last executing test programs:

5m13.8119109s ago: executing program 2 (id=719):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2082)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})

5m13.257263885s ago: executing program 2 (id=721):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
epoll_create1(0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000006c0), 0x48200, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x2000000000000000}, 0x0, &(0x7f00000002c0)={0x3ff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0)

5m12.635643606s ago: executing program 2 (id=725):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000004d00000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b0000005e140602000000000e0027001000000002800000121f", 0x2e}], 0x1}, 0x40000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x7, 0x4, 0x100, 0x3, 0x20}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x9, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r5 = dup2(r4, r4)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})

5m12.416875428s ago: executing program 2 (id=726):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

5m12.213179367s ago: executing program 2 (id=728):
socket$kcm(0x2, 0x3, 0x2)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0)
r0 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0x312, 0x400, 0x200001, 0x2aa}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f0000000240)=<r2=>0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r3, 0xffffffffffffffff, 0x4, 0x0, @void}, 0x10)
socket$rds(0x15, 0x5, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cast6)\x00'}, 0x58)
accept4(r5, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0)

5m11.182699169s ago: executing program 2 (id=730):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
set_mempolicy(0x8006, 0x0, 0x5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)

4m56.001384s ago: executing program 32 (id=730):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
set_mempolicy(0x8006, 0x0, 0x5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)

4m20.425870216s ago: executing program 3 (id=825):
mknod(&(0x7f00000048c0)='./file0\x00', 0x0, 0xffffffff)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000a380)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x339)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x3, 0x7, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x800000}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="40000000070601020000000000000000070000000800064000000007050001000700260005000100070000000900020073797a3100000000"], 0x40}, 0x1, 0x0, 0x0, 0x40040d8}, 0x810)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
epoll_create1(0x0)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0xfffffffffffffffe, 0x2000a000000, 0xfffffffffffffffd, 0x0, 0x10, 0x8, 0x3}, 0x0, &(0x7f00000002c0)={0x3fa, 0x2, 0xffffffffffffffff, 0x9, 0x0, 0xe, 0x80000006}, 0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f00000005c0)={0x50, 0x0, r1, {0x7, 0x1f, 0xffffffff, 0x0, 0x1e64, 0x0, 0x1, 0x5, 0x0, 0x0, 0x80}}, 0x50)
clock_gettime(0x0, &(0x7f0000000080)={<r6=>0x0, <r7=>0x0})
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x77359400}, {r6, r7+10000000}}, &(0x7f0000000240))
syz_fuse_handle_req(r0, &(0x7f0000008380)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008df76a250000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea21056000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000131a5d9400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0xa1)
syz_fuse_handle_req(r0, &(0x7f0000004900)="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", 0x2000, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)={0x78, 0x0, 0xffff, {0x7f, 0x11, 0x0, {0x4, 0x5, 0xfff, 0x7, 0xfc, 0x7, 0x80000000, 0xb, 0xc, 0x8000, 0x7, r2, r3, 0x132, 0x8001}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
lseek(r8, 0x0, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000000))

4m18.752923521s ago: executing program 3 (id=828):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x14)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x10001, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setresuid(0xee00, 0xee00, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)

4m18.478688648s ago: executing program 3 (id=829):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000280)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, 0x0, 0x0, 0x0, 0x10b8}, 0x106)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x0, 0x0})

4m18.399979176s ago: executing program 3 (id=830):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x800000, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

4m18.125157163s ago: executing program 3 (id=831):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x46, &(0x7f00000006c0)={@local, @multicast, @void, {@ipv6={0x86dd, @dccp_packet={0xf, 0x6, "1ff03c", 0x10, 0x21, 0x1, @local, @local, {[], {{0x4e22, 0x4e21, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, "6311bf", 0xda, "7f464c"}}}}}}}, 0x0)

4m18.019121913s ago: executing program 3 (id=832):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xd76}, 0x18)
r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0xffffffff}, 0x48, 0xffffffffffffffff)
r2 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r3 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000300)={0x0, "6035ae1e0fe721441705322025000000003e2a5b4377f7ad4bcf2b71d17e1ec0ef54e6773fd7264c39ea00c508ba607269613800"}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x4, r3, r2, r2, 0x0)
keyctl$KEYCTL_MOVE(0x4, r1, r1, 0x0, 0x0)

4m16.599510173s ago: executing program 33 (id=832):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xd76}, 0x18)
r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0xffffffff}, 0x48, 0xffffffffffffffff)
r2 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r3 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000300)={0x0, "6035ae1e0fe721441705322025000000003e2a5b4377f7ad4bcf2b71d17e1ec0ef54e6773fd7264c39ea00c508ba607269613800"}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x4, r3, r2, r2, 0x0)
keyctl$KEYCTL_MOVE(0x4, r1, r1, 0x0, 0x0)

3m58.874750644s ago: executing program 0 (id=883):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_attach_bpf(r0, 0x29, 0x4b, 0x0, 0x4)
r1 = getpgid(0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
memfd_create(&(0x7f00000003c0)='%\x00\xae\xdb\xb8\x18\xc1\xecWbNO\xde^\xff\x19\x17QE{*X\xe3\xe2\x06\x00\x00\x00\xcc\xf6\xc0H\xa2\x83?\xe7\x89*\xf1\xc5b\v\xec\xe4\xb0\xa2\xc5\xee\x04\x98\xa9\xb9\xe5\x8c\xc3\x97B\xaa+\xf2o\xf6k\xcc\xf7\x057\x8d\xb1\xa0\x86\xe8\xda\x90\xc2\x1e\x15\x11\x92\x9d\xc1M\xe5@\v\x001\xae\x19$\xf8\x96\x81\xcbR\xae`\xd3\xf8_R~7\xf5\x1c\xc8\xf9\xe2z\x00<\xdc\x11\x89\xc9&f\x00\x00\x00\xe2\x83\xf1\x0eg\a\xec\xac\xa5\x94~v\x80P5\xf9/$', 0x4)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r6=>0x0})
setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f0000000000)={@remote, r6}, 0x14)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r6, {0xfffd, 0x1}, {0x1, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x4840)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000000)={0x40000000, 0x0, 0x0}, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffb000/0x3000)=nil)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@local, 0x0, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x4d6, 0x33}, 0x0, @in=@remote, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe4)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f00000008c0)={0x0, 0x1}, 0x8)
setsockopt$TIPC_SRC_DROPPABLE(0xffffffffffffffff, 0x10f, 0x8a, &(0x7f00000000c0)=0x57fd, 0x4)

3m55.35582576s ago: executing program 0 (id=892):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r2, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4008030)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
setsockopt$inet6_IPV6_RTHDR(r4, 0x29, 0x39, &(0x7f0000000000)=ANY=[], 0x18)

3m55.095647846s ago: executing program 0 (id=896):
io_uring_register$IORING_REGISTER_CLOCK(0xffffffffffffffff, 0x1d, &(0x7f0000000000)={0x1}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0)
readv(r0, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3, 0x1, 0x2, 0x8, 0x1ff, 0x1}, 0x20)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000140))
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = socket(0x22, 0x80003, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x10, 0x8, &(0x7f00000003c0)=ANY=[@ANYRES16], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000180)={0x0, <r3=>0x0}, 0x0)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=r3, 0x4)
close_range(r2, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x0)
pipe2$watch_queue(0x0, 0x80)

3m53.758711957s ago: executing program 0 (id=901):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x8)
fchdir(r1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r2 = open(&(0x7f00000000c0)='.\x00', 0x48800, 0x50)
getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8)

3m53.516551671s ago: executing program 0 (id=904):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

3m53.279645615s ago: executing program 0 (id=906):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r1, @ANYBLOB="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"], 0x1c8}}, 0x0)

3m38.009826345s ago: executing program 34 (id=906):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r1, @ANYBLOB="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"], 0x1c8}}, 0x0)

32.86096973s ago: executing program 5 (id=1910):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r0}, 0x10)
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0)

32.809359335s ago: executing program 5 (id=1911):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0xc, &(0x7f0000000300))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000c80)={0x364, r5, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x334, 0x8, 0x0, 0x1, [{0x9c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x50, 0x9, 0x0, 0x1, [{0x4c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x1}}]}]}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "eff93d58460ea431f2cb4a6894ddb2834088d7445bf5afdd0619ce173f1db717"}]}, {0x4c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "491bc0be1dc1f88092e741a88b64f6dd9218ad21b44b472e44f1d0807ee6675c"}]}, {0x248, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x9, 0x7, @remote, 0x3}}, @WGPEER_A_ALLOWEDIPS={0x200, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x3}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}]}]}]}]}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e24}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x364}, 0x1, 0x0, 0x0, 0x4004840}, 0x0)
creat(&(0x7f0000000440)='./file0\x00', 0x0)
syz_clone(0x1010000, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x40008)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000005c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x1}}]}})

31.374176526s ago: executing program 5 (id=1918):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

31.043287049s ago: executing program 5 (id=1922):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$TIOCMIWAIT(0xffffffffffffffff, 0x545c, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c666c7573682c646d61736b3d30303030303030303030303030303030303137373737372c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d6d697865642c6e6f6e756d7461696c3d302c757466383d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c756e695f786c6174653d312c726f6469722c696f636861727365743d757466382c666d61736b3d30303030303030303030303030303030303030303030342c646d61736b3d30303030303030303030303030303030303030303030372c757466383d312c726f6469722c73686f72746e616d653d77696e39352c726f6469722c00743ccfec81d6c7d05b0f2a54ddce151ec4cbbaacb9552647fd950fedfdc024b3953e7669bc9d4f66e3beaecb80fe73633280b1d3e82023d4f5c7f5a4989406c0f0d0cf537f132dc1e63d84a17532cb78ae7a368bc0029207b9b166705972f4e8dad041e6be170bf43057b456d43f100c53b471aa6c8e3751", @ANYRES64], 0x1, 0x2cb, &(0x7f00000014c0)="$eJzs3T9rJGUcB/DfJLuzm7PYLaxEcEALq+Nyrc0GyYGYSklxWmjw7kB2F+EOAkZxsbK1sbQXBMHON2Ej+AIEX4CdVxw8MrMz2Tlv/2TBvfO4z6dInszz+z5/ZpdNQtgnH786Hd8p4t7XX/4R/X4We6MYxcMshrEXjZRSioXRtwEAPM8ephR/pbkrRkblhywi+rtdGgCwI1t///9550sCAHbs/dsfvHt0cnL8XlH049b0m/PT8jf78vO8/+hefBqTuBs3YhCP5n8L6NbZsn0rpTTrFKVhvDGdnZ+WyelHv9Y1R81EhzGI4WWs+mmjyr9zcnxYzLXys3Id16r5f7g9Kue/GYN4+TL8WP7mknyc5vHm6631X49B/PZJfBaTuFMtYpH/6rAo3k7f/f3Fh+Xyynw2Oz/tVXULaf/pPCIAAAAAAAAAAAAAAAAAAAAAALwIrtdn5/SiOr+nvFSfv7P/qPyiG0Vj+Pj5PPN81gzUOh+oNEvxfUq9TsTJ8Y2iKFJduMh34pVOdJ7NrgEAAAAAAAAAAAAAAAAAAOD/5cHnF+OzyeTu/SWN369FrOha0cgiYhRx+bb+Dan9VV2j1pXX4mJ81ls9YKtrr26umTT2m5osYu12otNtRh5udRO2bxysWvOPP207YH9zTbecK8t2t52LcfPsGp9lsbSmF82VfvOY/tKuyWPzTquR81U1afPTr9XIl3YNtt57/lLVmK2piWzdwt76c37n6ivZv3eRV3d1abzbOo1jzR276naefK3IOhEHkf/Hr0AAAAAAAAAAAAAAAAAAAEBj8abfJ7oONkT3Um9nywIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAp2rx//+3aMzq8BWK87j/4BlvEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgBfAPwEAAP//kV5Pbg==")
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x0, 0x0, 0x0, 0x5, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
r1 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x100)
preadv2(r1, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x2, 0x0, 0x0, 0x0)

29.997019922s ago: executing program 5 (id=1929):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8}, 0x94)

29.588704992s ago: executing program 5 (id=1935):
socket(0x1e, 0x4, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000080)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2}, 0x50)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={0x0, &(0x7f0000000180)=""/67, 0x0, 0x43, 0x1, 0x5e37fa1c, 0x10000}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x4, '\x00', 0x0, r1, 0x1, 0x1}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000700000000000000000000009597e5dcc90000001c702d6c6ea02179183c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
process_vm_readv(r2, &(0x7f0000000240), 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=@bridge_getneigh={0x20, 0x1e, 0x3c964e403b131b43}, 0x20}}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e22, 0x101, @mcast1, 0x6}, 0x1c)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f00000004c0)=0x10)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_BLANKSCREEN(r8, 0x560e, &(0x7f0000000000))
ioctl$TIOCSWINSZ(r8, 0x5414, &(0x7f0000000040)={0x9, 0x2, 0x1000, 0x5})
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, 0x0, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0xd, 0x8012, 0xffffffffffffffff, 0x0)
socket(0x1e, 0x2, 0x0)

29.344016896s ago: executing program 35 (id=1935):
socket(0x1e, 0x4, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000080)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2}, 0x50)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={0x0, &(0x7f0000000180)=""/67, 0x0, 0x43, 0x1, 0x5e37fa1c, 0x10000}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x4, '\x00', 0x0, r1, 0x1, 0x1}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000700000000000000000000009597e5dcc90000001c702d6c6ea02179183c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
process_vm_readv(r2, &(0x7f0000000240), 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=@bridge_getneigh={0x20, 0x1e, 0x3c964e403b131b43}, 0x20}}, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e22, 0x101, @mcast1, 0x6}, 0x1c)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f00000004c0)=0x10)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_BLANKSCREEN(r8, 0x560e, &(0x7f0000000000))
ioctl$TIOCSWINSZ(r8, 0x5414, &(0x7f0000000040)={0x9, 0x2, 0x1000, 0x5})
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, 0x0, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0xd, 0x8012, 0xffffffffffffffff, 0x0)
socket(0x1e, 0x2, 0x0)

3.623397844s ago: executing program 4 (id=2122):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x18)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r1, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sloppy_sctp\x00', 0x2, 0x0)
pipe2$9p(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a)
splice(r3, 0x0, r1, 0x0, 0x20000000000002, 0x2)

2.660785239s ago: executing program 4 (id=2132):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000000100)={0x46, 0xe72, 0xa, 0xc, 0x8000})

