000000000d444f8022b525e1c7164330b735c585381a66239f541c179313205f6143f6382c3dc529a58e5853bea2941b873fa91592892426ee7f034ef385e5524ca78bbdec49ac053157ad27aad763d312d10bb438d8a0b1eb514fbb8ba7dab928de41792601093e46bbf3c2a50364cb6b08ebc01232fe151dbbfec15f261bf2a13", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000080000000300"/28], 0x50)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0x20, &(0x7f0000000340)={&(0x7f0000000440)=""/161, 0xa1, <r3=>0x0, &(0x7f0000000580)=""/192, 0xc0}}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000080)='rxrpc_recvmsg\x00', r4}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400cfd60a0e291c403318110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r5}, &(0x7f00000004c0), &(0x7f0000000500)=r6}, 0x20)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.controllers\x00', 0x26e1, 0x0)
close(r7)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x8901, 0x0)
ioctl$TUNSETOFFLOAD(r8, 0xc004743e, 0x110c23003f)
write$cgroup_pid(r7, &(0x7f0000000000)=0xffffffffffffffff, 0x12)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x2000000000000219, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x1, 0x0, 0x0, 0x41000, 0x55, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r12}, 0x18)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
sendmsg$NFT_BATCH(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010007000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000048000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0c00098008000140000000075c0000000e0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xec}}, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000003040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x100)

575.243112ms ago: executing program 5 (id=4324):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="2f01000000002b8000d15700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000c00)={0x1, &(0x7f0000000bc0)=[{0x45, 0xc, 0x3, 0x4}]})
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r3, &(0x7f0000000080)=[{&(0x7f0000000300)='4', 0x1}], 0x1)

559.555272ms ago: executing program 5 (id=4326):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b70300000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x1000000}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0xb}]})
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000280)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

476.980063ms ago: executing program 6 (id=4327):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="2400000020100103001000000000000002000000000000000a00000008000a"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009900"], 0x50)
r1 = openat$sysfs(0xffffff9c, &(0x7f0000000bc0)='/sys/kernel/warn_count', 0x0, 0x1)
r2 = socket$netlink(0x10, 0x3, 0x9)
sendfile(r2, r1, 0x0, 0x7ffff000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8120}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRES32=0x0], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000340)="5c00000013006bcd9e3fe3dc4e48aa31086b8703140000001f03000000000000040014000d000a000d0000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@setlink={0x3c, 0x13, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xa, r6}, @IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}]}, 0x3c}}, 0x0)

404.083734ms ago: executing program 2 (id=4328):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
pipe2$9p(0x0, 0x80080)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, 0x0, 0x4008000)
socket$key(0xf, 0x3, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
mq_unlink(&(0x7f0000000340)='eth0\x00') (fail_nth: 1)
close(r1)

193.599148ms ago: executing program 6 (id=4329):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth1_vlan\x00', <r4=>0x0})
syz_open_dev$vcsa(0x0, 0x1, 0x2)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000001000030500000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="0000000000fbff0020001280080001006873720014", @ANYRES32=r3, @ANYBLOB="08000200", @ANYRES32=r4], 0x40}}, 0x0)

171.798998ms ago: executing program 2 (id=4330):
r0 = socket(0x10, 0x80002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1e, 0xc, &(0x7f0000001800)=ANY=[@ANYRES8=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r1, @ANYBLOB="ba0eaa3bc7dc80626740061611c6750ef447a8810ad3974c68ffff9f232334dd53ec29b11e48fcf95688808e6bdfab856d15a95400f67f073385650832296b825019c29ad637d1ebbcbcb3760e7b97df9c284271aefdd20fee9689af7bc24ab6239e67b81f3559102c28531973ce8ff1f5c2fb64a1add941dcbf1858a7228ecb36d01655220a650b425f255e0e6ae7b0d498579506f2b7fd86a7914fbe53e31bdede97167da34294fd4721570f3a5d09499a8acc0975a2d4a3a333969e0e3742abfd72072235c31ff57ba85d177b1e5f8d1e5d81911afb50b199b4eb52edb2e158c4a80ad0e184495747efa0b494c6", @ANYRESOCT=r1, @ANYRES8=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r2 = perf_event_open(&(0x7f0000002100)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x80100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x80000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_io_uring_setup(0x4be, &(0x7f0000000400)={0x0, 0x2b2f, 0x482, 0x0, 0x2f5}, &(0x7f0000000300), &(0x7f0000000480))
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r3, 0x18, &(0x7f0000000540)={0x81, r2, 0x3c, {0x3408, 0x2}, 0x4}, 0x1)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001740)={0x7, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000040), &(0x7f0000000080)=r4}, 0x20)
arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, 0xfffffffffffffffc)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETSW2(r6, 0x541e, &(0x7f0000000280)={0xfffffffa, 0x0, 0x0, 0xf1a8, 0x8, "1a96947dff08008a00"})
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000180)='kfree\x00', r5, 0x0, 0xfffffffffffffffe}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0x5d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80}, 0x8000, 0x0, 0x0, 0x0, 0x2, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x4000000004}, 0x0, 0x0, r7, 0x2)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r8, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r8, 0x6, 0xd, &(0x7f00000002c0)='bbr\x00', 0x3)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10)
sendmsg$inet(r8, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r8, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
quotactl_fd$Q_SETQUOTA(r9, 0xffffffff80000800, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
flock(r7, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)

142.900578ms ago: executing program 2 (id=4331):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = open_tree(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x180100)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000e00)={0x18, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000c2e22782927adc7de836d90e6e49e9afc89d0c561abc8fd5a59b03b3b40e8fc7", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, r1, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@delneigh={0x44, 0x1a, 0x1, 0x70bd2b, 0x0, {0xa, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5}, [@NDA_CACHEINFO={0x14, 0x3, {0x7}}, @NDA_DST_IPV6={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x44}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syncfs(r4)
execveat(0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x2800)
ioctl$BTRFS_IOC_DEFRAG(r2, 0x50009402, 0x0)

140.146868ms ago: executing program 6 (id=4332):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0b0000000500000002000000ff00000005000000", @ANYRES32, @ANYBLOB="00008ce6ca997800001d000000000008001c51674c6c3667e3a49ed436bc778ee665f0915e00bc40d0cc84010c59a6740035205a571794d6d8fd01f3fa788ba070d33ad0159796c09a405c13ddbe1181d13a3fe2dce0f4a037ddeeed52720000000000000000c13f283ad43a5e0ece23c07ab3aa6e62", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x2, &(0x7f0000000440)=ANY=[@ANYBLOB="7a5b4f2e237a687b73b2b4ffa22821ce"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001100)={&(0x7f0000001500)='mm_page_alloc\x00', r2}, 0x18)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000180)=ANY=[@ANYBLOB="e0000002e0003ee755a7d8f7875dea4c"], 0x5000)
epoll_create1(0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000280), &(0x7f00000002c0)=r1}, 0x20)
epoll_create1(0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4, 0x2}, {0xc}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xfffffffffffffffe}}}]}, {0x25}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
select(0x40, &(0x7f0000000340)={0x1f, 0x0, 0x0, 0x0, 0x0, 0x2e787ec3}, 0x0, 0x0, 0x0)

106.790219ms ago: executing program 2 (id=4333):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r1}, 0x18)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000380), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7573627474795f6465766963655f743a73302073797374656d5f753a6f626a6563745f723a70746d785f743a73302030303030e9"], 0x7b)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$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")
sendmsg$key(0xffffffffffffffff, 0x0, 0x2)
r3 = dup(0xffffffffffffffff)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x4, 0x0, 0x0)

82.011409ms ago: executing program 0 (id=4334):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f0000000140)={'bond0\x00', 0x200})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})

762.73µs ago: executing program 2 (id=4335):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="2f01000000002b8000d15700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000c00)={0x1, &(0x7f0000000bc0)=[{0x45, 0xc, 0x3, 0x4}]})
writev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000300)='4', 0x1}], 0x1)

399.07µs ago: executing program 2 (id=4336):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_submit(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = inotify_init()
r5 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r6 = inotify_add_watch(r4, &(0x7f0000000240)='./file0\x00', 0x8c7)
write$binfmt_elf32(r5, &(0x7f0000000040)=ANY=[@ANYRES64=r6], 0x69)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
close(r5)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r9}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r10 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r10, &(0x7f0000000100)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x6, 0x3a, 'E', 0x3a, '@{@$\x9a$^', 0x3a, './file0', 0x3a, [0x46]}, 0x30)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)

0s ago: executing program 0 (id=4345):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r1}, 0x18)
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000380), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7573627474795f6465766963655f743a73302073797374656d5f753a6f626a6563745f723a70746d785f743a73302030303030e9"], 0x7b)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$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")
sendmsg$key(0xffffffffffffffff, 0x0, 0x2)
r3 = dup(0xffffffffffffffff)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x4, 0x0, 0x0)

kernel console output (not intermixed with test programs):

-fs (loop5): 1 truncate cleaned up
[  251.748036][T14426] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.763227][T14426] ext4 filesystem being mounted at /417/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.784885][   T31] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  251.820513][T14426] netlink: 'syz.5.3930': attribute type 10 has an invalid length.
[  251.829222][T14426] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3930'.
[  251.854376][T14426] batadv0: entered promiscuous mode
[  251.859855][T14426] batadv0: entered allmulticast mode
[  251.875758][T14426] batman_adv: batadv0: Adding interface: dummy0
[  251.882209][T14426] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.918065][T14426] batman_adv: batadv0: Interface activated: dummy0
[  251.999895][T14451] loop6: detected capacity change from 0 to 8192
[  252.009743][T14426] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.3930: corrupted xattr block 19: invalid ea_ino
[  252.068235][T14426] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  252.080948][T14426] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.3930: corrupted xattr block 19: invalid ea_ino
[  252.115022][T14426] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  252.135660][T14426] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.3930: Failed to acquire dquot type 1
[  252.239603][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.251733][T14456] loop6: detected capacity change from 0 to 512
[  252.258523][T14456] EXT4-fs: Ignoring removed nomblk_io_submit option
[  252.266803][   T31] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  252.281594][T14456] EXT4-fs: Ignoring removed mblk_io_submit option
[  252.306838][T14458] loop3: detected capacity change from 0 to 512
[  252.324645][T14461] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  252.337479][T14458] EXT4-fs: Ignoring removed oldalloc option
[  252.344251][T14456] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  252.372035][T14456] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -2
[  252.375360][T14458] EXT4-fs (loop3): 1 truncate cleaned up
[  252.375816][T14458] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.377424][T14458] EXT4-fs error (device loop3): htree_dirblock_to_tree:1082: inode #2: block 13: comm syz.3.3941: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  252.462370][T14456] EXT4-fs (loop6): 1 truncate cleaned up
[  252.477326][T14456] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.574547][T14458] EXT4-fs (loop3): Remounting filesystem read-only
[  252.623155][T14467] loop5: detected capacity change from 0 to 2048
[  252.641924][T14467] ext4: Unknown parameter 'subj_role'
[  252.648064][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.709894][T14474] 9pnet_fd: Insufficient options for proto=fd
[  252.788901][T14479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3944'.
[  253.047938][   T23] net_ratelimit: 27 callbacks suppressed
[  253.047954][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.404644][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.418947][   T29] kauditd_printk_skb: 221 callbacks suppressed
[  253.418964][   T29] audit: type=1326 audit(1744477420.253:8330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.470105][   T29] audit: type=1326 audit(1744477420.283:8331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.481241][T14490] loop3: detected capacity change from 0 to 512
[  253.493879][   T29] audit: type=1326 audit(1744477420.283:8332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.523960][   T29] audit: type=1326 audit(1744477420.283:8333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.547495][   T29] audit: type=1326 audit(1744477420.283:8334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.571138][   T29] audit: type=1326 audit(1744477420.283:8335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.594660][   T29] audit: type=1326 audit(1744477420.283:8336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.618355][   T29] audit: type=1326 audit(1744477420.283:8337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.641929][   T29] audit: type=1326 audit(1744477420.283:8338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.665508][   T29] audit: type=1326 audit(1744477420.283:8339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14487 comm="syz.3.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  253.689830][T14490] EXT4-fs: Ignoring removed nobh option
[  253.707863][T14490] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  253.716311][T14490] EXT4-fs error (device loop3): ext4_orphan_get:1390: inode #13: comm syz.3.3949: casefold flag without casefold feature
[  253.737733][T14490] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.3949: couldn't read orphan inode 13 (err -117)
[  253.751145][T14490] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  253.814485][T14493] loop5: detected capacity change from 0 to 2048
[  253.838292][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.865189][T14493] ext4: Unknown parameter 'subj_role'
[  253.900983][T14499] serio: Serial port ptm0
[  253.907433][T14497] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  253.969011][T14499] pimreg: entered allmulticast mode
[  254.000417][T14506] pim6reg: entered allmulticast mode
[  254.009207][T14499] pimreg: left allmulticast mode
[  254.032341][T14506] pim6reg: left allmulticast mode
[  254.239762][T14512] loop6: detected capacity change from 0 to 512
[  254.252803][T14514] netlink: 'syz.2.3958': attribute type 3 has an invalid length.
[  254.271404][T14512] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.3957: Failed to acquire dquot type 1
[  254.411729][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.428031][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.436170][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.448612][T14512] EXT4-fs (loop6): 1 truncate cleaned up
[  254.468010][T14512] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.495576][T14512] ext4 filesystem being mounted at /329/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  254.518855][T14512] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.635896][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.048215][ T3383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  255.165104][T14529] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3961'.
[  255.447990][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  255.458004][T14534] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3962'.
[  255.468822][T14533] loop2: detected capacity change from 0 to 2048
[  255.479582][T14533] EXT4-fs (loop2): failed to initialize system zone (-117)
[  255.491478][T14533] EXT4-fs (loop2): mount failed
[  255.616023][T14540] loop3: detected capacity change from 0 to 2048
[  255.677422][T14540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  255.704011][T14540] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.985828][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.224352][T14560] netlink: 'syz.6.3969': attribute type 3 has an invalid length.
[  256.322477][T14563] loop3: detected capacity change from 0 to 512
[  256.350583][T14563] EXT4-fs: Ignoring removed nobh option
[  256.385329][T14563] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  256.421069][T14563] EXT4-fs error (device loop3): ext4_orphan_get:1390: inode #13: comm syz.3.3970: casefold flag without casefold feature
[  256.446995][T14568] 9pnet_fd: Insufficient options for proto=fd
[  256.478018][T14563] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.3970: couldn't read orphan inode 13 (err -117)
[  256.490303][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  256.521483][T14563] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.566447][T14570] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3972'.
[  256.645131][T14571] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  256.698338][T14573] loop6: detected capacity change from 0 to 2048
[  256.752245][T14573] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.981509][T14573] binfmt_misc: register: failed to install interpreter file ./file0
[  257.324243][T14546] syz.2.3966 (14546) used greatest stack depth: 6080 bytes left
[  257.339197][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.471510][T14580] netlink: 34 bytes leftover after parsing attributes in process `syz.3.3974'.
[  257.933431][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.038417][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.087954][ T3383] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.341288][T14591] loop2: detected capacity change from 0 to 2048
[  258.385065][T14597] loop3: detected capacity change from 0 to 512
[  258.409534][T14597] EXT4-fs: Ignoring removed orlov option
[  258.416312][T14591] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.430822][T14597] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  258.479168][   T29] kauditd_printk_skb: 148 callbacks suppressed
[  258.479183][   T29] audit: type=1400 audit(1744477425.313:8486): avc:  denied  { mount } for  pid=14589 comm="syz.2.3978" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  258.511409][T14591] ext4 filesystem being mounted at /192/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  258.550922][T14597] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  258.564638][T14601] serio: Serial port ptm0
[  258.582855][T14604] 9pnet_fd: Insufficient options for proto=fd
[  258.607731][T14606] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3983'.
[  258.610709][T14597] EXT4-fs (loop3): orphan cleanup on readonly fs
[  258.636747][   T29] audit: type=1400 audit(1744477425.413:8487): avc:  denied  { read write } for  pid=11881 comm="syz-executor" name="loop0" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  258.660205][   T29] audit: type=1400 audit(1744477425.413:8488): avc:  denied  { open } for  pid=11881 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  258.683550][   T29] audit: type=1400 audit(1744477425.413:8489): avc:  denied  { ioctl } for  pid=11881 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=639 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  258.706388][T14597] Quota error (device loop3): v2_read_file_info: Free block number 38052 out of range (1, 6).
[  258.708420][   T29] audit: type=1400 audit(1744477425.413:8490): avc:  denied  { create } for  pid=14589 comm="syz.2.3978" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  258.738409][   T29] audit: type=1400 audit(1744477425.413:8491): avc:  denied  { ioctl } for  pid=14589 comm="syz.2.3978" path="socket:[40876]" dev="sockfs" ino=40876 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  258.763350][   T29] audit: type=1400 audit(1744477425.413:8492): avc:  denied  { create } for  pid=14589 comm="syz.2.3978" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  258.770834][T14601] pimreg: entered allmulticast mode
[  258.783897][   T29] audit: type=1400 audit(1744477425.413:8493): avc:  denied  { allowed } for  pid=14589 comm="bsddf" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  258.793571][T14597] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  258.808100][   T29] audit: type=1400 audit(1744477425.413:8494): avc:  denied  { create } for  pid=14589 comm="bsddf" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  258.856156][T14608] loop0: detected capacity change from 0 to 2048
[  258.864856][T14597] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  258.867239][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.883503][T14608] ext4: Unknown parameter 'subj_role'
[  258.889927][T14597] EXT4-fs (loop3): 1 truncate cleaned up
[  258.897853][T14601] pimreg: left allmulticast mode
[  258.903746][T14597] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  258.974726][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.995467][T14597] EXT4-fs error (device loop3): ext4_lookup:1793: inode #2: comm syz.3.3979: deleted inode referenced: 12
[  259.027585][T14597] EXT4-fs error (device loop3): ext4_lookup:1793: inode #2: comm syz.3.3979: deleted inode referenced: 12
[  259.060358][T14620] dummy0: left allmulticast mode
[  259.065484][T14620] bridge0: port 3(dummy0) entered disabled state
[  259.086794][T14620] batman_adv: batadv0: Adding interface: dummy0
[  259.093125][T14620] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.120118][T14620] batman_adv: batadv0: Interface activated: dummy0
[  259.170343][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.245554][T14638] 9pnet_fd: Insufficient options for proto=fd
[  259.282021][T14643] serio: Serial port ptm1
[  259.291712][T14639] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3992'.
[  259.336894][T14643] pimreg: entered allmulticast mode
[  259.342819][T14643] pimreg: left allmulticast mode
[  259.481293][T14650] netlink: 'syz.0.3997': attribute type 3 has an invalid length.
[  259.941949][T14661] netlink: 'syz.2.4000': attribute type 3 has an invalid length.
[  260.128151][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.177762][T14671] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4003'.
[  260.265281][T14679] loop5: detected capacity change from 0 to 512
[  260.272843][T14679] EXT4-fs: Ignoring removed nobh option
[  260.293475][T14679] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  260.312325][T14679] EXT4-fs error (device loop5): ext4_orphan_get:1390: inode #13: comm syz.5.4007: casefold flag without casefold feature
[  260.368042][T14679] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.4007: couldn't read orphan inode 13 (err -117)
[  260.383302][T14679] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  260.558289][T14696] FAULT_INJECTION: forcing a failure.
[  260.558289][T14696] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  260.571543][T14696] CPU: 1 UID: 0 PID: 14696 Comm: syz.3.4010 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  260.571574][T14696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  260.571590][T14696] Call Trace:
[  260.571598][T14696]  <TASK>
[  260.571608][T14696]  dump_stack_lvl+0xf6/0x150
[  260.571634][T14696]  dump_stack+0x15/0x1a
[  260.571661][T14696]  should_fail_ex+0x261/0x270
[  260.571689][T14696]  should_fail+0xb/0x10
[  260.571719][T14696]  should_fail_usercopy+0x1a/0x20
[  260.571761][T14696]  _copy_from_user+0x1c/0xa0
[  260.571800][T14696]  copy_msghdr_from_user+0x54/0x2b0
[  260.571879][T14696]  ? __fget_files+0x186/0x1c0
[  260.571926][T14696]  __sys_sendmsg+0x141/0x240
[  260.571976][T14696]  __x64_sys_sendmsg+0x46/0x50
[  260.572058][T14696]  x64_sys_call+0x26f3/0x2e10
[  260.572084][T14696]  do_syscall_64+0xc9/0x1c0
[  260.572115][T14696]  ? clear_bhb_loop+0x25/0x80
[  260.572140][T14696]  ? clear_bhb_loop+0x25/0x80
[  260.572167][T14696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.572224][T14696] RIP: 0033:0x7f7f2379d169
[  260.572320][T14696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.572342][T14696] RSP: 002b:00007f7f21e07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  260.572365][T14696] RAX: ffffffffffffffda RBX: 00007f7f239b5fa0 RCX: 00007f7f2379d169
[  260.572380][T14696] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  260.572437][T14696] RBP: 00007f7f21e07090 R08: 0000000000000000 R09: 0000000000000000
[  260.572456][T14696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.572468][T14696] R13: 0000000000000000 R14: 00007f7f239b5fa0 R15: 00007fff43d4abd8
[  260.572489][T14696]  </TASK>
[  260.782014][T14695] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  260.799339][T14700] netlink: 'syz.3.4012': attribute type 3 has an invalid length.
[  261.208062][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  261.306673][T14707] loop3: detected capacity change from 0 to 128