2.511622873s ago: executing program 4 (id=2133):
close(0xffffffffffffffff)
r0 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000003400), 0x42300, 0x0)
listen(0xffffffffffffffff, 0x8)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000003b40)=0x4000000)
close(0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
recvmsg$kcm(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000002240)=[{&(0x7f00000000c0)=""/118, 0x76}, {&(0x7f0000000140)=""/70, 0x46}], 0x2}, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0)=0xe9)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000dc0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_DEV(0xffffffffffffffff, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c00000060f747b49e9319262f92b412a46945023003349bd192fe62f00fce808e9ac2df42bbdb1579e2f41d30bec4e5e3df49c55a8a76d5b01ec1aaa68bfab2f73a29b971fff184b5f02ca1b031df4a96e4cb644bb895a50a581e00169d751b40058615ebc68fa5ce63f6145a6d809ad060465ef225d43b115d197127a52dbeed1911da9f7c4c7231eaccd477dedcc1870e813e6fe40f0d86511cdce34c46e1e5efce7fa9976a9e27926d49acc9e7d91bb8edd65f00e8147d6a6af0d1c1297d01c2178b9f41cd6b2cf3994f2df60d7cc1f8efbac332bf75d05ce6e3af1842e0b6d8e713", @ANYRES16=r5, @ANYBLOB, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000011}, 0x40004)
ioctl$KVM_SET_IRQCHIP(r2, 0x4048aec9, &(0x7f0000000040)={0x2, 0x0, @pic={0x5, 0x1, 0xd, 0xc0, 0xd, 0x2, 0x2, 0x5, 0x0, 0x5, 0xd0, 0x2, 0xf8, 0xb, 0xf0, 0x40}})
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f0000ffb000/0x3000)=nil)
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000ffb000/0x4000)=nil)

2.193516684s ago: executing program 7 (id=2137):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, 0x0, 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xb, &(0x7f0000000040)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)

1.552877637s ago: executing program 7 (id=2139):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @rand_addr=0x64010101}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.42585001s ago: executing program 6 (id=2140):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x6, &(0x7f0000000100)=[{0x0, 0x8, 0x2, 0x1}, {0x0, 0x40, 0x0, 0x18}, {0x5, 0x6, 0x2, 0xd000000}, {0x6, 0x3, 0x80, 0x3}, {0x7aa, 0x1, 0xf4, 0x9}, {0xfff, 0x2, 0x6, 0x9}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000002a5, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

1.371972735s ago: executing program 7 (id=2142):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
timerfd_create(0x2, 0x80800)

1.230569839s ago: executing program 4 (id=2144):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x4}, 0x18)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x82801, 0x0)

1.176541184s ago: executing program 7 (id=2145):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a5c010000180a03080000000000000000020000020c000540000000000000000108000740000000030900010073797a30000000000900010073797a30000000000900010073797a3000000000040003802400038008000140000000000800024000000d1008000240fffffffd080001400000"], 0x210}}, 0x200508d4)

972.990254ms ago: executing program 7 (id=2146):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000240)={@hyper})
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r1, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000240)="cf9900", 0x3}], 0x1, 0x0, 0x0, 0x80040000}}], 0x1, 0x20000810)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000020000000000000000000000850000000f00000085000000a0"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0x0, 0x0, &(0x7f00000002c0), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x4c)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)}, {0x0}], 0x2)
syz_emit_ethernet(0x0, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, 0x0, 0x50)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mq_notify(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x48a, &(0x7f0000000100)={0x0, 0xd3df, 0x100, 0x2, 0x3bc, 0x0, r2}, 0x0, &(0x7f0000000300))
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x42, [0x9, 0x2, 0x8, 0x6, 0x2, 0x400, 0x80000000, 0x0, 0x8, 0x0, 0x6, 0x2, 0xfffffffb, 0x39, 0x747d5e13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x2004, 0x1, 0x4, 0xf252, 0x80, 0x800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x0, 0x1ff, 0x8000, 0x0, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x2, 0x2, 0x4, 0xe, 0x4, 0x2, 0x6, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x8, 0xa, 0x5], [0x7, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c32, 0x3, 0x5, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x0, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x5, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x37a, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd5, 0x7, 0x1f, 0x404, 0x4, 0x8, 0x8001, 0x7, 0x9, 0x800e8b, 0x5, 0x80000001, 0x48, 0x3f92, 0x1000, 0x0, 0x10, 0x1, 0xfffffff9, 0x1, 0x1000, 0x80040101, 0x4, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x3, 0x0, 0x7fff, 0x4, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x956, 0xf5c1, 0x3ff, 0x3, 0xcac, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x3, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x3, 0x3, 0x88, 0x2, 0x4000000, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x8320fb05, 0x1000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x6, 0x4, 0xe47, 0x3, 0x1654, 0x4, 0x8, 0x2851, 0x3b, 0x20000002, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x20008, 0x8a8, 0x6, 0x44, 0x409, 0x3, 0x744, 0x4, 0x12, 0x4, 0x10, 0x7fff, 0x2, 0xfffffff8, 0x401, 0xf, 0x200, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r5, 0x5501)
readv(r5, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)
recvfrom$inet(r1, 0x0, 0x0, 0x10040, 0x0, 0x0)

769.240524ms ago: executing program 6 (id=2148):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000f8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1b, 0x0, 0x0, 0x8000, 0x4}, 0x50)

667.301774ms ago: executing program 1 (id=2149):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=@newtaction={0x88c, 0x30, 0xffff, 0x3, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x4, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x8000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x2000000, 0xffffffff, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14880, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x4, 0x20000000, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7fff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x7, 0x0, 0x0, 0xfffffffe, {0x3, 0x0, 0x0, 0x0, 0xb, 0x3}, {0x4, 0x2, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x3, 0x2}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0xfffffffe, 0x0, 0x0, 0x401, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x80000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x504, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4000004, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x3, 0x0, 0x0, 0x6, 0x2, 0x24, 0xfffffffe, 0x0, 0x0, 0x1, 0x25d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0xfffffffe, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x80004, 0x0, 0x0, 0x0, 0xf7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x0, 0x0, 0x76, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x1bde, 0x0, 0x1, 0x4, 0x0, 0x0, 0xffffff7d, 0x0, 0x0, 0xffffff7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x10, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x8007, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x2, 0x8]}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x1}}}}]}]}, 0x88c}}, 0x404800c)

620.237449ms ago: executing program 6 (id=2150):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @rand_addr=0x64010101}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

509.40794ms ago: executing program 1 (id=2151):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000200)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fddbdf251500000008000300", @ANYRES32=r2, @ANYBLOB="18002b800800010003"], 0x34}, 0x1, 0x0, 0x0, 0x48815}, 0x8000)

447.972626ms ago: executing program 6 (id=2152):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000040000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
syz_emit_ethernet(0x4e, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd600000000002"], 0x0)

447.526536ms ago: executing program 7 (id=2153):
close(0xffffffffffffffff)
r0 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000003400), 0x42300, 0x0)
listen(0xffffffffffffffff, 0x8)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000003b40)=0x4000000)
close(0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
recvmsg$kcm(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000002240)=[{&(0x7f00000000c0)=""/118, 0x76}, {&(0x7f0000000140)=""/70, 0x46}], 0x2}, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0)=0xe9)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000dc0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_DEV(0xffffffffffffffff, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c00000060f747b49e9319262f92b412a46945023003349bd192fe62f00fce808e9ac2df42bbdb1579e2f41d30bec4e5e3df49c55a8a76d5b01ec1aaa68bfab2f73a29b971fff184b5f02ca1b031df4a96e4cb644bb895a50a581e00169d751b40058615ebc68fa5ce63f6145a6d809ad060465ef225d43b115d197127a52dbeed1911da9f7c4c7231eaccd477dedcc1870e813e6fe40f0d86511cdce34c46e1e5efce7fa9976a9e27926d49acc9e7d91bb8edd65f00e8147d6a6af0d1c1297d01c2178b9f41cd6b2cf3994f2df60d7cc1f8efbac332bf75d05ce6e3af1842e0b6d8e713875fade2", @ANYRES16=r5, @ANYBLOB, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000011}, 0x40004)
ioctl$KVM_SET_IRQCHIP(r2, 0x4048aec9, &(0x7f0000000040)={0x2, 0x0, @pic={0x5, 0x1, 0xd, 0xc0, 0xd, 0x2, 0x2, 0x5, 0x0, 0x5, 0xd0, 0x2, 0xf8, 0xb, 0xf0, 0x40}})
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f0000ffb000/0x3000)=nil)
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000ffb000/0x4000)=nil)

367.259324ms ago: executing program 4 (id=2154):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000004d000006000000181100", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x7, 0x4, 0x100, 0x3, 0x20}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x9, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r4 = dup2(r3, r3)
ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})

313.340539ms ago: executing program 1 (id=2155):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5393, &(0x7f0000000000))

305.73191ms ago: executing program 6 (id=2156):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000030000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r0}, 0x20)
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x40000333}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f00000001c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)

277.755572ms ago: executing program 4 (id=2157):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@delalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='mountinfo\x00')
setxattr$incfs_metadata(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f00000002c0)="30573472b621739991c336124406e8a5c812ca847e3bf9b837c91d46ab", 0x1d, 0x1)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000000800)=ANY=[], 0x361, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000000)=ANY=[], 0xfe37, 0x0)
sendfile(r0, r0, &(0x7f0000000000)=0x2eb4, 0x7ff)

172.948703ms ago: executing program 1 (id=2158):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r0}, 0x10)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0xfffffffffffffccc, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
fgetxattr(r1, &(0x7f0000000000)=ANY=[], 0x0, 0x0)

33.221607ms ago: executing program 1 (id=2159):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bond0\x00'})
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e24, @empty}}, 0x6, 0x1, 0x3bf8580d, 0x0, 0xb3550aa4ba878396, 0x2}, 0x9c)

14.865989ms ago: executing program 6 (id=2160):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @rand_addr=0x64010101}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 1 (id=2161):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000240)={@hyper})
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r1, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000240)="cf9900", 0x3}], 0x1, 0x0, 0x0, 0x80040000}}], 0x1, 0x20000810)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000020000000000000000000000850000000f00000085000000a0"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0x0, 0x0, &(0x7f00000002c0), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x4c)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)}, {0x0}], 0x2)
syz_emit_ethernet(0x0, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, 0x0, 0x50)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mq_notify(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x48a, &(0x7f0000000100)={0x0, 0xd3df, 0x100, 0x2, 0x3bc, 0x0, r2}, 0x0, &(0x7f0000000300))
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x42, [0x9, 0x2, 0x8, 0x6, 0x2, 0x400, 0x80000000, 0x0, 0x8, 0x0, 0x6, 0x2, 0xfffffffb, 0x39, 0x747d5e13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x2004, 0x1, 0x4, 0xf252, 0x80, 0x800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x0, 0x1ff, 0x8000, 0x0, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x2, 0x2, 0x4, 0xe, 0x4, 0x2, 0x6, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x8, 0xa, 0x5], [0x7, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c32, 0x3, 0x5, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x0, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x5, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x37a, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd5, 0x7, 0x1f, 0x404, 0x4, 0x8, 0x8001, 0x7, 0x9, 0x800e8b, 0x5, 0x80000001, 0x48, 0x3f92, 0x1000, 0x0, 0x10, 0x1, 0xfffffff9, 0x1, 0x1000, 0x80040101, 0x4, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x3, 0x0, 0x7fff, 0x4, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x956, 0xf5c1, 0x3ff, 0x3, 0xcac, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x3, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x3, 0x3, 0x88, 0x2, 0x4000000, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x8320fb05, 0x1000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x6, 0x4, 0xe47, 0x3, 0x1654, 0x4, 0x8, 0x2851, 0x3b, 0x20000002, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x20008, 0x8a8, 0x6, 0x44, 0x409, 0x3, 0x744, 0x4, 0x12, 0x4, 0x10, 0x7fff, 0x2, 0xfffffff8, 0x401, 0xf, 0x200, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r5, 0x5501)
readv(r5, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)
recvfrom$inet(r1, 0x0, 0x0, 0x10040, 0x0, 0x0)

kernel console output (not intermixed with test programs):