[  261.362658][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  261.418051][T14707] netlink: 300 bytes leftover after parsing attributes in process `syz.3.4014'.
[  261.646432][T14689] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  261.655030][T14689] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  261.715583][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.716124][T14707] loop3: detected capacity change from 0 to 8192
[  261.842289][T14710] loop5: detected capacity change from 0 to 8192
[  261.953754][T14712] serio: Serial port ptm0
[  261.988263][T14714] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  261.996902][T14714] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  262.011145][T14715] pimreg: entered allmulticast mode
[  262.017151][T14712] pimreg: left allmulticast mode
[  262.045476][T14717] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4017'.
[  262.054737][T14717] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4017'.
[  262.075182][T14714] loop5: detected capacity change from 0 to 2048
[  262.171695][T14714] veth0_macvtap: mtu greater than device maximum
[  262.428167][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  262.790990][T14731] loop6: detected capacity change from 0 to 512
[  262.821535][T14731] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  262.834289][T14733] loop5: detected capacity change from 0 to 512
[  262.842387][T14733] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  262.932086][T14733] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  262.932397][T14731] EXT4-fs (loop6): 1 truncate cleaned up
[  262.985568][T14731] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.000559][T14733] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #11: comm syz.5.4023: corrupted inode contents
[  263.028553][T14733] EXT4-fs error (device loop5): ext4_dirty_inode:6074: inode #11: comm syz.5.4023: mark_inode_dirty error
[  263.047843][T14733] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.4023: invalid indirect mapped block 1 (level 1)
[  263.113824][T14733] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #11: comm syz.5.4023: corrupted inode contents
[  263.161316][T14733] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  263.165755][T14744] netlink: 'syz.2.4026': attribute type 3 has an invalid length.
[  263.192418][T14733] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #11: comm syz.5.4023: corrupted inode contents
[  263.223846][T14733] EXT4-fs error (device loop5): ext4_truncate:4254: inode #11: comm syz.5.4023: mark_inode_dirty error
[  263.249621][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.265388][T14733] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  263.286945][T14733] EXT4-fs (loop5): 1 truncate cleaned up
[  263.303101][T14733] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.385154][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.448205][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  263.463322][T14754] serio: Serial port ptm0
[  263.483415][T14757] serio: Serial port ptm1
[  263.504030][   T29] kauditd_printk_skb: 315 callbacks suppressed
[  263.504086][   T29] audit: type=1400 audit(1744477430.333:8810): avc:  denied  { read write } for  pid=14759 comm="syz.6.4033" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  263.504452][T14760] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  263.510319][   T29] audit: type=1400 audit(1744477430.333:8811): avc:  denied  { open } for  pid=14759 comm="syz.6.4033" path="/dev/raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  263.565839][   T29] audit: type=1400 audit(1744477430.333:8812): avc:  denied  { ioctl } for  pid=14759 comm="syz.6.4033" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  263.570871][T14760] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  263.611860][T14754] pimreg: entered allmulticast mode
[  263.620751][T14757] pimreg: entered allmulticast mode
[  263.626673][T14754] pimreg: left allmulticast mode
[  263.641138][T14757] pimreg: left allmulticast mode
[  263.657905][   T29] audit: type=1400 audit(1744477430.433:8813): avc:  denied  { read } for  pid=14756 comm="syz.2.4032" dev="nsfs" ino=4026532392 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  263.679304][   T29] audit: type=1400 audit(1744477430.433:8814): avc:  denied  { open } for  pid=14756 comm="syz.2.4032" path="net:[4026532392]" dev="nsfs" ino=4026532392 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  263.697446][T14760] loop6: detected capacity change from 0 to 2048
[  263.702660][   T29] audit: type=1400 audit(1744477430.433:8815): avc:  denied  { create } for  pid=14756 comm="syz.2.4032" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  263.729055][   T29] audit: type=1400 audit(1744477430.433:8816): avc:  denied  { setopt } for  pid=14756 comm="syz.2.4032" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  263.749183][   T29] audit: type=1400 audit(1744477430.443:8817): avc:  denied  { create } for  pid=14756 comm="syz.2.4032" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  263.768934][   T29] audit: type=1400 audit(1744477430.443:8818): avc:  denied  { create } for  pid=14753 comm="syz.5.4030" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  263.788636][   T29] audit: type=1400 audit(1744477430.443:8819): avc:  denied  { setopt } for  pid=14753 comm="syz.5.4030" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  264.072777][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  264.080956][T14778] loop5: detected capacity change from 0 to 512
[  264.085763][T14779] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4037'.
[  264.098788][T14778] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  264.113888][T14779] loop3: detected capacity change from 0 to 512
[  264.131678][T14778] EXT4-fs (loop5): 1 truncate cleaned up
[  264.138840][T14778] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  264.435896][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  264.463204][T14779] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4037: corrupted inode contents
[  264.476577][T14779] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #16: comm syz.3.4037: mark_inode_dirty error
[  264.488499][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  264.521774][T14779] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4037: corrupted inode contents
[  264.546269][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.572658][T14779] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #16: comm syz.3.4037: mark_inode_dirty error
[  264.600536][T14787] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4038'.
[  264.613108][T14779] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4037: corrupted inode contents
[  264.651721][T14787] loop5: detected capacity change from 0 to 512
[  264.660278][T14779] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  264.676671][T14779] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4037: corrupted inode contents
[  264.700325][T14779] EXT4-fs error (device loop3): ext4_truncate:4254: inode #16: comm syz.3.4037: mark_inode_dirty error
[  264.721110][T14787] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4038: corrupted inode contents
[  264.750283][T14779] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  264.759537][T14787] EXT4-fs error (device loop5): ext4_dirty_inode:6074: inode #16: comm syz.5.4038: mark_inode_dirty error
[  264.782068][T14787] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4038: corrupted inode contents
[  264.785502][T14779] EXT4-fs (loop3): 1 truncate cleaned up
[  264.813224][ T3594] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:53: Failed to release dquot type 1
[  264.840766][T14779] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.882420][T14787] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.4038: mark_inode_dirty error
[  264.882482][T14779] ext4 filesystem being mounted at /234/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  264.944384][T14787] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4038: corrupted inode contents
[  264.958330][T14802] FAULT_INJECTION: forcing a failure.
[  264.958330][T14802] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  264.971472][T14802] CPU: 0 UID: 0 PID: 14802 Comm: syz.6.4040 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  264.971503][T14802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  264.971528][T14802] Call Trace:
[  264.971535][T14802]  <TASK>
[  264.971542][T14802]  dump_stack_lvl+0xf6/0x150
[  264.971652][T14802]  dump_stack+0x15/0x1a
[  264.971745][T14802]  should_fail_ex+0x261/0x270
[  264.971780][T14802]  should_fail+0xb/0x10
[  264.971815][T14802]  should_fail_usercopy+0x1a/0x20
[  264.971852][T14802]  _copy_from_user+0x1c/0xa0
[  264.971888][T14802]  __sys_bpf+0x16a/0x800
[  264.971915][T14802]  __x64_sys_bpf+0x43/0x50
[  264.971936][T14802]  x64_sys_call+0x23da/0x2e10
[  264.971977][T14802]  do_syscall_64+0xc9/0x1c0
[  264.972007][T14802]  ? clear_bhb_loop+0x25/0x80
[  264.972063][T14802]  ? clear_bhb_loop+0x25/0x80
[  264.972135][T14802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.972160][T14802] RIP: 0033:0x7f4330fad169
[  264.972178][T14802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.972241][T14802] RSP: 002b:00007f432f5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  264.972260][T14802] RAX: ffffffffffffffda RBX: 00007f43311c6080 RCX: 00007f4330fad169
[  264.972275][T14802] RDX: 0000000000000048 RSI: 0000200000000140 RDI: 0000000000000000
[  264.972288][T14802] RBP: 00007f432f5f6090 R08: 0000000000000000 R09: 0000000000000000
[  264.972300][T14802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  264.972314][T14802] R13: 0000000000000001 R14: 00007f43311c6080 R15: 00007ffc1f132a78
[  264.972335][T14802]  </TASK>
[  265.146648][T14787] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  265.180327][T14779] netlink: 'syz.3.4037': attribute type 10 has an invalid length.
[  265.188533][T14779] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4037'.
[  265.198074][T14779] batadv0: entered promiscuous mode
[  265.203393][T14779] batadv0: entered allmulticast mode
[  265.209218][T14787] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4038: corrupted inode contents
[  265.225493][T14808] loop0: detected capacity change from 0 to 512
[  265.232430][T14779] bridge0: port 4(batadv0) entered blocking state
[  265.234746][T14808] EXT4-fs: Ignoring removed nobh option
[  265.239037][T14779] bridge0: port 4(batadv0) entered disabled state
[  265.251366][T14787] EXT4-fs error (device loop5): ext4_truncate:4254: inode #16: comm syz.5.4038: mark_inode_dirty error
[  265.269666][T14787] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  265.280037][T14808] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  265.280301][T14787] EXT4-fs (loop5): 1 truncate cleaned up
[  265.294539][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.298372][T14808] EXT4-fs error (device loop0): ext4_orphan_get:1390: inode #13: comm syz.0.4043: casefold flag without casefold feature
[  265.303821][T14779] bridge0: port 4(batadv0) entered blocking state
[  265.321869][T14779] bridge0: port 4(batadv0) entered forwarding state
[  265.330217][T14787] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.331288][ T3595] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:54: Failed to release dquot type 1
[  265.342957][T14787] ext4 filesystem being mounted at /434/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  265.366267][T14814] serio: Serial port ptm0
[  265.374042][T14809] dummy0: left allmulticast mode
[  265.379301][T14809] bridge0: port 3(dummy0) entered disabled state
[  265.391151][T14787] netlink: 'syz.5.4038': attribute type 10 has an invalid length.
[  265.399121][T14787] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4038'.
[  265.408491][T14808] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.4043: couldn't read orphan inode 13 (err -117)
[  265.421369][T14808] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.443356][T14818] batman_adv: batadv0: Interface deactivated: dummy0
[  265.450228][T14818] batman_adv: batadv0: Removing interface: dummy0
[  265.469501][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.508557][T14808] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  265.528151][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.530166][T14787] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  265.561230][T14814] pimreg: entered allmulticast mode
[  265.625966][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.648835][ T3594] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  265.658148][ T3594] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  265.846160][T14829] wireguard1: entered promiscuous mode
[  265.851776][T14829] wireguard1: entered allmulticast mode
[  266.167768][T11881] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.245758][T14842] loop2: detected capacity change from 0 to 256
[  266.255233][T14842] msdos: Bad value for 'gid'
[  266.259958][T14842] msdos: Bad value for 'gid'
[  266.329313][T14846] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  266.337748][T14846] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  266.449188][T14850] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4056'.
[  266.452523][T14848] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4055'.
[  266.494342][T14850] loop2: detected capacity change from 0 to 512
[  266.533577][T14850] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4056: corrupted inode contents
[  266.563074][T14850] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #16: comm syz.2.4056: mark_inode_dirty error
[  266.574838][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.583414][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.605877][T14857] serio: Serial port ptm0
[  266.611840][T14850] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4056: corrupted inode contents
[  266.624698][T14850] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #16: comm syz.2.4056: mark_inode_dirty error
[  266.636568][T14850] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4056: corrupted inode contents
[  266.650635][T14850] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  266.663565][T14862] pimreg: entered allmulticast mode
[  266.669768][T14857] pimreg: left allmulticast mode
[  266.677119][T14850] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4056: corrupted inode contents
[  266.689667][T14850] EXT4-fs error (device loop2): ext4_truncate:4254: inode #16: comm syz.2.4056: mark_inode_dirty error
[  266.704282][T14850] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  266.714290][T14850] EXT4-fs (loop2): 1 truncate cleaned up
[  266.721688][T14850] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.734441][ T3604] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:63: Failed to release dquot type 1
[  266.746361][T14850] ext4 filesystem being mounted at /215/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.763195][T14850] netlink: 'syz.2.4056': attribute type 10 has an invalid length.
[  266.771257][T14850] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4056'.
[  266.780845][T14850] batadv0: entered promiscuous mode
[  266.786359][T14850] batadv0: entered allmulticast mode
[  266.789448][T14871] loop6: detected capacity change from 0 to 512
[  266.794874][T14850] bridge0: port 3(batadv0) entered blocking state
[  266.801190][T14871] EXT4-fs: Ignoring removed nobh option
[  266.804489][T14850] bridge0: port 3(batadv0) entered disabled state
[  266.819125][T14850] bridge0: port 3(batadv0) entered blocking state
[  266.825697][T14850] bridge0: port 3(batadv0) entered forwarding state
[  266.828856][T14871] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117
[  266.849969][T14871] EXT4-fs error (device loop6): ext4_orphan_get:1390: inode #13: comm syz.6.4063: casefold flag without casefold feature