amed from eth3
[  450.740290][ T9444] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.776645][ T9444] 8021q: adding VLAN 0 to HW filter on device team0
[  450.833267][ T7161] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.840647][ T7161] bridge0: port 1(bridge_slave_0) entered forwarding state
[  451.023249][ T6005] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.030460][ T6005] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.779038][ T9444] 8021q: adding VLAN 0 to HW filter on device batadv0
[  451.792410][   T27] kauditd_printk_skb: 11 callbacks suppressed
[  451.792426][   T27] audit: type=1326 audit(1760932246.676:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  451.822031][   T27] audit: type=1326 audit(1760932246.696:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  451.847093][   T27] audit: type=1326 audit(1760932246.696:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  451.883113][   T27] audit: type=1326 audit(1760932246.696:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  451.910457][   T27] audit: type=1326 audit(1760932246.696:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  451.939480][ T5115] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  451.958310][   T27] audit: type=1326 audit(1760932246.696:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  451.992164][   T27] audit: type=1326 audit(1760932246.696:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  452.019622][   T27] audit: type=1326 audit(1760932246.706:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  452.050219][   T27] audit: type=1326 audit(1760932246.706:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.4.994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  452.119093][ T5115] usb 6-1: device descriptor read/64, error -71
[  452.295042][ T9572] fuse: Invalid rootmode
[  452.313532][ T9444] veth0_vlan: entered promiscuous mode
[  452.389040][ T5115] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  452.413484][ T9444] veth1_vlan: entered promiscuous mode
[  452.835004][ T9444] veth0_macvtap: entered promiscuous mode
[  452.936717][ T9444] veth1_macvtap: entered promiscuous mode
[  453.147406][ T9444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.189120][ T9444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.216692][ T9444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.227454][ T9444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.239208][ T9444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.256790][ T9444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.284967][ T9444] batman_adv: batadv0: Interface activated: batadv_slave_0
[  453.289103][ T5115] usb 6-1: device descriptor read/64, error -71
[  453.307965][ T9444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  453.326105][ T9444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.337704][ T9444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  453.348554][ T9444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.358429][ T9444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  453.368968][ T9444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.381657][ T9444] batman_adv: batadv0: Interface activated: batadv_slave_1
[  453.397147][ T9444] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  453.406282][ T9444] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  453.415398][ T5115] usb usb6-port1: attempt power cycle
[  453.420969][ T9444] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  453.430146][ T9444] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  453.575163][ T7161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  453.587278][ T7161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  453.618115][ T7163] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  453.630594][ T7163] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  453.839375][ T5115] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  454.143120][ T5115] usb 6-1: device descriptor read/8, error -71
[  454.249094][ T9590] blktrace: Concurrent blktraces are not allowed on loop2
[  454.834521][ T9599] fuse: Invalid rootmode
[  455.809427][ T9609] blktrace: Concurrent blktraces are not allowed on loop2
[  455.906843][   T27] audit: type=1326 audit(1760932250.786:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9612 comm="syz.4.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  456.279016][ T5839] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  456.449093][ T5839] usb 6-1: device descriptor read/64, error -71
[  457.279106][ T5839] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  457.450103][ T5839] usb 6-1: device descriptor read/64, error -71
[  457.599545][ T5839] usb usb6-port1: attempt power cycle
[  457.733030][   T27] kauditd_printk_skb: 14 callbacks suppressed
[  457.733046][   T27] audit: type=1326 audit(1760932252.616:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  457.801215][   T27] audit: type=1326 audit(1760932252.616:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  457.832874][   T27] audit: type=1326 audit(1760932252.616:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  457.852853][ T9638] syz.1.1021 (9638) used greatest stack depth: 17960 bytes left
[  457.857359][   T27] audit: type=1326 audit(1760932252.616:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  457.887142][   T27] audit: type=1326 audit(1760932252.616:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  457.910280][   T27] audit: type=1326 audit(1760932252.616:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  457.947836][ T9644] loop4: detected capacity change from 0 to 512
[  457.953187][   T27] audit: type=1326 audit(1760932252.616:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  457.981790][   T27] audit: type=1326 audit(1760932252.616:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  458.011011][   T27] audit: type=1326 audit(1760932252.616:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9641 comm="syz.4.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  458.034699][   T27] audit: type=1326 audit(1760932252.826:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9645 comm="syz.1.1026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  458.040114][ T5839] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  458.110684][ T5839] usb 6-1: device descriptor read/8, error -71
[  458.187222][ T9653] loop1: detected capacity change from 0 to 2048
[  458.200259][ T9644] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[  458.225457][ T9653] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  458.242547][ T9653] ext4 filesystem being mounted at /252/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  458.401626][ T5839] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  458.441098][ T5839] usb 6-1: device descriptor read/8, error -71
[  458.463451][ T9659] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.1027: bg 0: block 345: padding at end of block bitmap is not set
[  458.485744][ T9659] EXT4-fs (loop1): Remounting filesystem read-only
[  458.559226][ T5839] usb usb6-port1: unable to enumerate USB device
[  458.866552][ T9649] warn_alloc: 3 callbacks suppressed
[  458.866566][ T9649] syz.1.1027: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  458.889970][ T9649] CPU: 0 PID: 9649 Comm: syz.1.1027 Not tainted syzkaller #0
[  458.897390][ T9649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  458.907499][ T9649] Call Trace:
[  458.910813][ T9649]  <TASK>
[  458.913759][ T9649]  dump_stack_lvl+0x16c/0x230
[  458.918491][ T9649]  ? show_regs_print_info+0x20/0x20
[  458.923716][ T9649]  ? load_image+0x3b0/0x3b0
[  458.928243][ T9649]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  458.934700][ T9649]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  458.941234][ T9649]  warn_alloc+0x210/0x300
[  458.945614][ T9649]  ? zone_watermark_ok_safe+0x230/0x230
[  458.951209][ T9649]  ? _raw_spin_unlock+0x28/0x40
[  458.956106][ T9649]  __vmalloc_node_range+0x662/0x1320
[  458.961453][ T9649]  ? free_vm_area+0x50/0x50
[  458.965986][ T9649]  ? _raw_spin_unlock+0x28/0x40
[  458.970856][ T9649]  ? __kasan_kmalloc+0x8f/0xa0
[  458.975645][ T9649]  __vmalloc_node_range+0x568/0x1320
[  458.980965][ T9649]  ? hash_netiface_create+0x361/0xff0
[  458.986377][ T9649]  ? __asan_memset+0x22/0x40
[  458.991031][ T9649]  ? free_vm_area+0x50/0x50
[  458.995560][ T9649]  ? kvmalloc_node+0x70/0x180
[  459.000303][ T9649]  ? rcu_is_watching+0x15/0xb0
[  459.005118][ T9649]  ? kvmalloc_node+0x70/0x180
[  459.009825][ T9649]  ? trace_kmalloc+0x1f/0xa0
[  459.014450][ T9649]  kvmalloc_node+0x13f/0x180
[  459.019069][ T9649]  ? hash_netiface_create+0x361/0xff0
[  459.024482][ T9649]  hash_netiface_create+0x361/0xff0
[  459.029701][ T9649]  ? __lock_acquire+0x7c80/0x7c80
[  459.034756][ T9649]  ? __nla_parse+0x40/0x50
[  459.039197][ T9649]  ? hash_netport6_gc+0x570/0x570
[  459.044248][ T9649]  ip_set_create+0xa87/0x18e0
[  459.048963][ T9649]  ? ip_set_create+0x4b2/0x18e0
[  459.053874][ T9649]  ? ip_set_protocol+0x5d0/0x5d0
[  459.058857][ T9649]  ? trace_contention_end+0x39/0xe0
[  459.064169][ T9649]  nfnetlink_rcv_msg+0xb49/0x1130
[  459.069314][ T9649]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  459.075414][ T9649]  ? nfnetlink_rcv_msg+0x20e/0x1130
[  459.080657][ T9649]  ? nfnetlink_unbind+0x160/0x160
[  459.085727][ T9649]  ? __dev_queue_xmit+0x1a64/0x35a0
[  459.090969][ T9649]  ? __netlink_deliver_tap+0x5ab/0x830
[  459.096468][ T9649]  ? netlink_deliver_tap+0x19c/0x1b0
[  459.101867][ T9649]  ? netlink_unicast+0x72c/0x8d0
[  459.106828][ T9649]  ? netlink_sendmsg+0x8c1/0xbe0
[  459.111797][ T9649]  ? ____sys_sendmsg+0x5bf/0x950
[  459.116768][ T9649]  ? ___sys_sendmsg+0x220/0x290
[  459.121642][ T9649]  ? __se_sys_sendmsg+0x1a5/0x270
[  459.126689][ T9649]  ? do_syscall_64+0x55/0xb0
[  459.131317][ T9649]  netlink_rcv_skb+0x216/0x480
[  459.136125][ T9649]  ? nfnetlink_unbind+0x160/0x160
[  459.141198][ T9649]  ? netlink_ack+0x1110/0x1110
[  459.146001][ T9649]  ? apparmor_capable+0x137/0x1a0
[  459.151049][ T9649]  ? bpf_lsm_capable+0x9/0x10
[  459.155754][ T9649]  ? security_capable+0x89/0xb0
[  459.160631][ T9649]  nfnetlink_rcv+0x274/0x2180
[  459.165397][ T9649]  ? __local_bh_enable_ip+0x12e/0x1c0
[  459.170786][ T9649]  ? lockdep_hardirqs_on+0x98/0x150
[  459.176018][ T9649]  ? __local_bh_enable_ip+0x12e/0x1c0
[  459.181523][ T9649]  ? _local_bh_enable+0xa0/0xa0
[  459.186405][ T9649]  ? __dev_queue_xmit+0x245/0x35a0
[  459.191539][ T9649]  ? nfnetlink_net_exit_batch+0xa0/0xa0
[  459.197125][ T9649]  ? __dev_queue_xmit+0x245/0x35a0
[  459.202269][ T9649]  ? ref_tracker_free+0x634/0x7d0
[  459.207312][ T9649]  ? __copy_skb_header+0xa7/0x550
[  459.212385][ T9649]  ? refcount_inc+0x70/0x70
[  459.216948][ T9649]  ? __skb_clone+0x63/0x790
[  459.221484][ T9649]  ? __skb_clone+0x480/0x790
[  459.226245][ T9649]  ? __netlink_deliver_tap+0x7e8/0x830
[  459.231745][ T9649]  ? netlink_deliver_tap+0x2e/0x1b0
[  459.236985][ T9649]  ? __lock_acquire+0x7c80/0x7c80
[  459.242061][ T9649]  ? netlink_deliver_tap+0x2e/0x1b0
[  459.247293][ T9649]  netlink_unicast+0x751/0x8d0
[  459.252134][ T9649]  netlink_sendmsg+0x8c1/0xbe0
[  459.256958][ T9649]  ? netlink_getsockopt+0x580/0x580
[  459.262200][ T9649]  ? aa_sock_msg_perm+0x94/0x150
[  459.267169][ T9649]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  459.272522][ T9649]  ? security_socket_sendmsg+0x80/0xa0
[  459.278002][ T9649]  ? netlink_getsockopt+0x580/0x580
[  459.283301][ T9649]  ____sys_sendmsg+0x5bf/0x950
[  459.288140][ T9649]  ? __asan_memset+0x22/0x40
[  459.292757][ T9649]  ? __sys_sendmsg_sock+0x30/0x30
[  459.297831][ T9649]  ? __import_iovec+0x5f2/0x860
[  459.302735][ T9649]  ? import_iovec+0x73/0xa0
[  459.307277][ T9649]  ___sys_sendmsg+0x220/0x290
[  459.311992][ T9649]  ? __sys_sendmsg+0x270/0x270
[  459.316805][ T9649]  ? debug_mutex_init+0x38/0x70
[  459.321699][ T9649]  __se_sys_sendmsg+0x1a5/0x270
[  459.326589][ T9649]  ? __x64_sys_sendmsg+0x80/0x80
[  459.331621][ T9649]  ? lockdep_hardirqs_on+0x98/0x150
[  459.336854][ T9649]  do_syscall_64+0x55/0xb0
[  459.341295][ T9649]  ? clear_bhb_loop+0x40/0x90
[  459.346019][ T9649]  ? clear_bhb_loop+0x40/0x90
[  459.350728][ T9649]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  459.356650][ T9649] RIP: 0033:0x7fcb5918efc9
[  459.361137][ T9649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.380772][ T9649] RSP: 002b:00007fcb5a0a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  459.389220][ T9649] RAX: ffffffffffffffda RBX: 00007fcb593e6090 RCX: 00007fcb5918efc9
[  459.397218][ T9649] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000008
[  459.405219][ T9649] RBP: 00007fcb59211f91 R08: 0000000000000000 R09: 0000000000000000
[  459.413213][ T9649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  459.421225][ T9649] R13: 00007fcb593e6128 R14: 00007fcb593e6090 R15: 00007ffd3386c338
[  459.429253][ T9649]  </TASK>
[  459.448952][ T9649] Mem-Info:
[  459.452355][ T9649] active_anon:3869 inactive_anon:1 isolated_anon:0
[  459.452355][ T9649]  active_file:1265 inactive_file:40037 isolated_file:0
[  459.452355][ T9649]  unevictable:768 dirty:62 writeback:0
[  459.452355][ T9649]  slab_reclaimable:10546 slab_unreclaimable:91111
[  459.452355][ T9649]  mapped:26031 shmem:1638 pagetables:413
[  459.452355][ T9649]  sec_pagetables:0 bounce:0
[  459.452355][ T9649]  kernel_misc_reclaimable:0
[  459.452355][ T9649]  free:1335789 free_pcp:9635 free_cma:0
[  459.525080][ T9649] Node 0 active_anon:15208kB inactive_anon:4kB active_file:5060kB inactive_file:159948kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:104080kB dirty:268kB writeback:0kB shmem:5016kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11036kB pagetables:1436kB sec_pagetables:0kB all_unreclaimable? no
[  459.576936][ T9649] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  459.627841][ T9649] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  459.687667][ T9649] lowmem_reserve[]: 0 2525 2526 2526 2526
[  459.697809][ T9649] Node 0 DMA32 free:1437924kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:15260kB inactive_anon:4kB active_file:5060kB inactive_file:158628kB unevictable:1536kB writepending:268kB present:3129332kB managed:2589604kB mlocked:0kB bounce:0kB free_pcp:19924kB local_pcp:16012kB free_cma:0kB
[  459.848634][ T9649] lowmem_reserve[]: 0 0 1 1 1
[  459.884966][ T9649] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  459.972252][ T9649] lowmem_reserve[]: 0 0 0 0 0
[  460.004644][ T9649] Node 1 Normal free:3889868kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:19616kB local_pcp:8800kB free_cma:0kB
[  460.219549][ T9649] lowmem_reserve[]: 0 0 0 0 0
[  460.292324][ T9649] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  460.410967][ T9649] Node 0 DMA32: 3*4kB (UME) 1*8kB (U) 169*16kB (ME) 224*32kB (UM) 126*64kB (ME) 68*128kB (M) 24*256kB (M) 16*512kB (M) 10*1024kB (UM) 7*2048kB (UME) 335*4096kB (UM) = 1437732kB
[  460.459115][ T9649] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  460.471317][ T9649] Node 1 Normal: 305*4kB (UME) 67*8kB (UME) 49*16kB (UME) 161*32kB (UME) 55*64kB (UME) 10*128kB (UME) 2*256kB (ME) 0*512kB 0*1024kB 1*2048kB (E) 946*4096kB (M) = 3889868kB
[  460.488817][ T9649] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  460.499145][ T9649] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  460.508485][ T9649] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  460.518627][ T9649] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  460.528217][ T9649] 42942 total pagecache pages
[  460.550875][ T9649] 1 pages in swap cache
[  460.555214][ T9649] Free swap  = 124472kB
[  460.575745][ T9649] Total swap = 124996kB
[  460.601799][ T9649] 2097051 pages RAM
[  460.605654][ T9649] 0 pages HighMem/MovableOnly
[  460.729052][ T9649] 416136 pages reserved
[  460.733386][ T9649] 0 pages cma reserved
[  463.220349][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.342685][ T9696] input: syz1 as /devices/virtual/input/input26
[  463.350934][   T27] kauditd_printk_skb: 25 callbacks suppressed
[  463.350948][   T27] audit: type=1326 audit(1760932258.236:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  463.418983][   T27] audit: type=1326 audit(1760932258.266:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  463.446444][   T27] audit: type=1326 audit(1760932258.266:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  463.485834][   T27] audit: type=1326 audit(1760932258.266:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  463.676749][   T27] audit: type=1326 audit(1760932258.266:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  463.869902][   T27] audit: type=1326 audit(1760932258.266:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  464.121568][   T27] audit: type=1326 audit(1760932258.266:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  464.355245][   T27] audit: type=1326 audit(1760932258.266:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  464.377833][   T27] audit: type=1326 audit(1760932258.266:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.1.1042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  465.820442][ T9716] loop6: detected capacity change from 0 to 32768
[  467.509136][ T9716] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  467.531404][ T9716] workqueue: Failed to create a rescuer kthread for wq "xfs-log/loop6": -EINTR
[  467.538391][ T9733] fuse: Bad value for 'rootmode'
[  467.545560][ T9716] XFS (loop6): log mount failed
[  467.619507][ T9735] input: syz1 as /devices/virtual/input/input27
[  468.939402][ T5876] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  469.100133][ T5876] usb 5-1: device descriptor read/64, error -71
[  469.161156][ T9758] sd 0:0:1:0: device reset
[  469.379026][ T5876] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  469.539509][ T5876] usb 5-1: device descriptor read/64, error -71
[  469.589246][ T9763] blktrace: Concurrent blktraces are not allowed on loop2
[  469.661226][ T5876] usb usb5-port1: attempt power cycle
[  470.148134][ T5876] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  470.317332][ T5876] usb 5-1: device descriptor read/8, error -71