[  266.863504][T14871] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.4063: couldn't read orphan inode 13 (err -117)
[  266.864809][T14869] loop5: detected capacity change from 0 to 512
[  266.877199][T14875] netlink: 'syz.3.4064': attribute type 3 has an invalid length.
[  266.890405][T14869] EXT4-fs: Ignoring removed orlov option
[  266.896498][T14871] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.913034][T14869] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  266.924217][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.933911][T14869] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  266.942535][T14869] EXT4-fs (loop5): orphan cleanup on readonly fs
[  266.949610][T14869] EXT4-fs warning (device loop5): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  266.971169][T14869] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  266.983949][T14869] EXT4-fs (loop5): 1 truncate cleaned up
[  266.995423][T14880] netlink: 'syz.3.4066': attribute type 13 has an invalid length.
[  267.005645][T14869] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  267.031919][T14882] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  267.094041][T14869] EXT4-fs error (device loop5): ext4_lookup:1793: inode #2: comm syz.5.4062: deleted inode referenced: 12
[  267.121891][T14880] bridge0: port 4(batadv0) entered disabled state
[  267.128484][T14880] bridge0: port 2(bridge_slave_1) entered disabled state
[  267.135742][T14880] bridge0: port 1(bridge_slave_0) entered disabled state
[  267.187253][T14880] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  267.201635][T14880] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  267.208309][ T3604] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  267.218401][ T3604] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  267.220023][T14880] hsr0: left promiscuous mode
[  267.260370][T14880] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  267.269197][T14880] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  267.277566][T14880] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  267.286330][T14880] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  267.356414][T14886] 9pnet_fd: Insufficient options for proto=fd
[  267.482432][T14890] netlink: 'syz.3.4068': attribute type 10 has an invalid length.
[  267.490338][T14890] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4068'.
[  267.500198][T14890] 8021q: adding VLAN 0 to HW filter on device batadv0
[  267.511647][T14890] batman_adv: batadv0: Adding interface: dummy0
[  267.517947][T14890] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  267.543312][T14890] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  267.640806][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.923165][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.942173][T14894] loop2: detected capacity change from 0 to 1024
[  267.948618][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  267.970458][T14894] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.071671][T14908] netlink: 'syz.5.4069': attribute type 10 has an invalid length.
[  268.079679][T14908] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4069'.
[  268.164738][T14912] netlink: 536 bytes leftover after parsing attributes in process `syz.2.4071'.
[  268.246025][T14914] netlink: 'syz.3.4076': attribute type 3 has an invalid length.
[  268.554784][   T29] kauditd_printk_skb: 163 callbacks suppressed
[  268.554801][   T29] audit: type=1400 audit(1744477435.383:8979): avc:  denied  { mounton } for  pid=14922 comm="syz.6.4078" path="/361/file0" dev="tmpfs" ino=1948 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  268.554828][T14923] 9pnet_fd: Insufficient options for proto=fd
[  268.596922][T14925] loop6: detected capacity change from 0 to 512
[  268.610235][T14925] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.622986][T14925] ext4 filesystem being mounted at /362/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  268.623243][   T29] audit: type=1400 audit(1744477435.463:8980): avc:  denied  { mount } for  pid=14924 comm="syz.6.4079" name="/" dev="loop6" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  268.655988][   T29] audit: type=1400 audit(1744477435.483:8981): avc:  denied  { unmount } for  pid=9895 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  268.676213][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.710316][   T29] audit: type=1326 audit(1744477435.543:8982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14930 comm="syz.6.4081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4330fad169 code=0x7ffc0000
[  268.734058][   T29] audit: type=1326 audit(1744477435.543:8983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14930 comm="syz.6.4081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4330fad169 code=0x7ffc0000
[  268.756921][T14933] loop6: detected capacity change from 0 to 2048
[  268.757624][   T29] audit: type=1326 audit(1744477435.543:8984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14930 comm="syz.6.4081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f4330fad169 code=0x7ffc0000
[  268.787362][   T29] audit: type=1326 audit(1744477435.543:8985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14930 comm="syz.6.4081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4330fad169 code=0x7ffc0000
[  268.826367][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.836476][T14933] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  268.854845][   T29] audit: type=1400 audit(1744477435.683:8986): avc:  denied  { write } for  pid=14932 comm="syz.6.4082" name="/" dev="loop6" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  268.876811][   T29] audit: type=1400 audit(1744477435.683:8987): avc:  denied  { add_name } for  pid=14932 comm="syz.6.4082" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  268.877046][T14937] loop5: detected capacity change from 0 to 512
[  268.897526][   T29] audit: type=1400 audit(1744477435.683:8988): avc:  denied  { create } for  pid=14932 comm="syz.6.4082" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  268.904043][T14937] EXT4-fs: Ignoring removed nobh option
[  268.933373][T14937] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  268.944184][T14937] EXT4-fs error (device loop5): ext4_orphan_get:1390: inode #13: comm syz.5.4084: casefold flag without casefold feature
[  268.945435][T14933] binfmt_misc: register: failed to install interpreter file ./file0
[  268.967663][T14937] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.4084: couldn't read orphan inode 13 (err -117)
[  268.969702][    T9] net_ratelimit: 2 callbacks suppressed
[  268.969719][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  269.000698][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.010722][T14937] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.100146][T14950] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  269.276962][T14956] 9pnet_fd: Insufficient options for proto=fd
[  269.286090][T14948] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  269.295042][T14948] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  269.421010][T14960] netlink: 'syz.3.4088': attribute type 10 has an invalid length.
[  269.428882][T14960] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4088'.
[  269.910439][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.935446][T14967] serio: Serial port ptm0
[  269.956267][T14969] loop2: detected capacity change from 0 to 2048
[  269.992921][T14967] pimreg: entered allmulticast mode
[  269.998881][T14967] pimreg: left allmulticast mode
[  270.008094][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.019267][T14969] GPT:first_usable_lbas don't match.
[  270.024616][T14969] GPT:34 != 290
[  270.028169][T14969] GPT: Use GNU Parted to correct GPT errors.
[  270.034297][T14969]  loop2: p1 p2 p3
[  270.051748][T14969] netlink: 132 bytes leftover after parsing attributes in process `syz.2.4093'.
[  270.081577][T14969] 9pnet: Could not find request transport: fd0xffffffffffffffff
[  270.105753][T14980] loop3: detected capacity change from 0 to 2048
[  270.130513][T14980] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.184602][T14980] binfmt_misc: register: failed to install interpreter file ./file0
[  270.237359][T14986] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.245658][T14986] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.259683][T14986] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.271126][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.299995][T14993] loop3: detected capacity change from 0 to 2048
[  270.306499][T14994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  270.317332][T14994] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  270.326980][T14993] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.352169][T15000] loop6: detected capacity change from 0 to 2048
[  270.372453][T15000] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.375308][T14993] binfmt_misc: register: failed to install interpreter file ./file0
[  270.409451][T15000] binfmt_misc: register: failed to install interpreter file ./file0
[  271.048200][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.090177][T14986] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.098457][T14986] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.214689][T15011] netlink: 'syz.0.4104': attribute type 3 has an invalid length.
[  271.335913][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.369367][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.378852][ T1038] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.411846][T15016] netlink: 'syz.3.4106': attribute type 3 has an invalid length.
[  271.521459][T15022] loop6: detected capacity change from 0 to 2048
[  271.551937][T15022] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  271.582828][T15022] binfmt_misc: register: failed to install interpreter file ./file0
[  271.667975][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.708528][T15014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  271.717119][T15014] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  271.763990][T15029] loop6: detected capacity change from 0 to 2048
[  271.800364][T15029] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  271.909965][T15029] binfmt_misc: register: failed to install interpreter file ./file0
[  271.933915][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.967443][T15034] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  271.976023][T15034] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  271.997348][T15034] loop6: detected capacity change from 0 to 2048
[  272.087997][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.500044][T15047] loop0: detected capacity change from 0 to 2048
[  272.521997][T15047] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  272.550847][T15047] binfmt_misc: register: failed to install interpreter file ./file0
[  272.573582][T15052] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4116'.
[  272.632648][T15055] loop3: detected capacity change from 0 to 256
[  272.650936][T15055] FAT-fs (loop3): error, clusters badly computed (1 != 0)
[  272.653116][T15052] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  272.670919][T15055] FAT-fs (loop3): error, clusters badly computed (2 != 1)
[  272.710857][T15063] loop6: detected capacity change from 0 to 512
[  272.717525][T15063] EXT4-fs: Ignoring removed nobh option
[  272.726140][T15063] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117
[  272.789526][T15063] EXT4-fs error (device loop6): ext4_orphan_get:1390: inode #13: comm syz.6.4118: casefold flag without casefold feature
[  272.827822][T15063] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.4118: couldn't read orphan inode 13 (err -117)
[  272.885287][T15063] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  272.965290][T15066] 9pnet_fd: Insufficient options for proto=fd
[  272.977061][T15067] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  273.024961][T15069] loop2: detected capacity change from 0 to 2048
[  273.042459][T15069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.074009][T15069] binfmt_misc: register: failed to install interpreter file ./file0
[  273.105571][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.203990][T15073] loop2: detected capacity change from 0 to 2048
[  273.232510][T15073] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.264125][T15077] FAULT_INJECTION: forcing a failure.
[  273.264125][T15077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  273.277270][T15077] CPU: 1 UID: 0 PID: 15077 Comm: syz.5.4122 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  273.277327][T15077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  273.277343][T15077] Call Trace:
[  273.277350][T15077]  <TASK>
[  273.277358][T15077]  dump_stack_lvl+0xf6/0x150
[  273.277388][T15077]  dump_stack+0x15/0x1a
[  273.277409][T15077]  should_fail_ex+0x261/0x270
[  273.277444][T15077]  should_fail+0xb/0x10
[  273.277517][T15077]  should_fail_usercopy+0x1a/0x20
[  273.277549][T15077]  _copy_from_user+0x1c/0xa0
[  273.277590][T15077]  copy_msghdr_from_user+0x54/0x2b0
[  273.277651][T15077]  ? __fget_files+0x186/0x1c0
[  273.277676][T15077]  __sys_sendmsg+0x141/0x240
[  273.277729][T15077]  __x64_sys_sendmsg+0x46/0x50
[  273.277834][T15077]  x64_sys_call+0x26f3/0x2e10
[  273.277882][T15077]  do_syscall_64+0xc9/0x1c0
[  273.277914][T15077]  ? clear_bhb_loop+0x25/0x80
[  273.277967][T15077]  ? clear_bhb_loop+0x25/0x80
[  273.277994][T15077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.278020][T15077] RIP: 0033:0x7f7311bbd169
[  273.278038][T15077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.278099][T15077] RSP: 002b:00007f7310227038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  273.278122][T15077] RAX: ffffffffffffffda RBX: 00007f7311dd5fa0 RCX: 00007f7311bbd169
[  273.278137][T15077] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  273.278151][T15077] RBP: 00007f7310227090 R08: 0000000000000000 R09: 0000000000000000
[  273.278166][T15077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  273.278181][T15077] R13: 0000000000000000 R14: 00007f7311dd5fa0 R15: 00007ffc4c99e298
[  273.278205][T15077]  </TASK>
[  273.461642][T15073] binfmt_misc: register: failed to install interpreter file ./file0
[  273.551552][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.571033][   T29] kauditd_printk_skb: 196 callbacks suppressed
[  273.571051][   T29] audit: type=1400 audit(1744477440.403:9183): avc:  denied  { unmount } for  pid=11676 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  273.600042][T15079] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  273.608518][T15079] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  273.625604][T15084] loop2: detected capacity change from 0 to 1024
[  273.632731][T15084] EXT4-fs: Ignoring removed nobh option
[  273.638351][T15084] EXT4-fs: Ignoring removed bh option
[  273.648404][T11881] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.685666][T15087] loop5: detected capacity change from 0 to 1024
[  273.687928][   T29] audit: type=1326 audit(1744477440.443:9184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15081 comm="syz.3.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  273.715577][   T29] audit: type=1326 audit(1744477440.453:9185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15081 comm="syz.3.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  273.739219][   T29] audit: type=1326 audit(1744477440.453:9186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15081 comm="syz.3.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  273.752205][T15087] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.817889][T15087] ext4 filesystem being mounted at /445/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  273.834920][T15094] loop3: detected capacity change from 0 to 512
[  273.843043][T15094] EXT4-fs: Ignoring removed oldalloc option
[  273.852132][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.861270][   T29] audit: type=1400 audit(1744477440.683:9187): avc:  denied  { mounton } for  pid=15092 comm="syz.3.4128" path="/253/file0" dev="tmpfs" ino=1359 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  273.886522][T15084] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  273.912868][T15094] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.4128: Parent and EA inode have the same ino 15
[  273.956423][   T29] audit: type=1400 audit(1744477440.783:9188): avc:  denied  { create } for  pid=15101 comm="syz.6.4130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  273.976133][   T29] audit: type=1400 audit(1744477440.783:9189): avc:  denied  { setopt } for  pid=15101 comm="syz.6.4130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  273.995843][   T29] audit: type=1400 audit(1744477440.783:9190): avc:  denied  { write } for  pid=15101 comm="syz.6.4130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  274.045276][T15094] EXT4-fs (loop3): Remounting filesystem read-only
[  274.051958][T15094] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  274.082108][   T29] audit: type=1326 audit(1744477440.903:9191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.6.4132" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4330fad169 code=0x0
[  274.105253][   T29] audit: type=1400 audit(1744477440.913:9192): avc:  denied  { create } for  pid=15083 comm="syz.2.4124" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  274.105289][T15094] EXT4-fs (loop3): 1 orphan inode deleted
[  274.135973][T15110] 
: renamed from bond0 (while UP)
[  274.144912][T15094] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  274.168055][    T9] net_ratelimit: 2 callbacks suppressed
[  274.168069][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.168119][T15094] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.181305][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.182159][T15111] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  274.208391][T15111] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  274.210021][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.221656][T15094] FAULT_INJECTION: forcing a failure.
[  274.221656][T15094] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.238255][T15094] CPU: 1 UID: 0 PID: 15094 Comm: syz.3.4128 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  274.238287][T15094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  274.238301][T15094] Call Trace:
[  274.238309][T15094]  <TASK>
[  274.238317][T15094]  dump_stack_lvl+0xf6/0x150
[  274.238345][T15094]  dump_stack+0x15/0x1a
[  274.238365][T15094]  should_fail_ex+0x261/0x270
[  274.238460][T15094]  should_fail+0xb/0x10
[  274.238559][T15094]  should_fail_usercopy+0x1a/0x20
[  274.238593][T15094]  _copy_to_user+0x20/0xa0
[  274.238627][T15094]  rng_dev_read+0x3f4/0x720
[  274.238691][T15094]  vfs_readv+0x3e5/0x660
[  274.238716][T15094]  ? __pfx_rng_dev_read+0x10/0x10
[  274.238756][T15094]  __x64_sys_preadv+0xf9/0x1c0
[  274.238795][T15094]  x64_sys_call+0x1410/0x2e10
[  274.238816][T15094]  do_syscall_64+0xc9/0x1c0
[  274.238847][T15094]  ? clear_bhb_loop+0x25/0x80
[  274.238873][T15094]  ? clear_bhb_loop+0x25/0x80
[  274.238907][T15094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.238932][T15094] RIP: 0033:0x7f7f2379d169
[  274.238950][T15094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.238971][T15094] RSP: 002b:00007f7f21e07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  274.238994][T15094] RAX: ffffffffffffffda RBX: 00007f7f239b5fa0 RCX: 00007f7f2379d169
[  274.239007][T15094] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 000000000000000a
[  274.239019][T15094] RBP: 00007f7f21e07090 R08: 0000000000000000 R09: 0000000000000000
[  274.239078][T15094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.239110][T15094] R13: 0000000000000000 R14: 00007f7f239b5fa0 R15: 00007fff43d4abd8
[  274.239128][T15094]  </TASK>
[  274.418840][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.443874][T15116] loop2: detected capacity change from 0 to 2048
[  274.480626][T15116] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  274.518742][T15116] binfmt_misc: register: failed to install interpreter file ./file0
[  275.145025][T15118] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  275.153558][T15118] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  275.208093][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.229477][T15136] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4142'.
[  275.252891][T15136] loop0: detected capacity change from 0 to 512
[  275.277261][T15136] EXT4-fs error (device loop0): ext4_do_update_inode:5182: inode #16: comm syz.0.4142: corrupted inode contents
[  275.292400][T15136] EXT4-fs error (device loop0): ext4_dirty_inode:6074: inode #16: comm syz.0.4142: mark_inode_dirty error
[  275.305014][T15136] EXT4-fs error (device loop0): ext4_do_update_inode:5182: inode #16: comm syz.0.4142: corrupted inode contents
[  275.320578][T15136] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #16: comm syz.0.4142: mark_inode_dirty error
[  275.332711][T15136] EXT4-fs error (device loop0): ext4_do_update_inode:5182: inode #16: comm syz.0.4142: corrupted inode contents
[  275.347555][T15136] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  275.356887][T15136] EXT4-fs error (device loop0): ext4_do_update_inode:5182: inode #16: comm syz.0.4142: corrupted inode contents
[  275.371729][T15136] EXT4-fs error (device loop0): ext4_truncate:4254: inode #16: comm syz.0.4142: mark_inode_dirty error
[  275.383328][T15136] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  275.395701][T15136] EXT4-fs (loop0): 1 truncate cleaned up
[  275.407742][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  275.408105][T15136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  275.432559][T15136] ext4 filesystem being mounted at /157/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.452724][T15136] dummy0: left allmulticast mode
[  275.458119][T15136] bridge0: port 3(dummy0) entered disabled state
[  275.467195][T15136] batman_adv: batadv0: Adding interface: dummy0
[  275.473640][T15136] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.499612][T15136] batman_adv: batadv0: Interface activated: dummy0
[  275.537241][T15142] loop2: detected capacity change from 0 to 512
[  275.549277][T15142] EXT4-fs: Ignoring removed oldalloc option
[  275.564895][T15142] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.4144: Parent and EA inode have the same ino 15
[  275.579477][T15142] EXT4-fs (loop2): Remounting filesystem read-only
[  275.586058][T15142] EXT4-fs warning (device loop2): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[  275.596494][T15142] EXT4-fs (loop2): 1 orphan inode deleted
[  275.732931][T15159] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4149'.
[  275.748679][T15159] loop5: detected capacity change from 0 to 512
[  275.763892][T15159] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4149: corrupted inode contents
[  275.776548][T15159] EXT4-fs error (device loop5): ext4_dirty_inode:6074: inode #16: comm syz.5.4149: mark_inode_dirty error
[  275.788426][T15159] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4149: corrupted inode contents
[  275.801580][T15159] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.4149: mark_inode_dirty error
[  275.814860][T15159] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4149: corrupted inode contents
[  275.829873][T15159] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  275.840048][T15159] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4149: corrupted inode contents
[  275.854124][T15159] EXT4-fs error (device loop5): ext4_truncate:4254: inode #16: comm syz.5.4149: mark_inode_dirty error
[  275.867030][T15159] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  275.878618][T15159] EXT4-fs (loop5): 1 truncate cleaned up
[  275.885453][T15159] ext4 filesystem being mounted at /449/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.900071][ T3595] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:54: Failed to release dquot type 1
[  275.903251][T15159] netlink: 'syz.5.4149': attribute type 10 has an invalid length.
[  275.919789][T15159] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4149'.
[  275.931020][T15159] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  276.543973][T15177] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4156'.
[  276.615362][T15177] loop3: detected capacity change from 0 to 512
[  276.655465][T15177] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4156: corrupted inode contents
[  276.667745][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.675879][T15177] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #16: comm syz.3.4156: mark_inode_dirty error
[  276.690670][T15177] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4156: corrupted inode contents
[  276.695209][T15182] serio: Serial port ptm0
[  276.704145][T15177] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #16: comm syz.3.4156: mark_inode_dirty error
[  276.718996][T15177] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4156: corrupted inode contents
[  276.731706][T15177] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  276.740689][T15177] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4156: corrupted inode contents
[  276.753090][T15177] EXT4-fs error (device loop3): ext4_truncate:4254: inode #16: comm syz.3.4156: mark_inode_dirty error
[  276.761663][T15182] pimreg: entered allmulticast mode
[  276.764662][T15177] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  276.773222][T15182] pimreg: left allmulticast mode
[  276.780881][T15177] EXT4-fs (loop3): 1 truncate cleaned up
[  276.790284][T15177] ext4 filesystem being mounted at /258/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  276.801133][ T3595] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:54: Failed to release dquot type 1
[  276.856464][T15185] bond1: entered promiscuous mode
[  276.861575][T15185] bond1: entered allmulticast mode
[  276.866883][T15185] 8021q: adding VLAN 0 to HW filter on device bond1
[  276.876190][T15185] bond1 (unregistering): Released all slaves
[  276.943276][T15189] 9pnet_fd: Insufficient options for proto=fd
[  277.005001][T15199] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4162'.
[  277.084322][T15199] loop2: detected capacity change from 0 to 512
[  277.142661][T15199] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4162: corrupted inode contents
[  277.173774][T15218] netlink: 120 bytes leftover after parsing attributes in process `syz.6.4168'.
[  277.183245][T15218] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4168'.
[  277.204482][T15199] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #16: comm syz.2.4162: mark_inode_dirty error
[  277.221475][T15199] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4162: corrupted inode contents
[  277.239907][T15191] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  277.240493][T15221] serio: Serial port ptm0
[  277.253287][T15191] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  277.261326][T15199] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #16: comm syz.2.4162: mark_inode_dirty error
[  277.273629][T15199] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4162: corrupted inode contents
[  277.285814][T15199] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  277.294829][T15199] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4162: corrupted inode contents
[  277.307080][T15199] EXT4-fs error (device loop2): ext4_truncate:4254: inode #16: comm syz.2.4162: mark_inode_dirty error
[  277.313615][T15221] pimreg: entered allmulticast mode
[  277.324979][T15221] pimreg: left allmulticast mode
[  277.326550][T15199] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  277.341215][T15199] EXT4-fs (loop2): 1 truncate cleaned up
[  277.348178][T15199] ext4 filesystem being mounted at /233/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.358876][ T3604] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:63: Failed to release dquot type 1
[  277.369438][T15199] netlink: 'syz.2.4162': attribute type 10 has an invalid length.
[  277.378290][T15199] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4162'.
[  277.491703][ T1038] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.536373][T15234] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  277.609275][T15238] loop2: detected capacity change from 0 to 2048
[  277.616711][T15234] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  277.759512][T15238] binfmt_misc: register: failed to install interpreter file ./file0
[  277.925689][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.965277][T15244] loop3: detected capacity change from 0 to 512
[  277.973000][T15244] EXT4-fs: Ignoring removed nomblk_io_submit option
[  277.982270][T15244] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  277.993167][T15244] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  278.001713][T15244] EXT4-fs (loop3): 1 truncate cleaned up
[  278.013953][T15244] EXT4-fs error (device loop3): ext4_map_blocks:674: inode #2: block 4: comm syz.3.4178: lblock 0 mapped to illegal pblock 4 (length 1)
[  278.029212][T15244] EXT4-fs (loop3): Remounting filesystem read-only
[  278.158773][T15250] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4180'.
[  278.213017][T15252] netlink: 120 bytes leftover after parsing attributes in process `syz.3.4181'.
[  278.222278][T15252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4181'.
[  278.311533][T15257] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4183'.
[  278.329698][T15262] serio: Serial port ptm0
[  278.385592][T15262] pimreg: entered allmulticast mode
[  278.391700][T15262] pimreg: left allmulticast mode
[  278.481360][T15269] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4186'.
[  278.515982][T15271] serio: Serial port ptm0
[  278.593477][T15275] pimreg: entered allmulticast mode
[  278.602347][T15271] pimreg: left allmulticast mode
[  278.619086][   T23] IPVS: starting estimator thread 0...
[  278.623495][T15279] serio: Serial port ptm1
[  278.637320][T15276] batman_adv: batadv0: Interface deactivated: dummy0
[  278.644132][T15276] batman_adv: batadv0: Removing interface: dummy0
[  278.660072][T15276] bridge_slave_0: left allmulticast mode
[  278.665839][T15276] bridge_slave_0: left promiscuous mode
[  278.671576][T15276] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.678627][T15280] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4188'.
[  278.680237][   T29] kauditd_printk_skb: 198 callbacks suppressed
[  278.680255][   T29] audit: type=1400 audit(1744477445.503:9387): avc:  denied  { ioctl } for  pid=15273 comm="syz.6.4188" path="socket:[44037]" dev="sockfs" ino=44037 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  278.708010][T15278] IPVS: using max 2208 ests per chain, 110400 per kthread
[  278.727749][T15276] bridge_slave_1: left allmulticast mode
[  278.733748][T15276] bridge_slave_1: left promiscuous mode
[  278.739513][T15276] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.750927][T15276] bond0: (slave bond_slave_0): Releasing backup interface
[  278.762405][T15276] team0: Port device team_slave_0 removed
[  278.770795][T15276] team0: Port device team_slave_1 removed
[  278.777326][T15276] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  278.784872][T15276] batman_adv: batadv0: Removing interface: batadv_slave_0
[  278.793586][T15276] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  278.801152][T15276] batman_adv: batadv0: Removing interface: batadv_slave_1