[  470.809151][ T5876] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  470.919237][ T5876] usb 5-1: device descriptor read/8, error -71
[  471.014834][ T9766] loop1: detected capacity change from 0 to 32768
[  471.148768][ T5876] usb usb5-port1: unable to enumerate USB device
[  471.382894][ T9772] netlink: 'syz.5.1065': attribute type 12 has an invalid length.
[  471.415227][ T9766] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  472.070426][ T9766] XFS (loop1): Ending clean mount
[  472.388726][ T5785] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  472.541836][ T9789] tmpfs: Bad value for 'nr_blocks'
[  472.874097][ T9791] usb usb1: usbfs: process 9791 (syz.6.1071) did not claim interface 0 before use
[  473.566664][ T9798] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  475.241769][ T9808] netlink: 'syz.4.1075': attribute type 12 has an invalid length.
[  476.717579][ T5876] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  476.765143][ T9816] loop6: detected capacity change from 0 to 32768
[  477.248970][ T5876] usb 6-1: device descriptor read/64, error -71
[  477.338623][ T9816] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  477.543804][ T5876] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  477.631493][ T9816] XFS (loop6): Ending clean mount
[  477.769145][ T5876] usb 6-1: device descriptor read/64, error -71
[  477.891264][ T9444] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  477.929251][ T5876] usb usb6-port1: attempt power cycle
[  478.349200][ T5876] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  478.381510][ T9842] netlink: 'syz.5.1088': attribute type 12 has an invalid length.
[  478.573289][ T5876] usb 6-1: device not accepting address 12, error -71
[  479.691086][   T27] audit: type=1326 audit(1760932274.576:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  479.763204][   T27] audit: type=1326 audit(1760932274.576:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  479.785935][   T27] audit: type=1326 audit(1760932274.606:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  479.810452][   T27] audit: type=1326 audit(1760932274.606:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  479.833485][   T27] audit: type=1326 audit(1760932274.606:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  480.027465][   T27] audit: type=1326 audit(1760932274.606:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  480.420262][   T27] audit: type=1326 audit(1760932274.606:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  480.483283][   T27] audit: type=1326 audit(1760932274.606:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  480.506709][   T27] audit: type=1326 audit(1760932274.606:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  480.537925][   T27] audit: type=1326 audit(1760932274.616:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9851 comm="syz.1.1090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  481.931567][ T9860] loop5: detected capacity change from 0 to 32768
[  483.638467][ T9871] netlink: 'syz.4.1097': attribute type 12 has an invalid length.
[  484.554081][ T9860] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  485.496716][ T9860] XFS (loop5): Ending clean mount
[  485.629706][ T8896] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  485.887094][ T9900] netlink: 'syz.6.1108': attribute type 12 has an invalid length.
[  487.893932][ T9916] loop5: detected capacity change from 0 to 32768
[  489.696930][ T9916] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  490.005163][ T9916] XFS (loop5): Ending clean mount
[  490.029903][ T9935] netlink: 'syz.1.1118': attribute type 12 has an invalid length.
[  490.114979][ T8896] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  490.531094][ T9949] netlink: 830 bytes leftover after parsing attributes in process `syz.5.1124'.
[  490.541352][ T9946] Falling back ldisc for ptm0.
[  490.548488][ T9949] bond_slave_0: entered promiscuous mode
[  490.554728][ T9949] bond_slave_1: entered promiscuous mode
[  490.786692][ T9959] netlink: 'syz.5.1129': attribute type 12 has an invalid length.
[  492.173795][ T9960] loop6: detected capacity change from 0 to 32768
[  493.786234][ T9960] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  494.626245][ T9983] loop4: detected capacity change from 0 to 164
[  494.648298][ T9960] XFS (loop6): Ending clean mount
[  494.682578][ T9983] Unable to read rock-ridge attributes
[  494.743336][   T27] kauditd_printk_skb: 17 callbacks suppressed
[  494.743351][   T27] audit: type=1326 audit(1760932289.626:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.4.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  494.864715][   T27] audit: type=1326 audit(1760932289.676:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.4.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  494.865331][ T9444] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  494.892454][   T27] audit: type=1326 audit(1760932289.676:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.4.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  494.988417][   T27] audit: type=1326 audit(1760932289.676:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.4.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  495.042154][   T27] audit: type=1326 audit(1760932289.676:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.4.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  495.119008][   T27] audit: type=1326 audit(1760932289.676:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.4.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  495.189098][   T27] audit: type=1326 audit(1760932289.676:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.4.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  495.263060][   T27] audit: type=1326 audit(1760932289.676:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9980 comm="syz.4.1135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  495.519059][ T9431] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  495.703291][ T9431] usb 6-1: Using ep0 maxpacket: 16
[  495.841629][ T9431] usb 6-1: unable to read config index 0 descriptor/start: -61
[  495.886918][ T9431] usb 6-1: can't read configurations, error -61
[  496.335648][ T9431] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  497.037855][T10017] loop6: detected capacity change from 0 to 32768
[  497.418276][ T9431] usb 6-1: Using ep0 maxpacket: 16
[  497.506474][ T9431] usb 6-1: unable to read config index 0 descriptor/start: -61
[  497.557001][ T9431] usb 6-1: can't read configurations, error -61
[  497.657549][ T9431] usb usb6-port1: attempt power cycle
[  497.985146][T10017] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  498.284974][ T9431] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  498.583347][T10017] XFS (loop6): Ending clean mount
[  498.829874][ T9431] usb 6-1: device descriptor read/8, error -71
[  498.876881][ T9444] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  498.927913][T10035] loop5: detected capacity change from 0 to 1024
[  498.935460][T10035] EXT4-fs: Ignoring removed nomblk_io_submit option
[  499.011726][T10035] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  499.310544][ T8896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  499.395763][T10045] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.554350][T10045] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  499.811312][T10045] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.054929][T10045] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  500.853663][T10045] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  500.877755][T10045] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  500.903451][T10045] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  500.934975][T10045] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  501.945331][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  501.952194][ T1282] ieee802154 phy1 wpan1: encryption failed: -22
[  502.467061][T10065] loop4: detected capacity change from 0 to 32768
[  504.027407][T10065] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  504.082982][T10065] XFS (loop4): Ending clean mount
[  504.402316][ T8455] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  504.479298][ T5876] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  504.763394][T10092] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1175'.
[  504.774318][T10092] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  504.810176][ T5876] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  504.847083][   T27] audit: type=1326 audit(1760932299.686:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.1.1175" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x0
[  505.542350][ T5876] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  505.889112][ T5876] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.940019][ T5876] usb 6-1: config 0 descriptor??
[  506.037617][   T27] audit: type=1326 audit(1760932300.916:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  506.078979][   T27] audit: type=1326 audit(1760932300.916:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  506.139879][   T27] audit: type=1326 audit(1760932300.916:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  506.197376][   T27] audit: type=1326 audit(1760932300.916:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  506.227340][   T27] audit: type=1326 audit(1760932300.916:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  506.250582][   T27] audit: type=1326 audit(1760932300.916:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  506.286302][   T27] audit: type=1326 audit(1760932300.916:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  506.343739][ T5839] usb 6-1: USB disconnect, device number 18
[  506.541811][T10115] netlink: 128 bytes leftover after parsing attributes in process `syz.6.1184'.
[  506.551349][T10115] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  506.602165][   T27] audit: type=1326 audit(1760932301.456:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10112 comm="syz.6.1184" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x0
[  507.487821][   T27] audit: type=1326 audit(1760932302.366:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10120 comm="syz.6.1186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  508.396856][T10143] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1194'.
[  508.406102][T10143] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  509.351872][T10150] xt_hashlimit: max too large, truncated to 1048576
[  509.428797][T10151] input: syz1 as /devices/virtual/input/input28
[  510.044099][T10162] netlink: 'syz.4.1201': attribute type 12 has an invalid length.
[  510.265143][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  510.265159][   T27] audit: type=1326 audit(1760932305.146:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10163 comm="syz.4.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  510.383579][   T27] audit: type=1326 audit(1760932305.186:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10163 comm="syz.4.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  510.498999][   T27] audit: type=1326 audit(1760932305.196:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10163 comm="syz.4.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  510.523769][   T27] audit: type=1326 audit(1760932305.196:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10163 comm="syz.4.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  510.706944][T10172] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1205'.
[  510.716178][T10172] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  510.790943][   T27] audit: type=1326 audit(1760932305.636:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10170 comm="syz.4.1205" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x0
[  512.528441][T10190] netlink: 'syz.4.1211': attribute type 12 has an invalid length.
[  513.567220][T10201] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1216'.
[  513.576474][T10201] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  513.636094][   T27] audit: type=1326 audit(1760932308.476:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10199 comm="syz.1.1216" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x0
[  514.691666][T10207] netlink: 'syz.1.1218': attribute type 10 has an invalid length.
[  514.739171][T10207] team0: Port device dummy0 added
[  514.765654][T10210] netlink: 'syz.1.1218': attribute type 10 has an invalid length.
[  515.057944][T10210] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  515.630595][T10210] team0: Failed to send options change via netlink (err -105)
[  515.663965][T10210] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  515.755177][T10210] team0: Port device dummy0 removed
[  515.803539][T10210] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  516.294103][T10220] netlink: 'syz.1.1223': attribute type 12 has an invalid length.
[  516.327401][T10222] loop5: detected capacity change from 0 to 2048
[  516.415674][T10222] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  516.470230][T10230] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1226'.
[  516.479932][T10230] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  516.501781][   T27] audit: type=1326 audit(1760932311.386:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10225 comm="syz.1.1226" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x0
[  517.440864][ T8896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  517.830042][T10248] fuse: Unknown parameter '0x0000000000000003'
[  519.257792][T10257] netlink: 'syz.5.1235': attribute type 12 has an invalid length.
[  519.716812][T10263] loop5: detected capacity change from 0 to 2048
[  519.749903][   T27] audit: type=1326 audit(1760932314.636:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.1.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  519.923940][T10263] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  519.980950][   T27] audit: type=1326 audit(1760932314.656:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.1.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  520.074046][   T27] audit: type=1326 audit(1760932314.656:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.1.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  520.096638][   T27] audit: type=1326 audit(1760932314.656:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.1.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  520.305481][T10271] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  520.332363][T10271] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 150 with max blocks 162 with error 28
[  520.362281][T10271] EXT4-fs (loop5): This should not happen!! Data will be lost
[  520.362281][T10271] 
[  520.380393][T10271] EXT4-fs (loop5): Total free blocks count 0
[  520.417233][T10271] EXT4-fs (loop5): Free/Dirty block details
[  520.430106][T10271] EXT4-fs (loop5): free_blocks=2415919104
[  520.435970][T10271] EXT4-fs (loop5): dirty_blocks=320
[  520.463200][T10278] fuse: Unknown parameter '0x0000000000000003'
[  520.468941][T10271] EXT4-fs (loop5): Block reservation details
[  520.476157][T10271] EXT4-fs (loop5): i_reserved_data_blocks=20
[  521.406047][   T28] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  521.442449][ T7175] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  521.457274][T10287] netlink: 'syz.1.1245': attribute type 12 has an invalid length.
[  521.631634][   T28] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  521.648356][   T28] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  521.678946][   T28] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  521.698353][   T28] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  521.730172][   T28] usb 5-1: config 0 descriptor??
[  521.740603][   T28] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  522.801136][ T9431] usb 5-1: USB disconnect, device number 9
[  523.450049][T10309] fuse: Unknown parameter '0x0000000000000003'
[  524.592116][T10316] netlink: 'syz.4.1255': attribute type 12 has an invalid length.
[  526.320046][T10334] fuse: Unknown parameter '0x0000000000000003'
[  527.818606][T10351] loop1: detected capacity change from 0 to 2048
[  527.876329][ T5876] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  527.884499][T10351] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  528.071728][T10357] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  528.100743][T10357] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 344 with error 28
[  528.108113][ T5876] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  528.129198][T10357] EXT4-fs (loop1): This should not happen!! Data will be lost
[  528.129198][T10357] 
[  528.141929][T10357] EXT4-fs (loop1): Total free blocks count 0
[  528.148436][T10357] EXT4-fs (loop1): Free/Dirty block details
[  528.154594][T10357] EXT4-fs (loop1): free_blocks=2415919104
[  528.160551][T10357] EXT4-fs (loop1): dirty_blocks=352
[  528.171322][ T5876] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  528.198940][ T5876] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  528.208176][ T5876] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  528.209049][T10357] EXT4-fs (loop1): Block reservation details
[  528.223914][ T5876] usb 6-1: config 0 descriptor??
[  528.233332][ T5876] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  528.246282][T10357] EXT4-fs (loop1): i_reserved_data_blocks=22
[  528.286030][   T27] audit: type=1326 audit(1760932323.166:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.334855][   T27] audit: type=1326 audit(1760932323.166:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.381647][   T27] audit: type=1326 audit(1760932323.246:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.405770][   T27] audit: type=1326 audit(1760932323.246:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.428400][   T27] audit: type=1326 audit(1760932323.246:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.463804][   T27] audit: type=1326 audit(1760932323.256:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.498760][   T27] audit: type=1326 audit(1760932323.256:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.522182][   T27] audit: type=1326 audit(1760932323.256:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.545695][   T27] audit: type=1326 audit(1760932323.256:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.568261][   T27] audit: type=1326 audit(1760932323.256:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.6.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  528.632577][ T5115] usb 6-1: USB disconnect, device number 19