[  278.820056][T15281] pimreg: entered allmulticast mode
[  278.867055][T15285] netlink: 'syz.2.4190': attribute type 3 has an invalid length.
[  278.878075][   T29] audit: type=1326 audit(1744477445.713:9388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  278.901674][   T29] audit: type=1326 audit(1744477445.713:9389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  278.927137][   T29] audit: type=1326 audit(1744477445.713:9390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  278.950791][   T29] audit: type=1326 audit(1744477445.713:9391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  278.974485][   T29] audit: type=1326 audit(1744477445.713:9392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  278.998215][   T29] audit: type=1326 audit(1744477445.713:9393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  279.021851][   T29] audit: type=1326 audit(1744477445.713:9394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  279.028012][T15289] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4192'.
[  279.045367][   T29] audit: type=1326 audit(1744477445.713:9395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  279.077875][   T29] audit: type=1326 audit(1744477445.713:9396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15284 comm="syz.2.4190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0da33cd169 code=0x7ffc0000
[  279.101641][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  279.111007][T15287] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4191'.
[  279.126260][T15289] loop3: detected capacity change from 0 to 512
[  279.266547][T15289] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4192: corrupted inode contents
[  279.279823][T15289] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #16: comm syz.3.4192: mark_inode_dirty error
[  279.296700][T15289] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4192: corrupted inode contents
[  279.312121][T15289] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #16: comm syz.3.4192: mark_inode_dirty error
[  279.400206][T15289] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4192: corrupted inode contents
[  279.417030][T15289] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  279.427107][T15289] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4192: corrupted inode contents
[  279.442559][T15305] FAULT_INJECTION: forcing a failure.
[  279.442559][T15305] name failslab, interval 1, probability 0, space 0, times 0
[  279.455310][T15305] CPU: 1 UID: 0 PID: 15305 Comm: syz.0.4197 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  279.455381][T15305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  279.455418][T15305] Call Trace:
[  279.455424][T15305]  <TASK>
[  279.455434][T15305]  dump_stack_lvl+0xf6/0x150
[  279.455470][T15305]  dump_stack+0x15/0x1a
[  279.455520][T15305]  should_fail_ex+0x261/0x270
[  279.455553][T15305]  should_failslab+0x8f/0xb0
[  279.455599][T15305]  __kmalloc_cache_noprof+0x55/0x320
[  279.455628][T15305]  ? rtm_new_nexthop+0x162f/0x4340
[  279.455658][T15305]  rtm_new_nexthop+0x162f/0x4340
[  279.455713][T15305]  ? nlmsg_notify+0xca/0x170
[  279.455736][T15305]  ? nlmsg_notify+0x12e/0x170
[  279.455792][T15305]  ? __rtnl_unlock+0x99/0xb0
[  279.455819][T15305]  ? netdev_run_todo+0x79c/0x800
[  279.455868][T15305]  ? security_capable+0x81/0x90
[  279.455900][T15305]  ? ns_capable+0x7d/0xb0
[  279.455927][T15305]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  279.455958][T15305]  rtnetlink_rcv_msg+0x65a/0x740
[  279.455992][T15305]  ? should_fail_ex+0xd7/0x270
[  279.456032][T15305]  ? ref_tracker_free+0x3b8/0x420
[  279.456114][T15305]  netlink_rcv_skb+0x12f/0x230
[  279.456140][T15305]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  279.456188][T15305]  rtnetlink_rcv+0x1c/0x30
[  279.456277][T15305]  netlink_unicast+0x605/0x6c0
[  279.456377][T15305]  netlink_sendmsg+0x609/0x720
[  279.456406][T15305]  ? __pfx_netlink_sendmsg+0x10/0x10
[  279.456434][T15305]  __sock_sendmsg+0x140/0x180
[  279.456514][T15305]  ____sys_sendmsg+0x350/0x4e0
[  279.456591][T15305]  __sys_sendmmsg+0x22a/0x4b0
[  279.456649][T15305]  __x64_sys_sendmmsg+0x57/0x70
[  279.456677][T15305]  x64_sys_call+0x2b53/0x2e10
[  279.456703][T15305]  do_syscall_64+0xc9/0x1c0
[  279.456741][T15305]  ? clear_bhb_loop+0x25/0x80
[  279.456767][T15305]  ? clear_bhb_loop+0x25/0x80
[  279.456792][T15305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.456818][T15305] RIP: 0033:0x7f593fd4d169
[  279.456891][T15305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.456909][T15305] RSP: 002b:00007f593e3af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  279.456927][T15305] RAX: ffffffffffffffda RBX: 00007f593ff65fa0 RCX: 00007f593fd4d169
[  279.456942][T15305] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000006
[  279.456957][T15305] RBP: 00007f593e3af090 R08: 0000000000000000 R09: 0000000000000000
[  279.456971][T15305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.457030][T15305] R13: 0000000000000000 R14: 00007f593ff65fa0 R15: 00007ffd61dc9ec8
[  279.457051][T15305]  </TASK>
[  279.640612][T15289] EXT4-fs error (device loop3): ext4_truncate:4254: inode #16: comm syz.3.4192: mark_inode_dirty error
[  279.728314][T15289] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  279.738683][T15289] EXT4-fs (loop3): 1 truncate cleaned up
[  279.745706][T15289] ext4 filesystem being mounted at /267/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  279.759308][ T3594] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:53: Failed to release dquot type 1
[  279.844749][T15311] FAULT_INJECTION: forcing a failure.
[  279.844749][T15311] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.858089][T15311] CPU: 0 UID: 0 PID: 15311 Comm: syz.0.4200 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  279.858117][T15311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  279.858177][T15311] Call Trace:
[  279.858184][T15311]  <TASK>
[  279.858244][T15311]  dump_stack_lvl+0xf6/0x150
[  279.858272][T15311]  dump_stack+0x15/0x1a
[  279.858293][T15311]  should_fail_ex+0x261/0x270
[  279.858320][T15311]  should_fail+0xb/0x10
[  279.858370][T15311]  should_fail_usercopy+0x1a/0x20
[  279.858404][T15311]  _copy_from_user+0x1c/0xa0
[  279.858484][T15311]  copy_msghdr_from_user+0x54/0x2b0
[  279.858528][T15311]  ? __fget_files+0x186/0x1c0
[  279.858554][T15311]  __sys_sendmmsg+0x1eb/0x4b0
[  279.858662][T15311]  __x64_sys_sendmmsg+0x57/0x70
[  279.858760][T15311]  x64_sys_call+0x2b53/0x2e10
[  279.858794][T15311]  do_syscall_64+0xc9/0x1c0
[  279.858831][T15311]  ? clear_bhb_loop+0x25/0x80
[  279.858857][T15311]  ? clear_bhb_loop+0x25/0x80
[  279.858881][T15311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.858998][T15311] RIP: 0033:0x7f593fd4d169
[  279.859016][T15311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.859038][T15311] RSP: 002b:00007f593e3af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  279.859058][T15311] RAX: ffffffffffffffda RBX: 00007f593ff65fa0 RCX: 00007f593fd4d169
[  279.859072][T15311] RDX: 0000000000000001 RSI: 00002000000004c0 RDI: 0000000000000003
[  279.859084][T15311] RBP: 00007f593e3af090 R08: 0000000000000000 R09: 0000000000000000
[  279.859096][T15311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.859110][T15311] R13: 0000000000000000 R14: 00007f593ff65fa0 R15: 00007ffd61dc9ec8
[  279.859133][T15311]  </TASK>
[  279.885910][T15315] loop3: detected capacity change from 0 to 512
[  280.052777][T15315] EXT4-fs: Ignoring removed nobh option
[  280.058991][T15319] FAULT_INJECTION: forcing a failure.
[  280.058991][T15319] name failslab, interval 1, probability 0, space 0, times 0
[  280.071663][T15319] CPU: 1 UID: 0 PID: 15319 Comm: syz.0.4204 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  280.071698][T15319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  280.071741][T15319] Call Trace:
[  280.071749][T15319]  <TASK>
[  280.071759][T15319]  dump_stack_lvl+0xf6/0x150
[  280.071788][T15319]  dump_stack+0x15/0x1a
[  280.071809][T15319]  should_fail_ex+0x261/0x270
[  280.071874][T15319]  should_failslab+0x8f/0xb0
[  280.071960][T15319]  __kmalloc_noprof+0xad/0x410
[  280.071987][T15319]  ? ip_options_get+0x56/0x380
[  280.072059][T15319]  ? _parse_integer+0x27/0x30
[  280.072087][T15319]  ip_options_get+0x56/0x380
[  280.072120][T15319]  do_ip_setsockopt+0x1a85/0x22a0
[  280.072158][T15319]  ? release_sock+0x117/0x150
[  280.072196][T15319]  ? selinux_netlbl_socket_setsockopt+0x258/0x2d0
[  280.072244][T15319]  ip_setsockopt+0x63/0x100
[  280.072290][T15319]  ipv6_setsockopt+0xef/0x130
[  280.072322][T15319]  tcp_setsockopt+0x93/0xb0
[  280.072344][T15319]  sock_common_setsockopt+0x64/0x80
[  280.072364][T15319]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  280.072414][T15319]  __sys_setsockopt+0x187/0x200
[  280.072441][T15319]  __x64_sys_setsockopt+0x66/0x80
[  280.072472][T15319]  x64_sys_call+0x2a09/0x2e10
[  280.072512][T15319]  do_syscall_64+0xc9/0x1c0
[  280.072614][T15319]  ? clear_bhb_loop+0x25/0x80
[  280.072636][T15319]  ? clear_bhb_loop+0x25/0x80
[  280.072662][T15319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.072719][T15319] RIP: 0033:0x7f593fd4d169
[  280.072736][T15319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.072753][T15319] RSP: 002b:00007f593e3af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  280.072793][T15319] RAX: ffffffffffffffda RBX: 00007f593ff65fa0 RCX: 00007f593fd4d169
[  280.072807][T15319] RDX: 0000000000000004 RSI: 0004000000000000 RDI: 0000000000000006
[  280.072822][T15319] RBP: 00007f593e3af090 R08: 0000000000000000 R09: 0000000000000000
[  280.072836][T15319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.072851][T15319] R13: 0000000000000000 R14: 00007f593ff65fa0 R15: 00007ffd61dc9ec8
[  280.072873][T15319]  </TASK>
[  280.294106][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.354945][T15326] loop6: detected capacity change from 0 to 256
[  280.355045][T15315] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  280.372245][T15315] EXT4-fs error (device loop3): ext4_orphan_get:1390: inode #13: comm syz.3.4202: casefold flag without casefold feature
[  280.387096][T15315] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.4202: couldn't read orphan inode 13 (err -117)
[  280.387652][T15330] loop2: detected capacity change from 0 to 512
[  280.405996][T15330] EXT4-fs: Ignoring removed nobh option
[  280.432636][T15330] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  280.441838][T15331] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4207'.
[  280.453680][T15330] EXT4-fs error (device loop2): ext4_orphan_get:1390: inode #13: comm syz.2.4209: casefold flag without casefold feature
[  280.466971][T15330] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.4209: couldn't read orphan inode 13 (err -117)
[  280.522574][T15339] serio: Serial port ptm0
[  280.541588][T15340] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  280.561415][T15337] serio: Serial port ptm1
[  280.568682][ T3384] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.580927][T15339] pimreg: left allmulticast mode
[  280.597009][T15335] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  280.622398][T15337] pimreg: entered allmulticast mode
[  280.631417][T15337] pimreg: left allmulticast mode
[  280.660602][ T3594] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  280.990380][T15359] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4218'.
[  281.074242][T15363] netlink: 'syz.5.4219': attribute type 10 has an invalid length.
[  281.088247][T15363] batman_adv: batadv0: Adding interface: team0
[  281.094455][T15363] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.119735][T15363] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  281.368160][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  281.481698][T15372] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  281.490318][T15372] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  281.665645][T15375] serio: Serial port ptm0
[  281.720831][T15375] pimreg: entered allmulticast mode
[  281.726744][T15375] pimreg: left allmulticast mode
[  281.825214][T15381] loop3: detected capacity change from 0 to 2048
[  281.894346][T15381] binfmt_misc: register: failed to install interpreter file ./file0
[  282.070049][T15387] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  282.078777][T15387] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  282.280536][T15398] netlink: 'syz.0.4231': attribute type 3 has an invalid length.
[  282.393343][T15406] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  282.401632][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  282.410250][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  282.569192][ T2967] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  282.639488][T15408] loop6: detected capacity change from 0 to 512
[  282.662431][T15408] EXT4-fs error (device loop6): ext4_do_update_inode:5182: inode #16: comm syz.6.4234: corrupted inode contents
[  282.709006][T15408] EXT4-fs error (device loop6): ext4_dirty_inode:6074: inode #16: comm syz.6.4234: mark_inode_dirty error
[  282.721586][T15408] EXT4-fs error (device loop6): ext4_do_update_inode:5182: inode #16: comm syz.6.4234: corrupted inode contents
[  282.737567][T15408] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #16: comm syz.6.4234: mark_inode_dirty error
[  282.749436][T15408] EXT4-fs error (device loop6): ext4_do_update_inode:5182: inode #16: comm syz.6.4234: corrupted inode contents
[  282.762090][T15408] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  282.771069][T15408] EXT4-fs error (device loop6): ext4_do_update_inode:5182: inode #16: comm syz.6.4234: corrupted inode contents
[  282.783356][T15408] EXT4-fs error (device loop6): ext4_truncate:4254: inode #16: comm syz.6.4234: mark_inode_dirty error
[  282.794942][T15408] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  282.807105][T15408] EXT4-fs (loop6): 1 truncate cleaned up
[  282.814504][T15408] ext4 filesystem being mounted at /397/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  282.826456][ T3594] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:53: Failed to release dquot type 1
[  282.849514][T15414] serio: Serial port ptm0
[  282.853615][T15408] batman_adv: batadv0: Adding interface: dummy0
[  282.860411][T15408] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  282.886322][T15408] batman_adv: batadv0: Interface activated: dummy0
[  282.905557][T15414] pimreg: entered allmulticast mode
[  282.911271][T15414] pimreg: left allmulticast mode
[  282.973154][T15421] loop6: detected capacity change from 0 to 512
[  282.990581][T15421] EXT4-fs warning (device loop6): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  283.005644][T15421] EXT4-fs (loop6): mount failed
[  283.054186][T15432] netlink: 'syz.3.4243': attribute type 3 has an invalid length.
[  283.093922][T15436] loop5: detected capacity change from 0 to 512
[  283.123815][T15436] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4244: corrupted inode contents
[  283.136726][T15436] EXT4-fs error (device loop5): ext4_dirty_inode:6074: inode #16: comm syz.5.4244: mark_inode_dirty error
[  283.150819][T15436] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4244: corrupted inode contents
[  283.163133][T15436] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.4244: mark_inode_dirty error
[  283.177446][T15436] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4244: corrupted inode contents
[  283.192051][T15436] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  283.201527][T15436] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4244: corrupted inode contents
[  283.216524][T15436] EXT4-fs error (device loop5): ext4_truncate:4254: inode #16: comm syz.5.4244: mark_inode_dirty error