[  528.645877][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  528.705785][T10367] fuse: Unknown parameter 'fd0x0000000000000003'
[  530.115685][T10389] sp0: Synchronizing with TNC
[  530.122221][T10389] sp0: Found TNC
[  530.771839][T10385] [U] è`
[  530.818343][T10398] fuse: Unknown parameter 'fd0x0000000000000003'
[  532.060532][T10414] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  532.078413][T10414] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  532.088370][T10414] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  532.972274][T10433] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  532.975058][T10431] IPVS: stopping master sync thread 10433 ...
[  532.989871][T10432] fuse: Unknown parameter 'fd0x0000000000000003'
[  533.926457][   T27] kauditd_printk_skb: 39 callbacks suppressed
[  533.926471][   T27] audit: type=1326 audit(1760932328.806:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10438 comm="syz.5.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  534.061800][   T27] audit: type=1326 audit(1760932328.846:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10438 comm="syz.5.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  534.148380][   T27] audit: type=1326 audit(1760932328.846:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10438 comm="syz.5.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  534.182259][   T27] audit: type=1326 audit(1760932328.846:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10438 comm="syz.5.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  534.210088][   T27] audit: type=1326 audit(1760932328.846:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10438 comm="syz.5.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  534.755036][   T27] audit: type=1326 audit(1760932329.636:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  534.837328][   T27] audit: type=1326 audit(1760932329.636:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  534.913356][   T27] audit: type=1326 audit(1760932329.636:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  534.968474][   T27] audit: type=1326 audit(1760932329.636:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  535.051629][   T27] audit: type=1326 audit(1760932329.636:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  535.149270][    T8] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  536.071177][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  536.089051][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  536.119364][    T8] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  536.128578][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  536.141288][    T8] usb 5-1: config 0 descriptor??
[  536.150364][    T8] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  536.464588][    T8] usb 5-1: USB disconnect, device number 10
[  542.619086][ T5839] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  543.431451][T10631] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1375'.
[  543.635562][ T5839] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  543.655866][ T5839] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  543.682456][ T5839] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  543.697749][ T5839] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  543.709031][ T5839] usb 6-1: config 0 descriptor??
[  543.722127][ T5839] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  543.780266][T10639] netlink: 'syz.6.1381': attribute type 10 has an invalid length.
[  543.918075][T10639] team0: Port device dummy0 added
[  543.934243][T10640] netlink: 'syz.6.1381': attribute type 10 has an invalid length.
[  544.015909][T10640] team0: Port device dummy0 removed
[  544.062189][T10640] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  544.283500][ T5839] usb 6-1: USB disconnect, device number 20
[  544.745425][T10655] loop6: detected capacity change from 0 to 2048
[  544.798501][T10655] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  544.831290][T10655] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  545.794182][ T9444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  546.064761][T10682] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1392'.
[  546.416802][T10696] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1401'.
[  546.426231][T10696] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  546.448176][   T27] kauditd_printk_skb: 12 callbacks suppressed
[  546.448192][   T27] audit: type=1326 audit(1760932341.326:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10692 comm="syz.4.1401" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x0
[  546.548339][  T785] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  547.437551][  T785] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  547.483040][  T785] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  547.503724][  T785] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  547.532937][  T785] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  547.573455][  T785] usb 6-1: config 0 descriptor??
[  548.550726][  T785] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  548.862482][  T785] usb 6-1: USB disconnect, device number 21
[  549.949849][   T27] audit: type=1326 audit(1760932344.826:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  550.143287][   T27] audit: type=1326 audit(1760932344.826:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  550.366095][   T27] audit: type=1326 audit(1760932344.866:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  550.596618][   T27] audit: type=1326 audit(1760932344.866:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  550.805439][   T27] audit: type=1326 audit(1760932344.886:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  550.884849][   T27] audit: type=1326 audit(1760932344.886:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  550.894409][T10737] program syz.5.1413 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  550.916954][   T27] audit: type=1326 audit(1760932344.896:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  550.942100][   T27] audit: type=1326 audit(1760932344.896:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  550.945022][T10739] program syz.5.1413 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  550.977228][   T27] audit: type=1326 audit(1760932344.906:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10728 comm="syz.5.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  551.589002][    T8] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  551.855950][    T8] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  551.978641][    T8] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  552.107903][    T8] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  552.195837][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  552.240291][    T8] usb 6-1: config 0 descriptor??
[  552.265278][    T8] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  553.423096][    T8] usb 6-1: USB disconnect, device number 22
[  555.365611][   T27] kauditd_printk_skb: 27 callbacks suppressed
[  555.365631][   T27] audit: type=1326 audit(1760932350.216:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.450972][   T27] audit: type=1326 audit(1760932350.216:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.480906][   T27] audit: type=1326 audit(1760932350.226:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.509672][   T27] audit: type=1326 audit(1760932350.226:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.538722][   T27] audit: type=1326 audit(1760932350.226:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.574533][   T27] audit: type=1326 audit(1760932350.226:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.615830][   T27] audit: type=1326 audit(1760932350.226:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.642773][   T27] audit: type=1326 audit(1760932350.226:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.668588][   T27] audit: type=1326 audit(1760932350.226:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  555.701355][   T27] audit: type=1326 audit(1760932350.226:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10800 comm="syz.6.1441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ab5d8efc9 code=0x7ffc0000
[  559.171162][T10849] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  559.410299][T10853] loop6: detected capacity change from 0 to 1024
[  559.545831][T10853] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  560.806064][ T9444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  562.548232][T10872] netlink: 'syz.4.1465': attribute type 12 has an invalid length.
[  562.910812][T10886] netlink: 'syz.5.1472': attribute type 10 has an invalid length.
[  562.946591][T10886] team0: Port device dummy0 added
[  562.963153][T10888] netlink: 'syz.5.1472': attribute type 10 has an invalid length.
[  562.995923][T10888] team0: Port device dummy0 removed
[  563.008879][T10888] dummy0: entered promiscuous mode
[  563.019928][T10888] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  563.314309][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  563.323196][ T1282] ieee802154 phy1 wpan1: encryption failed: -22
[  564.517396][T10907] netlink: 'syz.4.1478': attribute type 12 has an invalid length.
[  564.892353][T10913] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1481'.
[  564.939779][T10916] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  565.958259][T10935] loop1: detected capacity change from 0 to 1024
[  565.976565][T10935] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  566.174337][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  566.825783][T10962] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  567.743231][T10972] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1502'.
[  567.752581][T10972] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  567.825905][   T27] kauditd_printk_skb: 7 callbacks suppressed
[  567.825954][   T27] audit: type=1326 audit(1760932362.656:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10970 comm="syz.4.1502" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x0
[  569.933034][T11012] loop5: detected capacity change from 0 to 2048
[  570.072743][T11012] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  570.212371][T11012] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  570.242179][T11027] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  570.331621][T11012] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 478 with error 28
[  570.426076][T11012] EXT4-fs (loop5): This should not happen!! Data will be lost
[  570.426076][T11012] 
[  570.483176][T11012] EXT4-fs (loop5): Total free blocks count 0
[  570.503931][T11012] EXT4-fs (loop5): Free/Dirty block details
[  570.534674][T11012] EXT4-fs (loop5): free_blocks=2415919104
[  570.560220][T11012] EXT4-fs (loop5): dirty_blocks=480
[  570.575891][T11012] EXT4-fs (loop5): Block reservation details
[  570.582287][T11012] EXT4-fs (loop5): i_reserved_data_blocks=30
[  570.963955][ T8896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  571.248640][T11036] loop6: detected capacity change from 0 to 2048
[  571.293255][T11036] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  571.333911][T11038] mmap: syz.4.1525 (11038) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  571.344748][T11042] netlink: 168 bytes leftover after parsing attributes in process `syz.5.1526'.
[  571.525981][ T9444] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  571.609029][ T9444] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  571.626327][T11047] input: syz1 as /devices/virtual/input/input30
[  572.298201][ T9444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  572.517987][T11051] loop4: detected capacity change from 0 to 2048
[  572.568450][T11051] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  572.709132][T11051] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  572.754900][T11051] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 224 with error 28
[  572.779970][T11051] EXT4-fs (loop4): This should not happen!! Data will be lost
[  572.779970][T11051] 
[  572.796249][T11051] EXT4-fs (loop4): Total free blocks count 0
[  572.802689][T11051] EXT4-fs (loop4): Free/Dirty block details
[  572.816165][T11051] EXT4-fs (loop4): free_blocks=2415919104
[  572.822499][T11051] EXT4-fs (loop4): dirty_blocks=240
[  572.827908][T11051] EXT4-fs (loop4): Block reservation details
[  572.840392][T11051] EXT4-fs (loop4): i_reserved_data_blocks=15
[  572.885062][T11071] loop6: detected capacity change from 0 to 512
[  572.923301][T11070] loop1: detected capacity change from 0 to 164
[  572.948594][T11071] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  572.969225][T11071] ext4 filesystem being mounted at /116/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  573.014657][ T8455] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  573.026528][T11070] process 'syz.1.1536' launched '/dev/fd/3' with NULL argv: empty string added
[  573.050246][T11070] syz.1.1536: attempt to access beyond end of device
[  573.050246][T11070] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  573.073046][T11070] syz.1.1536: attempt to access beyond end of device
[  573.073046][T11070] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  573.096216][   T27] audit: type=1326 audit(1760932367.976:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11076 comm="syz.5.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  573.123676][   T27] audit: type=1326 audit(1760932367.976:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11076 comm="syz.5.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  573.156122][   T27] audit: type=1326 audit(1760932367.976:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11076 comm="syz.5.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  573.203795][   T27] audit: type=1326 audit(1760932367.976:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11076 comm="syz.5.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  573.241347][   T27] audit: type=1326 audit(1760932367.976:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11076 comm="syz.5.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  573.275540][   T27] audit: type=1326 audit(1760932367.976:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11076 comm="syz.5.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  573.317967][   T27] audit: type=1326 audit(1760932368.006:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11076 comm="syz.5.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  573.377657][   T27] audit: type=1326 audit(1760932368.006:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11076 comm="syz.5.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  573.711752][T11094] loop5: detected capacity change from 0 to 2048
[  573.748069][T11071] team0 (unregistering): Port device team_slave_0 removed
[  573.776361][T11071] team0 (unregistering): Port device team_slave_1 removed
[  573.788186][T11094] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  573.909516][ T9444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  573.970456][T11094] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  574.068287][T11094] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 508 with error 28
[  574.127152][T11094] EXT4-fs (loop5): This should not happen!! Data will be lost
[  574.127152][T11094] 
[  574.151353][T11094] EXT4-fs (loop5): Total free blocks count 0
[  574.174077][T11094] EXT4-fs (loop5): Free/Dirty block details
[  574.186737][T11094] EXT4-fs (loop5): free_blocks=2415919104
[  574.199580][T11094] EXT4-fs (loop5): dirty_blocks=512
[  574.204909][T11094] EXT4-fs (loop5): Block reservation details
[  574.230468][T11094] EXT4-fs (loop5): i_reserved_data_blocks=32
[  574.335870][T11110] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  574.383785][ T8896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  574.824839][T11115] blktrace: Concurrent blktraces are not allowed on loop10
[  575.544720][T11125] netlink: 'syz.1.1557': attribute type 10 has an invalid length.
[  575.580875][T11125] bond0: (slave dummy0): Releasing backup interface
[  575.606194][T11125] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  575.668047][T11125] team0: Failed to send options change via netlink (err -105)
[  575.676862][T11125] team0: Port device dummy0 added
[  575.683133][T11129] netlink: 'syz.1.1557': attribute type 10 has an invalid length.
[  575.692069][T11129] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  575.726671][T11129] team0: Failed to send options change via netlink (err -105)
[  575.734666][T11129] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  575.746196][T11129] team0: Port device dummy0 removed
[  575.756640][T11129] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  575.870922][T11136] blktrace: Concurrent blktraces are not allowed on loop8
[  575.971513][   T27] audit: type=1326 audit(1760932370.856:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11139 comm="syz.5.1563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  576.008094][T11143] loop4: detected capacity change from 0 to 128
[  576.014574][   T27] audit: type=1326 audit(1760932370.886:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11139 comm="syz.5.1563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7fdb5718efc9 code=0x7ffc0000
[  576.038742][T11143] EXT4-fs: Ignoring removed nobh option
[  576.060228][T11143] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  576.072892][T11143] ext4 filesystem being mounted at /250/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  576.418922][T11154] input: syz1 as /devices/virtual/input/input31
[  576.881815][ T8455] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  577.176466][T11172] blktrace: Concurrent blktraces are not allowed on loop2
[  577.656660][T11189] input: syz1 as /devices/virtual/input/input32
[  577.920649][T11194] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1582'.
[  577.947424][T11194] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  579.315916][T11204] netlink: 'syz.1.1586': attribute type 12 has an invalid length.
[  579.358779][T11207] blktrace: Concurrent blktraces are not allowed on loop10
[  581.011155][T11228] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1595'.
[  581.081612][T11228] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  581.147707][   T27] kauditd_printk_skb: 192 callbacks suppressed
[  581.147727][   T27] audit: type=1326 audit(1760932375.966:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11227 comm="syz.1.1595" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x0
[  581.371454][T11238] blktrace: Concurrent blktraces are not allowed on loop10
[  581.523891][T11243] sd 0:0:1:0: device reset
[  581.704587][T11255] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1605'.
[  581.713872][T11255] IPVS: Unknown mcast interface: ipvlan1
[  583.291002][T11286] xt_CT: You must specify a L4 protocol and not use inversions on it
[  583.439820][T11295] loop1: detected capacity change from 0 to 512
[  583.770841][T11295] EXT4-fs (loop1): orphan cleanup on readonly fs
[  584.001994][T11295] EXT4-fs warning (device loop1): ext4_xattr_inode_get:563: inode #11: comm syz.1.1622: EA inode hash validation failed
[  584.190372][T11301] netlink: 'syz.6.1624': attribute type 10 has an invalid length.
[  584.209147][T11295] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  584.253865][T11301] bond0: (slave dummy0): Releasing backup interface
[  584.273304][T11295] EXT4-fs error (device loop1): ext4_do_update_inode:5236: inode #15: comm syz.1.1622: corrupted inode contents
[  584.296936][T11303] netlink: 'syz.6.1624': attribute type 10 has an invalid length.
[  584.319047][T11295] EXT4-fs error (device loop1): ext4_dirty_inode:6112: inode #15: comm syz.1.1622: mark_inode_dirty error
[  584.346432][T11295] EXT4-fs error (device loop1): ext4_do_update_inode:5236: inode #15: comm syz.1.1622: corrupted inode contents
[  584.364027][T11303] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  584.374374][T11295] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3017: inode #15: comm syz.1.1622: mark_inode_dirty error
[  584.392034][T11295] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3020: inode #15: comm syz.1.1622: mark inode dirty (error -117)
[  584.407595][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x1
[  584.421330][T11295] EXT4-fs warning (device loop1): ext4_evict_inode:272: xattr delete (err -117)
[  584.430947][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.448862][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.458024][T11295] EXT4-fs (loop1): 1 orphan inode deleted
[  584.463627][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.468081][T11295] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  584.479012][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.501203][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.518036][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.533336][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.543457][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.544531][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  584.558294][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.589856][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.605690][T11311] loop6: detected capacity change from 0 to 512
[  584.613025][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.630542][T11311] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  584.631828][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.653399][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x2
[  584.660940][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.663484][T11311] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  584.668365][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.668396][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.694813][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.702351][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.709947][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.717438][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.724974][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.732510][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.740011][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.747887][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.757117][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.764807][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.784782][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.799407][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.815242][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.833279][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.849324][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.863873][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  584.872082][   T27] audit: type=1804 audit(1760932379.756:834): pid=11311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1627" name="/newroot/131/file1/bus" dev="loop6" ino=18 res=1 errno=0
[  584.895256][ T5839] hid-generic 0000:0000:0000.0001: unknown main item tag 0x1
[  584.925681][ T5839] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[  584.965289][ T9444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  586.191593][T11338] geneve0 speed is unknown, defaulting to 1000
[  586.232421][T11338] geneve0 speed is unknown, defaulting to 1000
[  586.261825][T11338] geneve0 speed is unknown, defaulting to 1000
[  586.340033][T11338] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  586.377819][T11338] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  586.422254][T11338] geneve0 speed is unknown, defaulting to 1000
[  586.432787][T11338] geneve0 speed is unknown, defaulting to 1000
[  586.458786][T11338] geneve0 speed is unknown, defaulting to 1000
[  586.490433][T11338] geneve0 speed is unknown, defaulting to 1000
[  586.761004][T11351] netlink: 'syz.6.1643': attribute type 10 has an invalid length.
[  586.809908][T11351] bond0: (slave dummy0): Releasing backup interface
[  586.823798][T11354] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1644'.
[  586.834298][T11357] netlink: 'syz.6.1643': attribute type 10 has an invalid length.
[  586.846520][T11357] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  587.000384][T11367] sch_tbf: burst 2 is lower than device syzkaller0 mtu (1514) !
[  588.048302][T11377] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  588.735614][T11405] loop6: detected capacity change from 0 to 512
[  588.737646][T11404] loop4: detected capacity change from 0 to 1024
[  588.768754][T11405] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.782199][T11405] ext4 filesystem being mounted at /142/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  588.847682][T11400] cgroup: Name too long
[  588.861081][T11404] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.945480][   T27] audit: type=1800 audit(1760932383.826:835): pid=11404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1664" name="bus" dev="loop4" ino=18 res=0 errno=0
[  589.001977][   T27] audit: type=1804 audit(1760932383.876:836): pid=11404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1664" name="/newroot/278/bus/bus" dev="loop4" ino=18 res=1 errno=0
[  589.750945][ T9444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.307475][ T8455] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.522443][T11473] lo speed is unknown, defaulting to 1000
[  592.550282][T11482] blktrace: Concurrent blktraces are not allowed on loop8
[  592.582462][T11473] lo speed is unknown, defaulting to 1000
[  592.605028][T11473] lo speed is unknown, defaulting to 1000
[  592.734311][T11473] infiniband s{z2: RDMA CMA: cma_listen_on_dev, error -98
[  592.770530][T11473] lo speed is unknown, defaulting to 1000
[  593.500748][T11473] lo speed is unknown, defaulting to 1000
[  593.515533][T11473] lo speed is unknown, defaulting to 1000
[  593.524718][T11473] lo speed is unknown, defaulting to 1000
[  593.673448][T11486] netlink: 'syz.4.1690': attribute type 10 has an invalid length.
[  593.714569][T11486] team0: Port device dummy0 added
[  593.756073][T11486] netlink: 'syz.4.1690': attribute type 10 has an invalid length.
[  593.774033][T11486] team0: Port device dummy0 removed
[  593.784676][T11486] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  597.873641][T11551] loop6: detected capacity change from 0 to 128
[  598.298258][T11563] netlink: 'syz.4.1719': attribute type 10 has an invalid length.
[  598.322666][T11559] 9pnet: Could not find request transport: fd<r=
[  598.555073][T11568] loop6: detected capacity change from 0 to 128
[  598.578152][T11568] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  598.611627][T11568] ext4 filesystem being mounted at /157/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  598.864220][ T9444] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  601.537073][T11593] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  601.642294][T11605] loop6: detected capacity change from 0 to 512
[  601.652679][T11605] EXT4-fs: inline encryption not supported
[  601.674000][T11605] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  601.751015][T11593] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  601.775700][T11605] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  601.790481][T11605] EXT4-fs (loop6): orphan cleanup on readonly fs
[  601.807235][T11605] Quota error (device loop6): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  601.824133][T11605] EXT4-fs warning (device loop6): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  601.845041][T11605] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  601.859883][T11605] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.1734: bg 0: block 40: padding at end of block bitmap is not set
[  601.884211][T11605] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  601.898511][T11605] EXT4-fs (loop6): 1 truncate cleaned up
[  601.909293][T11605] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  601.944746][T11605] EXT4-fs error (device loop6): ext4_get_link:104: inode #16: comm syz.6.1734: bad symlink.
[  601.956946][T11605] EXT4-fs error (device loop6): ext4_get_link:104: inode #16: comm syz.6.1734: bad symlink.
[  602.084914][T11593] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  603.028155][T11593] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  603.067160][ T9444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.973557][T11593] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  604.031935][T11593] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  604.051265][T11593] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  604.072626][T11593] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  604.341116][T11635] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  605.253753][T11653] loop5: detected capacity change from 0 to 512
[  605.309976][T11653] EXT4-fs: Ignoring removed nomblk_io_submit option
[  605.313097][T11655] netlink: 'syz.1.1748': attribute type 10 has an invalid length.
[  605.334829][T11653] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  605.369082][T11653] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  605.479223][T11653] EXT4-fs (loop5): 1 truncate cleaned up
[  605.495305][T11653] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  605.889366][T11661] geneve0 speed is unknown, defaulting to 1000
[  605.898735][T11661] lo speed is unknown, defaulting to 1000
[  606.096729][T11662] loop1: detected capacity change from 0 to 512
[  606.104153][T11662] EXT4-fs: Ignoring removed bh option
[  606.109844][T11662] EXT4-fs: Ignoring removed mblk_io_submit option
[  607.445038][T11662] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  608.386214][T11662] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  608.396615][T11662] EXT4-fs (loop1): orphan cleanup on readonly fs
[  608.432063][T11662] Quota error (device loop1): do_insert_tree: Free block already used in tree: block 4
[  608.442401][T11662] Quota error (device loop1): qtree_write_dquot: Error -5 occurred while creating quota
[  608.454132][T11662] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.1749: Failed to acquire dquot type 1
[  609.055543][T11662] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.1749: Invalid block bitmap block 0 in block_group 0
[  609.076092][T11662] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.1749: Invalid block bitmap block 0 in block_group 0
[  609.092434][T11662] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.1749: Invalid block bitmap block 0 in block_group 0
[  609.109174][T11662] Quota error (device loop1): write_blk: dquota write failed
[  609.116718][T11662] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  609.127875][T11662] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.1749: Failed to acquire dquot type 1
[  609.163182][T11662] Quota error (device loop1): write_blk: dquota write failed
[  609.171175][T11662] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  609.181216][T11662] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.1749: Failed to acquire dquot type 1
[  609.195664][T11662] EXT4-fs (loop1): 1 orphan inode deleted
[  609.210886][T11662] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  609.349344][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  609.416987][ T8896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  609.587879][T11666] netlink: 'syz.5.1751': attribute type 4 has an invalid length.
[  609.933300][T11671] netlink: 'syz.5.1751': attribute type 4 has an invalid length.
[  609.970596][T11680] loop6: detected capacity change from 0 to 128
[  609.985553][   T28] lo speed is unknown, defaulting to 1000
[  609.993062][    T8] lo speed is unknown, defaulting to 1000
[  610.030543][T11680] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  610.057619][T11680] ext4 filesystem being mounted at /165/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  610.257704][ T9444] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  610.389359][T11695] netlink: 'syz.6.1758': attribute type 29 has an invalid length.
[  610.403386][T11695] netlink: 'syz.6.1758': attribute type 29 has an invalid length.
[  610.431291][T11695] netlink: 'syz.6.1758': attribute type 29 has an invalid length.
[  610.766588][T11704] loop4: detected capacity change from 0 to 512
[  610.810812][T11704] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  610.904107][T11704] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  610.924395][T11712] loop5: detected capacity change from 0 to 128
[  610.946834][T11704] EXT4-fs (loop4): 1 truncate cleaned up
[  610.958530][T11712] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  610.968134][T11704] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  610.997863][T11712] ext4 filesystem being mounted at /208/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  611.077864][ T8455] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.120972][ T8896] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  611.866548][T11743] loop1: detected capacity change from 0 to 128
[  611.880867][T11743] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  611.896510][T11743] ext4 filesystem being mounted at /426/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  611.953070][ T5785] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  612.574641][T11771] loop1: detected capacity change from 0 to 128
[  612.588382][T11771] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  612.625768][T11771] ext4 filesystem being mounted at /432/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  612.680777][ T5785] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  612.706171][T11776] 9pnet_fd: Insufficient options for proto=fd
[  613.187012][T11801] loop1: detected capacity change from 0 to 128
[  613.216370][T11801] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  613.230334][T11801] ext4 filesystem being mounted at /435/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  613.273410][ T5785] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  613.571997][ T8901] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  614.273357][T11836] geneve0 speed is unknown, defaulting to 1000
[  614.281868][T11836] lo speed is unknown, defaulting to 1000
[  615.332326][T11844] loop4: detected capacity change from 0 to 128
[  615.393363][T11844] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  615.401710][T11848] netlink: 'syz.6.1813': attribute type 10 has an invalid length.
[  615.440229][T11844] ext4 filesystem being mounted at /320/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  615.629357][ T8455] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  616.345433][T11870] loop6: detected capacity change from 0 to 128
[  616.469581][T11870] random: crng reseeded on system resumption
[  616.845265][T11884] sp0: Synchronizing with TNC
[  616.879072][T11884] sp0: Found TNC
[  617.441613][T11878] [U] è`
[  618.853192][T11918] netlink: 'syz.4.1837': attribute type 10 has an invalid length.
[  619.858345][T11953] input: syz1 as /devices/virtual/input/input33
[  619.955629][T11959] loop5: detected capacity change from 0 to 512
[  619.976904][T11959] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  619.989988][T11959] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  620.067227][ T8896] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  620.201716][T11967] blktrace: Concurrent blktraces are not allowed on loop12
[  621.426364][T12000] input: syz1 as /devices/virtual/input/input34
[  621.514719][T12003] netlink: 'syz.5.1872': attribute type 10 has an invalid length.
[  623.971036][T12079] sp0: Synchronizing with TNC
[  623.998724][T12079] sp0: Found TNC
[  624.601754][T12070] [U] è`
[  624.753946][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  624.760468][ T1282] ieee802154 phy1 wpan1: encryption failed: -22
[  627.392152][T12138] loop5: detected capacity change from 0 to 256
[  627.416102][T12138] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  627.466739][T12138] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  627.705790][ T8896] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  627.725441][ T8896] FAT-fs (loop5): Filesystem has been set read-only