[  283.228677][T15436] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  283.238865][T15436] EXT4-fs (loop5): 1 truncate cleaned up
[  283.258394][ T3558] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:20: Failed to release dquot type 1
[  283.261767][T15436] ext4 filesystem being mounted at /468/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  283.301785][T15436] netlink: 'syz.5.4244': attribute type 10 has an invalid length.
[  283.309759][T15436] __nla_validate_parse: 5 callbacks suppressed
[  283.309782][T15436] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4244'.
[  283.329862][T15436] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  283.352279][T15434] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  283.361028][T15434] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  283.451078][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.608084][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.675996][T15451] loop5: detected capacity change from 0 to 512
[  283.682779][T15451] EXT4-fs: Ignoring removed nomblk_io_submit option
[  283.690787][T15451] EXT4-fs: Ignoring removed mblk_io_submit option
[  283.700236][T15451] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  283.710132][T15451] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  283.719687][T15451] EXT4-fs (loop5): 1 truncate cleaned up
[  283.727049][   T29] kauditd_printk_skb: 135 callbacks suppressed
[  283.727065][   T29] audit: type=1400 audit(1744477450.553:9528): avc:  denied  { remount } for  pid=15447 comm="syz.5.4248" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  283.757382][T15451] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  283.920829][   T29] audit: type=1400 audit(1744477450.753:9529): avc:  denied  { read write } for  pid=11676 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  283.945323][   T29] audit: type=1400 audit(1744477450.753:9530): avc:  denied  { open } for  pid=11676 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  283.963354][T15442] syz.0.4246 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  283.969539][   T29] audit: type=1400 audit(1744477450.753:9531): avc:  denied  { ioctl } for  pid=11676 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  283.998518][   T29] audit: type=1400 audit(1744477450.823:9532): avc:  denied  { prog_load } for  pid=15459 comm="syz.6.4252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  284.009484][T15442] CPU: 1 UID: 0 PID: 15442 Comm: syz.0.4246 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  284.009518][T15442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  284.009533][T15442] Call Trace:
[  284.009539][T15442]  <TASK>
[  284.009548][T15442]  dump_stack_lvl+0xf6/0x150
[  284.009622][T15442]  dump_stack+0x15/0x1a
[  284.009645][T15442]  dump_header+0x83/0x2d0
[  284.009687][T15442]  oom_kill_process+0x341/0x4c0
[  284.009728][T15442]  out_of_memory+0x9d1/0xc20
[  284.009771][T15442]  mem_cgroup_out_of_memory+0x13f/0x190
[  284.009878][T15442]  try_charge_memcg+0x59f/0x820
[  284.009921][T15442]  obj_cgroup_charge_pages+0xc0/0x1a0
[  284.010010][T15442]  __memcg_kmem_charge_page+0x9d/0x170
[  284.010097][T15442]  __alloc_frozen_pages_noprof+0x1a6/0x360
[  284.010140][T15442]  alloc_pages_mpol+0xb6/0x260
[  284.010173][T15442]  alloc_pages_noprof+0xe8/0x130
[  284.010265][T15442]  __vmalloc_node_range_noprof+0x6ea/0xe80
[  284.010317][T15442]  __kvmalloc_node_noprof+0x311/0x520
[  284.010366][T15442]  ? ip_set_alloc+0x1f/0x30
[  284.010389][T15442]  ? ip_set_alloc+0x1f/0x30
[  284.010414][T15442]  ip_set_alloc+0x1f/0x30
[  284.010437][T15442]  hash_netiface_create+0x273/0x730
[  284.010472][T15442]  ? __nla_parse+0x40/0x60
[  284.010528][T15442]  ? __pfx_hash_netiface_create+0x10/0x10
[  284.010553][T15442]  ip_set_create+0x3b6/0x970
[  284.010656][T15442]  ? __nla_parse+0x40/0x60
[  284.010724][T15442]  nfnetlink_rcv_msg+0x4ba/0x580
[  284.010832][T15442]  netlink_rcv_skb+0x12f/0x230
[  284.010864][T15442]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  284.010991][T15442]  nfnetlink_rcv+0x187/0x1610
[  284.011034][T15442]  ? __kfree_skb+0x102/0x150
[  284.011069][T15442]  ? nlmon_xmit+0x51/0x60
[  284.011112][T15442]  ? __kfree_skb+0x102/0x150
[  284.011143][T15442]  ? consume_skb+0x49/0x160
[  284.011173][T15442]  ? nlmon_xmit+0x51/0x60
[  284.011329][T15442]  ? dev_hard_start_xmit+0x3d1/0x400
[  284.011415][T15442]  ? __dev_queue_xmit+0xb76/0x20b0
[  284.011450][T15442]  ? __rcu_read_unlock+0x4e/0x70
[  284.011495][T15442]  ? should_fail_ex+0x31/0x270
[  284.011554][T15442]  ? ref_tracker_free+0x3b8/0x420
[  284.011596][T15442]  ? __netlink_deliver_tap+0x4c6/0x4f0
[  284.011634][T15442]  netlink_unicast+0x605/0x6c0
[  284.011740][T15442]  netlink_sendmsg+0x609/0x720
[  284.011777][T15442]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.011811][T15442]  __sock_sendmsg+0x140/0x180
[  284.011835][T15442]  ____sys_sendmsg+0x350/0x4e0
[  284.011900][T15442]  __sys_sendmsg+0x1a0/0x240
[  284.011954][T15442]  __x64_sys_sendmsg+0x46/0x50
[  284.012011][T15442]  x64_sys_call+0x26f3/0x2e10
[  284.012039][T15442]  do_syscall_64+0xc9/0x1c0
[  284.012082][T15442]  ? clear_bhb_loop+0x25/0x80
[  284.012176][T15442]  ? clear_bhb_loop+0x25/0x80
[  284.012204][T15442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.012231][T15442] RIP: 0033:0x7f593fd4d169
[  284.012251][T15442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.012275][T15442] RSP: 002b:00007f593e3af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  284.012297][T15442] RAX: ffffffffffffffda RBX: 00007f593ff65fa0 RCX: 00007f593fd4d169
[  284.012363][T15442] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  284.012378][T15442] RBP: 00007f593fdce990 R08: 0000000000000000 R09: 0000000000000000
[  284.012394][T15442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  284.012411][T15442] R13: 0000000000000000 R14: 00007f593ff65fa0 R15: 00007ffd61dc9ec8
[  284.012450][T15442]  </TASK>
[  284.012627][T15442] memory: usage 307200kB, limit 307200kB, failcnt 388
[  284.028735][   T29] audit: type=1400 audit(1744477450.823:9533): avc:  denied  { bpf } for  pid=15459 comm="syz.6.4252" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  284.041157][T15442] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[  284.051228][   T29] audit: type=1400 audit(1744477450.823:9534): avc:  denied  { perfmon } for  pid=15459 comm="syz.6.4252" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  284.054492][T15442] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  284.054509][T15442] Memory cgroup stats for /syz0:
[  284.060720][T15461] serio: Serial port ptm0
[  284.062092][   T29] audit: type=1400 audit(1744477450.823:9535): avc:  denied  { prog_run } for  pid=15459 comm="syz.6.4252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  284.081554][T15442] cache 0
[  284.085554][   T29] audit: type=1400 audit(1744477450.823:9536): avc:  denied  { create } for  pid=15459 comm="syz.6.4252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  284.090437][T15442] rss 0
[  284.090445][T15442] shmem 0
[  284.090462][T15442] mapped_file 0
[  284.090469][T15442] dirty 0
[  284.095827][   T29] audit: type=1400 audit(1744477450.823:9537): avc:  denied  { ioctl } for  pid=15459 comm="syz.6.4252" path="socket:[45136]" dev="sockfs" ino=45136 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  284.101312][T15442] writeback 0
[  284.121775][T15463] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4252'.
[  284.122851][T15442] workingset_refault_anon 1245
[  284.162359][T15458] pimreg: entered allmulticast mode
[  284.166201][T15442] workingset_refault_file 3125
[  284.166234][T15442] swap 208896
[  284.166241][T15442] swapcached 0
[  284.166248][T15442] pgpgin 311533
[  284.166256][T15442] pgpgout 311533
[  284.175194][T15458] pimreg: left allmulticast mode
[  284.175996][T15442] pgfault 294083
[  284.176008][T15442] pgmajfault 271
[  284.176017][T15442] inactive_anon 0
[  284.189219][T15467] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  284.191034][T15442] active_anon 0
[  284.195537][T15467] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  284.200153][T15442] inactive_file 0
[  284.221373][T15467] loop6: detected capacity change from 0 to 2048
[  284.224275][T15442] active_file 0
[  284.224287][T15442] unevictable 0
[  284.224296][T15442] hierarchical_memory_limit 314572800
[  284.613509][T15479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4254'.
[  284.615754][T15442] hierarchical_memsw_limit 9223372036854771712
[  284.615769][T15442] total_cache 0
[  284.643495][T15442] total_rss 0
[  284.643508][T15442] total_shmem 0
[  284.643526][T15442] total_mapped_file 0
[  284.643535][T15442] total_dirty 0
[  284.657919][T15442] total_writeback 0
[  284.661732][T15442] total_workingset_refault_anon 1245
[  284.667010][T15442] total_workingset_refault_file 3125
[  284.672317][T15442] total_swap 208896
[  284.676119][T15442] total_swapcached 0
[  284.680028][T15442] total_pgpgin 311533
[  284.684153][T15442] total_pgpgout 311533
[  284.688318][T15442] total_pgfault 294083
[  284.692384][T15442] total_pgmajfault 271
[  284.696537][T15442] total_inactive_anon 0
[  284.700703][T15442] total_active_anon 0
[  284.704755][T15442] total_inactive_file 0
[  284.708917][T15442] total_active_file 0
[  284.713315][T15442] total_unevictable 0
[  284.717362][T15442] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.4246,pid=15441,uid=0
[  284.732415][T15442] Memory cgroup out of memory: Killed process 15441 (syz.0.4246) total-vm:95772kB, anon-rss:1028kB, file-rss:22288kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  284.751339][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.904929][T15486] loop3: detected capacity change from 0 to 512
[  284.912533][T15486] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  284.926114][T15486] EXT4-fs (loop3): 1 truncate cleaned up
[  285.165712][T15495] 9pnet: Could not find request transport: 0xffffffffffffffff
[  285.203197][T15503] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4263'.
[  285.234699][T15505] netlink: 100 bytes leftover after parsing attributes in process `syz.5.4264'.
[  285.321936][T15513] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4266'.
[  285.387553][T15513] loop2: detected capacity change from 0 to 512
[  285.394936][T15518] loop5: detected capacity change from 0 to 512
[  285.431332][T15518] EXT4-fs: Ignoring removed nomblk_io_submit option
[  285.433112][T15513] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4266: corrupted inode contents
[  285.448670][T15501] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  285.458503][T15501] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  285.460633][T15513] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #16: comm syz.2.4266: mark_inode_dirty error
[  285.466294][T15518] EXT4-fs: Ignoring removed mblk_io_submit option
[  285.503096][T15513] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4266: corrupted inode contents
[  285.529859][T15518] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  285.543679][T15518] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  285.553614][T15513] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #16: comm syz.2.4266: mark_inode_dirty error
[  285.567452][T15513] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4266: corrupted inode contents
[  285.582373][T15513] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  285.594751][T15513] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.4266: corrupted inode contents
[  285.660593][T15518] EXT4-fs (loop5): 1 truncate cleaned up
[  285.693059][T15513] EXT4-fs error (device loop2): ext4_truncate:4254: inode #16: comm syz.2.4266: mark_inode_dirty error
[  285.707368][T15518] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  285.707697][T15513] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  285.728265][T15513] EXT4-fs (loop2): 1 truncate cleaned up
[  285.734585][T15513] EXT4-fs mount: 31 callbacks suppressed
[  285.734613][T15513] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.755965][ T3595] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:54: Failed to release dquot type 1
[  285.771744][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  285.781654][T15513] ext4 filesystem being mounted at /246/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.812006][T15513] netlink: 'syz.2.4266': attribute type 10 has an invalid length.
[  285.820052][T15513] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4266'.
[  285.837440][T15513] batman_adv: batadv0: Adding interface: dummy0
[  285.843824][T15513] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  285.876230][T15513] batman_adv: batadv0: Interface activated: dummy0
[  285.953623][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.046381][T15537] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4275'.
[  286.077562][T15541] netlink: 100 bytes leftover after parsing attributes in process `syz.2.4277'.
[  286.123839][T15547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  286.141089][T15547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  286.162120][T15547] loop2: detected capacity change from 0 to 2048
[  286.169242][T15551] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4276'.
[  286.303068][T15547] veth0_macvtap: mtu greater than device maximum
[  286.447654][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.553878][T15565] netlink: 'syz.6.4285': attribute type 3 has an invalid length.
[  286.606165][T15572] serio: Serial port ptm0
[  286.647990][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.663539][T15572] pimreg: entered allmulticast mode
[  286.676092][T15572] pimreg: left allmulticast mode
[  286.731208][T15581] loop5: detected capacity change from 0 to 512
[  286.760844][T15581] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4291: corrupted inode contents
[  286.775956][T15581] EXT4-fs error (device loop5): ext4_dirty_inode:6074: inode #16: comm syz.5.4291: mark_inode_dirty error
[  286.790679][T15581] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4291: corrupted inode contents
[  286.802935][T15581] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.4291: mark_inode_dirty error
[  286.814860][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.827981][T15581] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4291: corrupted inode contents
[  286.848065][T15581] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  286.858428][T15581] EXT4-fs error (device loop5): ext4_do_update_inode:5182: inode #16: comm syz.5.4291: corrupted inode contents
[  286.873219][T15585] loop6: detected capacity change from 0 to 512
[  286.881075][T15581] EXT4-fs error (device loop5): ext4_truncate:4254: inode #16: comm syz.5.4291: mark_inode_dirty error
[  286.906412][T15581] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  286.935707][T15585] EXT4-fs error (device loop6): ext4_do_update_inode:5182: inode #16: comm syz.6.4292: corrupted inode contents
[  286.963405][T15581] EXT4-fs (loop5): 1 truncate cleaned up
[  286.980278][   T31] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[  286.996021][T15581] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.029421][T15581] ext4 filesystem being mounted at /484/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.040116][T15585] EXT4-fs error (device loop6): ext4_dirty_inode:6074: inode #16: comm syz.6.4292: mark_inode_dirty error
[  287.053610][T15585] EXT4-fs error (device loop6): ext4_do_update_inode:5182: inode #16: comm syz.6.4292: corrupted inode contents
[  287.066555][T15585] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #16: comm syz.6.4292: mark_inode_dirty error
[  287.081678][T15581] netlink: 'syz.5.4291': attribute type 10 has an invalid length.