[  627.738244][ T8896] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  627.767341][T12151] netlink: 'syz.1.1928': attribute type 10 has an invalid length.
[  628.131849][   T48] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  628.235017][   T48] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  628.355401][   T23] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  628.421425][   T48] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  628.528689][   T48] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  628.578902][   T23] usb 5-1: Using ep0 maxpacket: 16
[  628.598092][   T23] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  628.627674][T12173] netlink: 'syz.6.1939': attribute type 10 has an invalid length.
[  628.638919][   T23] usb 5-1: config 0 has no interfaces?
[  628.644572][   T23] usb 5-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  628.681298][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  628.711466][   T23] usb 5-1: config 0 descriptor??
[  628.945467][ T8901] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  628.964445][ T8901] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  628.973458][ T8901] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  628.986064][ T9431] usb 5-1: USB disconnect, device number 11
[  628.994286][ T8901] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  629.004024][ T8901] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  629.009823][T12183] netlink: 332 bytes leftover after parsing attributes in process `syz.6.1943'.
[  629.021076][ T8901] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  629.043669][ T5796] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  629.062093][ T5796] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  629.079673][ T5796] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  629.091751][ T5796] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  629.116691][ T5796] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  629.129505][ T5796] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  629.217124][T12180] geneve0 speed is unknown, defaulting to 1000
[  629.226354][T12180] lo speed is unknown, defaulting to 1000
[  629.453614][   T27] audit: type=1326 audit(1760932424.336:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.477357][   T27] audit: type=1326 audit(1760932424.336:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.500079][   T27] audit: type=1326 audit(1760932424.356:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.528944][   T27] audit: type=1326 audit(1760932424.356:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.566129][   T27] audit: type=1326 audit(1760932424.356:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.595778][   T27] audit: type=1326 audit(1760932424.386:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.625926][   T27] audit: type=1326 audit(1760932424.386:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.653024][   T27] audit: type=1326 audit(1760932424.386:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.676916][   T27] audit: type=1326 audit(1760932424.386:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.699593][   T27] audit: type=1326 audit(1760932424.386:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12196 comm="syz.1.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  629.788775][T12197] pim6reg: entered allmulticast mode
[  629.797377][T12202] netlink: 'syz.6.1949': attribute type 10 has an invalid length.
[  629.843192][T12203] pim6reg: left allmulticast mode
[  629.877064][T12197] xt_recent: Unsupported userspace flags (000000b1)
[  630.087062][T12180] chnl_net:caif_netlink_parms(): no params data found
[  630.252307][T12219] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1955'.
[  630.427761][T12180] bridge0: port 1(bridge_slave_0) entered blocking state
[  630.451528][T12180] bridge0: port 1(bridge_slave_0) entered disabled state
[  630.463467][T12180] bridge_slave_0: entered allmulticast mode
[  630.473778][T12180] bridge_slave_0: entered promiscuous mode
[  630.489668][T12232] netlink: 'syz.1.1958': attribute type 10 has an invalid length.
[  630.507529][   T48] hsr_slave_0: left promiscuous mode
[  630.516460][   T48] hsr_slave_1: left promiscuous mode
[  630.524281][   T48] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  630.533619][   T48] batman_adv: batadv0: Removing interface: batadv_slave_0
[  630.542713][   T48] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  630.554789][   T48] batman_adv: batadv0: Removing interface: batadv_slave_1
[  630.566061][   T48] bridge_slave_1: left allmulticast mode
[  630.575827][   T48] bridge_slave_1: left promiscuous mode
[  630.586880][   T48] bridge0: port 2(bridge_slave_1) entered disabled state
[  630.614030][   T48] bridge_slave_0: left allmulticast mode
[  630.620023][   T48] bridge_slave_0: left promiscuous mode
[  630.625864][   T48] bridge0: port 1(bridge_slave_0) entered disabled state
[  630.683732][   T48] veth1_macvtap: left promiscuous mode
[  630.693059][   T48] veth0_macvtap: left promiscuous mode
[  630.698746][   T48] veth1_vlan: left promiscuous mode
[  630.704899][   T48] veth0_vlan: left promiscuous mode
[  631.250783][ T5796] Bluetooth: hci1: command tx timeout
[  631.583480][   T48] team0 (unregistering): Port device team_slave_1 removed
[  632.019941][   T48] team0 (unregistering): Port device team_slave_0 removed
[  632.386743][   T48] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  632.493644][   T48] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  632.886382][   T48] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  633.254810][   T48] bond0 (unregistering): Released all slaves
[  633.315654][ T5796] Bluetooth: hci1: command tx timeout
[  633.355265][T12180] bridge0: port 2(bridge_slave_1) entered blocking state
[  633.366149][T12180] bridge0: port 2(bridge_slave_1) entered disabled state
[  633.373864][T12180] bridge_slave_1: entered allmulticast mode
[  633.385401][T12180] bridge_slave_1: entered promiscuous mode
[  633.399643][   T28] lo speed is unknown, defaulting to 1000
[  633.538275][T12255] netlink: 'syz.1.1966': attribute type 10 has an invalid length.
[  633.564577][T12180] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  633.603932][T12180] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  633.749593][T12261] xt_hashlimit: max too large, truncated to 1048576
[  633.757313][T12261] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  633.835469][T12180] team0: Port device team_slave_0 added
[  633.886862][T12180] team0: Port device team_slave_1 added
[  633.987772][T12180] batman_adv: batadv0: Adding interface: batadv_slave_0
[  634.008336][T12180] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  634.057751][T12180] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  634.071000][T12180] batman_adv: batadv0: Adding interface: batadv_slave_1
[  634.078012][T12180] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  634.105166][T12180] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  634.254195][T12180] hsr_slave_0: entered promiscuous mode
[  634.263871][T12180] hsr_slave_1: entered promiscuous mode
[  634.273245][T12180] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  634.281088][T12180] Cannot create hsr debugfs directory
[  634.286836][T12279] netlink: 'syz.6.1976': attribute type 10 has an invalid length.
[  634.308491][T12276] sp0: Synchronizing with TNC
[  634.334978][T12281] sp0: Found TNC
[  634.675296][T12180] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  634.701294][T12180] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  634.728090][T12180] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  634.748497][T12180] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  634.837798][T12268] [U] è`
[  634.842359][T12289] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  635.068372][T12180] 8021q: adding VLAN 0 to HW filter on device bond0
[  635.118552][T12304] blktrace: Concurrent blktraces are not allowed on loop12
[  635.136555][T12180] 8021q: adding VLAN 0 to HW filter on device team0
[  635.204278][ T7177] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.211533][ T7177] bridge0: port 1(bridge_slave_0) entered forwarding state
[  635.234130][ T7177] bridge0: port 2(bridge_slave_1) entered blocking state
[  635.241408][ T7177] bridge0: port 2(bridge_slave_1) entered forwarding state
[  635.336269][T12180] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  635.369459][T12180] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  635.390333][ T5796] Bluetooth: hci1: command tx timeout
[  635.650189][T12314] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  635.908167][T12327] blktrace: Concurrent blktraces are not allowed on loop8
[  635.995721][T12333] sp0: Synchronizing with TNC
[  636.023368][T12333] sp0: Found TNC
[  636.095397][T12180] 8021q: adding VLAN 0 to HW filter on device batadv0
[  636.167670][T12340] loop4: detected capacity change from 0 to 512
[  636.209753][T12340] __quota_error: 81 callbacks suppressed
[  636.209772][T12340] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  636.241534][T12340] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  636.263863][T12340] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1998: Failed to acquire dquot type 1
[  636.278519][T12340] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  636.299137][T12340] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  636.311048][T12340] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1998: Failed to acquire dquot type 1
[  636.349935][T12340] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1998: bg 0: block 248: padding at end of block bitmap is not set
[  636.368181][T12340] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  636.392897][T12340] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  636.415753][T12340] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  636.432477][T12340] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.1998: Failed to acquire dquot type 1
[  636.444627][T12340] EXT4-fs (loop4): 1 orphan inode deleted
[  636.455755][T12340] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  636.470853][T12340] ext4 filesystem being mounted at /379/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  636.575434][ T8455] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.609510][T12351] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  636.632880][T12323] [U] è`
[  636.786779][T12351] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  636.823269][T12180] veth0_vlan: entered promiscuous mode
[  637.619188][ T5796] Bluetooth: hci1: command tx timeout
[  637.679847][T12351] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  637.734989][T12361] netlink: 'syz.1.2003': attribute type 10 has an invalid length.
[  637.752032][T12180] veth1_vlan: entered promiscuous mode
[  637.834618][T12351] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  637.932269][T12180] veth0_macvtap: entered promiscuous mode
[  637.982666][T12180] veth1_macvtap: entered promiscuous mode
[  638.033937][T12180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.057830][T12180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.080433][T12180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.097338][T12180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.109145][T12180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.119938][T12180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.131941][T12180] batman_adv: batadv0: Interface activated: batadv_slave_0
[  638.148292][T12180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.167046][T12180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.167935][   T27] audit: type=1326 audit(1760932433.046:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12371 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  638.178535][T12180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.228892][   T27] audit: type=1326 audit(1760932433.086:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12371 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  638.251821][   T27] audit: type=1326 audit(1760932433.106:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12371 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  638.255155][T12180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.274601][   T27] audit: type=1326 audit(1760932433.106:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12371 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5918efc9 code=0x7ffc0000
[  638.324480][T12375] loop4: detected capacity change from 0 to 512
[  638.336020][T12180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.346799][T12180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.358695][T12180] batman_adv: batadv0: Interface activated: batadv_slave_1
[  638.381759][T12375] EXT4-fs error (device loop4): ext4_xattr_inode_iget:449: comm syz.4.2010: error while reading EA inode 32 err=-116
[  638.397827][T12180] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  638.407335][T12180] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  638.411239][T12375] EXT4-fs (loop4): Remounting filesystem read-only
[  638.419697][T12180] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  638.432790][T12180] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  638.434570][T12375] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -5)
[  638.457650][T12375] EXT4-fs (loop4): 1 orphan inode deleted
[  638.457738][T12372] pim6reg: entered allmulticast mode
[  638.465314][T12375] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  638.491718][T12351] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  638.503083][T12377] pim6reg: left allmulticast mode
[  638.550060][T12351] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  638.572522][T12351] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  638.595008][T12351] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  638.698557][T12379] netlink: 'syz.1.2011': attribute type 10 has an invalid length.
[  638.763297][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  638.789379][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.070568][ T7163] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.145530][ T7163] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.830999][ T8455] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  640.139146][T12404] netlink: 'syz.6.2020': attribute type 10 has an invalid length.
[  640.188551][T12404] bond0: (slave dummy0): Releasing backup interface
[  642.928385][T12446] netlink: 'syz.6.2035': attribute type 10 has an invalid length.
[  642.928984][    T9] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  643.219076][    T9] usb 5-1: Using ep0 maxpacket: 16
[  643.227935][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  643.269115][    T9] usb 5-1: config 0 has no interfaces?
[  643.288896][    T9] usb 5-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  643.298018][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  643.341392][    T9] usb 5-1: config 0 descriptor??
[  643.444214][T12465] pim6reg: entered allmulticast mode
[  643.455261][T12465] pim6reg: left allmulticast mode
[  643.579255][T12187] usb 5-1: USB disconnect, device number 12
[  643.727618][   T27] kauditd_printk_skb: 268 callbacks suppressed
[  643.727638][   T27] audit: type=1326 audit(1760932438.593:1200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12472 comm="syz.1.2048" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcb5918efc9 code=0x0
[  643.732768][T12477] loop7: detected capacity change from 0 to 164
[  643.776522][T12477] ISOFS: unable to read i-node block
[  643.788671][T12477] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  644.398178][T12490] input: syz1 as /devices/virtual/input/input35
[  644.507566][T12497] syz.6.2058[12497] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  644.511501][T12497] syz.6.2058[12497] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  644.830745][T12500] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  645.399719][   T27] audit: type=1326 audit(1760932440.283:1201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12509 comm="syz.6.2062" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3ab5d8efc9 code=0x0
[  646.183861][T12519] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  646.183861][T12519]    program syz.6.2065 not setting count and/or reply_len properly
[  646.374507][   T27] audit: type=1326 audit(1760932441.243:1202): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12493 comm="syz.7.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  646.438923][   T27] audit: type=1326 audit(1760932441.243:1203): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12493 comm="syz.7.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  646.532408][T12536] loop6: detected capacity change from 0 to 512
[  646.538859][   T27] audit: type=1326 audit(1760932441.243:1204): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12493 comm="syz.7.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  646.605897][T12536] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  646.698417][   T27] audit: type=1326 audit(1760932441.243:1205): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12493 comm="syz.7.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  646.747278][T12536] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.778927][   T27] audit: type=1326 audit(1760932441.243:1206): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12493 comm="syz.7.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  646.865618][   T27] audit: type=1326 audit(1760932441.243:1207): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12493 comm="syz.7.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  646.921370][T12536] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.938907][   T27] audit: type=1326 audit(1760932441.253:1208): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12493 comm="syz.7.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  647.009024][   T27] audit: type=1326 audit(1760932441.253:1209): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12493 comm="syz.7.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  647.095630][T12542] loop4: detected capacity change from 0 to 1024
[  647.105147][T12536] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  647.118020][T12542] EXT4-fs: Ignoring removed oldalloc option
[  647.126001][T12542] EXT4-fs: Ignoring removed bh option
[  647.136356][T12539] loop7: detected capacity change from 0 to 8192
[  647.160801][T12542] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  647.237614][T12536] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  647.256198][T12542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  647.377137][T12542] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4031: comm syz.4.2073: Allocating blocks 497-513 which overlap fs metadata
[  647.394449][T12542] EXT4-fs (loop4): pa ffff88807791ee80: logic 256, phys. 385, len 8
[  647.403169][T12542] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 1
[  647.605823][ T8455] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  647.634522][T12536] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  647.656864][T12536] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  647.682356][T12536] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  647.707183][T12536] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  648.150316][T12555] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2076'.
[  649.199209][T12561] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2080'.
[  649.343542][   T27] kauditd_printk_skb: 67 callbacks suppressed
[  649.343555][   T27] audit: type=1326 audit(1760932444.223:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  649.416961][   T27] audit: type=1326 audit(1760932444.223:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  649.525667][   T27] audit: type=1326 audit(1760932444.223:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  649.574299][   T27] audit: type=1326 audit(1760932444.223:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  649.687784][   T27] audit: type=1326 audit(1760932444.223:1281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  649.746650][   T27] audit: type=1326 audit(1760932444.223:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  649.818209][   T27] audit: type=1326 audit(1760932444.223:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  649.898920][   T27] audit: type=1326 audit(1760932444.223:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  649.998968][   T27] audit: type=1326 audit(1760932444.263:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  650.072139][   T27] audit: type=1326 audit(1760932444.263:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12565 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8927d8efc9 code=0x7ffc0000
[  650.353712][T12572] input: syz1 as /devices/virtual/input/input36
[  650.974167][T12592] netlink: 48 bytes leftover after parsing attributes in process `syz.6.2092'.
[  651.090513][T12598] loop7: detected capacity change from 0 to 164
[  651.102885][T12598] ISOFS: unable to read i-node block
[  651.108367][T12598] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  651.274017][T12604] loop7: detected capacity change from 0 to 128
[  651.479838][T12610] loop1: detected capacity change from 0 to 2048
[  651.540850][T12610] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  651.620808][T12610] EXT4-fs (loop1): shut down requested (1)
[  651.733062][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  651.991394][T12627] loop7: detected capacity change from 0 to 164
[  652.008316][T12627] ISOFS: unable to read i-node block
[  652.014152][T12627] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  654.162709][T12665] loop6: detected capacity change from 0 to 1024
[  654.172728][T12665] EXT4-fs: Ignoring removed orlov option
[  654.181133][T12665] EXT4-fs: Ignoring removed nomblk_io_submit option
[  654.205293][T12665] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  654.258601][ T9444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  654.913545][T12682] loop7: detected capacity change from 0 to 8192
[  654.943331][   T27] kauditd_printk_skb: 142 callbacks suppressed
[  654.943349][   T27] audit: type=1804 audit(1760932449.823:1429): pid=12682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.2129" name="/newroot/37/file0/bus" dev="loop7" ino=1048626 res=1 errno=0
[  655.047575][T12682] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2129'.
[  655.464720][T12698] sp0: Synchronizing with TNC
[  655.505187][T12694] sp0: Found TNC
[  655.595757][T12704] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  656.043883][T12690] [U] è`
[  656.421954][   T27] audit: type=1326 audit(1760932451.303:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12713 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  656.485586][   T27] audit: type=1326 audit(1760932451.303:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12713 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  656.517369][   T27] audit: type=1326 audit(1760932451.303:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12713 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  656.540407][   T27] audit: type=1326 audit(1760932451.343:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12713 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fb18efc9 code=0x7ffc0000
[  656.646901][T12720] netlink: 232 bytes leftover after parsing attributes in process `syz.7.2145'.
[  656.669562][T12718] random: crng reseeded on system resumption
[  657.386334][T12740] blktrace: Concurrent blktraces are not allowed on loop8
[  657.508756][T12745] loop4: detected capacity change from 0 to 1024
[  657.533637][T12745] EXT4-fs: inline encryption not supported
[  657.565372][T12745] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  657.583971][T12748] sp0: Synchronizing with TNC
[  657.620713][T12748] sp0: Found TNC
[  657.625743][T12745] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  657.760213][T12745] ==================================================================
[  657.768533][T12745] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90
[  657.776311][T12745] Read of size 18446744073709551588 at addr ffff88807f6a0040 by task syz.4.2157/12745
[  657.785897][T12745] 
[  657.788266][T12745] CPU: 1 PID: 12745 Comm: syz.4.2157 Not tainted syzkaller #0
[  657.795794][T12745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  657.806077][T12745] Call Trace:
[  657.809394][T12745]  <TASK>
[  657.812361][T12745]  dump_stack_lvl+0x16c/0x230
[  657.817096][T12745]  ? read_lock_is_recursive+0x20/0x20
[  657.822525][T12745]  ? show_regs_print_info+0x20/0x20
[  657.827778][T12745]  ? load_image+0x3b0/0x3b0
[  657.832320][T12745]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[  657.837763][T12745]  ? __virt_addr_valid+0x18c/0x540
[  657.842929][T12745]  ? __virt_addr_valid+0x469/0x540
[  657.848105][T12745]  print_report+0xac/0x220
[  657.852576][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  657.858081][T12745]  kasan_report+0x117/0x150
[  657.862620][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  657.868119][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  657.873616][T12745]  kasan_check_range+0x288/0x290
[  657.878585][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  657.884077][T12745]  __asan_memmove+0x29/0x70
[  657.888613][T12745]  ext4_xattr_set_entry+0x94b/0x1e90
[  657.893949][T12745]  ext4_xattr_block_set+0xae3/0x32a0
[  657.899263][T12745]  ? ext4_destroy_inode+0x200/0x200
[  657.904694][T12745]  ? proc_nr_inodes+0x230/0x230
[  657.909570][T12745]  ? do_raw_spin_unlock+0x121/0x230
[  657.914788][T12745]  ? _raw_spin_unlock+0x28/0x40
[  657.919655][T12745]  ? ext4_xattr_block_find+0x350/0x350
[  657.925134][T12745]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  657.930546][T12745]  ext4_xattr_set_handle+0x10a1/0x1290
[  657.936051][T12745]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  657.942070][T12745]  ? __ext4_journal_start_sb+0x259/0x570
[  657.947733][T12745]  ext4_xattr_set+0x22d/0x320
[  657.952433][T12745]  ? end_current_label_crit_section+0x170/0x170
[  657.958721][T12745]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  657.964304][T12745]  ? posix_xattr_acl+0x93/0xb0
[  657.969099][T12745]  ? evm_protect_xattr+0x36d/0x7a0
[  657.974234][T12745]  ? ext4_xattr_trusted_get+0x40/0x40
[  657.979637][T12745]  __vfs_setxattr+0x431/0x470
[  657.984349][T12745]  __vfs_setxattr_noperm+0x12d/0x5e0
[  657.989688][T12745]  vfs_setxattr+0x16c/0x2f0
[  657.994240][T12745]  ? xattr_permission+0x470/0x470
[  657.999305][T12745]  ? __mnt_want_write+0x223/0x2a0
[  658.004400][T12745]  ? path_setxattr+0x314/0x550
[  658.009206][T12745]  path_setxattr+0x362/0x550
[  658.013926][T12745]  ? simple_xattrs_free+0x150/0x150
[  658.019188][T12745]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  658.025306][T12745]  ? lock_chain_count+0x20/0x20
[  658.030195][T12745]  __x64_sys_lsetxattr+0xb8/0xd0
[  658.035180][T12745]  do_syscall_64+0x55/0xb0
[  658.039655][T12745]  ? clear_bhb_loop+0x40/0x90
[  658.044347][T12745]  ? clear_bhb_loop+0x40/0x90
[  658.049045][T12745]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  658.054953][T12745] RIP: 0033:0x7f8927d8efc9
[  658.059393][T12745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  658.079056][T12745] RSP: 002b:00007f8928c31038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  658.087492][T12745] RAX: ffffffffffffffda RBX: 00007f8927fe5fa0 RCX: 00007f8927d8efc9
[  658.095487][T12745] RDX: 0000200000000800 RSI: 0000200000000180 RDI: 00002000000001c0
[  658.103483][T12745] RBP: 00007f8927e11f91 R08: 0000000000000000 R09: 0000000000000000
[  658.111476][T12745] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  658.119459][T12745] R13: 00007f8927fe6038 R14: 00007f8927fe5fa0 R15: 00007ffda037cac8
[  658.127505][T12745]  </TASK>
[  658.130534][T12745] 
[  658.132886][T12745] Allocated by task 12745:
[  658.137309][T12745]  kasan_set_track+0x4e/0x70
[  658.141934][T12745]  __kasan_kmalloc+0x8f/0xa0
[  658.146547][T12745]  __kmalloc_node_track_caller+0xb2/0x230
[  658.152289][T12745]  kmemdup+0x2b/0x70
[  658.156203][T12745]  ext4_xattr_block_set+0x9e5/0x32a0
[  658.161506][T12745]  ext4_xattr_set_handle+0x10a1/0x1290
[  658.166988][T12745]  ext4_xattr_set+0x22d/0x320
[  658.171683][T12745]  __vfs_setxattr+0x431/0x470
[  658.176391][T12745]  __vfs_setxattr_noperm+0x12d/0x5e0
[  658.181726][T12745]  vfs_setxattr+0x16c/0x2f0
[  658.186267][T12745]  path_setxattr+0x362/0x550
[  658.190873][T12745]  __x64_sys_lsetxattr+0xb8/0xd0
[  658.195826][T12745]  do_syscall_64+0x55/0xb0
[  658.200346][T12745]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  658.206256][T12745] 
[  658.208588][T12745] The buggy address belongs to the object at ffff88807f6a0000
[  658.208588][T12745]  which belongs to the cache kmalloc-1k of size 1024
[  658.222665][T12745] The buggy address is located 64 bytes inside of
[  658.222665][T12745]  1024-byte region [ffff88807f6a0000, ffff88807f6a0400)
[  658.235952][T12745] 
[  658.238282][T12745] The buggy address belongs to the physical page:
[  658.244713][T12745] page:ffffea0001fda800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7f6a0
[  658.254899][T12745] head:ffffea0001fda800 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  658.263858][T12745] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  658.271877][T12745] page_type: 0xffffffff()
[  658.276221][T12745] raw: 00fff00000000840 ffff888017841dc0 dead000000000100 dead000000000122
[  658.284817][T12745] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  658.293453][T12745] page dumped because: kasan: bad access detected
[  658.299893][T12745] page_owner tracks the page as allocated
[  658.305609][T12745] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 6005, tgid 6005 (kworker/u4:8), ts 453498115023, free_ts 453453969975
[  658.327944][T12745]  post_alloc_hook+0x1cd/0x210
[  658.332736][T12745]  get_page_from_freelist+0x195c/0x19f0
[  658.338301][T12745]  __alloc_pages+0x1e3/0x460
[  658.342924][T12745]  alloc_slab_page+0x5d/0x170
[  658.347630][T12745]  new_slab+0x87/0x2e0
[  658.351815][T12745]  ___slab_alloc+0xc6d/0x1300
[  658.356525][T12745]  __kmem_cache_alloc_node+0x1a2/0x260
[  658.362020][T12745]  __kmalloc_node_track_caller+0xa2/0x230
[  658.367774][T12745]  kmalloc_reserve+0x117/0x260
[  658.372556][T12745]  __alloc_skb+0x138/0x2c0
[  658.376997][T12745]  inet6_rt_notify+0xb4/0x240
[  658.381686][T12745]  fib6_add+0x1d9a/0x3d20
[  658.386043][T12745]  ip6_ins_rt+0xc9/0x120
[  658.390310][T12745]  __ipv6_ifa_notify+0x62f/0xaa0
[  658.395263][T12745]  addrconf_dad_completed+0x181/0xd40
[  658.400649][T12745]  addrconf_dad_work+0xc4e/0x14e0
[  658.405686][T12745] page last free stack trace:
[  658.410389][T12745]  free_unref_page_prepare+0x7ce/0x8e0
[  658.415878][T12745]  free_unref_page+0x32/0x2e0
[  658.420573][T12745]  __slab_free+0x35e/0x410
[  658.425013][T12745]  qlist_free_all+0x75/0xe0
[  658.429530][T12745]  kasan_quarantine_reduce+0x143/0x160
[  658.435009][T12745]  __kasan_slab_alloc+0x22/0x80
[  658.439906][T12745]  slab_post_alloc_hook+0x6e/0x4d0
[  658.445037][T12745]  kmem_cache_alloc_node+0x150/0x330
[  658.450347][T12745]  __alloc_skb+0x108/0x2c0
[  658.454805][T12745]  netlink_ack+0x376/0x1110
[  658.459341][T12745]  netlink_rcv_skb+0x29a/0x480
[  658.464129][T12745]  netlink_unicast+0x751/0x8d0
[  658.468908][T12745]  netlink_sendmsg+0x8c1/0xbe0
[  658.473686][T12745]  __sys_sendto+0x46a/0x620
[  658.478203][T12745]  __x64_sys_sendto+0xde/0xf0
[  658.482904][T12745]  do_syscall_64+0x55/0xb0
[  658.487436][T12745] 
[  658.489817][T12745] Memory state around the buggy address:
[  658.495462][T12745]  ffff88807f69ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.503532][T12745]  ffff88807f69ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.511779][T12745] >ffff88807f6a0000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.519870][T12745]                                            ^
[  658.526222][T12745]  ffff88807f6a0080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.534308][T12745]  ffff88807f6a0100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  658.542398][T12745] ==================================================================
[  658.560351][T12737] [U] è`
[  658.565074][T12745] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  658.572320][T12745] CPU: 0 PID: 12745 Comm: syz.4.2157 Not tainted syzkaller #0
[  658.579795][T12745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  658.589868][T12745] Call Trace:
[  658.593162][T12745]  <TASK>
[  658.596105][T12745]  dump_stack_lvl+0x16c/0x230
[  658.600825][T12745]  ? show_regs_print_info+0x20/0x20
[  658.606042][T12745]  ? load_image+0x3b0/0x3b0
[  658.610910][T12745]  panic+0x2c0/0x710
[  658.614815][T12745]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  658.620988][T12745]  ? bpf_jit_dump+0xd0/0xd0
[  658.625537][T12745]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  658.631452][T12745]  ? _raw_spin_unlock+0x40/0x40
[  658.636318][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  658.641798][T12745]  check_panic_on_warn+0x84/0xa0
[  658.646754][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  658.652253][T12745]  end_report+0x6f/0x140
[  658.656509][T12745]  kasan_report+0x128/0x150
[  658.661060][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  658.666630][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  658.672109][T12745]  kasan_check_range+0x288/0x290
[  658.677066][T12745]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  658.682543][T12745]  __asan_memmove+0x29/0x70
[  658.687072][T12745]  ext4_xattr_set_entry+0x94b/0x1e90
[  658.692388][T12745]  ext4_xattr_block_set+0xae3/0x32a0
[  658.697698][T12745]  ? ext4_destroy_inode+0x200/0x200
[  658.703028][T12745]  ? proc_nr_inodes+0x230/0x230
[  658.707897][T12745]  ? do_raw_spin_unlock+0x121/0x230
[  658.713119][T12745]  ? _raw_spin_unlock+0x28/0x40
[  658.718003][T12745]  ? ext4_xattr_block_find+0x350/0x350
[  658.723479][T12745]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  658.728875][T12745]  ext4_xattr_set_handle+0x10a1/0x1290
[  658.734365][T12745]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  658.740457][T12745]  ? __ext4_journal_start_sb+0x259/0x570
[  658.746136][T12745]  ext4_xattr_set+0x22d/0x320
[  658.750838][T12745]  ? end_current_label_crit_section+0x170/0x170
[  658.757098][T12745]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  658.762681][T12745]  ? posix_xattr_acl+0x93/0xb0
[  658.767470][T12745]  ? evm_protect_xattr+0x36d/0x7a0
[  658.772602][T12745]  ? ext4_xattr_trusted_get+0x40/0x40
[  658.777996][T12745]  __vfs_setxattr+0x431/0x470
[  658.782695][T12745]  __vfs_setxattr_noperm+0x12d/0x5e0
[  658.787998][T12745]  vfs_setxattr+0x16c/0x2f0
[  658.792534][T12745]  ? xattr_permission+0x470/0x470
[  658.797583][T12745]  ? __mnt_want_write+0x223/0x2a0
[  658.802632][T12745]  ? path_setxattr+0x314/0x550
[  658.807415][T12745]  path_setxattr+0x362/0x550
[  658.812026][T12745]  ? simple_xattrs_free+0x150/0x150
[  658.817344][T12745]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  658.823393][T12745]  ? lock_chain_count+0x20/0x20
[  658.828265][T12745]  __x64_sys_lsetxattr+0xb8/0xd0
[  658.833232][T12745]  do_syscall_64+0x55/0xb0
[  658.837689][T12745]  ? clear_bhb_loop+0x40/0x90
[  658.842407][T12745]  ? clear_bhb_loop+0x40/0x90
[  658.847101][T12745]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  658.853007][T12745] RIP: 0033:0x7f8927d8efc9
[  658.857438][T12745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  658.877065][T12745] RSP: 002b:00007f8928c31038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  658.885606][T12745] RAX: ffffffffffffffda RBX: 00007f8927fe5fa0 RCX: 00007f8927d8efc9
[  658.893593][T12745] RDX: 0000200000000800 RSI: 0000200000000180 RDI: 00002000000001c0
[  658.901585][T12745] RBP: 00007f8927e11f91 R08: 0000000000000000 R09: 0000000000000000
[  658.909572][T12745] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  658.917549][T12745] R13: 00007f8927fe6038 R14: 00007f8927fe5fa0 R15: 00007ffda037cac8
[  658.925550][T12745]  </TASK>
[  658.928920][T12745] Kernel Offset: disabled
[  658.933257][T12745] Rebooting in 86400 seconds..