[  287.105026][T15581] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  287.131634][T15585] EXT4-fs error (device loop6): ext4_do_update_inode:5182: inode #16: comm syz.6.4292: corrupted inode contents
[  287.138206][T15599] netlink: 'syz.3.4297': attribute type 3 has an invalid length.
[  287.188810][T15585] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  287.198333][ T9421] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.208926][T15585] EXT4-fs error (device loop6): ext4_do_update_inode:5182: inode #16: comm syz.6.4292: corrupted inode contents
[  287.229179][T15585] EXT4-fs error (device loop6): ext4_truncate:4254: inode #16: comm syz.6.4292: mark_inode_dirty error
[  287.244715][T15585] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  287.264979][T15585] EXT4-fs (loop6): 1 truncate cleaned up
[  287.278246][ T3604] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:63: Failed to release dquot type 1
[  287.280509][T15604] loop3: detected capacity change from 0 to 2048
[  287.290832][T15585] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.321100][T15585] ext4 filesystem being mounted at /412/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.345244][T15604] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.367639][T15585] netlink: 'syz.6.4292': attribute type 10 has an invalid length.
[  287.427988][T15585] batadv0: entered promiscuous mode
[  287.433353][T15585] batadv0: entered allmulticast mode
[  287.441229][T15585] bridge0: port 1(batadv0) entered blocking state
[  287.448001][T15585] bridge0: port 1(batadv0) entered disabled state
[  287.457898][T15585] bridge0: port 1(batadv0) entered blocking state
[  287.464578][T15585] bridge0: port 1(batadv0) entered forwarding state
[  287.522491][ T3595] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  287.531834][ T3595] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  287.626183][ T9895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.699369][T15618] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  287.708701][T15618] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  287.773964][T15618] veth0_macvtap: mtu greater than device maximum
[  287.847988][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.877047][T15623] serio: Serial port ptm0
[  287.936244][T15623] pimreg: left allmulticast mode
[  288.055820][T15628] netlink: 'syz.2.4306': attribute type 1 has an invalid length.
[  288.080351][T15628] 8021q: adding VLAN 0 to HW filter on device bond1
[  288.100985][T15628] ip6erspan0: entered promiscuous mode
[  288.111717][T15628] bond1: (slave ip6erspan0): making interface the new active one
[  288.124707][T15628] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  288.150485][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.169003][T15638] netlink: 'syz.2.4309': attribute type 3 has an invalid length.
[  288.193556][T15640] loop3: detected capacity change from 0 to 512
[  288.207741][T15642] loop2: detected capacity change from 0 to 512
[  288.220376][T15642] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.220625][T15640] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4308: corrupted inode contents
[  288.235820][T15642] ext4 filesystem being mounted at /256/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  288.245577][T15640] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #16: comm syz.3.4308: mark_inode_dirty error
[  288.267143][T15640] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4308: corrupted inode contents
[  288.280914][T15640] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #16: comm syz.3.4308: mark_inode_dirty error
[  288.292991][T15640] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4308: corrupted inode contents
[  288.305544][T15640] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  288.314492][T15640] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.4308: corrupted inode contents
[  288.326745][T15640] EXT4-fs error (device loop3): ext4_truncate:4254: inode #16: comm syz.3.4308: mark_inode_dirty error
[  288.338354][T15640] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  288.348868][T15640] EXT4-fs (loop3): 1 truncate cleaned up
[  288.355485][T15640] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.368415][ T3594] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:53: Failed to release dquot type 1
[  288.369343][T15640] ext4 filesystem being mounted at /291/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  288.401654][T15640] netlink: 'syz.3.4308': attribute type 10 has an invalid length.
[  288.409767][T15640] __nla_validate_parse: 9 callbacks suppressed
[  288.409809][T15640] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4308'.
[  288.426159][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.479812][T15655] FAULT_INJECTION: forcing a failure.
[  288.479812][T15655] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.493045][T15655] CPU: 0 UID: 0 PID: 15655 Comm: syz.0.4313 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  288.493073][T15655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  288.493088][T15655] Call Trace:
[  288.493097][T15655]  <TASK>
[  288.493106][T15655]  dump_stack_lvl+0xf6/0x150
[  288.493182][T15655]  dump_stack+0x15/0x1a
[  288.493199][T15655]  should_fail_ex+0x261/0x270
[  288.493250][T15655]  should_fail+0xb/0x10
[  288.493279][T15655]  should_fail_usercopy+0x1a/0x20
[  288.493311][T15655]  strncpy_from_user+0x25/0x230
[  288.493334][T15655]  ? getname_flags+0x81/0x3b0
[  288.493360][T15655]  getname_flags+0xb0/0x3b0
[  288.493384][T15655]  path_setxattrat+0x240/0x320
[  288.493474][T15655]  __x64_sys_lsetxattr+0x71/0x90
[  288.493498][T15655]  x64_sys_call+0x2014/0x2e10
[  288.493526][T15655]  do_syscall_64+0xc9/0x1c0
[  288.493625][T15655]  ? clear_bhb_loop+0x25/0x80
[  288.493654][T15655]  ? clear_bhb_loop+0x25/0x80
[  288.493676][T15655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.493702][T15655] RIP: 0033:0x7f593fd4d169
[  288.493719][T15655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.493741][T15655] RSP: 002b:00007f593e3af038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  288.493763][T15655] RAX: ffffffffffffffda RBX: 00007f593ff65fa0 RCX: 00007f593fd4d169
[  288.493789][T15655] RDX: 0000200000000280 RSI: 0000200000000240 RDI: 00002000000001c0
[  288.493802][T15655] RBP: 00007f593e3af090 R08: 0000000000000000 R09: 0000000000000000
[  288.493815][T15655] R10: 0000000000001001 R11: 0000000000000246 R12: 0000000000000001
[  288.493826][T15655] R13: 0000000000000000 R14: 00007f593ff65fa0 R15: 00007ffd61dc9ec8
[  288.493849][T15655]  </TASK>
[  288.681407][T11676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.713171][T15664] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4316'.
[  288.742261][   T29] kauditd_printk_skb: 191 callbacks suppressed
[  288.742280][   T29] audit: type=1400 audit(1744477455.573:9725): avc:  denied  { validate_trans } for  pid=15667 comm="syz.3.4318" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  288.745277][T15668] loop3: detected capacity change from 0 to 512
[  288.782448][T15668] Quota error (device loop3): v2_read_file_info: Free block number 1 out of range (1, 6).
[  288.792499][T15668] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  288.810072][T15668] EXT4-fs (loop3): mount failed
[  288.836898][T15676] netlink: 'syz.3.4320': attribute type 3 has an invalid length.
[  288.847667][   T29] audit: type=1326 audit(1744477455.673:9726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15675 comm="syz.3.4320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  288.871391][   T29] audit: type=1326 audit(1744477455.673:9727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15675 comm="syz.3.4320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  288.895180][   T29] audit: type=1326 audit(1744477455.683:9728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15675 comm="syz.3.4320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  288.900884][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  288.918712][   T29] audit: type=1326 audit(1744477455.683:9729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15675 comm="syz.3.4320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  288.950405][   T29] audit: type=1326 audit(1744477455.683:9730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15675 comm="syz.3.4320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  288.973963][   T29] audit: type=1326 audit(1744477455.683:9731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15675 comm="syz.3.4320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  288.997704][   T29] audit: type=1326 audit(1744477455.683:9732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15675 comm="syz.3.4320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  289.021391][   T29] audit: type=1326 audit(1744477455.683:9733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15675 comm="syz.3.4320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2379d169 code=0x7ffc0000
[  289.097201][T15687] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  289.106648][T15687] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  289.150901][T15686] loop2: detected capacity change from 0 to 8192
[  289.157537][T15686] vfat: Unknown parameter '18446744073709551615ÿÿ'
[  289.188600][T15691] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4327'.
[  289.221416][T15691] netlink: 'syz.6.4327': attribute type 10 has an invalid length.
[  289.229597][T15691] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4327'.
[  289.240150][T15692] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  289.250925][T15692] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  289.264431][T15694] FAULT_INJECTION: forcing a failure.
[  289.264431][T15694] name failslab, interval 1, probability 0, space 0, times 0
[  289.277146][T15694] CPU: 1 UID: 0 PID: 15694 Comm: syz.2.4328 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  289.277178][T15694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  289.277189][T15694] Call Trace:
[  289.277195][T15694]  <TASK>
[  289.277201][T15694]  dump_stack_lvl+0xf6/0x150
[  289.277222][T15694]  dump_stack+0x15/0x1a
[  289.277305][T15694]  should_fail_ex+0x261/0x270
[  289.277356][T15694]  should_failslab+0x8f/0xb0
[  289.277408][T15694]  kmem_cache_alloc_noprof+0x59/0x340
[  289.277427][T15694]  ? getname_flags+0x81/0x3b0
[  289.277446][T15694]  getname_flags+0x81/0x3b0
[  289.277463][T15694]  __se_sys_mq_unlink+0x58/0x220
[  289.277554][T15694]  __x64_sys_mq_unlink+0x1f/0x30
[  289.277572][T15694]  x64_sys_call+0x1b52/0x2e10
[  289.277591][T15694]  do_syscall_64+0xc9/0x1c0
[  289.277684][T15694]  ? clear_bhb_loop+0x25/0x80
[  289.277737][T15694]  ? clear_bhb_loop+0x25/0x80
[  289.277756][T15694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.277785][T15694] RIP: 0033:0x7f0da33cd169
[  289.277802][T15694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.277822][T15694] RSP: 002b:00007f0da1a37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f1
[  289.277843][T15694] RAX: ffffffffffffffda RBX: 00007f0da35e5fa0 RCX: 00007f0da33cd169
[  289.277858][T15694] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000340
[  289.277935][T15694] RBP: 00007f0da1a37090 R08: 0000000000000000 R09: 0000000000000000
[  289.277948][T15694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  289.277962][T15694] R13: 0000000000000000 R14: 00007f0da35e5fa0 R15: 00007ffcb0184828
[  289.277985][T15694]  </TASK>
[  289.491837][T15697] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4329'.
[  289.520557][T15704] netlink: 'syz.2.4331': attribute type 3 has an invalid length.
[  289.530150][T15706] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4332'.
[  289.539232][T15706] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4332'.
[  289.564625][T15708] loop2: detected capacity change from 0 to 512
[  289.581827][T15708] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  289.597159][T15708] EXT4-fs (loop2): mount failed
[  289.645751][T15717] loop2: detected capacity change from 0 to 2048
[  289.659911][T15717] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  289.687932][ T3384] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  289.707739][T15717] binfmt_misc: register: failed to install interpreter file ./file0
[  289.928188][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  290.020110][T15717] ==================================================================
[  290.028254][T15717] BUG: KCSAN: data-race in __writeback_single_inode / generic_buffers_fsync_noflush
[  290.037733][T15717] 
[  290.040078][T15717] read-write to 0xffff888104e95378 of 4 bytes by task 15722 on cpu 1:
[  290.048255][T15717]  __writeback_single_inode+0x1f4/0x850
[  290.053837][T15717]  writeback_single_inode+0x16c/0x3f0
[  290.059247][T15717]  sync_inode_metadata+0x60/0x90
[  290.064226][T15717]  generic_buffers_fsync_noflush+0xd8/0x120
[  290.070164][T15717]  ext4_sync_file+0x1c3/0x6c0
[  290.074870][T15717]  vfs_fsync_range+0x116/0x130
[  290.079659][T15717]  ext4_buffered_write_iter+0x358/0x3c0
[  290.085223][T15717]  ext4_file_write_iter+0x3b2/0xf80
[  290.090433][T15717]  iter_file_splice_write+0x5f2/0x980
[  290.095824][T15717]  direct_splice_actor+0x160/0x2c0
[  290.100962][T15717]  splice_direct_to_actor+0x305/0x680
[  290.106357][T15717]  do_splice_direct+0xd9/0x150
[  290.111134][T15717]  do_sendfile+0x40a/0x690
[  290.115591][T15717]  __x64_sys_sendfile64+0x113/0x160
[  290.120817][T15717]  x64_sys_call+0xfc3/0x2e10
[  290.125422][T15717]  do_syscall_64+0xc9/0x1c0
[  290.129947][T15717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.135848][T15717] 
[  290.138175][T15717] read to 0xffff888104e95378 of 4 bytes by task 15717 on cpu 0:
[  290.145811][T15717]  generic_buffers_fsync_noflush+0x83/0x120
[  290.151727][T15717]  ext4_sync_file+0x1c3/0x6c0
[  290.156418][T15717]  vfs_fsync_range+0x116/0x130
[  290.161203][T15717]  ext4_buffered_write_iter+0x358/0x3c0
[  290.166789][T15717]  ext4_file_write_iter+0x3b2/0xf80
[  290.171996][T15717]  iter_file_splice_write+0x5f2/0x980
[  290.177382][T15717]  direct_splice_actor+0x160/0x2c0
[  290.182525][T15717]  splice_direct_to_actor+0x305/0x680
[  290.187925][T15717]  do_splice_direct+0xd9/0x150
[  290.192719][T15717]  do_sendfile+0x40a/0x690
[  290.197173][T15717]  __x64_sys_sendfile64+0x113/0x160
[  290.202391][T15717]  x64_sys_call+0xfc3/0x2e10
[  290.206992][T15717]  do_syscall_64+0xc9/0x1c0
[  290.211511][T15717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.217413][T15717] 
[  290.219773][T15717] value changed: 0x00000022 -> 0x00000000
[  290.225502][T15717] 
[  290.227829][T15717] Reported by Kernel Concurrency Sanitizer on:
[  290.233988][T15717] CPU: 0 UID: 0 PID: 15717 Comm: syz.2.4336 Not tainted 6.15.0-rc1-syzkaller-00301-g3bde70a2c827 #0 PREEMPT(voluntary) 
[  290.246494][T15717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  290.256578][T15717] ==================================================================
[  290.657519][T11222] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.978008][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  292.007981][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  292.727901][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.048042][ T6363] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  294.088563][ T6363] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.128128][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.768031][ T1038] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.167984][ T2967] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  297.208004][ T6363] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.248021][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.817899][ T3384] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  299.298151][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog